I have been INFECTED! NEED HELP ASAP! PLEASE!

[Michaelmmqz]

I have a HP mini 110-1150NR with 2gig ram and 1.60mhz processor. The OS is Xp home edition 32bit. It started when I have always had the virus protection AVG and a few weeks ago a friend told me to try Norton 360 cause it has always been good for his computers. Well I download a trial version and erased my AVG and what a mistake that was!! After my trial was over instead of it still protecting my computer it just made my computer very vulnerable and when I went to download a new virus protection (which was AVAST) I had to restart my computer for changes to be made and when I did that I was infected with a hellasious virus and I am stressed out and frustrated cause I have been trying to get help for 3 days now and have not received any help!! I have spent over 30hrs on researching the problem and I am to afraid to do anything without the professional help of someone that knows what they are doing. I cant run any malware scans, virus scans, system restores, and some of my documents. When my computer starts up I get a .dll error and when I run my system restore it says "system restore will not protect you computer and to restart and try again". I have done that in safe mode and regular and nothing happens and I get the same error message. I cant install microsoft security essentials and anyother security softwares. When I pull up my task manager all of my processes have an .exe behind them and some things are on there I have never really noticed. There are schost.exe and a few of them running. I know some about computers and I have no clue about stuff like this. I have tried to run scans and some of them will not work and I also think my registry is messed up somehow. Please help!!

[LDTate]

Logs will be closed if you haven't replied within 3 days

Please don't attach the scans / logs for these tools, use "copy/paste".

DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision.

Doing so could make your pc inoperatible and could require a full reinstall of your OS, losing all your programs and data.

Please run a new MBAM scan being sure to update before scanning.

Post the scan results

Also please describe how your computer behaves at the moment.

Please don't attach the scans / logs, use "copy/paste".

[Michaelmmqz]

I can't run mbam on my computer! It says that I am missing some rsb6vm file or something like that! I can't really use any security scans at all! When I try to run system restore it tells me that system restore will not protect my computer and to restart and try again! And I also cannot drag and drop things to a file like if I were to do something like drag a text file to combofix it will not let me do it!! I have gone into m properties and all of the drag and drop options are checked! I think there is a problem with my registry somewhere or there is a virus ! Is there anyway I can send you logs of something and you can look at it and see what you think? Idk what els to do!! Thanks for responding to my post!!

[LDTate]

If you can't run anything, what would you send me?

Try this as it isn't a security program

Please download DDS by sUBs from one of the following links and save it to your desktop.

• • DDS.scr
    
  • DDS.pif
    

[*]Disable any script blocking protection (How to Disable your Security Programs)

[*]Double click DDS icon to run the tool (may take up to 3 minutes to run)

[*]When done, DDS.txt will open.

[*]After a few moments, attach.txt will open in a second window.

[*]Save both reports to your desktop.

---------------------------------------------------

• Post the contents of the DDS.txt in your next reply
  

[Michaelmmqz]

Ok here is what the DDS.text gave me and I hope this is what you are looking for!! Thanks again for all your help. I am sorry that I am difficult and hope that we can get this fixed I have been so stressed about this darn thing. Thank you for taking the time to help and I will do as best as I can not to be difficult anymore. Thanks again. Here are the logs and the first one says ATTACH for the file name so here it goes:

.

==== Installed Programs ======================

.

Adobe AIR

Adobe Flash Player 10 ActiveX

Adobe Flash Player 11 Plugin

Adobe Reader 9.4.0

Advanced PC Tweaker v4.2

Alcor Micro USB Card Reader

Broadcom 802.11 Wireless LAN Adapter

Broadcom Wireless Utility

BrotherSoft Extreme Toolbar

Conduit Engine

Eusing Free Registry Cleaner

Free Window Registry Repair

Google Chrome

Google Update Helper

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows XP (KB2570791)

