Bless your soul for helping me.......

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

roosterwes

Thread Starter
Joined
Jan 3, 2011
Messages
4
Every computer in my house has something. I am working on this one, as it is my little boy's and he will be devistated. Thank You in advance and please help. This is major to us.
It started with one comp on my network and spread to the other two. Ive used malware bytes, and I have Avast and System Mechanic on all of them. It disables features in Avast, like rootkit and artificial intelligence. When I am online it keeps trying to install Adobe and Internet Explorer add ons. It won't let me boot time scan. It blue screened when I ran the rootkit program installer. Maybe I shouldn't have used mbytes with the other software. I just don't know.
thanks, HUFF

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:12:46 PM, on 1/3/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Cyberlink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Cyberlink\PowerDVD8\PDVD8Serv.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe
C:\Users\WYATT\Downloads\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&m=p-79&r=27360710p3b6l0380z145a4821v293
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook.com/?ref=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&m=p-79&r=27360710p3b6l0380z145a4821v293
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&m=p-79&r=27360710p3b6l0380z145a4821v293
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: profilesong Toolbar - {981e53ba-6df4-4d99-8c33-6c398f5c139e} - C:\Program Files (x86)\profilesong\tbprof.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: profilesong Toolbar - {981e53ba-6df4-4d99-8c33-6c398f5c139e} - C:\Program Files (x86)\profilesong\tbprof.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [CLMLServer] "c:\Program Files (x86)\Cyberlink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [RemoteControl8] "c:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe"
O4 - HKLM\..\Run: [iolo Startup] "C:\Program Files (x86)\iolo\Common\Lib\ioloLManager.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\iavlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\iavlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\iavlsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: iolo FileInfoList Service (ioloFileInfoList) - iolo technologies, LLC - C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
O23 - Service: iolo System Service (ioloSystemService) - iolo technologies, LLC - C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: vseamps - Authentium, Inc - C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe
O23 - Service: vsedsps - Authentium, Inc - C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe
O23 - Service: vseqrts - Authentium, Inc - C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 11201 bytes




DDS (Ver_10-12-12.01) - NTFS_AMD64
Run by WYATT at 19:24:36.56 on Mon 01/03/2011
Internet Explorer: 9.0.7930.16406
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.4091.2426 [GMT -6:00]
AV: System Shield *Enabled/Updated* {C132074B-BF68-2E15-D4FD-E242EED15F18}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: System Shield *Enabled/Updated* {7A53E6AF-9952-219B-EE4D-D930955615A5}
============== Running Processes ===============
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k HsfXAudioService
C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe
C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\iolo\System Mechanic Professional\System Shield\ioloSSTray.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Gateway\Gateway Power Management\ePowerEvent.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\DllHost.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\revouninstaller.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\Windows\system32\nvvsvc.exe
C:\Users\WYATT\Desktop\dds.pif
C:\Windows\system32\conhost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.google.com/
uDefault_Page_URL = hxxp://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&m=p-79&r=27360710p3b6l0380z145a4821v293
mDefault_Page_URL = hxxp://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&m=p-79&r=27360710p3b6l0380z145a4821v293
mStart Page = hxxp://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&m=p-79&r=27360710p3b6l0380z145a4821v293
mWinlogon: Userinit=userinit.exe,
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: {981E53BA-6DF4-4D99-8C33-6C398F5C139E} - No File
TB: {30F9B915-B755-4826-820B-08FBA6BD249D} - No File
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
mRun: [CLMLServer] "c:\Program Files (x86)\Cyberlink\Power2Go\CLMLSvc.exe"
mRun: [RemoteControl8] "c:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe"
mRun: [iolo Startup] "C:\Program Files (x86)\iolo\Common\Lib\ioloLManager.exe"
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
LSP: C:\Windows\system32\iavlsp.dll
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
