Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected home page.


  • Please log in to reply
5 replies to this topic

#1 Capt.Bananas

Capt.Bananas

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:37 PM

Posted 18 February 2013 - 07:32 AM

My home page has been replaced with Search.us.com

Though I have replaced the added tool bar that came with this new home page, the home page has remained.

Everytime I sign in - I have to go to ; tools-options-go to general tab-change home page back-click ok-then restart home page.

It works that way, but I would simply like to remove starting homepage.

Thank you for any help,

Capt.Bananas



BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:37 PM

Posted 18 February 2013 - 08:30 AM

Please download MINITOOLBOX and run it.
http://download.bleepingcomputer.com/farbar/MiniToolBox.exe

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Report FF Proxy Settings
Reset Ie proxy Settins
Reset FF proxy settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

Download Adware Cleaner run it Click the delete button allow it to run and post the log it creates.

http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner


Download the junkware removal tool save it to your desktop run it in safe mode post the log.
http://thisisudax.org/downloads/JRT.exe


Download Emsisoft Emergency Kit and save it to your desktop. Right-click on EmsisoftEmergencyKit.zip and select Extract All.... Leave all settings as they are and click Extract. You will now have a folder named EmsisoftEmergencyKit on your desktop.

Open the EmsisoftEmergencyKit
http://www.emsisoft.com/en/software/eek/download/
folder and double-click Start.exe.
A new window will open. Under "Run Directly:" click Emergency Kit Scanner.
When asked to run an online update, click Yes.
When the update is finished, click the Back to Security Status link in the left corner. On the main screen click the Scan Now button.
Select the Deep Scan option and click the SCAN button.
When the scan is finished click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
Click the View Report button and in the Reports window double-click on the most recent log. Note, logs are named as follows: a2scan_<date>-<time>.txt.
Copy/paste the report contents in your next reply


Edited by InadequateInfirmity, 18 February 2013 - 08:30 AM.


#3 Capt.Bananas

Capt.Bananas
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:37 PM

Posted 21 February 2013 - 09:07 AM

To InadequatelnInfirmity,

Thank you - I ran Both MiniTollBox and Adware Cleaner. Was able to copy results for Minitoolbar, but lost results  for adware.

Will post what I have

After I ran both programs I had to restart computer.

I had to leave at that point and came back much later.

When I went on line the home page was back to normal.

I am very impressed and want to thank you for the help.

I have been looking for a solution for some time.

Bleeping Computer is the best site I have found.

 

Thanks again InadequatelnInfirmity,

Capt. Bananas


 

MiniToolBox by Farbar 
Version:10-01-2013



Ran by David (administrator) on 18-02-2013 at 21:13:16



Running from "C:\Documents and Settings\David\My
Documents\Downloads"



Microsoft Windows XP Service Pack 3 (X86)



Boot Mode: Normal



***************************************************************************



 



========================= Flush DNS:
===================================



 



 



Windows IP Configuration





 



 



Successfully flushed the DNS Resolver Cache.





 



========================= IE Proxy Settings: ==============================



 



Proxy is not enabled.



No Proxy Server is set.



 



"Reset IE Proxy Settings": IE Proxy Settings were
reset.



 



========================= FF Proxy Settings:
==============================



 



"network.proxy.type", 0



 



"Reset FF Proxy Settings": Firefox Proxy settings
were reset.



 



========================= Hosts content:
=================================



 



 



127.0.0.1      
localhost



 



========================= IP Configuration:
================================



 



Intel® PRO/100 VE Network Connection = Local Area
Connection (Connected)



 



 



# ----------------------------------



# Interface IP Configuration        



# ----------------------------------



pushd interface ip



 



 



# Interface IP Configuration for "Local Area
Connection"



 



set address name="Local Area Connection"
source=dhcp



set dns name="Local Area Connection" source=dhcp
register=PRIMARY



set wins name="Local Area Connection" source=dhcp



 



 



popd



# End of interface IP configuration



 



 



 



 



Windows IP Configuration





 



 



        Host Name . .
. . . . . . . . . . : david-bb02070b7





        Primary Dns
Suffix  . . . . . . . :





        Node Type . .
. . . . . . . . . . : Unknown





        IP Routing
Enabled. . . . . . . . : No





        WINS Proxy
Enabled. . . . . . . . : No





        DNS Suffix
Search List. . . . . . : hsd1.fl.comcast.net.





