Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

2010 anti virus


  • This topic is locked This topic is locked
2 replies to this topic

#1 sandstev99

sandstev99

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:05:01 AM

Posted 30 August 2009 - 02:35 PM

I can only boot up in safe mode w/networking
I can do no scans for spyware

DDS (Ver_09-07-30.01) - NTFSx86 NETWORK
Run by Administrator at 11:45:19.82 on Sun 08/30/2009
Internet Explorer: 8.0.6001.18702
AV: Symantec AntiVirus Corporate Edition *On-access scanning enabled* (Updated) {FB06448E-52B8-493A-90F3-E43226D3305C}

============== Running Processes ===============


============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/
mDefault_Search_URL = hxxp://www.google.com/ie
mSearch Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mSearchAssistant = hxxp://www.google.com
BHO: c:\windows\system32\tajf83ikdmf.dll: {bf56a325-23f2-42ad-f4e4-00aac39caa53} - c:\windows\system32\tajf83ikdmf.dll
TB: iWin Toolbar: {ce0c2586-da36-452b-acdb-320d9bcb19bf} - c:\program files\iwin\tbiWi0.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [InstallIQUpdater] "c:\program files\w3i\installiqupdater\InstallIQUpdater.exe" /silent /autorun
uRun: [Windows System Recover!] c:\docume~1\admini~1\locals~1\temp\spoolsv.exe
mRun: [HTpatch] c:\windows\htpatch.exe
mRun: [SiS Tray]
mRun: [SiS KHooker] c:\windows\system32\khooker.exe
mRun: [AGRSMMSG] AGRSMMSG.exe
mRun: [CTHelper] CTHELPER.EXE
mRun: [ezShieldProtector for Px] c:\windows\system32\ezSP_Px.exe
mRun: [ZTgServerSwitch] c:\program files\support.com\client\lserver\server.vbs
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"
mRun: [vptray] c:\progra~1\symant~1\VPTray.exe
mRun: [SecurityScannerFull] c:\program files\security scanner full\SecurityScannerFull
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [Windows Defender] "c:\program files\windows defender\MSASCui.exe" -hide
mRun: [winupdate.exe] c:\windows\system32\winupdate.exe
mRun: [braviax] braviax.exe
mRun: [Ycafuqepiconihu] rundll32.exe "c:\windows\ovexusoyaqoxisi.dll",e
mRun: [PC Antispyware 2010] "c:\program files\pc_antispyware2010\PC_Antispyware2010.exe" /hide
dRun: [autochk] rundll32.exe c:\docume~1\locals~1\protect.dll,_IWMPEvents@16
dRun: [TPR] c:\program files\tpr\tpr.exe
dRun: [Monopod] c:\windows\temp\a.exe
dRun: [AntiSpyware Service] c:\windows\temp\gjfbfbwq.exe
dRun: [braviax] c:\windows\system32\braviax.exe
dRunOnce: [SetDefaultMidi] MIDIDEF.EXE
StartupFolder: c:\docume~1\admini~1\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 2.3\program\quickstart.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpphot~1.lnk - c:\program files\hp\digital imaging\bin\hpqthb08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\setpoint\SetPoint.exe
uPolicies-explorer: NoFolderOptions = 1 (0x1)
uPolicies-system: DisableRegistryTools = 1 (0x1)
mPolicies-explorer: NoSetActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
dPolicies-explorer: NoSetActiveDesktop = 1 (0x1)
dPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
dPolicies-system: NoDispBackgroundPage = 1
dPolicies-system: NoDispSettingsPage = 1
dPolicies-system: NoDispAppearancePage = 1
dPolicies-system: DisableTaskMgr = 1 (0x1)
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
Trusted Zone: antimalwareguard.com
DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase1140.cab
DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} - hxxp://www.worldwinner.com/games/shared/wwlaunch.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {BA94245D-2AA0-4953-9D9F-B0EE4CC02C43} - hxxp://www.worldwinner.com/games/v42/tilecity/tilecity.cab
DPF: {C82BB209-F528-46F9-96D5-69DEF7260916} - hxxp://www.worldwinner.com/games/v45/mysterypi/mysterypi.cab
DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
TCP: {08ADA40F-B5C5-412E-AB8C-6F0CAE4E45B2} = 204.130.255.3,64.142.32.71
Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - c:\program files\google\google toolbar\component\fastsearch_A8904FB862BD9564.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: NavLogon - c:\windows\system32\NavLogon.dll
Notify: nhsidkha -  8{h{z
AppInit_DLLs: cru629.dat
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
STS: c:\windows\system32\tajf83ikdmf.dll: {bf56a325-23f2-42ad-f4e4-00aac39caa53} - c:\windows\system32\tajf83ikdmf.dll
SEH: Microsoft AntiMalware ShellExecuteHook: {091eb208-39dd-417d-a5dd-7e2c2d8fb9cb} - c:\progra~1\wifd1f~1\MpShHook.dll
LSA: Notification Packages = scecli TIntiasy.dll

