Jump to content
Sign in to follow this  
hadleycat

Hadleycat's Hijack this Log :) Thanks for looking

Recommended Posts

Hi hadleycat,

 

LOL!! Like Men in Black huh? :D Glad to hear thing are running better. Lets get some updates on your system.

 

 

You have an older version of Adobe Reader. You can download the current version HERE

 

You may want to consider Foxit Reader instead. It may be a bit lighter on resources.

 

Visit their support forum

Foxit Forum

 

In either case you should uninstall Adobe Reader 7.0 first. Be sure to move any PDF documents to another folder first though.

----------

 

 

Please download JavaRa to your desktop and unzip it to its own

folder

  • Run JavaRa.exe (double-click for XP/right-click and Run as Administrator for Vista), pick the language of your choice and click Select. Then

    click Remove Older Versions.

  • Accept any prompts.
  • Open JavaRa.exe (double-click for XP/right-click and Run as Administrator for Vista) again and select Search For Updates.
  • Select Update Using Sun Java's Website then click Search and click on the Open Webpage button. Download and install the latest

    Java Runtime Environment (JRE) version for your computer.

----------

 

Please run a new scan with DDS and post both of the new logs created into your next reply. :)

Share this post


Link to post
Share on other sites

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 8.0.6001.18702

Run by Owner at 13:10:22 on 2012-01-07

Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.382.54 [GMT -6:00]

.

AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}

.

============== Running Processes ===============

.

C:WINDOWSsystem32Ati2evxx.exe

C:WINDOWSsystem32svchost.exe -k DcomLaunch

svchost.exe

c:Program FilesMicrosoft Security EssentialsMsMpEng.exe

C:WINDOWSSystem32svchost.exe -k netsvcs

C:WINDOWSsystem32svchost.exe -k WudfServiceGroup

svchost.exe

C:WINDOWSsystem32Ati2evxx.exe

svchost.exe

C:WINDOWSExplorer.EXE

C:WINDOWSsystem32brsvc01a.exe

C:WINDOWSsystem32brss01a.exe

C:WINDOWSsystem32spoolsv.exe

svchost.exe

C:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe

C:Program FilesBonjourmDNSResponder.exe

C:WINDOWSsystem32Brmfrmps.exe

C:Program FilesCommon FilesNew BoundaryPrismXLPRISMXL.SYS

C:Program FilesMicrosoft Application Virtualization Clientsftvsa.exe

C:WINDOWSsystem32svchost.exe -k imgsvc

C:Program FilesYahoo!SoftwareUpdateYahooAUService.exe

C:WINDOWSsystem32SearchIndexer.exe

C:Program FilesMicrosoft Application Virtualization Clientsftlist.exe

C:WINDOWSsystem32wscntfy.exe

C:Program FilesCommon FilesMicrosoft SharedVirtualization HandlerCVHSVC.EXE

C:WINDOWSsystem32ctfmon.exe

C:WINDOWSsystem32msiexec.exe

C:WINDOWSsystem32SearchProtocolHost.exe

C:Program FilesJavajre6binjqs.exe

C:Program FilesInternet Exploreriexplore.exe

C:Program FilesInternet Exploreriexplore.exe

C:WINDOWSsystem32SearchProtocolHost.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com/

mStart Page = hxxp://www.yahoo.com/?ilc=8

uInternet Connection Wizard,ShellNext = "c:program filesoutlook expressmsimn.exe"

uInternet Settings,ProxyOverride = *.local

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:program filesjavajre6binssv.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:program filesjavajre6binjp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:program filesjavajre6libdeployjqsiejqs_plugin.dll

uRun: [ctfmon.exe] c:windowssystem32ctfmon.exe

mRun: [sunJavaUpdateSched] "c:program filescommon filesjavajava updatejusched.exe"

mRunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-appf?lic=NFVXV1UtV0JEWEMtVllGTjMtUURKTUgtNDJBT0EtSzZIVTk"&"inst=NzctNzYxNzMwMTU2LUZMMTArMS1YTzEwKzExLUxJQysyLVNUMTJGT0krMS1ERFQrMC1FVUxBKzEtU1QxMkZBUFArMQ"&"prod=90"&"ver=2012.0.1831"&"mid=f5e0687ab8f947d1a09bd1686f011352-06ce4fc639803a2e3563922518183d8e94088cb9

dRun: [DWQueuedReporting] "c:progra~1common~1micros~1dwdwtrig20.exe" -t

IE: E&xport to Microsoft Excel - c:progra~1micros~2office11EXCEL.EXE/3000

IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%Network Diagnosticxpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:program filesmessengermsmsgs.exe

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1284597873671

DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab

TCP: DhcpNameServer = 209.55.5.10 209.55.5.11

TCP: Interfaces{AE03CBA9-B8BC-4ACB-A42A-C6E3D685D8B9} : DhcpNameServer = 209.55.5.10 209.55.5.11

Notify: AtiExtEvent - Ati2evxx.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:windowssystem32WPDShServiceObj.dll

SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:program fileswindows desktop searchMSNLNamespaceMgr.dll

.

============= SERVICES / DRIVERS ===============

.

