Having Popup Issues

jlhirs · Nov 23, 2008

I am having pop issues on my computer. Seems like everyother screen that I navigate to gives me a new explorer window to go to. It over rides the one I am currently using.

Below is the text from the DDR Files. I have also attached the gder file.

Thanks.

DDS (Version 1.0) - NTFSx86
Run by Jeff at 9:19:53.60 on Sun 11/23/2008
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1204 [GMT -6:00]

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Trend Micro\Internet Security 14\pccguide.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Dell AIO Printer 946\dlcimon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\dlcicoms.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Jeff\Desktop\dds.scr

============== Psuedo HJT Report ===============

uStart Page = hxxp://www.ksdk.com/
uSearch Page = hxxp://www.google.com/hws/sb/dell-usuk-rel/en/side.html?channel=us
uSearch Bar = hxxp://www.google.com/hws/sb/dell-usuk-rel/en/side.html?channel=us
uDefault_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us&ibd=5061206
mDefault_Page_URL = hxxp://www.dell.com
mDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://www.dell.com
uInternet Connection Wizard,ShellNext = hxxp://www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us&ibd=5061206
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/hws/sb/dell-usuk-rel/en/side.html?channel=us
BHO: {02E227ED-525B-4B83-A68B-00D525EC477E} - c:\windows\system32\tuvUOeFw.dll
BHO: {74f3c1ee-eeac-4704-aa5c-4c1351df9484} - c:\windows\system32\jqjmui.dll
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll
BHO: {A63E645F-13BD-45ED-B15F-6E8C1BD57279} - c:\windows\system32\xxyxvwvt.dll
BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\program files\msn\toolbar\3.0.0983.0\msneshellx.dll
uRun: [DellSupport] "c:\program files\dell support\DSAgnt.exe" /startup
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [GetModule29] c:\program files\getmodule\GetModule29.exe
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [SigmatelSysTrayApp] stsystra.exe
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\Iaanotif.exe
mRun: [DMXLauncher] c:\program files\dell\media experience\DMXLauncher.exe
mRun: [pccguide.exe] "c:\program files\trend micro\internet security 14\pccguide.exe"
mRun: [DLA] c:\windows\system32\dla\DLACTRLW.EXE
mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [DLCICATS] rundll32 c:\windows\system32\spool\drivers\w32x86\3\DLCItime.dll,[email protected]
mRun: [dlcimon.exe] "c:\program files\dell aio printer 946\dlcimon.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [f0c1d001] rundll32.exe "c:\windows\system32\wicmrvtd.dll",b
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\desktop messenger\8876480\program\LogitechDesktopMessenger.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office10\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
Filter: text/html - {bd73502f-f5c8-47dc-b7e1-e84d22a2e47b} - c:\windows\system32\mst120.dll
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll
Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll
Notify: xxyxvwvt - xxyxvwvt.dll
AppInit_DLLs: jqjmui.dll
SEH: {A63E645F-13BD-45ED-B15F-6E8C1BD57279} - c:\windows\system32\xxyxvwvt.dll
SecurityProviders: msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, msansspc.dll
LSA: Authentication Packages = msv1_0 c:\windows\system32\tuvUOeFw

============= SERVICES / DRIVERS ===============

R3 dlci_device;dlci_device;c:\windows\system32\dlcicoms.exe -service
S3 GoToAssist;GoToAssist;"c:\program files\citrix\gotoassist\514\g2aservice.exe" Start=service
S3 NAL;Nal Service ;\??\c:\windows\system32\drivers\iqvw32.sys