============= SERVICES / DRIVERS ===============

S2 ccEvtMgr;Symantec Event Manager;c:\program files\common files\symantec shared\ccEvtMgr.exe [2005-4-8 185968]
S2 ccSetMgr;Symantec Settings Manager;c:\program files\common files\symantec shared\ccSetMgr.exe [2005-4-8 161392]
S2 IntuitUpdateService;Intuit Update Service;c:\program files\common files\intuit\update service\IntuitUpdateService.exe [2008-10-10 13088]
S2 iWinTrusted;iWinTrusted;c:\program files\iwin games\iWinTrusted.exe [2009-7-9 78104]
S2 Symantec AntiVirus;Symantec AntiVirus;c:\program files\symantec antivirus\Rtvscan.exe [2005-4-17 1706176]
S2 WinDefend;Windows Defender;c:\program files\windows defender\MsMpEng.exe [2006-11-3 13592]
S3 Boonty Games;Boonty Games;c:\program files\common files\boonty shared\service\Boonty.exe [2009-7-1 212992]
S3 ccPwdSvc;Symantec Password Validation;c:\program files\common files\symantec shared\ccPwdSvc.exe [2005-4-8 83568]
S3 SavRoam;SAVRoam;c:\program files\symantec antivirus\SavRoam.exe [2005-4-17 124608]

