Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Acer one netbook freezing


  • This topic is locked This topic is locked
16 replies to this topic

#1 MES74

MES74

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 09 July 2013 - 11:18 PM

I started this topic;

 

http://www.bleepingcomputer.com/forums/t/486285/acer-one-netbook-freezing/

 

"My wife's Acer aspire one running XP keeps freezing up after about 10 min of being idle. I cant ascertain if its infected (I think it is) because it freezes if i do a virus or malware scan. any and all help will be appreciated"

 

and was directed to move the question here. here are my logs

 

 

 

DDS;

DDS (Ver_2012-11-20.01) - NTFS_x86 
Internet Explorer: 8.0.6001.18702  BrowserJavaVersion: 10.21.2
Run by Kate at 11:38:15 on 2013-07-09
Microsoft Windows XP Home Edition  5.1.2600.3.1252.1.1033.18.1014.197 [GMT -5:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Enabled* 
.
============== Running Processes ================
.
C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fast Free Converter\FastFreeConverterUpdt.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
C:\Program Files\Wajam\Updater\WajamUpdater.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\System32\alg.exe
C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\PROGRAM FILES\COMMON FILES\JAVA\JAVA UPDATE\JUSCHED.EXE
C:\Documents and Settings\Kate\Application Data\Spotify\Data\SpotifyWebHelper.exe
C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe
C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aspire_one
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aspire_one
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: <No Name>:  - LocalServer32 - <no file>
uURLSearchHooks: FCToolbarURLSearchHook Class: {96b985b7-3cf9-456a-9db6-791710e60f5f} - c:\program files\mypoints toolbar 2.0\Helper.dll
BHO: StumbleUpon Launcher: {145B29F4-A56B-4b90-BBAC-45784EBEBBB7} - c:\program files\stumbleupon\StumbleUponIEBar.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: FoodBuzz: {1C6E034D-B4B6-4D96-94B5-4163A5EB2195} - c:\program files\foodbuzz\extension\adxloader.dll
BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - <orphaned>
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>
BHO: Freecause Toolbar BHO: {614BDA1F-9BEF-4CD1-BDE4-FA4804929B4A} - c:\program files\mypoints toolbar 2.0\Toolbar.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: SelectionLinks: {878B8524-AED5-4870-9A96-A515440DAC75} - c:\program files\oapps\SelectionLinks.dll
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Wajam: {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - c:\program files\wajam\ie\priam_bho.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\microsoft\bingbar\7.1.391.0\BingExt.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: GetSavin 5.0: {FB5078B7-2132-4B2F-A421-A8DEB3FEA801} - c:\documents and settings\kate\local settings\application data\getsavin\ie\getsavin_1373347801.dll
TB: MyPoints Point Finder: {89A2510A-B4B6-4683-BEC9-1B96700BC7F1} - c:\program files\mypoints toolbar 2.0\Toolbar.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: MyPoints Point Finder: {89A2510A-B4B6-4683-BEC9-1B96700BC7F1} - c:\program files\mypoints toolbar 2.0\Toolbar.dll
TB: StumbleUpon Toolbar: {5093EB4C-3E93-40AB-9266-B607BA87BDC8} - c:\program files\stumbleupon\StumbleUponIEBar.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - 
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Advanced SystemCare 5] "c:\program files\iobit\advanced systemcare 5\ASCTray.exe" /AutoStart
uRun: [Google Update] "c:\documents and settings\kate\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [GoogleChromeAutoLaunch_B96F5E05859167264837B04CB251841E] "c:\documents and settings\kate\local settings\application data\google\chrome\application\chrome.exe" --no-startup-window
uRun: [FoodBuzzUpdate] c:\program files\foodbuzz\update\FoodBuzzUpdate.exe
uRun: [Spotify Web Helper] "c:\documents and settings\kate\application data\spotify\data\SpotifyWebHelper.exe"
mRun: [Bdagent] c:\program files\bitdefender\bitdefender 2013\bdagent.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert link target to existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC} - c:\program files\java\jre7\bin\jp2iexp.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {EFD1E13D-1CB3-4545-B754-CA410FE7734F} - hxxp://www.cvsphoto.com/upload/activex/v3_0_0_2/PhotoCenter_ActiveX_Control.cab
TCP: NameServer = 192.168.5.1
TCP: Interfaces\{58190320-79CE-4869-BD61-E2967DB19405} : DHCPNameServer = 192.168.5.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
.
============= SERVICES / DRIVERS ===============
.
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2012-7-11 116608]
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files\iobit\advanced systemcare 5\ASCService.exe [2012-4-17 913752]
R2 FastFreeConverterUpdt;FastFreeConverterUpdt;c:\program files\fast free converter\FastFreeConverterUpdt.exe [2012-11-26 687104]
R2 RS_Service;Raw Socket Service;c:\program files\acer\acer vcm\RS_Service.exe [2009-3-12 237568]
R2 WajamUpdater;WajamUpdater;c:\program files\wajam\updater\WajamUpdater.exe [2013-5-2 109064]
R3 avchv;avchv Function Driver;c:\windows\system32\drivers\avchv.sys [2013-1-9 242504]
R3 BBUpdate;BBUpdate;c:\program files\microsoft\bingbar\7.1.391.0\SeaPort.EXE [2012-6-11 240208]
R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [2009-3-3 38912]
R3 M3000Srv;USB2.0 UVC WebCam Driver;c:\windows\system32\drivers\M3000KNT.sys [2009-5-8 145408]
S0 avc3;avc3;c:\windows\system32\drivers\avc3.sys --> c:\windows\system32\drivers\avc3.sys [?]
S1 A2DDA;A2 Direct Disk Access Support Driver;\??\c:\documents and settings\kate\desktop\m\run\a2ddax86.sys --> c:\documents and settings\kate\desktop\m\run\a2ddax86.sys [?]
S2 BBSvc;BingBar Service;c:\program files\microsoft\bingbar\7.1.391.0\BBSvc.EXE [2012-6-11 193616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-2-28 161384]
S2 UPDATESRV;Bitdefender Desktop Update Service;"c:\program files\bitdefender\bitdefender 2013\updatesrv.exe" /service --> c:\program files\bitdefender\bitdefender 2013\updatesrv.exe [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2009-3-12 1684736]
S3 avckf;avckf;c:\windows\system32\drivers\avckf.sys --> c:\windows\system32\drivers\avckf.sys [?]
S3 BDSandBox;BDSandBox;c:\windows\system32\drivers\bdsandbox.sys [2013-1-9 66392]
S3 Leapfrog-USBLAN;Leapfrog-USBLAN;c:\windows\system32\drivers\btblan.sys [2012-12-2 33792]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2013-2-23 27064]
S3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader;c:\windows\system32\drivers\rts5121.sys --> c:\windows\system32\drivers\RTS5121.sys [?]
S3 Rts516xIR;Realtek IR Driver;c:\windows\system32\drivers\rts516xir.sys --> c:\windows\system32\drivers\Rts516xIR.sys [?]
S3 StumbleUponUpdateService;StumbleUponUpdateService;c:\program files\stumbleupon\StumbleUponUpdateService.exe [2011-4-14 103336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 gzflt;gzflt;c:\windows\system32\drivers\gzflt.sys --> c:\windows\system32\drivers\gzflt.sys [?]
.
=============== Created Last 30 ================
.
2013-07-09 05:36:12 -------- d-----r- c:\program files\Skype
2013-07-09 05:29:49 -------- d-----w- c:\documents and settings\kate\local settings\application data\Wajam
2013-07-09 05:29:44 -------- d-----w- c:\program files\Wajam
2013-07-09 05:29:14 -------- d-----w- c:\documents and settings\kate\local settings\application data\getsavin
2013-07-09 05:00:07 -------- d-----w- C:\2fedf8e557d3bb4124fc9a36a876f804
2013-07-09 04:56:54 -------- d-----w- c:\program files\File Type Helper
2013-07-09 04:56:49 -------- d-----w- c:\program files\Fast Free Converter
2013-07-09 04:55:06 -------- d-----w- c:\program files\FoodBuzz
2013-07-09 04:53:58 -------- d-----w- c:\program files\OApps
2013-06-23 18:38:24 1376 ----a-w- c:\documents and settings\all users\application data\1372012704.bdinstall.bin
2013-06-23 18:29:07 1376 ----a-w- c:\documents and settings\all users\application data\1372012147.bdinstall.bin
2013-06-23 18:28:53 1375 ----a-w- c:\documents and settings\all users\application data\1372012133.bdinstall.bin
2013-06-23 18:27:46 1375 ----a-w- c:\documents and settings\all users\application data\1372012066.bdinstall.bin
2013-06-23 18:27:40 1376 ----a-w- c:\documents and settings\all users\application data\1372012059.bdinstall.bin
.
==================== Find3M  ====================
.
2013-06-19 04:12:16 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-19 04:12:16 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
.
============= FINISH: 11:39:17.89 ===============
 