HP Connection Manager 2

HP Doc Viewer

HP Mobile Broadband Setup Utility

HP Wireless Assistant

HpSdpAppCoreApp

IDT Audio

Intel® Graphics Media Accelerator Driver

Java Auto Updater

Java 6 Update 27

Marvell Miniport Driver

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 Security Update (KB2572067)

Microsoft .NET Framework 1.1 Security Update (KB979906)

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 SP1

Microsoft .NET Framework 4 Client Profile

Microsoft Application Error Reporting

Microsoft Internationalized Domain Names Mitigation APIs

Microsoft Kernel-Mode Driver Framework Feature Pack 1.7

Microsoft Kernel-Mode Driver Framework Feature Pack 1.9

Microsoft National Language Support Downlevel APIs

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Works

MigoMobile DESKTOP 4

Mozilla Firefox (3.6.6)

Mozilla Thunderbird (3.1.14)

MSXML 6.0 Parser

PC Tools AntiVirus Free 9.0

Qualcomm Gobi Driver Package for HP

Recuva

RegCure

RegistryFix v8.0

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft Windows (KB2564958)

Security Update for Windows Internet Explorer 7 (KB2183461)

Security Update for Windows Internet Explorer 7 (KB2360131)

Security Update for Windows Internet Explorer 7 (KB2416400)

Security Update for Windows Internet Explorer 7 (KB2482017)

Security Update for Windows Internet Explorer 7 (KB938127-v2)

Security Update for Windows Internet Explorer 7 (KB982381)

Security Update for Windows Internet Explorer 8 (KB2482017)

Security Update for Windows Internet Explorer 8 (KB2497640)

Security Update for Windows Internet Explorer 8 (KB2510531)

Security Update for Windows Internet Explorer 8 (KB2530548)

Security Update for Windows Internet Explorer 8 (KB2544521)

Security Update for Windows Internet Explorer 8 (KB2559049)

Security Update for Windows Internet Explorer 8 (KB2586448)

Security Update for Windows Internet Explorer 8 (KB971961)

Security Update for Windows Internet Explorer 8 (KB981332)

Security Update for Windows Internet Explorer 8 (KB982381)

Security Update for Windows XP (KB2536276-v2)

Security Update for Windows XP (KB2562937)

Security Update for Windows XP (KB2566454)

Security Update for Windows XP (KB2567053)

Security Update for Windows XP (KB2567680)

Security Update for Windows XP (KB2570222)

Security Update for Windows XP (KB2592799)

Security Update for Windows XP (KB950582)

Security Update for Windows XP (KB953155)

Security Update for Windows XP (KB953839)

Security Update for Windows XP (KB954211)

Security Update for Windows XP (KB956391)

Spybot - Search & Destroy

SpyZooka

SUPERAntiSpyware

Synaptics Pointing Device Driver

System Requirements Lab for Intel

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Windows Internet Explorer 7 (KB980182)

Update for Windows Internet Explorer 8 (KB2447568)

Update for Windows Internet Explorer 8 (KB976662)

Update for Windows XP (KB2607712)

vGrabber (With RealPlayer)

WebFldrs XP

Windows Backup Utility

Windows Live Upload Tool

Windows Management Framework Core

Windows Media Format 11 runtime

Windows Media Player 11

.

==== End Of File ===========================

And here is the 2nd log that came out of the DDS>:

.

DDS (Ver_2011-06-23.01) - NTFSx86

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_27

Run by Michael Marquez at 19:28:53 on 2011-11-11

.

============== Running Processes ===============

.

C:\WINDOWS\System32\WLTRYSVC.EXE

C:\WINDOWS\System32\bcmwltry.exe

C:\Program Files\SUPERAntiSpyware\SASCORE.EXE

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\system32\imapi.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\WINDOWS\Explorer.EXE

C:\QUALCOMM\QDLService\QDLService.exe

C:\WINDOWS\system32\locator.exe

C:\Documents and Settings\Michael Marquez\My Documents\Downloads\avira_free_antivirus_en.exe

C:\DOCUME~1\MICHAE~1\LOCALS~1\Temp\RarSFX1\presetup.exe

C:\Program Files\RegistryFix8\RegFix8.exe

C:\Documents and Settings\Michael Marquez\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Michael Marquez\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Michael Marquez\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Michael Marquez\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Michael Marquez\My Documents\Downloads\dds.pif

C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup

C:\WINDOWS\system32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k NetworkService

C:\WINDOWS\System32\svchost.exe -k HTTPFilter

.