 



 



Ethernet adapter Local Area Connection:





 



 



       
Connection-specific DNS Suffix  .
: hsd1.fl.comcast.net.





        Description .
. . . . . . . . . . : Intel® PRO/100 VE Network Connection





        Physical
Address. . . . . . . . . : 00-12-3F-6F-06-66





        Dhcp Enabled.
. . . . . . . . . . : Yes





       
Autoconfiguration Enabled . . . . : Yes





        IP Address. .
. . . . . . . . . . : 192.168.0.105





        Subnet Mask .
. . . . . . . . . . : 255.255.255.0





        Default
Gateway . . . . . . . . . : 192.168.0.1





        DHCP Server .
. . . . . . . . . . : 192.168.0.1





        DNS Servers .
. . . . . . . . . . : 192.168.0.1





        Lease
Obtained. . . . . . . . . . : Monday, February 18, 2013 2:04:09 PM





        Lease Expires
. . . . . . . . . . : Tuesday, February 19, 2013 2:04:09 PM





Server:  UnKnown



Address:  192.168.0.1



 



Name:    google.com



Addresses: 
74.125.137.102, 74.125.137.113, 74.125.137.138, 74.125.137.139



              74.125.137.101, 74.125.137.100



 



 



 



Pinging google.com [74.125.137.100] with 32 bytes of data:





 



 



Reply from 74.125.137.100: bytes=32 time=26ms TTL=47





Reply from 74.125.137.100: bytes=32 time=27ms TTL=47





 



 



Ping statistics for 74.125.137.100:





    Packets: Sent = 2,
Received = 2, Lost = 0 (0% loss),





Approximate round trip times in milli-seconds:





    Minimum = 26ms,
Maximum = 27ms, Average = 26ms





Server:  UnKnown



Address:  192.168.0.1



 



Name:    yahoo.com



Addresses: 
98.138.253.109, 98.139.183.24, 206.190.36.45



 



 



 



Pinging yahoo.com [206.190.36.45] with 32 bytes of data:





 



 



Reply from 206.190.36.45: bytes=32 time=175ms TTL=48





Reply from 206.190.36.45: bytes=32 time=204ms TTL=48





 



 



Ping statistics for 206.190.36.45:





    Packets: Sent = 2,
Received = 2, Lost = 0 (0% loss),





Approximate round trip times in milli-seconds:





    Minimum = 175ms,
Maximum = 204ms, Average = 189ms





 



 



Pinging 127.0.0.1 with 32 bytes of data:





 



 



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128





Reply from 127.0.0.1: bytes=32 time<1ms TTL=128





 



 



Ping statistics for 127.0.0.1:





    Packets: Sent = 2,
Received = 2, Lost = 0 (0% loss),





Approximate round trip times in milli-seconds:





    Minimum = 0ms,
Maximum = 0ms, Average = 0ms





===========================================================================



Interface List



0x1 ........................... MS TCP Loopback interface



0x2 ...00 12 3f 6f 06 66 ...... Intel® PRO/100 VE Network
Connection - Packet Scheduler Miniport



===========================================================================



===========================================================================



Active Routes:



Network Destination       
Netmask          Gateway       Interface  Metric



          0.0.0.0          0.0.0.0      192.168.0.1   192.168.0.105     20



        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1



      192.168.0.0    255.255.255.0    192.168.0.105   192.168.0.105     20



    192.168.0.105  255.255.255.255        127.0.0.1       127.0.0.1         20



    192.168.0.255  255.255.255.255    192.168.0.105   192.168.0.105             20



        224.0.0.0        240.0.0.0    192.168.0.105   192.168.0.105           20



  255.255.255.255  255.255.255.255    192.168.0.105   192.168.0.105           1



Default Gateway:      
192.168.0.1



===========================================================================



Persistent Routes:



  None



========================= Winsock entries
=====================================



 



Catalog5 01 C:\Windows\System32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog5 02 C:\Windows\System32\winrnr.dll [16896]
(Microsoft Corporation)