=============== Created Last 30 ================

2008-11-23 09:17 250 a------- c:\windows\gmer.ini
2008-11-23 00:02 25,600 a------- c:\windows\system32\nnnoLDWm.dll
2008-11-23 00:02 25,600 a------- c:\windows\system32\hgGabXRL.dll
2008-11-22 23:53 <DIR> --d----- c:\docume~1\jeff\applic~1\GetModule
2008-11-22 23:34 25,600 a------- c:\windows\system32\ssqPigGx.dll
2008-11-22 23:34 25,600 a------- c:\windows\system32\mlJaawXR.dll
2008-11-22 23:34 <DIR> --d----- c:\program files\iCheck
2008-11-22 23:34 198,649 a------- c:\windows\system32\wpv081227390467.cpx
2008-11-22 20:10 129,024 a------- c:\windows\system32\jqjmui.dll
2008-11-22 20:10 129,024 a------- c:\windows\system32\jglxuxte.dll
2008-11-22 20:04 1,642,250 ---sh--- c:\windows\system32\dtvrmciw.ini
2008-11-22 20:04 72,704 a------- c:\windows\system32\wicmrvtd.dll
2008-11-22 20:01 25,600 a------- c:\windows\system32\urqQiGAQ.dll
2008-11-22 20:01 25,600 a------- c:\windows\system32\nnnoLCvT.dll
2008-11-22 20:01 198,649 a------- c:\windows\system32\wpv131227390376.cpx
2008-11-22 16:38 198,649 a------- c:\windows\system32\wpv651227390984.cpx
2008-11-22 16:10 <DIR> --d----- c:\program files\Western Digital Technologies
2008-11-21 16:59 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Citrix
2008-11-21 16:59 <DIR> --d----- c:\program files\Citrix
2008-11-21 16:52 61,224 a------- c:\documents and settings\jeff\GoToAssistDownloadHelper.exe
2008-11-20 22:59 129,024 a------- c:\windows\system32\ysuaft.dll
2008-11-20 22:59 129,024 a------- c:\windows\system32\phoeobyw.dll
2008-11-20 22:57 1,632,503 ---sh--- c:\windows\system32\jttdkwjh.ini
2008-11-20 22:57 25,600 a------- c:\windows\system32\ssqqqrRJ.dll
2008-11-20 22:57 25,600 a------- c:\windows\system32\pmnnLCtt.dll
2008-11-20 22:09 948,542 a--sh--- c:\windows\system32\wFeOUvut.ini2
2008-11-20 22:09 948,542 a--sh--- c:\windows\system32\wFeOUvut.ini
2008-11-20 22:09 318,464 a------- c:\windows\system32\tuvUOeFw.dll
2008-11-20 22:04 25,600 a------- c:\windows\system32\xxyxvwvt.dll
2008-11-20 22:04 25,600 a------- c:\windows\system32\xxyvtUNH.dll
2008-11-20 22:04 26,624 a------- c:\windows\system32\msansspc.dll
2008-11-20 22:04 26,624 a------- c:\documents and settings\jeff\~.exe
2008-11-16 11:27 410,976 a------- c:\windows\system32\deploytk.dll
2008-11-16 11:27 73,728 a------- c:\windows\system32\javacpl.cpl
2008-11-12 19:10 455,296 -------- c:\windows\system32\dllcache\mrxsmb.sys
2008-11-12 19:09 1,106,944 -------- c:\windows\system32\dllcache\msxml3.dll
2008-11-12 17:05 <DIR> --d----- c:\program files\Common
2008-11-11 22:57 73,784 a------- c:\docume~1\jeff\applic~1\GDIPFONTCACHEV1.DAT
2008-11-06 21:23 8,216 a------- c:\windows\system32\mst120.dll

