WiredWX Hobby Weather ToolsLog in

 


System Tool

2 posters

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
ComboFix 10-12-23.02 - HP_Administrator 12/23/2010 16:23:29.6.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1982.1377 [GMT -5:00]
Running from: c:\documents and settings\HP_Administrator\My Documents\Downloads\Combo-Fix.exe
Command switches used :: c:\documents and settings\HP_Administrator\My Documents\Downloads\CFScript.txt
AV: AntiVir Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
FW: Norton Internet Worm Protection *Disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}

FILE ::
"c:\windows\Drokoa.exe"
"c:\windows\Yfotivegohek.bin"
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\Drokoa.exe
c:\windows\Yfotivegohek.bin

.
((((((((((((((((((((((((( Files Created from 2010-11-23 to 2010-12-23 )))))))))))))))))))))))))))))))
.

2010-12-21 21:41 . 2010-12-21 21:41 -------- d-----w- C:\_OTL
2010-12-17 22:04 . 2010-12-17 22:04 126464 --sha-r- c:\windows\system32\fontexta.dll
2010-12-16 22:20 . 2010-12-16 22:20 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\dBpoweramp
2010-12-15 21:46 . 2010-12-15 21:46 -------- d-----w- c:\program files\MP3 to AIFF
2010-12-15 05:30 . 2010-11-02 15:17 40960 ------w- c:\windows\system32\dllcache\ndproxy.sys
2010-12-15 05:29 . 2010-10-11 14:59 45568 ------w- c:\windows\system32\dllcache\wab.exe
2010-12-14 07:51 . 2010-12-14 07:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Norton
2010-12-14 07:51 . 2010-12-14 07:51 -------- d-----w- c:\windows\system32\drivers\NSS
2010-12-14 07:51 . 2010-12-14 07:51 -------- d-----w- c:\program files\Norton Security Scan
2010-12-14 07:51 . 2010-12-14 07:51 -------- d-----w- c:\program files\NortonInstaller
2010-12-14 04:55 . 2010-12-14 04:59 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\DivX
2010-12-14 04:54 . 2010-07-12 18:36 9200 ------w- c:\windows\system32\drivers\cdralw2k.sys
2010-12-14 04:54 . 2010-07-12 18:36 9072 ------w- c:\windows\system32\drivers\cdr4_xp.sys
2010-12-14 04:54 . 2010-07-12 18:36 133616 ------w- c:\windows\system32\pxafs.dll
2010-12-14 04:50 . 2010-12-14 04:55 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX
2010-12-07 21:57 . 2010-12-23 20:54 -------- d-----w- c:\documents and settings\HP_Administrator\Local Settings\Application Data\dbobjspl
2010-12-03 21:08 . 2010-12-03 21:08 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\AccurateRip
2010-12-03 21:08 . 2010-12-03 21:08 6814952 ----a-w- c:\windows\system32\SpoonUninstall.exe
2010-12-03 21:07 . 2010-12-03 21:07 -------- d-----w- c:\documents and settings\All Users\Application Data\TEMP
2010-12-03 21:07 . 2010-12-03 21:07 -------- d-----w- c:\program files\FLAC to MP3 Converter
2010-12-03 21:04 . 2002-07-17 14:05 16512 ----a-w- c:\windows\system32\drivers\ASPI32.SYS
2010-12-03 21:04 . 2001-03-18 02:34 22528 ----a-w- c:\windows\system32\WNASPI32.DLL
2010-12-03 21:04 . 2010-12-03 21:04 -------- d-----w- c:\program files\4Musics FLAC to MP3 Converter
2010-12-02 17:01 . 2010-12-02 17:01 -------- d--h--w- c:\windows\PIF

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-23 21:03 . 2010-10-22 01:40 16968 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2010-12-08 16:26 . 2010-10-17 16:01 135096 ----a-w- c:\windows\system32\drivers\avipbb.sys
2010-11-23 01:53 . 2010-10-17 16:01 61960 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2010-11-18 18:12 . 2004-08-10 04:00 81920 ------w- c:\windows\system32\isign32.dll
2010-11-12 00:44 . 2010-11-12 00:44 94208 ----a-w- c:\windows\system32\dpl100.dll
2010-11-08 22:57 . 2010-11-08 22:57 353592 ----a-w- c:\windows\system32\DivXControlPanelApplet.cpl
2010-11-07 17:19 . 2010-11-07 17:19 12872 ----a-w- c:\windows\system32\bootdelete.exe
2010-11-05 05:05 . 2004-08-10 04:00 667136 ----a-w- c:\windows\system32\wininet.dll
2010-11-05 05:05 . 2004-08-10 04:00 61952 ------w- c:\windows\system32\tdc.ocx
2010-11-05 05:05 . 2004-08-10 04:00 81920 ------w- c:\windows\system32\ieencode.dll
2010-11-03 12:59 . 2004-08-10 04:00 369664 ------w- c:\windows\system32\html.iec
2010-11-02 15:17 . 2004-08-10 04:00 40960 ------w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:13 . 2004-08-10 04:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:25 . 2004-08-10 04:00 1853312 ----a-w- c:\windows\system32\win32k.sys
.