Catalog5 03 C:\Windows\System32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog5 04 C:\Windows\System32\nwprovau.dll [142336]
(Microsoft Corporation)



Catalog9 01 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 02 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 03 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672]
(Microsoft Corporation)



Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672]
(Microsoft Corporation)



Catalog9 06 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 07 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 08 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 09 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 10 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 11 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 12 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 13 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 14 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 15 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 16 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 17 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 18 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 19 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



Catalog9 20 C:\Windows\system32\mswsock.dll [245248]
(Microsoft Corporation)



 



========================= Event log errors:
===============================



 



Application errors:



==================



Error: (02/18/2013 01:18:28 PM) (Source: VSS) (User: )



Description: Volume Shadow Copy Service error: Shadow Copy
writer RemovableStorageManager called routine OpenNtmsSessionW which failed
with status 0x80070422 (converted to 0x800423f4).



 



Error: (02/18/2013 00:17:05 PM) (Source: VSS) (User: )



Description: Volume Shadow Copy Service error: Shadow Copy
writer RemovableStorageManager called routine OpenNtmsSessionW which failed
with status 0x80070422 (converted to 0x800423f4).



 



Error: (02/18/2013 11:46:15 AM) (Source: VSS) (User: )



Description: Volume Shadow Copy Service error: Shadow Copy
writer RemovableStorageManager called routine OpenNtmsSessionW which failed
with status 0x80070422 (converted to 0x800423f4).



 



Error: (02/18/2013 10:36:11 AM) (Source: VSS) (User: )



Description: Volume Shadow Copy Service error: Shadow Copy
writer RemovableStorageManager called routine OpenNtmsSessionW which failed
with status 0x80070422 (converted to 0x800423f4).



 



Error: (02/18/2013 10:12:09 AM) (Source: VSS) (User: )



Description: Volume Shadow Copy Service error: Shadow Copy
writer RemovableStorageManager called routine OpenNtmsSessionW which failed
with status 0x80070422 (converted to 0x800423f4).



 



Error: (02/18/2013 08:45:45 AM) (Source: VSS) (User: )



Description: Volume Shadow Copy Service error: Shadow Copy
writer RemovableStorageManager called routine OpenNtmsSessionW which failed
with status 0x80070422 (converted to 0x800423f4).



 



Error: (02/18/2013 08:15:35 AM) (Source: VSS) (User: )



Description: Volume Shadow Copy Service error: Shadow Copy
writer RemovableStorageManager called routine OpenNtmsSessionW which failed
with status 0x80070422 (converted to 0x800423f4).



 



Error: (02/18/2013 07:14:17 AM) (Source: VSS) (User: )



Description: Volume Shadow Copy Service error: Shadow Copy
writer RemovableStorageManager called routine OpenNtmsSessionW which failed
with status 0x80070422 (converted to 0x800423f4).



 



Error: (02/18/2013 06:47:09 AM) (Source: VSS) (User: )



Description: Volume Shadow Copy Service error: Shadow Copy
writer RemovableStorageManager called routine OpenNtmsSessionW which failed
with status 0x80070422 (converted to 0x800423f4).



 



Error: (02/18/2013 06:17:20 AM) (Source: VSS) (User: )



Description: Volume Shadow Copy Service error: Shadow Copy
writer RemovableStorageManager called routine OpenNtmsSessionW which failed
with status 0x80070422 (converted to 0x800423f4).



 



 



System errors:



=============



Error: (02/18/2013 01:18:27 PM) (Source: DCOM) (User: NT
AUTHORITY)



Description: DCOM got error "%%1058" attempting to
start the service ntmssvc with arguments "-Service"



in order to run the server:



{D61A27C6-8F53-11D0-BFA0-00A024151983}



 



Error: (02/18/2013 00:17:04 PM) (Source: DCOM) (User: NT
AUTHORITY)



Description: DCOM got error "%%1058" attempting to
start the service ntmssvc with arguments "-Service"



in order to run the server:



{D61A27C6-8F53-11D0-BFA0-00A024151983}



 



Error: (02/18/2013 11:46:14 AM) (Source: DCOM) (User: NT
AUTHORITY)



Description: DCOM got error "%%1058" attempting to
start the service ntmssvc with arguments "-Service"



in order to run the server:



