Spyware Warrior Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
 
FAQ :: Search :: Memberlist :: Usergroups :: Register
Profile :: Log in to check your private messages :: Log in

Can't access internet after running SuperAntispyware

 
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Spyware Warrior Forum Index -> Archived Spyware Removal Help Topics
View previous topic :: View next topic  
Author Message
billinsd
Newbie


Joined: 12 Jan 2012
Last Visit: 01 Sep 2012
Posts: 7

PostPosted: Fri Jan 13, 2012 12:09 pm    Post subject: Can't access internet after running SuperAntispyware Reply with quote

Hi, I had google redirects and then ran SuperAntispyware. After running SuperAntispyware I could not access the internet through my computer anymore. I got this message "Internet cannot display the webpage". I do still have internet access via wifi for my smartphone and an ethernet line to my dvd player. My DSL provider, AT&T determined that my computer software is faulty after testing my dsl line.

Here is my DDS Scan, Thanks Bill

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26
Run by Bill at 9:18:28 on 2012-01-13
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3006.2244 [GMT -8:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Enabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
svchost.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://isearch.avg.com/?cid={78B8D7A9-4AD5-4F88-82E4-1285A9C4264B}&mid=c0e70cd0c59a47d19218d153e6c8af02-06ce4fc639803a2e3563922518183d8e94088cb9&lang=en&ds=ts025&pr=&d=2011-12-31 18:35:55&v=8.0.0.34&sap=hp
uSearch Page = hxxp://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us
uSearch Bar = hxxp://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us
uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\DLASHX_W.DLL
BHO: Wisdom-soft toolbar: {6dfc55bb-bfff-485a-9709-90c3fdf6db58} - c:\program files\wisdom-soft\tbWisd.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20110511002603.dll
BHO: DealPly: {a6174f27-1fff-e1d6-a93f-ba48ad5dd448} - c:\program files\dealply\DealPlyIE.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7227.1100\swg.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: Wisdom-soft toolbar: {6dfc55bb-bfff-485a-9709-90c3fdf6db58} - c:\program files\wisdom-soft\tbWisd.dll
TB: StartNow Toolbar: {5911488e-9d1e-40ec-8cbb-06b231cc153f} - c:\program files\startnow toolbar\Toolbar32.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
TB: {C4069E3A-68F1-403E-B40E-20066696354B} - No File
{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [mcagent_exe] c:\program files\mcafee.com\agent\mcagent.exe /runkey
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [Monitor] "c:\program files\leapfrog\leapfrog connect\Monitor.exe"
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\mi1933~1\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office12\REFIEBAR.DLL
LSP: mswsock.dll
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/2.9.3.0/GarminAxControl.CAB
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {26B2A5DA-BFD6-422F-A89A-28A54C74B12B} - hxxp://images3.pnimedia.com/ProductAssets/costcous/activex/v3_0_0_4/PhotoCenter_ActiveX_Control.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8A0019EB-51FA-4AE5-A40B-C0496BBFC739} - hxxp://picture.vzw.com/activex/VerizonWirelessUploadControl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {A1662FB6-39BE-41BB-ACDC-0448FB1B5817} - hxxp://images3.pnimedia.com/ProductAssets/costcous/activex/v3_0_0_5/PhotoCenter_ActiveX_Control.cab
DPF: {BEA7310D-06C4-4339-A784-DC3804819809} - hxxp://images3.pnimedia.com/ProductAssets/costcous/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {DEA6994F-3ED5-40BC-B5E3-0FD02411B1B4} - hxxp://www.costcophotocenter.com/upload/activex/v3_0_0_1/PhotoCenter_ActiveX_Control.cab?
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} - hxxp://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
DPF: {EFD1E13D-1CB3-4545-B754-CA410FE7734F} - hxxp://www.costcophotocenter.com/upload/activex/v3_0_0_2/PhotoCenter_ActiveX_Control.cab?
TCP: DhcpNameServer = 68.94.156.1 68.94.157.1 192.168.1.1
TCP: Interfaces\{200322C5-0298-4866-94E8-2829CEBE7548} : DhcpNameServer = 68.94.156.1 68.94.157.1 192.168.1.1
TCP: Interfaces\{2815B9B0-A387-4A6D-8145-2F1959CEF0B7} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{2DF784EF-A511-4BFB-BFC6-59409D8F34A2} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{DCEE0A81-ED43-4705-A187-20177EB087B9} : DhcpNameServer = 192.168.1.254
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll
AppInit_DLLs: c:\progra~1\google\google~1\GOEC62~1.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\bill\application data\mozilla\firefox\profiles\3cmk6r00.default\
FF - prefs.js: browser.startup.homepage - hxxp://gmail.com/
FF - component: c:\program files\mcafee\siteadvisor\components\McFFPlg.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\google updater\2.4.2432.1652\npCIDetect14.dll
FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mcafee\siteadvisor\NPMcFFPlg32.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
.
============= SERVICES / DRIVERS ===============
.
R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2011-3-2 387480]
R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2011-3-2 84200]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\mcafee\siteadvisor\McSACore.exe [2009-1-31 94880]
R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-3-2 271480]
R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-3-2 271480]
R2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-3-2 271480]
R2 McShield;McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2011-3-2 171168]
R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2011-3-2 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2011-3-2 141792]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2011-3-2 56064]
R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2011-3-2 153280]
R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2011-3-2 52320]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2011-3-2 314088]
R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2011-3-2 88736]
