Solve : Double check?

1.	Solve : Double check?
Answer» Sorry about that! I must have saved them like I did this time but attach.txt doesn't save. . ==== Installed Programs ====================== . Adobe AIR Adobe Flash Player 10 Plugin Adobe Flash Player 11 ActiveX Adobe Reader X (10.1.2) Adobe Shockwave Player ATI - Software Uninstall Utility ATI Control Panel ATI Display Driver avast! Free Antivirus CameraHelperMsi CCleaner CCScore Compatibility Pack for the 2007 Office system DVD Shrink 3.2 DVD Suite Efficient Networks SpeedStream DSL Enable S3 for USB Device erLT ESET Online Scanner v3 ESSBrwr ESSCDBK ESScore ESSgui ESSini ESSPCD ESSPDock ESSTOOLS essvatgt HighMAT Extension to Microsoft Windows XP CD Writing Wizard Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB2158563) Hotfix for Windows XP (KB2443685) Hotfix for Windows XP (KB2570791) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB932716-v2) Hotfix for Windows XP (KB945060-v3) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB970653-v3) Hotfix for Windows XP (KB976098-v2) Hotfix for Windows XP (KB979306) Hotfix for Windows XP (KB981793) Intel(R) PRO Network Adapters and Drivers Intel(R) PROSet Internet Explorer (Enable DEP) iTunes J2SE Runtime Environment 5.0 Update 2 Java 2 Runtime Environment, SE v1.4.2_05 Java Auto Updater Java(TM) 6 Update 30 Kodak EasyShare software Lexmark X6100 Series LG ODD Auto Firmware Update Logitech Vid Logitech Webcam Software LWS Facebook LWS Gallery LWS Help_main LWS Launcher LWS Motion Detection LWS Pictures And Video LWS Twitter LWS Video Mask Maker LWS Webcam Software LWS WLM Plugin LWS YouTube Plugin Malwarebytes Anti-Malware version 1.60.0.1800 MegaCam Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Security Update (KB2656353) Microsoft .NET Framework 1.1 Security Update (KB979906) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Extended Microsoft Application Error Reporting Microsoft Automated Troubleshooting Services Shim Microsoft Choice Guard Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Fix it Center Microsoft Office XP Professional with FrontPage Microsoft Silverlight Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Microsoft Windows Journal Viewer MPIO Software Installation MSVCRT MSXML 4.0 SP2 (KB927978) MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 6 Service Pack 2 (KB973686) Nero - Burning Rom Nero 7 Essentials neroxml netbrdg OfotoXMI PicPick PowerDVD PowerProducer Print to Fax Pure Networks Network Magic QuickTax 2007 QuickTime Realtek AC'97 Audio SeaTools for Windows SecurDisc Viewer Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft Windows (KB2564958) Security Update for Windows Internet Explorer 8 (KB2183461) Security Update for Windows Internet Explorer 8 (KB2360131) Security Update for Windows Internet Explorer 8 (KB2416400) Security Update for Windows Internet Explorer 8 (KB2482017) Security Update for Windows Internet Explorer 8 (KB2497640) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2530548) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2559049) Security Update for Windows Internet Explorer 8 (KB2586448) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB971961) Security Update for Windows Internet Explorer 8 (KB981332) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB968816) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2121546) Security Update for Windows XP (KB2160329) Security Update for Windows XP (KB2183461) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2259922) Security Update for Windows XP (KB2279986) Security Update for Windows XP (KB2286198) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2296199) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2436673) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2476687) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479628) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485376) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2503658) Security Update for Windows XP (KB2503665) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2506223) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508272) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2511455) Security Update for Windows XP (KB2524375) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2536276) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2544893) Security Update for Windows XP (KB2555917) Security Update for Windows XP (KB2562937) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2567053) Security Update for Windows XP (KB2567680) Security Update for Windows XP (KB2570222) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2584146) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2619339) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2639417) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB938464) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB954211) Security Update for Windows XP (KB954459) Security Update for Windows XP (KB954600) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956390) Security Update for Windows XP (KB956391) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956841) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB957095) Security Update for Windows XP (KB957097) Security Update for Windows XP (KB958215) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958687) Security Update for Windows XP (KB958690) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960714) Security Update for Windows XP (KB960715) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961371) Security Update for Windows XP (KB961373) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB963027) Security Update for Windows XP (KB968537) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB969897) Security Update for Windows XP (KB969898) Security Update for Windows XP (KB969947) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971468) Security Update for Windows XP (KB971486) Security Update for Windows XP (KB971557) Security Update for Windows XP (KB971633) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB971961) Security Update for Windows XP (KB972260) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973346) Security Update for Windows XP (KB973354) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973525) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974455) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975561) Security Update for Windows XP (KB975562) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB976325) Security Update for Windows XP (KB977165) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978037) Security Update for Windows XP (KB978251) Security Update for Windows XP (KB978262) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979559) Security Update for Windows XP (KB979683) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB980195) Security Update for Windows XP (KB980218) Security Update for Windows XP (KB980232) Security Update for Windows XP (KB980436) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981349) Security Update for Windows XP (KB981852) Security Update for Windows XP (KB981957) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982214) Security Update for Windows XP (KB982381) Security Update for Windows XP (KB982665) Security Update for Windows XP (KB982802) Segoe UI SFR SHASTA skin0001 SKINXSDK Speccy staticcr SUPERAntiSpyware TurboTax 2010 Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Windows Internet Explorer 8 (KB2362765) Update for Windows Internet Explorer 8 (KB976662) Update for Windows XP (KB2141007) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2541763) Update for Windows XP (KB2607712) Update for Windows XP (KB2616676) Update for Windows XP (KB2641690) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB955839) Update for Windows XP (KB961503) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) Update for Windows XP (KB976749) Update for Windows XP (KB978207) ViviCam 3350 VPRINTOL WebFldrs XP Windows Driver Package - (mr7910) Image (08/08/2006 1.4.0.0) Windows Genuine Advantage v1.3.0254.0 Windows Genuine Advantage Validation Tool (KB892130) Windows Imaging Component Windows Internet Explorer 8 Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Messenger Windows Live Sign-in Assistant Windows Live Upload Tool Windows Media Format 11 runtime Windows Media Player 11 Windows PowerShell(TM) 1.0 Windows XP Service Pack 3 WIRELESS . ==== END Of File =========================== . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 Run by Person at 17:33:11 on 2012-01-26 . ============== Running Processes =============== . . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.ca/ BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\utilities\avast software\avast\aswWebRepIE.dll BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\utilities\avast software\avast\aswWebRepIE.dll EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File EB: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - No File uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [avast] "c:\program files\utilities\avast software\avast\avastUI.exe" /nogui dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office10\EXCEL.EXE/3000 IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1099601191280 DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab DPF: {BEA7310D-06C4-4339-A784-DC3804819809} - hxxp://costco.pnimedia.com/upload/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab TCP: DhcpNameServer = 192.168.0.1 TCP: Interfaces\{C237B8FC-8185-442C-A9BB-72AD6590AC4A} : DhcpNameServer = 192.168.2.1 TCP: Interfaces\{F3626ADA-0E3F-4A7D-8D4D-33E2CD9A1977} : DhcpNameServer = 192.168.0.1 Handler: intu-qt2007 - {026BF40D-BA05-467b-9F1F-AD0D7A3F5F11} - c:\program files\quicktax 2007\ic2007pp.dll Handler: intu-tt2010 - {97A0575E-2309-4e75-8509-B1F9390C4DE7} - c:\program files\turbotax 2010\ic2010pp.dll Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - c:\program files\common files\pure networks shared\puresp.dll Notify: !SASWinLogon - c:\program files\utilities\sas\SASWINLO.DLL SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\utilities\sas\SASSEH.DLL . ============= SERVICES / DRIVERS =============== . R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86 R? CompFilter;UVCCompositeFilter R? MatSvc;Microsoft Automated Troubleshooting Service R? SABKUTIL;SABKUTIL R? WDC_SAM;WD SCSI Pass Thru driver R? WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0 S? !SASCORE;SAS Core Service S? AR9271;Wireless Network Adapter Service S? aswFsBlk;aswFsBlk S? aswSnx;aswSnx S? aswSP;aswSP S? avast! Antivirus;avast! Antivirus S? SASDIFSV;SASDIFSV S? SASKUTIL;SASKUTIL . =============== Created Last 30 ================ . 2012-01-26 16:40:36--------d-----w-c:\program files\ART 2012-01-26 16:39:176689766----a-w-c:\program files\picpick_inst.exe 2012-01-25 07:44:3473728----a-w-c:\windows\system32\javacpl.cpl 2012-01-25 07:44:33472808----a-w-c:\windows\system32\deployJava1.dll 2012-01-25 03:42:21116224-c--a-w-c:\windows\system32\dllcache\xrxwiadr.dll 2012-01-25 03:42:2023040-c--a-w-c:\windows\system32\dllcache\xrxwbtmp.dll 2012-01-25 03:42:1918944-c--a-w-c:\windows\system32\dllcache\xrxscnui.dll 2012-01-25 03:42:1827648-c--a-w-c:\windows\system32\dllcache\xrxftplt.exe 2012-01-25 03:42:164608-c--a-w-c:\windows\system32\dllcache\xrxflnch.exe 2012-01-25 03:40:3199865-c--a-w-c:\windows\system32\dllcache\xlog.exe 2012-01-25 03:40:2616970-c--a-w-c:\windows\system32\dllcache\xem336n5.sys 2012-01-25 03:40:2319455-c--a-w-c:\windows\system32\dllcache\wvchntxx.sys 2012-01-25 03:40:0912063-c--a-w-c:\windows\system32\dllcache\wsiintxx.sys 2012-01-25 03:40:058192-c--a-w-c:\windows\system32\dllcache\wshirda.dll 2012-01-25 03:38:398832-c--a-w-c:\windows\system32\dllcache\wmiacpi.sys 2012-01-25 03:38:12154624-c--a-w-c:\windows\system32\dllcache\wlluc48.sys 2012-01-25 03:38:1134890-c--a-w-c:\windows\system32\dllcache\wlandrv2.sys 2012-01-25 03:36:5764605-c--a-w-c:\windows\system32\dllcache\vvoice.sys 2012-01-25 03:35:5711520-c--a-w-c:\windows\system32\dllcache\twotrack.sys 2012-01-25 03:34:5930464-c--a-w-c:\windows\system32\dllcache\tbatm155.sys 2012-01-25 03:33:5961824-c--a-w-c:\windows\system32\dllcache\speed.sys 2012-01-25 03:32:5832768-c--a-w-c:\windows\system32\dllcache\sisnic.sys 2012-01-25 03:32:52238592-c--a-w-c:\windows\system32\dllcache\sisgrv.dll 2012-01-25 03:32:49104064-c--a-w-c:\windows\system32\dllcache\sisgrp.sys 2012-01-25 03:32:43150144-c--a-w-c:\windows\system32\dllcache\sis6306v.dll 2012-01-25 03:32:4068608-c--a-w-c:\windows\system32\dllcache\sis6306p.sys 2012-01-25 03:32:39252032-c--a-w-c:\windows\system32\dllcache\sis300iv.dll 2012-01-25 03:32:37101760-c--a-w-c:\windows\system32\dllcache\sis300ip.sys 2012-01-25 03:29:5943904-c--a-w-c:\windows\system32\dllcache\sbp2port.sys 2012-01-25 03:28:5319584-c--a-w-c:\windows\system32\dllcache\rasirda.sys 2012-01-25 03:27:53121344-c--a-w-c:\windows\system32\dllcache\phvfwext.dll 2012-01-25 03:26:39198144-c--a-w-c:\windows\system32\dllcache\nv3.sys 2012-01-25 03:26:39123776-c--a-w-c:\windows\system32\dllcache\nv3.dll 2012-01-25 03:26:1951552-c--a-w-c:\windows\system32\dllcache\ntgrip.sys 2012-01-25 03:26:159344-c--a-w-c:\windows\system32\dllcache\ntapm.sys 2012-01-25 03:26:147552-c--a-w-c:\windows\system32\dllcache\nsmmc.sys 2012-01-25 03:26:1228672-c--a-w-c:\windows\system32\dllcache\nscirda.sys 2012-01-25 03:26:0587040-c--a-w-c:\windows\system32\dllcache\nm6wdm.sys 2012-01-25 03:26:05126080-c--a-w-c:\windows\system32\dllcache\nm5a2wdm.sys 2012-01-25 03:24:3049024-c--a-w-c:\windows\system32\dllcache\mstape.sys 2012-01-25 03:24:2212416-c--a-w-c:\windows\system32\dllcache\msriffwv.sys 2012-01-25 03:23:5922016-c--a-w-c:\windows\system32\dllcache\msircomm.sys 2012-01-25 03:23:1935200-c--a-w-c:\windows\system32\dllcache\msgame.sys 2012-01-25 03:23:176016-c--a-w-c:\windows\system32\dllcache\msfsio.sys 2012-01-25 03:23:1551200-c--a-w-c:\windows\system32\dllcache\msdv.sys 2012-01-25 