R1 MpFilter;Microsoft Malware Protection Driver;c:windowssystem32driversMpFilter.sys [2010-3-25 151216]

R1 MpKsl3d231986;MpKsl3d231986;c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{089560db-3764-4a66-a394-1913e0735191}MpKsl3d231986.sys [2012-1-7 29904]

R1 MpKslb7200b61;MpKslb7200b61;c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{089560db-3764-4a66-a394-1913e0735191}MpKslb7200b61.sys [2012-1-7 29904]

R2 cvhsvc;Client Virtualization Handler;c:program filescommon filesmicrosoft sharedvirtualization handlerCVHSVC.EXE [2010-10-20 821664]

R2 sftlist;Application Virtualization Client;c:program filesmicrosoft application virtualization clientsftlist.exe [2010-9-14 508264]

R3 Sftfs;Sftfs;c:windowssystem32driversSftfsxp.sys [2009-12-2 581480]

R3 Sftplay;Sftplay;c:windowssystem32driversSftplayxp.sys [2009-12-2 209640]

R3 Sftredir;Sftredir;c:windowssystem32driversSftredirxp.sys [2009-12-2 20584]

R3 Sftvol;Sftvol;c:windowssystem32driversSftvolxp.sys [2009-12-2 18280]

R3 sftvsa;Application Virtualization Service Agent;c:program filesmicrosoft application virtualization clientsftvsa.exe [2010-9-14 219496]

S1 MpKsl041785b4;MpKsl041785b4;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{05cab850-1a7b-4e3c-ae31-0c60bfe0ef30}mpksl041785b4.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{05cab850-1a7b-4e3c-ae31-0c60bfe0ef30}MpKsl041785b4.sys [?]

S1 MpKsl04ace497;MpKsl04ace497;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{2f77433d-ecd4-4811-8cc4-bc8f16ac736f}mpksl04ace497.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{2f77433d-ecd4-4811-8cc4-bc8f16ac736f}MpKsl04ace497.sys [?]

S1 MpKsl059ec4a8;MpKsl059ec4a8;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{aafc5781-f57e-4234-b283-5d3f2b556e90}mpksl059ec4a8.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{aafc5781-f57e-4234-b283-5d3f2b556e90}MpKsl059ec4a8.sys [?]

S1 MpKsl0f3f07bb;MpKsl0f3f07bb;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{e0e1f894-33c6-4985-a32f-bb3b6bbaa57b}mpksl0f3f07bb.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{e0e1f894-33c6-4985-a32f-bb3b6bbaa57b}MpKsl0f3f07bb.sys [?]

S1 MpKsl0ffc53b4;MpKsl0ffc53b4;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{d3401703-c036-4817-8162-dd84115a7c03}mpksl0ffc53b4.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{d3401703-c036-4817-8162-dd84115a7c03}MpKsl0ffc53b4.sys [?]

S1 MpKsl14dc7263;MpKsl14dc7263;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{0caade4f-6dac-4951-a650-b7760ebc5e4b}mpksl14dc7263.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{0caade4f-6dac-4951-a650-b7760ebc5e4b}MpKsl14dc7263.sys [?]

S1 MpKsl1a132f66;MpKsl1a132f66;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{8fcec918-cb82-41f7-82d2-1b06fb26a933}mpksl1a132f66.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{8fcec918-cb82-41f7-82d2-1b06fb26a933}MpKsl1a132f66.sys [?]

S1 MpKsl1b64075b;MpKsl1b64075b;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{5af00cfd-3c9b-4e7b-8317-aba631dad3a1}mpksl1b64075b.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{5af00cfd-3c9b-4e7b-8317-aba631dad3a1}MpKsl1b64075b.sys [?]

S1 MpKsl1f3a6a2c;MpKsl1f3a6a2c;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{955b6672-dc6d-4d65-b59f-97b2b146b647}mpksl1f3a6a2c.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{955b6672-dc6d-4d65-b59f-97b2b146b647}MpKsl1f3a6a2c.sys [?]

S1 MpKsl21501628;MpKsl21501628;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{e9dd2295-d9f7-4184-98d1-fb1dd7745cbd}mpksl21501628.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{e9dd2295-d9f7-4184-98d1-fb1dd7745cbd}MpKsl21501628.sys [?]

S1 MpKsl3426e806;MpKsl3426e806;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{049f7735-8464-47d7-9b35-deee08fd987b}mpksl3426e806.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{049f7735-8464-47d7-9b35-deee08fd987b}MpKsl3426e806.sys [?]

S1 MpKsl40ba36d7;MpKsl40ba36d7;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{2f77433d-ecd4-4811-8cc4-bc8f16ac736f}mpksl40ba36d7.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{2f77433d-ecd4-4811-8cc4-bc8f16ac736f}MpKsl40ba36d7.sys [?]

S1 MpKsl42194ebe;MpKsl42194ebe;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{114dc8b9-1f00-41cf-8dcb-d1903919f881}mpksl42194ebe.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{114dc8b9-1f00-41cf-8dcb-d1903919f881}MpKsl42194ebe.sys [?]

S1 MpKsl46ad5bf5;MpKsl46ad5bf5;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{f7f4a1b3-384d-4433-8e89-46d0a673fadb}mpksl46ad5bf5.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{f7f4a1b3-384d-4433-8e89-46d0a673fadb}MpKsl46ad5bf5.sys [?]

S1 MpKsl47ad3348;MpKsl47ad3348;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{f4567c5b-8fbc-47b5-b28c-485ba1d4e43e}mpksl47ad3348.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{f4567c5b-8fbc-47b5-b28c-485ba1d4e43e}MpKsl47ad3348.sys [?]

S1 MpKsl4c40c17d;MpKsl4c40c17d;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{69bfce84-c29d-4eaa-84e0-ec59f44c0f7e}mpksl4c40c17d.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{69bfce84-c29d-4eaa-84e0-ec59f44c0f7e}MpKsl4c40c17d.sys [?]

S1 MpKsl508b2718;MpKsl508b2718;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{47517185-d7b8-43c4-b442-1f191d45fcfa}mpksl508b2718.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{47517185-d7b8-43c4-b442-1f191d45fcfa}MpKsl508b2718.sys [?]

