Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Redirecting - Google Chrome/Firefox/IE


  • Please log in to reply
5 replies to this topic

#1 Ruliotrio

Ruliotrio

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 27 October 2011 - 08:38 PM

Would really appreciate the help, a friend of mine has taught me how to remove trojans and basic malwares but this one is just so annoying because i can't find a trace of it and nor can he.

I've tried ComboFix/Hitman/Malwarebytes/ESET and nothing has found it it's really annoying I could go use my laptop but this computer is great for gaming it's just that when browsing on the internet it redirects me and i'm just getting so stressed about this if anyone can help please just post anything i'm at my limit i will try anything

BC AdBot (Login to Remove)

 


#2 Gtracer

Gtracer

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 27 October 2011 - 09:18 PM

I had this same issue last year. I reset my router and changed the password, and it fixed the problem. This was the thread.

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:02 PM

Posted 27 October 2011 - 09:45 PM

Moved from XP to the Am I Infected forum.

After the reset,if you still redirect run these.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Ruliotrio

Ruliotrio
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 28 October 2011 - 05:11 PM

Thanks guys i'm going to reset my router now i'll make a new post to tell you if it works

#5 Ruliotrio

Ruliotrio
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:11:02 AM

Posted 28 October 2011 - 05:45 PM

Resetting my modem didn't work I can see the IP in my modems ip route but i don't know how to get rid of it will anyone teamview with me? I have

Skype: Jacob.Mackenzie3
Skype2: Valathepala
Steam: rapidjay



MiniToolBox by Farbar
Ran by user (administrator) on 28-10-2011 at 23:43:52
Microsoft Windows XP Service Pack 3 (X86)

***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
Hosts file not detected in the default directory
========================= IP Configuration: ================================

# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp

# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : user-60cdd977d5

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection 2:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet #2

Physical Address. . . . . . . . . : 00-24-1D-61-EC-31

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.4

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 192.168.1.1

Lease Obtained. . . . . . . . . . : 28 October 2011 23:33:28

Lease Expires . . . . . . . . . . : 31 October 2011 23:33:28



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Edimax 802.11g Wireless PCI Card

Physical Address. . . . . . . . . : 00-1F-1F-4B-75-D8

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 0.0.0.0

Subnet Mask . . . . . . . . . . . : 0.0.0.0

Default Gateway . . . . . . . . . :

DHCP Server . . . . . . . . . . . : 255.255.255.255

Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 209.85.147.106, 209.85.147.103, 209.85.147.99, 209.85.147.147
209.85.147.104, 209.85.147.105



Pinging google.com [209.85.147.106] with 32 bytes of data:



Reply from 209.85.147.106: bytes=32 time=101ms TTL=51

Reply from 209.85.147.106: bytes=32 time=43ms TTL=51



Ping statistics for 209.85.147.106:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 43ms, Maximum = 101ms, Average = 72ms

Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 67.195.160.76, 72.30.2.43, 98.137.149.56, 98.139.180.149
209.191.122.70



Pinging yahoo.com [67.195.160.76] with 32 bytes of data:



Reply from 67.195.160.76: bytes=32 time=123ms TTL=49

Reply from 67.195.160.76: bytes=32 time=163ms TTL=49



Ping statistics for 67.195.160.76:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 123ms, Maximum = 163ms, Average = 143ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 24 1d 61 ec 31 ...... NVIDIA nForce 10/100 Mbps Ethernet #2 - Teefer2 Miniport
0x20003 ...00 1f 1f 4b 75 d8 ...... Edimax 802.11g Wireless PCI Card - Teefer2 Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.4 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.4 192.168.1.4 20
192.168.1.4 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.4 192.168.1.4 20
224.0.0.0 240.0.0.0 192.168.1.4 192.168.1.4 20
255.255.255.255 255.255.255.255 192.168.1.4 192.168.1.4 1
255.255.255.255 255.255.255.255 192.168.1.4 20003 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/28/2011 10:27:58 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Bloodhound.MalPE in File: c:\System Volume Information\_restore{6274DCD8-29D2-4BC2-BBC0-9CB26B9FE660}\RP460\A0291294.exe by: Manual scan. Action: Quarantine succeeded. Action Description: The file was quarantined successfully.