==================== Find3M ====================

2008-11-23 00:02 <DIR> --d----- c:\program files\Dl_cats
2008-11-22 23:30 <DIR> --d----- c:\program files\GemMaster
2008-10-24 18:03 <DIR> --d----- c:\program files\Modem Helper
2008-10-22 16:58 <DIR> --d----- c:\docume~1\jeff\applic~1\Viewpoint
2008-10-17 21:07 <DIR> --d----- c:\program files\common files\Remote Control Software Common
2008-10-17 21:07 <DIR> --d----- c:\program files\common files\Remote Control USB Driver
2008-10-17 21:06 127,034 -----r-- c:\windows\bwUnin-8.1.1.50-8876480SL.exe
2008-10-16 14:13 1,809,944 a------- c:\windows\system32\dllcache\wuaueng.dll
2008-10-16 14:13 202,776 a------- c:\windows\system32\dllcache\wuweb.dll
2008-10-16 14:12 323,608 a------- c:\windows\system32\dllcache\wucltui.dll
2008-10-16 14:12 561,688 a------- c:\windows\system32\dllcache\wuapi.dll
2008-10-16 14:09 92,696 a------- c:\windows\system32\dllcache\cdm.dll
2008-10-16 14:09 51,224 a------- c:\windows\system32\dllcache\wuauclt.exe
2008-10-16 14:08 34,328 a------- c:\windows\system32\dllcache\wups.dll
2008-10-16 14:06 268,648 a------- c:\windows\system32\mucltui.dll
2008-10-16 14:06 208,744 a------- c:\windows\system32\muweb.dll
2008-10-15 10:34 337,408 -------- c:\windows\system32\dllcache\netapi32.dll
2008-10-11 20:46 <DIR> --d----- c:\program files\Pivot Stickfigure Animator
2008-10-11 20:41 <DIR> --d----- c:\docume~1\jeff\applic~1\Move Networks
2008-10-04 17:31 <DIR> --d----- c:\program files\Messenger
2008-10-04 17:30 89,191 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2008-10-04 17:26 <DIR> --d----- c:\program files\Windows NT
2008-10-04 15:08 <DIR> --d----- c:\program files\MSXML 4.0
2008-10-04 14:53 <DIR> --d----- c:\program files\common files\AOL
2008-10-04 14:53 <DIR> --d----- c:\program files\common files\aolshare
2008-10-04 14:35 <DIR> --d----- c:\program files\Linksys Wireless-G PCI Wireless Network Monitor
2008-10-04 14:20 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Dell
2008-10-04 14:17 <DIR> --d----- c:\program files\Dell AIO Printer 946
2008-10-04 14:16 <DIR> --d----- c:\program files\iTunes
2008-10-04 14:16 <DIR> --d----- c:\docume~1\alluse~1\applic~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-04 14:16 <DIR> --d----- c:\program files\iPod
2008-10-04 14:16 <DIR> --d----- c:\program files\Bonjour
2008-10-04 14:07 <DIR> --d----- c:\docume~1\alluse~1\applic~1\BVRP Software
2008-10-04 14:07 <DIR> --d----- c:\program files\Abbyy FineReader 6.0 Sprint
2008-10-04 14:06 <DIR> --d----- c:\program files\Jasc Software Inc
2008-10-04 14:06 <DIR> --d----- c:\docume~1\jeff\applic~1\Jasc Software Inc
2008-10-04 14:06 <DIR> --d----- c:\program files\common files\Jasc Software Inc
2008-10-04 13:51 <DIR> --d----- c:\program files\Microsoft ActiveSync
2008-09-30 16:43 1,286,152 a------- c:\windows\system32\msxml4.dll
2008-09-15 06:12 1,846,400 a------- c:\windows\system32\win32k.sys
2008-09-15 06:12 1,846,400 -------- c:\windows\system32\dllcache\win32k.sys
2008-09-09 19:14 1,307,648 -------- c:\windows\system32\msxml6.dll
2008-09-09 19:14 1,307,648 -------- c:\windows\system32\dllcache\msxml6.dll
2008-09-08 04:41 333,824 -------- c:\windows\system32\dllcache\srv.sys
2008-09-04 11:15 1,106,944 a------- c:\windows\system32\msxml3.dll
2008-08-29 09:18 87,336 a------- c:\windows\system32\dns-sd.exe
2008-08-29 08:53 61,440 a------- c:\windows\system32\dnssd.dll
2006-12-06 20:32 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Viewpoint
2006-12-06 20:29 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Trend Micro
2005-08-16 20:54 <DIR> --d----- c:\docume~1\alluse~1\applic~1\DIGStream

============= FINISH: 9:20:25.00 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Version 1.0)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 10/4/2008 3:22:06 PM
System Uptime: 11/23/2008 12:00:58 AM (9 hours ago)

Motherboard: Dell Inc. | | 0WG864
Processor: Intel(R) Core(TM)2 CPU 6300 @ 1.86GHz | Microprocessor | 1862/1066mhz
BIOS: Phoenix ROM BIOS PLUS Version 1.10 2.1.0 | DELL - 14 | 2.1.0 | 11/2/2006 7:00:00 PM

==== Disk Partitions =========================

C: is FIXED (NTFS) - 293 GiB total, 278.226 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is Removable
J: is FIXED (FAT32) - 466 GiB total, 463.422 GiB free.