S2 gupdate1ca252d78df999a;Google Update Service (gupdate1ca252d78df999a);c:\program files\google\update\GoogleUpdate.exe [2009-8-24 133104]
S2 Updater Service for StartNow Toolbar;Updater Service for StartNow Toolbar;c:\program files\startnow toolbar\toolbarupdaterservice.exe --> c:\program files\startnow toolbar\ToolbarUpdaterService.exe [?]
S3 cpuz134;cpuz134;\??\c:\docume~1\bill\locals~1\temp\cpuz134\cpuz134_x32.sys --> c:\docume~1\bill\locals~1\temp\cpuz134\cpuz134_x32.sys [?]
S3 FlyUsb;FLY Fusion;c:\windows\system32\drivers\FlyUsb.sys [2010-6-1 18560]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2009-8-24 133104]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.0.250\McCHSvc.exe [2011-12-9 237272]
S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2011-3-2 88736]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2011-3-2 84488]
S3 NPF;WinPcap Packet Driver (NPF);c:\windows\system32\drivers\npf.sys [2011-12-16 50704]
S3 qcserxp;HTC Diagnostic Port;c:\windows\system32\drivers\qcserxp.sys [2010-11-25 103424]
S3 qcusbser;Qualcomm USB Device for Legacy Serial Communication;c:\windows\system32\drivers\qcmdmxp.sys [2010-11-25 105984]
.
=============== Created Last 30 ================
.
2012-01-12 01:33:40 -------- d-----w- c:\documents and settings\bill\application data\SUPERAntiSpyware.com
2012-01-12 01:32:05 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-01-12 01:32:05 -------- d-----w- c:\documents and settings\all users\application data\SUPERAntiSpyware.com
2012-01-06 01:03:37 -------- d-----w- c:\windows\2437DF07D3CB4D858397ED8AE9ED26D5.TMP
2012-01-06 00:54:38 -------- d-----w- c:\windows\SxsCaPendDel
2012-01-06 00:51:40 -------- d-----w- c:\windows\C6359569E03E4CDC98E8CDD080C6EEB5.TMP
2012-01-02 02:18:14 -------- d-----w- c:\windows\system32\cache
2012-01-01 02:50:03 -------- d-----w- c:\documents and settings\bill\application data\ErrorTeck
2012-01-01 02:29:38 -------- d-----w- c:\windows\system32\vmm32
2012-01-01 01:38:38 116224 ----a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2012-01-01 01:38:34 23040 ----a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2012-01-01 01:38:33 18944 ----a-w- c:\windows\system32\dllcache\xrxscnui.dll
2012-01-01 01:38:29 27648 ----a-w- c:\windows\system32\dllcache\xrxftplt.exe
2012-01-01 01:38:25 4608 ----a-w- c:\windows\system32\dllcache\xrxflnch.exe
2012-01-01 01:38:19 99865 ----a-w- c:\windows\system32\dllcache\xlog.exe
2012-01-01 01:38:15 16970 ----a-w- c:\windows\system32\dllcache\xem336n5.sys
2012-01-01 01:38:14 19455 ----a-w- c:\windows\system32\dllcache\wvchntxx.sys
2012-01-01 01:38:11 19200 ----a-w- c:\windows\system32\dllcache\wstcodec.sys
2012-01-01 01:38:10 12063 ----a-w- c:\windows\system32\dllcache\wsiintxx.sys
2012-01-01 01:38:09 8192 ----a-w- c:\windows\system32\dllcache\wshirda.dll
2012-01-01 01:36:56 64605 ----a-w- c:\windows\system32\dllcache\vvoice.sys
2012-01-01 01:35:54 94720 ----a-w- c:\windows\system32\dllcache\umaxud32.dll
2012-01-01 01:34:55 440576 ----a-w- c:\windows\system32\dllcache\tridkb.dll
2012-01-01 01:33:59 37961 ----a-w- c:\windows\system32\dllcache\tdk100b.sys
2012-01-01 01:32:57 16896 ----a-w- c:\windows\system32\dllcache\stcusb.sys
2012-01-01 01:31:59 147200 ----a-w- c:\windows\system32\dllcache\smidispb.dll
2012-01-01 01:30:58 104064 ----a-w- c:\windows\system32\dllcache\sisgrp.sys
2012-01-01 01:29:58 16640 ----a-w- c:\windows\system32\dllcache\scmstcs.sys
2012-01-01 01:28:59 79872 ----a-w- c:\windows\system32\dllcache\rwia430.dll
2012-01-01 01:27:57 112574 ----a-w- c:\windows\system32\dllcache\ptserlp.sys
2012-01-01 01:26:56 86016 ----a-w- c:\windows\system32\dllcache\pctspk.exe
2012-01-01 01:25:57 43689 ----a-w- c:\windows\system32\dllcache\otceth5.sys
2012-01-01 01:24:58 15872 ----a-w- c:\windows\system32\dllcache\ne2000.sys
2012-01-01 01:23:55 2944 ----a-w- c:\windows\system32\dllcache\msmpu401.sys
2012-01-01 01:22:59 48768 ----a-w- c:\windows\system32\dllcache\maestro.sys
2012-01-01 01:21:58 8192 ----a-w- c:\windows\system32\dllcache\kbdkor.dll
2012-01-01 01:20:57 100992 ----a-w- c:\windows\system32\dllcache\icam5usb.sys
2012-01-01 01:19:59 542879 ----a-w- c:\windows\system32\dllcache\hsf_msft.sys
2012-01-01 01:18:59 2688 ----a-w- c:\windows\system32\dllcache\hidswvd.sys
2012-01-01 01:17:59 11850 ----a-w- c:\windows\system32\dllcache\f3ab18xj.sys
2012-01-01 01:16:59 70174 ----a-w- c:\windows\system32\dllcache\el98xn5.sys
2012-01-01 01:15:59 37735 ----a-w- c:\windows\system32\dllcache\digiasyn.sys
2012-01-01 01:14:59 980034 ----a-w- c:\windows\system32\dllcache\cicap.sys
2012-01-01 01:13:58 26624 ----a-w- c:\windows\system32\dllcache\ativxbar.sys
2011-12-31 21:47:56 -------- d-----w- c:\windows\Hewlett-Packard
2011-12-31 00:11:42 658432 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2011-12-31 00:11:39 -------- d-----w- c:\program files\common files\PC Tools
2011-12-30 21:16:38 -------- d-----w- c:\documents and settings\bill\application data\DDMSettings
2011-12-30 21:05:23 -------- d-----w- c:\documents and settings\bill\application data\HpUpdate
2011-12-16 11:55:15 50704 ----a-w- c:\windows\system32\drivers\npf.sys
2011-12-16 11:55:15 281104 ----a-w- c:\windows\system32\wpcap.dll
2011-12-16 11:55:15 100880 ----a-w- c:\windows\system32\Packet.dll
.
==================== Find3M ====================
.
2011-12-20 00:54:20 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-23 13:25:32 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-04 19:20:51 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:20:51 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-11-04 19:20:51 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:23:59 385024 ------w- c:\windows\system32\html.iec
2011-11-01 16:07:10 1288704 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 05:31:48 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-10-25 13:37:08 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-10-25 12:52:02 2027008 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-10-20 23:26:22 94208 ----a-w- c:\windows\system32\dpl100.dll
2011-10-18 11:13:22 186880 ----a-w- c:\windows\system32\encdec.dll
.
============= FINISH: 9:21:28.62 ===============