S1 MpKsl5788ea9f;MpKsl5788ea9f;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{3ba4a78c-eeae-45a9-995c-2cffcb4d911a}mpksl5788ea9f.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{3ba4a78c-eeae-45a9-995c-2cffcb4d911a}MpKsl5788ea9f.sys [?]

S1 MpKsl5d1d0e2a;MpKsl5d1d0e2a;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{e70258d5-564d-485a-bc8c-27c18b09bcb7}mpksl5d1d0e2a.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{e70258d5-564d-485a-bc8c-27c18b09bcb7}MpKsl5d1d0e2a.sys [?]

S1 MpKsl68017f38;MpKsl68017f38;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{1a1a27b1-5c41-488f-928a-2077e90de80c}mpksl68017f38.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{1a1a27b1-5c41-488f-928a-2077e90de80c}MpKsl68017f38.sys [?]

S1 MpKsl6955d0d1;MpKsl6955d0d1;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{118c703c-d0fc-4975-9d42-7b1712f17395}mpksl6955d0d1.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{118c703c-d0fc-4975-9d42-7b1712f17395}MpKsl6955d0d1.sys [?]

S1 MpKsl6be03382;MpKsl6be03382;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{b431dcd1-9111-4f6f-a836-52429e603b52}mpksl6be03382.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{b431dcd1-9111-4f6f-a836-52429e603b52}MpKsl6be03382.sys [?]

S1 MpKsl70127f5f;MpKsl70127f5f;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{aad30d41-3562-49a4-bb90-0c535b871506}mpksl70127f5f.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{aad30d41-3562-49a4-bb90-0c535b871506}MpKsl70127f5f.sys [?]

S1 MpKsl78af9377;MpKsl78af9377;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{993a047f-896e-4519-8219-cf46a43ad966}mpksl78af9377.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{993a047f-896e-4519-8219-cf46a43ad966}MpKsl78af9377.sys [?]

S1 MpKsl792635ce;MpKsl792635ce;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{aafc5781-f57e-4234-b283-5d3f2b556e90}mpksl792635ce.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{aafc5781-f57e-4234-b283-5d3f2b556e90}MpKsl792635ce.sys [?]

S1 MpKsl818eb5cd;MpKsl818eb5cd;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{79a5785f-d06a-4cae-8f9e-bdf00e311aee}mpksl818eb5cd.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{79a5785f-d06a-4cae-8f9e-bdf00e311aee}MpKsl818eb5cd.sys [?]

S1 MpKsl8af57843;MpKsl8af57843;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{6b4e96a8-50bb-4527-a976-c724e2130812}mpksl8af57843.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{6b4e96a8-50bb-4527-a976-c724e2130812}MpKsl8af57843.sys [?]

S1 MpKsl9e543ae1;MpKsl9e543ae1;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{8bf20083-4848-48c5-bee0-c8a4fc0fa253}mpksl9e543ae1.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{8bf20083-4848-48c5-bee0-c8a4fc0fa253}MpKsl9e543ae1.sys [?]

S1 MpKsla196fd05;MpKsla196fd05;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{bc4d29ee-71d6-4322-81a4-4b05e70fd07e}mpksla196fd05.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{bc4d29ee-71d6-4322-81a4-4b05e70fd07e}MpKsla196fd05.sys [?]

S1 MpKsla6cddc86;MpKsla6cddc86;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{1eb2833a-3265-4258-9d2b-6e23452cc05a}mpksla6cddc86.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{1eb2833a-3265-4258-9d2b-6e23452cc05a}MpKsla6cddc86.sys [?]

S1 MpKslac06dc1a;MpKslac06dc1a;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{7981e9a2-c74b-48a7-8731-529b3098eb70}mpkslac06dc1a.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{7981e9a2-c74b-48a7-8731-529b3098eb70}MpKslac06dc1a.sys [?]

S1 MpKslad78c156;MpKslad78c156;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{eefe04d5-7dfa-4623-9a45-2ee8b84306a3}mpkslad78c156.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{eefe04d5-7dfa-4623-9a45-2ee8b84306a3}MpKslad78c156.sys [?]

S1 MpKslba1f3005;MpKslba1f3005;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{326310b3-6d31-4373-a3ce-50f5ac51a77b}mpkslba1f3005.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{326310b3-6d31-4373-a3ce-50f5ac51a77b}MpKslba1f3005.sys [?]

S1 MpKslbb1aa00d;MpKslbb1aa00d;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{05cab850-1a7b-4e3c-ae31-0c60bfe0ef30}mpkslbb1aa00d.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{05cab850-1a7b-4e3c-ae31-0c60bfe0ef30}MpKslbb1aa00d.sys [?]

S1 MpKslbbb7477e;MpKslbbb7477e;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{e084e324-b3f6-4cb4-97a0-1260521363a2}mpkslbbb7477e.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{e084e324-b3f6-4cb4-97a0-1260521363a2}MpKslbbb7477e.sys [?]

S1 MpKslbe2942c8;MpKslbe2942c8;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{c00602da-c65f-41d9-b2c6-595fbba384ec}mpkslbe2942c8.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{c00602da-c65f-41d9-b2c6-595fbba384ec}MpKslbe2942c8.sys [?]

S1 MpKslc346ca72;MpKslc346ca72;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{300746c3-0c61-4ef3-a2e6-e3fd00fcfd96}mpkslc346ca72.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{300746c3-0c61-4ef3-a2e6-e3fd00fcfd96}MpKslc346ca72.sys [?]

S1 MpKslc7e435c0;MpKslc7e435c0;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{993a047f-896e-4519-8219-cf46a43ad966}mpkslc7e435c0.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{993a047f-896e-4519-8219-cf46a43ad966}MpKslc7e435c0.sys [?]