============== Pseudo HJT Report ===============

.

mWindow Title = Michael Marquez

mURLSearchHooks: H - No File

TB: {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - No File

EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File

mRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t

uPolicies-explorer: DisallowCPL =

uPolicies-explorer: NoInstrumentation = 0 (0x0)

uPolicies-explorer: NoRecentDocsNetHood = 1 (0x1)

uPolicies-explorer: NoResolveTrack = 1 (0x1)

uPolicies-explorer: NoThumbnailCache = 1 (0x1)

uPolicies-explorer: link = 00000000

mPolicies-explorer: NoResolveTrack = 1 (0x1)

mPolicies-system: DisableStatusMessages = 1 (0x1)

LSP: c:\program files\common files\pc tools\lsp\PCTLsp.dll

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab

TCP: DhcpNameServer = 192.168.2.1

TCP: Interfaces\{77E77D75-D031-4348-BA64-73C204563DE3} : DhcpNameServer = 192.168.2.1

Notify: igfxcui - igfxdev.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll

SEH: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - No File

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\documents and settings\michael marquez\application data\mozilla\firefox\profiles\slhb5spz.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2776682&SearchSource=3&q={searchTerms}

FF - prefs.js: browser.search.selectedEngine - Bing

FF - prefs.js: browser.startup.homepage - hxxp://www.msn.com/?pc=Z131&ocid=zdhp&install_date=20111029

FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?pc=Z170&form=ZGAADF&install_date=20111103&q=

FF - component: c:\documents and settings\michael marquez\application data\mozilla\firefox\profiles\slhb5spz.default\extensions\{51a86bb3-6602-4c85-92a5-130ee4864f13}\components\RadioWMPCore.dll

FF - component: c:\documents and settings\michael marquez\application data\mozilla\firefox\profiles\slhb5spz.default\extensions\{51a86bb3-6602-4c85-92a5-130ee4864f13}\components\RadioWMPCoreGecko19.dll

FF - plugin: c:\documents and settings\michael marquez\local settings\application data\google\update\1.3.21.79\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}

FF - Ext: AutocompletePro - Your handy search suggestions tool: support@predictad.com - %profile%\extensions\support@predictad.com

FF - Ext: Yahoo! Toolbar: {635abd67-4fe9-1b23-4f01-e679fa7484c1} - %profile%\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}

FF - Ext: BrotherSoft Extreme Community Toolbar: {51a86bb3-6602-4c85-92a5-130ee4864f13} - %profile%\extensions\{51a86bb3-6602-4c85-92a5-130ee4864f13}

FF - Ext: StartNow Toolbar: {5911488E-9D1E-40ec-8CBB-06B231CC153F} - %profile%\extensions\{5911488E-9D1E-40ec-8CBB-06B231CC153F}

.