(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of c:\documents and settings\HP_Administrator\Local Settings\Application Data\dbobjspl ----



((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\documents and settings\HP_Administrator\Application Data\Dropbox\bin\DropboxExt.13.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\documents and settings\HP_Administrator\Application Data\Dropbox\bin\DropboxExt.13.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\documents and settings\HP_Administrator\Application Data\Dropbox\bin\DropboxExt.13.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-05-14 321328]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-10-13 68856]
"Google Update"="c:\documents and settings\HP_Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-10-03 133104]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-06 64512]
"AlwaysReady Power Message APP"="ARPWRMSG.EXE" [2005-08-03 77312]
"HPHUPD08"="c:\program files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe" [2005-06-02 49152]
"DISCover"="c:\program files\DISC\DISCover.exe" [2005-11-12 1064960]
"DiscUpdateManager"="c:\program files\DISC\DiscUpdateMgr.exe" [2005-11-12 61440]
"DMAScheduler"="c:\program files\Sonic\DigitalMedia Plus\DigitalMedia Archive\DMAScheduler.exe" [2005-11-01 90112]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2005-07-23 237568]
"HPBootOp"="c:\program files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" [2005-11-10 249856]
"Reminder"="c:\windows\Creator\Remind_XP.exe" [2004-12-14 663552]
"HP Software Update"="c:\program files\HP\HP Software Update\HPwuSchd2.exe" [2005-05-12 49152]
"nmctxth"="c:\program files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2008-12-12 642856]
"Linksys Wireless Manager"="c:\program files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe" [2009-02-16 1358384]
"LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe" [2008-08-11 63048]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-08-11 249856]
"AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 57344]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 577536]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-03-18 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-03-26 142120]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-11-03 281768]
"HitmanPro35"="c:\program files\Hitman Pro 3.5\HitmanPro35.exe" [2010-12-22 6347584]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-12-08 1226608]
"DivX Download Manager"="c:\program files\DivX\DivX Plus Web Player\DDmService.exe" [2010-12-08 63360]

c:\documents and settings\HP_Administrator\Start Menu\Programs\Startup\
Dropbox.lnk - c:\documents and settings\HP_Administrator\Application Data\Dropbox\bin\Dropbox.exe [2010-2-26 21979992]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-12 282624]
Updates From HP.lnk - c:\program files\Updates from HP\9972322\Program\Updates from HP.exe.vir [2006-3-2 36903]

c:\documents and settings\Default User\Start Menu\Programs\Startup\
Pin.lnk - c:\hp\bin\CLOAKER.EXE [2006-3-2 27136]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2009-09-28 23:34 87352 ----a-w- c:\windows\system32\LMIinit.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\DISC\\DISCover.exe"=
"c:\\Program Files\\DISC\\DiscStreamHub.exe"=
"c:\\Program Files\\DISC\\myFTP.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Documents and Settings\\HP_Administrator\\Application Data\\Dropbox\\bin\\Dropbox.exe"=

R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [9/8/2010 4:22 PM 691696]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [10/17/2010 11:01 AM 135336]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [8/11/2008 11:41 AM 12856]
R3 WUSB54GCv3;Compact Wireless-G USB Network Adapter;c:\windows\system32\drivers\WUSB54GCv3.sys [9/2/2009 6:57 AM 627072]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [1/18/2010 6:54 PM 135664]
S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [12/3/2010 4:04 PM 16512]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [2/18/2010 8:29 PM 23456]
.
Contents of the 'Scheduled Tasks' folder

2010-12-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-18 23:54]

2010-12-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-18 23:54]

2010-12-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1423768027-2586421752-2192907715-1008Core.job
- c:\documents and settings\HP_Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-03 19:30]

2010-12-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1423768027-2586421752-2192907715-1008UA.job
- c:\documents and settings\HP_Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-10-03 19:30]

2010-12-23 c:\windows\Tasks\Norton Security Scan for HP_Administrator.job
- c:\program files\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2010-12-14 15:06]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
uSearch Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
uSearch Bar = hxxp://www.google.com/ie
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
uInternet Connection Wizard,ShellNext = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
Trusted Zone: trymedia.com
FF - ProfilePath - c:\documents and settings\HP_Administrator\Application Data\Mozilla\Firefox\Profiles\jadnwcli.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?tab=mw&hl=en&source=iglk
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\DivX\DivX Plus Web Player\firefox\html5video
FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - c:\program files\DivX\DivX Plus Web Player\firefox\wpa
FF - Ext: DriverAgentPlugin for Firefox and Opera: {F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5} - %profile%\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}
FF - Ext: DAEMON Tools Toolbar: DTToolbar@toolbarnet.com - %profile%\extensions\DTToolbar@toolbarnet.com
FF - Ext: vShare Plugin: vshare@toolbar - %profile%\extensions\vshare@toolbar
FF - Ext: Move Media Player: moveplayer@movenetworks.com - c:\documents and settings\HP_Administrator\Application Data\Move Networks
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-12-23 16:30
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(896)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\LMIinit.dll
c:\windows\system32\LMIRfsClientNP.dll
.
Completion time: 2010-12-23 16:31:24
ComboFix-quarantined-files.txt 2010-12-23 21:31
ComboFix2.txt 2010-12-23 21:07
ComboFix3.txt 2010-10-14 00:04

Pre-Run: 25,594,253,312 bytes free
Post-Run: 25,578,217,472 bytes free

- - End Of File - - 0911EE4A00AE6427BC3F7F4BD9D9CC07

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
Hello.

Click Start > Run and copy/paste the following bolded text into the Run box and click OK:

ComboFix /uninstall

This will also reset your restore points.

Run ESET Online Scan
Please do an online scan with ESET Online Scanner. Please use Internet Explorer as it uses ActiveX.

  • Check (tick) this box: YES, I accept the Terms of Use.
  • Click on the Start button next to it.
  • When prompted to run ActiveX. click Yes.
  • You will be asked to install an ActiveX. Click Install.
  • Once installed, the scanner will be initialized.
  • After the scanner is initialized, click Start.
  • Check (tick) Remove found threats box.
  • Check (tick) Scan unwanted applications.
  • Click on Scan.
  • It will start scanning. Please be patient.
  • Once the scan is done, the log will be saved here: C:\Program Files\esetonlinescanner\log.txt.