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP1: 11/20/2008 10:56:35 PM - System Checkpoint
RP2: 11/20/2008 10:56:35 PM - Installed Linksys Wireless-G PCI Adapter
RP3: 11/20/2008 10:56:35 PM - Installed Microsoft Office XP Professional with FrontPage
RP4: 11/20/2008 10:56:35 PM - Removed Google Toolbar for Internet Explorer
RP5: 11/20/2008 10:56:36 PM - Installed Print to Fax
RP6: 11/20/2008 10:56:36 PM - Printer Driver CAPTURE FAX Installed
RP7: 11/20/2008 10:56:37 PM - Installed iTunes
RP8: 11/20/2008 10:56:37 PM - Software Distribution Service 3.0
RP9: 11/20/2008 10:56:37 PM - Removed EarthLink Setup Files
RP10: 11/20/2008 10:56:38 PM - Software Distribution Service 3.0
RP11: 11/20/2008 10:56:38 PM - Software Distribution Service 3.0
RP12: 11/20/2008 10:56:39 PM - Software Distribution Service 3.0
RP13: 11/20/2008 10:56:39 PM - Software Distribution Service 3.0
RP14: 11/20/2008 10:56:39 PM - Software Distribution Service 3.0
RP15: 11/20/2008 10:56:39 PM - Software Distribution Service 3.0
RP16: 11/20/2008 10:56:39 PM - System Checkpoint
RP17: 11/20/2008 10:56:39 PM - System Checkpoint
RP18: 11/20/2008 10:56:39 PM - System Checkpoint
RP19: 11/20/2008 10:56:39 PM - System Checkpoint
RP20: 11/20/2008 10:56:39 PM - System Checkpoint
RP21: 11/20/2008 10:56:39 PM - Installed Pivot Stickfigure Animator
RP22: 11/20/2008 10:56:40 PM - System Checkpoint
RP23: 11/20/2008 10:56:40 PM - System Checkpoint
RP24: 11/20/2008 10:56:40 PM - System Checkpoint
RP25: 11/20/2008 10:56:40 PM - Software Distribution Service 3.0
RP26: 11/20/2008 10:56:40 PM - System Checkpoint
RP27: 11/20/2008 10:56:40 PM - System Checkpoint
RP28: 11/20/2008 10:56:40 PM - Installed Logitech Software
RP29: 11/20/2008 10:56:40 PM - Installed Logitech Desktop Messenger
RP30: 11/20/2008 10:56:41 PM - Installed Remote Control USB Driver
RP31: 11/20/2008 10:56:41 PM - Installed Logitech Harmony Remote Software 7
RP32: 11/20/2008 10:56:41 PM - System Checkpoint
RP33: 11/20/2008 10:56:41 PM - System Checkpoint
RP34: 11/20/2008 10:56:41 PM - System Checkpoint
RP35: 11/20/2008 10:56:41 PM - System Checkpoint
RP36: 11/20/2008 10:56:41 PM - System Checkpoint
RP37: 11/20/2008 10:56:41 PM - System Checkpoint
RP38: 11/20/2008 10:56:41 PM - Software Distribution Service 3.0
RP39: 11/20/2008 10:56:41 PM - System Checkpoint
RP40: 11/20/2008 10:56:42 PM - System Checkpoint
RP41: 11/20/2008 10:56:42 PM - System Checkpoint
RP42: 11/20/2008 10:56:42 PM - System Checkpoint
RP43: 11/20/2008 10:56:42 PM - System Checkpoint
RP44: 11/20/2008 10:56:42 PM - System Checkpoint
RP45: 11/20/2008 10:56:42 PM - System Checkpoint
RP46: 11/20/2008 10:56:42 PM - System Checkpoint
RP47: 11/20/2008 10:56:42 PM - System Checkpoint
RP48: 11/20/2008 10:56:42 PM - System Checkpoint
RP49: 11/20/2008 10:56:43 PM - System Checkpoint
RP50: 11/20/2008 10:56:43 PM - System Checkpoint
RP51: 11/20/2008 10:56:43 PM - System Checkpoint
RP52: 11/20/2008 10:56:43 PM - System Checkpoint
RP53: 11/20/2008 10:56:43 PM - System Checkpoint
RP54: 11/20/2008 10:56:43 PM - System Checkpoint
RP55: 11/20/2008 10:56:44 PM - System Checkpoint
RP56: 11/20/2008 10:56:44 PM - System Checkpoint
RP57: 11/20/2008 10:56:44 PM - Software Distribution Service 3.0
RP58: 11/20/2008 10:56:44 PM - System Checkpoint
RP59: 11/20/2008 10:56:44 PM - System Checkpoint
RP60: 11/20/2008 10:56:44 PM - System Checkpoint
RP61: 11/20/2008 10:56:44 PM - Installed Java(TM) 6 Update 10
RP62: 11/20/2008 10:56:44 PM - Installed MSN Toolbar Setup
RP63: 11/20/2008 10:56:44 PM - System Checkpoint
RP64: 11/20/2008 10:56:45 PM - System Checkpoint
RP65: 11/20/2008 10:56:45 PM - System Checkpoint
RP66: 11/20/2008 10:56:45 PM - System Checkpoint
RP67: 11/20/2008 10:56:45 PM - Last known good configuration
RP68: 11/20/2008 10:56:46 PM - Restore Operation
RP69: 11/20/2008 10:56:52 PM - Last known good configuration
RP70: 11/21/2008 11:05:02 PM - System Checkpoint
RP71: 11/22/2008 7:58:55 PM - Restore Operation
RP72: 11/22/2008 11:28:13 PM - Removed Get High Speed Internet!
RP73: 11/22/2008 11:30:35 PM - Removed Internet Service Offers Launcher

