Hi,
The problem I am having is that whilst attempting to access search results supplied by trustworthy search engines (live, google, yahoo) I am redirected to other websites (mamma search engine).
I've run the instructed scans and the results are as follows, cheers..
DDS (Ver_09-01-07.01) - NTFSx86
Run by Helen at 12:46:38.10 on 11/01/2009
Internet Explorer: 6.0.2900.5512
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.502.66 [GMT 0:00]
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated)
AV: Norton Internet Security *On-access scanning disabled* (Outdated)
FW: Norton Internet Security *disabled*
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\WINDOWS\system32\RAMASST.exe
C:\Documents and Settings\Helen\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Documents and Settings\Helen\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Helen\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Helen\Desktop\dds.com
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.virginmedia.com
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mWinlogon: System=kdjzp.exe
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: AVG Security Toolbar: {a057a204-bacc-4d26-9990-79a187e2698e} - c:\progra~1\avg\avg8\AVGTOO~1.DLL
TB: AVG Security Toolbar: {a057a204-bacc-4d26-9990-79a187e2698e} - c:\progra~1\avg\avg8\AVGTOO~1.DLL
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [googletalk] "c:\program files\google\google talk\googletalk.exe" /autostart
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\point32.exe"
mRun: [PD0620 STISvc] RunDLL32.exe P0620Pin.dll,RunDLL32EP 513
mRun: [Symantec PIF AlertEng] "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\pifsvc.exe" /a /m "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\AlertEng.dll"
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [c:\windows\system32\kdjzp.exe] c:\windows\system32\kdjzp.exe
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ramasst.lnk - c:\windows\system32\RAMASST.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC} - c:\program files\java\jre1.5.0\bin\npjpi150.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
Trusted Zone: line6.net
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: igfxcui - igfxsrvc.dll
Notify: LMIinit - LMIinit.dll
AppInit_DLLs: avgrsstx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\helen\applic~1\mozilla\firefox\profiles\39ulhfrz.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.startup.homepage - hxxp://www.google.ie/
FF - component: c:\program files\mozilla firefox\components\iamfamous.dll
FF - plugin: c:\documents and settings\helen\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\helen\local settings\application data\google\update\1.2.133.33\npGoogleOneClick7.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\java\jre1.5.0\bin\NPJava11.dll
FF - plugin: c:\program files\java\jre1.5.0\bin\NPJava12.dll
FF - plugin: c:\program files\java\jre1.5.0\bin\NPJava13.dll
FF - plugin: c:\program files\java\jre1.5.0\bin\NPJava14.dll
FF - plugin: c:\program files\java\jre1.5.0\bin\NPJava32.dll
FF - plugin: c:\program files\java\jre1.5.0\bin\NPJPI150.dll
FF - plugin: c:\program files\java\jre1.5.0\bin\NPOJI610.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npBBCPlugin.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npRACtrl.dll
============= SERVICES / DRIVERS ===============
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-10-23 97928]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2008-10-23 26824]
R1 SLEE_15_DRIVER;Steganos Live Encryption Engine 15 [Driver];c:\windows\system32\drivers\sleen15.sys [2007-2-21 80232]
R3 CLEDX;Team H2O CLEDX service;c:\windows\system32\drivers\cledx.sys [2007-12-19 33792]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2007-8-30 112688]
R4 aawservice;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\aawservice.exe [2008-9-10 611664]
R4 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2008-10-23 231704]
R4 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\logmein\x86\rainfo.sys [2007-8-3 12856]