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=7
# iexplore.exe=6.00.2900.5512 (xpsp.080413-2105)
# OnlineScanner.ocx=1.0.0.6419
# api_version=3.0.2
# EOSSerial=5aeddbf823179e4f8c3cefe273a5f4c6
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2010-12-25 01:25:30
# local_time=2010-12-24 08:25:30 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=1024 16777215 100 0 0 0 0 0
# compatibility_mode=1797 16775125 100 93 0 29637821 0 0
# compatibility_mode=8192 67108863 100 0 10125091 10125091 0 0
# scanned=267535
# found=1
# cleaned=1
# scan_time=6009
C:\_OTL\MovedFiles\12212010_164108\C_Documents and Settings\All Users\Application Data\gKdOn06308\gKdOn06308.exe Win32/Adware.SystemSecurity application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
Hello.

Download Security Check by screen317 and save it to your Desktop.

  • Unzip SecurityCheck.zip and a folder named Security Check should appear.
  • Open the Security Check folder and double-click Security Check.bat
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: if a security program requests permission from dig.exe to access the Internet, allow it to do so.

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
Results of screen317's Security Check version 0.99.7
Windows XP Service Pack 3
Internet Explorer 6 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Disabled!
Avira AntiVir Personal - Free Antivirus
ESET Online Scanner v3
Antivirus up to date!
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
Java(TM) 6 Update 17
Out of date Java installed!
Adobe Flash Player 10.1.102.64
Adobe Reader 7.0
Out of date Adobe Reader installed!
Mozilla Firefox (3.5.16) Firefox Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