BHO-X64: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg64.dll
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
TB-X64: {981E53BA-6DF4-4D99-8C33-6C398F5C139E} - No File
TB-X64: {30F9B915-B755-4826-820B-08FBA6BD249D} - No File
mRun-x64: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
mRun-x64: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
mRun-x64: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun-x64: [Acer ePower Management] C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe
============= SERVICES / DRIVERS ===============
R1 ElRawDisk;ElRawDisk;C:\Windows\System32\drivers\ElRawDsk.sys [2010-12-15 23464]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904]
R2 AMP;AMP;C:\Windows\System32\drivers\amp.sys [2010-12-15 161320]
R2 AMPSE;AMPSE;C:\Windows\System32\drivers\ampse.sys [2010-12-15 1404456]
R2 ePowerSvc;Acer ePower Service;C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe [2009-11-25 844320]
R2 HsfXAudioService;HsfXAudioService;C:\Windows\system32\svchost.exe -k HsfXAudioService [2009-7-13 27136]
R2 ioloFileInfoList;iolo FileInfoList Service;C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe [2010-12-15 724664]
R2 ioloSystemService;iolo System Service;C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe [2010-12-15 724664]
R2 vseamps;vseamps;C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe [2010-1-19 150568]
R2 vsedsps;vsedsps;C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe [2010-1-19 150056]
R2 vseqrts;vseqrts;C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe [2010-1-19 207400]
R3 CAXHWAZL;CAXHWAZL;C:\Windows\System32\drivers\CAXHWAZL.sys [2009-11-25 292864]
R3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\System32\drivers\NETw5s64.sys [2010-1-13 7675392]
R3 O2MDRDR;O2MDRDR;C:\Windows\System32\drivers\o2mdx64.sys [2009-5-7 63264]
R3 O2SDRDR;O2SDRDR;C:\Windows\System32\drivers\o2sdx64.sys [2009-5-7 49696]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\System32\drivers\vwifimp.sys [2009-7-13 17920]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-5-20 393728]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 Updater Service;Updater Service;C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe [2009-10-28 240160]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2010-10-24 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-22 1493352]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-10 5434368]
S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-7-10 1255736]
S3 WSDPrintDevice;WSD Print Support via UMB;C:\Windows\System32\drivers\WSDPrint.sys [2009-7-13 23040]
S4 Greg_Service;GRegService;C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe [2009-8-28 1150496]
S4 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-8-21 135664]
S4 lxdq_device;lxdq_device;C:\Windows\system32\lxdqcoms.exe -service --> C:\Windows\system32\lxdqcoms.exe -service [?]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
=============== File Associations ===============
JSEFile=NOTEPAD.EXE %1
VBEFile=NOTEPAD.EXE %1
VBSFile=NOTEPAD.EXE %1
=============== Created Last 30 ================
2011-01-04 00:13:30 -------- d-----w- C:\Program Files (x86)\VS Revo Group
2011-01-03 18:33:21 737280 ----a-w- C:\Windows\SysWow64\d2d1.dll
2011-01-03 18:33:21 218624 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll
2011-01-03 18:33:20 899072 ----a-w- C:\Windows\System32\d2d1.dll
2011-01-03 18:33:20 320512 ----a-w- C:\Windows\System32\d3d10_1core.dll
2011-01-03 18:33:20 1844224 ----a-w- C:\Windows\System32\d3d10warp.dll
2011-01-03 18:33:20 1543168 ----a-w- C:\Windows\System32\DWrite.dll
2011-01-03 18:33:20 1172480 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2011-01-03 18:33:20 1137664 ----a-w- C:\Windows\System32\FntCache.dll
2011-01-03 18:33:20 1076224 ----a-w- C:\Windows\SysWow64\DWrite.dll
2011-01-03 18:32:45 466432 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2011-01-03 18:32:45 279552 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2011-01-03 18:32:45 229888 ----a-w- C:\Windows\System32\XpsRasterService.dll
2011-01-03 18:32:45 135168 ----a-w- C:\Windows\SysWow64\XpsRasterService.dll
2011-01-03 18:31:59 1863680 ----a-w- C:\Windows\System32\ExplorerFrame.dll
2011-01-03 18:31:58 1495040 ----a-w- C:\Windows\SysWow64\ExplorerFrame.dll
2011-01-03 18:31:06 -------- d-----w- C:\Program Files (x86)\Feedback Tool
2011-01-03 01:25:48 -------- d-----w- C:\Users\WYATT\AppData\Roaming\Malwarebytes
2011-01-03 01:24:58 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-01-03 01:24:57 -------- d-----w- C:\PROGRA~3\Malwarebytes
2011-01-03 01:24:54 24152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-01-03 01:24:54 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-12-31 14:21:05 8199504 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{7C2D7DBD-BF29-44B6-878C-62A69BF16DC4}\mpengine.dll
2010-12-30 21:32:42 -------- d-----w- C:\Users\WYATT\AppData\Local\Yahoo!
