Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I need help !


  • This topic is locked This topic is locked
3 replies to this topic

#1 boricua187

boricua187

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:06:53 PM

Posted 09 January 2009 - 09:31 AM

Recently my pc just started restarting by itself and when it restarts it seems like the explorer.exe does not wanna work. I'm not sure what is wrong with it I have ran the program malwarebytes and it found a bunch of vundos and i thought i got rid of them but when i restarted my pc it still did the same thing. If anyone can help me out i would really appreciate it thank you



DDS (Ver_09-01-07.01) - NTFSx86
Run by joel at 9:20:53.77 on Fri 01/09/2009
Internet Explorer: 8.0.6001.18241
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.511.100 [GMT -5:00]

AV: Norton Internet Security *On-access scanning enabled* (Updated)
FW: Norton Internet Security *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\PixArt\PAC207\Monitor.exe
C:\Updater.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Linksys\WUSB100\WUSB100.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Program Files\Norton Internet Security\Engine\16.2.0.7\ccSvcHst.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Norton Internet Security\Engine\16.2.0.7\ccSvcHst.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Documents and Settings\joel\Local Settings\Temporary Internet Files\Content.IE5\DH9LFPV1\dds[1].scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
BHO: NoExplorer - No File
BHO: HP Print Clips: {053f9267-dc04-4294-a72c-58f732d338c0} - c:\program files\hp\smart web printing\hpswp_framework.dll
BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - c:\program files\bitcomet\tools\BitCometBHO_1.2.8.7.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\progra~1\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\norton internet security\engine\16.2.0.7\coIEPlg.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [PAC207_Monitor] c:\windows\pixart\pac207\Monitor.exe
mRun: [Monitor] c:\windows\pixart\pac207\Monitor.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iRiver Updater] \Updater.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
dRun: [MySpaceIM] c:\program files\myspace\im\MySpaceIM.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\wirele~1.lnk - c:\program files\linksys\wusb100\WUSB100.exe
IE: &D&ownload &with BitComet - c:\program files\bitcomet\BitComet.exe/AddLink.htm
IE: &D&ownload all video with BitComet - c:\program files\bitcomet\BitComet.exe/AddVideo.htm
IE: &D&ownload all with BitComet - c:\program files\bitcomet\BitComet.exe/AddAllLink.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://c:\program files\bitcomet\tools\BitCometBHO_1.2.8.7.dll/206
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {58ECB495-38F0-49cb-A538-10282ABF65E7} - {E763472E-A716-4CD9-89BD-DBDA6122F741} - c:\program files\hp\smart web printing\hpswp_extensions.dll
IE: {700259D7-1666-479a-93B1-3250410481E8} - {A93C41D8-01F8-4F8B-B14C-DE20B117E636} - c:\program files\hp\smart web printing\hpswp_extensions.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: symres - {AA1061FE-6C41-421f-9344-69640C9732AB} - c:\program files\norton internet security\engine\16.2.0.7\CoIEPlg.dll
AppInit_DLLs: eyecaq.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

============= SERVICES / DRIVERS ===============

R0 SymEFA;Symantec Extended File Attributes;\SystemRoot\\SystemRoot\System32\Drivers\NIS\1002000.007\SYMEFA.SYS --> \SystemRoot\\SystemRoot\System32\Drivers\NIS\1002000.007\SYMEFA.SYS [?]
R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\system32\drivers\nis\1002000.007\BHDrvx86.sys [2008-12-24 255536]
R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\nis\1002000.007\cchpx86.sys [2008-12-24 362544]
R1 IDSxpx86;IDSxpx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\ipsdefs\20081220.001\IDSxpx86.sys [2008-12-24 274808]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2008-11-29 99376]
R3 NAVENG;NAVENG;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\virusdefs\20090108.048\naveng.sys [2009-1-9 89104]
R3 NAVEX15;NAVEX15;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\virusdefs\20090108.048\navex15.sys [2009-1-9 876112]
R3 rt2870;Linksys 802.11n USB Wireless LAN Card Driver;c:\windows\system32\drivers\rt2870.sys [2007-7-28 517632]
R4 aawservice;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\aawservice.exe [2008-9-10 611664]
R4 Norton Internet Security;Norton Internet Security;c:\program files\norton internet security\engine\16.2.0.7\ccSvcHst.exe [2008-12-24 115560]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2008-11-22 38496]
S3 Ndisprot;ArcNet NDIS Protocol Driver;c:\windows\system32\drivers\ndisprot.sys [2008-11-16 27904]
S3 PAC207;PC Camer@;c:\windows\system32\drivers\PFC027.SYS [2008-11-13 616064]
S4 .norton2009Reset;Norton2009 Reset;c:\program files\Norton2009Reset.exe [2008-9-17 549159]