R4 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2008-4-1 47640]
S3 L6TportK;Service - Line 6 TonePort KB37;c:\windows\system32\drivers\L6TportK.sys [2007-12-21 514432]
S3 Ndisprot;ArcNet NDIS Protocol Driver;c:\windows\system32\drivers\ndisprot.sys [2008-11-28 27904]
S3 NTPASp50;NTPASp50 NDIS Protocol Driver;c:\windows\system32\drivers\NtpaSp50.sys [2006-7-31 17536]
S4 ccEvtMgr;Symantec Event Manager;c:\program files\common files\symantec shared\ccSvcHst.exe [2006-9-3 108648]
S4 ccSetMgr;Symantec Settings Manager;c:\program files\common files\symantec shared\ccSvcHst.exe [2006-9-3 108648]
S4 LMIRfsClientNP;LMIRfsClientNP; [x]
=============== Created Last 30 ================
==================== Find3M ====================
2008-12-01 01:23 47,640 a------- c:\windows\system32\drivers\LMIRfsDriver.sys
2008-12-01 01:23 83,288 a------- c:\windows\system32\LMIRfsClientNP.dll
2008-12-01 01:23 28,984 a------- c:\windows\system32\LMIport.dll
2008-12-01 01:22 23,736 ac------ c:\windows\system32\lmimirr.dll
2008-12-01 01:22 10,040 ac------ c:\windows\system32\lmimirr2.dll
2008-12-01 01:22 87,352 a------- c:\windows\system32\LMIinit.dll
2008-11-28 01:20 27,904 a------- c:\windows\system32\drivers\ndisprot.sys
2008-11-17 20:04 2,306,113 a------- c:\windows\system32\GPhotos.scr
2008-10-29 15:23 77,155 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2008-10-23 19:39 10,520 a------- c:\windows\system32\avgrsstx.dll
2008-10-23 12:36 286,720 a------- c:\windows\system32\gdi32.dll
2008-10-16 01:00 666,112 a------- c:\windows\system32\wininet.dll
2008-04-12 18:19 3,723,256 a------- c:\program files\channel4_on_demand.exe
2007-12-12 01:48 1,206,366 a------- c:\program files\wrar371.exe
2006-03-16 17:11 148 a------- c:\docume~1\helen\applic~1\wklnhst.dat
2005-03-16 07:25 79 a------- c:\program files\Show Desktop.scf
2004-09-15 17:42 1,597,440 a------- c:\docume~1\helen\applic~1\SecureTraveler.exe
============= FINISH: 12:48:02.43 ===============
any help would be greatly appreciated :)
Unfortunately the file upload isn't working at the moment so I'll post both Attach.txt and ark.txt as replies to this thread if that's ok.
Thanks again!
Contents of Attach.txt as file upload failed every time:
ATTACH.TXT
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_09-01-07.01)
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 21/07/2005 19:15:47
System Uptime: 01/11/2009 12:07:24 (-7056 hours ago)
Motherboard: TOSHIBA | | EAL30
Processor: Intel(R) Pentium(R) M processor 1.60GHz | U1 | 1595/mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 56 GiB total, 4.827 GiB free.
D: is CDROM ()
==== Disabled Device Manager Items =============
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Realtek RTL8139/810x Family Fast Ethernet NIC
Device ID: PCI\VEN_10EC&DEV_8139&SUBSYS_FF001179&REV_10\4&AD1B67F&0&08F0
Manufacturer: Realtek Semiconductor Corp.
Name: Realtek RTL8139/810x Family Fast Ethernet NIC
PNP Device ID: PCI\VEN_10EC&DEV_8139&SUBSYS_FF001179&REV_10\4&AD1B67F&0&08F0
Service: RTL8023xp
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Bluetooth PAN Network Adapter
Device ID: ROOT\NET\0000
Manufacturer: IVT Corporation
Name: Bluetooth PAN Network Adapter
PNP Device ID: ROOT\NET\0000
Service: BT
==== System Restore Points ===================
RP672: 13/11/2008 23:52:20 - System Checkpoint
RP673: 15/11/2008 19:51:51 - System Checkpoint
RP674: 16/11/2008 23:25:24 - System Checkpoint
RP675: 18/11/2008 17:40:50 - System Checkpoint
RP676: 19/11/2008 00:00:21 - Software Distribution Service 3.0
RP677: 19/11/2008 21:21:01 - Avg8 Update
RP678: 19/11/2008 21:23:31 - Avg8 Update
RP679: 20/11/2008 22:39:06 - Installed DirectX 9.0
RP680: 20/11/2008 22:43:23 - Installed Autodesk DWF Viewer 7
RP681: 20/11/2008 22:53:38 - Installed Backburner
RP682: 20/11/2008 22:55:27 - Installed Autodesk 3ds Max 9 32-bit
RP683: 22/11/2008 15:47:58 - System Checkpoint
RP684: 23/11/2008 19:52:51 - System Checkpoint
RP685: 25/11/2008 15:56:22 - System Checkpoint
RP686: 27/11/2008 11:11:58 - Avg8 Update
RP687: 28/11/2008 01:51:11 - Installed %1 %2.