2010-12-29 22:35:34 -------- d-----w- C:\PROGRA~3\NVIDIA Corporation
2010-12-29 22:29:23 -------- d-----w- C:\Program Files\NVIDIA Corporation
2010-12-29 16:16:03 517960 ----a-w- C:\Windows\System32\XAudio2_5.dll
2010-12-29 16:16:03 515416 ----a-w- C:\Windows\SysWow64\XAudio2_5.dll
2010-12-29 16:16:00 238936 ----a-w- C:\Windows\SysWow64\xactengine3_5.dll
2010-12-29 16:16:00 176968 ----a-w- C:\Windows\System32\xactengine3_5.dll
2010-12-29 16:14:58 540688 ----a-w- C:\Windows\System32\d3dx10_38.dll
2010-12-29 16:13:59 363288 ----a-w- C:\Windows\System32\xactengine2_3.dll
2010-12-29 16:07:30 -------- d-----w- C:\Users\WYATT\AppData\Local\Downloaded Installations
2010-12-28 00:29:10 512000 ----a-w- C:\Windows\SysWow64\NV_GEF7_MMM_SS_nzone.scr
2010-12-27 19:52:57 -------- d-----w- C:\Windows\pss
2010-12-27 19:16:41 -------- d-----w- C:\NVIDIA
2010-12-26 20:29:14 -------- d-----w- C:\Program Files (x86)\Anark
2010-12-26 20:21:38 40960 ----a-w- C:\Windows\nvgffx_ss_01.exe.dll
2010-12-26 20:21:38 395708 ----a-w- C:\Windows\nvgffx_ss_01.exe.scr
2010-12-26 20:21:38 18192 ----a-w- C:\Windows\nvgffx_ss_01.exe.dat
2010-12-26 20:21:38 1588479 ----a-w- C:\Windows\nvgffx_ss_01.exe.exe
2010-12-26 19:37:43 1974616 ----a-w- C:\Windows\SysWow64\D3DCompiler_42.dll
2010-12-26 19:37:42 235344 ----a-w- C:\Windows\SysWow64\d3dx11_42.dll
2010-12-26 19:35:59 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
2010-12-26 19:24:10 -------- d-----w- C:\Users\WYATT\AppData\Roaming\NVIDIA
2010-12-23 01:35:39 177152 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\lxdqdrpp.dll
2010-12-20 18:20:46 -------- d-----w- C:\Program Files (x86)\WinPcap
2010-12-20 18:20:24 -------- d-----w- C:\Program Files (x86)\VAP11G
2010-12-20 18:13:52 -------- d-----w- C:\Users\WYATT\AppData\Roaming\JoyBits
2010-12-20 07:01:37 -------- d-----w- C:\Users\WYATT\AppData\Local\2DBoy
2010-12-20 07:01:37 -------- d-----w- C:\PROGRA~3\2DBoy
2010-12-15 20:14:57 3124224 ----a-w- C:\Windows\System32\win32k.sys
2010-12-15 20:14:55 395776 ----a-w- C:\Windows\System32\webio.dll
2010-12-15 20:14:55 314368 ----a-w- C:\Windows\SysWow64\webio.dll
2010-12-15 20:14:54 516096 ----a-w- C:\Program Files\Windows Mail\wab.exe
2010-12-15 20:14:54 516096 ----a-w- C:\Program Files (x86)\Windows Mail\wab.exe
2010-12-15 20:14:54 35328 ----a-w- C:\Program Files\Windows Mail\wabfind.dll
2010-12-15 20:14:53 112000 ----a-w- C:\Windows\System32\consent.exe
2010-12-15 18:49:30 23464 ----a-w- C:\Windows\System32\drivers\ElRawDsk.sys
2010-12-15 18:49:26 -------- d-----w- C:\iolo
2010-12-15 18:47:46 161320 ----a-r- C:\Windows\System32\drivers\amp.sys
2010-12-15 18:47:46 1404456 ----a-r- C:\Windows\System32\drivers\ampse.sys
2010-12-15 18:47:45 -------- d-----w- C:\Program Files\Common Files\Authentium
2010-12-15 18:47:45 -------- d-----w- C:\Program Files (x86)\Common Files\Authentium
2010-12-15 18:47:37 160256 ----a-w- C:\Windows\System32\iavlsp64.dll
2010-12-15 18:47:37 118784 ----a-w- C:\Windows\SysWow64\iavlsp.dll
2010-12-15 18:47:30 97928 ----a-w- C:\Windows\System32\IncContxMenu.dll
2010-12-15 18:47:30 511328 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\CAPICOM\CAPICOM.DLL
2010-12-15 18:47:28 45568 ----a-w- C:\Windows\System32\iolobtdfg.exe
2010-12-15 18:47:28 14848 ----a-w- C:\Windows\System32\smrgdf.exe