 

Attached Files


Edited by MES74, 09 July 2013 - 11:20 PM.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 39,576 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:22 AM

Posted 14 July 2013 - 09:33 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===
Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete tab follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Rn].txt (n is a number).
===

thisisujrt.gif Please download
Junkware Removal Tool to your Desktop.
  • Please close your security software to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete, depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.
  • Please post the contents of JRT.txt into your reply.
===

Please download ComboFix from one of these locations:
Link 1
Link 2
IMPORTANT !!! Save ComboFix.exe to your Desktop
  • Disable your Anti-Virus and Anti-Spyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
  • Some Rookit infection may damage your boot sector. The Windows Recovery Console may be needed to restore it. Do not bypass this installation. You may regret it.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.
RcAuto1.gif
Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
whatnext.png
Click on Yes, to continue scanning for malware.
When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

Note: If you have difficulty properly disabling your protection programs, refer to this link --> http://www.bleepingcomputer.com/forums/topic114351.html

Do not mouse click ComboFix's window while it's running. That may cause it to stall

Note: If after running ComboFix you get this error message "Illegal operation attempted on a registry key that has been marked for deletion." when attempting to run a program all you need to do is restart the computer to reset the registry.
===

Third party programs if not up to date can be the cause of infiltration an infection.

Please restart the computer before running this security check..

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.
===

Please paste the logs in your next reply, DO NOT ATTACH THEM
Let me know what problem persists.

#3 MES74

MES74
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 15 July 2013 - 02:27 PM

nasdaq

 Thanks for your help. I followed your directions and will post the logs but when I ran the ComboFix it went well and finished scan 1, 2 &3 then the computer froze up. this happend twice and both tomes I didn't touch it for 30 min??? any advice.

 



# AdwCleaner v2.305 - Logfile created 07/15/2013 at 13:10:26
# Updated 11/07/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Kate - ACER-330BB84976
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Kate\Desktop\adwcleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
Stopped & Deleted : WajamUpdater
 
***** [Files / Folders] *****
 
Deleted on reboot : C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Ask
Folder Deleted : C:\Documents and Settings\All Users\Start Menu\Programs\Wondershare
Folder Deleted : C:\Documents and Settings\Kate\Application Data\StumbleUpon
Folder Deleted : C:\Documents and Settings\Kate\Local Settings\Application Data\getsavin
Folder Deleted : C:\Documents and Settings\Kate\Local Settings\Application Data\Wajam
Folder Deleted : C:\Documents and Settings\Kate\Local Settings\Application Data\Wondershare
Folder Deleted : C:\Documents and Settings\Kate\Start Menu\Programs\StumbleUpon
Folder Deleted : C:\Documents and Settings\Kate\Start Menu\Programs\Wajam
Folder Deleted : C:\Documents and Settings\LocalService\Application Data\StumbleUpon
Folder Deleted : C:\Program Files\Common Files\Wondershare
Folder Deleted : C:\Program Files\OApps
Folder Deleted : C:\Program Files\StumbleUpon
Folder Deleted : C:\Program Files\Wajam
Folder Deleted : C:\Program Files\Wondershare
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\StumbleUpon
Key Deleted : HKCU\Software\Wajam
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Wajam
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Key Deleted : HKLM\Software\StumbleUpon
Key Deleted : HKLM\Software\Wajam
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v8.0.6001.18702
 
[OK] Registry is clean.
 