S1 MpKslca02702e;MpKslca02702e;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{06ee09f7-3601-4f34-8bec-29bfc1460335}mpkslca02702e.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{06ee09f7-3601-4f34-8bec-29bfc1460335}MpKslca02702e.sys [?]

S1 MpKslce228fc3;MpKslce228fc3;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{b1c46a61-9822-4385-a442-d21f1c0caf01}mpkslce228fc3.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{b1c46a61-9822-4385-a442-d21f1c0caf01}MpKslce228fc3.sys [?]

S1 MpKsle09f4daf;MpKsle09f4daf;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{933c57ed-8a63-4d1d-a705-fe9b6108143e}mpksle09f4daf.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{933c57ed-8a63-4d1d-a705-fe9b6108143e}MpKsle09f4daf.sys [?]

S1 MpKsle63cd9bc;MpKsle63cd9bc;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{008b3206-7d59-49b8-ae05-0a6695b688aa}mpksle63cd9bc.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{008b3206-7d59-49b8-ae05-0a6695b688aa}MpKsle63cd9bc.sys [?]

S1 MpKsle9ff5327;MpKsle9ff5327;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{69f7358a-dd05-4eba-a5f8-4f1922e74031}mpksle9ff5327.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{69f7358a-dd05-4eba-a5f8-4f1922e74031}MpKsle9ff5327.sys [?]

S1 MpKslec6256e7;MpKslec6256e7;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{e9dd2295-d9f7-4184-98d1-fb1dd7745cbd}mpkslec6256e7.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{e9dd2295-d9f7-4184-98d1-fb1dd7745cbd}MpKslec6256e7.sys [?]

S1 MpKslf0b7504d;MpKslf0b7504d;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{a454a123-d4e9-4ef0-8335-539fc4209f36}mpkslf0b7504d.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{a454a123-d4e9-4ef0-8335-539fc4209f36}MpKslf0b7504d.sys [?]

S1 MpKslf0e1dc77;MpKslf0e1dc77;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{1eb2833a-3265-4258-9d2b-6e23452cc05a}mpkslf0e1dc77.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{1eb2833a-3265-4258-9d2b-6e23452cc05a}MpKslf0e1dc77.sys [?]

S1 MpKslfba14a47;MpKslfba14a47;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{c8b47794-3c7e-4a23-a54f-1310f6bb13fb}mpkslfba14a47.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{c8b47794-3c7e-4a23-a54f-1310f6bb13fb}MpKslfba14a47.sys [?]

S1 MpKslfbf17d03;MpKslfbf17d03;??c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{b431dcd1-9111-4f6f-a836-52429e603b52}mpkslfbf17d03.sys --> c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{b431dcd1-9111-4f6f-a836-52429e603b52}MpKslfbf17d03.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:windowsmicrosoft.netframeworkv4.0.30319mscorsvw.exe [2010-3-18 130384]

S2 gupdate;Google Update Service (gupdate);c:program filesgoogleupdateGoogleUpdate.exe [2011-11-5 136176]

S2 LinksysUpdater;Linksys Updater;c:program fileslinksyslinksys updaterbinLinksysUpdater.exe [2008-1-15 204800]

S3 gupdatem;Google Update Service (gupdatem);c:program filesgoogleupdateGoogleUpdate.exe [2011-11-5 136176]

S3 osppsvc;Office Software Protection Platform;c:program filescommon filesmicrosoft sharedofficesoftwareprotectionplatformOSPPSVC.EXE [2010-1-9 4640000]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:windowsmicrosoft.netframeworkv4.0.30319wpfWPFFontCache_v0400.exe [2010-3-18 753504]

.

=============== Created Last 30 ================

.

2012-01-07 19:08:31 472808 ----a-w- c:windowssystem32REN33.tmp

2012-01-07 18:55:05 29904 ----a-w- c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{089560db-3764-4a66-a394-1913e0735191}MpKsl3d231986.sys

2012-01-07 18:21:28 29904 ----a-w- c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{089560db-3764-4a66-a394-1913e0735191}MpKslb7200b61.sys

2012-01-07 18:14:48 56200 ----a-w- c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{089560db-3764-4a66-a394-1913e0735191}offreg.dll

2012-01-07 18:14:16 6823496 ----a-w- c:documents and settingsall usersapplication datamicrosoftmicrosoft antimalwaredefinition updates{089560db-3764-4a66-a394-1913e0735191}mpengine.dll

2012-01-06 22:51:33 -------- d-----w- C:_OTM

2012-01-05 22:03:53 -------- d-sha-r- C:cmdcons

2012-01-05 02:58:51 -------- d-----w- c:program filesESET

2012-01-04 01:51:18 98816 ----a-w- c:windowssed.exe

2012-01-04 01:51:18 518144 ----a-w- c:windowsSWREG.exe

2012-01-04 01:51:18 256000 ----a-w- c:windowsPEV.exe

2012-01-04 01:51:18 208896 ----a-w- c:windowsMBR.exe

2011-12-28 01:53:06 -------- d-----w- c:program filesZOOM

2011-12-14 03:32:36 -------- d-----w- c:windowssystem32wbemrepositoryFS

2011-12-14 03:32:36 -------- d-----w- c:windowssystem32wbemRepository

2011-12-14 03:32:07 -------- d-----w- c:program filesMicrosoft Security Essentials

2011-12-11 23:18:27 -------- d-----r- c:documents and settingsownerapplication dataBrother

.

==================== Find3M ====================

.