Avira Antivir avgnt.exe
Avira Antivir avguard.exe
``````````End of Log````````````

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
Hello.

Please download the current version of HijackThis from HERE

  • Double click and run the installer.
  • It will install to C:\Program Files\Trend Micro\HijackThis\hijackthis.exe
  • After installing, you should get the user agreement, press accept and Hijack This will run.
  • When Hijack This opens, click "Open the Misc Tools section"
  • Then select "Open Uninstall Manager"
  • Click on "Save List..." (generates uninstall_list.txt)
  • Click Save, copy and paste the results in your next post.

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
µTorrent
4Musics FLAC to MP3 Converter 4.0
5 Card Slingo from HP Media Center (remove only)
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 7.0
Agere Systems PCI-SV92PP Soft Modem
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ASIO4ALL
AstroPop Deluxe from HP Media Center (remove only)
ATI Control Panel
ATI Display Driver
Audacity 1.2.6
Avira AntiVir Personal - Free Antivirus
Barnyard Invasion from HP Media Center (remove only)
Bejeweled 2 Deluxe from HP Media Center (remove only)
Blackhawk Striker 2 from HP Media Center (remove only)
Blasterball 2 from HP Media Center (remove only)
Blasterball 2 Remix from HP Media Center (remove only)
Boggle Supreme from HP Media Center (remove only)
Bonjour
Bookworm Deluxe from HP Media Center (remove only)
Bounce Symphony from HP Media Center (remove only)
Chuzzle Deluxe from HP Media Center (remove only)
Collab
Crystal Maze from HP Media Center (remove only)
Customer Experience Enhancement
DAEMON Tools Toolbar
dBpoweramp Music Converter
DISCover
DivX Setup
DriverAgent Plugin for Netscape by eSupport.com
Easy Internet Sign-up
Easy Mail Merge for Outlook
Enigma
ESET Online Scanner v3
Family Feud
FATE from HP Media Center (remove only)
FL Studio 8
GemMaster Mystic
GoldWave v5.55
Google Earth
Google Toolbar for Internet Explorer
Google Toolbar for Internet Explorer
Google Update Helper
GTK+ Runtime 2.14.7 rev a (remove only)
High Definition Audio Driver Package - KB888111
HiJackThis
Hitman Pro 3.5
Hotfix for Windows Media Player 10 (KB910393)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Boot Optimizer
HP Deskjet Printer Preload
HP DigitalMedia Archive
HP Document Viewer 5.3
HP DVD Play 1.0
HP Game Console and games
HP Imaging Device Functions 6.0
HP Multimedia Keyboard Software
HP Photosmart 330,380,420,470,7800,8000,8200 Series
HP Photosmart Cameras 5.0
HP Photosmart for Media Center PC
HP Photosmart Premier Software 6.0
HP PSC & OfficeJet 5.3.A
HP PSC & OfficeJet 5.3.B
HP Rhapsody
HP Software Update
HP Solution Center & Imaging Support Tools 5.3
HP Web Helper
IL Download Manager
Insaniquarium Deluxe from HP Media Center (remove only)
ITCH
iTunes
J2SE Runtime Environment 5.0 Update 5
Java(TM) 6 Update 17
KRISTAL Audio Engine
Lemonade Tycoon 2 from HP Media Center (remove only)
Lexibox Deluxe from HP Media Center (remove only)
Linksys Wireless Manager
LogMeIn
Magic FLAC to MP3 Converter 3.72
Mah Jong Quest from HP Media Center (remove only)
Malwarebytes' Anti-Malware
M-Audio Series II MIDI
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft Money 2006
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Save as PDF Add-in for 2007 Microsoft Office programs
Microsoft Silverlight
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Works
Mozilla Firefox (3.5.16)
MP3 to AIFF 1.0
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
muvee autoProducer 4.5
muvee autoProducer unPlugged 1.2
Netscape Browser (remove only)
Norton Security Scan
Otto
PC-Doctor 5 for Windows
Pidgin
Pidgin-Musictracker plugin (remove only)
PoiZone
Polar Bowler from HP Media Center (remove only)
Polar Golfer from HP Media Center (remove only)
PS2
Puzzle Express from HP Media Center (remove only)
Python 2.2 pywin32 extensions (build 203)
Python 2.2.3
Quicken 2006
QuickTime
RealPlayer
Realtek AC'97 Audio
Remove IntelliMover Demo
Ricochet Lost Worlds from HP Media Center (remove only)
SCRABBLE from HP Media Center (remove only)
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2289158)
Security Update for 2007 Microsoft Office System (KB2344875)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Excel 2007 (KB2345035)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB982158)
Security Update for Microsoft Office PowerPoint Viewer (KB2413381)
Security Update for Microsoft Office Publisher 2007 (KB2284697)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2183461)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360131)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2416400)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371-v2)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972260)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB976325)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982381)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
Shooting Stars Pool from HP Media Center (remove only)
Shrek 2 Ogre Bowler from HP Media Center (remove only)
SimCity 2000® Special Edition
Slingo Deluxe from HP Media Center (remove only)
Snowboard SuperJam from HP Media Center (remove only)
Sonic Express Labeler
Sonic MyDVD Plus
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Super Granny from HP Media Center (remove only)
Toxic Biohazard
Tradewinds from HP Media Center (remove only)
Unreal Tournament
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office Outlook 2007 (KB2412171)
Update for Outlook 2007 Junk Email Filter (KB2466076)
Update for Windows Media Player 10 (KB913800)
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB951978)
Update for Windows XP (KB953356)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB976749)
Update for Windows XP (KB978207)
Update for Windows XP (KB980182)
Updates from HP (remove only)
VC80CRTRedist - 8.0.50727.4053
VLC media player 1.0.1
WildTangent Web Driver
Windows Media Format Runtime
Windows XP Media Center Edition 2005 KB908250
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3
WinRAR archiver
Zuma Deluxe from HP Media Center (remove only)

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
Hello.

I see that you are running µTorrent.