RP688: 28/11/2008 01:51:36 - Printer Driver Microsoft XPS Document Writer Installed
RP689: 28/11/2008 14:10:28 - Removed AutoCAD 2007 - English
RP690: 28/11/2008 14:21:11 - Installed DirectX
RP691: 29/11/2008 16:13:39 - System Checkpoint
RP692: 30/11/2008 18:45:01 - System Checkpoint
RP693: 30/11/2008 21:00:47 - Installed DirectX
RP694: 03/12/2008 12:39:54 - System Checkpoint
RP695: 05/12/2008 13:51:38 - System Checkpoint
RP696: 09/12/2008 00:27:21 - System Checkpoint
RP697: 10/12/2008 02:15:04 - System Checkpoint
RP698: 11/12/2008 15:41:52 - System Checkpoint
RP699: 19/12/2008 15:35:08 - System Checkpoint
RP700: 21/12/2008 00:16:29 - System Checkpoint
RP701: 22/12/2008 17:18:36 - System Checkpoint
RP702: 23/12/2008 19:43:42 - System Checkpoint
RP703: 25/12/2008 13:46:47 - System Checkpoint
RP704: 26/12/2008 23:48:45 - System Checkpoint
RP705: 28/12/2008 00:57:54 - System Checkpoint
RP706: 30/12/2008 14:33:25 - System Checkpoint
RP707: 01/01/2009 02:07:14 - System Checkpoint
RP708: 02/01/2009 23:32:36 - System Checkpoint
RP709: 04/01/2009 19:46:57 - System Checkpoint
RP710: 04/01/2009 21:13:13 - Restore Operation
RP711: 04/01/2009 22:50:18 - Installed Ad-Aware
RP712: 05/01/2009 02:11:35 - Ad-Aware Restore Point 2009-01-05 02:11:20
RP713: 05/01/2009 20:42:49 - Printer Driver LogMeIn Printer Driver Installed
RP714: 07/01/2009 01:02:31 - System Checkpoint
RP715: 07/01/2009 13:36:57 - Avg8 Update
RP716: 08/01/2009 00:00:46 - Software Distribution Service 3.0
RP717: 09/01/2009 00:01:05 - Software Distribution Service 3.0
==== Installed Programs ======================
3dsmax ancillary install
4200
4200_Help
4200Tour
4200Trb
4oD
Ad-Aware
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color Common Settings
Adobe Color EU Extra Settings
Adobe Color JA Extra Settings
Adobe Color NA Recommended Settings
Adobe Default Language CS3
Adobe Device Central CS3
Adobe ExtendScript Toolkit 2
Adobe Flash Player 10 Plugin
Adobe Flash Player 9 ActiveX
Adobe Fonts All
Adobe Help Viewer CS3
Adobe Illustrator CS3
Adobe InDesign CS3
Adobe InDesign CS3 Icon Handler
Adobe Linguistics CS3
Adobe PDF Library Files
Adobe Photoshop 7.0
Adobe Reader 7.0.7
Adobe Setup
Adobe SING CS3
Adobe Stock Photos CS3
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS3
AiO_Scan
AIOMinimal
AiOSoftware
ALPS Touch Pad Driver
Apple Mobile Device Support
Apple Software Update
Atheros Wireless LAN MiniPCI card Driver
AudibleManager
AutoCAD Architecture 2008
Autodesk 3ds Max 9 32-bit
Autodesk DWF Viewer 7
Avanquest update
AVG Free 8.0
Azureus Vuze
Backburner
BBC iPlayer Download Manager
Bebo - Skype 2.5
BlueSoleil
BroadJump Client Foundation
Canon Camera WIA Driver
Canon EOS Kiss REBEL 300D WIA Driver
Canon MP210 series