-\\ Google Chrome v27.0.1453.116
 
File : C:\Documents and Settings\Kate\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [7451 octets] - [25/02/2013 21:02:48]
AdwCleaner[S1].txt - [7512 octets] - [25/02/2013 21:03:38]
AdwCleaner[S2].txt - [6277 octets] - [15/07/2013 13:10:26]
 
########## EOF - C:\AdwCleaner[S2].txt - [6337 octets] ##########
 

 



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.0.9 (07.12.2013:2)
OS: Microsoft Windows XP x86
Ran by Kate on Mon 07/15/2013 at 13:13:28.31
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{12824201-3ED3-40B9-8C7C-E42934FE599B}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{99181F71-24C4-4FA9-845B-D0AFFF1E3D3C}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{D94A1340-2F23-40E0-BA8D-2B851080F14D}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] C:\Documents and Settings\Kate\Application Data\FCTB000060497
Failed to delete: [Folder] "C:\Program Files\fast free converter"
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 07/15/2013 at 13:18:48.84
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 



 Results of screen317's Security Check version 0.99.69  
 Windows XP Service Pack 3 x86   
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
 ESET Online Scanner v3   
 Bitdefender Antivirus Plus 2013   
`````````Anti-malware/Other Utilities Check:`````````
 SUPERAntiSpyware     
 CCleaner     
 Java™ 6 Update 29  
 Java 7 Update 21  
 Java™ 6 Update 2  
 Java version out of Date!
 Adobe Flash Player 11.7.700.224  
 Adobe Reader 9 Adobe Reader out of Date!
````````Process Check: objlist.exe by Laurent````````
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:: 14% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````
 

 



#4 nasdaq

nasdaq

  • Malware Response Team
  • 39,576 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:22 AM

Posted 16 July 2013 - 06:50 AM

Remove

Fast Free Converter,

FoodBuzz

GetSavin

 

using the Add/Remove Programs list.

Restart the computer normally.

 

Run the ComboFix let it finish.

If you computer clock stop working then close the application.

 

If no ComboFix log please run this tool.

--RogueKiller--

  •  


[LIST]

  • Quit all programs that you may have started.


  • Please disconnect any USB or external drives from the computer before you run this scan!


  • For Vista or Windows 7, right-click and select "Run as Administrator to start"


  • For Windows XP, double-click to start.


  • Wait until Prescan has finished ...


  • Then Click on "Scan" button


  • Wait until the Status box shows "Scan Finished"


  • click on "delete"


  • Wait until the Status box shows "Deleting Finished"


  • Click on "Report" and copy/paste the content of the Notepad into your next reply.


  • The log should be found in RKreport[1].txt on your Desktop


  • Exit/Close RogueKiller+

Post the log , and include a fresh DDS log for my review.

 

 

 

 

 

 

 

 



#5 MES74

MES74
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 16 July 2013 - 03:16 PM

Rk;

 

RogueKiller V8.6.2 [Jul  5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
 
Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : Kate [Admin rights]
Mode : Remove -- Date : 07/16/2013 14:54:20
| ARK || FAK || MBR |
 
¤¤¤ Bad processes : 0 ¤¤¤
 
¤¤¤ Registry Entries : 1 ¤¤¤
[HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> DELETED
 
¤¤¤ Scheduled tasks : 0 ¤¤¤
 
¤¤¤ Startup Entries : 0 ¤¤¤
 
¤¤¤ Web browsers : 0 ¤¤¤
 
¤¤¤ Particular Files / Folders: ¤¤¤
 
¤¤¤ Driver : [LOADED] ¤¤¤
 
¤¤¤ External Hives: ¤¤¤
 
¤¤¤ Infection :  ¤¤¤
 
¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
 
 
127.0.0.1 localhost
 
 
¤¤¤ MBR Check: ¤¤¤
 
+++++ PhysicalDrive0: Hitachi HTS543216L9SA00 +++++
--- User ---
[MBR] d674bf3d4478356534c7928037fa5082
[BSP] 64351435cf86308a5d72535434189a8b : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 7169 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 14684160 | Size: 145456 Mo
User = LL1 ... OK!
User = LL2 ... OK!
 
Finished : << RKreport[0]_D_07162013_145420.txt >>
RKreport[0]_S_07162013_145357.txt
 
 
 

Dds;

 