2010-12-15 18:47:28 -------- d-----w- C:\Program Files (x86)\iolo
2010-12-15 18:29:29 74703 ----a-w- C:\Windows\SysWow64\mfc45.dll
2010-12-15 18:29:04 -------- d-----w- C:\Users\WYATT\AppData\Roaming\iolo
2010-12-15 18:29:04 -------- d-----w- C:\PROGRA~3\iolo
2010-12-14 00:27:21 77824 ----a-w- C:\Windows\SysWow64\EBAPI.dll
2010-12-14 00:27:21 65536 ----a-w- C:\Windows\SysWow64\EEBUtil.dll
2010-12-14 00:27:21 55808 ----a-w- C:\Windows\SysWow64\EEBSDKIF.dll
2010-12-14 00:27:21 135168 ----a-w- C:\Windows\SysWow64\EEBAPI.dll
2010-12-14 00:27:21 110592 ----a-w- C:\Windows\SysWow64\EEBDSCVR.dll
2010-12-14 00:27:20 -------- d-----w- C:\Program Files\Common Files\EPSON
2010-12-14 00:26:16 -------- d-----w- C:\Program Files (x86)\EpsonNet
2010-12-14 00:26:00 558080 ----a-w- C:\Windows\System32\ensppmon.dll
2010-12-14 00:26:00 558080 ----a-w- C:\Windows\System32\enppmon.dll
2010-12-14 00:26:00 537600 ----a-w- C:\Windows\System32\ensppui.dll
2010-12-14 00:26:00 537600 ----a-w- C:\Windows\System32\enppui.dll
2010-12-14 00:26:00 250880 ----a-w- C:\Windows\System32\enspres.dll
2010-12-14 00:26:00 250880 ----a-w- C:\Windows\System32\enpres.dll
2010-12-14 00:25:59 -------- d-----w- C:\Program Files\EpsonNet
2010-12-14 00:25:53 -------- d-----w- C:\Program Files (x86)\Common Files\EPSON
2010-12-14 00:25:08 -------- d-----w- C:\Program Files (x86)\Epson Software
2010-12-13 19:57:34 -------- d-----r- C:\Program Files (x86)\Skype
==================== Find3M ====================
2010-12-28 00:12:07 505128 ----a-w- C:\Windows\SysWow64\msvcp71.dll
2010-12-28 00:12:07 353576 ----a-w- C:\Windows\SysWow64\msvcr71.dll
2010-11-04 03:50:28 1580368 ----a-w- C:\Windows\System32\LogiLDA.DLL
2010-11-02 05:18:17 524288 ----a-w- C:\Windows\System32\wmicmiplugin.dll
2010-11-02 05:17:38 473600 ----a-w- C:\Windows\System32\taskcomp.dll
2010-11-02 05:17:38 1169408 ----a-w- C:\Windows\System32\taskschd.dll
2010-11-02 05:16:53 1114624 ----a-w- C:\Windows\System32\schedsvc.dll
2010-11-02 05:10:47 464384 ----a-w- C:\Windows\System32\taskeng.exe
2010-11-02 05:10:32 285696 ----a-w- C:\Windows\System32\schtasks.exe
2010-11-02 04:40:36 496128 ----a-w- C:\Windows\SysWow64\taskschd.dll
2010-11-02 04:40:36 305152 ----a-w- C:\Windows\SysWow64\taskcomp.dll
2010-11-02 04:34:44 192000 ----a-w- C:\Windows\SysWow64\taskeng.exe
2010-11-02 04:34:33 179712 ----a-w- C:\Windows\SysWow64\schtasks.exe
2010-10-27 05:06:22 2048 ----a-w- C:\Windows\System32\tzres.dll
2010-10-27 04:32:36 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2010-10-20 05:20:01 46080 ----a-w- C:\Windows\System32\atmlib.dll
2010-10-20 04:54:18 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2010-10-20 03:05:46 367104 ----a-w- C:\Windows\System32\atmfd.dll
2010-10-20 02:58:41 294400 ----a-w- C:\Windows\SysWow64\atmfd.dll
2010-10-19 16:41:44 270720 ------w- C:\Windows\System32\MpSigStub.exe
2010-10-16 19:13:46 5901416 ----a-w- C:\Windows\System32\nvcpl.dll
2010-10-16 19:13:26 2590824 ----a-w- C:\Windows\System32\nvsvc64.dll
2010-10-16 19:13:26 116328 ----a-w- C:\Windows\System32\nvmctray.dll
2010-10-16 19:13:24 989800 ----a-w- C:\Windows\System32\nvvsvc.exe
2010-10-16 19:13:24 61032 ----a-w- C:\Windows\System32\nvshext.dll
2010-10-16 19:13:24 302184 ----a-w- C:\Windows\System32\nvhotkey.dll
2010-10-16 19:13:24 1881704 ----a-w- C:\Windows\System32\nvsvcr.dll