=============== Created Last 30 ================

2009-01-09 04:07 <DIR> --d--r-- c:\program files\Norton Support
2009-01-08 23:13 4 a------- c:\windows\num41.jbd
2009-01-08 23:13 4 a------- c:\windows\info147.sys
2009-01-08 23:12 <DIR> --d----- c:\program files\common files\Totem Shared
2009-01-08 21:05 <DIR> --d----- C:\Programs
2009-01-08 20:34 5 a------- c:\windows\sbacknt.bin
2009-01-08 20:31 152,904 a------- c:\windows\system32\vghd.scr
2009-01-08 20:31 <DIR> --d----- c:\program files\vghd
2009-01-08 20:31 <DIR> --d----- c:\docume~1\joel\applic~1\vghd
2009-01-08 20:12 73,216 a------- c:\windows\system32\ffkuz.dll
2009-01-08 20:06 57,856 a------- c:\windows\system32\iifcBSLe.dll
2009-01-08 20:05 139,264 a------- c:\windows\system32\fladireo.dll
2009-01-08 18:10 54,156 a---h--- c:\windows\QTFont.qfn
2009-01-08 18:10 1,409 a------- c:\windows\QTFont.for
2009-01-05 20:56 <DIR> --d----- c:\documents and settings\joel\WebEx
2009-01-05 20:56 <DIR> --d----- c:\docume~1\joel\applic~1\webex
2009-01-05 11:23 1,025 a------- c:\windows\system32\sysprs7.tgz
2009-01-05 11:23 1,025 a------- c:\windows\system32\sysprs7.dll
2009-01-05 11:23 1,025 a------- c:\windows\system32\clauth2.dll
2009-01-05 11:23 1,025 a------- c:\windows\system32\clauth1.dll
2009-01-05 11:23 219 a------- c:\windows\system32\lsprst7.tgz
2009-01-05 11:23 205 a------- c:\windows\system32\lsprst7.dll
2009-01-05 11:23 87 a------- c:\windows\system32\ssprs.tgz
2009-01-05 11:23 73 a------- c:\windows\system32\ssprs.dll
2009-01-05 11:21 <DIR> --d----- c:\program files\common files\KORG
2009-01-05 11:15 <DIR> --d----- c:\windows\Recent
2009-01-05 11:13 520,267 a------- c:\windows\system32\libmmd.dll
2009-01-05 02:02 2,240 a------- c:\windows\LENDIG.sys
2009-01-05 01:50 <DIR> --d----- c:\program files\common files\Creative Professional
2009-01-05 01:49 <DIR> --d----- c:\program files\Steinberg
2009-01-05 01:49 <DIR> --d----- c:\docume~1\joel\applic~1\Proteus VX
2009-01-05 01:49 <DIR> --d----- c:\program files\Creative
2009-01-05 01:42 <DIR> --d----- c:\program files\Creative Professional
2009-01-03 00:31 <DIR> --d----- c:\docume~1\joel\applic~1\LimeWire
2009-01-03 00:30 73,728 a------- c:\windows\system32\javacpl.cpl
2009-01-03 00:30 410,984 a------- c:\windows\system32\deploytk.dll
2009-01-03 00:25 <DIR> --d----- c:\program files\LimeWire
2008-12-29 20:54 <DIR> --d----- c:\docume~1\joel\applic~1\MyScribe
2008-12-29 20:53 <DIR> --d----- c:\program files\CafeScribe
2008-12-26 16:50 <DIR> --d----- c:\program files\Jnes 0.6
2008-12-24 16:18 36,272 a----r-- c:\windows\system32\drivers\SymIM.sys
2008-12-24 15:33 <DIR> --d----- c:\windows\ie8updates

