Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Dreaded Boot.Tidserv-NEED HELP-Here is the Hijack this log


  • This topic is locked This topic is locked
4 replies to this topic

#1 goodle

goodle

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 12 September 2011 - 02:49 PM

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:47:10 PM, on 9/12/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\csrss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\IObit\Game Booster\gbtray.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\RTHDCPL.EXE
D:\Program Files\Hi-Rez Studios\HiPatchService.exe
D:\WINDOWS\system32\RunDLL32.exe
D:\Program Files\IObit\IObit Security 360\IS360srv.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
D:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
D:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
D:\WINDOWS\system32\HPZipm12.exe
D:\WINDOWS\system32\PnkBstrA.exe
D:\WINDOWS\system32\PnkBstrB.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\alg.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\WINDOWS\system32\msiexec.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
D:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: IObit Toolbar - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - (no file)
R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - D:\Program Files\uTorrentBar\tbuTo1.dll
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - D:\Program Files\ConduitEngine\ConduitEngin0.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - D:\Program Files\Norton AntiVirus\Engine\18.6.0.29\IPS\IPSBHO.DLL
O2 - BHO: WindowShopper - {74F475FA-6C75-43BD-AAB9-ECDA6184F600} - D:\Program Files\Superfish\Window Shopper\SuperfishIEAddon.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - D:\Program Files\uTorrentBar\tbuTo1.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - D:\Program Files\uTorrentBar\tbuTo1.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - D:\Program Files\ConduitEngine\ConduitEngin0.dll
O3 - Toolbar: IObit Toolbar - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] "RTHDCPL.EXE"
O4 - HKLM\..\Run: [KernelFaultCheck] "%systemroot%\system32\dumprep" 0 -k
O4 - HKLM\..\Run: [NvMediaCenter] "RunDLL32.exe" NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] "D:\Program Files\NVIDIA Corporation\nView\nwiz.exe" /installquiet
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpeedUpMyPC] "D:\Program Files\Uniblue\SpeedUpMyPC\launcher.exe" -d 20000
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: Window Shopper - {A69A551A-1AAE-4B67-8C2E-52F8B8A19504} - D:\Program Files\Superfish\Window Shopper\SuperfishIEAddon.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: inetwork - inetsw32.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\system32\browseui.dll
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - D:\Program Files\Hi-Rez Studios\HiPatchService.exe
O23 - Service: iPod Service - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IS360service - IObit - D:\Program Files\IObit\IObit Security 360\IS360srv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - D:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - D:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Pml Driver HPZ12 - HP - D:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - D:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - D:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - D:\Program Files\PC Tools Security\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - D:\Program Files\PC Tools Security\pctsSvc.exe

--
End of file - 8023 bytes

BC AdBot (Login to Remove)

 


#2 Noviciate

Noviciate

  • Malware Response Team
  • 5,277 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Numpty HQ
  • Local time:09:59 PM

Posted 12 September 2011 - 03:07 PM

Good evening. :)

As HijackThis has not been seriously updated by Trend Micro in some time, it is now no longer considered to be an effective tool for malware removal. You will need to go here, follow steps 6, 7 and 8 and post accordingly into this thread.

So long, and thanks for all the fish.

 

 


#3 goodle

goodle
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 12 September 2011 - 03:12 PM