P2P(Peer to peer) applications are designed to help you easily share and distribute files between you and a group of people. But they can also be used to distribute malware, and thus are not considered safe.
The removal of these programs is optional, but highly recommended.

Go to Start > Control Panel > Add/Remove Programs and remove the following programs.

    µTorrent
    Adobe Reader 7.0
    J2SE Runtime Environment 5.0 Update 5
    Java(TM) 6 Update 17

Updating Java:

  • Download the latest version of Java SE Runtime Environment (JRE) 6 Update 23.
  • Click the "Download JRE" button to the right.
  • In the Window that opens, select your platform, check the "agree" box, and click Continue.
  • Click on the link to download Windows Offline Installation and save to your desktop.
  • Close any programs you may have running - especially your web browser.
  • Then from your desktop double-click on jre-6u23-windows-i586.exe that you downloaded to install the newest version.


Download and install VLC Player 1.1.5
When installing, it will ask if you want to uninstall the old version first before it can install the new version, so please select yes and allow it to install.

Then download and install Adobe Reader X

How is the machine running now?

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
The virus from before is completely cleared up...however I have a different (and probably unrelated program). I actually inquired about it a few months ago but never followed up. I've had a problem with ads on the internet and random internet tabs and windows popping up. Here is the scan from MBRCheck if it helps...

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows XP Professional
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x000007fc

Kernel Drivers (total 136):
0x804D7000 \WINDOWS\system32\ntkrnlpa.exe
0x806E4000 \WINDOWS\system32\hal.dll
0xBA5A8000 \WINDOWS\system32\KDCOM.DLL
0xBA4B8000 \WINDOWS\system32\BOOTVID.dll
0xB9EB4000 splk.sys
0xBA5AA000 \WINDOWS\System32\Drivers\WMILIB.SYS
0xB9E9C000 \WINDOWS\System32\Drivers\SCSIPORT.SYS
0xB9E6E000 ACPI.sys
0xB9E5D000 pci.sys
0xBA0A8000 ohci1394.sys
0xBA0B8000 \WINDOWS\system32\DRIVERS\1394BUS.SYS
0xBA0C8000 isapnp.sys
0xBA670000 pciide.sys
0xBA328000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xBA5AC000 viaide.sys
0xBA5AE000 intelide.sys
0xBA0D8000 MountMgr.sys
0xB9E3E000 ftdisk.sys
0xBA5B0000 dmload.sys
0xB9E18000 dmio.sys
0xBA330000 PartMgr.sys
0xBA0E8000 VolSnap.sys
0xB9D43000 iaStor.sys
0xB9D2B000 atapi.sys
0xB9CE8000 ftsata2.sys
0xBA0F8000 disk.sys
0xBA108000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xB9CC8000 fltmgr.sys
0xBA118000 bb-run.sys
0xBA128000 PxHelp20.sys
0xB9CB1000 KSecDD.sys
0xB9C24000 Ntfs.sys
0xB9BF7000 NDIS.sys
0xB9BDD000 Mup.sys
0xBA268000 \SystemRoot\system32\DRIVERS\AmdK8.sys
0xBA470000 \SystemRoot\system32\DRIVERS\aracpi.sys
0xB92F7000 \SystemRoot\system32\DRIVERS\ati2mtag.sys
0xB92E3000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xBA478000 \SystemRoot\system32\DRIVERS\usbohci.sys
0xB92BF000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xBA480000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xBA278000 \SystemRoot\system32\DRIVERS\imapi.sys
0xBA288000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xBA298000 \SystemRoot\system32\DRIVERS\redbook.sys
0xB929C000 \SystemRoot\system32\DRIVERS\ks.sys
0xBA488000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0xB9190000 \SystemRoot\system32\DRIVERS\AGRSM.sys
0xBA490000 \SystemRoot\System32\Drivers\Modem.SYS
0xB917C000 \SystemRoot\system32\DRIVERS\Rtnicxp.sys
0xBA2A8000 \SystemRoot\system32\DRIVERS\nic1394.sys
0xB8D8D000 \SystemRoot\system32\drivers\ALCXWDM.SYS
0xB8D69000 \SystemRoot\system32\drivers\portcls.sys
0xBA2B8000 \SystemRoot\system32\drivers\drmk.sys
0xB8D30000 \SystemRoot\System32\Drivers\ad4got3k.SYS
0xB8D1C000 \SystemRoot\system32\DRIVERS\parport.sys
0xBA2C8000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xBA3A0000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xBA5DE000 \SystemRoot\system32\DRIVERS\armoucfltr.sys
0xBA3A8000 \SystemRoot\system32\DRIVERS\PS2.sys
0xBA3B0000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xBA5E0000 \SystemRoot\system32\DRIVERS\arkbcfltr.sys
0xB9B9D000 \SystemRoot\system32\DRIVERS\arpolicy.sys
0xBA6E2000 \SystemRoot\system32\DRIVERS\lmimirr.sys
0xBA6E3000 \SystemRoot\system32\DRIVERS\audstub.sys
0xBA2D8000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xB9B99000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xB8D05000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xBA2E8000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xBA2F8000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xBA3B8000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xB8CF4000 \SystemRoot\system32\DRIVERS\psched.sys
0xBA308000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xBA3C0000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xBA3C8000 \SystemRoot\system32\DRIVERS\raspti.sys
0xB8CC4000 \SystemRoot\system32\DRIVERS\rdpdr.sys
0xBA318000 \SystemRoot\system32\DRIVERS\termdd.sys
0xBA5E2000 \SystemRoot\system32\DRIVERS\swenum.sys
0xB8C66000 \SystemRoot\system32\DRIVERS\update.sys
0xB9694000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xBA158000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xB94B5000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xBA5E4000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xBA5E6000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xBA7FA000 \SystemRoot\System32\Drivers\Null.SYS
0xBA5E8000 \SystemRoot\System32\Drivers\Beep.SYS
0xBA3F0000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0xBA3F8000 \SystemRoot\System32\drivers\vga.sys
0xBA5EA000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xBA5EC000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xBA400000 \SystemRoot\System32\Drivers\Msfs.SYS
0xBA408000 \SystemRoot\System32\Drivers\Npfs.SYS
0xBA580000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xB46B6000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xB465D000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xB4635000 \SystemRoot\system32\DRIVERS\netbt.sys
0xB460F000 \SystemRoot\system32\DRIVERS\ipnat.sys