DDS (Ver_2012-11-20.01) - NTFS_x86 
Internet Explorer: 8.0.6001.18702  BrowserJavaVersion: 10.21.2
Run by Kate at 14:55:19 on 2013-07-16
Microsoft Windows XP Home Edition  5.1.2600.3.1252.1.1033.18.1014.658 [GMT -5:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Enabled* 
.
============== Running Processes ================
.
C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fast Free Converter\FastFreeConverterUpdt.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\WebCam\M3000\M3000Mnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe
C:\Documents and Settings\Kate\Application Data\Spotify\Data\SpotifyWebHelper.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRAM FILES\COMMON FILES\JAVA\JAVA UPDATE\JUSCHED.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aspire_one
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aspire_one
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: <No Name>:  - LocalServer32 - <no file>
uURLSearchHooks: FCToolbarURLSearchHook Class: {96b985b7-3cf9-456a-9db6-791710e60f5f} - c:\program files\mypoints toolbar 2.0\Helper.dll
BHO: StumbleUpon Launcher: {145B29F4-A56B-4b90-BBAC-45784EBEBBB7} - 
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: FoodBuzz: {1C6E034D-B4B6-4D96-94B5-4163A5EB2195} - c:\program files\foodbuzz\extension\adxloader.dll
BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - <orphaned>
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>
BHO: Freecause Toolbar BHO: {614BDA1F-9BEF-4CD1-BDE4-FA4804929B4A} - c:\program files\mypoints toolbar 2.0\Toolbar.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: SelectionLinks: {878B8524-AED5-4870-9A96-A515440DAC75} - 
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: GetSavin 5.0: {FB5078B7-2132-4B2F-A421-A8DEB3FEA801} - 
TB: MyPoints Point Finder: {89A2510A-B4B6-4683-BEC9-1B96700BC7F1} - c:\program files\mypoints toolbar 2.0\Toolbar.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: MyPoints Point Finder: {89A2510A-B4B6-4683-BEC9-1B96700BC7F1} - c:\program files\mypoints toolbar 2.0\Toolbar.dll
TB: StumbleUpon Toolbar: {5093EB4C-3E93-40AB-9266-B607BA87BDC8} - 
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Advanced SystemCare 5] "c:\program files\iobit\advanced systemcare 5\ASCTray.exe" /AutoStart
uRun: [Google Update] "c:\documents and settings\kate\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [FoodBuzzUpdate] c:\program files\foodbuzz\update\FoodBuzzUpdate.exe
uRun: [Spotify Web Helper] "c:\documents and settings\kate\application data\spotify\data\SpotifyWebHelper.exe"
mRun: [Bdagent] c:\program files\bitdefender\bitdefender 2013\bdagent.exe
mRun: [M3000Mnt] Rundll32.exe M3000Rmv.dll ,WinMainRmv /StartStillMnt
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert link target to existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC} - c:\program files\java\jre7\bin\jp2iexp.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {EFD1E13D-1CB3-4545-B754-CA410FE7734F} - hxxp://www.cvsphoto.com/upload/activex/v3_0_0_2/PhotoCenter_ActiveX_Control.cab
TCP: NameServer = 206.166.83.20 206.166.17.20
TCP: Interfaces\{58190320-79CE-4869-BD61-E2967DB19405} : DHCPNameServer = 206.166.83.20 206.166.17.20
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
.
============= SERVICES / DRIVERS ===============
.
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2012-7-11 116608]
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files\iobit\advanced systemcare 5\ASCService.exe [2012-4-17 913752]
R2 FastFreeConverterUpdt;FastFreeConverterUpdt;c:\program files\fast free converter\FastFreeConverterUpdt.exe [2012-11-26 687104]
R2 RS_Service;Raw Socket Service;c:\program files\acer\acer vcm\RS_Service.exe [2009-3-12 237568]
R3 avchv;avchv Function Driver;c:\windows\system32\drivers\avchv.sys [2013-1-9 242504]
R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [2009-3-3 38912]
R3 M3000Srv;USB2.0 UVC WebCam Driver;c:\windows\system32\drivers\M3000KNT.sys [2009-5-8 145408]
S0 avc3;avc3;c:\windows\system32\drivers\avc3.sys --> c:\windows\system32\drivers\avc3.sys [?]
S1 A2DDA;A2 Direct Disk Access Support Driver;\??\c:\documents and settings\kate\desktop\m\run\a2ddax86.sys --> c:\documents and settings\kate\desktop\m\run\a2ddax86.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-2-28 161384]
S2 UPDATESRV;Bitdefender Desktop Update Service;"c:\program files\bitdefender\bitdefender 2013\updatesrv.exe" /service --> c:\program files\bitdefender\bitdefender 2013\updatesrv.exe [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2009-3-12 1684736]
S3 avckf;avckf;c:\windows\system32\drivers\avckf.sys --> c:\windows\system32\drivers\avckf.sys [?]
S3 BDSandBox;BDSandBox;c:\windows\system32\drivers\bdsandbox.sys [2013-1-9 66392]
S3 Leapfrog-USBLAN;Leapfrog-USBLAN;c:\windows\system32\drivers\btblan.sys [2012-12-2 33792]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2013-2-23 27064]
S3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader;c:\windows\system32\drivers\rts5121.sys --> c:\windows\system32\drivers\RTS5121.sys [?]
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver;c:\windows\system32\drivers\rt2870.sys [2013-7-9 1174976]
S3 Rts516xIR;Realtek IR Driver;c:\windows\system32\drivers\rts516xir.sys --> c:\windows\system32\drivers\Rts516xIR.sys [?]
S3 StumbleUponUpdateService;StumbleUponUpdateService;"c:\program files\stumbleupon\stumbleuponupdateservice.exe" --> c:\program files\stumbleupon\StumbleUponUpdateService.exe [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 gzflt;gzflt;c:\windows\system32\drivers\gzflt.sys --> c:\windows\system32\drivers\gzflt.sys [?]
.
=============== Created Last 30 ================
.
2013-07-16 19:11:00 -------- d-s---w- C:\ComboFix
2013-07-16 19:10:22 -------- d-----w- C:\e873c80d65eebf8f4b
2013-07-15 19:06:18 1376 ----a-w- c:\documents and settings\all users\application data\1373915178.bdinstall.bin
2013-07-15 19:06:14 1376 ----a-w- c:\documents and settings\all users\application data\1373915174.bdinstall.bin
2013-07-15 18:30:41 -------- d-sha-r- C:\cmdcons
2013-07-15 18:28:06 98816 ----a-w- c:\windows\sed.exe
2013-07-15 18:28:06 256000 ----a-w- c:\windows\PEV.exe
2013-07-15 18:28:06 208896 ----a-w- c:\windows\MBR.exe
2013-07-09 22:37:36 -------- d-----w- C:\f27bf31b0b2ff5c5b31be0
2013-07-09 22:21:35 1376 ----a-w- c:\documents and settings\all users\application data\1373408495.bdinstall.bin
2013-07-09 22:21:34 1376 ----a-w- c:\documents and settings\all users\application data\1373408494.bdinstall.bin
2013-07-09 22:21:18 1376 ----a-w- c:\documents and settings\all users\application data\1373408478.bdinstall.bin
2013-07-09 22:20:43 1376 ----a-w- c:\documents and settings\all users\application data\1373408443.bdinstall.bin
2013-07-09 19:12:51 238944 ----a-w- c:\windows\system32\RaCoInst.dll
2013-07-09 19:12:51 1174976 ----a-w- c:\windows\system32\drivers\rt2870.sys
2013-07-09 19:12:47 -------- d-----w- c:\documents and settings\all users\application data\Tenda Driver
2013-07-09 05:36:12 -------- d-----r- c:\program files\Skype
2013-07-09 05:00:07 -------- d-----w- C:\2fedf8e557d3bb4124fc9a36a876f804
2013-07-09 04:56:54 -------- d-----w- c:\program files\File Type Helper
2013-07-09 04:56:49 -------- d-----w- c:\program files\Fast Free Converter
2013-07-09 04:55:06 -------- d-----w- c:\program files\FoodBuzz
2013-06-23 18:38:24 1376 ----a-w- c:\documents and settings\all users\application data\1372012704.bdinstall.bin
2013-06-23 18:29:07 1376 ----a-w- c:\documents and settings\all users\application data\1372012147.bdinstall.bin
2013-06-23 18:28:53 1375 ----a-w- c:\documents and settings\all users\application data\1372012133.bdinstall.bin
2013-06-23 18:27:46 1375 ----a-w- c:\documents and settings\all users\application data\1372012066.bdinstall.bin
2013-06-23 18:27:40 1376 ----a-w- c:\documents and settings\all users\application data\1372012059.bdinstall.bin
.
==================== Find3M  ====================
.
2013-06-19 04:12:16 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-19 04:12:16 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-05-07 22:30:06 920064 ----a-w- c:\windows\system32\wininet.dll
2013-05-07 22:30:05 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-05-07 22:30:05 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-05-07 21:53:29 385024 ----a-w- c:\windows\system32\html.iec
2013-05-03 01:30:20 2149888 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-05-03 00:38:17 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe
.
============= FINISH: 14:56:32.68 ===============
 

