Rootkit

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

paininzeeback

Thread Starter
Joined
Dec 22, 2010
Messages
3
Hi everyone. I am new here. You guys are the greatest for doing what you do and I am so grateful for you. I have several computers (2 are older and they are going to be given to friends) that all seem to be infected with something. Three of them were networked together and they are the ones I am most concerned about right now. Yes, I am one of the idiots that you can all laugh at. I clicked on a link in an email from a friend. I know better. I have known not to do that for many years. I guess the only excuse I have is that I have had chronic pain for several years and the meds have made me brain dead.
Whatever this is, it has ended up with higher permissions that I do. I am not allowed to delete or uninstall certain things. I am not allowed to make changes to my firewall and this "thing" has given it permission to have many ports open. It seems to involve many files from my HP fax and copier. Many files from my media player which I do not even use. Apple Mobile which I have never used. I am desperate. I do know that if someone is able to start helping me that I am not to make any changes without them directing me to. I would be so grateful for any help I can get.
I will start with this machine.

It is a Compaq Presario CQ5300F
It is a 64 bit operating system
It runs Windows 7 Home Premium.

I am NOT great with computers.

Thank you in advance for any help I can get.

Leah
 
Joined
Apr 7, 2010
Messages
166
Hi paininzeeback, welcome to the forum.


To make cleaning this machine easier
  • Please do not uninstall/install any programs unless asked to
    It is more difficult when files/programs are appearing in/disappearing from the logs.
  • Please do not run any scans other than those requested
  • Please follow all instructions in the order posted
  • All logs/reports, etc.. must be posted in Notepad. Please ensure that word wrap is unchecked. In notepad click format, uncheck word wrap if it is checked.
  • Do not attach any logs/reports, etc.. unless specifically requested to do so.
  • If you have problems with or do not understand the instructions, Please ask before continuing.
  • Please stay with this thread until given the All Clear. A absence of symptoms does not mean a clean machine.
We will work on one computer at a time. Any fixes posted here will be specific to that computer only. Even if the symptoms are similar on each computer the infection and treatment may be different.

To ensure that the infection doesn't spread or the computer keeps getting reinfected, please disconnect all other computers from the network. Once this computer is clean we will disconnect it and work on another one.


Please download DDS and save it to your desktop.
  • Disable any script blocking protection
  • Right click dds.scr and select "Run as Administrator" to run the tool.
  • When done, DDS.txt will open.An additional log called Attach.txt should appear minimized on the task bar.
  • Save both reports to your desktop before closing the DDS window.

Next

Please download MBRCheck.exe to your desktop.
  • Be sure to disable your security programs
  • Double click on the file to run it (Vista and Windows 7 users will have to confirm the UAC prompt)
  • A window will open on your desktop
  • if an unknown bootcode is found you will have further options available to you, at this time press N then press Enter twice.
  • If nothing unusual is found just press Enter
  • A .txt file named MBRCheck_mm.dd.yy_hh.mm.ss should appear on your desktop.
  • Please post the contents of that file.


Please post back with
  • DDS.txt
  • Attach.txt
  • MBRCheck log
Please descibe the symptoms as best as you can.


Thanks
 

paininzeeback

Thread Starter
Joined
Dec 22, 2010
Messages
3
Hi

Do you still need help with this?

Thanks


I am so sorry. I have been really sick. I have not even been on the computer. I am going to print out the instructions and do this tomorrow when my helper is here. Thank you so much in advance for your help. I found out this evening that I have that stupid not-a-virus virus.
 

paininzeeback

Thread Starter
Joined
Dec 22, 2010
Messages
3
DDS (Ver_10-12-12.02) - NTFS_AMD64
Run by leah at 7:57:40.64 on Tue 01/18/2011
Internet Explorer: 9.0.7930.16406 BrowserJavaVersion: 1.6.0_23

============== Running Processes ===============

C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDFME\WDFME.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Users\leah\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
C:\Windows\sysWow64\SearchProtocolHost.exe
C:\Users\leah\Desktop\dds.scr
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt

============== Pseudo HJT Report ===============

uStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: UrlSearchHook Class: {00000000-6e41-4fd3-8538-502f5495e5fc} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
mWinlogon: Userinit=userinit.exe
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~2\SDHelper.dll
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO: Big Fish Games Toolbar: {c7c9fc25-88b0-4682-9c9f-2608e9117647} - C:\Program Files (x86)\BfgBar\bfg.dll
BHO: MSN Toolbar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0380.1\npwinext.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: FilterBHO Class: {e33cf602-d945-461a-83f0-819f76a199f8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: MSN Toolbar: {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0380.1\npwinext.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Big Fish Games Toolbar: {c7c9fc25-88b0-4682-9c9f-2608e9117647} - C:\Program Files (x86)\BfgBar\bfg.dll
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [Google Update] "C:\Users\leah\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy2\TeaTimer.exe
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
mRun: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
mRun: [<NO NAME>]
mRun: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
mRun: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
mRun: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe"
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {4248FE82-7FCB-46AC-B270-339F08212110} - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~2\SDHelper.dll
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/production/ieawsdc32.cab
DPF: {106E49CF-797A-11D2-81A2-00E02C015623} - hxxp://www.alternatiff.com/install-ie/alttiff.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs: C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll
BHO-X64: IEVkbdBHO Class: {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\ievkbd.dll
BHO-X64: IEVkbdBHO - No File
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: FilterBHO Class: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll
BHO-X64: link filter bho - No File
TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File
mRun-x64: [IntelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"
mRun-x64: [itype] "c:\Program Files\Microsoft IntelliType Pro\itype.exe"
AppInit_DLLs-X64: C:\PROGRA~2\KASPER~1\KASPER~1\x64\sbhook64.dll
Hosts: 127.0.0.1 www.spywareinfo.com

================= FIREFOX ===================

FF - ProfilePath - C:\Users\leah\AppData\Roaming\Mozilla\Firefox\Profiles\347go6wg.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://www.msn.com/
FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=WBV5&o=14540&locale=en_US&apn_uid=98B83D72-4296-40F1-85FA-168462220846&apn_ptnrs=WK&apn_sauid=2AC52455-9C49-46B5-B397-530476665C0E&apn_dtid=YYYYYYYYUS&q=
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
FF - plugin: C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0380.1\npwinext.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\leah\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: C:\Users\leah\AppData\Roaming\Move Networks\plugins\npqmp071706000001.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - Ext: ASnumber: [email protected] - %profile%\extensions\[email protected]
FF - Ext: Autofill Forms: [email protected] - %profile%\extensions\[email protected]
FF - Ext: DNSSEC Validator: [email protected] - %profile%\extensions\[email protected]
FF - Ext: NTLMAuth for Firefox: [email protected] - %profile%\extensions\[email protected]
FF - Ext: Ask Toolbar: [email protected] - %profile%\extensions\[email protected]
FF - Ext: ColorfulTabs: {0545b830-f0aa-4d7e-8820-50a4629a56fe} - %profile%\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
FF - Ext: Flagfox: {1018e4d6-728f-4b20-ad56-37578a4de76b} - %profile%\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
FF - Ext: IE Tab 2 (FF 3.6+): {1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} - %profile%\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
FF - Ext: US Department of Homeland Insecurity Idiocy Level: {33d38acc-1742-4583-b7c2-4122c1150b1f} - %profile%\extensions\{33d38acc-1742-4583-b7c2-4122c1150b1f}
FF - Ext: MapQuest Toolbar: {4D1E692F-D179-413b-A987-EEEAAD85DDB3} - %profile%\extensions\{4D1E692F-D179-413b-A987-EEEAAD85DDB3}
FF - Ext: Google Shortcuts: {5C46D283-ABDE-4dce-B83C-08881401921C} - %profile%\extensions\{5C46D283-ABDE-4dce-B83C-08881401921C}
FF - Ext: Speed Dial: {64161300-e22b-11db-8314-0800200c9a66} - %profile%\extensions\{64161300-e22b-11db-8314-0800200c9a66}
FF - Ext: Big Fish Games Toolbar: {6847DFAE-037A-400c-A524-27F0A281B692} - %profile%\extensions\{6847DFAE-037A-400c-A524-27F0A281B692}
FF - Ext: Surf Canyon - Search Engine Assistant: {75623d5d-4683-402a-b610-ac4bab767c86} - %profile%\extensions\{75623d5d-4683-402a-b610-ac4bab767c86}
FF - Ext: WOT: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} - %profile%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF - Ext: LinkExtend: {cf47767d-5f3a-4e32-9fce-5d79565c9702} - %profile%\extensions\{cf47767d-5f3a-4e32-9fce-5d79565c9702}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: BetterPrivacy: {d40f5e7b-d2cf-4856-b441-cc613eeffbe3} - %profile%\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}
FF - Ext: Tab Mix Plus: {dc572301-7619-498c-a57d-39143191b318} - %profile%\extensions\{dc572301-7619-498c-a57d-39143191b318}
FF - Ext: FoxTab: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a} - %profile%\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}
FF - Ext: HP Smart Web Printing: [email protected] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF - Ext: HP Smart Web Printing: [email protected] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF - Ext: Move Media Player: [email protected] - C:\Users\leah\AppData\Roaming\Move Networks