DDS.TXT

More stuff to help you guys diagnose me
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 6.0.2900.5512
Run by Shawn at 21:29:31 on 2011-09-11
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3070.1926 [GMT -7:00]
.
AV: Norton AntiVirus *Enabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
.
============== Running Processes ===============
.
D:\WINDOWS\system32\svchost -k DcomLaunch
D:\WINDOWS\system32\svchost -k rpcss
D:\WINDOWS\System32\svchost.exe -k netsvcs
D:\WINDOWS\system32\svchost.exe -k NetworkService
D:\WINDOWS\System32\svchost.exe -k netsvcs
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Uniblue\SpeedUpMyPC\spmonitor.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe
D:\Program Files\IObit\Game Booster\gbtray.exe
D:\Program Files\Application Updater\ApplicationUpdater.exe
D:\Program Files\Hi-Rez Studios\HiPatchService.exe
D:\Program Files\IObit\IObit Security 360\IS360srv.exe
D:\WINDOWS\System32\svchost.exe -k itnetsvc
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
D:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
D:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
D:\WINDOWS\system32\HPZipm12.exe
D:\WINDOWS\system32\PnkBstrA.exe
D:\WINDOWS\system32\PnkBstrB.exe
D:\WINDOWS\system32\svchost.exe -k imgsvc
D:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
D:\WINDOWS\System32\alg.exe
D:\WINDOWS\system32\svchost.exe -k LocalService
D:\WINDOWS\RTHDCPL.EXE
D:\WINDOWS\System32\svchost.exe -k HTTPFilter
D:\WINDOWS\system32\RunDLL32.exe
D:\WINDOWS\system32\wuauclt.exe
D:\WINDOWS\System32\svchost.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Program Files\Uniblue\SpeedUpMyPC\sump.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Shawn\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\WINDOWS\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage
uURLSearchHooks: IObit Toolbar: {0bda0769-fd72-49f4-9266-e1fb004f4d8f} - d:\program files\iobit toolbar\ie\4.6\iobitToolbarIE.dll
uURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - d:\program files\utorrentbar\tbuTo1.dll
uURLSearchHooks: H - No File
BHO: IObit Toolbar: {0bda0769-fd72-49f4-9266-e1fb004f4d8f} - d:\program files\iobit toolbar\ie\4.6\iobitToolbarIE.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - d:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - d:\program files\conduitengine\ConduitEngin0.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - d:\program files\norton antivirus\engine\18.6.0.29\ips\IPSBHO.DLL
BHO: Window Shopper: {74f475fa-6c75-43bd-aab9-ecda6184f600} - d:\program files\superfish\window shopper\SuperfishIEAddon.dll
BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - d:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - d:\program files\utorrentbar\tbuTo1.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - d:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - d:\program files\utorrentbar\tbuTo1.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - d:\program files\conduitengine\ConduitEngin0.dll
TB: IObit Toolbar: {0bda0769-fd72-49f4-9266-e1fb004f4d8f} - d:\program files\iobit toolbar\ie\4.6\iobitToolbarIE.dll
uRun: [ctfmon.exe] d:\windows\system32\ctfmon.exe
uRun: [SpeedUpMyPC] "d:\program files\uniblue\speedupmypc\launcher.exe" -d 20000