Att;

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 7/25/2009 10:35:25 PM
System Uptime: 7/16/2013 2:43:14 PM (0 hours ago)
.
Motherboard: Acer |  | Aspire one      
Processor:          Intel® Atom™ CPU N270   @ 1.60GHz | CPU | 1596/533mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 142 GiB total, 49.623 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP340: 4/12/2013 5:33:44 PM - Removed Ask Toolbar.
RP341: 4/12/2013 5:43:09 PM - Removed Ask Toolbar.
RP342: 4/13/2013 6:53:56 AM - Software Distribution Service 3.0
RP343: 4/20/2013 10:23:07 AM - System Checkpoint
RP344: 4/25/2013 6:39:54 PM - System Checkpoint
RP345: 5/2/2013 10:05:13 AM - System Checkpoint
RP346: 5/2/2013 5:43:37 PM - Installed Java 7 Update 21
RP347: 5/3/2013 6:31:04 PM - System Checkpoint
RP348: 5/5/2013 7:01:22 AM - System Checkpoint
RP349: 5/9/2013 10:02:59 AM - System Checkpoint
RP350: 5/10/2013 10:28:35 AM - System Checkpoint
RP351: 5/17/2013 2:08:17 AM - Software Distribution Service 3.0
RP352: 5/17/2013 6:28:28 PM - Software Distribution Service 3.0
RP353: 5/23/2013 8:58:57 PM - System Checkpoint
RP354: 5/30/2013 12:06:59 AM - System Checkpoint
RP355: 6/5/2013 9:40:13 AM - System Checkpoint
RP356: 6/6/2013 2:55:42 PM - System Checkpoint
RP357: 6/8/2013 3:03:20 PM - System Checkpoint
RP358: 6/11/2013 10:36:51 AM - System Checkpoint
RP359: 6/20/2013 12:06:13 AM - System Checkpoint
RP360: 6/23/2013 1:00:57 PM - Software Distribution Service 3.0
RP361: 6/23/2013 1:32:46 PM - Software Distribution Service 3.0
RP362: 7/8/2013 10:48:52 PM - Software Distribution Service 3.0
RP363: 7/8/2013 11:52:58 PM - Software Distribution Service 3.0
RP364: 7/9/2013 12:36:06 AM - Installed Skype™ 6.3
RP365: 7/9/2013 2:12:47 PM - Installed Tenda Wireless LAN
RP366: 7/9/2013 5:17:48 PM - Software Distribution Service 3.0
RP367: 7/15/2013 1:28:29 PM - ComboFix created restore point
RP368: 7/16/2013 2:10:13 PM - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
µTorrent
Acer eRecovery Management
Acer ScreenSaver
Acer VCM
Acrobat.com
Adobe Acrobat  9 Standard - English, Français, Deutsch
Adobe Acrobat 9.5.5 - CPSID_83708
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Shockwave Player 12.0
Adobe SVG Viewer 6.0
Advanced SystemCare 5
Alice Greenfingers
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Atheros Driver Installation Program
ATT-PRT22
Bitdefender Antivirus Plus 2013
Bonjour
Bookworm Adventures
C:\Program Files\Acer GameZone\GameConsole
CCleaner
Choice Guard
Compatibility Pack for the 2007 Office system
Convert AVI to MP4
Dream Day First Home
ESET Online Scanner v3
eSobi v2
FoodBuzz
Free RAR Extract Frog
Google Chrome
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
HiJackThis
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB2756822)
Hotfix for Windows XP (KB2779562)
Hotfix for Windows XP (KB932716-v2)
Hotfix for Windows XP (KB949764)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB954708)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
HP Photo Creations
HP Photosmart 5520 series Basic Device Software
HP Photosmart 5520 series Help
HP Photosmart 5520 series Product Improvement Study
HP Update
iExplorer 2.2.1.3
InstallMgr
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes
Java 7 Update 21
Java Auto Updater
Java™ 6 Update 2
Java™ 6 Update 29
Junk Mail filter update
LeapFrog Connect
LeapFrog LeapPad Explorer Plugin
LEGO® Indiana Jones™ Demo
LivePerson
Microsoft .NET Framework 2.0 Client Profile Basic Version 1.0.0.13
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Default Manager
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Small Business 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Reader
Microsoft Silverlight
Microsoft Software Update for Web Folders  (English) 12
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
MSN
MSN Toolbar
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Picasa 3
PlayReady PC Runtime x86
QuickTime
Realtek High Definition Audio Driver
Revo Uninstaller Pro 3.0.2
Scholastic eReader Support Files
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition 
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition 
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition 
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition 
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition 
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB2675157)
Security Update for Windows Internet Explorer 8 (KB2699988)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows Internet Explorer 8 (KB2744842)
Security Update for Windows Internet Explorer 8 (KB2761465)
Security Update for Windows Internet Explorer 8 (KB2817183)
Security Update for Windows Internet Explorer 8 (KB2838727)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2491683)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2685939)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2709162)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2718523)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2723135)
Security Update for Windows XP (KB2724197)
Security Update for Windows XP (KB2727528)
Security Update for Windows XP (KB2731847)
Security Update for Windows XP (KB2753842-v2)
Security Update for Windows XP (KB2753842)
Security Update for Windows XP (KB2757638)
Security Update for Windows XP (KB2758857)
Security Update for Windows XP (KB2761226)
Security Update for Windows XP (KB2770660)
Security Update for Windows XP (KB2779030)
Security Update for Windows XP (KB2780091)
Security Update for Windows XP (KB2802968)
Security Update for Windows XP (KB2807986)
Security Update for Windows XP (KB2808735)
Security Update for Windows XP (KB2813170)
Security Update for Windows XP (KB2813345)
Security Update for Windows XP (KB2820197)
Security Update for Windows XP (KB2820917)
Security Update for Windows XP (KB2829361)
Security Update for Windows XP (KB2839229)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Segoe UI
SelectionLinks
Skype™ 6.3
Spelling Dictionaries Support For Adobe Reader 9
Spotify
Storia
SUPERAntiSpyware
Supercow
swMSM
TeamViewer 7
Tenda Wireless LAN Card
Unity Web Player