==== Installed Programs ======================

ABBYY FineReader 6.0 Sprint
Acrobat.com
Adobe AIR
Adobe Flash Player ActiveX
Adobe Reader 7.0.8
America Online (Choose which version to remove)
AOLIcon
Apple Mobile Device Support
Apple Software Update
Bonjour
Conexant D850 56K V.9x DFVc Modem
Dell AIO Printer 946
Dell CinePlayer
Dell Driver Reset Tool
Dell Support 3.2.1
Dell System Restore
Digital Content Portal
Digital Line Detect
Documentation & Support Launcher
EducateU
ESPNMotion
Games, Music, & Photos Launcher
GoToAssist 8.0.0.514
High Definition Audio Driver Package - KB835221
Hotfix for Windows Media Player 10 (KB903157)
Hotfix for Windows XP (KB952287)
Intel(R) Matrix Storage Manager
Intel(R) PRO Network Connections
Internet Speed Monitor
iTunes
J2SE Runtime Environment 5.0 Update 6
Jasc Paint Shop Photo Album 5
Jasc Paint Shop Pro Studio, Dell Editon
Java(TM) 6 Update 10
Learn2 Player (Uninstall Only)
Linksys Wireless-G PCI Adapter
Logitech Desktop Messenger
Logitech Harmony Remote Software 7
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft Office Small Business Edition 2003
Microsoft Office XP Professional with FrontPage
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft Works
Modem Helper
Move Networks Media Player for Internet Explorer
MSN Toolbar
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
NetWaiting
NVIDIA Drivers
Otto
Pivot Stickfigure Animator
Print to Fax
Qualxserve Service Agreement
QuickTime
RealPlayer Basic
Remote Control USB Driver
Roxio DLA
Roxio MyDVD LE
Roxio RecordNow Audio
Roxio RecordNow Copy
Roxio RecordNow Data
SearchAssist
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953838)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Sonic Activation Module
Sonic Encoders
Sonic Update Manager
Trend Micro PC-cillin Internet Security 14
Update for Windows Media Player 10 (KB910393)
Update for Windows Media Player 10 (KB913800)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update Rollup 2 for Windows XP Media Center Edition 2005
URL Assistant
Viewpoint Media Player
WebFldrs XP
Windows Installer 3.1 (KB893803)
Windows Media Format Runtime
Windows Media Player 10
Windows Media Player 10 Hotfix [See EmeraldQFE2 for more information]
Windows XP Media Center Edition 2005 KB908246
Windows XP Media Center Edition 2005 KB912067
Windows XP Service Pack 3

==== Event Viewer Messages ===================

11/16/2008 7:01:53 PM, error: Dhcp [1002] - The IP address lease 192.168.1.100 for the Network Card with network address 0018F8292AE9 has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
11/20/2008 10:48:35 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
11/20/2008 11:36:58 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the WMP54Gv4SVC service.
11/21/2008 8:14:55 AM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service wuauserv with arguments "" in order to run the server: {9B1F122C-2982-4E91-AA8B-E071D54F2A4D}
11/22/2008 11:58:25 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
11/22/2008 11:58:30 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
11/22/2008 11:58:35 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
11/22/2008 11:59:44 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
11/22/2008 11:59:44 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
11/22/2008 11:59:44 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
11/22/2008 11:59:44 PM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
11/22/2008 11:59:44 PM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
11/22/2008 11:59:44 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
11/22/2008 11:59:44 PM, error: Service Control Manager [7001] - The Trend Micro Proxy Service service depends on the Trend Micro TDI Driver service which failed to start because of the following error: A device attached to the system is not functioning.
11/22/2008 11:59:44 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip tmtdi

==== End Of File ===========================

tetonbob · Nov 26, 2008

Please visit this webpage for instructions for downloading and running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Please ensure you read this guide carefully and install the Recovery Console first.

The Windows Recovery Console will allow you to boot up into a special recovery mode. This allows us to help you in the case that your computer has a problem after an attempted removal of malware.

Post the log from ComboFix when you've accomplished that.

If you have any questions along the way, STOP and ask them before proceeding.

tetonbob · Dec 3, 2008

Due to lack of response, this topic will now be closed. If you need continued support, please begin a new thread, and provide a link to this topic. This applies only to the original topic starter. Everyone else please begin a New Topic, after following the steps outlined here:

http://www.techsupportforum.com/sec...read-before-posting-malware-removal-help.html

Having Popup Issues

jlhirs

Attachments

tetonbob

tetonbob

Top Contributors this Month