Here is my second log


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 12/31/2002 11:03:47 PM
System Uptime: 1/13/2012 9:15:46 AM (0 hours ago)
.
Motherboard: Dell Inc | | 0CT103
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3600+ | Socket M2 | 1903/1000mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 71 GiB total, 27.578 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is Removable
J: is FIXED (FAT32) - 298 GiB total, 293.32 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP890: 10/15/2011 4:35:29 AM - System Checkpoint
RP891: 10/16/2011 5:35:30 AM - System Checkpoint
RP892: 10/17/2011 6:35:31 AM - System Checkpoint
RP893: 10/18/2011 6:37:35 AM - System Checkpoint
RP894: 10/19/2011 6:43:40 AM - System Checkpoint
RP895: 10/20/2011 7:42:08 AM - System Checkpoint
RP896: 10/21/2011 8:38:44 AM - System Checkpoint
RP897: 10/22/2011 8:42:21 AM - System Checkpoint
RP898: 10/23/2011 8:47:18 AM - System Checkpoint
RP899: 10/24/2011 10:37:15 AM - System Checkpoint
RP900: 10/25/2011 10:38:44 AM - System Checkpoint
RP901: 10/26/2011 12:38:42 PM - System Checkpoint
RP902: 10/27/2011 2:38:42 PM - System Checkpoint
RP903: 10/28/2011 4:58:53 PM - System Checkpoint
RP904: 10/29/2011 7:35:29 PM - System Checkpoint
RP905: 10/30/2011 8:48:26 PM - System Checkpoint
RP906: 10/31/2011 10:09:04 PM - System Checkpoint
RP907: 11/2/2011 12:09:04 AM - System Checkpoint
RP908: 11/5/2011 9:44:06 AM - System Checkpoint
RP909: 11/6/2011 8:59:56 AM - System Checkpoint
RP910: 11/7/2011 9:59:54 AM - System Checkpoint
RP911: 11/8/2011 10:59:54 AM - System Checkpoint
RP912: 11/9/2011 3:00:14 AM - Software Distribution Service 3.0
RP913: 11/10/2011 3:59:53 AM - System Checkpoint
RP914: 11/11/2011 3:00:14 AM - Software Distribution Service 3.0
RP915: 11/12/2011 9:41:43 AM - System Checkpoint
RP916: 11/13/2011 10:00:35 AM - System Checkpoint
RP917: 11/14/2011 11:00:12 AM - System Checkpoint
RP918: 11/15/2011 12:00:12 PM - System Checkpoint
RP919: 11/16/2011 1:00:11 PM - System Checkpoint
RP920: 11/17/2011 2:00:11 PM - System Checkpoint
RP921: 11/18/2011 3:00:11 PM - System Checkpoint
RP922: 11/20/2011 7:42:01 AM - System Checkpoint
RP923: 11/21/2011 7:02:37 PM - System Checkpoint
RP924: 11/22/2011 7:25:12 PM - System Checkpoint
RP925: 11/23/2011 10:44:38 PM - System Checkpoint
RP926: 11/24/2011 10:54:36 PM - System Checkpoint
RP927: 11/25/2011 3:00:14 AM - Software Distribution Service 3.0
RP928: 11/26/2011 3:43:10 AM - System Checkpoint
RP929: 11/27/2011 4:43:10 AM - System Checkpoint
RP930: 11/29/2011 11:48:32 AM - System Checkpoint
RP931: 11/30/2011 12:43:15 PM - System Checkpoint
RP932: 12/1/2011 1:43:10 PM - System Checkpoint
RP933: 12/3/2011 10:37:25 AM - System Checkpoint
RP934: 12/4/2011 11:08:12 AM - System Checkpoint
RP935: 12/5/2011 11:58:26 AM - System Checkpoint
RP936: 12/6/2011 12:58:26 PM - System Checkpoint
RP937: 12/7/2011 2:45:21 PM - System Checkpoint
RP938: 12/8/2011 11:48:06 PM - System Checkpoint
RP939: 12/10/2011 12:39:47 AM - System Checkpoint
RP940: 12/11/2011 8:47:01 AM - System Checkpoint
RP941: 12/12/2011 9:32:38 AM - System Checkpoint
RP942: 12/13/2011 10:32:37 AM - System Checkpoint
RP943: 12/14/2011 3:00:47 AM - Software Distribution Service 3.0
RP944: 12/15/2011 3:29:37 AM - System Checkpoint
RP945: 12/16/2011 3:37:13 AM - System Checkpoint
RP946: 12/17/2011 4:33:28 AM - System Checkpoint
RP947: 12/19/2011 12:46:32 PM - System Checkpoint
RP948: 12/29/2011 4:35:48 PM - System Checkpoint
RP949: 12/30/2011 12:39:33 PM - Restore Operation
RP950: 12/30/2011 12:54:27 PM - Restore Operation
RP951: 12/31/2011 1:26:04 PM - System Checkpoint
RP952: 12/31/2011 1:56:38 PM - Restore Operation
RP953: 12/31/2011 2:29:50 PM - Restore Operation
RP954: 12/31/2011 6:28:14 PM - Installed Dell Resource CD
RP955: 12/31/2011 7:02:05 PM - ErrorTeck Restore point
RP956: 1/1/2012 7:57:58 PM - System Checkpoint
RP957: 1/2/2012 10:17:41 PM - System Checkpoint
RP958: 1/3/2012 10:40:52 PM - System Checkpoint
RP959: 1/5/2012 12:33:57 PM - System Checkpoint
RP960: 1/6/2012 9:03:37 PM - System Checkpoint
RP961: 1/7/2012 10:08:16 PM - System Checkpoint
RP962: 1/9/2012 7:13:17 AM - System Checkpoint