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2768021) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB972636)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2616676-v2)
Update for Windows XP (KB2641690)
Update for Windows XP (KB2661254-v2)
Update for Windows XP (KB2718704)
Update for Windows XP (KB2736233)
Update for Windows XP (KB2749655)
Update for Windows XP (KB898461)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
USB2.0 Card Reader Software
Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explorer Plugin)
VLC media player 2.0.6
WebCam
WebFldrs XP
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer
.
==== Event Viewer Messages From Past Week ========
.
7/9/2013 5:20:37 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2789643).
7/9/2013 5:20:37 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2729450).
7/9/2013 5:19:58 PM, error: Service Control Manager [7023]  - The Application Management service terminated with the following error:  The specified module could not be found.
7/9/2013 12:20:33 PM, error: Dhcp [1002]  - The IP address lease 192.168.5.192 for the Network Card with network address 00242C551F7E has been denied by the DHCP server 10.0.1.1 (The DHCP Server sent a DHCPNACK message).
7/9/2013 11:00:52 PM, error: Dhcp [1002]  - The IP address lease 10.0.1.27 for the Network Card with network address 00242C551F7E has been denied by the DHCP server 192.168.5.1 (The DHCP Server sent a DHCPNACK message).
7/16/2013 2:46:51 PM, error: System Error [1003]  - Error code 1000008e, parameter1 c0000005, parameter2 bf86601e, parameter3 a2f99ae4, parameter4 00000000.
7/16/2013 2:44:08 PM, error: System Error [1003]  - Error code 1000008e, parameter1 c0000005, parameter2 00000000, parameter3 9ea6babc, parameter4 00000000.
7/16/2013 2:11:13 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817563).
7/16/2013 2:11:13 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows XP (KB2850851).
7/16/2013 2:11:13 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows XP (KB2845187).
7/16/2013 2:11:13 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows XP (KB2834886).
7/16/2013 2:11:13 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows Media Format Runtime 9 for Windows XP (KB2803821).
7/16/2013 2:11:13 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008 x86 (KB2804576).
7/16/2013 2:11:13 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 3.5 SP1 on Windows XP, Server 2003, Vista, Server 2008 x86 (KB2840629).
7/16/2013 2:11:13 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2804577).
7/16/2013 2:11:13 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2742596).
7/16/2013 2:11:13 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2604092).
7/16/2013 2:11:12 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706be: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2789643).
7/16/2013 2:11:12 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft Silverlight (KB2847559).
7/16/2013 2:11:12 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft Office 2007 suites (KB2687309).
7/16/2013 2:11:12 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008 x86 (KB2840628).
7/16/2013 2:11:12 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Server 2008 x86 (KB2832407).
7/16/2013 2:11:12 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 3.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2832411).
7/16/2013 2:11:12 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2844285).
7/16/2013 2:11:12 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2729450).
7/16/2013 2:11:12 PM, error: Windows Update Agent [20]  - Installation Failure: Windows failed to install the following update with error 0x800706ba: Microsoft - Other hardware - HID Non-User Input Data Filter (KB 911895).
7/15/2013 1:35:19 PM, error: Service Control Manager [7034]  - The FastFreeConverterUpdt service terminated unexpectedly.  It has done this 1 time(s).
7/10/2013 9:48:46 AM, error: Service Control Manager [7000]  - The trufos service failed to start due to the following error:  The system cannot find the file specified.
7/10/2013 9:48:46 AM, error: Service Control Manager [7000]  - The Bitdefender Desktop Update Service service failed to start due to the following error:  The system cannot find the file specified.
7/10/2013 2:15:20 AM, error: DCOM [10005]  - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
7/10/2013 2:15:17 AM, error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  AFD avc3 bdftdif Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss SASDIFSV SASKUTIL Tcpip
7/10/2013 2:15:17 AM, error: Service Control Manager [7001]  - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error:  A device attached to the system is not functioning.
7/10/2013 2:15:17 AM, error: Service Control Manager [7001]  - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error:  A device attached to the system is not functioning.
7/10/2013 2:15:17 AM, error: Service Control Manager [7001]  - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:  A device attached to the system is not functioning.
7/10/2013 2:15:17 AM, error: Service Control Manager [7001]  - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error:  A device attached to the system is not functioning.
7/10/2013 2:15:17 AM, error: Service Control Manager [7001]  - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:  A device attached to the system is not functioning.
7/10/2013 2:15:17 AM, error: Service Control Manager [7001]  - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:  A device attached to the system is not functioning.
7/10/2013 2:14:54 AM, error: DCOM [10005]  - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
7/10/2013 1:58:45 AM, error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  avc3 bdftdif
.
==== End Of File ===========================
 

 



#6 MES74

MES74
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 16 July 2013 - 03:55 PM

I tried to uninstall the programs and they had errors pop up and were taken off the A/R program list but I dont think they were removed. Tried to run ComboFix and it froze again. After running the RougeKiller I got a blue screen error and these reports;

 

This System has recoverd from a Serious error.
 