2012-01-07 19:08:08 73728 ----a-w- c:windowssystem32javacpl.cpl

2012-01-04 09:26:22 236576 ------w- c:windowssystem32MpSigStub.exe

2011-12-10 21:24:06 20464 ----a-w- c:windowssystem32driversmbam.sys

2011-11-23 13:25:32 1859584 ----a-w- c:windowssystem32win32k.sys

2011-11-05 18:57:52 499712 ----a-w- c:windowssystem32msvcp71.dll

2011-11-04 19:20:51 916992 ----a-w- c:windowssystem32wininet.dll

2011-11-04 19:20:51 43520 ----a-w- c:windowssystem32licmgr10.dll

2011-11-04 19:20:51 1469440 ------w- c:windowssystem32inetcpl.cpl

2011-11-04 11:23:59 385024 ----a-w- c:windowssystem32html.iec

2011-11-01 16:07:10 1288704 ----a-w- c:windowssystem32ole32.dll

2011-10-28 05:31:48 33280 ----a-w- c:windowssystem32csrsrv.dll

2011-10-25 13:33:08 2192768 ----a-w- c:windowssystem32ntoskrnl.exe

2011-10-25 12:52:03 2069376 ----a-w- c:windowssystem32ntkrnlpa.exe

2011-10-18 12:28:42 414368 ----a-w- c:windowssystem32FlashPlayerCPLApp.cpl

2011-10-18 11:13:22 186880 ----a-w- c:windowssystem32encdec.dll

2011-10-10 14:22:41 692736 ----a-w- c:windowssystem32inetcomm.dll

.

============= FINISH: 13:11:45.28 ===============

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows XP Home Edition

Boot Device: DeviceHarddiskVolume1

Install Date: 9/15/2010 7:42:24 PM

System Uptime: 1/7/2012 12:54:33 PM (1 hours ago)

.

Motherboard: MICRO-STAR | | MS-7145

Processor: AMD Athlon 64 Processor 3000+ | Socket 754 | 1994/199mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 71 GiB total, 50.076 GiB free.

D: is FIXED (FAT32) - 3 GiB total, 1.126 GiB free.

E: is CDROM ()

F: is Removable

G: is Removable

H: is Removable

I: is Removable

J: is Removable

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP1: 12/5/2011 10:18:09 PM - System Checkpoint

RP2: 12/6/2011 12:11:08 AM - Software Distribution Service 3.0

RP3: 12/6/2011 12:29:13 AM - Software Distribution Service 3.0

RP4: 12/6/2011 6:25:16 PM - Removed Ask Toolbar.

RP5: 12/6/2011 9:08:11 PM - Software Distribution Service 3.0

RP6: 12/7/2011 7:10:00 AM - Software Distribution Service 3.0

RP7: 12/7/2011 7:36:57 AM - Software Distribution Service 3.0

RP8: 12/8/2011 3:00:21 AM - Software Distribution Service 3.0

RP9: 12/9/2011 5:02:08 PM - Software Distribution Service 3.0

RP10: 12/10/2011 5:45:52 PM - System Checkpoint

RP11: 12/11/2011 1:37:02 AM - Software Distribution Service 3.0

RP12: 12/12/2011 2:32:31 AM - System Checkpoint

RP13: 12/12/2011 8:40:12 AM - Software Distribution Service 3.0

RP14: 12/13/2011 12:39:00 PM - System Checkpoint

RP15: 12/13/2011 6:45:21 PM - Software Distribution Service 3.0

RP16: 12/13/2011 9:28:54 PM - Restore Operation

RP17: 12/14/2011 1:19:05 PM - Software Distribution Service 3.0

RP18: 12/14/2011 9:50:39 PM - Software Distribution Service 3.0

RP19: 12/26/2011 7:21:00 PM - Software Distribution Service 3.0

RP20: 12/27/2011 9:46:11 PM - System Checkpoint

RP21: 12/28/2011 10:07:04 AM - Software Distribution Service 3.0

RP22: 12/29/2011 9:57:20 AM - Software Distribution Service 3.0

RP23: 12/30/2011 10:04:35 AM - Software Distribution Service 3.0

RP24: 12/31/2011 11:00:37 AM - System Checkpoint

RP25: 1/1/2012 12:00:34 PM - System Checkpoint

RP26: 1/1/2012 11:03:37 PM - Software Distribution Service 3.0

RP27: 1/3/2012 4:56:45 PM - Software Distribution Service 3.0

RP28: 1/4/2012 6:03:00 PM - Software Distribution Service 3.0

RP29: 1/5/2012 6:04:43 PM - Software Distribution Service 3.0

RP30: 1/6/2012 6:10:46 PM - System Checkpoint

RP31: 1/7/2012 12:13:38 PM - Software Distribution Service 3.0

RP32: 1/7/2012 12:30:59 PM - Removed Adobe Reader 7.0

RP33: 1/7/2012 12:42:08 PM - Removed Java 6 Update 22

RP34: 1/7/2012 12:44:56 PM - Installed Java 6 Update 30

RP35: 1/7/2012 12:47:45 PM - Removed Java 6 Update 3

RP36: 1/7/2012 1:07:42 PM - Installed Java 6 Update 30

.

==== Installed Programs ======================

.

Adobe Flash Player 11 ActiveX

Adobe Shockwave Player 11.5

Apple Application Support

Apple Mobile Device Support

Apple Software Update

ArcSoft Camera Suite 1.3

ATI - Software Uninstall Utility

ATI Control Panel

ATI Display Driver

AviSynth 2.5

Bonjour

Brother MFL-Pro Suite

CCleaner

Compatibility Pack for the 2007 Office system

Defraggler

Desktop Alert

Digital Media Reader

ESET Online Scanner v3

Google Update Helper

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows Media Format 11 SDK (KB929399)

Hotfix for Windows Media Player 11 (KB939683)

Hotfix for Windows XP (KB2158563)

Hotfix for Windows XP (KB2443685)

Hotfix for Windows XP (KB2570791)

Hotfix for Windows XP (KB2633952)

Hotfix for Windows XP (KB915800-v4)