==================== Find3M ====================

2008-11-29 21:32 124,464 a------- c:\windows\system32\drivers\SYMEVENT.SYS
2008-11-29 21:32 60,808 a------- c:\windows\system32\S32EVNT1.DLL
2008-11-29 21:32 10,635 a------- c:\windows\system32\drivers\SYMEVENT.CAT
2008-11-29 21:32 806 a------- c:\windows\system32\drivers\SYMEVENT.INF
2008-11-17 01:22 9,609,305 a------- c:\windows\system32\Themes For Windows XP.exe
2008-11-16 22:13 27,904 a------- c:\windows\system32\drivers\ndisprot.sys
2008-11-15 20:47 139,775 a------- c:\windows\hpoins15.dat
2008-11-15 10:11 717,296 a------- c:\windows\system32\drivers\sptd.sys
2008-11-14 22:29 76,487 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2008-11-12 17:07 2,678 a------- c:\windows\java\packages\data\R7TBBHRX.DAT
2008-11-12 17:07 2,678 a------- c:\windows\java\packages\data\WVXRNF5B.DAT
2008-11-12 17:07 2,678 a------- c:\windows\java\packages\data\HND31ZFZ.DAT
2008-11-12 17:07 2,678 a------- c:\windows\java\packages\data\BXF77XN3.DAT
2008-11-12 17:07 2,678 a------- c:\windows\java\packages\data\UGJDJ33R.DAT
2008-11-12 16:52 355,584 a------- c:\windows\system32\TuneUpDefragService.exe
2008-11-12 15:57 21,419 a------- c:\windows\system32\drivers\AegisP.sys
2008-11-12 15:24 558,142 a------- c:\windows\java\packages\N7F3BXFN.ZIP
2008-11-12 15:24 155,995 a------- c:\windows\java\packages\9NJF9FRV.ZIP
2008-11-12 15:22 21,640 a------- c:\windows\system32\emptyregdb.dat
2008-10-23 07:36 286,720 a------- c:\windows\system32\gdi32.dll
2008-10-16 14:06 268,648 a------- c:\windows\system32\mucltui.dll
2008-10-16 14:06 208,744 a------- c:\windows\system32\muweb.dll
2008-09-17 08:16 549,159 a--shr-- c:\program files\Norton2009Reset.exe

============= FINISH: 9:21:23.50 ===============




UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-01-07.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 11/12/2008 3:26:24 PM
System Uptime: 1/9/2009 9:03:36 AM (0 hours ago)