03:22:5717280-c--a-w-c:\windows\system32\dllcache\mraid35x.sys 2012-01-25 03:22:2315232-c--a-w-c:\windows\system32\dllcache\mpe.sys 2012-01-25 03:22:1216128-c--a-w-c:\windows\system32\dllcache\modemcsa.sys 2012-01-25 03:20:5926442-c--a-w-c:\windows\system32\dllcache\lanepic5.sys 2012-01-25 03:20:5719016-c--a-w-c:\windows\system32\dllcache\ktc111.sys 2012-01-25 03:20:5337376-c--a-w-c:\windows\system32\dllcache\kousd.dll 2012-01-25 03:20:47253952-c--a-w-c:\windows\system32\dllcache\kdsusd.dll 2012-01-25 03:20:4648640-c--a-w-c:\windows\system32\dllcache\kdsui.dll 2012-01-25 03:20:288192-c--a-w-c:\windows\system32\dllcache\kbdkor.dll 2012-01-25 03:20:278704-c--a-w-c:\windows\system32\dllcache\kbdjpn.dll 2012-01-25 03:20:066144-c--a-w-c:\windows\system32\dllcache\kbd106.dll 2012-01-25 03:20:065632-c--a-w-c:\windows\system32\dllcache\kbd103.dll 2012-01-25 03:20:056144-c--a-w-c:\windows\system32\dllcache\kbd101c.dll 2012-01-25 03:20:056144-c--a-w-c:\windows\system32\dllcache\kbd101b.dll 2012-01-25 03:19:5726624-c--a-w-c:\windows\system32\dllcache\irstusb.sys 2012-01-25 03:19:5618688-c--a-w-c:\windows\system32\dllcache\irsir.sys 2012-01-25 03:19:5528160-c--a-w-c:\windows\system32\dllcache\irmon.dll 2012-01-25 03:19:5423552-c--a-w-c:\windows\system32\dllcache\irmk7.sys 2012-01-25 03:19:53151552-c--a-w-c:\windows\system32\dllcache\irftp.exe 2012-01-25 03:19:5288192-c--a-w-c:\windows\system32\dllcache\irda.sys 2012-01-25 03:19:3945632-c--a-w-c:\windows\system32\dllcache\ip5515.sys 2012-01-25 03:19:3890200-c--a-w-c:\windows\system32\dllcache\io8ports.dll 2012-01-25 03:19:3738784-c--a-w-c:\windows\system32\dllcache\io8.sys 2012-01-25 03:19:355504-c--a-w-c:\windows\system32\dllcache\intelide.sys 2012-01-25 03:19:3413056-c--a-w-c:\windows\system32\dllcache\inport.sys 2012-01-25 03:19:3316000-c--a-w-c:\windows\system32\dllcache\ini910u.sys 2012-01-25 03:17:59702845-c--a-w-c:\windows\system32\dllcache\i81xdnt5.dll 2012-01-25 03:17:5758592-c--a-w-c:\windows\system32\dllcache\i740nt5.sys 2012-01-25 03:17:57353184-c--a-w-c:\windows\system32\dllcache\i740dnt5.dll 2012-01-25 03:17:5618560-c--a-w-c:\windows\system32\dllcache\i2omp.sys 2012-01-25 03:17:548576-c--a-w-c:\windows\system32\dllcache\i2omgmt.sys 2012-01-25 03:15:595760-c--a-w-c:\windows\system32\dllcache\hpt4qic.sys 2012-01-25 03:14:5292160-c--a-w-c:\windows\system32\dllcache\fuusd.dll 2012-01-25 03:13:59347550-c--a-w-c:\windows\system32\dllcache\es56tpi.sys 2012-01-25 03:12:5520192-c--a-w-c:\windows\system32\dllcache\dpti2o.sys 2012-01-25 03:11:5986016-c--a-w-c:\windows\system32\dllcache\dc240usd.dll 2012-01-25 03:10:5944032-c--a-w-c:\windows\system32\dllcache\cnusd.dll 2012-01-25 03:09:59164923-c--a-w-c:\windows\system32\dllcache\diapi2.sys 2012-01-25 03:08:44102400-c--a-w-c:\windows\system32\dllcache\binlsvc.dll 2012-01-25 03:07:5937376-c--a-w-c:\windows\system32\dllcache\atievxx.exe 2012-01-25 03:06:5546112-c--a-w-c:\windows\system32\dllcache\adptsf50.sys 2012-01-25 03:04:5866048-c--a-w-c:\windows\system32\dllcache\s3legacy.dll 2012-01-21 16:21:51--------d-----w-c:\program files\ESET 2012-01-20 18:02:19--------d-----w-c:\documents and settings\person\application data\Skinux 2012-01-19 04:50:39--------d-sha-r-C:\cmdcons 2012-01-19 04:46:56208896----a-w-c:\windows\MBR.exe 2012-01-19 04:46:5598816----a-w-c:\windows\sed.exe 2012-01-19 04:46:55518144----a-w-c:\windows\SWREG.exe 2012-01-19 04:46:55256000----a-w-c:\windows\PEV.exe 2012-01-19 03:25:02--------d-----w-c:\documents and settings\person\application data\VOS 2012-01-17 01:19:29435032----a-w-c:\windows\system32\drivers\aswSnx.sys 2012-01-17 01:18:2341184----a-w-c:\windows\avastSS.scr 2012-01-17 01:16:56--------d-----w-c:\documents and settings\all users\application data\AVAST Software 2012-01-15 16:38:1520464----a-w-c:\windows\system32\drivers\mbam.sys 2012-01-12 19:57:11--------d-----w-c:\documents and settings\person\local settings\application data\FixItCenter 2012-01-12 19:49:40--------d-----w-c:\windows\MATS 2012-01-12 19:49:37--------d-----w-c:\program files\Microsoft Fix it Center 2012-01-12 03:32:41--------d-----w-c:\documents and settings\all users\application data\SUPERAntiSpyware.com 2012-01-12 03:18:231668352----a-r-c:\windows\system32\drivers\athuw.sys 2012-01-10 20:24:291334784----a-w-c:\windows\system32\athur.sys 2012-01-10 20:24:07--------d-----w-c:\documents and settings\all users\application data\TP-LINK 2012-01-10 05:58:31--------d-----w-c:\program files\common files\Wise Installation Wizard 2012-01-08 19:23:5521504-c--a-w-c:\windows\system32\dllcache\hidserv.dll 2012-01-08 19:23:5521504----a-w-c:\windows\system32\hidserv.dll 2012-01-08 19:23:4114592-c--a-w-c:\windows\system32\dllcache\kbdhid.sys 2012-01-08 19:23:4114592----a-w-c:\windows\system32\drivers\kbdhid.sys 2012-01-03 13:10:44182672----a-w-c:\program files\internet explorer\plugins\nppdf32.dll . ==================== Find3M ==================== . 2012-01-15 23:05:17414368----a-w-c:\windows\system32\FlashPlayerCPLApp.cpl 2011-11-25 21:57:19293376----a-w-c:\windows\system32\winsrv.dll 2011-11-23 13:25:321859584----a-w-c:\windows\system32\win32k.sys 2011-11-18 12:35:0860416----a-w-c:\windows\system32\packager.exe 2011-11-16 14:21:44354816----a-w-c:\windows\system32\winhttp.dll 2011-11-16 14:21:44152064----a-w-c:\windows\system32\schannel.dll 2011-11-04 19:20:51916992----a-w-c:\windows\system32\wininet.dll 2011-11-04 19:20:5143520----a-w-c:\windows\system32\licmgr10.dll 2011-11-04 19:20:511469440------w-c:\windows\system32\inetcpl.cpl 2011-11-04 11:23:59385024----a-w-c:\windows\system32\html.iec 2011-11-03 15:28:36386048----a-w-c:\windows\system32\qdvd.dll 2011-11-03 15:28:361292288----a-w-c:\windows\system32\quartz.dll 2011-11-01 16:07:101288704----a-w-c:\windows\system32\ole32.dll 2004-11-08 02:03:57487544-c--a-w-c:\program files\msgr6suite.exe 2004-11-06 15:15:481418304-c--a-w-c:\program files\j2re-1_4_2_05-windows-i586-p-iftw.exe . ============= FINISH: 17:41:07.28 =============== * Go to Start > Run and type mrt.exe then press Enter on the keyboard). * (Vista and Windows 7 users go to Start and type mrt.exe in the search box then press Enter on the keyboard. * Click Next. * Choose Full Scan and click Next. * Once the scan is finished click View DETAILED results of the scan. Look through the list and let me know if anything was found infected. ******************************************************* Save these instructions so you can have access to them while in Safe Mode. Please click here** to download AVP Tool by Kaspersky. Save it to your desktop. Reboot your computer into SafeMode. You can do this by restarting your computer and continually tapping the F8 key until a menu appears. Use your up arrow key to highlight SafeMode then hit enter. Double click the setup file to run it. Click Next to continue. Accept the License agreement and click on next. It will, by default, install it to your desktop folder. Click Next. It will then open a box There will be a tab that says Automatic scan. Under Automatic