Hotfix for Windows XP (KB952287)

Hotfix for Windows XP (KB954550-v5)

Hotfix for Windows XP (KB961118)

Hotfix for Windows XP (KB981793)

iPod Converter 2010

iTunes

Java Auto Updater

Java 6 Update 30

Linksys Updater

Malwarebytes Anti-Malware version 1.60.0.1800

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 Security Update (KB2572067)

Microsoft .NET Framework 1.1 Security Update (KB979906)

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 SP1

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Extended

Microsoft Antimalware

Microsoft Application Error Reporting

Microsoft Base Smart Card Cryptographic Service Provider Package

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft Money 2005

Microsoft Office Click-to-Run 2010

Microsoft Office Home and Student 2010 - English

Microsoft Office Word Viewer 2003

Microsoft Security Essentials

Microsoft Silverlight

Microsoft User-Mode Driver Framework Feature Pack 1.0

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Works

Mil Free Internet Eraser

MobileMe Control Panel

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Nero BurnRights

Nero OEM

PaperPort

PHILIPS PC Camera

PowerDVD

QuickTime

Realtek AC'97 Audio

Recovery Software Suite eMachines

Safari

Security Update for CAPICOM (KB931906)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Extended (KB2416472)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft Windows (KB2564958)

Security Update for Windows Internet Explorer 8 (KB2183461)

Security Update for Windows Internet Explorer 8 (KB2360131)

Security Update for Windows Internet Explorer 8 (KB2416400)

Security Update for Windows Internet Explorer 8 (KB2482017)

Security Update for Windows Internet Explorer 8 (KB2497640)

Security Update for Windows Internet Explorer 8 (KB2510531)

Security Update for Windows Internet Explorer 8 (KB2530548)

Security Update for Windows Internet Explorer 8 (KB2544521)

Security Update for Windows Internet Explorer 8 (KB2559049)

Security Update for Windows Internet Explorer 8 (KB2586448)

Security Update for Windows Internet Explorer 8 (KB2618444)

Security Update for Windows Internet Explorer 8 (KB971961)

Security Update for Windows Internet Explorer 8 (KB981332)

Security Update for Windows Internet Explorer 8 (KB982381)

Security Update for Windows Media Player (KB2378111)

Security Update for Windows Media Player (KB911564)

Security Update for Windows Media Player (KB952069)

Security Update for Windows Media Player (KB954155)

Security Update for Windows Media Player (KB973540)

Security Update for Windows Media Player (KB975558)

Security Update for Windows Media Player (KB978695)

Security Update for Windows Media Player 11 (KB954154)

Security Update for Windows Media Player 6.4 (KB925398)

Security Update for Windows Search 4 - KB963093

Security Update for Windows XP (KB2079403)

Security Update for Windows XP (KB2115168)

Security Update for Windows XP (KB2121546)

Security Update for Windows XP (KB2160329)

Security Update for Windows XP (KB2229593)

Security Update for Windows XP (KB2259922)

Security Update for Windows XP (KB2279986)

Security Update for Windows XP (KB2286198)

Security Update for Windows XP (KB2296011)

Security Update for Windows XP (KB2296199)

Security Update for Windows XP (KB2347290)

Security Update for Windows XP (KB2360937)

Security Update for Windows XP (KB2387149)

Security Update for Windows XP (KB2393802)

Security Update for Windows XP (KB2412687)

Security Update for Windows XP (KB2419632)

Security Update for Windows XP (KB2423089)

Security Update for Windows XP (KB2436673)

Security Update for Windows XP (KB2440591)

Security Update for Windows XP (KB2443105)

Security Update for Windows XP (KB2476490)

Security Update for Windows XP (KB2476687)

Security Update for Windows XP (KB2478960)

Security Update for Windows XP (KB2478971)

Security Update for Windows XP (KB2479628)

Security Update for Windows XP (KB2479943)

Security Update for Windows XP (KB2481109)

Security Update for Windows XP (KB2483185)

Security Update for Windows XP (KB2485376)

Security Update for Windows XP (KB2485663)

Security Update for Windows XP (KB2503658)

Security Update for Windows XP (KB2503665)

Security Update for Windows XP (KB2506212)

Security Update for Windows XP (KB2506223)

Security Update for Windows XP (KB2507618)

Security Update for Windows XP (KB2507938)

Security Update for Windows XP (KB2508272)

Security Update for Windows XP (KB2508429)

Security Update for Windows XP (KB2509553)

Security Update for Windows XP (KB2511455)

Security Update for Windows XP (KB2524375)

Security Update for Windows XP (KB2535512)

Security Update for Windows XP (KB2536276-v2)

Security Update for Windows XP (KB2536276)

Security Update for Windows XP (KB2544893-v2)

Security Update for Windows XP (KB2544893)

Security Update for Windows XP (KB2555917)

Security Update for Windows XP (KB2562937)

Security Update for Windows XP (KB2566454)

Security Update for Windows XP (KB2567053)

Security Update for Windows XP (KB2567680)

Security Update for Windows XP (KB2570222)

Security Update for Windows XP (KB2570947)

Security Update for Windows XP (KB2592799)

Security Update for Windows XP (KB2618451)

Security Update for Windows XP (KB2619339)

Security Update for Windows XP (KB2620712)

Security Update for Windows XP (KB2624667)

Security Update for Windows XP (KB2633171)

Security Update for Windows XP (KB2639417)

Security Update for Windows XP (KB923561)

Security Update for Windows XP (KB941569)

Security Update for Windows XP (KB946648)

Security Update for Windows XP (KB950760)

Security Update for Windows XP (KB950762)

Security Update for Windows XP (KB950974)

Security Update for Windows XP (KB951376-v2)

Security Update for Windows XP (KB951748)