{D61A27C6-8F53-11D0-BFA0-00A024151983}



 



Error: (02/18/2013 10:36:10 AM) (Source: DCOM) (User: NT
AUTHORITY)



Description: DCOM got error "%%1058" attempting to
start the service ntmssvc with arguments "-Service"



in order to run the server:



{D61A27C6-8F53-11D0-BFA0-00A024151983}



 



Error: (02/18/2013 10:12:08 AM) (Source: DCOM) (User: NT
AUTHORITY)



Description: DCOM got error "%%1058" attempting to
start the service ntmssvc with arguments "-Service"



in order to run the server:



{D61A27C6-8F53-11D0-BFA0-00A024151983}



 



Error: (02/18/2013 08:45:44 AM) (Source: DCOM) (User: NT
AUTHORITY)



Description: DCOM got error "%%1058" attempting to
start the service ntmssvc with arguments "-Service"



in order to run the server:



{D61A27C6-8F53-11D0-BFA0-00A024151983}



 



Error: (02/18/2013 08:15:34 AM) (Source: DCOM) (User: NT
AUTHORITY)



Description: DCOM got error "%%1058" attempting to
start the service ntmssvc with arguments "-Service"



in order to run the server:



{D61A27C6-8F53-11D0-BFA0-00A024151983}



 



Error: (02/18/2013 07:14:16 AM) (Source: DCOM) (User: NT
AUTHORITY)



Description: DCOM got error "%%1058" attempting to
start the service ntmssvc with arguments "-Service"



in order to run the server:



{D61A27C6-8F53-11D0-BFA0-00A024151983}



 



Error: (02/18/2013 06:47:08 AM) (Source: DCOM) (User: NT
AUTHORITY)



Description: DCOM got error "%%1058" attempting to
start the service ntmssvc with arguments "-Service"



in order to run the server:



{D61A27C6-8F53-11D0-BFA0-00A024151983}



 



Error: (02/18/2013 06:17:19 AM) (Source: DCOM) (User: NT
AUTHORITY)



Description: DCOM got error "%%1058" attempting to
start the service ntmssvc with arguments "-Service"



in order to run the server:



{D61A27C6-8F53-11D0-BFA0-00A024151983}



 



 



Microsoft Office Sessions:



=========================



Error: (02/18/2013 01:18:28 PM) (Source: VSS)(User: )



Description:
0x800704220x800423f4RemovableStorageManagerOpenNtmsSessionW



 



Error: (02/18/2013 00:17:05 PM) (Source: VSS)(User: )



Description: 0x800704220x800423f4RemovableStorageManagerOpenNtmsSessionW



 



Error: (02/18/2013 11:46:15 AM) (Source: VSS)(User: )



Description:
0x800704220x800423f4RemovableStorageManagerOpenNtmsSessionW



 



Error: (02/18/2013 10:36:11 AM) (Source: VSS)(User: )



Description: 0x800704220x800423f4RemovableStorageManagerOpenNtmsSessionW



 



Error: (02/18/2013 10:12:09 AM) (Source: VSS)(User: )



Description:
0x800704220x800423f4RemovableStorageManagerOpenNtmsSessionW



 



Error: (02/18/2013 08:45:45 AM) (Source: VSS)(User: )



Description: 0x800704220x800423f4RemovableStorageManagerOpenNtmsSessionW



 



Error: (02/18/2013 08:15:35 AM) (Source: VSS)(User: )



Description:
0x800704220x800423f4RemovableStorageManagerOpenNtmsSessionW



 



Error: (02/18/2013 07:14:17 AM) (Source: VSS)(User: )



Description: 0x800704220x800423f4RemovableStorageManagerOpenNtmsSessionW



 



Error: (02/18/2013 06:47:09 AM) (Source: VSS)(User: )



Description:
0x800704220x800423f4RemovableStorageManagerOpenNtmsSessionW



 



Error: (02/18/2013 06:17:20 AM) (Source: VSS)(User: )



Description: 0x800704220x800423f4RemovableStorageManagerOpenNtmsSessionW



 



 



=========================== Installed Programs
============================



 



µTorrent (Version: 3.1.3)



Adobe AIR (Version: 2.5.1.17730)