scan make sure these are checked. Hidden Startup Objects System Memory Disk Boot Sectors. My Computer. Also any other drives (Removable that you may have) Leave the rest of the settings as they appear as default. •Then click on Scan at the to right hand Corner. •It will automatically Neutralize any objects found. •If some objects are left un-neutralized then click the button that says Neutralize all •If it says it cannot be neutralized then choose the delete option when prompted. •After that is done click on the REPORTS button at the bottom and save it to file name it Kas. •Save it somewhere convenient like your desktop and just post only the detected Virus\malware in the report it will be at the very top under Detected post those results in your next reply. Note: This tool will self uninstall when you close it so please save the log before closing it.I ran mrt.exe again and still nothing found. Ran Kaspersky and found Status: Deleted (events: 2) 1/27/2012 8:18:11 PMDeletedTrojan program Trojan.Win32.KillAV.ntC:\Documents and Settings\Person\My Documents\My Received Files\data1.cabHigh 1/27/2012 8:18:11 PMDeletedTrojan program Trojan.Win32.KillAV.ntC:\Documents and Settings\Person\My Documents\My Received Files\data1.cab//killbill.exeHigh Download Security Check by screen317 from one of the following links and save it to your desktop. Link 1 Link 2 * Double-click Security Check.bat * Follow the on-screen instructions inside of the black box. * A Notepad document should open automatically called checkup.txt * Post the CONTENTS of that document in your next reply. Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so. Results of screen317's Security Check version 0.99.30 Windows XP Service Pack 3 x86 Internet Explorer 8 `````````````````````````````` Antivirus/Firewall Check: Windows Firewall Enabled! avast! Free Antivirus ESET Online Scanner v3 Antivirus up to date! ``````````````````````````````` Anti-malware/Other Utilities Check: SUPERAntiSpyware CCleaner Java(TM) 6 Update 30 Java 2 Runtime Environment, SE v1.4.2_05 Adobe Flash Player 10.0.45.2 Flash Player out of Date! Adobe Reader X (10.1.2) ```````````````````````````````` Process Check: objlist.exe by Laurent UTILITIES AVAST Software Avast AvastSvc.exe UTILITIES AVAST Software Avast avastUI.exe ``````````End of Log```````````` Why isn't Malwarebytes listed? Do I need to reinstall it?Quote Why isn't Malwarebytes listed? Do I need to reinstall it? No. Not necessary. Please download the latest version of Kaspersky GetSystemInfo (GSI) from Kaspersky and save it to your Desktop. Note: please close all other applications running on your system. Double click GetSystemInfo.exe to open it. It will display an agreement. Click on I Agree to continue. Click the Settings button. Set the slider to Maximum. IMPORTANT! Then, click Customize - choose Driver / Ports tab and uncheck Scan Ports. On the General tab, make sure all of the boxes are checked. On the Misc tab, make sure all the checkboxes are checked. Then, click OK on the windows that you launched. Click Create Report to run it. It will begin scanning. It will create a zip folder called GetSystemInfo_XXXXXXXXXXXXXX.zip on your Desktop. It should automatically upload it to http://www.getsysteminfo.com. If it does not, then please submit it manually by going to the site and doing the upload process. It will redirect to a page, where it will provide a sharing URL for specialists. Copy and paste the url of the GSI Parser report in your next reply..Here you go. http://www.getsysteminfo.com/read.php?file=be3e352aabab1703a0c53f26c0514a6fAfter all these scans I can find no malware that would be causing your problems. Did you try defragging the drive? How much RAM on that computer?Yes, repeatedly. 512 Mb Ram but it used to run well with that. If you think it is clean it must be due to the bad sectors and the relocation of files during the REPAIR. At least now I can be sure that the Malware we did find is removed from her external drive and won't be rewritten if I do a clean install. I have learned a bunch in the process! Thank you for all of your time and guidance. You are super Dave, but I guess you already knew that! Just one more thing.The folder on C, created by ComboFix I belive, named Found. It has recovered file fragments in it. Am I supposed to do something with them? I know it is a mute point if I do a CLEAN install but just for future reference and because I am a curious gal!Ok. We'll do some cleanup. Download this program and run it Uninstall ComboFix .It will remove ComboFix for you ******************************************** To turn off Windows XP System Restore: NOTE: These instructions assume that you are using the default Windows XP Start Menu and have not changed to the Classic Start menu. To re-enable the default menu, right-click Start, click Properties, click Start menu (not Classic) and then click OK. 1. Click Start. 2. Right-click the My Computer icon, and then click Properties. 3. Click the System Restore tab. 4. Check "Turn off System Restore" or "Turn off System Restore on all drives" 5. Click Apply. 6. When turning off System Restore, the existing restore points will be deleted. Click Yes to do this. 7. Click OK. 8. Restart the computer and follow the instructions in the next section to turn on System Restore. To turn on Windows XP System Restore: 1. Click Start. 2. Right-click My Computer, and then click Properties. 3. Click the System Restore tab. 4. Uncheck "Turn off System Restore" or "Turn off System Restore on all drives." 5. Click Apply, and then click OK. This will give you a new, clean Restore Point. ********************************************** Clean out your temporary internet files and temp files. Download TFC by OldTimer to your desktop. Double-click TFC.exe to run it. Note: If you are running on Vista, right-click on the file and choose Run As Administrator TFC** will close all programs when run, so make sure you have saved all your work before you begin. * Click the Start button to begin the cleaning process. * Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two. * Please let TFC run uninterrupted until it is finished. Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning. *********************************************** Use the Secunia Software Inspector to check for out of date software. •Click Start Now •Check the box next to Enable thorough system inspection. •Click Start** •Allow the scan to finish and scroll down to see if any updates are needed. •Update anything listed. . ---------- Go to Microsoft Windows Update and get all critical updates. ---------- I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free. SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox. * Using SpywareBlaster to protect your computer from Spyware and Malware * If you don't know what ActiveX controls are, see here Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future. Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly. Safe Surfing!