Motherboard: Foxconn | | 661MXPlus
Processor: Intel® Celeron® CPU 2.66GHz | Socket 478 | 2666/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 57 GiB total, 26.478 GiB free.
D: is FIXED (NTFS) - 37 GiB total, 21.786 GiB free.
E: is Removable
F: is Removable
G: is Removable
H: is Removable
I: is Removable
J: is CDROM ()
K: is CDROM ()
L: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP86: 1/8/2009 8:02:37 PM - Software Distribution Service 3.0
RP87: 1/8/2009 8:02:39 PM - Installed Windows XP Service Pack 2.
RP88: 1/8/2009 8:02:46 PM - Installed Windows XP KB873339.
RP89: 1/8/2009 8:02:47 PM - Installed Windows XP KB885835.
RP90: 1/8/2009 8:02:47 PM - Installed Windows XP KB885836.
RP91: 1/8/2009 8:02:47 PM - Installed Windows XP KB888302.
RP92: 1/8/2009 8:02:47 PM - Installed Windows XP KB890046.
RP93: 1/8/2009 8:02:48 PM - Installed Windows XP KB890859.
RP94: 1/8/2009 8:02:48 PM - Installed Windows XP KB891781.
RP95: 1/8/2009 8:02:48 PM - Installed Windows XP KB893756.
RP96: 1/8/2009 8:02:49 PM - Installed Windows XP KB896358.
RP97: 1/8/2009 8:02:50 PM - Installed Windows XP KB896423.
RP98: 1/8/2009 8:02:51 PM - Installed Windows XP KB896424.
RP99: 1/8/2009 8:02:52 PM - Installed Windows XP KB896428.
RP100: 1/8/2009 8:02:53 PM - Installed Windows XP KB899587.
RP101: 1/8/2009 8:02:54 PM - Installed Windows XP KB899591.
RP102: 1/8/2009 8:02:54 PM - Installed Windows XP KB900725.
RP103: 1/8/2009 8:02:54 PM - Installed Windows XP KB901017.
RP104: 1/8/2009 8:02:55 PM - Installed Windows XP KB901214.
RP105: 1/8/2009 8:02:55 PM - Installed Windows XP KB902400.
RP106: 1/8/2009 8:02:56 PM - Installed Windows XP KB904706.
RP107: 1/8/2009 8:02:57 PM - Installed Windows XP KB905414.
RP108: 1/8/2009 8:02:58 PM - Installed Windows XP KB905749.
RP109: 1/8/2009 8:02:59 PM - Installed Windows XP KB908519.
RP110: 1/8/2009 8:03:00 PM - Installed Windows XP KB908531.
RP111: 1/8/2009 8:03:01 PM - Installed Windows XP KB910437.
RP112: 1/8/2009 8:03:02 PM - Installed Windows XP KB911280.
RP113: 1/8/2009 8:03:02 PM - Installed Windows XP KB911562.
RP114: 1/8/2009 8:03:02 PM - Installed Windows XP KB911927.
RP115: 1/8/2009 8:03:03 PM - Installed Windows XP KB912919.
RP116: 1/8/2009 8:03:04 PM - Installed Windows XP KB913580.
RP117: 1/8/2009 8:03:05 PM - Installed Windows XP KB914388.
RP118: 1/8/2009 8:03:06 PM - Installed Windows XP KB914389.
RP119: 1/8/2009 8:03:07 PM - Installed Windows XP KB917344.
RP120: 1/8/2009 8:03:09 PM - Installed Windows XP KB917422.
RP121: 1/8/2009 8:03:09 PM - Installed Windows XP KB917953.
RP122: 1/8/2009 8:03:11 PM - Installed Windows XP KB919007.
RP123: 1/8/2009 8:03:12 PM - Installed Windows XP KB920670.
RP124: 1/8/2009 8:03:13 PM - Installed Windows XP KB920683.
RP125: 1/8/2009 8:03:14 PM - Installed Windows XP KB920685.
RP126: 1/8/2009 8:03:16 PM - Installed Windows XP KB921398.
RP127: 1/8/2009 8:03:16 PM - Installed Windows XP KB921883.
RP128: 1/8/2009 8:03:16 PM - Installed Windows XP KB922616.
RP129: 1/8/2009 8:03:17 PM - Installed Windows XP KB922819.
RP130: 1/8/2009 8:03:17 PM - Installed Windows XP KB923191.
RP131: 1/8/2009 8:03:17 PM - Installed Windows XP KB923414.
RP132: 1/8/2009 8:03:17 PM - Installed Windows XP KB924191.