Canon Utilities PhotoStitch 3.1
Canon Utilities RemoteCapture 2.7
ccCommon
CD/DVD Drive Acoustic Silencer
Creative MediaSource 5
Creative Photo Manager
Creative Removable Disk Manager
Creative System Information
Creative WebCam Center
Creative WebCam Instant Driver (1.03.02.0425)
Creative WebCam Instant User's Guide (English)
Creative ZEN V Series (R2)
DELG Driver Theory Test
DivX Content Uploader
DivX Web Player
DVD-RAM Driver
DVD43 v4.0.0
EPSON PRINT Image Framer Tool
EPSON Printer Software
Fax
FBX Plugin 2006.08 for Max 9.0
Flamingo 1.1
Flickr Uploadr 2.3
Freez FLV to MP3 Converter
GdiplusUpgrade
Google Chrome
Google Earth
Google Talk (remove only)
Google Talk Plugin
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
HP Memories Disc
HP Photo and Imaging 2.1 - Scanjet 36X0 Series
HP PSC & OfficeJet 3.5
HP Software Update
Intel(R) Graphics Media Accelerator Driver for Mobile
InterActual Player
InterVideo WinDVD Creator 2
InterVideo WinDVD for TOSHIBA
iriverter 0.15
iTunes
J2SE Runtime Environment 5.0
jetAudio Basic VX
JetShell PRO
LiveUpdate 3.1 (Symantec Corporation)
LiveUpdate Notice (Symantec Corporation)
LogMeIn
Macromedia Extension Manager
Macromedia Flash 8 Video Encoder
Macromedia Flash Player
Macromedia Flash Player 8
Magic ISO Maker v5.4 (build 0256)
Magic ISO Maker v5.5 (build 0273)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 1
Microsoft .NET Framework 3.0
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft IntelliPoint 5.2
Microsoft Office OneNote 2003
Microsoft Office Small Business Edition 2003
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
Mozilla Firefox (3.0.5)
MSRedist
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 Parser and SDK
MSXML 6.0 Parser (KB925673)
Music Visualizer Library 1.4.00
Norton Internet Security (Symantec Corporation)
Olympus Digital Wave Player
OpenMG Limited Patch 3.1-02-10-22-01
OpenMG Limited Patch 3.1-02-10-22-02
OpenMG Limited Patch 3.1-02-12-04-01
OpenMG Secure Module 3.1
Overland
PDF Settings
Pdf995
PhantomFM
PhotoStitch
Picasa 2
Picasa 3
PrintScreen
QuickTime
Readme
Realtek AC'97 Audio
REALTEK Gigabit and Fast Ethernet NIC Driver
RemoteCapture 2.7.4
Rhinoceros 3.0
Scan
SD Secure Module
Security Update for CAPICOM (KB931906)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950759)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953838)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB960714)
SMSC IrCC V5.1.3600.5 SP2
Sonic DLA
Sonic RecordNow!
SonicStage 1.5.06
Sony Ericsson Media Manager 1.1
Sony Ericsson PC Suite 3.209.00
Spectrogram 16
Steganos Safe Home 2007
Steinberg Cubase SX v3.1.1.944
Syncrosoft's License Control
SyncroSoft Emu (Remove only)
Texas Instruments PCIxx21/x515 drivers.