Answer»

Sorry about that! I must have saved them like I did this time but attach.txt doesn't save.

.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 10 Plugin
Adobe Flash Player 11 ActiveX
Adobe Reader X (10.1.2)
Adobe Shockwave Player
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
avast! Free Antivirus
CameraHelperMsi
CCleaner
CCScore
Compatibility Pack for the 2007 Office system
DVD Shrink 3.2
DVD Suite
Efficient Networks SpeedStream DSL
Enable S3 for USB Device
erLT
ESET Online Scanner v3
ESSBrwr
ESSCDBK
ESScore
ESSgui
ESSini
ESSPCD
ESSPDock
ESSTOOLS
essvatgt
HighMAT Extension to Microsoft Windows XP CD Writing Wizard
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB932716-v2)
Hotfix for Windows XP (KB945060-v3)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
Intel(R) PRO Network Adapters and Drivers
Intel(R) PROSet
Internet Explorer (Enable DEP)
iTunes
J2SE Runtime Environment 5.0 Update 2
Java 2 Runtime Environment, SE v1.4.2_05
Java Auto Updater
Java(TM) 6 Update 30
Kodak EasyShare software
Lexmark X6100 Series
LG ODD Auto Firmware Update
Logitech Vid
Logitech Webcam Software
LWS Facebook
LWS Gallery
LWS Help_main
LWS Launcher
LWS Motion Detection
LWS Pictures And Video
LWS Twitter
LWS Video Mask Maker
LWS Webcam Software
LWS WLM Plugin
LWS YouTube Plugin
Malwarebytes Anti-Malware version 1.60.0.1800
MegaCam
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Automated Troubleshooting Services Shim
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Fix it Center
Microsoft Office XP Professional with FrontPage
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
Microsoft Windows Journal Viewer
MPIO Software Installation
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6 Service Pack 2 (KB973686)
Nero - Burning Rom
Nero 7 Essentials
neroxml
netbrdg
OfotoXMI
PicPick
PowerDVD
PowerProducer
Print to Fax
Pure Networks Network Magic
QuickTax 2007
QuickTime
Realtek AC'97 Audio
SeaTools for Windows
SecurDisc Viewer
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2183461)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB963027)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969897)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972260)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB976325)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982381)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
Segoe UI
SFR
SHASTA
skin0001
SKINXSDK
Speccy
staticcr
SUPERAntiSpyware
TurboTax 2010
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB2362765)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB2641690)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB976749)
Update for Windows XP (KB978207)
ViviCam 3350
VPRINTOL
WebFldrs XP
Windows Driver Package - (mr7910) Image (08/08/2006 1.4.0.0)
Windows Genuine Advantage v1.3.0254.0
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Live Upload Tool
Windows Media Format 11 runtime
Windows Media Player 11
Windows PowerShell(TM) 1.0
Windows XP Service Pack 3
WIRELESS
.
==== END Of File ===========================