---- FIREFOX POLICIES ----

FF - user.js: browser.cache.memory.capacity - 16000

FF - user.js: browser.chrome.favicons - false

FF - user.js: browser.display.show_image_placeholders - true

FF - user.js: browser.turbo.enabled - true

FF - user.js: browser.urlbar.autocomplete.enabled - true

FF - user.js: browser.urlbar.autofill - true

FF - user.js: content.max.tokenizing.time - 1800000

FF - user.js: content.maxtextrun - 4095

FF - user.js: content.notify.backoffcount - 5

FF - user.js: content.notify.interval - 600000

FF - user.js: content.notify.ontimer - true

FF - user.js: content.switch.threshold - 600000

FF - user.js: dom.disable_window_status_change - true

FF - user.js: network.http.max-connections - 48

FF - user.js: network.http.max-connections-per-server - 8

FF - user.js: network.http.max-persistent-connections-per-proxy - 16

FF - user.js: network.http.max-persistent-connections-per-server - 4

FF - user.js: network.http.pipelining - true

FF - user.js: network.http.pipelining.firstrequest - true

FF - user.js: network.http.pipelining.maxrequests - 8

FF - user.js: network.http.proxy.pipelining - true

FF - user.js: network.http.request.max-start-delay - 0

FF - user.js: nglayout.initialpaint.delay - 50

FF - user.js: plugin.expose_full_path - true

FF - user.js: ui.submenuDelay - 0

FF - user.js: yahoo.homepage.dontask - true

FF - user.js: network.protocol-handler.warn-external.dnupdate - false

FF - user.js: network.prefetch-next - true

FF - user.js: layout.spellcheckDefault - 1

FF - user.js: browser.search.openintab - false

FF - user.js: browser.tabs.closeButtons - 1

FF - user.js: browser.tabs.opentabfor.middleclick - true

FF - user.js: browser.tabs.tabMinWidth - 100

.

============= SERVICES / DRIVERS ===============

.

R? bcm;WiMAX Network Adapter

R? CachemanService;Cacheman Service

R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86

R? cpudrv;cpudrv

R? mdvauthsrv;HP Connectivity Authentication Service

R? mdvsrv;HP Connection Manager Service

R? PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service

R? QCFilterhp;HP USB Composite Device Filter Driver

R? qcusbnethp;HP USB-NDIS miniport

R? qcusbserhp;HP USB Device for Legacy Serial Communication

R? sdAuxService;PC Tools Auxiliary Service

R? sdCoreService;PC Tools Security Service

R? SWDUMon;SWDUMon

R? WinRM;Windows Remote Management (WS-Management)

R? WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0

S? !SASCORE;SAS Core Service

S? AESTAud;AE Audio Service

S? bcmbusctr;WiMAX Bus Driver

S? PCTCore;PCTools KDS

S? pctDS;PC Tools Data Store

S? pctEFA;PC Tools Extended File Attributes

S? PCTSD;PC Tools Spyware Doctor Driver

S? QDLService;Qualcomm Gobi Download Service

S? SASDIFSV;SASDIFSV

S? SASKUTIL;SASKUTIL

.

=============== File Associations ===============

.

JSEFile=NOTEPAD.EXE %1

.

=============== Created Last 30 ================

.

2011-11-11 19:29:51 -------- d-----w- c:\documents and settings\michael marquez\application data\Systweak

2011-11-11 18:50:21 172032 ----a-w- c:\windows\system32\igfxres.dll

2011-11-10 23:39:14 -------- d-----w- c:\documents and settings\michael marquez\local settings\application data\PCHealth

2011-11-10 23:29:01 -------- d-----w- C:\SPLASH.SYS

2011-11-10 20:46:34 -------- d-----w- C:\Intel

2011-11-09 01:00:39 -------- d-----w- c:\documents and settings\michael marquez\DoctorWeb

2011-11-09 00:38:33 -------- d-----w- c:\program files\Advanced PC Tweaker

2011-11-08 21:51:08 1386496 ----a-w- c:\windows\system32\MSVBVM60.DLL

2011-11-08 03:58:46 -------- d-----w- c:\program files\Free Window Registry Repair

2011-11-08 03:36:27 -------- d-----w- c:\program files\Eusing Free Registry Cleaner

2011-11-08 03:01:25 -------- d-----w- c:\program files\RegistryFix8

2011-11-08 01:35:01 -------- d-----w- c:\documents and settings\michael marquez\application data\EurekaLog