---- FIREFOX POLICIES ----
FF - user.js: network.protocol-handler.warn-external.dnupdate - false
============= SERVICES / DRIVERS ===============

R? athur;Atheros AR9271 Wireless Network Adapter Service
R? BVRPMPR5a64;BVRPMPR5a64 NDIS Protocol Driver
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64
R? gupdate;Google Update Service (gupdate)
R? ivusb;Initio Driver for USB Default Controller
R? SBSDWSCService;SBSD Security Center Service
R? WatAdminSvc;Windows Activation Technologies Service
R? WDC_SAM;WD SCSI Pass Thru driver
R? wlcrasvc;Windows Live Mesh remote connections service
S? !SASCORE;SAS Core Service
S? AVP;Kaspersky Anti-Virus Service
S? cvhsvc;Client Virtualization Handler
S? kl2;kl2
S? KLIM6;Kaspersky Anti-Virus NDIS 6 Filter
S? klmouflt;Kaspersky Lab KLMOUFLT
S? osppsvc;Office Software Protection Platform
S? SASDIFSV;SASDIFSV
S? SASKUTIL;SASKUTIL
S? Sftfs;Sftfs
S? sftlist;Application Virtualization Client
S? Sftplay;Sftplay
S? Sftredir;Sftredir
S? Sftvol;Sftvol
S? sftvsa;Application Virtualization Service Agent
S? vwififlt;Virtual WiFi Filter Driver
S? WDDMService;WDDMService
S? WDFME;WD File Management Engine
S? WDSC;WD File Management Shadow Engine

=============== Created Last 30 ================

2011-01-14 16:32:01 109240 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected]\components\abhelperxpcom.dll
2011-01-14 16:31:57 150200 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected]\components\kavlinkfilter.dll
2011-01-14 16:30:08 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
2011-01-14 16:30:07 -------- d-----w- C:\PROGRA~3\Kaspersky Lab
2011-01-14 08:05:01 8199504 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{9A353F11-3030-4C4A-A9D2-0A214E573BC2}\mpengine.dll
2011-01-13 15:02:07 -------- d-sh--w- C:\Windows\SysWow64\%APPDATA%
2011-01-04 19:58:57 -------- d-----w- C:\PROGRA~3\Kaspersky Lab Setup Files
2011-01-04 19:35:33 -------- d-----w- C:\Program Files (x86)\ESET
2011-01-04 17:43:46 189520 ----a-w- C:\Windows\SysWow64\drivers\tmcomm.sys
2010-12-30 15:34:19 -------- d-----w- C:\Users\leah\AppData\Roaming\Safer Networking
2010-12-30 15:33:38 -------- d-----w- C:\Program Files (x86)\Safer Networking
2010-12-30 04:57:56 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy2
2010-12-30 03:00:58 -------- d-----w- C:\Users\leah\AppData\Local\Apps
2010-12-29 21:49:43 -------- d-----w- C:\PROGRA~3\Trend Micro
2010-12-29 17:33:35 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2010-12-29 17:33:35 -------- d-----w- C:\PROGRA~3\Spybot - Search & Destroy
2010-12-29 17:05:58 -------- d-----w- C:\Users\leah\AppData\Roaming\SUPERAntiSpyware.com
2010-12-29 17:05:58 -------- d-----w- C:\PROGRA~3\SUPERAntiSpyware.com
2010-12-29 17:05:46 -------- d-----w- C:\PROGRA~3\!SASCORE
2010-12-29 17:05:41 -------- d-----w- C:\Program Files\SUPERAntiSpyware