=============== Created Last 30 ================

2009-08-29 18:20 <DIR> --d----- c:\docume~1\admini~1\applic~1\W3i
2009-08-29 17:57 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2009-08-29 17:57 <DIR> --d----- c:\program files\Spybot - Search & Destroy
2009-08-29 12:43 6,144 a------- c:\windows\system32\cru629.dat
2009-08-29 10:12 <DIR> --dsh--- c:\documents and settings\administrator\IECompatCache
2009-08-29 10:11 <DIR> --dsh--- c:\documents and settings\administrator\PrivacIE
2009-08-28 19:03 <DIR> --d----- c:\program files\Microsoft Windows OneCare Live
2009-08-28 15:24 18,837 a------- c:\windows\system32\ocuve.dll
2009-08-28 15:24 15,347 a------- c:\windows\busizyza.exe
2009-08-28 15:24 14,793 a------- c:\windows\ykehigej.vbs
2009-08-28 15:24 19,549 a------- c:\windows\lazapy.dat
2009-08-28 15:24 18,222 a------- c:\windows\system32\esuvy.com
2009-08-28 15:24 17,852 a------- c:\windows\system32\rutuki.bin
2009-08-28 15:24 17,261 a------- c:\windows\system32\yqovys.pif
2009-08-28 15:24 16,964 a------- c:\windows\neximacaf.scr
2009-08-28 15:24 16,426 a------- c:\windows\lucytehogy.com
2009-08-28 15:24 14,916 a------- c:\windows\system32\ozysik.bat
2009-08-28 15:24 14,708 a------- c:\program files\common files\lunovihocu.bin
2009-08-28 15:24 13,732 a------- c:\program files\common files\vuxyherol.sys
2009-08-28 15:24 10,988 a------- c:\program files\common files\kabanano.dll
2009-08-28 15:23 <DIR> --d----- c:\program files\PC_Antispyware2010
2009-08-28 14:46 <DIR> --d----- c:\docume~1\admini~1\applic~1\Malwarebytes
2009-08-28 14:42 12,288 a------- c:\windows\braviax.exe
2009-08-28 14:42 6,144 a------- c:\windows\cru629.dat
2009-08-28 14:14 <DIR> -cdsh--- c:\program files\common files\WindowsLiveInstaller
2009-08-28 09:48 120 a------- c:\windows\Kgiwiwa.dat
2009-08-28 09:47 18,723 a------- c:\windows\gejofypin.ban
2009-08-28 09:47 18,029 a------- c:\windows\edusehyk.exe
2009-08-28 09:47 15,201 a------- c:\windows\faxum.exe
2009-08-28 09:47 14,213 a------- c:\windows\yhederynin.lib
2009-08-28 09:47 14,170 a------- c:\windows\system32\ukujasa.sys
2009-08-28 09:47 11,625 a------- c:\program files\common files\poxequb.reg
2009-08-28 09:47 10,347 a------- c:\windows\oxis._dl
2009-08-28 09:47 348,674 a------- c:\windows\system32\_scui.cpl
2009-08-28 03:30 46 a------- C:\p2hhr.bat
2009-08-28 03:30 14,336 a------- C:\osps.exe
2009-08-28 03:29 237,568 a------- C:\blyuwrjl.exe
2009-08-28 03:29 228,864 a------- C:\hpbyv.exe
2009-08-28 03:29 153,600 a------- C:\fyblb.exe
2009-08-28 03:29 166,912 a------- C:\emxtqjit.exe
2009-08-28 03:29 156,160 a------- C:\pvewnn.exe
2009-08-28 03:29 190,700 a------- c:\windows\system32\wisdstr.exe
2009-08-28 03:29 30,208 ac------ c:\windows\system32\dllcache\beep.sys
2009-08-28 03:29 12,288 a------- c:\windows\system32\braviax.exe
2009-08-28 03:29 223,744 a------- c:\windows\system32\~.exe
2009-08-28 03:14 92 a------- c:\windows\system32\sonhelp.htm
2009-08-28 03:01 20,992 a------- c:\windows\system32\winhelper.dll
2009-08-28 03:01 186,880 a------- c:\windows\system32\winupdate.exe
2009-08-28 03:01 15,000 a------- c:\windows\system32\tajf83ikdmf.dll
2009-08-27 10:46 38,160 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-08-27 10:46 19,096 a------- c:\windows\system32\drivers\mbam.sys
2009-08-27 10:46 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-08-27 10:18 71 a------- c:\windows\system32\cmpwrap.dat
2009-08-27 09:11 4 a------- c:\windows\system32\bincd32.dat
2009-08-27 03:02 1,382 a------- c:\windows\system32\onhelp.htm
2009-08-27 02:49 36 a------- c:\windows\system32\sysnet.dat
2009-08-27 02:49 311,296 a------- c:\windows\svchast.exe
2009-08-27 02:49 64 a------- c:\windows\ppp4.dat
2009-08-27 02:49 9 a------- c:\windows\system32\bennuar.old
2009-08-27 02:49 3 a------- c:\windows\ppp3.dat
2009-08-27 02:48 <DIR> --d----- c:\program files\Windows Antivirus Pro
2009-08-26 09:49 <DIR> --d----- c:\program files\common files\TPRUninstall
2009-08-26 08:30 1,568,800 a------- c:\windows\system32\mrkln.exe
2009-08-26 08:29 <DIR> --d----- c:\program files\TPR
2009-08-17 09:27 <DIR> --dsh--- c:\documents and settings\administrator\IETldCache
2009-08-17 09:27 <DIR> --d----- c:\documents and settings\administrator\WINDOWS
2009-08-17 09:27 <DIR> --d----- c:\documents and settings\Administrator
2009-08-17 08:11 <DIR> a-d----- c:\windows\system32\images
2009-08-17 00:39 4 a------- c:\windows\system32\ESQULzxspectrum
2009-08-11 14:30 128,512 -c------ c:\windows\system32\dllcache\dhtmled.ocx
2009-08-11 14:30 1,315,328 -c------ c:\windows\system32\dllcache\msoe.dll
2009-08-05 02:01 204,800 -c------ c:\windows\system32\dllcache\mswebdvd.dll
2009-08-04 23:06 54,156 a---h--- c:\windows\QTFont.qfn
2009-08-04 23:06 1,409 a------- c:\windows\QTFont.for
2009-08-04 21:50 <DIR> --d----- c:\program files\common files\xing shared
2009-07-31 18:20 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Trymedia