RP963: 1/10/2012 8:01:55 AM - System Checkpoint
RP964: 1/11/2012 8:07:35 AM - System Checkpoint
RP965: 1/11/2012 8:05:49 PM - Removed FixCleaner
RP966: 1/12/2012 8:51:39 PM - System Checkpoint
.
==== Installed Programs ======================
.
.
3ivx D4 4.5.1 Decoder (remove only)
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.1)
AiO_Scan_CDA
AiOSoftwareNPI
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ArcGIS Explorer
AT&T Yahoo! Applications
ATT-RC Self Support Tool
BlackBerry Desktop Software 5.0
Bonjour
Broadcom Management Programs
BufferChm
CASIO USB Driver V1.2.2474.0623
Cisco Connect
Corel Paint Shop Pro Photo XI
CP_CalendarTemplates1
cp_OnlineProjectsConfig
CP_Package_Basic1
CP_Panorama1Config
cp_PosterPrintConfig
Critical Update for Windows Media Player 11 (KB959772)
CueTour
CustomerResearchQFolder
DealPly
Dell CinePlayer
Dell Resource CD
Dell Support 3.2.1
Dell Support Center
Dell System Restore
Destinations
DeviceManagementQFolder
DivX Converter
DivX Plus DirectShow Filters
DivX Setup
DivX Version Checker
DocProc
DocProcQFolder
DocumentViewer
DocumentViewerQFolder
DownloadX ActiveX Download Control 1.6.1
Driver Detective
eSupportQFolder
Fax_CDA
FullDPAppQFolder
Garmin BaseCamp
Garmin MapSource
Garmin TOPO U.S. 2008
Garmin TOPO U.S. 24K Southwest v2
Garmin TOPO U.S. 24K West v2
Garmin USB Drivers
Garmin WebUpdater
Google Desktop
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
Google Updater
GoToAssist 8.0.0.514
High Definition Audio Driver Package - KB835221
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Customer Participation Program 7.0
HP Document Viewer 7.0
HP Imaging Device Functions 7.0
HP Photosmart Premier Software 6.5
HP Photosmart, Officejet and Deskjet 7.0.A
HP Product Assistant
HP Solution Center 7.0
HP Update
HPPhotoSmartExpress
HPProductAssistant
InstantShareAlert
InstantShareDevices
InstantShareDevicesMFC
iTunes
Java Auto Updater
Java(TM) 6 Update 26
LeapFrog Connect
LeapFrog Leapster2 Plugin
LeapFrog Tag Junior Plugin
LeapFrog Tag Plugin
LG Android Drivers
LG USB Modem driver
MarketResearch
McAfee Security Scan Plus
McAfee SecurityCenter
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2572067)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft Software Update for Web Folders (English) 12
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
Motorola Driver Installation 3.9.0
Mozilla Firefox 4.0.1 (x86 en-US)
Mozilla Thunderbird (8.0)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NewCopy_CDA
NVIDIA Drivers
OCR Software by I.R.I.S 7.0
Opera 11.11
Opera 11.60
PanoStandAlone
Pantech Handset Driver
PhotoGallery
ProductContextNPI
RandMap
Readme
Roxio DLA
Roxio MyDVD LE
Roxio RecordNow Audio
Roxio RecordNow Copy
Roxio RecordNow Data
Safari
SAMSUNG Mobile USB DRIVER(4.40.7.0) v1.6
Scan
ScannerCopy
SearchAssist
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2553089)
Security Update for 2007 Microsoft Office System (KB2553090)
Security Update for 2007 Microsoft Office System (KB2584063)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Groove 2007 (KB2552997)
Security Update for Microsoft Office InfoPath 2007 (KB2510061)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Security Update for Microsoft Windows (KB2564958)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2491683)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950759)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
SigmaTel Audio
SkinsHP1
SlideShow
SolutionCenter
Sonic Activation Module
Sonic Update Manager
Sonic_PrimoSDK
StartNow Toolbar
Status
SUPERAntiSpyware
Toolbox
TrayApp
Unload
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Outlook 2007 Junk Email Filter (KB2596560)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows Internet Explorer 8 (KB982632)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB2641690)
Update for Windows XP (KB942763)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Leapster2 Plugin)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Junior Plugin)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin)
UT_BLM4GPS
VC80CRTRedist - 8.0.50727.6195
WebFldrs XP
WebReg
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)
Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 10
Windows Media Player 11
Windows PowerShell(TM) 1.0
Windows Search 4.0
Windows XP Service Pack 3
Wisdom-soft Set up ScreenHunter 5.1 Free
Wisdom-soft Toolbar
WModem Driver Installer
Yahoo! Detect
.
==== Event Viewer Messages From Past Week ========
.
1/11/2012 9:42:00 AM, error: Schedule [7901] - The At20.job command failed to start due to the following error: %%2147942402
1/11/2012 9:42:00 AM, error: Schedule [7901] - The At19.job command failed to start due to the following error: %%2147942402
1/11/2012 8:42:00 AM, error: Schedule [7901] - The At18.job command failed to start due to the following error: %%2147942402
1/11/2012 8:42:00 AM, error: Schedule [7901] - The At17.job command failed to start due to the following error: %%2147942402
1/11/2012 7:54:52 PM, error: Service Control Manager [7034] - The NVIDIA Display Driver Service service terminated unexpectedly. It has done this 1 time(s).
1/11/2012 7:52:55 PM, error: Service Control Manager [7003] - The TCP/IP NetBIOS Helper service depends on the following nonexistent service: NetBT
1/11/2012 7:52:55 PM, error: Service Control Manager [7003] - The DHCP Client service depends on the following nonexistent service: NetBT
1/11/2012 7:42:00 AM, error: Schedule [7901] - The At16.job command failed to start due to the following error: %%2147942402
1/11/2012 7:42:00 AM, error: Schedule [7901] - The At15.job command failed to start due to the following error: %%2147942402
1/11/2012 6:42:00 AM, error: Schedule [7901] - The At14.job command failed to start due to the following error: %%2147942402
1/11/2012 6:42:00 AM, error: Schedule [7901] - The At13.job command failed to start due to the following error: %%2147942402
1/11/2012 5:42:00 AM, error: Schedule [7901] - The At12.job command failed to start due to the following error: %%2147942402
1/11/2012 5:42:00 AM, error: Schedule [7901] - The At11.job command failed to start due to the following error: %%2147942402
1/11/2012 5:34:28 PM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
1/11/2012 5:34:25 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}
1/11/2012 5:32:06 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service McAfee SiteAdvisor Service with arguments "" in order to run the server: {5A90F5EE-16B8-4C2A-81B3-FD5329BA477C}
1/11/2012 5:30:27 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service McComponentHostService with arguments "" in order to run the server: {CC6F4D12-8575-4CFF-9455-CF5774AEB13B}
1/11/2012 5:28:41 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service McNaiAnn with arguments "" in order to run the server: {DC7EF8E1-824F-4110-AB43-1604DA9B4F40}
1/11/2012 5:27:55 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Fips nvatabus nvraid Processor
1/11/2012 5:26:44 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
1/11/2012 5:14:45 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.
1/11/2012 4:42:00 PM, error: Schedule [7901] - The At34.job command failed to start due to the following error: %%2147942402
1/11/2012 4:42:00 PM, error: Schedule [7901] - The At33.job command failed to start due to the following error: %%2147942402
1/11/2012 4:42:00 AM, error: Schedule [7901] - The At9.job command failed to start due to the following error: %%2147942402
1/11/2012 4:42:00 AM, error: Schedule [7901] - The At10.job command failed to start due to the following error: %%2147942402
1/11/2012 4:34:57 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: nvatabus nvraid
1/11/2012 4:34:57 PM, error: Service Control Manager [7000] - The SupportSoft Sprocket Service (dellsupportcenter) service failed to start due to the following error: The system cannot find the file specified.
1/11/2012 4:34:57 PM, error: Service Control Manager [7000] - The Automatic LiveUpdate Scheduler service failed to start due to the following error: The system cannot find the path specified.
1/11/2012 3:42:00 PM, error: Schedule [7901] - The At32.job command failed to start due to the following error: %%2147942402
1/11/2012 3:42:00 PM, error: Schedule [7901] - The At31.job command failed to start due to the following error: %%2147942402