==================== Find3M ====================

2010-12-02 22:13:42 37376 ----a-w- C:\Windows\SysWow64\libusb0.dll
2010-11-29 22:42:06 24152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2010-11-12 23:53:06 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2010-11-09 03:55:57 1502208 ----a-w- C:\Windows\System32\inetcpl.cpl
2010-11-09 03:52:06 2381824 ----a-w- C:\Windows\System32\mshtml.tlb
2010-11-02 05:21:51 982912 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2010-11-02 05:18:59 662528 ----a-w- C:\Windows\System32\XpsPrint.dll
2010-11-02 05:18:59 229888 ----a-w- C:\Windows\System32\XpsRasterService.dll
2010-11-02 05:18:58 470016 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2010-11-02 05:18:33 1137664 ----a-w- C:\Windows\System32\FntCache.dll
2010-11-02 05:18:17 524288 ----a-w- C:\Windows\System32\wmicmiplugin.dll
2010-11-02 05:18:05 1544192 ----a-w- C:\Windows\System32\DWrite.dll
2010-11-02 05:17:48 320512 ----a-w- C:\Windows\System32\d3d10_1core.dll
2010-11-02 05:17:48 1837568 ----a-w- C:\Windows\System32\d3d10warp.dll
2010-11-02 05:17:47 902656 ----a-w- C:\Windows\System32\d2d1.dll
2010-11-02 05:17:47 197120 ----a-w- C:\Windows\System32\d3d10_1.dll
2010-11-02 05:17:38 473600 ----a-w- C:\Windows\System32\taskcomp.dll
2010-11-02 05:17:38 1169408 ----a-w- C:\Windows\System32\taskschd.dll
2010-11-02 05:16:53 1114624 ----a-w- C:\Windows\System32\schedsvc.dll
2010-11-02 05:10:47 464384 ----a-w- C:\Windows\System32\taskeng.exe
2010-11-02 05:10:32 285696 ----a-w- C:\Windows\System32\schtasks.exe
2010-11-02 04:59:08 144384 ----a-w- C:\Windows\System32\cdd.dll
2010-11-02 04:41:36 442880 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2010-11-02 04:41:36 283648 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2010-11-02 04:41:36 135168 ----a-w- C:\Windows\SysWow64\XpsRasterService.dll
2010-11-02 04:40:36 496128 ----a-w- C:\Windows\SysWow64\taskschd.dll
2010-11-02 04:40:36 305152 ----a-w- C:\Windows\SysWow64\taskcomp.dll
2010-11-02 04:34:44 192000 ----a-w- C:\Windows\SysWow64\taskeng.exe
2010-11-02 04:34:33 179712 ----a-w- C:\Windows\SysWow64\schtasks.exe
2010-11-02 04:26:00 1076736 ----a-w- C:\Windows\SysWow64\DWrite.dll
2010-11-02 04:25:43 218624 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll
2010-11-02 04:25:43 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2010-11-02 04:25:43 1170944 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2010-11-02 04:25:42 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2010-11-02 02:50:58 258048 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2010-11-01 23:03:02 1448448 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2010-11-01 22:59:07 2381824 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2010-10-27 05:06:22 2048 ----a-w- C:\Windows\System32\tzres.dll
2010-10-27 04:32:36 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

============= FINISH: 8:05:14.71 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-12-12.02)

Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 4/11/2010 7:50:53 AM
System Uptime: 1/18/2011 7:17:54 AM (1 hours ago)