2011-11-08 01:28:54 767952 ----a-w- c:\windows\BDTSupport.dll1138.old

2011-11-08 01:28:54 149456 ----a-w- c:\windows\SGDetectionTool.dll1138.old

2011-11-08 01:28:53 2291664 ----a-w- c:\windows\PCTBDCore.dll1138.old

2011-11-08 01:28:05 252840 ----a-w- c:\windows\system32\drivers\pctgntdi.sys

2011-11-08 01:27:58 17848 ----a-w- c:\windows\system32\drivers\pctBTFix.sys

2011-11-08 01:27:49 70536 ----a-w- c:\windows\system32\drivers\pctplsg.sys

2011-11-08 01:27:33 -------- d-----w- c:\program files\PC Tools

2011-11-08 01:17:12 660992 ----a-w- c:\windows\system32\drivers\pctEFA.sys

2011-11-08 01:17:12 341656 ----a-w- c:\windows\system32\drivers\pctDS.sys

2011-11-08 01:17:08 331880 ----a-w- c:\windows\system32\drivers\PCTCore.sys

2011-11-08 01:17:08 162584 ----a-w- c:\windows\system32\drivers\PCTAppEvent.sys

2011-11-08 01:17:06 185560 ----a-w- c:\windows\system32\drivers\PCTSD.sys

2011-11-08 01:17:06 -------- d-----w- c:\program files\common files\PC Tools

2011-11-08 01:16:15 -------- d-----w- c:\documents and settings\michael marquez\application data\TestApp

2011-11-08 01:16:15 -------- d-----w- c:\documents and settings\all users\application data\PC Tools

2011-11-08 01:10:23 -------- d-----w- c:\program files\SpyZooka

2011-11-07 04:17:01 -------- d-----w- c:\documents and settings\michael marquez\application data\SUPERAntiSpyware.com

2011-11-07 04:16:42 -------- d-----w- c:\program files\SUPERAntiSpyware

2011-11-07 04:16:41 -------- d-----w- c:\documents and settings\all users\application data\SUPERAntiSpyware.com

2011-11-06 23:23:16 -------- d-----w- c:\documents and settings\michael marquez\application data\QuickScan

2011-11-06 22:59:42 205072 ----a-w- c:\windows\system32\drivers\tmcomm.sys

2011-11-06 22:59:41 65808 ----a-w- c:\windows\system32\drivers\tmrkb.sys

2011-11-06 22:57:13 3838 ----a-w- c:\windows\system32\tmp.reg

2011-11-06 17:52:22 -------- d-----w- c:\windows\Standalone System Sweeper

2011-11-05 02:21:39 -------- d-----w- C:\2784b25b08a088407fab3d129463d7eb

2011-11-04 23:19:49 332672 ----a-w- c:\windows\system32\wgatray.exe.bak

2011-11-04 23:19:49 200064 ----a-w- c:\windows\system32\wgalogon.dll.bak

2011-11-04 03:03:30 -------- d-----w- c:\windows\system32\AUTOEXEC.BAT

2011-11-03 07:14:42 0 ----a-w- c:\windows\system32\ConduitEngine.tmp

2011-11-03 07:01:21 -------- d-----w- c:\program files\Elaborate Bytes

2011-11-03 06:39:49 -------- d-----w- c:\program files\vGrabber

2011-11-02 22:38:50 60416 ----a-w- c:\windows\system32\antiwpa.dll

2011-11-01 23:46:08 -------- d-----w- c:\windows\setup.pss

2011-10-29 02:58:45 -------- d-----w- c:\program files\ESET

2011-10-28 06:46:41 -------- d-----w- c:\documents and settings\michael marquez\local settings\application data\Solid State Networks

2011-10-28 00:45:25 -------- d-----w- c:\documents and settings\michael marquez\application data\ErrorTeck