TIxx21/x515
TOSHIBA Accessibility
TOSHIBA Assist
TOSHIBA ConfigFree
TOSHIBA Controls
TOSHIBA Controls Driver
TOSHIBA Hardware Setup
TOSHIBA Hotkey Utility
TOSHIBA Manuals
TOSHIBA PC Diagnostic Tool
TOSHIBA Power Saver
TOSHIBA Power Saver Driver
TOSHIBA SD Memory Card Format
TOSHIBA Software Modem
TOSHIBA Supervisor Password
TOSHIBA Virtual Sound
TOSHIBA Zooming Hook
TOSHIBA Zooming Utility
Touch and Launch
TouchPad On/Off Utility
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Utility Common Driver
VBA (2627.01)
VectorWorks 11
VLC media player 0.9.8a
WebCam Instant Product Registration
WebFldrs XP
Windows Communication Foundation
Windows Genuine Advantage Notifications (KB905474)
Windows Live Messenger
Windows Media Format 11 runtime
Windows Media Player 10 Hotfix - KB895316
Windows Media Player 11
Windows Media Player Firefox Plugin
Windows Presentation Foundation
Windows Workflow Foundation
Windows XP Service Pack 3
WinRAR archiver
X5 User's Guide
XML Paper Specification Shared Components Pack 1.0
ZENcast Organizer
==== Event Viewer Messages From Past Week ========
05/01/2009 02:26:00, error: Dhcp [1002] - The IP address lease 192.168.1.64 for the Network Card with network address 0012F054C2FE has been denied by the DHCP server 192.168.2.1 (The DHCP Server sent a DHCPNACK message).
04/01/2009 22:00:35, error: Service Control Manager [7031] - The AVG Free8 WatchDog service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
05/01/2009 20:39:08, error: Service Control Manager [7034] - The LogMeIn service terminated unexpectedly. It has done this 1 time(s).
06/01/2009 00:59:57, error: WPDMTPDriver [15300] - MTP WPD Driver has failed to start. Error 0x8004201e.
10/01/2009 14:48:39, error: MRxSmb [8003] - The master browser has received a server announcement from the computer WHITEPONY-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C5132FD3-77E6-4. The master browser is stopping or an election is being forced.
10/01/2009 17:10:06, error: NetBT [4321] - The name "WORKGROUP :1d" could not be registered on the Interface with IP address 169.254.184.250. The machine with the IP address 169.254.63.196 did not allow the name to be claimed by this machine.
10/01/2009 18:34:11, error: MRxSmb [8003] - The master browser has received a server announcement from the computer GIRISH-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C5132FD3-77E6-402C. The master browser is stopping or an election is being forced.
10/01/2009 18:45:06, error: MRxSmb [8003] - The master browser has received a server announcement from the computer NAOMI that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C5132FD3-77E6-402C-8F9. The master browser is stopping or an election is being forced.
10/01/2009 19:31:18, error: MRxSmb [8003] - The master browser has received a server announcement from the computer JIMMY-PC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{C5132FD3-77E6-402C-. The master browser is stopping or an election is being forced.
==== End Of File ===========================
Contents of Ark.txt as file upload failed every time:
ARK.TXT
GMER 1.0.14.14536 -
http://www.gmer.net
Rootkit scan 2009-01-11 13:58:09
Windows 5.1.2600 Service Pack 3
---- Devices - GMER 1.0.14 ----
Device \FileSystem\Udfs \UdfsCdRom tfsnifs.sys (Drive Letter Access Component/Sonic Solutions)
Device \FileSystem\Udfs \UdfsDisk tfsnifs.sys (Drive Letter Access Component/Sonic Solutions)
Device ACPI.sys (ACPI Driver for NT/Microsoft Corporation)
Device \FileSystem\Cdfs \Cdfs A98D3400
---- Registry - GMER 1.0.14 ----
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0011f60504d0
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\0011f60504d0
---- EOF - GMER 1.0.14 ----