0xB9495000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xB45ED000 \SystemRoot\System32\drivers\afd.sys
0xB9485000 \SystemRoot\system32\DRIVERS\netbios.sys
0xB9465000 \SystemRoot\system32\DRIVERS\arp1394.sys
0xBA410000 \SystemRoot\system32\DRIVERS\ssmdrv.sys
0xB44FA000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xB448A000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xB9455000 \SystemRoot\System32\Drivers\Fips.SYS
0xB4464000 \SystemRoot\system32\DRIVERS\avipbb.sys
0xBA418000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0xBA5F0000 \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys
0xB4440000 \SystemRoot\System32\Drivers\Fastfat.SYS
0xBA178000 \SystemRoot\System32\Drivers\Cdfs.SYS
0xB43A6000 \SystemRoot\system32\DRIVERS\WUSB54GCv3.sys
0xB438E000 \SystemRoot\System32\Drivers\dump_atapi.sys
0xBA612000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xB8C3E000 \SystemRoot\System32\drivers\Dxapi.sys
0xBA440000 \SystemRoot\System32\watchdog.sys
0xBF000000 \SystemRoot\System32\drivers\dxg.sys
0xBA6F0000 \SystemRoot\System32\drivers\dxgthk.sys
0xBF012000 \SystemRoot\System32\ati2dvag.dll
0xBF051000 \SystemRoot\System32\ati2cqag.dll
0xBF08A000 \SystemRoot\System32\atikvmag.dll
0xBF0BF000 \SystemRoot\System32\ati3duag.dll
0xBF30C000 \SystemRoot\System32\ativvaxx.dll
0xB2139000 \SystemRoot\system32\DRIVERS\avgntflt.sys
0xB215A000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xBA458000 \SystemRoot\system32\DRIVERS\pnarp.sys
0xBA460000 \SystemRoot\system32\DRIVERS\purendis.sys
0xB1EB4000 \SystemRoot\system32\DRIVERS\mrxdav.sys
0xB1DAF000 \SystemRoot\system32\drivers\wdmaud.sys
0xB1F79000 \SystemRoot\system32\drivers\sysaudio.sys
0xB195E000 \SystemRoot\System32\Drivers\HTTP.sys
0xB18DE000 \SystemRoot\system32\DRIVERS\srv.sys
0xBA662000 \??\C:\Program Files\LogMeIn\x86\RaInfo.sys
0xB1AD7000 \??\C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
0xB09B3000 \SystemRoot\system32\drivers\kmixer.sys
0x7C900000 \WINDOWS\system32\ntdll.dll
0x10000000 \Program Files\DAEMON Tools Lite\Engine.dll

Processes (total 84):
0 System Idle Process
4 System
640 C:\WINDOWS\system32\smss.exe
696 csrss.exe
884 C:\WINDOWS\system32\winlogon.exe
928 C:\WINDOWS\system32\services.exe
940 C:\WINDOWS\system32\lsass.exe
1124 C:\WINDOWS\system32\ati2evxx.exe
1140 C:\WINDOWS\system32\svchost.exe
1200 svchost.exe
1244 C:\WINDOWS\system32\svchost.exe
1404 svchost.exe
1496 svchost.exe
1756 C:\WINDOWS\system32\spoolsv.exe
1836 C:\Program Files\Avira\AntiVir Desktop\sched.exe
1876 svchost.exe
1936 C:\Program Files\Avira\AntiVir Desktop\avguard.exe
2044 C:\WINDOWS\system32\ati2evxx.exe
300 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
344 C:\WINDOWS\explorer.exe
448 C:\WINDOWS\arservice.exe
476 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
504 C:\Program Files\Bonjour\mDNSResponder.exe
532 C:\WINDOWS\ehome\ehrecvr.exe
572 C:\WINDOWS\ehome\ehSched.exe
752 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
792 C:\Program Files\LogMeIn\x86\ramaint.exe
848 C:\Program Files\LogMeIn\x86\LogMeIn.exe
1064 C:\Program Files\LogMeIn\x86\LMIGuardian.exe
1340 C:\Program Files\M-Audio\M-Audio Series II MIDI\MA_CMIDI_Inst.exe
1460 C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
2080 svchost.exe
2332 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
2392 C:\WINDOWS\ehome\ehtray.exe
2512 C:\WINDOWS\arpwrmsg.exe
2640 C:\Program Files\DISC\DISCover.exe
2680 C:\Program Files\DISC\DISCUpdateMgr.exe
2696 C:\Program Files\Sonic\DigitalMedia Plus\DigitalMedia Archive\DMAScheduler.exe
2744 C:\Program Files\DISC\DiscGui.exe
2764 wmiprvse.exe
2836 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
2872 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
2880 mcrdsvc.exe
2932 C:\Program Files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe
2976 C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
3004 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
3112 C:\Program Files\LogMeIn\x86\LMIGuardian.exe
3116 C:\WINDOWS\soundman.exe
3424 C:\Program Files\iTunes\iTunesHelper.exe
3540 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
3696 C:\Program Files\DivX\DivX Update\DivXUpdate.exe
4020 C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
1996 C:\Program Files\uTorrent\uTorrent.exe
1328 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
1356 C:\Program Files\DAEMON Tools Lite\DTLite.exe
2500 C:\WINDOWS\system32\ctfmon.exe
2476 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
2300 C:\WINDOWS\system32\dllhost.exe
412 C:\Documents and Settings\HP_Administrator\Application Data\Dropbox\bin\Dropbox.exe
3604 C:\Program Files\iPod\bin\iPodService.exe
3500 C:\WINDOWS\ehome\ehmsas.exe
3584 alg.exe
1820 C:\Program Files\DISC\DiscStreamHub.exe
3248 C:\WINDOWS\system32\svchost.exe
2444 C:\WINDOWS\system32\wscntfy.exe
3480 C:\hp\KBD\kbd.exe
2944 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
984 C:\WINDOWS\system\hpsysdrv.exe
608 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
2456 C:\Program Files\Java\jre6\bin\jqs.exe
1316 C:\Program Files\iTunes\iTunes.exe
2928 C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
3924 C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
3524 C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
424 C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
3060 C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
1320 C:\WINDOWS\system32\msiexec.exe
1312 C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
3464 C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
1984 C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
1612 C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
2540 C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
3012 C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
2892 C:\Documents and Settings\HP_Administrator\My Documents\Downloads\MBRCheck (1).exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000043`bf9c6000 (FAT32)

PhysicalDrive0 Model Number: WDCWD3000JS-60PDB0, Rev: 21.00M21

Size Device Name MBR Status
--------------------------------------------
279 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 3FA1BAC1D7FD18071BE2B53E6001CD7DFE278CEB


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:

Done!

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