mRun: [RTHDCPL] "RTHDCPL.EXE"
mRun: [KernelFaultCheck] "%systemroot%\system32\dumprep" 0 -k
mRun: [NvMediaCenter] "RunDLL32.exe" NvMCTray.dll,NvTaskbarInit -login
mRun: [NvCplDaemon] "RUNDLL32.EXE" d:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] "d:\program files\nvidia corporation\nview\nwiz.exe" /installquiet
mRun: [<NO NAME>]
IE: E&xport to Microsoft Excel - d:\progra~1\micros~2\office10\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - d:\program files\messenger\msmsgs.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - d:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\progra~1\mi1933~1\office12\REFIEBAR.DLL
IE: {A69A551A-1AAE-4B67-8C2E-52F8B8A19504} - {A69A551A-1AAE-4B67-8C2E-52F8B8A19504} - d:\program files\superfish\window shopper\SuperfishIEAddon.dll
LSP: d:\program files\common files\pc tools\lsp\PCTLsp.dll
TCP: DhcpNameServer = 192.168.1.1 68.238.64.12
TCP: Interfaces\{9325E929-F2A7-4879-B75A-211DDB57AD28} : DhcpNameServer = 192.168.1.1 68.238.64.12
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - d:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - d:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: inetsw32 - inetsw32.dll
Notify: inetwork - inetsw32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 d347bus;d347bus;d:\windows\system32\drivers\d347bus.sys [2010-4-11 155136]
R0 d347prt;d347prt;d:\windows\system32\drivers\d347prt.sys [2010-4-11 5248]
R0 PCTCore;PCTools KDS;d:\windows\system32\drivers\PCTCore.sys [2011-9-10 239168]
R0 pctDS;PC Tools Data Store;d:\windows\system32\drivers\pctDS.sys [2011-9-10 338880]
R0 pctEFA;PC Tools Extended File Attributes;d:\windows\system32\drivers\pctEFA.sys [2011-9-10 656320]
R0 SmartDefragDriver;SmartDefragDriver;d:\windows\system32\drivers\SmartDefragDriver.sys [2011-1-25 14776]
R0 SymDS;Symantec Data Store;d:\windows\system32\drivers\nav\1206000.01d\symds.sys [2011-9-9 340088]
R0 SymEFA;Symantec Extended File Attributes;d:\windows\system32\drivers\nav\1206000.01d\symefa.sys [2011-9-9 744568]
R1 BHDrvx86;BHDrvx86;d:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.1.0.37\definitions\bashdefs\20110901.001\BHDrvx86.sys [2011-9-2 815736]
R1 SBRE;SBRE;d:\windows\system32\drivers\SBREDrv.sys [2011-9-7 93360]
R1 SymIRON;Symantec Iron Driver;d:\windows\system32\drivers\nav\1206000.01d\ironx86.sys [2011-9-9 136312]
R2 Application Updater;Application Updater;d:\program files\application updater\ApplicationUpdater.exe [2011-8-17 402328]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;d:\program files\hi-rez studios\HiPatchService.exe [2011-4-21 23680]
R2 IS360service;IS360service;d:\program files\iobit\iobit security 360\is360srv.exe [2011-1-25 312152]
R2 itlperf;Network Location Awarenes;d:\windows\system32\svchost.exe -k itnetsvc [2008-4-13 14336]
R2 MBAMService;MBAMService;d:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-9-10 366640]
R2 NAV;Norton AntiVirus;d:\program files\norton antivirus\engine\18.6.0.29\ccsvchst.exe [2011-9-9 130008]
R2 nvUpdatusService;NVIDIA Update Service Daemon;d:\program files\nvidia corporation\nvidia updatus\daemonu.exe [2011-7-29 2255464]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;d:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2011-9-8 105592]