==================== Find3M ====================

2009-08-29 14:12 303,104 a------- c:\windows\system32\wscript.exe
2009-08-29 14:12 270,336 a------- c:\windows\system32\wbem\wmiapsrv.exe
2009-08-29 14:11 201,728 a------- c:\windows\system32\spoolsv.exe
2009-08-29 14:10 221,184 a------- c:\windows\system32\HPZipm12.exe
2009-08-29 14:10 188,416 a------- c:\windows\system32\ezSP_Px.exe
2009-08-29 14:09 270,336 a------- c:\windows\system32\Crypserv.exe
2009-08-29 14:08 630,784 a------- c:\windows\system32\ati2evxx.exe
2009-08-29 12:28 176,128 a------- c:\windows\htpatch.exe
2009-08-28 18:56 427,520 a------- c:\windows\winhlp32.exe
2009-08-28 18:54 168,448 a------- c:\windows\system32\sort.exe
2009-08-28 18:53 156,160 a------- c:\windows\system32\mstinit.exe
2009-08-28 18:52 230,912 a------- c:\windows\system32\diantz.exe
2009-08-28 18:51 168,960 a------- c:\windows\system32\at.exe
2009-08-28 18:51 163,328 a------- c:\windows\system32\arp.exe
2009-08-28 18:51 242,176 a------- c:\windows\system32\ahui.exe
2009-08-28 18:51 188,416 a------- c:\windows\system32\alg.exe
2009-08-28 18:51 202,240 a------- c:\windows\system32\agrsmdel.exe
2009-08-28 18:51 147,968 a------- c:\windows\system32\actmovie.exe
2009-08-28 18:48 184,320 a------- c:\windows\slrundll.exe
2009-08-28 18:46 323,584 a------- c:\windows\readreg.exe
2009-08-28 18:46 290,304 a------- c:\windows\regedit.exe
2009-08-28 18:46 331,776 a------- c:\windows\psconv.exe
2009-08-28 18:46 212,992 a------- c:\windows\notepad.exe
2009-08-28 18:46 208,896 a------- c:\windows\mididef.exe
2009-08-28 18:45 450,560 a------- c:\windows\IsUninst.exe
2009-08-28 18:44 154,624 a------- c:\windows\hh.exe
2009-08-28 18:43 309,760 a------- c:\windows\Ckconfig.exe
2009-08-28 18:43 155,648 a------- c:\windows\Ckrfresh.exe
2009-08-28 10:56 202,240 a------- c:\windows\agrsmdel.exe
2009-08-28 10:24 176,128 a------- c:\windows\system32\wupdmgr.exe
2009-08-28 10:24 152,064 a------- c:\windows\system32\control.exe
2009-08-28 10:24 233,472 a------- c:\windows\unvise32qt.exe
2009-08-28 09:47 19,512 a------- c:\program files\common files\mafinyvo.inf
2009-08-28 04:03 179,712 a------- c:\windows\system32\rcimlby.exe
2009-08-28 04:02 1,177,600 a------- c:\windows\explorer.exe
2009-08-28 04:02 491,008 a------- c:\windows\system32\tourstart.exe
2009-08-28 04:02 287,232 a------- c:\windows\system32\mobsync.exe
2009-08-28 04:02 212,992 a------- c:\windows\system32\notepad.exe
2009-08-28 04:02 532,992 a------- c:\windows\system32\cmd.exe
2009-08-28 04:02 359,424 a------- c:\windows\system32\osk.exe
2009-08-28 04:02 216,576 a------- c:\windows\system32\magnify.exe
2009-08-28 04:02 197,632 a------- c:\windows\system32\narrator.exe
2009-08-28 04:02 194,048 a------- c:\windows\system32\utilman.exe
2009-08-28 03:29 30,208 a------- c:\windows\system32\drivers\beep.sys
2009-08-12 03:01 0 a------- c:\windows\system32\drivers\vsfocecoryteei.sys
2009-08-12 03:01 0 a------- c:\windows\system32\drivers\fngfzqbmaebgnmx.sys
2009-08-05 02:01 204,800 a------- c:\windows\system32\mswebdvd.dll
2009-07-21 10:37 39,936 a------- c:\windows\system32\vsfocemcnsnliy.dll
2009-07-21 07:29 16,244 a------- c:\windows\lejuxut.scr
2009-07-21 07:29 13,940 a------- c:\windows\system32\eqifa.bin
2009-07-21 07:29 18,387 a------- c:\program files\common files\ramyvohu.exe
2009-07-21 07:29 11,024 a------- c:\program files\common files\ahenogi.vbs
2009-07-21 07:29 10,335 a------- c:\program files\common files\xohur.db
2009-07-21 07:29 15,142 a------- c:\windows\fimefyjel.scr
2009-07-21 07:29 14,124 a------- c:\windows\johemufak.vbs
2009-07-21 07:29 12,554 a------- c:\windows\oronyweti.bat
2009-07-17 12:01 58,880 a------- c:\windows\system32\atl.dll
2009-07-13 23:43 286,208 -------- c:\windows\system32\wmpdxm.dll
2009-07-03 10:09 915,456 a------- c:\windows\system32\wininet.dll
2009-06-23 09:13 4,096 a------- c:\windows\d3dx.dat
2009-06-16 07:36 119,808 a------- c:\windows\system32\t2embed.dll
2009-06-16 07:36 81,920 a------- c:\windows\system32\fontsub.dll
2009-06-10 09:19 2,066,432 a------- c:\windows\system32\mstscax.dll
2009-06-10 07:13 84,992 a------- c:\windows\system32\avifil32.dll
2009-06-09 23:14 132,096 a------- c:\windows\system32\wkssvc.dll
2009-06-04 11:40 109,164 a------- c:\windows\hpoins08.dat
2009-06-03 12:09 1,291,264 a------- c:\windows\system32\quartz.dll