Security Update for Windows XP (KB952004)

Security Update for Windows XP (KB952954)

Security Update for Windows XP (KB955069)

Security Update for Windows XP (KB956572)

Security Update for Windows XP (KB956744)

Security Update for Windows XP (KB956802)

Security Update for Windows XP (KB956803)

Security Update for Windows XP (KB956844)

Security Update for Windows XP (KB958644)

Security Update for Windows XP (KB958869)

Security Update for Windows XP (KB959426)

Security Update for Windows XP (KB960225)

Security Update for Windows XP (KB960803)

Security Update for Windows XP (KB960859)

Security Update for Windows XP (KB961501)

Security Update for Windows XP (KB969059)

Security Update for Windows XP (KB970238)

Security Update for Windows XP (KB970430)

Security Update for Windows XP (KB971468)

Security Update for Windows XP (KB971657)

Security Update for Windows XP (KB972270)

Security Update for Windows XP (KB973507)

Security Update for Windows XP (KB973869)

Security Update for Windows XP (KB973904)

Security Update for Windows XP (KB974112)

Security Update for Windows XP (KB974318)

Security Update for Windows XP (KB974392)

Security Update for Windows XP (KB974571)

Security Update for Windows XP (KB975025)

Security Update for Windows XP (KB975467)

Security Update for Windows XP (KB975560)

Security Update for Windows XP (KB975561)

Security Update for Windows XP (KB975562)

Security Update for Windows XP (KB975713)

Security Update for Windows XP (KB977816)

Security Update for Windows XP (KB977914)

Security Update for Windows XP (KB978037)

Security Update for Windows XP (KB978338)

Security Update for Windows XP (KB978542)

Security Update for Windows XP (KB978601)

Security Update for Windows XP (KB978706)

Security Update for Windows XP (KB979309)

Security Update for Windows XP (KB979482)

Security Update for Windows XP (KB979559)

Security Update for Windows XP (KB979683)

Security Update for Windows XP (KB979687)

Security Update for Windows XP (KB980195)

Security Update for Windows XP (KB980218)

Security Update for Windows XP (KB980232)

Security Update for Windows XP (KB980436)

Security Update for Windows XP (KB981322)

Security Update for Windows XP (KB981852)

Security Update for Windows XP (KB981957)

Security Update for Windows XP (KB981997)

Security Update for Windows XP (KB982132)

Security Update for Windows XP (KB982214)

Security Update for Windows XP (KB982381)

Security Update for Windows XP (KB982665)

Security Update for Windows XP (KB982802)

Skype™ 5.3

Soft Data Fax Modem with SmartCP

TomTom HOME 2.7.3.1894

TomTom HOME Visual Studio Merge Modules

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft Windows (KB971513)

Update for Windows Internet Explorer 8 (KB976662)

Update for Windows Internet Explorer 8 (KB982664)

Update for Windows XP (KB2141007)

Update for Windows XP (KB2345886)

Update for Windows XP (KB2467659)

Update for Windows XP (KB2541763)

Update for Windows XP (KB2607712)

Update for Windows XP (KB2616676)

Update for Windows XP (KB2641690)

Update for Windows XP (KB951978)

Update for Windows XP (KB953356)

Update for Windows XP (KB955759)

Update for Windows XP (KB967715)

Update for Windows XP (KB968389)

Update for Windows XP (KB971029)

Update for Windows XP (KB971737)

Update for Windows XP (KB973687)

Update for Windows XP (KB973815)

Viewpoint Media Player

WebFldrs XP

Windows Genuine Advantage Validation Tool (KB892130)

Windows Internet Explorer 8

Windows Media Format 11 runtime

Windows Media Player 11

Windows Search 4.0

Windows XP Service Pack 3

Yahoo! Messenger

Yahoo! Software Update

ZOOM PS-04 Card Manager Ver 0.9.0.0 (English)

.

==== Event Viewer Messages From Past Week ========

.

12/31/2011 11:02:28 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.1998.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITYSYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x8024402c Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

1/7/2012 12:44:22 PM, error: Service Control Manager [7024] - The Java Quick Starter service terminated with service-specific error 1 (0x1).

1/7/2012 12:31:17 PM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.

1/6/2012 4:51:49 PM, error: Service Control Manager [7034] - The Yahoo! Updater service terminated unexpectedly. It has done this 1 time(s).

1/6/2012 4:51:49 PM, error: Service Control Manager [7034] - The PrismXL service terminated unexpectedly. It has done this 1 time(s).

1/6/2012 4:51:49 PM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).

1/6/2012 4:51:49 PM, error: Service Control Manager [7034] - The iPod Service service terminated unexpectedly. It has done this 1 time(s).

1/6/2012 4:51:49 PM, error: Service Control Manager [7034] - The Client Virtualization Handler service terminated unexpectedly. It has done this 1 time(s).

1/6/2012 4:51:49 PM, error: Service Control Manager [7034] - The Brother Popup Suspend service for Resource manager service terminated unexpectedly. It has done this 1 time(s).

1/6/2012 4:51:49 PM, error: Service Control Manager [7034] - The Bonjour Service service terminated unexpectedly. It has done this 1 time(s).

1/6/2012 4:51:49 PM, error: Service Control Manager [7034] - The Ati HotKey Poller service terminated unexpectedly. It has done this 1 time(s).

1/6/2012 4:51:49 PM, error: Service Control Manager [7034] - The Application Virtualization Service Agent service terminated unexpectedly. It has done this 1 time(s).

1/6/2012 4:51:49 PM, error: Service Control Manager [7034] - The Application Virtualization Client service terminated unexpectedly. It has done this 1 time(s).