R3 IDSxpx86;IDSxpx86;d:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.1.0.37\definitions\ipsdefs\20110909.030\IDSXpx86.sys [2011-9-9 356280]
R3 MBAMProtector;MBAMProtector;d:\windows\system32\drivers\mbam.sys [2011-9-10 22712]
R3 NAVENG;NAVENG;d:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.1.0.37\definitions\virusdefs\20110911.002\NAVENG.SYS [2011-9-11 86136]
R3 NAVEX15;NAVEX15;d:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.1.0.37\definitions\virusdefs\20110911.002\NAVEX15.SYS [2011-9-11 1576312]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;d:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 Ambfilt;Ambfilt;d:\windows\system32\drivers\Ambfilt.sys [2010-4-18 1691480]
S3 cpuz130;cpuz130; [x]
S3 GPU-Z;GPU-Z; [x]
S3 sdAuxService;PC Tools Auxiliary Service;d:\program files\pc tools security\pctsAuxs.exe [2011-9-10 366840]
S3 sdCoreService;PC Tools Security Service;d:\program files\pc tools security\pctsSvc.exe [2011-9-10 1150936]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;d:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2011-09-10 12:32:24 656320 ----a-w- d:\windows\system32\drivers\pctEFA.sys
2011-09-10 12:32:24 338880 ----a-w- d:\windows\system32\drivers\pctDS.sys
2011-09-10 12:32:24 251560 ----a-w- d:\windows\system32\drivers\pctgntdi.sys
2011-09-10 12:32:18 239168 ----a-w- d:\windows\system32\drivers\PCTCore.sys
2011-09-10 12:32:18 160448 ----a-w- d:\windows\system32\drivers\PCTAppEvent.sys
2011-09-10 12:32:13 70536 ----a-w- d:\windows\system32\drivers\pctplsg.sys
2011-09-10 12:32:06 -------- d-----w- d:\program files\PC Tools Security
2011-09-10 12:32:06 -------- d-----w- d:\program files\common files\PC Tools
2011-09-10 12:32:06 -------- d-----w- d:\documents and settings\shawn\application data\PC Tools
2011-09-10 12:30:51 -------- d-----w- d:\documents and settings\all users\application data\PC Tools
2011-09-10 12:00:53 41272 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2011-09-10 12:00:49 22712 ----a-w- d:\windows\system32\drivers\mbam.sys
2011-09-10 11:43:55 -------- d-----w- d:\documents and settings\shawn\application data\Uniblue
2011-09-10 11:43:47 -------- dc-h--w- d:\documents and settings\all users\application data\{DE8EABB5-1C85-4410-A68D-79BD8A4518F4}
2011-09-10 11:43:44 -------- d-----w- d:\program files\Uniblue
2011-09-10 11:42:13 -------- d-----w- d:\documents and settings\all users\application data\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
2011-09-10 11:37:20 -------- d-----w- d:\documents and settings\shawn\local settings\application data\PackageAware
2011-09-09 09:55:56 744568 ----a-w- d:\windows\system32\drivers\nav\1206000.01d\symefa.sys
2011-09-09 09:55:56 50168 ----a-w- d:\windows\system32\drivers\nav\1206000.01d\srtspx.sys
2011-09-09 09:55:56 369784 ----a-w- d:\windows\system32\drivers\nav\1206000.01d\symtdi.sys
2011-09-09 09:55:56 340088 ----a-w- d:\windows\system32\drivers\nav\1206000.01d\symds.sys
2011-09-09 09:55:56 331384 ----a-w- d:\windows\system32\drivers\nav\1206000.01d\symtdiv.sys
2011-09-09 09:55:56 296568 ----a-w- d:\windows\system32\drivers\nav\1206000.01d\symnets.sys
2011-09-09 09:55:55 516216 ----a-w- d:\windows\system32\drivers\nav\1206000.01d\srtsp.sys
2011-09-09 09:55:55 136312 ----a-w- d:\windows\system32\drivers\nav\1206000.01d\ironx86.sys