Motherboard: PEGATRON CORPORATION | | NARRA5
Processor: AMD Sempron(tm) Processor LE-1300 | Socket AM2 | 2300/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 288 GiB total, 219.765 GiB free.
D: is FIXED (NTFS) - 10 GiB total, 1.439 GiB free.
E: is CDROM ()

==== Disabled Device Manager Items =============

Class GUID: {4d36e96f-e325-11ce-bfc1-08002be10318}
Description: PS/2 Compatible Mouse
Device ID: ACPI\PNP0F13\4&B9170E1&0
Manufacturer: Microsoft
Name: PS/2 Compatible Mouse
PNP Device ID: ACPI\PNP0F13\4&B9170E1&0
Service: i8042prt

Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Description: Photosmart C309a series
Device ID: ROOT\IMAGE\0000
Manufacturer: HP
Name: Photosmart C309a series
PNP Device ID: ROOT\IMAGE\0000
Service: StillCam

Class GUID:
Description: Photosmart C309a series
Device ID: ROOT\MULTIFUNCTION\0000
Manufacturer:
Name: Photosmart C309a series
PNP Device ID: ROOT\MULTIFUNCTION\0000
Service:

Class GUID: {4d36e971-e325-11ce-bfc1-08002be10318}
Description: Photosmart C309a series
Device ID: ROOT\MULTIFUNCTION\0001
Manufacturer: HP
Name: Photosmart C309a series
PNP Device ID: ROOT\MULTIFUNCTION\0001
Service:

==== System Restore Points ===================

RP154: 12/29/2010 5:41:44 PM - Installed NETGEAR WNA1100 wireless USB 2.0 adapter
RP155: 12/29/2010 10:04:48 PM - Removed NETGEAR WNA1100 wireless USB 2.0 adapter
RP156: 12/30/2010 9:20:29 AM - Installed Adobe Reader X.
RP157: 1/5/2011 12:43:21 PM - Windows Update
RP158: 1/13/2011 9:05:15 AM - Windows Update
RP159: 1/13/2011 10:00:30 AM - Windows Update
RP160: 1/13/2011 12:36:35 PM - Installed Adobe Reader X.
RP161: 1/14/2011 3:04:02 AM - Windows Update
RP162: 1/14/2011 10:36:24 AM - Removed Norton Online Backup
RP163: 1/14/2011 10:37:57 AM - Removed Norton Online Backup
RP164: 1/14/2011 11:28:43 AM - Installed Kaspersky Internet Security 2011.
RP165: 1/16/2011 8:45:05 PM - Removed WD SmartWare
RP166: 1/16/2011 8:58:22 PM - Removed WD Software Upgrader