1/11/2012 3:42:00 AM, error: Schedule [7901] - The At8.job command failed to start due to the following error: %%2147942402
1/11/2012 3:42:00 AM, error: Schedule [7901] - The At7.job command failed to start due to the following error: %%2147942402
1/11/2012 2:42:00 PM, error: Schedule [7901] - The At30.job command failed to start due to the following error: %%2147942402
1/11/2012 2:42:00 PM, error: Schedule [7901] - The At29.job command failed to start due to the following error: %%2147942402
1/11/2012 2:42:00 AM, error: Schedule [7901] - The At6.job command failed to start due to the following error: %%2147942402
1/11/2012 2:42:00 AM, error: Schedule [7901] - The At5.job command failed to start due to the following error: %%2147942402
1/11/2012 12:42:00 PM, error: Schedule [7901] - The At26.job command failed to start due to the following error: %%2147942402
1/11/2012 12:42:00 PM, error: Schedule [7901] - The At25.job command failed to start due to the following error: %%2147942402
1/11/2012 12:42:00 AM, error: Schedule [7901] - The At2.job command failed to start due to the following error: %%2147942402
1/11/2012 12:42:00 AM, error: Schedule [7901] - The At1.job command failed to start due to the following error: %%2147942402
1/11/2012 11:42:00 AM, error: Schedule [7901] - The At24.job command failed to start due to the following error: %%2147942402
1/11/2012 11:42:00 AM, error: Schedule [7901] - The At23.job command failed to start due to the following error: %%2147942402
1/11/2012 10:42:00 AM, error: Schedule [7901] - The At22.job command failed to start due to the following error: %%2147942402
1/11/2012 10:42:00 AM, error: Schedule [7901] - The At21.job command failed to start due to the following error: %%2147942402
1/11/2012 1:42:00 PM, error: Schedule [7901] - The At28.job command failed to start due to the following error: %%2147942402
1/11/2012 1:42:00 PM, error: Schedule [7901] - The At27.job command failed to start due to the following error: %%2147942402
1/11/2012 1:42:00 AM, error: Schedule [7901] - The At4.job command failed to start due to the following error: %%2147942402
1/11/2012 1:42:00 AM, error: Schedule [7901] - The At3.job command failed to start due to the following error: %%2147942402
1/10/2012 9:42:00 PM, error: Schedule [7901] - The At44.job command failed to start due to the following error: %%2147942402
1/10/2012 9:42:00 PM, error: Schedule [7901] - The At43.job command failed to start due to the following error: %%2147942402
1/10/2012 8:42:00 PM, error: Schedule [7901] - The At42.job command failed to start due to the following error: %%2147942402
1/10/2012 8:42:00 PM, error: Schedule [7901] - The At41.job command failed to start due to the following error: %%2147942402
1/10/2012 7:42:00 PM, error: Schedule [7901] - The At40.job command failed to start due to the following error: %%2147942402
1/10/2012 7:42:00 PM, error: Schedule [7901] - The At39.job command failed to start due to the following error: %%2147942402
1/10/2012 6:42:00 PM, error: Schedule [7901] - The At38.job command failed to start due to the following error: %%2147942402
1/10/2012 6:42:00 PM, error: Schedule [7901] - The At37.job command failed to start due to the following error: %%2147942402
1/10/2012 5:42:00 PM, error: Schedule [7901] - The At36.job command failed to start due to the following error: %%2147942402
1/10/2012 5:42:00 PM, error: Schedule [7901] - The At35.job command failed to start due to the following error: %%2147942402
1/10/2012 11:42:00 PM, error: Schedule [7901] - The At48.job command failed to start due to the following error: %%2147942402
1/10/2012 11:42:00 PM, error: Schedule [7901] - The At47.job command failed to start due to the following error: %%2147942402
1/10/2012 10:42:00 PM, error: Schedule [7901] - The At46.job command failed to start due to the following error: %%2147942402
1/10/2012 10:42:00 PM, error: Schedule [7901] - The At45.job command failed to start due to the following error: %%2147942402
.
==== End Of File ===========================
Back to top
View user's profile Send private message
Gary R
Moderator