Adobe Flash Player 11 ActiveX (Version: 11.5.502.149)



Adobe Flash Player 11 Plugin (Version: 11.5.502.149)



Adobe Reader X (10.1.5) (Version: 10.1.5)



Adobe Shockwave Player 11.6 (Version: 11.6.1.629)



Anti-phishing Domain Advisor (Version: 1.0.0.0)



AOL Toolbar



Apple Application Support (Version: 2.3.2)



Apple Mobile Device Support (Version: 6.0.1.3)



Apple Software Update (Version: 2.1.3.127)



AVG 2012 (Version: 12.0.2411)



AVG 2013 (Version: 13.0.2639)



AVG 2013 (Version: 13.0.2899)



AVG 2013 (Version: 2013.0.2899)



AVG PC Tuneup 2011 (Version: 10.0.0.26)



AVG Security Toolbar (Version: 14.1.0.10)



Carbonite (Version: 5.2.1 build 1181 (Mar-16-2012))



CCleaner (Version: 3.19)



Compatibility Pack for the 2007 Office system (Version:
12.0.6612.1000)



Corel WinDVD (Version: 11)



Corel WinDVD Pro 11 (Version: 11.0.0.289)



Coupon Printer for Windows (Version: 5.0.0.1)



Definition Update for Microsoft Office 2010 (KB982726)
32-Bit Edition



Dell Support Center (Version: 3.2.6032.102)



Download Updater (AOL Inc.)



DriverBoost (Version: 8.0.1)



DriverUpdate (Version: 2.0.4085)



Dropbox (Version: 1.4.7)



Epson Print CD (Version: 2.00.00)



EPSON Printer Software



EPSON Scan



FoxTab Music Converter



GoToMeeting 5.0.0.799 (Version: 5.0.0.799)



HP Product Detection (Version: 10.7.9.0)



ICA (Version: 1.0)



Intel® 537EP V9x DF PCI Modem



Intel® PRO Network Connections Drivers



InterActual Player



IPM (Version: 1.00.0000)



iTunes (Version: 11.0.1.12)



Java Auto Updater (Version: 2.0.7.2)



Java™ 6 Update 39 (Version: 6.0.390)



LG United Mobile Drivers (Version: 3.3.0.0)



LightScribe  1.4.89.1
(Version: 1.4.89.1)



magicJack (Version: 2.0.6073.4413)



Malwarebytes Anti-Malware version 1.61.0.1400 (Version:
1.61.0.1400)



McAfee Security Scan Plus (Version: 2.1.121.2)



Media Player Classic - Home Cinema 1.6.1.4235 (Version:
1.6.1.4235)



Microsoft .NET Framework 1.0 Hotfix (KB2572066)



Microsoft .NET Framework 1.0 Hotfix (KB2604042)



Microsoft .NET Framework 1.0 Hotfix (KB2656378)



Microsoft .NET Framework 1.0 Security Update (KB2698035)



Microsoft .NET Framework 1.0 Security Update (KB2742607)



Microsoft .NET Framework 1.1 (Version: 1.1.4322)



Microsoft .NET Framework 1.1 Security Update (KB2698023)



Microsoft .NET Framework 1.1 Security Update (KB2742597)



Microsoft .NET Framework 2.0 Service Pack 2 (Version:
2.2.30729)



Microsoft .NET Framework 3.0 Service Pack 2 (Version:
3.2.30729)



Microsoft .NET Framework 3.5 SP1



Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)



Microsoft .NET Framework 4 Client Profile (Version:
4.0.30319)



Microsoft .NET Framework 4 Extended (Version: 4.0.30319)



Microsoft Base Smart Card Cryptographic Service Provider
Package



Microsoft Compression Client Pack 1.0 for Windows XP
(Version: 1)



Microsoft Games for Windows - LIVE Redistributable (Version:
3.5.88.0)



Microsoft Games for Windows Marketplace (Version: 3.5.50.0)



Microsoft Lync 2010 (Version: 4.0.7577.4356)



Microsoft Office 2000 Professional (Version: 9.00.2720)



Microsoft Office 2010 Service Pack 1 (SP1)



Microsoft Office Access MUI (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office Access Setup Metadata MUI (English) 2010
(Version: 14.0.6029.1000)