==== Installed Programs ======================


Acrobat.com
ActiveCheck component for HP Active Support Library
Adobe AIR
Adobe Digital Editions
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader X
Amazing Heists: Dillinger
Apple Application Support
Apple Software Update
Ask Toolbar
Avanquest update
Big Fish Games Toolbar 2.0
Big Fish Games: Game Manager
BufferChm
Business Card Factory Deluxe 3.0
C309a
Cisco Connect
Compatibility Pack for the 2007 Office system
Crystal Reports 2008 Runtime SP1
CyberLink DVD Suite Deluxe
D3DX10
Definition update for Microsoft Office 2010 (KB982726)
Destinations
DeviceDiscovery
DirectX for Managed Code Update (Summer 2004)
DocProc
Download Updater (AOL LLC)
Dream Day True Love
ESET Online Scanner v3
Fax
Feedback Tool
Flock (2.6.1)
Garmin Communicator Plugin
Garmin USB Drivers
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
GPBaseService2
HP Advisor
HP Customer Experience Enhancements
HP Games
HP Odometer
HP Remote Solution
HP Setup
HP Support Assistant
HP Support Information
HP Update
HPAsset component for HP Active Support Library
HPPhotoGadget
HPPhotoSmartDiscLabel_PaperLabel
HPPhotoSmartDiscLabel_PrintOnDisc
HPPhotoSmartDiscLabelContent1
hpphotosmartdisclabelplugin
HPPhotosmartEssential
HPProductAssistant
HPSSupply
iSEEK AnswerWorks English Runtime
Java Auto Updater
Java(TM) 6 Update 23
Junk Mail filter update
Kaspersky Internet Security 2011
Kobo
LabelPrint
LightScribe System Software
Love Story: Letters from the Past
MarketResearch
Mesh Runtime
Messenger Companion
Microsoft Default Manager
Microsoft Live Search Toolbar
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Click-to-Run 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Home and Student 2010
Microsoft Office Home and Student 2010 - English
Microsoft Office Live Add-in 1.5
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook 2010
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Single Image 2010
Microsoft Office Word MUI (English) 2010
Microsoft Outlook 2010
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SOAP Toolkit 3.0
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Works
Move Media Player
Mozilla Firefox (3.6.13)
MSN Toolbar
MSN Toolbar Platform
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 Parser and SDK
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB973685)
Mystery Case Files: Huntsville ™
Mystery Case Files: Prime Suspects ™
PictureMover
Power2Go
PowerDirector
PS_AIO_05_C309_Software_Min
QuickTime
Realtek High Definition Audio Driver
Recovery Manager
RegAlyzer
Safari
Scan
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft Office 2010 (KB2289078)
Security Update for Microsoft Office 2010 (KB2289161)
Security Update for Microsoft Publisher 2010 (KB2409055)
Security Update for Microsoft Word 2010 (KB2345000)
SmartWebPrinting
SolutionCenter
Spybot - Search & Destroy
Status
Toolbox
TrayApp
TurboTax 2009
TurboTax 2009 wgaiper
TurboTax 2009 WinPerFedFormset
TurboTax 2009 WinPerReleaseEngine
TurboTax 2009 WinPerTaxSupport
TurboTax 2009 wrapper
UnloadSupport
Update for Microsoft Office 2010 (KB2202188)
Update for Microsoft Office 2010 (KB2413186)
Update for Microsoft OneNote 2010 (KB2433299)
Update for Microsoft Outlook Social Connector (KB2289116)
WebReg
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources

==== Event Viewer Messages From Past Week ========

1/18/2011 7:25:40 AM, Error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
1/18/2011 7:25:39 AM, Error: Service Control Manager [7031] - The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
1/18/2011 7:25:27 AM, Error: Service Control Manager [7034] - The SBSD Security Center Service service terminated unexpectedly. It has done this 1 time(s).
1/18/2011 7:25:00 AM, Error: Service Control Manager [7034] - The LightScribeService Direct Disc Labeling Service service terminated unexpectedly. It has done this 1 time(s).
1/18/2011 7:20:38 AM, Error: Service Control Manager [7000] - The Intuit Update Service service failed to start due to the following error: The system cannot find the file specified.
1/17/2011 2:50:38 PM, Error: Service Control Manager [7034] - The iPod Service service terminated unexpectedly. It has done this 1 time(s).
1/17/2011 2:48:57 PM, Error: Service Control Manager [7034] - The WD File Management Shadow Engine service terminated unexpectedly. It has done this 1 time(s).
1/17/2011 2:48:50 PM, Error: Service Control Manager [7034] - The WD File Management Engine service terminated unexpectedly. It has done this 1 time(s).
1/17/2011 2:48:40 PM, Error: Service Control Manager [7034] - The WDDMService service terminated unexpectedly. It has done this 1 time(s).

==== End Of File ===========================
MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 64-bit
Base Board Manufacturer: PEGATRON CORPORATION
BIOS Manufacturer: Phoenix Technologies, LTD
System Manufacturer: Compaq-Presario
System Product Name: AY026AA-ABA CQ5300F
Logical Drives Mask: 0x0001001c