Joined: 03 May 2005
Last Visit: 24 Apr 2014
Posts: 9931
Location: Yorkshire

PostPosted: Mon Jan 16, 2012 6:26 am    Post subject: Reply with quote

Looking over your logs, back soon.
_________________
Gary R Administrator at Malware Removal University



If you've been helped, please donate to help with the costs of this volunteer site .... Spyware Warrior Donations
Back to top
View user's profile Send private message
Gary R
Moderator


Joined: 03 May 2005
Last Visit: 24 Apr 2014
Posts: 9931
Location: Yorkshire

PostPosted: Mon Jan 16, 2012 6:40 am    Post subject: Reply with quote

Quote:
Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.

If you think you have similar problems, please post a log in the "Help with spyware removal" forum and wait for help.


Unless informed of in advance, failure to post replies within 3 days will result in this thread being closed.


Hi

I'm Gary R,

Before we start: Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start.

Please observe these rules while we work:

  • Perform all actions in the order given.
  • If you don't know, stop and ask! Don't keep going on.
  • Please reply to this thread. Do not start a new topic.
  • Stick with it till you're given the all clear.
  • Remember, absence of symptoms does not mean the infection is all gone.
  • Don't attempt to install any new software (other than those I ask you to) until we've got your computer clean.
  • Don't attempt to clean your computer with any tools other than the ones I ask you to use during the cleanup process. If your defensive programmes warn you about any of those tools, be assured that they are not infected, and are safe to use.

If you can do these things, everything should go smoothly.

  • If you're using XP, you'll need Administrator privileges to perform the fixes. (XP accounts are Administrator by default)
  • If you're using Vista or Windows7, it will be necessary to right click all tools we use and select ----> Run as Administrator

Quote:
It may be helpful to you to print out or take a copy of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.


Your logs show you have the Zero Access rootkit infection, and that at least part of it is still present on your computer. This may or may not be the reason for your loss of connectivity, but we'll take care of it first and see where that takes us.

Please be aware that this infection has remote access capability, so if you take part in online banking, then you should do the following ....

Call all of your banks, credit card companies, and financial institutions. Inform them that you may be a victim of identity theft and to put a watch on your accounts or change all your account numbers.

From a clean computer, change *all* your online passwords -- for email, for banks, financial accounts, PayPal, eBay, online companies, any online forums or groups you belong to.

To recover your computer, you may wish to consider backing up your personal data, then reformatting your computer and re-installing Windows, since this might possibly be the best solution to your problems.

If you wish to attempt to clean your computer, please do the following ....

Download the tools needed to a flash drive or other removable media, and transfer them to the infected computer.

***************************************************

Download ComboFix from one of these locations and save it to your Desktop:

Link 1
Link 2

IMPORTANT !!! ComboFix.exe must be run from your Desktop

--------------------------------------------------------------------

With malware infections being as they are today, it's strongly recommended to have Microsoft Windows Recovery Console pre-installed on your machine before doing any malware removal.

The Microsoft Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

Go to Microsoft's website

Select the download that's appropriate for your Operating System

  • If you have Media Edition use XP Pro package.
  • If you have SP3 use the SP2 package.


Download the file & save it as it's originally named.

---------------------------------------------------------------------

Transfer all files you just downloaded, to the desktop of the infected computer (must be in this location).

--------------------------------------------------------------------

Disable your AntiVirus and AntiSpyware applications, they may otherwise interfere with Combofix. There are details for disabling many programmes here.




  • Drag the setup package onto ComboFix.exe and drop it.

  • Follow the prompts to start ComboFix and when prompted, agree to the End-User License Agreement to install Microsoft Windows Recovery Console.



  • At the next prompt, click Yes to run the full ComboFix scan.

  • When finished, it will produce a log for you.


Please include this log in your next reply. ......... (it can also be found at C:\ComboFix.txt)

IMPORTANT

  • Do not use your computer while Combofix is running.
  • Do not mouseclick combofix's window whilst it's running. That may cause it to stall.
  • If you've lost your Internet connection when Combofix has completely finished, re-start your computer to restore it.