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Person at 17:33:11 on 2012-01-26
.
============== Running Processes ===============
.
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.ca/
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\utilities\avast software\avast\aswWebRepIE.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\utilities\avast software\avast\aswWebRepIE.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
EB: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [avast] "c:\program files\utilities\avast software\avast\avastUI.exe" /nogui
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office10\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1099601191280
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {BEA7310D-06C4-4339-A784-DC3804819809} - hxxp://costco.pnimedia.com/upload/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{C237B8FC-8185-442C-A9BB-72AD6590AC4A} : DhcpNameServer = 192.168.2.1
TCP: Interfaces\{F3626ADA-0E3F-4A7D-8D4D-33E2CD9A1977} : DhcpNameServer = 192.168.0.1
Handler: intu-qt2007 - {026BF40D-BA05-467b-9F1F-AD0D7A3F5F11} - c:\program files\quicktax 2007\ic2007pp.dll
Handler: intu-tt2010 - {97A0575E-2309-4e75-8509-B1F9390C4DE7} - c:\program files\turbotax 2010\ic2010pp.dll
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - c:\program files\common files\pure networks shared\puresp.dll
Notify: !SASWinLogon - c:\program files\utilities\sas\SASWINLO.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\utilities\sas\SASSEH.DLL
.
============= SERVICES / DRIVERS ===============
.
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? CompFilter;UVCCompositeFilter
R? MatSvc;Microsoft Automated Troubleshooting Service
R? SABKUTIL;SABKUTIL
R? WDC_SAM;WD SCSI Pass Thru driver
R? WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0
S? !SASCORE;SAS Core Service
S? AR9271;Wireless Network Adapter Service
S? aswFsBlk;aswFsBlk
S? aswSnx;aswSnx
S? aswSP;aswSP
S? avast! Antivirus;avast! Antivirus
S? SASDIFSV;SASDIFSV
S? SASKUTIL;SASKUTIL
.
=============== Created Last 30 ================
.
2012-01-26 16:40:36--------d-----w-c:\program files\ART
2012-01-26 16:39:176689766----a-w-c:\program files\picpick_inst.exe
2012-01-25 07:44:3473728----a-w-c:\windows\system32\javacpl.cpl
2012-01-25 07:44:33472808----a-w-c:\windows\system32\deployJava1.dll
2012-01-25 03:42:21116224-c--a-w-c:\windows\system32\dllcache\xrxwiadr.dll
2012-01-25 03:42:2023040-c--a-w-c:\windows\system32\dllcache\xrxwbtmp.dll
2012-01-25 03:42:1918944-c--a-w-c:\windows\system32\dllcache\xrxscnui.dll
2012-01-25 03:42:1827648-c--a-w-c:\windows\system32\dllcache\xrxftplt.exe
2012-01-25 03:42:164608-c--a-w-c:\windows\system32\dllcache\xrxflnch.exe
2012-01-25 03:40:3199865-c--a-w-c:\windows\system32\dllcache\xlog.exe
2012-01-25 03:40:2616970-c--a-w-c:\windows\system32\dllcache\xem336n5.sys
2012-01-25 03:40:2319455-c--a-w-c:\windows\system32\dllcache\wvchntxx.sys
2012-01-25 03:40:0912063-c--a-w-c:\windows\system32\dllcache\wsiintxx.sys
2012-01-25 03:40:058192-c--a-w-c:\windows\system32\dllcache\wshirda.dll
2012-01-25 03:38:398832-c--a-w-c:\windows\system32\dllcache\wmiacpi.sys
2012-01-25 03:38:12154624-c--a-w-c:\windows\system32\dllcache\wlluc48.sys
2012-01-25 03:38:1134890-c--a-w-c:\windows\system32\dllcache\wlandrv2.sys
2012-01-25 03:36:5764605-c--a-w-c:\windows\system32\dllcache\vvoice.sys
2012-01-25 03:35:5711520-c--a-w-c:\windows\system32\dllcache\twotrack.sys
2012-01-25 03:34:5930464-c--a-w-c:\windows\system32\dllcache\tbatm155.sys
2012-01-25 03:33:5961824-c--a-w-c:\windows\system32\dllcache\speed.sys
2012-01-25 03:32:5832768-c--a-w-c:\windows\system32\dllcache\sisnic.sys
2012-01-25 03:32:52238592-c--a-w-c:\windows\system32\dllcache\sisgrv.dll
2012-01-25 03:32:49104064-c--a-w-c:\windows\system32\dllcache\sisgrp.sys
2012-01-25 03:32:43150144-c--a-w-c:\windows\system32\dllcache\sis6306v.dll
2012-01-25 03:32:4068608-c--a-w-c:\windows\system32\dllcache\sis6306p.sys
2012-01-25 03:32:39252032-c--a-w-c:\windows\system32\dllcache\sis300iv.dll
2012-01-25 03:32:37101760-c--a-w-c:\windows\system32\dllcache\sis300ip.sys
2012-01-25 03:29:5943904-c--a-w-c:\windows\system32\dllcache\sbp2port.sys
2012-01-25 03:28:5319584-c--a-w-c:\windows\system32\dllcache\rasirda.sys
2012-01-25 03:27:53121344-c--a-w-c:\windows\system32\dllcache\phvfwext.dll
2012-01-25 03:26:39198144-c--a-w-c:\windows\system32\dllcache\nv3.sys
2012-01-25 03:26:39123776-c--a-w-c:\windows\system32\dllcache\nv3.dll
2012-01-25 03:26:1951552-c--a-w-c:\windows\system32\dllcache\ntgrip.sys
2012-01-25 03:26:159344-c--a-w-c:\windows\system32\dllcache\ntapm.sys
2012-01-25 03:26:147552-c--a-w-c:\windows\system32\dllcache\nsmmc.sys
2012-01-25 03:26:1228672-c--a-w-c:\windows\system32\dllcache\nscirda.sys
2012-01-25 03:26:0587040-c--a-w-c:\windows\system32\dllcache\nm6wdm.sys
2012-01-25 03:26:05126080-c--a-w-c:\windows\system32\dllcache\nm5a2wdm.sys
2012-01-25 03:24:3049024-c--a-w-c:\windows\system32\dllcache\mstape.sys
2012-01-25 03:24:2212416-c--a-w-c:\windows\system32\dllcache\msriffwv.sys
2012-01-25 03:23:5922016-c--a-w-c:\windows\system32\dllcache\msircomm.sys
2012-01-25 03:23:1935200-c--a-w-c:\windows\system32\dllcache\msgame.sys
2012-01-25 03:23:176016-c--a-w-c:\windows\system32\dllcache\msfsio.sys
2012-01-25 03:23:1551200-c--a-w-c:\windows\system32\dllcache\msdv.sys
2012-01-25 03:22:5717280-c--a-w-c:\windows\system32\dllcache\mraid35x.sys
2012-01-25 03:22:2315232-c--a-w-c:\windows\system32\dllcache\mpe.sys
2012-01-25 03:22:1216128-c--a-w-c:\windows\system32\dllcache\modemcsa.sys
2012-01-25 03:20:5926442-c--a-w-c:\windows\system32\dllcache\lanepic5.sys
2012-01-25 03:20:5719016-c--a-w-c:\windows\system32\dllcache\ktc111.sys
2012-01-25 03:20:5337376-c--a-w-c:\windows\system32\dllcache\kousd.dll
2012-01-25 03:20:47253952-c--a-w-c:\windows\system32\dllcache\kdsusd.dll