RP133: 1/8/2009 8:03:18 PM - Installed Windows XP KB924496.
RP134: 1/8/2009 8:03:20 PM - Installed PC CIF Camer@
RP135: 1/8/2009 8:03:21 PM - Unsigned driver install
RP136: 1/8/2009 8:03:22 PM - Software Distribution Service 3.0
RP137: 1/8/2009 8:03:24 PM - Removed PC CIF Camer@
RP138: 1/8/2009 8:03:25 PM - Installed PC CIF Camer@
RP139: 1/8/2009 8:03:26 PM - Update to an unsigned driver
RP140: 1/8/2009 8:03:27 PM - Installed Logitech Gaming Software
RP141: 1/8/2009 8:03:29 PM - Software Distribution Service 3.0
RP142: 1/8/2009 8:03:30 PM - Installed Microsoft Office Enterprise 2007
RP143: 1/8/2009 8:03:31 PM - Printer Driver Send To Microsoft OneNote Driver Installed
RP144: 1/8/2009 8:03:35 PM - Installed Microsoft Office Outlook Connector
RP145: 1/8/2009 8:03:36 PM - Installed Windows XP KB915865.
RP146: 1/8/2009 8:03:36 PM - Installed Windows XP KB915800-v4.
RP147: 1/8/2009 8:03:36 PM - Installed Windows XP Windows Search 4.0.
RP148: 1/8/2009 8:03:36 PM - Software Distribution Service 3.0
RP149: 1/8/2009 8:03:36 PM - Software Distribution Service 3.0
RP150: 1/8/2009 8:03:36 PM - Installed QuickTime
RP151: 1/8/2009 8:03:37 PM - SPTD setup V1.56
RP152: 1/8/2009 8:03:37 PM - Installed HPSU306Stub
RP153: 1/8/2009 8:03:37 PM - Installed Adobe Reader 8
RP154: 1/8/2009 8:03:37 PM - Software Distribution Service 3.0
RP155: 1/8/2009 8:03:37 PM - Software Distribution Service 3.0
RP156: 1/8/2009 8:03:37 PM - Software Distribution Service 3.0
RP157: 1/8/2009 8:03:38 PM - Last known good configuration
RP158: 1/8/2009 8:03:43 PM - Last known good configuration
RP159: 1/8/2009 8:03:44 PM - Installed Windows Internet Explorer 8.
RP160: 1/8/2009 8:03:44 PM - Installed Kaspersky Anti-Virus 2009.
RP161: 1/8/2009 8:03:46 PM - System Checkpoint
RP162: 1/8/2009 8:03:46 PM - System Checkpoint
RP163: 1/8/2009 8:03:48 PM - System Checkpoint
RP164: 1/8/2009 8:03:50 PM - Installed Ad-Aware
RP165: 1/8/2009 8:03:50 PM - ComboFix created restore point
RP166: 1/8/2009 8:03:50 PM - Software Distribution Service 3.0
RP167: 1/8/2009 8:03:51 PM - System Checkpoint
RP168: 1/8/2009 8:03:51 PM - System Checkpoint
RP169: 1/8/2009 8:03:52 PM - System Checkpoint
RP170: 1/8/2009 8:03:56 PM - Unsigned driver install
RP171: 1/8/2009 8:03:58 PM - Installed iriver Music Manager
RP172: 1/8/2009 8:03:59 PM - Unsigned driver install
RP173: 1/8/2009 8:03:59 PM - Unsigned driver install
RP174: 1/8/2009 8:04:00 PM - System Checkpoint
RP175: 1/8/2009 8:04:00 PM - System Checkpoint
RP176: 1/8/2009 8:04:01 PM - Software Distribution Service 3.0
RP177: 1/8/2009 8:04:01 PM - System Checkpoint
RP178: 1/8/2009 8:04:01 PM - Removed Kaspersky Anti-Virus 2009.
RP179: 1/8/2009 8:04:03 PM - System Checkpoint
RP180: 1/8/2009 8:04:05 PM - System Checkpoint
RP181: 1/8/2009 8:04:08 PM - System Checkpoint
RP182: 1/8/2009 8:04:08 PM - System Checkpoint
RP183: 1/8/2009 8:04:09 PM - System Checkpoint
RP184: 1/8/2009 8:04:09 PM - Installed Java™ 6 Update 11
RP185: 1/8/2009 8:04:10 PM - System Checkpoint
RP186: 1/8/2009 8:04:11 PM - Installed Proteus VX
RP187: 1/8/2009 8:04:13 PM - System Checkpoint
RP188: 1/8/2009 8:04:17 PM - System Checkpoint
RP189: 1/8/2009 8:04:21 PM - System Checkpoint