Kernel Drivers (total 196):
0x02A4B000 \SystemRoot\system32\ntoskrnl.exe
0x02A02000 \SystemRoot\system32\hal.dll
0x00BC2000 \SystemRoot\system32\kdcom.dll
0x00C9B000 \SystemRoot\system32\mcupdate_AuthenticAMD.dll
0x00CA8000 \SystemRoot\system32\PSHED.dll
0x00CBC000 \SystemRoot\system32\CLFS.SYS
0x00D1A000 \SystemRoot\system32\CI.dll
0x00E3C000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00EE0000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00EEF000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x00F46000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x00F4F000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x00F59000 \SystemRoot\system32\DRIVERS\pci.sys
0x00F8C000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x00F99000 \SystemRoot\System32\drivers\partmgr.sys
0x00FAE000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x00C00000 \SystemRoot\System32\drivers\volmgrx.sys
0x00FC3000 \SystemRoot\System32\drivers\mountmgr.sys
0x00C5C000 \SystemRoot\system32\DRIVERS\nvstor64.sys
0x01024000 \SystemRoot\system32\DRIVERS\storport.sys
0x01086000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x01091000 \SystemRoot\system32\drivers\fltmgr.sys
0x010DD000 \SystemRoot\system32\drivers\fileinfo.sys
0x0123E000 \SystemRoot\System32\Drivers\Ntfs.sys
0x010F1000 \SystemRoot\System32\Drivers\msrpc.sys
0x013E1000 \SystemRoot\System32\Drivers\ksecdd.sys
0x0114F000 \SystemRoot\System32\Drivers\cng.sys
0x01200000 \SystemRoot\System32\drivers\pcw.sys
0x01211000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x0149A000 \SystemRoot\system32\drivers\ndis.sys
0x0158C000 \SystemRoot\system32\drivers\NETIO.SYS
0x01400000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x01603000 \SystemRoot\System32\drivers\tcpip.sys
0x0142B000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x018FC000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x01948000 \SystemRoot\System32\Drivers\spldr.sys
0x01950000 \SystemRoot\System32\drivers\rdyboost.sys
0x0198A000 \SystemRoot\System32\Drivers\mup.sys
0x01A83000 \SystemRoot\system32\DRIVERS\kl1.sys
0x021E2000 \SystemRoot\System32\drivers\hwpolicy.sys
0x01A00000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x01A3A000 \SystemRoot\system32\DRIVERS\disk.sys
0x01A50000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x01800000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x0182A000 \SystemRoot\system32\DRIVERS\klif.sys
0x018C0000 \SystemRoot\System32\Drivers\Null.SYS
0x021F9000 \SystemRoot\System32\Drivers\Beep.SYS
0x018C9000 \SystemRoot\System32\drivers\vga.sys
0x018D7000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x01475000 \SystemRoot\System32\drivers\watchdog.sys
0x01485000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x0148E000 \SystemRoot\system32\drivers\rdpencdd.sys
0x015EC000 \SystemRoot\system32\drivers\rdprefmp.sys
0x015F5000 \SystemRoot\System32\Drivers\Msfs.SYS
0x0121B000 \SystemRoot\System32\Drivers\Npfs.SYS
0x011C2000 \SystemRoot\system32\DRIVERS\tdx.sys
0x0122C000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x019F8000 \SystemRoot\system32\DRIVERS\kl2.sys
0x0340C000 \SystemRoot\system32\drivers\afd.sys
0x03496000 \SystemRoot\System32\DRIVERS\netbt.sys
0x034DB000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x034E4000 \SystemRoot\system32\DRIVERS\pacer.sys
0x0350A000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x03520000 \SystemRoot\system32\DRIVERS\klim6.sys
0x03529000 \SystemRoot\system32\DRIVERS\netbios.sys
0x03538000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x03553000 \SystemRoot\system32\DRIVERS\termdd.sys
0x03567000 \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
0x03571000 \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
0x0357B000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x035CC000 \SystemRoot\system32\drivers\nsiproxy.sys
0x035D8000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x035E3000 \SystemRoot\System32\drivers\discache.sys
0x011E0000 \SystemRoot\System32\Drivers\dfsc.sys
0x01000000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x00E00000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x00FDD000 \SystemRoot\system32\DRIVERS\amdk8.sys
0x00DDA000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x01011000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x00E26000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x03400000 \SystemRoot\system32\DRIVERS\usbohci.sys