2012-01-25 03:20:4648640-c--a-w-c:\windows\system32\dllcache\kdsui.dll
2012-01-25 03:20:288192-c--a-w-c:\windows\system32\dllcache\kbdkor.dll
2012-01-25 03:20:278704-c--a-w-c:\windows\system32\dllcache\kbdjpn.dll
2012-01-25 03:20:066144-c--a-w-c:\windows\system32\dllcache\kbd106.dll
2012-01-25 03:20:065632-c--a-w-c:\windows\system32\dllcache\kbd103.dll
2012-01-25 03:20:056144-c--a-w-c:\windows\system32\dllcache\kbd101c.dll
2012-01-25 03:20:056144-c--a-w-c:\windows\system32\dllcache\kbd101b.dll
2012-01-25 03:19:5726624-c--a-w-c:\windows\system32\dllcache\irstusb.sys
2012-01-25 03:19:5618688-c--a-w-c:\windows\system32\dllcache\irsir.sys
2012-01-25 03:19:5528160-c--a-w-c:\windows\system32\dllcache\irmon.dll
2012-01-25 03:19:5423552-c--a-w-c:\windows\system32\dllcache\irmk7.sys
2012-01-25 03:19:53151552-c--a-w-c:\windows\system32\dllcache\irftp.exe
2012-01-25 03:19:5288192-c--a-w-c:\windows\system32\dllcache\irda.sys
2012-01-25 03:19:3945632-c--a-w-c:\windows\system32\dllcache\ip5515.sys
2012-01-25 03:19:3890200-c--a-w-c:\windows\system32\dllcache\io8ports.dll
2012-01-25 03:19:3738784-c--a-w-c:\windows\system32\dllcache\io8.sys
2012-01-25 03:19:355504-c--a-w-c:\windows\system32\dllcache\intelide.sys
2012-01-25 03:19:3413056-c--a-w-c:\windows\system32\dllcache\inport.sys
2012-01-25 03:19:3316000-c--a-w-c:\windows\system32\dllcache\ini910u.sys
2012-01-25 03:17:59702845-c--a-w-c:\windows\system32\dllcache\i81xdnt5.dll
2012-01-25 03:17:5758592-c--a-w-c:\windows\system32\dllcache\i740nt5.sys
2012-01-25 03:17:57353184-c--a-w-c:\windows\system32\dllcache\i740dnt5.dll
2012-01-25 03:17:5618560-c--a-w-c:\windows\system32\dllcache\i2omp.sys
2012-01-25 03:17:548576-c--a-w-c:\windows\system32\dllcache\i2omgmt.sys
2012-01-25 03:15:595760-c--a-w-c:\windows\system32\dllcache\hpt4qic.sys
2012-01-25 03:14:5292160-c--a-w-c:\windows\system32\dllcache\fuusd.dll
2012-01-25 03:13:59347550-c--a-w-c:\windows\system32\dllcache\es56tpi.sys
2012-01-25 03:12:5520192-c--a-w-c:\windows\system32\dllcache\dpti2o.sys
2012-01-25 03:11:5986016-c--a-w-c:\windows\system32\dllcache\dc240usd.dll
2012-01-25 03:10:5944032-c--a-w-c:\windows\system32\dllcache\cnusd.dll
2012-01-25 03:09:59164923-c--a-w-c:\windows\system32\dllcache\diapi2.sys
2012-01-25 03:08:44102400-c--a-w-c:\windows\system32\dllcache\binlsvc.dll
2012-01-25 03:07:5937376-c--a-w-c:\windows\system32\dllcache\atievxx.exe
2012-01-25 03:06:5546112-c--a-w-c:\windows\system32\dllcache\adptsf50.sys
2012-01-25 03:04:5866048-c--a-w-c:\windows\system32\dllcache\s3legacy.dll
2012-01-21 16:21:51--------d-----w-c:\program files\ESET
2012-01-20 18:02:19--------d-----w-c:\documents and settings\person\application data\Skinux
2012-01-19 04:50:39--------d-sha-r-C:\cmdcons
2012-01-19 04:46:56208896----a-w-c:\windows\MBR.exe
2012-01-19 04:46:5598816----a-w-c:\windows\sed.exe
2012-01-19 04:46:55518144----a-w-c:\windows\SWREG.exe
2012-01-19 04:46:55256000----a-w-c:\windows\PEV.exe
2012-01-19 03:25:02--------d-----w-c:\documents and settings\person\application data\VOS
2012-01-17 01:19:29435032----a-w-c:\windows\system32\drivers\aswSnx.sys
2012-01-17 01:18:2341184----a-w-c:\windows\avastSS.scr
2012-01-17 01:16:56--------d-----w-c:\documents and settings\all users\application data\AVAST Software
2012-01-15 16:38:1520464----a-w-c:\windows\system32\drivers\mbam.sys
2012-01-12 19:57:11--------d-----w-c:\documents and settings\person\local settings\application data\FixItCenter
2012-01-12 19:49:40--------d-----w-c:\windows\MATS
2012-01-12 19:49:37--------d-----w-c:\program files\Microsoft Fix it Center
2012-01-12 03:32:41--------d-----w-c:\documents and settings\all users\application data\SUPERAntiSpyware.com
2012-01-12 03:18:231668352----a-r-c:\windows\system32\drivers\athuw.sys
2012-01-10 20:24:291334784----a-w-c:\windows\system32\athur.sys
2012-01-10 20:24:07--------d-----w-c:\documents and settings\all users\application data\TP-LINK
2012-01-10 05:58:31--------d-----w-c:\program files\common files\Wise Installation Wizard
2012-01-08 19:23:5521504-c--a-w-c:\windows\system32\dllcache\hidserv.dll
2012-01-08 19:23:5521504----a-w-c:\windows\system32\hidserv.dll
2012-01-08 19:23:4114592-c--a-w-c:\windows\system32\dllcache\kbdhid.sys
2012-01-08 19:23:4114592----a-w-c:\windows\system32\drivers\kbdhid.sys
2012-01-03 13:10:44182672----a-w-c:\program files\internet explorer\plugins\nppdf32.dll
.
==================== Find3M ====================
.
2012-01-15 23:05:17414368----a-w-c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-25 21:57:19293376----a-w-c:\windows\system32\winsrv.dll
2011-11-23 13:25:321859584----a-w-c:\windows\system32\win32k.sys
2011-11-18 12:35:0860416----a-w-c:\windows\system32\packager.exe
2011-11-16 14:21:44354816----a-w-c:\windows\system32\winhttp.dll
2011-11-16 14:21:44152064----a-w-c:\windows\system32\schannel.dll
2011-11-04 19:20:51916992----a-w-c:\windows\system32\wininet.dll
2011-11-04 19:20:5143520----a-w-c:\windows\system32\licmgr10.dll
2011-11-04 19:20:511469440------w-c:\windows\system32\inetcpl.cpl
2011-11-04 11:23:59385024----a-w-c:\windows\system32\html.iec
2011-11-03 15:28:36386048----a-w-c:\windows\system32\qdvd.dll
2011-11-03 15:28:361292288----a-w-c:\windows\system32\quartz.dll
2011-11-01 16:07:101288704----a-w-c:\windows\system32\ole32.dll
2004-11-08 02:03:57487544-c--a-w-c:\program files\msgr6suite.exe
2004-11-06 15:15:481418304-c--a-w-c:\program files\j2re-1_4_2_05-windows-i586-p-iftw.exe
.
============= FINISH: 17:41:07.28 ===============
* Go to Start > Run and type mrt.exe then press Enter on the keyboard).
* (Vista and Windows 7 users go to Start and type mrt.exe in the search box then press Enter on the keyboard.
* Click Next.
* Choose Full Scan and click Next.
* Once the scan is finished click View DETAILED results of the scan.