==== Installed Programs ======================


2007 Microsoft Office Suite Service Pack 1 (SP1)
32 Bit HP CIO Components Installer
A0.DK1.VST2.Instrument.v1.027-ZONE
Ad-Aware
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color - Photoshop Specific
Adobe Color Common Settings
Adobe Color EU Extra Settings
Adobe Color JA Extra Settings
Adobe Color NA Recommended Settings
Adobe Default Language CS3
Adobe Device Central CS3
Adobe Dreamweaver CS3
Adobe ExtendScript Toolkit 2
Adobe Extension Manager CS3
Adobe Flash CS3
Adobe Flash CS3 Professional
Adobe Flash Player 10 ActiveX
Adobe Flash Player 9 ActiveX
Adobe Flash Player 9 Plugin
Adobe Flash Video Encoder
Adobe Fonts All
Adobe Help Viewer CS3
Adobe Linguistics CS3
Adobe PDF Library Files
Adobe Photoshop CS3
Adobe Reader 8
Adobe Setup
Adobe Stock Photos CS3
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS3
AIO_Scan
AKAI professional VST Collection v1.0
Antares Autotune VST RTAS TDM v5.08
Antares Microphone Modeler - ZONE
ASIO4ALL
BitComet 1.06
BufferChm
C4200
C4200_doccd
c4200_Help
Collab
Copy
CustomerResearchQFolder
DAEMON Tools Toolbar
Destination Component
DeviceDiscovery
DeviceManagementQFolder
DocProc
DocProcQFolder
eSupportQFolder
FL Studio 8
Free PDF to Word Doc Converter v1.1
Hijackthis 1.99.1
HijackThis 2.0.2
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
HP Customer Participation Program 9.0
HP Imaging Device Functions 9.0
HP OCR Software 9.0
HP Photosmart All-In-One Software 9.0
HP Photosmart Essential 2.01
HP Photosmart Essential2.01
HP Smart Web Printing
HP Solution Center 9.0
HP Update
HPProductAssistant
HPSSupply
IL Download Manager
ImgBurn
iriver Music Manager
Java™ 6 Update 11
KaraFun 1.16a
Korg Legacy Collection v1.0.0.2
LimeWire PRO 4.18.8
Linksys WUSB100 RangePlus Wireless USB Adapter
Logitech Gaming Software
Magic ISO Maker v5.5 (build 0272)
Malwarebytes' Anti-Malware
MarketResearch
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Software Update for Web Folders (English) 12
Microsoft Visual C++ 2005 Redistributable
Minilyrics(remove only)
MSXML 4.0 SP2 (KB954430)
MyScribe
MySpaceIM
Norton Internet Security
NVIDIA Drivers
ObjectDock Plus
PC CIF Camer@
PDF Settings
PoiZone
Proteus VX
PS_AIO_ProductContext
PS_AIO_Software
PS_AIO_Software_min
PSSWCORE
QuickTime
Realtek AC'97 Audio
Scan
Security Update for 2007 Microsoft Office System (KB951550)
Security Update for 2007 Microsoft Office System (KB951944)
Security Update for 2007 Microsoft Office System (KB958439)
Security Update for Microsoft Office Excel 2007 (KB958437)
Security Update for Microsoft Office OneNote 2007 (KB950130)
Security Update for Microsoft Office PowerPoint 2007 (KB951338)
Security Update for Microsoft Office Publisher 2007 (KB950114)
Security Update for Microsoft Office system 2007 (KB954326)
Security Update for Microsoft Office system 2007 (KB956828)
Security Update for Microsoft Office Word 2007 (KB956358)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 8 (KB960714)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 8 (KB917734)
Security Update for Windows Media Player 9 (KB911565)
Security Update for Windows XP (KB913433)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
sfArk
SolutionCenter
Status
Steinberg LM-4 MarkII
Switch Sound File Converter
Sylenth1 v1.01.3
System Requirements Lab
Toolbox
Toxic Biohazard
TrayApp
TuneUp Utilities 2008
UnloadSupport
Update for Microsoft Office Outlook 2007 (KB952142)
Update for Office 2007 (KB946691)
Update for Outlook 2007 Junk Email Filter (kb958619)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
VideoToolkit01
WebEx
WebFldrs XP
WebReg
Windows Internet Explorer 8 Beta 2
Windows XP Service Pack 3
WinRAR archiver
Wyzo 0.5.3
XP Codec Pack
Yahoo! Messenger
Yahoo! Toolbar

==== Event Viewer Messages From Past Week ========

1/2/2009 10:32:13 AM, error: System Error [1003] - Error code 100000d1, parameter1 f9239ff6, parameter2 00000002, parameter3 00000000, parameter4 a74c4679.
1/2/2009 10:28:39 AM, error: System Error [1003] - Error code 100000d1, parameter1 f9519ff6, parameter2 00000002, parameter3 00000000, parameter4 8582a679.
1/2/2009 10:28:31 AM, error: Service Control Manager [7000] - The Norton2009 Reset service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
1/2/2009 10:28:31 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Norton2009 Reset service to connect.
1/2/2009 10:28:30 AM, error: ipnathlp [32003] - The Network Address Translator (NAT) was unable to request an operation of the kernel-mode translation module. This may indicate misconfiguration, insufficient resources, or an internal error. The data is the error code.
1/8/2009 7:57:16 PM, error: Service Control Manager [7034] - The Windows Installer service terminated unexpectedly. It has done this 1 time(s).
1/8/2009 11:27:26 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
1/8/2009 11:36:56 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
1/9/2009 12:41:34 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
1/9/2009 12:41:45 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
1/9/2009 12:42:31 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
1/9/2009 12:42:31 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
1/9/2009 12:42:31 AM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD Networking Support Environment service which failed to start because of the following error: A device attached to the system is not functioning.
1/9/2009 12:42:31 AM, error: Service Control Manager [7001] - The ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
1/9/2009 12:42:31 AM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
1/9/2009 12:42:31 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BHDrvx86 ccHP eeCtrl Fips IDSxpx86 intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss SRTSP SRTSPX SYMTDI Tcpip
1/9/2009 3:50:49 AM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
1/9/2009 4:38:32 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
1/9/2009 5:12:41 AM, error: Service Control Manager [7031] - The DCOM Server Process Launcher service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Reboot the machine.
1/9/2009 9:07:37 AM, error: Server [2505] - The server could not bind to the transport \Device\NetbiosSmb because another computer on the network has the same name. The server could not start.