============= FINISH: 19:25:47.96 ===============


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_10-12-12.01)
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 7/10/2010 2:41:31 AM
System Uptime: 1/3/2011 2:52:51 PM (5 hours ago)
Motherboard: Gateway | | Godzilla-N10
Processor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz | U2E1 | 2534/266mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 454 GiB total, 388.882 GiB free.
D: is CDROM ()
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP172: 1/3/2011 12:31:39 PM - Windows Update
RP173: 1/3/2011 12:32:32 PM - Windows Update
RP174: 1/3/2011 12:33:08 PM - Windows Update
RP175: 1/3/2011 12:33:44 PM - Windows Update
RP176: 1/3/2011 6:14:57 PM - Revo Uninstaller's restore point - Yahoo! Toolbar
RP177: 1/3/2011 6:18:45 PM - Revo Uninstaller's restore point - The Sims™ 3
RP178: 1/3/2011 6:19:14 PM - Removed The Sims 3
RP179: 1/3/2011 6:23:29 PM - Revo Uninstaller's restore point - Western Railway NV 3D Screensaver 2.0
RP180: 1/3/2011 6:25:20 PM - Revo Uninstaller's restore point - Cascades demo by NVIDIA (remove only)
RP181: 1/3/2011 6:29:01 PM - Revo Uninstaller's restore point - Symantec Technical Support Web Controls
RP182: 1/3/2011 6:29:16 PM - Removed Symantec Technical Support Web Controls
RP183: 1/3/2011 6:30:13 PM - Revo Uninstaller's restore point - Conduit Engine
RP184: 1/3/2011 6:33:46 PM - Revo Uninstaller's restore point - John Deere Drive Green
RP185: 1/3/2011 6:34:26 PM - Removed John Deere Drive Green
RP186: 1/3/2011 6:37:49 PM - Revo Uninstaller's restore point - NV_GEF7_MMM_SS_nzone Screen Saver
RP187: 1/3/2011 6:38:39 PM - Revo Uninstaller's restore point - theHunter-Launcher (remove only)
RP188: 1/3/2011 6:40:27 PM - Revo Uninstaller's restore point - SimTractor 4.1
RP189: 1/3/2011 6:45:37 PM - Revo Uninstaller's restore point - NVIDIA Screen Saver 1.2
RP190: 1/3/2011 6:46:25 PM - Revo Uninstaller's restore point - Farming Simulator 2011 Demo
RP191: 1/3/2011 6:50:24 PM - Revo Uninstaller's restore point - profilesong Toolbar
RP192: 1/3/2011 6:53:55 PM - Revo Uninstaller's restore point - WildTangent Games
RP193: 1/3/2011 6:54:10 PM - Revo Uninstaller's restore point - WildTangent Games
RP194: 1/3/2011 6:59:01 PM - Revo Uninstaller's restore point - Yahoo! Software Update
RP195: 1/3/2011 7:00:33 PM - Revo Uninstaller's restore point - WildTangent Games App
RP196: 1/3/2011 7:02:02 PM - Revo Uninstaller's restore point - NVIDIA Supersonic Sled demo
==== Installed Programs ======================
2007 Microsoft Office Suite Service Pack 2 (SP2)
Acrobat.com
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Reader 9.1 MUI
Adobe Shockwave Player 11.5
AudibleManager
Bigfoot: Chasing Shadows
Bus Driver
Compatibility Pack for the 2007 Office system
CyberLink Power2Go
CyberLink PowerDVD 8
D3DX10
eBay Worldwide
Eighteen Wheels of Steel Extreme Trucker
Epson FAX Utility
Epson PC-FAX Driver
EPSON Scan
EpsonNet Setup 3.2
Farming Simulator
Feedback Tool
FlightGear v1.9.0
Gateway Games
Gateway InfoCentre
Gateway Power Management
Gateway Recovery Management
Gateway Registration
Gateway Updater
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
Identity Card
Internet TV for Windows Media Center
iolo technologies' System Mechanic Professional
Java Auto Updater
Java(TM) 6 Update 22
Junk Mail filter update