==
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-07-30.01)


Motherboard: ASUSTeK Computer INC. | | P4S533VL
Processor: Intel® Pentium® 4 CPU 2.40GHz | PGA 478 | 2394/133mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (NTFS) - 204 GiB total, 188.455 GiB free.
D: is FIXED (NTFS) - 29 GiB total, 29.227 GiB free.
F: is CDROM ()
G: is CDROM (CDFS)

==== Disabled Device Manager Items =============

==== System Restore Points ===================

No restore point in system.

==== Installed Programs ======================


AcQuest 1065 Solution 2008
Adobe Acrobat 5.0
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 8.1.1
Adobe Shockwave Player 11.5
Agere Systems AC'97 Modem
AiO_Scan_CDA
AiOSoftwareNPI
AnswerWorks 5.0 English Runtime
ATI Display Driver
BoontyBox 2.1
BufferChm
CP_AtenaShokunin1Config
CP_CalendarTemplates1
cp_OnlineProjectsConfig
CP_Package_Basic1
CP_Package_Variety1
CP_Package_Variety2
CP_Package_Variety3
CP_Panorama1Config
cp_PosterPrintConfig
Creative Driver
Critical Update for Windows Media Player 11 (KB959772)
CueTour
Destinations
DeviceFunctionQFolder
DeviceManagementQFolder
DocProc
DocumentViewer
DocumentViewerQFolder
eSupportQFolder
F300
F300_Help
F300Trb
Fax_CDA
FullDPAppQFolder
Google Toolbar for Internet Explorer
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
HP Document Viewer 6.1
HP Imaging Device Functions 6.1
HP Photosmart Premier Software 6.1
HP Product Assistant
HP PSC & OfficeJet 6.1.A
HP Solution Center and Imaging Support Tools 6.1
HP Update
HPProductAssistant
InstallIQ Updater
InstantShareDevices
ISScript
iWin Games (remove only)
iWin Toolbar
Java™ 6 Update 14
LiveUpdate 2.6 (Symantec Corporation)
Logitech SetPoint
Magicians Handbook (remove only)
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Windows Servers Base Operating System MOM 2005 MP
MSXML 4.0 SP2 (KB954430)
Music Visualizer Library 1.4.00
National Geographic Presents Herod's Lost Tomb (remove only)
NewCopy_CDA
OpenMG Limited Patch 3.1-02-10-22-01
OpenMG Limited Patch 3.1-02-10-23-01
OpenMG Secure Module 3.1
OpenOffice.org 2.3
PanoStandAlone
PartitionMagic
PC Antispyware 2010
PhotoGallery
PictureGear Studio 1.0
Playalot Games
PowerQuest PartitionMagic 8.0
ProductContextNPI
QuickTime
R-Studio 4.6
RandMap
Readme
RealPlayer
Registry Repair v1.0
Scan
ScannerCopy
Security Scanner Full
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB963027)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Shockwave
SiS Compatible VGA V2.09s
SkinsHP1
SolutionCenter
Sonic_PrimoSDK
SonicStage
Sony Certificate PCH
Spybot - Search & Destroy
Status
Symantec AntiVirus
The Count Of Monte Cristo (remove only)
The Secret of Margrave Manor (remove only)
Toolbox
TrayApp
TurboTax 2008
TurboTax 2008 WinPerFedFormset
TurboTax 2008 WinPerProgramHelp
TurboTax 2008 WinPerReleaseEngine
TurboTax 2008 WinPerTaxSupport
TurboTax 2008 WinPerUserEducation
TurboTax 2008 woriper
TurboTax 2008 wrapper
Unload
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB973815)
VAIO Action Setup
VAIO Media 2.0
VAIO Media Installer 2.0
VAIO Media Platform 2.0
VAIO Support
WebFldrs XP
WebReg
WildTangent Games
Windows Antivirus Pro
Windows Defender
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Live installer
Windows Live OneCare safety scanner
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
XML Paper Specification Shared Components Pack 1.0