Microsoft Office Excel MUI (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office Groove MUI (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office InfoPath MUI (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office OneNote MUI (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office Outlook MUI (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office PowerPoint MUI (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office Professional Plus 2010 (Version:
14.0.6029.1000)



Microsoft Office Proof (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office Proof (French) 2010 (Version:
14.0.6029.1000)



Microsoft Office Proof (Spanish) 2010 (Version:
14.0.6029.1000)



Microsoft Office Proofing (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office Publisher MUI (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office Shared MUI (English) 2010 (Version:
14.0.6029.1000)



Microsoft Office Shared Setup Metadata MUI (English) 2010
(Version: 14.0.6029.1000)



Microsoft Office Word MUI (English) 2010 (Version:
14.0.6029.1000)



Microsoft Silverlight (Version: 4.1.10329.0)



Microsoft Software Update for Web Folders  (English) 14 (Version: 14.0.6029.1000)



Microsoft User-Mode Driver Framework Feature Pack 1.0



Microsoft VC9 runtime libraries (Version: 2.0.0)



Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
(Version: 8.0.50727.4053)



Microsoft Visual C++ 2005 Redistributable (Version:
8.0.50727.42)



Microsoft Visual C++ 2005 Redistributable (Version:
8.0.56336)



Microsoft Visual C++ 2005 Redistributable (Version:
8.0.61001)



Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86
9.0.30729.5570 (Version: 9.0.30729.5570)



Microsoft Visual C++ 2008 Redistributable - x86
9.0.30729.4148 (Version: 9.0.30729.4148)



Microsoft Visual C++ 2008 Redistributable - x86
9.0.30729.6161 (Version: 9.0.30729.6161)



Microsoft Visual C++ 2010 
x86 Redistributable - 10.0.40219 (Version: 10.0.40219)



MobileMe Control Panel (Version: 3.1.8.0)



Mozilla Firefox 18.0.2 (x86 en-US) (Version: 18.0.2)



Mozilla Maintenance Service (Version: 18.0.2)



MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)



MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)



PowerDVD (Version: 7.0.3409.a)



QuickTime (Version: 7.73.80.64)



ReadingFanatic Toolbar



RealDownloader (Version: 1.3.0)



RealNetworks - Microsoft Visual C++ 2008 Runtime (Version:
9.0)



RealNetworks - Microsoft Visual C++ 2010 Runtime (Version:
10.0)



RealPlayer (Version: 16.0.0)



RealUpgrade 1.1 (Version: 1.1.0)



Setup (Version: 11.0)



SigmaTel Audio (Version: 5.10.4600.0)



Skype Click to Call (Version: 6.4.11328)



Skype™ 6.0 (Version: 6.0.126)



SUPERAntiSpyware (Version: 5.0.1128)



swMSM (Version: 12.0.0.1)



TVvie



Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
(Version: 1)



Update for Microsoft Office 2010 (KB2553065)



Update for Microsoft Office 2010 (KB2553092)



Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition



Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition



Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition



Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition



Update for Microsoft Office 2010 (KB2566458)



Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition



Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition



Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition



Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition



Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition



Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition



Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition



Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition



Update for Microsoft Outlook Social Connector 2010
(KB2553406) 32-Bit Edition



Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit
Edition



Update for Microsoft SharePoint Workspace 2010 (KB2589371)
32-Bit Edition



Update for Windows Internet Explorer 8 (KB2598845) (Version:
1)



Update for Windows Internet Explorer 8 (KB976662) (Version:
1)



Update for Windows XP (KB2492386) (Version: 1)



Update for Windows XP (KB2541763) (Version: 1)



Update for Windows XP (KB2641690) (Version: 1)



Update for Windows XP (KB2661254-v2) (Version: 2)



Update for Windows XP (KB2718704) (Version: 1)



Update for Windows XP (KB2736233) (Version: 1)



Update for Windows XP (KB2749655) (Version: 1)



Update Rollup 2 for Windows XP Media Center Edition 2005



Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version:
9.0.30729)



Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version:
9.0.30729.01)



VLC media player 2.0.0 (Version: 2.0.0)



WebFldrs XP (Version: 9.50.7523)