 
 
Error Signature____________________________________________________________________
BCCode : 1000008e     BCP1 : C0000005     BCP2 : 00000000     BCP3 : 9EA6BABC
BCP4 : 00000000     OSVer : 5_1_2600     SP : 3_0     Product : 768_1     
 
The following Files will be included in this error report:
C:\DOCUME~1\Kate\LOCALS~1\Temp\WERa4c6.dir00\Mini031013-01.dmp
C:\DOCUME~1\Kate\LOCALS~1\Temp\WERa4c6.dir00\sysdata.xml
 
 
Then I got this one;
 
Error Signature____________________________________________________________________
BCCode : 1000008e     BCP1 : C0000005     BCP2 : BF86601E     BCP3 : A2F99AE4
BCP4 : 00000000     OSVer : 5_1_2600     SP : 3_0     Product : 768_1 
 

 



#7 nasdaq

nasdaq

  • Malware Response Team
  • 39,576 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:22 AM

Posted 17 July 2013 - 07:37 AM

Please download MiniToolBox to Desktop and run it.

Check mark the following boxes:

  • List last 10 Event Viewer log
  • List installed programs

  • Click Go and paste the content of the log (Result.txt) into your next post.
    ===


    "My wife's Acer aspire one running XP keeps freezing up after about 10 min of being idle

    If some screen saver or some power saver is set on this computer I suggest you remove it.


#8 MES74

MES74
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 17 July 2013 - 03:00 PM

Checked, no power settings and no screen savers.

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Kate (administrator) on 17-07-2013 at 14:55:11
Running from "C:\Documents and Settings\Kate\My Documents\Downloads"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/17/2013 02:52:18 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 2.0 Service Pack 2 - Update 'KB2789643' could not be installed. Error code 1603. Additional information is available in the log file C:\WINDOWS\system32\config\SYSTEM~1\LOCALS~1\Temp\Microsoft .NET Framework 2.0-KB2789643_20130717_194701531-Msi0.txt.
 
Error: (07/17/2013 02:52:02 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 2.0 Service Pack 2 -- There is a problem with this Windows Installer package. Please refer to the setup log for more information.
 
Error: (07/17/2013 02:51:14 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Microsoft .NET Framework 2.0 Service Pack 2 -- There is a problem with this Windows Installer package. Please refer to the setup log for more information.
 
Error: (07/16/2013 03:07:13 PM) (Source: Application Error) (User: )
Description: Faulting application googledrivesync.exe, version 1.10.4769.632, faulting module wxbase294u_vc90.dll, version 2.9.4.0, fault address 0x000742cc.
Processing media-specific event for [googledrivesync.exe!ws!]
 
Error: (07/16/2013 03:03:01 PM) (Source: MsiInstaller) (User: ACER-330BB84976)
Description: Product: Google Drive -- There is a problem with this Windows Installer package. Please refer to the setup log for more information.
 
Error: (07/16/2013 03:01:47 PM) (Source: MsiInstaller) (User: ACER-330BB84976)
Description: Product: Google Drive -- Error 1704. An installation for Microsoft .NET Framework 2.0 Service Pack 2 is currently suspended.  You must undo the changes made by that installation to continue.  Do you want to undo those changes?
 
Error: (07/16/2013 02:19:19 PM) (Source: MsiInstaller) (User: ACER-330BB84976)
Description: Product: Microsoft .NET Framework 2.0 Service Pack 2 -- There is a problem with this Windows Installer package. Please refer to the setup log for more information.
 
Error: (07/15/2013 00:39:14 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6187
 
Error: (07/15/2013 00:39:14 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6187
 
Error: (07/15/2013 00:39:14 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
 
System errors:
=============
Error: (07/17/2013 02:52:25 PM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2789643).
 
Error: (07/17/2013 02:45:55 PM) (Source: Dhcp) (User: )
Description: Your computer has lost the lease to its IP address 172.18.210.170 on the
Network Card with network address 00242C551F7E.
 
Error: (07/16/2013 02:46:51 PM) (Source: System Error) (User: )
Description: Error code 1000008e, parameter1 c0000005, parameter2 bf86601e, parameter3 a2f99ae4, parameter4 00000000.
 
Error: (07/16/2013 02:44:08 PM) (Source: System Error) (User: )
Description: Error code 1000008e, parameter1 c0000005, parameter2 00000000, parameter3 9ea6babc, parameter4 00000000.
 
Error: (07/16/2013 02:43:57 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
avc3
bdftdif
 
Error: (07/16/2013 02:43:52 PM) (Source: Service Control Manager) (User: )
Description: The Bitdefender Desktop Update Service service failed to start due to the following error: 
%%2
 
Error: (07/16/2013 02:43:52 PM) (Source: Service Control Manager) (User: )
Description: The trufos service failed to start due to the following error: 
%%2
 
Error: (07/16/2013 02:22:55 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
avc3
bdftdif
 
Error: (07/16/2013 02:22:50 PM) (Source: Service Control Manager) (User: )
Description: The Bitdefender Desktop Update Service service failed to start due to the following error: 
%%2
 
Error: (07/16/2013 02:22:50 PM) (Source: Service Control Manager) (User: )
Description: The trufos service failed to start due to the following error: 
%%2
 