==== End Of File ===========================





Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:29:58 AM, on 1/9/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18241)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\PixArt\PAC207\Monitor.exe
C:\Updater.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Linksys\WUSB100\WUSB100.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Norton Internet Security\Engine\16.2.0.7\ccSvcHst.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Norton Internet Security\Engine\16.2.0.7\ccSvcHst.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.2.0.7\coIEPlg.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [PAC207_Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iRiver Updater] \Updater.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Wireless Network Monitor.lnk = C:\Program Files\Linksys\WUSB100\WUSB100.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab3.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase6662.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1227332704390
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1227383337468
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD5/JSCDL/jre...ows-i586-jc.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files\Norton Internet Security\Engine\16.2.0.7\coIEPlg.dll
O20 - AppInit_DLLs: eyecaq.dll
O23 - Service: Norton2009 Reset (.norton2009Reset) - Unknown owner - C:\Program Files\Norton2009Reset.exe
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\16.2.0.7\ccSvcHst.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe

--
End of file - 8911 bytes

Edited by boricua187, 09 January 2009 - 09:33 AM.


BC AdBot (Login to Remove)

 


#2 Hoov

Hoov

  • Malware Response Team
  • 3,519 posts
  • OFFLINE
  •  
  • Location:Mikado Michigan
  • Local time:06:53 PM

Posted 22 January 2009 - 04:44 PM

Howdy, my name is Hoov, and I will be helping you with your dilemma. I appologize for the delay in getting you help.

Please make sure you watch this thread for responses. If you click the options tab at the top of your first post, you can select to track this thread.

Here is what I am asking you to do during the repair of your computer

*Tell me everything that you have done, if anything, to try and fix this problem.

*Please only use 1 forum to help clear up your problem. Posting on more than 1 and following instructions from more than 1 forum will cause those helping you to pull out thier hair.

*Follow my instructions - If you can't for some reason, or if you don't understand something, please tell me. If you deviate from my instructions, tell me, it may make a difference on where we go. Don't install anything, even other programs that have nothing to do with security or malware, it could cause things to change, and I would never know it.

*Have faith. I will do all I can to get your computer working, and if I can't - someone else here will know something else to try.

*Stick with me to the end. My aim is to fix your problems, and give you the tools and knowledge to keep this from happening again.

Now onto trying to fix your computer.

Run an online virus scan called Kaspersky from HERE.1. At the main page. Press on "Accept". After reading the contents.
2. At the next window Select Update. Allow the Database to update.
Note: If prompted to run or update your Java, then follow the prompts to do so. Kaspersky requires Java to run.
3. Once the Database has finished, under the Scan icon Select My Computer to start the scan. The scan may take a few minutes to complete.
4. Select Scan Report.
5. If any threats were found they will appear in the report
6. Select "Save error report as"
Then in the file name just type in kaspersky
Under "save as type" select text .txt
Save it to your Desktop.

Copy and post the results of the Kaspersky Online scan. If no threats were found then report that as well.
Please perform an AVG AS Online Malware Scan
  • When a dialog box appears asking you if you would like to download and install the ewido anti-spyware online scanner.
    Please click Yes to allow the download.
  • Click on Start Scan.
  • If any infections are found, Click on Remove Infections.

Visiting From SpywareHammer.com and DonHoover.net

Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families

Posted Image

#3 Hoov

Hoov

  • Malware Response Team
  • 3,519 posts
  • OFFLINE
  •  
  • Location:Mikado Michigan
  • Local time:06:53 PM

Posted 27 January 2009 - 12:33 PM

if you still need help, please post something here to let me know you are still interested. If I don't hear anything in the next couple days, then this thread will be closed.
Visiting From SpywareHammer.com and DonHoover.net

Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families

Posted Image

#4 Hoov

Hoov

  • Malware Response Team
  • 3,519 posts
  • OFFLINE
  •  
  • Location:Mikado Michigan
  • Local time:06:53 PM

Posted 03 February 2009 - 08:22 PM

This thread is closed due to inactivity.
If you need this topic reopened, please send me or another moderator a PM. This applies to the thread originator only, all others start a new thread.
Visiting From SpywareHammer.com and DonHoover.net

Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families

Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users