1/6/2012 4:51:49 PM, error: Service Control Manager [7031] - The Microsoft Antimalware Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 15000 milliseconds: Restart the service.

1/6/2012 4:51:49 PM, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

1/4/2012 5:30:32 PM, error: Service Control Manager [7034] - The Linksys Updater service terminated unexpectedly. It has done this 1 time(s).

1/3/2012 8:13:54 PM, error: System Error [1003] - Error code 000000ca, parameter1 00000004, parameter2 82668188, parameter3 00000000, parameter4 00000000.

1/3/2012 8:10:39 PM, error: Dhcp [1002] - The IP address lease 192.168.1.108 for the Network Card with network address 002129E5FAA1 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).

1/3/2012 7:03:56 PM, error: Service Control Manager [7016] - The BrSplService service has reported an invalid current state 0.

1/1/2012 1:39:58 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.1998.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITYSYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x8024402c Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

.

==== End Of File ===========================

Share this post


Link to post
Share on other sites

Hope this is right. Hey!! When this is all over and our "relationship" has ended, do you think you could recommend me a good anti virus?

 

Thanks so much

T

Share this post


Link to post
Share on other sites

Hi hadleycat,

 

do you think you could recommend me a good anti virus?

I see you are using Microsoft Security Essentials. That is just what I use actually, but if you do not like that one I would recommend Avast as an alternative.

---------

 

 

IT APPEARS THAT YOUR LOGS ARE NOW CLEAN :) SO LETS DO A COUPLE OF THINGS TO WRAP THIS UP!! :)

 

This infection appears to have been cleaned, but I can not give you any absolute guarantees. As a precaution, I would go ahead and change all of your passwords as this is especially important after an infection.

----------

 

The following will implement some cleanup procedures as well as reset System Restore points:

 

Click Start > Run and copy/paste the following text into the Run box as shown and click OK.

Combofix /Uninstall

(Note: There is a space between the ..X and the /U that needs to be there.)

 

Posted Image

----------

 

Any of the logs that you created for use in the forums or remaining tools that have not yet been removed can be deleted so they aren't cluttering up your desktop.

 

Here are some tips to reduce the potential for spyware infection in the future:

 

1. Make your Internet Explorer more secure - This can be done by following these simple instructions:

  • From within Internet Explorer click on the Tools menu and then click on Options.
  • Click once on the Security tab
  • Click once on the Internet icon so it becomes highlighted.
  • Click once on the Custom Level button.
  • Change the Download signed ActiveX controls to Prompt
  • Change the Download unsigned ActiveX controls to Disable
  • Change the Initialize and script ActiveX controls not marked as safe to Disable
  • Change the Installation of desktop items to Prompt
  • Change the Launching programs and files in an IFRAME to Prompt
  • Change the Navigate sub-frames across different domains to Prompt
  • When all these settings have been made, click on the OK button.
  • If it prompts you as to whether or not you want to save the settings, press the Yes button.
  • Next press the Apply button and then the OK to exit the Internet Properties page.
Make your Mozilla Firefox more secure - This can be done by adding these add-ons:

2. Enable Protected Mode in Internet Explorer. This helps Windows Vista users stay more protected from attack by running Internet Explorer with restricted privileges as well as reducing the ability to write, alter or destroy data on your system or install malicious code. To make sure this is running follow these steps:
  • Open Internet Explorer
  • Click on Tools > Internet Options
  • Press Security tab
  • Select Internet zone then place check next to Enable Protected Mode if not already done
  • Do the same for Local Intranet, Trusted Sites and Restricted Sites and then press Apply
  • Restart Internet Explorer and in the bottom right corner of your screen you will see Protected Mode: On showing you it is enabled.
3. Use and update an anti-virus software - I can not overemphasize the need for you to use and update your anti-virus application on a regular basis. With the ever increasing number of new variants of malware arriving on the scene daily, you become very susceptible to an attack without updated protection.

 

4. Firewall

Using a third-party firewall will allow you to give/deny access for applications that want to go online. Without a firewall your computer is susceptible to being hacked and taken over. Simply using a firewall in its default configuration can lower your risk greatly. A tutorial on firewalls can be found here. **There are firewalls listed in this tutorial that could be downloaded and used but I would personally only recommend using one of the following two below:

Online Armor Free

Agnitum Outpost Firewall Free

 

5. Make sure you keep your Windows OS current. Windows XP users can visit Windows update regularly to download and install any critical updates and service packs. Windows Vista/7 users can open the Start menu > All Programs > Windows Update > Check for Updates (in left hand task pane) to update these systems. Without these you are leaving the back door open.

 

6. Consider a custom hosts file such as MVPS HOSTS. This custom hosts file effectively blocks a wide range of unwanted ads, banners, 3rd party Cookies, 3rd party page counters, web bugs, and many hijackers. For information on how to download and install, please read this tutorial by WinHelp2002

Note: Be sure to follow the instructions to disable the DNS Client service before installing a custom hosts file.

 

7. WOT (Web of Trust) As "Googling" is such an integral part of internet life, this free browser add on warns you about risky websites that try to scam visitors, deliver malware or send spam. It is especially helpful when browsing or searching in unfamiliar territory. WOT's color-coded icons show you ratings for 21 million websites, helping you avoid the dangerous sites. WOT has an add-on available for Firefox, Internet Explorer as well as Google Chrome.

 

8.Finally, I strongly recommend that you read TonyKlein's good advice So how did I get infected in the first place?

 

Please reply to this thread once more if you are satisfied so that we can mark the problem as resolved.

Share this post


Link to post
Share on other sites

You are more than welcome. I am glad that I could help. :)

Share this post


Link to post
Share on other sites

Since this issue appears to be resolved ... this Topic has been closed. Glad we could be of assistance.

 

If you are the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  

×
×
  • Create New...