0x0425B000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x042B1000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x042C2000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x042E6000 \SystemRoot\system32\DRIVERS\nvmf6264.sys
0x04338000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x03E47000 \SystemRoot\system32\DRIVERS\agrsm64.sys
0x03F79000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x03F7B000 \SystemRoot\system32\drivers\modem.sys
0x0F895000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x105CE000 \SystemRoot\system32\DRIVERS\nvBridge.kmd
0x046E4000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x04600000 \SystemRoot\System32\drivers\dxgmms1.sys
0x04646000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x04656000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x0466C000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x04690000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x0469C000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x047D8000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x105D0000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x0F800000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x047F3000 \SystemRoot\system32\DRIVERS\swenum.sys
0x0F81A000 \SystemRoot\system32\DRIVERS\ks.sys
0x046CB000 \SystemRoot\system32\DRIVERS\umbus.sys
0x03F8A000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x0F85D000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x04876000 \SystemRoot\system32\drivers\RTKVHD64.sys
0x04AD3000 \SystemRoot\system32\drivers\portcls.sys
0x04B10000 \SystemRoot\system32\drivers\drmk.sys
0x04B32000 \SystemRoot\system32\drivers\ksthunk.sys
0x04B38000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x04B55000 \SystemRoot\system32\DRIVERS\dc3d.sys
0x04B67000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x04B70000 \SystemRoot\system32\DRIVERS\usbscan.sys
0x04B81000 \SystemRoot\system32\DRIVERS\usbprint.sys
0x04B8D000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x04B9B000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x04BB4000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x04BC2000 \SystemRoot\system32\DRIVERS\NuidFltr.sys
0x04BCE000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x04BDB000 \SystemRoot\system32\DRIVERS\point64.sys
0x04BEB000 \SystemRoot\system32\DRIVERS\klmouflt.sys
0x04800000 \SystemRoot\System32\Drivers\crashdmp.sys
0x0480E000 \SystemRoot\System32\Drivers\dump_diskdump.sys
0x04818000 \SystemRoot\System32\Drivers\dump_nvstor64.sys
0x04857000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x00040000 \SystemRoot\System32\win32k.sys
0x0486A000 \SystemRoot\System32\drivers\Dxapi.sys
0x0F872000 \SystemRoot\system32\DRIVERS\monitor.sys
0x005A0000 \SystemRoot\System32\TSDDD.dll
0x006C0000 \SystemRoot\System32\cdd.dll
0x00920000 \SystemRoot\System32\ATMFD.DLL
0x03E00000 \SystemRoot\system32\drivers\luafv.sys
0x04BF5000 \SystemRoot\system32\DRIVERS\Sftvollh.sys
0x03E23000 \SystemRoot\system32\drivers\WudfPf.sys
0x0F880000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x04345000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x03FE4000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x04398000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x032D9000 \SystemRoot\system32\drivers\HTTP.sys
0x033A1000 \SystemRoot\system32\DRIVERS\bowser.sys
0x033BF000 \SystemRoot\System32\drivers\mpsdrv.sys
0x03200000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x0322D000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x0327B000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x040FB000 \SystemRoot\system32\drivers\peauth.sys
0x041A1000 \SystemRoot\System32\Drivers\secdrv.SYS
0x04000000 \SystemRoot\system32\DRIVERS\Sftfslh.sys
0x041AC000 \SystemRoot\system32\DRIVERS\Sftplaylh.sys
0x040B7000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x040E4000 \SystemRoot\System32\drivers\tcpipreg.sys
0x05676000 \SystemRoot\System32\DRIVERS\srv2.sys
0x056DD000 \SystemRoot\System32\DRIVERS\srv.sys
0x05773000 \SystemRoot\system32\DRIVERS\Sftredirlh.sys
0x057EF000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0x76ED0000 \Windows\System32\ntdll.dll
0x47CE0000 \Windows\System32\smss.exe
0xFF1F0000 \Windows\System32\apisetschema.dll
0xFF100000
 
Joined
Apr 7, 2010
Messages
166
Hi paininzeeback,

Sorry I didn't realize that you had replied, I thought the thread was abondoned. The MBRCheck log is incomplete. Please repost it.

Thanks
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Members online

Top