2011-10-28 00:21:40 309320 ----a-w- c:\windows\system32\drivers\TrufosAlt.sys

2011-10-28 00:21:11 -------- d-----w- C:\TDSSKiller_Quarantine

2011-10-27 14:48:43 -------- d-----w- C:\f5a2cf3e974a3fc72d5145b2cb5f

2011-10-27 08:59:42 -------- d-sha-r- C:\cmdcons

2011-10-27 08:02:06 -------- d-----w- c:\program files\explore.exe

2011-10-26 20:13:44 -------- d-----w- c:\program files\BFlixToolbar

2011-10-26 19:55:45 -------- d-----w- C:\Temp for boot

2011-10-26 19:17:44 -------- d-----w- c:\program files\common files\ODBC

2011-10-26 18:59:51 -------- d-----w- c:\documents and settings\michael marquez\application data\NCH Software

2011-10-26 18:59:10 -------- d-----w- c:\program files\NCH Software

2011-10-26 17:41:22 -------- d-----w- c:\documents and settings\michael marquez\local settings\application data\NPE

2011-10-26 06:35:02 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2011-10-26 03:18:47 -------- d-----w- c:\program files\AVAST Software

2011-10-26 03:18:47 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software

2011-10-26 02:36:58 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys

2011-10-26 02:17:11 -------- d-----w- c:\program files\AppCleaner

2011-10-23 20:45:28 -------- d-----w- c:\windows\PIF

2011-10-16 04:00:13 -------- d-----w- c:\program files\Kg

2011-10-13 03:26:23 -------- d-----w- C:\N360_BACKUP

.

==================== Find3M ====================

.

2011-10-04 02:39:53 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2011-09-26 17:41:20 611328 ----a-w- c:\windows\system32\uiautomationcore.dll

2011-09-26 17:41:20 220160 ----a-w- c:\windows\system32\oleacc.dll

2011-09-26 17:41:14 20480 ----a-w- c:\windows\system32\oleaccrc.dll

2011-09-17 01:33:34 348160 ----a-w- c:\windows\system32\msvcr71.dll

2011-09-17 01:33:33 499712 ----a-w- c:\windows\system32\msvcp71.dll

2011-09-16 00:53:14 12984 ----a-w- c:\windows\system32\drivers\SWDUMon.sys

2011-09-09 09:12:13 599040 ----a-w- c:\windows\system32\crypt32.dll

2011-09-06 13:20:51 1858944 ----a-w- c:\windows\system32\win32k.sys

2011-08-22 23:48:55 916480 ----a-w- c:\windows\system32\wininet.dll

2011-08-22 23:48:54 43520 ------w- c:\windows\system32\licmgr10.dll

2011-08-22 23:48:54 1469440 ------w- c:\windows\system32\inetcpl.cpl

2011-08-22 11:56:39 385024 ------w- c:\windows\system32\html.iec

2011-08-17 13:49:54 138496 ----a-w- c:\windows\system32\drivers\afd.sys

.

============= FINISH: 19:29:54.87 ===============

[LDTate]

http://www.eset.eu/online-scanner

Go here to run an online scannner from ESET.

Click the green ESET Online Scanner button.

Read the End User License Agreement and check the box: YES, I accept the Terms of Use.

Click on the Start button next to it.

You may receive an alert on the address bar that "This site might require the following ActiveX control...Click here to install...". Click on that alert and then click Insall ActiveX component.

A new window will appear asking "Do you want to install this software?"".

Answer Yes to download and install the ActiveX controls that allows the scan to run.

Click Start.

Check Remove found threats and Scan potentially unwanted applications.

Click Scan to begin.

If offered the option to get information or buy software. Just close the window.

Wait for the scan to finish

Use notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt

Copy and paste that log as a reply to this topic.

[Michaelmmqz]

Ok for some odd reason now my computer is on a loop restarting its self and then ging to the xp logo and then a blue screen flashes really quick and then restarts!! Ugh this darn computer is frustrating me!! I can't even get it to go in safe mode now? Any thing you can think of I can do?

[LDTate]

If you can find your windows os cd, I'd perform a repair install

http://www.geekstogo.com/forum/topic/138-how-to-repair-windows-xp/

[LDTate]

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!