 
Microsoft Office Sessions:
=========================
 
=========================== Installed Programs ============================
 
Acer eRecovery Management (Version: 4.00.3005)
Acer ScreenSaver (Version: 1.0.0.0304)
Acer VCM (Version: 4.00.3006)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe Acrobat  9 Standard - English, Français, Deutsch (Version: 9.5.5)
Adobe Acrobat 9.5.5 - CPSID_83708
Adobe AIR (Version: 1.0.4990)
Adobe AIR (Version: 1.0.8.4990)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Shockwave Player 12.0 (Version: 12.0.2.122)
Adobe SVG Viewer 6.0 (Version:  6.0)
Advanced SystemCare 5 (Version: 5.2.0)
Alice Greenfingers
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Atheros Driver Installation Program (Version: 7.6.1.244)
ATT-PRT22
Bitdefender Antivirus Plus 2013 (Version: 16.16.0.1348)
Bonjour (Version: 3.0.0.10)
Bookworm Adventures
C:\Program Files\Acer GameZone\GameConsole (Version: 3.0.0.0)
CCleaner (Version: 3.26)
Choice Guard (Version: 1.2.87.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Convert AVI to MP4
Dream Day First Home
ESET Online Scanner v3
eSobi v2 (Version: 2.0.3.000223)
FoodBuzz (Version: 9.0)
Free RAR Extract Frog (Version: 4.70)
Google Chrome (Version: 27.0.1453.116)
Google Drive (Version: 1.10.4769.632)
Google Earth (Version: 7.0.3.8542)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4209.2358)
Google Update Helper (Version: 1.3.21.153)
HiJackThis (Version: 1.0.0)
HP Photo Creations (Version: 1.0.0.7702)
HP Photosmart 5520 series Basic Device Software (Version: 28.0.1315.0)
HP Photosmart 5520 series Help (Version: 27.0.0)
HP Photosmart 5520 series Product Improvement Study (Version: 28.0.1315.0)
HP Update (Version: 5.003.003.001)
iExplorer 2.2.1.3
InstallMgr (Version: 1.0.39.0)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes (Version: 11.0.1.12)
Java 7 Update 21 (Version: 7.0.210)
Java Auto Updater (Version: 2.1.9.5)
Java™ 6 Update 2 (Version: 1.6.0.20)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 14.0.8050.1202)
LeapFrog Connect (Version: 4.2.9.15649)
LeapFrog LeapPad Explorer Plugin (Version: 4.2.11.15696)
LEGO® Indiana Jones™ Demo (Version: 1.00.0000)
LivePerson
Microsoft .NET Framework 2.0 Client Profile Basic Version 1.0.0.13 (Version: 1.0.0.13)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Default Manager (Version: 1.1.53.0)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Small Business 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Reader
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft Software Update for Web Folders  (English) 12 (Version: 12.0.6612.1000)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSN
MSN Toolbar (Version: 1.0.39.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Picasa 3 (Version: 3.9)
PlayReady PC Runtime x86 (Version: 1.3.0)
QuickTime (Version: 7.73.80.64)
Realtek High Definition Audio Driver (Version: 5.10.0.5798)
Revo Uninstaller Pro 3.0.2 (Version: 3.0.2)
Scholastic eReader Support Files (Version: 1.1.4246)
Segoe UI (Version: 14.0.4327.805)
SelectionLinks (Version: 1.0)
Skype™ 6.3 (Version: 6.3.105)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Spotify (Version: 0.9.1.57.ge7405149)
Storia (Version: 1.1.4246)
SUPERAntiSpyware (Version: 5.6.1014)
Supercow
swMSM (Version: 12.0.0.1)
TeamViewer 7 (Version: 7.0.12979)
Tenda Wireless LAN Card (Version: 1.5.12.0)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2768021) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB972636) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2616676-v2) (Version: 2)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB898461) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
USB2.0 Card Reader Software (Version: 6.0.6000.81)
Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explorer Plugin)
VLC media player 2.0.6 (Version: 2.0.6)
WebCam
WebFldrs XP (Version: 9.50.7523)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (Version: 1.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8050.1202)
Windows Live Communications Platform (Version: 14.0.8050.1202)
Windows Live Essentials (Version: 14.0.8050.1202)
Windows Live Mail (Version: 14.0.8050.1202)
Windows Live Messenger (Version: 14.0.8050.1202)
Windows Live Photo Gallery (Version: 14.0.8051.1204)
Windows Live Sign-in Assistant (Version: 5.000.818.6)
Windows Live Sync (Version: 14.0.8050.1202)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8050.1202)
 
**** End of log ****
 

 



#9 nasdaq

nasdaq

  • Malware Response Team
  • 39,576 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:22 AM

Posted 18 July 2013 - 08:00 AM

Navigate to this page.
http://support.microsoft.com/kb/976982?wa=wsignin1.0#method2

Under the Resolution section do the recommended fix for Mechod 1.

Restart the computer normally.

If that fails to install the .net update please return to the article and execute Method 2.

Keep me posted.

p.s.
You may also be interested in reading this topic.
http://social.technet.microsoft.com/Forums/en-US/67280da1-c84a-428b-bddb-59baf4ec6263/installer-tries-to-reinstall-same-net-updates-repeatedly

#10 nasdaq

nasdaq

  • Malware Response Team
  • 39,576 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:22 AM

Posted 24 July 2013 - 09:00 AM

Are you still with me?

#11 MES74

MES74
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 24 July 2013 - 09:44 AM

I am, just haven't had time (looking for a job). I'll do you last steeps today and get back to you.

#12 MES74

MES74
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 01 August 2013 - 12:26 AM

Sorry this took so long, I tried meth 1 but I couldn't open the .diagcab file. So I repaired it (meth 2) and when I restarted I can't get past the splash screen. Even after multiple resets there's nothing just the SS.?? Trying safe mode now.

#13 nasdaq

nasdaq

  • Malware Response Team
  • 39,576 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:22 AM

Posted 01 August 2013 - 08:12 AM

You may be able to do a System Restore prior to your attempt to fix it.

#14 MES74

MES74
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 02 August 2013 - 12:45 AM

I restored back to July 20th and still have the splash screan issue.

Edited by MES74, 02 August 2013 - 12:46 AM.


#15 nasdaq

nasdaq

  • Malware Response Team
  • 39,576 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:22 AM

Posted 02 August 2013 - 08:11 AM

Your problem is not caused by malware.

Your problem may be a hardware issue (heat in the computer etc...)

You can return to your previous topic or start a new one in the Windows XP forum
http://www.bleepingcomputer.com/forums/forum56.html

This is not my forte.

Good luck.

Time for some housekeeping
  • The following will implement some cleanup procedures as well as reset System Restore points:
  • Click Start > Run and copy/paste the following bold text into the Run box and click OK:
  • ComboFix /Uninstall
===

To remove AdwCleaner.

Please double click on AdwCleaner.exe to run the tool.
Click on Uninstall.
Confirm with Yes.

If you decide to keep the AdwCleaner tool make sure to delete your version and download the latest before running it.

Delete the other tools we used.
You can Keep the DDS tool as most forum will ask to see a log before suggesting a fix.
===




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users