Re-Run MBRCheck.exe


  • Wait until you see the following line: Enter 'Y' and hit ENTER for more options, or 'N' to exit:
  • Please push the 'Y' key and then press Enter
  • When program ask you Enter your choice: enter
    [1] Dump the MBR of a physical disk to file.
    and press the Enter key
  • Now the program will ask you "Enter the physical disk number to fix (0-99, -1 to cancel):"
  • Enter 0 and press the Enter key.
  • The program will show Available MBR codes:, followed by a list of operating systems. Please enter
    [ 0] Default (Windows XP)
    [ 1] Windows XP
    [ 2] Windows Server 2003
    [ 3] Windows Vista
    [ 4] Windows 2008
    [ 5] Windows 7
    and then press Enter.
  • The program will ask for the file name to dump to, type dump.dat and Press Enter. You should see Dumped successfully.
  • Next, type -1 and press Enter. Next press Enter again, and the program will exit.
  • Save it to your desktop then attach the resultant output in your next reply

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
3ÿ¾ Ž×¼ z» ‹ÎŽÛŽÃó¤ê\    z f‹U´BÆ |2Àf‰" ¾ ²€Í‚µ >þUªÃ¬
Àtú´» Íëò‹é‹Ù¿î¹ 8mt4è¼ÿuf>RECOuf>VERYu‹ßÆEŠE<t
< t$õ<u‹ïˆ-ƒïâÀ Ût= ít9‹ûöRuföRuc´ÍuLŠQ
ÒtUþÊxQ6Šl€Á´Íu26:luóëåf3ÒèAÿ±¿¾€=€tLƒÇâö‹6UèKÿ‹6WèDÿ´ ÍÍ´ ÍMissing operating system

Master Boot Record Error

Press a key.
Qî ±Ê € ïÿÿ? á’ß! Áÿ ïÿÿ0Îß!`Û Uª

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
Did MBRcheck not make a log.dat file?

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
I'm an idiot..didn't realize it produced another log and tried to put up a text verison of the dump.dat file...

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows XP Professional
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x000007fc

Kernel Drivers (total 136):
0x804D7000 \WINDOWS\system32\ntkrnlpa.exe
0x806E4000 \WINDOWS\system32\hal.dll
0xBA5A8000 \WINDOWS\system32\KDCOM.DLL
0xBA4B8000 \WINDOWS\system32\BOOTVID.dll
0xB9EB4000 splk.sys
0xBA5AA000 \WINDOWS\System32\Drivers\WMILIB.SYS
0xB9E9C000 \WINDOWS\System32\Drivers\SCSIPORT.SYS
0xB9E6E000 ACPI.sys
0xB9E5D000 pci.sys
0xBA0A8000 ohci1394.sys
0xBA0B8000 \WINDOWS\system32\DRIVERS\1394BUS.SYS
0xBA0C8000 isapnp.sys
0xBA670000 pciide.sys
0xBA328000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xBA5AC000 viaide.sys
0xBA5AE000 intelide.sys
0xBA0D8000 MountMgr.sys
0xB9E3E000 ftdisk.sys
0xBA5B0000 dmload.sys
0xB9E18000 dmio.sys
0xBA330000 PartMgr.sys
0xBA0E8000 VolSnap.sys
0xB9D43000 iaStor.sys
0xB9D2B000 atapi.sys
0xB9CE8000 ftsata2.sys
0xBA0F8000 disk.sys
0xBA108000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xB9CC8000 fltmgr.sys
0xBA118000 bb-run.sys
0xBA128000 PxHelp20.sys
0xB9CB1000 KSecDD.sys
0xB9C24000 Ntfs.sys
0xB9BF7000 NDIS.sys
0xB9BDD000 Mup.sys
0xBA268000 \SystemRoot\system32\DRIVERS\AmdK8.sys
0xBA470000 \SystemRoot\system32\DRIVERS\aracpi.sys
0xB92F7000 \SystemRoot\system32\DRIVERS\ati2mtag.sys
0xB92E3000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xBA478000 \SystemRoot\system32\DRIVERS\usbohci.sys
0xB92BF000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xBA480000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xBA278000 \SystemRoot\system32\DRIVERS\imapi.sys
0xBA288000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xBA298000 \SystemRoot\system32\DRIVERS\redbook.sys
0xB929C000 \SystemRoot\system32\DRIVERS\ks.sys
0xBA488000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0xB9190000 \SystemRoot\system32\DRIVERS\AGRSM.sys
0xBA490000 \SystemRoot\System32\Drivers\Modem.SYS
0xB917C000 \SystemRoot\system32\DRIVERS\Rtnicxp.sys
0xBA2A8000 \SystemRoot\system32\DRIVERS\nic1394.sys
0xB8D8D000 \SystemRoot\system32\drivers\ALCXWDM.SYS
0xB8D69000 \SystemRoot\system32\drivers\portcls.sys
0xBA2B8000 \SystemRoot\system32\drivers\drmk.sys
0xB8D30000 \SystemRoot\System32\Drivers\ad4got3k.SYS
0xB8D1C000 \SystemRoot\system32\DRIVERS\parport.sys
0xBA2C8000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xBA3A0000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xBA5DE000 \SystemRoot\system32\DRIVERS\armoucfltr.sys
0xBA3A8000 \SystemRoot\system32\DRIVERS\PS2.sys
0xBA3B0000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xBA5E0000 \SystemRoot\system32\DRIVERS\arkbcfltr.sys
0xB9B9D000 \SystemRoot\system32\DRIVERS\arpolicy.sys
0xBA6E2000 \SystemRoot\system32\DRIVERS\lmimirr.sys
0xBA6E3000 \SystemRoot\system32\DRIVERS\audstub.sys
0xBA2D8000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xB9B99000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xB8D05000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xBA2E8000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xBA2F8000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xBA3B8000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xB8CF4000 \SystemRoot\system32\DRIVERS\psched.sys
0xBA308000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xBA3C0000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xBA3C8000 \SystemRoot\system32\DRIVERS\raspti.sys
0xB8CC4000 \SystemRoot\system32\DRIVERS\rdpdr.sys
0xBA318000 \SystemRoot\system32\DRIVERS\termdd.sys
0xBA5E2000 \SystemRoot\system32\DRIVERS\swenum.sys
0xB8C66000 \SystemRoot\system32\DRIVERS\update.sys
0xB9694000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xBA158000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xB94B5000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xBA5E4000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xBA5E6000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xBA7FA000 \SystemRoot\System32\Drivers\Null.SYS
0xBA5E8000 \SystemRoot\System32\Drivers\Beep.SYS
0xBA3F0000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0xBA3F8000 \SystemRoot\System32\drivers\vga.sys
0xBA5EA000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xBA5EC000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xBA400000 \SystemRoot\System32\Drivers\Msfs.SYS
0xBA408000 \SystemRoot\System32\Drivers\Npfs.SYS
0xBA580000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xB46B6000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xB465D000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xB4635000 \SystemRoot\system32\DRIVERS\netbt.sys
0xB460F000 \SystemRoot\system32\DRIVERS\ipnat.sys