Malwarebytes' Anti-Malware
Marvell Miniport Driver
Mesh Runtime
Messenger Companion
Microsoft Flight Simulator X
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Works
Microsoft WSE 3.0 Runtime
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
Next Generation Visualisations
NVIDIA PhysX
OpenAL
Realtek High Definition Audio Driver
Revo Uninstaller 1.91
Roblox for WYATT
Search Toolbar
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2289158)
Security Update for 2007 Microsoft Office System (KB2344875)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft Office Excel 2007 (KB2345035)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB982158)
Security Update for Microsoft Office PowerPoint Viewer (KB2413381)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Skype Toolbars
Skype™ 5.0
System Requirements Lab
Tasty Planet
The Office
The Wonderful End of the World
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VAP11G
Video Web Camera
Welcome Center
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Center Add-in for Flash
WinPcap 4.1.1
Yahoo! BrowserPlus 2.9.8
==== Event Viewer Messages From Past Week ========
12/30/2010 3:39:11 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D3DCB472-7261-43CE-924B-0704BD730D5F} and APPID {D3DCB472-7261-43CE-924B-0704BD730D5F} to the user WYATT-PC\WYATT SID (S-1-5-21-15924718-3500599329-1563945707-1001) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
12/30/2010 3:39:11 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {145B4335-FE2A-4927-A040-7C35AD3180EF} and APPID {145B4335-FE2A-4927-A040-7C35AD3180EF} to the user WYATT-PC\WYATT SID (S-1-5-21-15924718-3500599329-1563945707-1001) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
12/27/2010 6:39:41 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.
12/27/2010 4:21:16 PM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
12/27/2010 2:09:41 PM, Error: Service Control Manager [7001] - The iolo System Service service depends on the vseamps service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
12/27/2010 2:06:17 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service ioloSystemService with arguments "" in order to run the server: {40310869-27A4-42B1-8AAD-E4CEFB3BE286}
1/3/2011 9:06:53 AM, Error: Service Control Manager [7022] - The iolo System Service service hung on starting.
1/3/2011 8:59:53 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Works 9 (KB2431831).
1/3/2011 8:57:58 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.
1/3/2011 2:54:18 PM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} and APPID {344ED43D-D086-4961-86A6-1106F4ACAD9B} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
1/3/2011 2:53:22 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: FileDisk
==== End Of File ===========================

RAN GMER AND COPY DIDN'T WORK. RAN AGAIN AND COMPUTER BLUE SCREENED. I FOLLOWED DIRECTIONS TO THE BEST OF MY ABILITY. I AM A GOOD COMPUTER USER, BUT I CANNOT DEFEAT THIS. IT HAS GOTTEN EVERY COMPUTER IN MY HOUSE. I GUESS IT IS A ROOTKIT VIRUS. MY DAUGHTER SAID HER COMPUTER IDENTIFIED IT AS "GTK" OR SOME SIMILAR THREE LETTER CONFIGURATION WITH A "K" IN IT.:eek::eek:
ALSO, I HAVE ALREADY TAKEN FACEBOOK OFF AS HIS HOMEPAGE, OR AM SUPPOSED TO HAVE!
 

Attachments

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Top