Look through the list and let me know if anything was found infected.
*********************************************************
Save these instructions so you can have access to them while in Safe Mode.

Please click here to download AVP Tool by Kaspersky.

Save it to your desktop.
Reboot your computer into SafeMode. You can do this by restarting your computer and continually tapping the F8 key until a menu appears. Use your up arrow key to highlight SafeMode then hit enter.
Double click the setup file to run it.
Click Next to continue.
Accept the License agreement and click on next.
It will, by default, install it to your desktop folder. Click Next.
It will then open a box There will be a tab that says Automatic scan.
Under Automatic scan make sure these are checked.
Hidden Startup Objects
System Memory
Disk Boot Sectors.
My Computer.
Also any other drives (Removable that you may have)

Leave the rest of the settings as they appear as default.
•Then click on Scan at the to right hand Corner.
•It will automatically Neutralize any objects found.
•If some objects are left un-neutralized then click the button that says Neutralize all
•If it says it cannot be neutralized then choose the delete option when prompted.
•After that is done click on the REPORTS button at the bottom and save it to file name it Kas.
•Save it somewhere convenient like your desktop and just post only the detected Virus\malware in the report it will be at the very top under Detected post those results in your next reply.

Note: This tool will self uninstall when you close it so please save the log before closing it.I ran mrt.exe again and still nothing found.

Ran Kaspersky and found
Status: Deleted (events: 2)
1/27/2012 8:18:11 PMDeletedTrojan program Trojan.Win32.KillAV.ntC:\Documents and Settings\Person\My Documents\My Received Files\data1.cabHigh
1/27/2012 8:18:11 PMDeletedTrojan program Trojan.Win32.KillAV.ntC:\Documents and Settings\Person\My Documents\My Received Files\data1.cab//killbill.exeHigh

Download Security Check by screen317 from one of the following links and save it to your desktop.

Link 1
Link 2

* Double-click Security Check.bat
* Follow the on-screen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Post the CONTENTS of that document in your next reply.

Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.
Results of screen317's Security Check version 0.99.30
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Enabled!
avast! Free Antivirus
ESET Online Scanner v3
Antivirus up to date!
```````````````````````````````
Anti-malware/Other Utilities Check:
SUPERAntiSpyware
CCleaner
Java(TM) 6 Update 30
Java 2 Runtime Environment, SE v1.4.2_05
Adobe Flash Player 10.0.45.2 Flash Player out of Date!
Adobe Reader X (10.1.2)
````````````````````````````````
Process Check:
objlist.exe by Laurent
UTILITIES AVAST Software Avast AvastSvc.exe
UTILITIES AVAST Software Avast avastUI.exe
``````````End of Log````````````

Why isn't Malwarebytes listed? Do I need to reinstall it?Quote

Why isn't Malwarebytes listed? Do I need to reinstall it?

No. Not necessary.

Please download the latest version of Kaspersky GetSystemInfo (GSI) from Kaspersky and save it to your Desktop.

Note: please close all other applications running on your system.

Double click GetSystemInfo.exe to open it. It will display an agreement. Click on I Agree to continue.

Click the Settings button.

Set the slider to Maximum.

IMPORTANT! Then, click Customize - choose Driver / Ports tab and uncheck Scan Ports.

On the General tab, make sure all of the boxes are checked.

On the Misc tab, make sure all the checkboxes are checked.

Then, click OK on the windows that you launched.

Click Create Report to run it.

It will begin scanning.

It will create a zip folder called GetSystemInfo_XXXXXXXXXXXXXX.zip on your Desktop.

It should automatically upload it to http://www.getsysteminfo.com. If it does not, then please submit it manually by going to the site and doing the upload process.

It will redirect to a page, where it will provide a sharing URL for specialists. Copy and paste the url of the GSI Parser report in your next reply..Here you go.
http://www.getsysteminfo.com/read.php?file=be3e352aabab1703a0c53f26c0514a6fAfter all these scans I can find no malware that would be causing your problems. Did you try defragging the drive? How much RAM on that computer?Yes, repeatedly. 512 Mb Ram but it used to run well with that.
If you think it is clean it must be due to the bad sectors and the relocation of files during the REPAIR. At least now I can be sure that the Malware we did find is removed from her external drive and won't be rewritten if I do a clean install.
I have learned a bunch in the process! Thank you for all of your time and guidance. You are super Dave, but I guess you already knew that! Just one more thing.The folder on C, created by ComboFix I belive, named Found. It has recovered file fragments in it. Am I supposed to do something with them? I know it is a mute point if I do a CLEAN install but just for future reference and because I am a curious gal!Ok. We'll do some cleanup.

Download this program and run it Uninstall ComboFix .It will remove ComboFix for you

**********************************************
To turn off Windows XP System Restore:

NOTE: These instructions assume that you are using the default Windows XP Start Menu and have not changed to the Classic Start menu. To re-enable the default menu, right-click Start, click Properties, click Start menu (not Classic) and then click OK.

1. Click Start.
2. Right-click the My Computer icon, and then click Properties.
3. Click the System Restore tab.
4. Check "Turn off System Restore" or "Turn off System Restore on all drives"
5. Click Apply.
6. When turning off System Restore, the existing restore points will be deleted. Click Yes to do this.
7. Click OK.
8. Restart the computer and follow the instructions in the next section to turn on System Restore.

To turn on Windows XP System Restore:

1. Click Start.
2. Right-click My Computer, and then click Properties.
3. Click the System Restore tab.
4. Uncheck "Turn off System Restore" or "Turn off System Restore on all drives."
5. Click Apply, and then click OK.
This will give you a new, clean Restore Point.
**************************************************
Clean out your temporary internet files and temp files.

Download TFC by OldTimer to your desktop.

Double-click TFC.exe to run it.

Note: If you are running on Vista, right-click on the file and choose Run As Administrator

TFC will close all programs when run, so make sure you have saved all your work before you begin.

* Click the Start button to begin the cleaning process.
* Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
* Please let TFC run uninterrupted until it is finished.

Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.
*************************************************
Use the Secunia Software Inspector to check for out of date software.

•Click Start Now

•Check the box next to Enable thorough system inspection.

•Click Start

•Allow the scan to finish and scroll down to see if any updates are needed.
•Update anything listed.
.
----------

Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing!

Solve : Double check?

Discussion

No Comment Found

Related InterviewSolutions

Reply to Comment