Windows Management Framework Core



Windows Media Format 11 runtime



Windows Media Player 11



Windows Media Player Firefox Plugin (Version: 1.0.0.8)



Windows Search 4.0 (Version: 04.00.6001.503)



Windows XP Media Center Edition 2005 KB2502898



Windows XP Media Center Edition 2005 KB2619340



Windows XP Media Center Edition 2005 KB2628259



Windows XP Media Center Edition 2005 KB925766



Windows XP Service Pack 3 (Version: 20080414.031525)



WinRAR archiver



 



========================= Devices:
================================



 



Name: Video Controller (VGA Compatible)



Description: Video Controller (VGA Compatible)



Class Guid:



Manufacturer:



Service:



Problem: : The drivers for this device are not installed.
(Code 28)



Resolution: To install the drivers for this device, click
"Update Driver", which starts the Hardware Update wizard.



 



Name: RADEON X300 Series Secondary



Description: RADEON X300 Series Secondary



Class Guid:  TI
Technologies Inc.



Manufacturer: ATI Technologies Inc.



Service: ati2mtag



Problem: : Windows cannot start this hardware device because
its configuration information (in the registry) is incomplete or damaged. (Code
19)



Resolution: A registry problem was detected.



 This can occur when
more than one service is defined for a device, if there is a failure opening
the service subkey, or if the driver name cannot be obtained from the service
subkey. Try these options:



On the "General Properties" tab of the device,
click "Troubleshoot" to start the troubleshooting wizard.



Click "Uninstall", and then click "Scan for
hardware changes" to load a usable driver.



 



 



========================= Memory info:
===================================



 



Percentage of memory in use: 23%



Total physical RAM: 3582.09 MB



Available physical RAM: 2754.04 MB



Total Pagefile: 5463.4 MB



Available Pagefile: 4597.64 MB



Total Virtual: 2047.88 MB



Available Virtual: 1973.07 MB



 



========================= Partitions: =====================================



 



2 Drive c: () (Fixed) (Total:232.82 GB) (Free:131.19 GB)
NTFS



 



========================= Users:
========================================



 



User accounts for \\DAVID-BB02070B7



 



Administrator           
ASPNET                   David                    



Guest                   
HelpAssistant           
Joyce                   



SUPPORT_388945a0        



 



========================= Minidump Files
==================================



 



No minidump file found



 



========================= Restore Points
==================================



 



21-11-2012 09:17:50 System Checkpoint



22-11-2012 10:13:20 System Checkpoint



23-11-2012 11:06:52 System Checkpoint



24-11-2012 12:01:57 System Checkpoint



25-11-2012 12:57:57 System Checkpoint



26-11-2012 14:09:03 System Checkpoint



27-11-2012 14:51:03 System Checkpoint



28-11-2012 15:59:54 System Checkpoint



29-11-2012 16:16:55 System Checkpoint



30-11-2012 16:44:22 System Checkpoint



01-12-2012 17:42:13 System Checkpoint



03-12-2012 01:05:59 System Checkpoint



04-12-2012 01:16:22 System Checkpoint



05-12-2012 03:19:03 System Checkpoint



06-12-2012 03:26:56 System Checkpoint



07-12-2012 03:45:04 System Checkpoint



08-12-2012 03:52:42 System Checkpoint



09-12-2012 04:35:25 System Checkpoint



10-12-2012 05:22:09 System Checkpoint



11-12-2012 06:17:13 System Checkpoint



12-12-2012 08:00:23 Software Distribution Service 3.0



13-12-2012 08:26:15 System Checkpoint



14-12-2012 09:17:56 System Checkpoint



15-12-2012 10:17:51 System Checkpoint



16-12-2012 11:06:31 System Checkpoint



17-12-2012 11:17:35 System Checkpoint



18-12-2012 12:14:53 System Checkpoint



19-12-2012 13:14:53 System Checkpoint



21-12-2012 00:15:24 System Checkpoint



21-12-2012 08:00:15 Software Distribution Service 3.0



22-12-2012 08:23:17 System Checkpoint



23-12-2012 09:19:08 System Checkpoint



24-12-2012 09:30:34 System Checkpoint



25-12-2012 10:26:50 System Checkpoint



26-12-2012 11:23:30 System Checkpoint



27-12-2012 12:19:58 System Checkpoint



28-12-2012 13:15:43 System Checkpoint



29-12-2012 14:37:50 System Checkpoint



30-12-2012 15:06:33 System Checkpoint



31-12-2012 16:30:28 System Checkpoint



01-01-2013 08:00:16 Software Distribution Service 3.0



01-01-2013 12:36:07 Removed Ask Toolbar.