Error: (10/28/2011 03:34:36 PM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.

Error: (10/28/2011 02:09:36 AM) (Source: Application Hang) (User: )
Description: Hanging application TFC.exe, version 3.1.7.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus) (User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Common Files\Symantec Shared\ccApp.exe
Event Info: Terminate Thread
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus) (User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Common Files\Symantec Shared\ccApp.exe
Event Info: Terminate Process
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus) (User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
Event Info: Terminate Thread
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus) (User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
Event Info: Terminate Process
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus) (User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
Event Info: Terminate Thread
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus) (User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
Event Info: Terminate Process
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus) (User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
Event Info: Terminate Thread
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04


System errors:
=============
Error: (10/28/2011 11:27:10 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.4 for the Network Card with network address 00241D61EC31 has been
denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).

Error: (10/28/2011 03:26:45 PM) (Source: Service Control Manager) (User: )
Description: The Help and Support service terminated with the following error:
%%126

Error: (10/28/2011 02:54:23 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
nvata

Error: (10/28/2011 02:54:11 AM) (Source: Service Control Manager) (User: )
Description: The Help and Support service terminated with the following error:
%%126

Error: (10/28/2011 02:16:30 AM) (Source: Service Control Manager) (User: )
Description: The Help and Support service terminated with the following error:
%%126

Error: (10/28/2011 02:07:03 AM) (Source: Service Control Manager) (User: )
Description: The MBAMService service terminated unexpectedly. It has done this 1 time(s).

Error: (10/28/2011 02:07:00 AM) (Source: Service Control Manager) (User: )
Description: The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).

Error: (10/28/2011 02:07:00 AM) (Source: Service Control Manager) (User: )
Description: The PnkBstrA service terminated unexpectedly. It has done this 1 time(s).

Error: (10/28/2011 02:06:59 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Display Driver Service service terminated unexpectedly. It has done this 1 time(s).

Error: (10/28/2011 01:45:31 AM) (Source: Service Control Manager) (User: )
Description: The Help and Support service terminated with the following error:
%%126


Microsoft Office Sessions:
=========================
Error: (10/28/2011 10:27:58 PM) (Source: Symantec AntiVirus)(User: )
Description: Security Risk Found!Bloodhound.MalPE in File: c:\System Volume Information\_restore{6274DCD8-29D2-4BC2-BBC0-9CB26B9FE660}\RP460\A0291294.exe by: Manual scan. Action: Quarantine succeeded. Action Description: The file was quarantined successfully.

Error: (10/28/2011 03:34:36 PM) (Source: SescLU)(User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.

Error: (10/28/2011 02:09:36 AM) (Source: Application Hang)(User: )
Description: TFC.exe3.1.7.0hungapp0.0.0.000000000

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus)(User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Common Files\Symantec Shared\ccApp.exe
Event Info: Terminate Thread
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus)(User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Common Files\Symantec Shared\ccApp.exe
Event Info: Terminate Process
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus)(User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
Event Info: Terminate Thread
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus)(User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
Event Info: Terminate Process
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus)(User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
Event Info: Terminate Thread
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus)(User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
Event Info: Terminate Process
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04

Error: (10/28/2011 02:07:04 AM) (Source: Symantec AntiVirus)(User: user)user
Description: SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
Event Info: Terminate Thread
Action Taken: Blocked
Actor Process: C:\Documents and Settings\user\My Documents\Downloads\TFC.exe (PID 3724)
Time: 28 October 2011 02:07:04