==== Event Viewer Messages From Past Week ========

8/29/2009 5:19:37 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
8/28/2009 9:00:25 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: DMICall eeCtrl Fips intelppm NetworkX SAVRT SAVRTPEL
8/28/2009 8:52:46 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
8/28/2009 4:11:37 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Beep eeCtrl
8/28/2009 4:11:22 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Symantec AntiVirus service to connect.
8/28/2009 4:11:22 PM, error: Service Control Manager [7000] - The Windows Defender service failed to start due to the following error: Access is denied.
8/28/2009 4:09:40 PM, error: ati2mtag [45062] - CRT invalid display type
8/28/2009 3:37:31 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.63.2059.0).
8/28/2009 3:19:16 PM, error: Service Control Manager [7031] - The Windows Defender service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 15000 milliseconds: Restart the service.
8/28/2009 2:52:25 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Application Layer Gateway Service service to connect.
8/28/2009 2:52:25 PM, error: Service Control Manager [7000] - The Application Layer Gateway Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
8/28/2009 2:52:24 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Beep
8/28/2009 2:51:11 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
8/28/2009 2:44:51 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DMICall eeCtrl Fips intelppm IPSec MRxSmb NetBIOS NetBT NetworkX RasAcd Rdbss SAVRT SAVRTPEL SYMTDI Tcpip
8/28/2009 2:44:51 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Windows Defender service to connect.
8/28/2009 2:44:51 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD Networking Support Environment service which failed to start because of the following error: A device attached to the system is not functioning.
8/28/2009 2:44:51 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
8/28/2009 2:44:51 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
8/28/2009 2:44:51 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
8/28/2009 2:44:51 PM, error: Service Control Manager [7000] - The Windows Defender service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
8/28/2009 2:44:05 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
8/28/2009 11:13:23 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0xd0000156: Update for Windows XP (KB968389).
8/28/2009 1:49:01 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070005: Update for Windows XP (KB968389).
8/27/2009 9:25:45 AM, information: Windows File Protection [64007] - The protected system file eventlog.dll could not be verified as valid because the file was in use. Use the SFC utility to verify the integrity of the file at a later time.
8/27/2009 10:58:33 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.63.2033.0).

==== End Of File ===========================
=========== FINISH: 11:47:22.07 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 thcbytes

thcbytes

  • Malware Response Team
  • 14,790 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:01 AM

Posted 13 September 2009 - 06:45 PM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.

Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.

If you have already posted a DDS log, please do so again, as your situation may have changed.
Use the 'Add Reply' and add the new log to this thread.


Thanks and again sorry for the delay.

We need to see some information about what is happening in your machine. Please perform the following scan:
  • Download DDS by sUBs from one of the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explaination about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE
Proud member - Unified Network of Instructors and Trained Eliminators
Posted Image

I do not accept personal donations for assistance provided. I would ask that you instead consider donating the greatest gift - Organ Donation. Your organs are of no use to you when your gone. You will save a life that would otherwise be lost!

http://donatelife.net/register-now/

#3 Billy O'Neal

Billy O'Neal

    Visual C++ STL Maintainer


  • Malware Response Team
  • 12,304 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Redmond, Washington
  • Local time:03:01 AM

Posted 20 September 2009 - 10:14 PM

Due to lack of feedback, this topic has been closed. Everyone else, please begin a new topic.
Twitter - My statements do not establish the official position of Microsoft Corporation, and are my own personal opinion. (But you already knew that, right?)
Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users