01-01-2013 12:38:51 Removed Bonjour



01-01-2013 12:40:41 Removed Strongvault Online Backup



02-01-2013 14:04:04 System Checkpoint



03-01-2013 15:39:05 System Checkpoint



04-01-2013 16:30:48 System Checkpoint



05-01-2013 08:00:15 Software Distribution Service 3.0



06-01-2013 14:05:10 System Checkpoint



06-01-2013 21:13:01 Software Distribution Service 3.0



07-01-2013 12:34:17 Removed Safari



08-01-2013 12:54:33 System Checkpoint



09-01-2013 13:42:41 System Checkpoint



10-01-2013 08:00:17 Software Distribution Service 3.0



11-01-2013 08:36:08 System Checkpoint



12-01-2013 08:45:08 System Checkpoint



13-01-2013 09:45:06 System Checkpoint



13-01-2013 18:57:34 Installed DirectX



14-01-2013 19:28:25 System Checkpoint



15-01-2013 08:00:14 Software Distribution Service 3.0



16-01-2013 08:16:13 System Checkpoint



17-01-2013 08:48:39 System Checkpoint



18-01-2013 09:16:19 System Checkpoint



19-01-2013 17:24:13 System Checkpoint



20-01-2013 20:58:25 System Checkpoint



21-01-2013 21:01:06 System Checkpoint



22-01-2013 21:35:08 System Checkpoint



23-01-2013 21:51:47 System Checkpoint



25-01-2013 00:15:56 System Checkpoint



26-01-2013 00:36:29 System Checkpoint



27-01-2013 01:22:04 System Checkpoint



28-01-2013 03:49:34 System Checkpoint



29-01-2013 04:00:56 System Checkpoint



30-01-2013 04:01:36 System Checkpoint



31-01-2013 05:01:36 System Checkpoint



01-02-2013 05:56:38 System Checkpoint



02-02-2013 12:13:29 System Checkpoint



03-02-2013 12:33:53 System Checkpoint



04-02-2013 13:28:04 System Checkpoint



04-02-2013 18:22:43 Installed Java™ 6 Update 39



04-02-2013 18:23:21 Installed Java Runtime Environment



05-02-2013 19:21:11 System Checkpoint



06-02-2013 20:16:47 System Checkpoint



07-02-2013 21:12:13 System Checkpoint



08-02-2013 21:20:25 System Checkpoint



09-02-2013 22:27:33 System Checkpoint



11-02-2013 00:07:41 System Checkpoint



12-02-2013 00:52:04 System Checkpoint



13-02-2013 01:47:47 System Checkpoint



14-02-2013 02:42:16 System Checkpoint



14-02-2013 08:00:21 Software Distribution Service 3.0



15-02-2013 08:32:13 System Checkpoint



16-02-2013 08:55:47 System Checkpoint



17-02-2013 09:53:33 System Checkpoint



18-02-2013 10:15:52 System Checkpoint



 



**** End of log ****



 



#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:37 PM

Posted 22 February 2013 - 02:43 PM

Since the issue is resolved would you like to check with a couple more programs for anything else or is everything fine now?



#5 Capt.Bananas

Capt.Bananas
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:37 PM

Posted 25 February 2013 - 12:47 PM

You gave me a couple of more to try. I will - and will keep copy of results for you.

Again thanks for help.

Capt.Bananas



#6 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:37 PM

Posted 25 February 2013 - 05:08 PM

Ok here are a couple more steps these are just to be sure all is well. :)

 

Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe


Right Click it Run As Admin . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results



Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.filehippo.com/download_malwarebytes_anti_malware/download/ecf14848530d11a2f09a94b92a69fcfa/

Post the log here,


Update do a quick scan with Superantispyware remove all this finds reboot.
http://www.superantispyware.com/downloadfile.html?productid=SUPERANTISPYWAREFREE
post the log here.




Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users