=========================== Installed Programs ============================

µTorrent (Version: 2.2.0)
Adobe AIR (Version: 2.7.0.19530)
Adobe Download Assistant (Version: 1.0.2)
Adobe Flash Player 10 Plugin (Version: 10.3.183.10)
Adobe Flash Player 11 ActiveX (Version: 11.0.1.152)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
AMD Processor Driver (Version: 1.3.2.0053)
Amorous Professor Cherry v1.0
AVS Screen Capture version 1.1.2
AVS Update Manager 1.0
AVS Video Editor 5
AVS Video Recorder 2.4
AVS4YOU Software Navigator 1.4
BlackBerry Desktop Software 6.0 (Version: 6.0.0.43)
BlackBerry Device Software Updater (Version: 6.0.1.37)
BlackBerry Device Software v6.0.0 for the BlackBerry 9300 smartphone (Version: 6.0.0.570 (Platform 6.6.0.212))
BlackBerry USB and Modem Drivers 6.0 (Version: 6.0.0.40)
Camtasia Studio 7 (Version: 7.1.1)
CCleaner (Version: 3.11)
Conduit Engine (Version: 6.2.1.8)
CyberLink PowerDVD 10 (Version: 10.0.1516)
DAEMON Tools Lite (Version: 4.41.3.0173)
dBpoweramp Music Converter (Version: Release 13.5)
DivX Setup (Version: 2.5.0.15)
Edimax Wireless LAN (Version: 1.0.1.0)
EpicBot
Fraps (remove only)
Garry's Mod
GIMP 2.6.11 (Version: 2.6.11)
GoldWave v5.57
HiJackThis (Version: 1.0.0)
Hitman Pro 3.5 (Version: 3.5.9.131)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Java™ 6 Update 4 (Version: 1.6.0.40)
LiveUpdate 3.3 (Symantec Corporation) (Version: 3.3.0.96)
Magic ISO Maker v5.5 (build 0281)
Malwarebytes' Anti-Malware version 1.51.2.1300 (Version: 1.51.2.1300)
Messenger Plus! 3 & Sponsor
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Mount and Blade: Warband
MSN
NVIDIA Display Control Panel (Version: 6.14.11.9713)
NVIDIA Drivers (Version: 1.10.57.35)
NVIDIA nView Desktop Manager (Version: 6.14.10.00)
NVIDIA PhysX (Version: 9.10.0129)
OpenOffice.org 2.4 (Version: 2.4.9310)
Opera 11.52 (Version: 11.52.1100)
Pokemon World Online version 1.8 (Version: 1.8)
Realtek High Definition Audio Driver (Version: 5.10.0.6101)
RuneScape Launcher 1.1 (Version: 1.1.0)
Skype™ 5.5 (Version: 5.5.124)
SpywareBlaster 4.4 (Version: 4.4.0)
StarCraft II (Version: 1.3.6.19269)
Steam™ (Version: 1.0.0.0)
swMSM (Version: 12.0.0.1)
Symantec Endpoint Protection (Version: 11.0.6005.562)
Team Fortress 2
TeamViewer 6 (Version: 6.0.10194)
The Lord of the Rings Online™ v03.03.00.8055 (Version: 03.03.00.8055)
TortoiseSVN 1.6.10.19898 (32 bit) (Version: 1.6.19898)
Uninstall 1.0.0.1
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Ventrilo Client (Version: 3.0.5)
Veoh Web Player (Version: 1.1.2.0000)
VTFEdit 1.3.3
WebFldrs XP (Version: 9.50.7523)
Windows 7 Upgrade Advisor (Version: 2.0.5000.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Sync (Version: 14.0.8117.416)
Windows Media Format 11 runtime
Windows Media Player 11
WinPatrol (Version: 20.5.2011.0)
WinRAR archiver
World of Warcraft (Version: 4.2.2.14545)
Xfire (remove only)

========================= Memory info: ===================================

Percentage of memory in use: 50%
Total physical RAM: 2047.48 MB
Available physical RAM: 1014.04 MB
Total Pagefile: 3939.75 MB
Available Pagefile: 3028.4 MB
Total Virtual: 2047.88 MB
Available Virtual: 1998.8 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:149.04 GB) (Free:36.43 GB) NTFS

========================= Users: ========================================

User accounts for \\USER-60CDD977D5

Administrator ASPNET Guest
HelpAssistant SUPPORT_388945a0 user

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:02 PM

Posted 28 October 2011 - 07:42 PM

Looking at all the issues here we need a deeper look. Please go here....
Preparation Guide ,do steps 6 - 9.

Create a DDS log and post it in the new topic explained in step 9,which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If Gmer won't run,skip it and move on.
Include a link back to this topic.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users