2011-09-09 09:55:33 -------- d-----w- d:\windows\system32\drivers\nav\1206000.01D
2011-09-09 02:54:03 60872 ----a-w- d:\windows\system32\S32EVNT1.DLL
2011-09-09 02:54:03 126584 ----a-w- d:\windows\system32\drivers\SYMEVENT.SYS
2011-09-09 02:54:03 -------- d-----w- d:\program files\Symantec
2011-09-09 02:53:28 -------- d-----w- d:\windows\system32\drivers\NAV
2011-09-09 02:53:26 -------- d-----w- d:\program files\Norton AntiVirus
2011-09-09 02:53:19 -------- d-----w- d:\program files\NortonInstaller
2011-09-09 02:43:22 -------- d-----w- d:\program files\MSSOAP
2011-09-09 02:43:10 -------- d-----w- d:\documents and settings\shawn\local settings\application data\Sunbelt Software
2011-09-08 11:09:25 218112 ----a-w- d:\windows\system32\itnetw32.dll
2011-09-08 11:07:25 35840 ----a-w- d:\windows\system32\inetsw32.dll
2011-09-08 08:37:42 -------- d-----w- d:\program files\Webroot
2011-09-08 08:37:42 -------- d-----w- d:\documents and settings\all users\application data\Webroot
2011-09-08 06:32:46 93360 ----a-w- d:\windows\system32\drivers\SBREDrv.sys
2011-09-08 06:09:06 -------- d-----w- d:\windows\system32\wbem\repository\FS
2011-09-08 06:09:06 -------- d-----w- d:\windows\system32\wbem\Repository
2011-09-08 05:31:49 -------- dc----w- d:\documents and settings\all users\application data\{83C91755-2546-441D-AC40-9A6B4B860800}
2011-09-08 05:31:40 -------- d-----w- d:\program files\Lavasoft
2011-08-30 03:32:09 -------- d-----w- d:\documents and settings\shawn\application data\Search Settings
2011-08-30 03:32:07 -------- d-----w- d:\program files\IObit Toolbar
2011-08-30 03:32:07 -------- d-----w- d:\program files\common files\Spigot
2011-08-30 03:32:07 -------- d-----w- d:\program files\Application Updater
2011-08-29 03:50:15 -------- d-----w- d:\documents and settings\shawn\local settings\application data\dxhr
2011-08-29 03:49:37 -------- d-----w- d:\documents and settings\shawn\local settings\application data\28050
2011-08-24 03:21:09 -------- d-----w- d:\program files\Alcohol Soft
2011-08-24 03:18:29 436792 ----a-w- d:\windows\system32\drivers\sptd.sys
2011-08-22 07:42:23 -------- d-----w- d:\documents and settings\shawn\application data\runic games
.
==================== Find3M ====================
.
2011-09-09 03:37:43 507904 ----a-w- d:\windows\system32\winlogon.exe
2011-09-08 08:08:10 0 ----a-w- d:\windows\Hnomujugerud.bin
2011-09-03 10:17:37 599040 ----a-w- d:\windows\system32\crypt32.dll
2011-07-29 08:12:57 280140 ----a-w- d:\windows\system32\nvdrsdb1.bin
2011-07-29 08:12:57 1 ----a-w- d:\windows\system32\nvdrssel.bin
2011-07-29 08:12:54 280140 ----a-w- d:\windows\system32\nvdrsdb0.bin
2011-07-15 13:29:31 456320 ----a-w- d:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02:00 10496 ----a-w- d:\windows\system32\drivers\ndistapi.sys
2011-06-24 14:10:36 139656 ----a-w- d:\windows\system32\drivers\rdpwd.sys
2011-06-21 18:18:34 81920 ----a-w- d:\windows\system32\ieencode.dll
2011-06-21 18:18:34 667136 ----a-w- d:\windows\system32\wininet.dll
2011-06-21 18:18:34 61952 ----a-w- d:\windows\system32\tdc.ocx
2011-06-21 12:58:45 369664 ----a-w- d:\windows\system32\html.iec
2011-06-20 17:44:52 293376 ----a-w- d:\windows\system32\winsrv.dll
2004-01-29 20:24:40 40960 ----a-w- d:\program files\MouseFix.exe
.
============= FINISH: 21:30:17.18 ===============

ATTACH. TXT


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 4/17/2010 11:38:28 PM
System Uptime: 9/11/2011 12:06:25 PM (9 hours ago)
.
Motherboard: Gigabyte Technology Co., Ltd. | | G41M-ES2L
Processor: Intel® Core™2 CPU 6600 @ 2.40GHz | Socket 775 | 2400/266mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 38 GiB total, 32.756 GiB free.
D: is FIXED (NTFS) - 233 GiB total, 87.047 GiB free.
F: is CDROM ()
G: is CDROM ()
H: is CDROM ()
I: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Atheros AR5005GS Wireless Network Adapter
Device ID: PCI\VEN_168C&DEV_0013&SUBSYS_2051168C&REV_01\4&BC67B8D&0&08F0
Manufacturer: Atheros
Name: Atheros AR5005GS Wireless Network Adapter
PNP Device ID: PCI\VEN_168C&DEV_0013&SUBSYS_2051168C&REV_01\4&BC67B8D&0&08F0
Service:
.
==== System Restore Points ===================
.
RP507: 9/10/2011 10:48:13 AM - System Checkpoint
RP508: 9/11/2011 1:44:10 PM - System Checkpoint
.
==== Installed Programs ======================
.
µTorrent
5600
5600_Help
5600Trb
7-Zip 9.20
Ace MP3 To WAV Converter
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader X (10.1.0)
Adobe Shockwave Player 11.5
Advanced SystemCare 3
AIM 7
AiO_Scan
AiOSoftware
Apple Application Support
Apple Software Update
BufferChm
Champions Online
Conduit Engine
Counter-Strike: Source
CP_Package_Variety1
CP_Package_Variety2
CP_Package_Variety3
CustomerResearchQFolder
DAEMON Tools
dBpowerAMP Music Converter
Destinations
Deus Ex - Human Revolution version 1.0
DeviceManagementQFolder
DivX Setup
DocProc
Download Updater (AOL LLC)
Driver Performer
Driver Reviver
Driver Robot
Driver Sweeper 2.1.0
eSupportQFolder
EverQuest Titanium
Fallout Mod Manager 0.13.21
Fax
FreeApps
FreeArc 0.666
Game Booster 3
Global Agenda Launcher
GoldWave v5.20
GoldWave v5.57
Google Chrome
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Extended Capabilities 5.3
HP Image Zone Express
HP Imaging Device Functions 5.3
HP PSC & OfficeJet 5.3.B
HP Software Update
HP Solution Center & Imaging Support Tools 5.3
HPProductAssistant
iCall
IObit Security 360
IObit Toolbar v4.6
iTunes
Java Auto Updater
Java™ 6 Update 26
Killing Floor
Magic ISO Maker v5.5 (build 0281)
Malwarebytes' Anti-Malware version 1.51.1.1800
MarketResearch
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Games for Windows - LIVE Redistributable
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Software Update for Web Folders (English) 12
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
MixPad Audio Mixer
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 and SOAP Toolkit 3.0
NewCopy
nHancer
Norton AntiVirus
NVIDIA Control Panel 280.19
NVIDIA Graphics Driver 280.19
NVIDIA Install Application
NVIDIA nView 135.94
NVIDIA nView Desktop Manager
NVIDIA PhysX
NVIDIA PhysX System Software 9.10.0514
NVIDIA Update 1.4.27
NVIDIA Update Components
OpenOffice.org 3.2
Pando Media Booster
PIXresizer 2.0.4
ProductContext
PunkBuster Services
QuickTime
Readme
RealPlayer
REALTEK GbE & FE Ethernet PCI-E NIC Driver
Realtek High Definition Audio Driver
RealUpgrade 1.0
Safari
Scan
ScannerCopy
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2509488)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft Office 2007 System (KB2541012)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Excel 2007 (KB2541007)
Security Update for Microsoft Office Groove 2007 (KB2494047)
Security Update for Microsoft Office InfoPath 2007 (KB2510061)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2535818)
Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
Security Update for Microsoft Office Publisher 2007 (KB2284697)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360131)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2416400)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2482017)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2497640)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2530548)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544521)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2559049)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982381)
Security Update for Windows XP (KB982665)
Skype Toolbars
Skype™ 5.0
Smart Defrag 2
SolutionCenter
Spyware Doctor 8.0
StarCraft II
Status
Steam
SumatraPDF
Switch Sound File Converter
System Requirements Lab
System Requirements Lab CYRI
TeamSpeak 3 Client
Titan Quest
Titan Quest: Immortal Throne
Torchlight Demo
TrayApp
Uniblue RegistryBooster
Uniblue SpeedUpMyPC
Unity Web Player
Unload
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office Outlook 2007 (KB2509470)
Update for Outlook 2007 Junk Email Filter (KB2586924)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB980182)
uTorrentBar Toolbar
VC80CRTRedist - 8.0.50727.4053
Ventrilo Client
Video Card Stability Test
VLC media player 1.1.4
WavePad Sound Editor
WebFldrs XP
WebReg
Window Shopper
WinRAR archiver
WinZip 14.5
Xvid 1.2.2 final uninstall
Yahoo! BrowserPlus 2.9.8
ZipGenius 6 (6.0.3.1150)
Zombie Panic Source
.
==== Event Viewer Messages From Past Week ========
.
9/8/2011 8:56:16 PM, error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Management Instrumentation service, but this action failed with the following error: An instance of the service is already running.
9/8/2011 8:12:37 PM, error: Cdrom [15] - The device, \Device\CdRom3, is not ready for access yet.
9/8/2011 8:12:37 PM, error: Cdrom [15] - The device, \Device\CdRom2, is not ready for access yet.
9/8/2011 8:12:37 PM, error: Cdrom [15] - The device, \Device\CdRom1, is not ready for access yet.
9/8/2011 8:12:37 PM, error: Cdrom [15] - The device, \Device\CdRom0, is not ready for access yet.
9/8/2011 7:52:00 PM, error: PlugPlayManager [11] - The device Root\LEGACY_SSIDRV\0000 disappeared from the system without first being prepared for removal.
9/8/2011 7:52:00 PM, error: PlugPlayManager [11] - The device Root\LEGACY_SSHRMD\0000 disappeared from the system without first being prepared for removal.
9/8/2011 7:52:00 PM, error: PlugPlayManager [11] - The device Root\LEGACY_SSFS0BBC\0000 disappeared from the system without first being prepared for removal.
9/8/2011 7:51:54 PM, error: Service Control Manager [7034] - The Webroot Client Service service terminated unexpectedly. It has done this 1 time(s).
9/8/2011 6:11:08 PM, error: Service Control Manager [7034] - The HTTP SSL service terminated unexpectedly. It has done this 1 time(s).
9/8/2011 5:54:44 PM, error: Service Control Manager [7024] - The Computer Browser service terminated with service-specific error 2184 (0x888).
9/8/2011 5:54:42 PM, error: BROWSER [8017] - The browser has failed to start because the dependent service LanmanServer had invalid service status 3. Status Meaning 1 Service Stopped 2 Start Pending 3 Stop Pending 4 Running 5 Continue Pending 6 Pause Pending 7 Paused
9/8/2011 12:44:17 PM, error: Service Control Manager [7034] - The Webroot Spy Sweeper Engine service terminated unexpectedly. It has done this 2 time(s).
9/8/2011 10:58:24 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
9/8/2011 10:58:22 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
9/8/2011 10:58:04 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BHDrvx86 eeCtrl Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss sptd SRTSP SRTSPX SymIRON SYMTDI Tcpip
9/8/2011 10:58:04 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
9/8/2011 10:58:04 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
9/8/2011 10:58:04 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
9/8/2011 10:57:56 PM, error: sptd [4] - Driver detected an internal error in its data structures for .
9/8/2011 1:58:23 AM, error: Service Control Manager [7034] - The Webroot Spy Sweeper Engine service terminated unexpectedly. It has done this 1 time(s).
9/8/2011 1:42:39 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the 1271572708SsTR service to connect.
9/8/2011 1:42:39 AM, error: Service Control Manager [7000] - The 1271572708SsTR service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
9/10/2011 5:43:45 AM, error: Service Control Manager [7034] - The PC Tools Security Service service terminated unexpectedly. It has done this 1 time(s).
9/10/2011 11:28:58 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD BHDrvx86 eeCtrl Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss sptd SRTSP SRTSPX SymIRON SYMTDI Tcpip WS2IFSL
9/10/2011 10:24:11 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: BHDrvx86 eeCtrl Fips intelppm sptd SRTSP SRTSPX SymIRON SYMTDI
.
==== End Of File ===========================

Edited by goodle, 12 September 2011 - 03:14 PM.


#4 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,994 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:05:59 PM

Posted 13 September 2011 - 03:31 AM

Does this concern the same computer as the topic here? http://www.bleepingcomputer.com/forums/topic418566.html

Orange Blossom :cherry:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript

#5 Noviciate

Noviciate

  • Malware Response Team
  • 5,277 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Numpty HQ
  • Local time:09:59 PM

Posted 18 September 2011 - 03:19 PM

Given the lack of response to this thread, it's now closed.

So long, and thanks for all the fish.

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users