If you have any problems with these instructions, a detailed Tutorial for how to use Combofix is available here.
_________________
Gary R Administrator at Malware Removal University



If you've been helped, please donate to help with the costs of this volunteer site .... Spyware Warrior Donations
Back to top
View user's profile Send private message
billinsd
Newbie


Joined: 12 Jan 2012
Last Visit: 01 Sep 2012
Posts: 7

PostPosted: Mon Jan 16, 2012 1:28 pm    Post subject: Reply with quote

Gary, thanks. I decided to reformat my computer and reinstall Windows XP. Afterwards I can't connect to the internet. I called my DSL provider, At&t and they said it appears I am missing some adaptors that let the computer look for my modem? When I reformated my c drive I deleted the other two small partions. Also my XP is the second service pack, not third. What do you recommend now? Thanks Bill
Back to top
View user's profile Send private message
Gary R
Moderator


Joined: 03 May 2005
Last Visit: 24 Apr 2014
Posts: 9931
Location: Yorkshire

PostPosted: Mon Jan 16, 2012 2:23 pm    Post subject: Reply with quote

A reinstall of Windows will not automatically restore your Windows connection, you'll need to install the drivers and software that your ISP supplied.

Without knowing what kind of computer you have, and what procedure you have used to reformat, it's not possible for me to comment on the partition structure of your hard drive.

Did your computer come with Windows pre-installed ?

When you reformatted, did you use a recovery utility supplied by your computer manufacturer, or did you format the drive yourself and then install Windows from a Genuine Windows Installation Disk (one supplied by Microsoft) ?
_________________
Gary R Administrator at Malware Removal University



If you've been helped, please donate to help with the costs of this volunteer site .... Spyware Warrior Donations
Back to top
View user's profile Send private message
billinsd
Newbie


Joined: 12 Jan 2012
Last Visit: 01 Sep 2012
Posts: 7

PostPosted: Mon Jan 16, 2012 4:12 pm    Post subject: Reply with quote

Gary R wrote:
Did your computer come with Windows pre-installed ?
Yes.
Gary R wrote:
When you reformatted, did you use a recovery utility supplied by your computer manufacturer, or did you format the drive yourself and then install Windows from a Genuine Windows Installation Disk (one supplied by Microsoft) ?
I used my Dell recovery CD that came with it to format and install Windows. I callled my Isp and will download the drivers tomorrow. Thanks Bill
Back to top
View user's profile Send private message
Gary R
Moderator


Joined: 03 May 2005
Last Visit: 24 Apr 2014
Posts: 9931
Location: Yorkshire

PostPosted: Mon Jan 16, 2012 10:33 pm    Post subject: Reply with quote

If you've Used a Dell recovery disk, then it will have returned your computer to the state it was when it first came from the factory.

If that was with Service Pack 2 installed, then you'll have to re-install Service Pack 3 and any other updates from Microsoft.

You'll also need to re-install any software that you had on your computer prior to the reformat. Be sure to install an anti-virus as soon as possible, and to make sure that Windows firewall is switched on.

Please read the article below which will give you a few suggestions for how to minimise your chances of getting another infection.

_________________
Gary R Administrator at Malware Removal University



If you've been helped, please donate to help with the costs of this volunteer site .... Spyware Warrior Donations
Back to top
View user's profile Send private message
billinsd
Newbie


Joined: 12 Jan 2012
Last Visit: 01 Sep 2012
Posts: 7

PostPosted: Mon Jan 16, 2012 11:04 pm    Post subject: Reply with quote

Gary, thanks. I reinstalled the drivers and got the internet up and running. I will read your links. Thanks Bill
Back to top
View user's profile Send private message
Gary R
Moderator


Joined: 03 May 2005
Last Visit: 24 Apr 2014
Posts: 9931
Location: Yorkshire

PostPosted: Tue Jan 17, 2012 1:37 am    Post subject: Reply with quote

You're welcome. Very Happy

Keep safe.

Gary
_________________
Gary R Administrator at Malware Removal University



If you've been helped, please donate to help with the costs of this volunteer site .... Spyware Warrior Donations
Back to top
View user's profile Send private message
Gary R
Moderator


Joined: 03 May 2005
Last Visit: 24 Apr 2014
Posts: 9931
Location: Yorkshire

PostPosted: Thu Jan 19, 2012 10:46 pm    Post subject: Reply with quote

Quote:
This topic is now closed.

If you are the originator of this topic, and you need it re-opened please pm a moderator, including a link to this topic.


If you have been helped and wish to donate to help with the costs of this volunteer site, please read Spyware Warrior Donations

Gary R

_________________
Gary R Administrator at Malware Removal University



If you've been helped, please donate to help with the costs of this volunteer site .... Spyware Warrior Donations
Back to top
View user's profile Send private message
Display posts from previous:   
This forum is locked: you cannot post, reply to, or edit topics.   This topic is locked: you cannot edit posts or make replies.    Spyware Warrior Forum Index -> Archived Spyware Removal Help Topics All times are GMT - 8 Hours
Page 1 of 1

 
Jump to:  
You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group