0xB9495000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xB45ED000 \SystemRoot\System32\drivers\afd.sys
0xB9485000 \SystemRoot\system32\DRIVERS\netbios.sys
0xB9465000 \SystemRoot\system32\DRIVERS\arp1394.sys
0xBA410000 \SystemRoot\system32\DRIVERS\ssmdrv.sys
0xB44FA000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xB448A000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xB9455000 \SystemRoot\System32\Drivers\Fips.SYS
0xB4464000 \SystemRoot\system32\DRIVERS\avipbb.sys
0xBA418000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0xBA5F0000 \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys
0xB4440000 \SystemRoot\System32\Drivers\Fastfat.SYS
0xBA178000 \SystemRoot\System32\Drivers\Cdfs.SYS
0xB438E000 \SystemRoot\System32\Drivers\dump_atapi.sys
0xBA612000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xB8C3E000 \SystemRoot\System32\drivers\Dxapi.sys
0xBA440000 \SystemRoot\System32\watchdog.sys
0xBF000000 \SystemRoot\System32\drivers\dxg.sys
0xBA6F0000 \SystemRoot\System32\drivers\dxgthk.sys
0xBF012000 \SystemRoot\System32\ati2dvag.dll
0xBF051000 \SystemRoot\System32\ati2cqag.dll
0xBF08A000 \SystemRoot\System32\atikvmag.dll
0xBF0BF000 \SystemRoot\System32\ati3duag.dll
0xBF30C000 \SystemRoot\System32\ativvaxx.dll
0xB2139000 \SystemRoot\system32\DRIVERS\avgntflt.sys
0xB215A000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xBA458000 \SystemRoot\system32\DRIVERS\pnarp.sys
0xBA460000 \SystemRoot\system32\DRIVERS\purendis.sys
0xB1EB4000 \SystemRoot\system32\DRIVERS\mrxdav.sys
0xB1DAF000 \SystemRoot\system32\drivers\wdmaud.sys
0xB1F79000 \SystemRoot\system32\drivers\sysaudio.sys
0xB195E000 \SystemRoot\System32\Drivers\HTTP.sys
0xB18DE000 \SystemRoot\system32\DRIVERS\srv.sys
0xBA662000 \??\C:\Program Files\LogMeIn\x86\RaInfo.sys
0xB1AD7000 \??\C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
0xB09B3000 \SystemRoot\system32\drivers\kmixer.sys
0xB0259000 \SystemRoot\system32\DRIVERS\WUSB54GCv3.sys
0x7C900000 \WINDOWS\system32\ntdll.dll
0x10000000 \Program Files\DAEMON Tools Lite\Engine.dll

Processes (total 77):
0 System Idle Process
4 System
640 C:\WINDOWS\system32\smss.exe
696 csrss.exe
884 C:\WINDOWS\system32\winlogon.exe
928 C:\WINDOWS\system32\services.exe
940 C:\WINDOWS\system32\lsass.exe
1124 C:\WINDOWS\system32\ati2evxx.exe
1140 C:\WINDOWS\system32\svchost.exe
1200 svchost.exe
1244 C:\WINDOWS\system32\svchost.exe
1404 svchost.exe
1496 svchost.exe
1756 C:\WINDOWS\system32\spoolsv.exe
1836 C:\Program Files\Avira\AntiVir Desktop\sched.exe
1876 svchost.exe
1936 C:\Program Files\Avira\AntiVir Desktop\avguard.exe
2044 C:\WINDOWS\system32\ati2evxx.exe
300 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
344 C:\WINDOWS\explorer.exe
448 C:\WINDOWS\arservice.exe
476 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
504 C:\Program Files\Bonjour\mDNSResponder.exe
532 C:\WINDOWS\ehome\ehrecvr.exe
572 C:\WINDOWS\ehome\ehSched.exe
752 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
792 C:\Program Files\LogMeIn\x86\ramaint.exe
848 C:\Program Files\LogMeIn\x86\LogMeIn.exe
1064 C:\Program Files\LogMeIn\x86\LMIGuardian.exe
1340 C:\Program Files\M-Audio\M-Audio Series II MIDI\MA_CMIDI_Inst.exe
1460 C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
2080 svchost.exe
2332 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
2392 C:\WINDOWS\ehome\ehtray.exe
2512 C:\WINDOWS\arpwrmsg.exe
2640 C:\Program Files\DISC\DISCover.exe
2680 C:\Program Files\DISC\DISCUpdateMgr.exe
2696 C:\Program Files\Sonic\DigitalMedia Plus\DigitalMedia Archive\DMAScheduler.exe
2744 C:\Program Files\DISC\DiscGui.exe
2764 wmiprvse.exe
2836 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
2872 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
2880 mcrdsvc.exe
2932 C:\Program Files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe
2976 C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
3004 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
3112 C:\Program Files\LogMeIn\x86\LMIGuardian.exe
3116 C:\WINDOWS\soundman.exe
3424 C:\Program Files\iTunes\iTunesHelper.exe
3540 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
3696 C:\Program Files\DivX\DivX Update\DivXUpdate.exe
4020 C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
1996 C:\Program Files\uTorrent\uTorrent.exe
1328 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
1356 C:\Program Files\DAEMON Tools Lite\DTLite.exe
2500 C:\WINDOWS\system32\ctfmon.exe
2476 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
2300 C:\WINDOWS\system32\dllhost.exe
412 C:\Documents and Settings\HP_Administrator\Application Data\Dropbox\bin\Dropbox.exe
3604 C:\Program Files\iPod\bin\iPodService.exe
3500 C:\WINDOWS\ehome\ehmsas.exe
3584 alg.exe
1820 C:\Program Files\DISC\DiscStreamHub.exe
3248 C:\WINDOWS\system32\svchost.exe
2444 C:\WINDOWS\system32\wscntfy.exe
3480 C:\hp\KBD\kbd.exe
2944 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
984 C:\WINDOWS\system\hpsysdrv.exe
608 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
2456 C:\Program Files\Java\jre6\bin\jqs.exe
1316 C:\Program Files\iTunes\iTunes.exe
688 C:\Program Files\Microsoft Office\Office12\MSACCESS.EXE
340 C:\Program Files\Serato\ITCH\ITCH.exe
5340 C:\Program Files\Mozilla Firefox\firefox.exe
5624 C:\Program Files\Mozilla Firefox\plugin-container.exe
4600 C:\WINDOWS\notepad.exe
4956 C:\Documents and Settings\HP_Administrator\My Documents\Downloads\MBRCheck (1).exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000043`bf9c6000 (FAT32)

PhysicalDrive0 Model Number: WDCWD3000JS-60PDB0, Rev: 21.00M21

Size Device Name MBR Status
--------------------------------------------
279 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 3FA1BAC1D7FD18071BE2B53E6001CD7DFE278CEB


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.

Enter your choice: Enter the physical disk number to dump (0-99, -1 to exit): 0Dumping \\.\PhysicalDisk0...
Enter filename to dump to: dump.datDumped successfully!

Enter the physical disk number to dump (0-99, -1 to exit): -1

Done!

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
Please attach the dump.dat file.

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
http://www.groovebat.com/8s9

descriptionSystem Tool  - Page 2 EmptyRe: System Tool

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum