Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

INTERNET NOT WORKING

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

INTERNET NOT WORKING

Unread postby kamry2009 » September 14th, 2012, 1:21 pm

HI

CAN YOU HELP ME PLEASE TO CLEAN MY COMPUTER"

MY INTERNET CONNECTION NOT WORKING DUE TO LEFT OVER FIREWALL DRIVER


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 12/17/2011 8:11:15 AM
System Uptime: 9/14/2012 4:37:22 PM (1 hours ago)
.
Motherboard: Sony Corporation | | VAIO
Processor: Intel Pentium III Xeon processor | N/A | 2525/266mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 113 GiB total, 5.685 GiB free.
D: is FIXED (NTFS) - 185 GiB total, 39.474 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Privacyware Filter Miniport
Device ID: ROOT\PWIPF6MP\0000
Manufacturer: Privacyware
Name: WiMAX Network Adapter #2 - Privacyware Filter Miniport
PNP Device ID: ROOT\PWIPF6MP\0000
Service: pwipf6
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Privacyware Filter Miniport
Device ID: ROOT\PWIPF6MP\0001
Manufacturer: Privacyware
Name: WiMAX Network Adapter - Privacyware Filter Miniport
PNP Device ID: ROOT\PWIPF6MP\0001
Service: pwipf6
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Privacyware Filter Miniport
Device ID: ROOT\PWIPF6MP\0003
Manufacturer: Privacyware
Name: Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller - Privacyware Filter Miniport
PNP Device ID: ROOT\PWIPF6MP\0003
Service: pwipf6
.
==== System Restore Points ===================
.
RP1: 9/13/2012 11:20:09 AM - System Checkpoint
RP2: 9/13/2012 3:45:31 PM - DLL-Files.com Fixer Thu, Sep 13, 12 15:45
RP3: 9/13/2012 3:52:10 PM - Before uninstalling Privatefirewall 7.0
RP4: 9/13/2012 3:52:19 PM - Removed Privatefirewall 7.0
RP5: 9/13/2012 3:54:04 PM - Before uninstalling Mada CM
RP6: 9/13/2012 4:04:49 PM - Revo Uninstaller Pro's restore point - Mada CM
RP7: 9/13/2012 4:12:52 PM - Installed Mada CM
RP8: 9/13/2012 4:15:33 PM - Revo Uninstaller Pro's restore point - Revo Uninstaller Pro 2.5.8
RP9: 9/13/2012 4:17:48 PM - Revo Uninstaller Pro's restore point - Mada CM
RP10: 9/13/2012 4:18:07 PM - Removed Mada CM
RP11: 9/13/2012 4:22:21 PM - Installed Mada CM
RP12: 9/13/2012 4:42:43 PM - Before uninstalling AntiLogger
.
==== Installed Programs ======================
.
ÇáæÙíÝÉ ÇáÅÖÇÝíÉ Microsoft Save as PDF or XPS áÈÑÇãÌ Microsoft Office 2007
7-Zip 9.20
Ad Muncher v4.93.33707
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.1) - Arabic
Adobe Reader X (10.1.4)
Adobe Shockwave Player 11.6
Advanced SystemCare 6
AntiCrash 3.6.1
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ASF-AVI-RM-WMV Repair 2.01
Atheros AR928x Wireless Network Adapter
Auslogics BoostSpeed
Back2Life 2.7
Battery Doubler 1.2.1
CamStudio OSS Desktop Recorder
CCleaner
Comodo Dragon
COMODO GeekBuddy
Debut Video Capture Software
Device Doctor v2.1
DiskAid 5.31
DiskGetor Data Recovery V3.2
Dll-Files.com Fixer
F.lux
File Scavenger 3.2 (en)
Folder Lock
Game Booster 3
GeekBuddy
GiliSoft File Lock Pro 5.0
Google Update Helper
Hare 1.5.1
HDAUDIO SoftV92 Data Fax Modem with SmartCP
HDD Regenerator
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Intel PROSet Wireless
Internet Download Manager
iPhone Tool Kits 2.8.8
iTunes
Java 7 Update 6
Java Auto Updater
JavaFX 2.1.1
Juggle Mouse 1.2.1
Junk Mail filter update
K-Lite Codec Pack 8.3.2 (Full)
KeyScrambler
Mada CM
MAGIX Screenshare
MAGIX Video Sound Cleaning Lab Download Version
Marvell Miniport Driver
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170)
Microsoft Choice Guard
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office PowerPoint Viewer 2003
Microsoft Office Word Viewer 2003
Microsoft Silverlight
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
MKN TaskExplorer 5
Mozilla Firefox 15.0 (x86 en-US)
Mozilla Maintenance Service
MSVC90_x86
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6 Service Pack 2 (KB973686)
nCleaner second 2.3.4.0
NewLive All Media To Mp3 Converter 7.7
NVIDIA PhysX
Ontrack EasyRecovery Enterprise
Pale Moon 15.0 (x86 en-US)
Passware Kit Enterprise Demo 11.5
Password Recovery Bundle 2011
Prism Video File Converter
Process Hacker 2.28 (r5073)
ProphecyMaster v1.1
QuickVoice Sync
RealUpgrade 1.1
Recover My iPod
Recovery Toolbox for RAR 1.1
Recuva
RunAlyzer
SafeHouse Explorer 3.01
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Windows Internet Explorer 7 (KB2544521)
Security Update for Windows Internet Explorer 7 (KB2586448)
Security Update for Windows Internet Explorer 7 (KB2618444)
Security Update for Windows Internet Explorer 7 (KB2647516)
Security Update for Windows Internet Explorer 7 (KB2675157)
Security Update for Windows Internet Explorer 7 (KB2699988)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB982381)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB971961)
SeePassword
Segoe UI
Skype Click to Call
Skype™ 5.10
Smart Defrag 2
Software Informer 1.1
SpeederXP v2.63
SRS Audio Sandbox
Stellar Phoenix Windows Data Recovery - Technical
Super Ad Blocker
SuperCopier2
swMSM
Synaptics Pointing Device Driver
Total Commander Password Recovery (remove only)
TuneUp Utilities 2012
TuneUp Utilities Language Pack (en-US)
Tweaking.com - Windows Repair (All in One)
Ultra Video Joiner 6.2.0411
Uniblue MaxiDisk
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Windows Internet Explorer 7 (KB2628724)
Update for Windows Internet Explorer 8 (KB2447568)
Update for Windows Internet Explorer 8 (KB2632503)
VC80CRTRedist - 8.0.50727.6195
VLC media player 2.0.2
VobSub v2.23 (Remove Only)
Voxware Audio decoder 1.6
VS10RuntimeWin32
WebFldrs XP
WIDCOMM Bluetooth Software
WinASO EasyTweak 3.0.3
WinASO Registry Optimizer 4.7.7
Windows Driver Package - Sony Corporation Sony HDD Protection Filter Driver (08/22/2008 1.3.08.08220)
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live Mail
Windows Live Sign-in Assistant
Windows Live Upload Tool
Windows Management Framework Core
WinPcap 4.1.2
WinRAR 4.10 beta 5 (32-bit)
Wondershare Dr.Fone (iPhone 4)(Build 1.0.0.33)
Xvid Video Codec
Your Uninstaller! 7
Zoom 1.3.1
.
==== Event Viewer Messages From Past Week ========
.
9/9/2012 9:47:56 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706be: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2686828).
9/9/2012 9:47:56 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008 x86 (KB2686827).
9/9/2012 9:47:56 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008 x86 (KB2656405).
9/9/2012 9:47:56 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008 x86 (KB2656368).
9/9/2012 9:47:56 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008 x86 (KB2604121).
9/9/2012 9:47:56 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2656369).
9/9/2012 9:47:56 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2604092).
9/9/2012 8:46:18 PM, error: DCOM [10000] - Unable to start a DCOM Server: {AC746233-E9D3-49CD-862F-068F7B7CCCA4}. The error: "%2" Happened while starting this command: C:\Program Files\Internet Download Manager\IDMan.exe -Embedding
9/9/2012 8:20:09 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: WinFLAdrv WinFPdrv
9/9/2012 8:11:18 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service TuneUp.UtilitiesSvc with arguments "" in order to run the server: {5EF1CF5D-87A9-434B-8786-2A08E1C30F6C}
9/9/2012 4:42:45 PM, error: Service Control Manager [7034] - The COMODO Dragon Update Service service terminated unexpectedly. It has done this 1 time(s).
9/9/2012 11:59:23 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: ElRawDisk Fips intelppm NetworkX SABDIFSV SABKUTIL truecrypt VBoxDrv VBoxUSBMon WinFLAdrv WinFPdrv
9/9/2012 10:17:14 AM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service helpsvc with arguments "" in order to run the server: {833E4010-AFF7-4AC3-AAC2-9F24C1457BCE}
9/9/2012 10:07:31 AM, error: Service Control Manager [7001] - The PC Tools Spyware Doctor Driver service depends on the PCTools KDS service which failed to start because of the following error: The dependency service does not exist or has been marked for deletion.
9/9/2012 10:06:33 AM, error: Service Control Manager [7003] - The PC Tools Extended File Attributes service depends on the following nonexistent service: FltMgr
9/9/2012 1:57:25 AM, error: Service Control Manager [7031] - The ESET Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
9/9/2012 1:57:02 AM, error: Service Control Manager [7034] - The Privacyware network service service terminated unexpectedly. It has done this 1 time(s).
9/9/2012 1:56:52 AM, error: Service Control Manager [7034] - The Application Layer Gateway Service service terminated unexpectedly. It has done this 1 time(s).
9/9/2012 1:56:42 AM, error: Service Control Manager [7031] - The ESET Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
9/9/2012 1:56:34 AM, error: Service Control Manager [7034] - The TuneUp Utilities Service service terminated unexpectedly. It has done this 1 time(s).
9/9/2012 1:26:58 AM, error: Service Control Manager [7034] - The BcmDeviceDetectionSvc service terminated unexpectedly. It has done this 1 time(s).
9/8/2012 9:43:02 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: OADevice WinFLAdrv WinFPdrv
9/8/2012 9:43:02 PM, error: Service Control Manager [7022] - The Windows Image Acquisition (WIA) service hung on starting.
9/8/2012 9:42:24 PM, error: Service Control Manager [7003] - The TrustPort Security Filter service depends on the following nonexistent service: FltMgr
9/8/2012 9:42:24 PM, error: Service Control Manager [7000] - The XAudioService service failed to start due to the following error: %1 is not a valid Win32 application.
9/8/2012 9:41:48 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000034' while processing the file '_filelst.cfg' on the volume 'HarddiskVolume2'. It has stopped monitoring the volume.
9/8/2012 9:41:39 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service SENS with arguments "" in order to run the server: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}
9/8/2012 9:37:15 PM, error: Service Control Manager [7034] - The Kingsoft Core Service service terminated unexpectedly. It has done this 1 time(s).
9/8/2012 9:29:07 AM, error: DCOM [10000] - Unable to start a DCOM Server: {C2BFE331-6739-4270-86C9-493D9A04CD38}. The error: "%5" Happened while starting this command: C:\WINDOWS\system32\igfxsrvc.exe -Embedding
9/8/2012 8:47:50 PM, error: Service Control Manager [7034] - The COMODO Internet Security Helper Service service terminated unexpectedly. It has done this 1 time(s).
9/8/2012 8:17:40 PM, error: Service Control Manager [7000] - The TuneUpUtilitiesDrv service failed to start due to the following error: The parameter is incorrect.
9/8/2012 6:45:36 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: cmdGuard OADevice WinFLAdrv WinFPdrv
9/8/2012 4:40:01 AM, error: Dhcp [1008] - Your computer was unable to initialize a Network Interface attached to the system. The error code is: A device attached to the system is not functioning. .
9/8/2012 3:25:10 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: ImmunetProtectDriver ImmunetSelfProtectDriver OADevice WinFLAdrv WinFPdrv
9/8/2012 3:20:30 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
9/8/2012 3:19:11 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}
9/8/2012 3:16:23 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
9/8/2012 2:55:25 PM, error: Service Control Manager [7003] - The ImmunetSelfProtectDriver service depends on the following nonexistent service: FltMgr
9/8/2012 2:55:24 PM, error: Service Control Manager [7003] - The ImmunetProtectDriver service depends on the following nonexistent service: FltMgr
9/8/2012 2:55:22 PM, error: Service Control Manager [7003] - The Trufos service depends on the following nonexistent service: FltMgr
9/8/2012 2:42:39 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
9/8/2012 2:42:39 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service BITS with arguments "" in order to run the server: {4991D34B-80A1-4291-83B6-3328366B9097}
9/8/2012 2:00:34 PM, error: PlugPlayManager [11] - The device Root\LEGACY_EPFWTDIR\0000 disappeared from the system without first being prepared for removal.
9/8/2012 10:29:28 AM, error: DCOM [10000] - Unable to start a DCOM Server: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}. The error: "%5" Happened while starting this command: C:\WINDOWS\system32\igfxsrvc.exe -Embedding
9/8/2012 10:21:04 AM, error: iaStor [9] - The device, \Device\Ide\iaStor0, did not respond within the timeout period.
9/8/2012 1:58:24 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: avipbb ehdrv ElRawDisk Fips intelppm kavbootc NetworkX OADevice oahlpXX SABDIFSV SABKUTIL SafDskNT SASDIFSV SASKUTIL ssmdrv truecrypt VBoxDrv VBoxUSBMon WinFLAdrv WinFPdrv
9/7/2012 6:35:37 PM, error: Service Control Manager [7034] - The iPod Service service terminated unexpectedly. It has done this 1 time(s).
9/7/2012 5:55:02 PM, error: Service Control Manager [7034] - The HitmanPro Scheduler service terminated unexpectedly. It has done this 1 time(s).
9/7/2012 5:26:58 PM, error: Service Control Manager [7000] - The Privacyware network service service failed to start due to the following error: The system cannot find the file specified.
9/11/2012 7:23:44 AM, error: Service Control Manager [7034] - The Super Ad Blocker Service service terminated unexpectedly. It has done this 1 time(s).
9/11/2012 7:23:40 AM, error: Service Control Manager [7034] - The Crypkey License service terminated unexpectedly. It has done this 1 time(s).
9/11/2012 7:23:36 AM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
9/10/2012 6:35:05 AM, error: Service Control Manager [7034] - The Browser Defender Update Service service terminated unexpectedly. It has done this 1 time(s).
9/10/2012 6:34:56 AM, error: Service Control Manager [7003] - The PCTools KDS service depends on the following nonexistent service: FltMgr
9/10/2012 6:34:56 AM, error: Service Control Manager [7001] - The PC Tools Browser Defender Driver service depends on the PCTools KDS service which failed to start because of the following error: The dependency service does not exist or has been marked for deletion.
9/10/2012 12:36:02 PM, error: Service Control Manager [7034] - The ZTE AX226 WiMAX Modem Switch Service service terminated unexpectedly. It has done this 1 time(s).
9/10/2012 12:13:11 PM, error: Service Control Manager [7034] - The Kingsoft Core Service service terminated unexpectedly. It has done this 2 time(s).
.
==== End Of File ===========================
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.6.2
Run by llllllllllllllllllll at 17:09:23 on 2012-09-14
Microsoft Windows XP Professional 5.1.2600.3.1256.962.1033.18.1915.1354 [GMT 2:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Mada CM\cm\ssax226.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\CCleaner\SeePassword.exe
svchost.exe
C:\Program Files\Ad Muncher\AdMunch.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mada CM\cm\UIExec.exe
C:\Program Files\Mada CM\cm\cm.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs
.
============== Pseudo HJT Report ===============
.
BHO: SuperAdBlockerBHO Class: {00000000-6c30-11d8-9363-000ae6309654} - c:\program files\superadblocker.com\super ad blocker\SABBHO.dll
BHO: IDM integration (IDMIEHlprObj Class): {0055c089-8582-441b-a0bf-17b458c2a3a8} - c:\program files\internet download manager\IDMIECC.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Browser Guard BHO: {2a0f3d1b-0909-4ff4-b272-609cce6054e7} - PC Tools Browser Guard BHO
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Advanced SystemCare Browser Protection: {ba0c978d-d909-49b6-afe2-8bde245dc7e6} - c:\progra~1\iobit\advanc~1\brower~1\ASCPLU~1.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: Super Ad Blocker Toolbar: {b4b3001e-0f56-4e51-8250-bde11547ec55} - c:\program files\superadblocker.com\super ad blocker\sabtb.dll
TB: Advanced SystemCare Surfing Protection: {c262d7cf-4ae3-41c8-937a-bc727abe907f} - c:\progra~1\iobit\advanc~1\brower~1\ASCPLU~1.DLL
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [UIExec] "c:\program files\mada cm\cm\UIExec.exe"
uRun: [MADA_WIMAX_CM] "c:\program files\mada cm\cm\cm.exe"
uRun: [SuperCopier2.exe] c:\program files\supercopier2\SuperCopier2.exe
uRun: [RDReminder] c:\program files\dll-files.com fixer\DLLFixer.exe -rem
uRun: [IDMan] c:\program files\internet download manager\IDMan.exe /onboot
uRun: [Advanced SystemCare 6] "c:\program files\iobit\advanced systemcare 6\ASCTray.exe" /AutoStart
mRun: [AntiLogger] "c:\program files\antilogger\AntiLogger.exe" /minimized
mRun: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun: [tvncontrol] "c:\program files\common files\comodo\tvnserver.exe" -controlservice -slave
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [SeePassword] c:\program files\ccleaner\SeePassword.exe
mRun: [CPA] c:\program files\comodo\comodo geekbuddy\VALA.exe
mRun: [COMODO] c:\program files\comodo\comodo geekbuddy\CLPSLA.exe
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [Ad Muncher] "c:\program files\ad muncher\AdMunch.exe" /bt
dRun: [ctfmon.exe] c:\windows\system32\CTFMON.EXE
IE: Download all links with IDM - c:\program files\internet download manager\IEGetAll.htm
IE: Download with IDM - c:\program files\internet download manager\IEExt.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
TCP: Interfaces\{DE350321-F1B1-4D3F-8D36-7AF6C7E6AA92} : NameServer = 8.8.8.8,8.8.4.4
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000d7} - c:\program files\superadblocker.com\super ad blocker\SABSEHB.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\llllllllllllllllllll\application data\mozilla\firefox\profiles\4j52sf7g.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.jo/
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npida.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_262.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_268.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_265.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
.
---- FIREFOX POLICIES ----
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
FF - user.js: extensions.funmoods.hmpg - true
FF - user.js: extensions.funmoods.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=drive& ... 1654279114
FF - user.js: extensions.funmoods.dfltSrch - true
FF - user.js: extensions.funmoods.srchPrvdr - Search
FF - user.js: extensions.funmoods.dnsErr - true
FF - user.js: extensions.funmoods_i.newTab - true
FF - user.js: extensions.funmoods.newTabUrl - hxxp://start.funmoods.com/?f=2&a=drive& ... 1654279114
FF - user.js: extensions.funmoods.tlbrSrchUrl - hxxp://start.funmoods.com/?f=3&a=drive& ... 4279114&q=
FF - user.js: extensions.funmoods.id - 9CD24BAB4DF811F5
FF - user.js: extensions.funmoods.instlDay - 15562
FF - user.js: extensions.funmoods.vrsn - 1.5.23.22
FF - user.js: extensions.funmoods.vrsni - 1.5.23.22
FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.23.2223:48:24
FF - user.js: extensions.funmoods.prtnrId - funmoods
FF - user.js: extensions.funmoods.prdct - funmoods
FF - user.js: extensions.funmoods.aflt - drive
FF - user.js: extensions.funmoods_i.smplGrp - none
FF - user.js: extensions.funmoods.tlbrId - base
FF - user.js: extensions.funmoods.instlRef - drive
FF - user.js: extensions.funmoods.dfltLng -
FF - user.js: extensions.funmoods.excTlbr - false
FF - user.js: extensions.funmoods.autoRvrt - false
FF - user.js: extensions.funmoods.envrmnt - production
FF - user.js: extensions.funmoods.isdcmntcmplt - true
FF - user.js: extensions.funmoods.mntrvrsn - 1.3.0
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 6
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 3
FF - user.js: content.max.tokenizing.time - 2250000
.
============= SERVICES / DRIVERS ===============
.
R0 FileLock;FileLock;c:\windows\system32\drivers\FileLock.sys [2012-3-11 35456]
R0 shpf;Sony HDD Protection Filter Driver;c:\windows\system32\drivers\shpf.sys [2011-8-31 23712]
R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [2012-8-18 14776]
R1 ElRawDisk;ElRawDisk;c:\windows\system32\drivers\rsdrv.sys [2011-8-1 22312]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [2012-3-3 109768]
R1 SABDIFSV;SABDIFSV;c:\program files\superadblocker.com\super ad blocker\sabdifsv.sys [2005-9-21 5632]
R1 SABKUTIL;SABKUTIL;c:\program files\superadblocker.com\super ad blocker\SABKUTIL.SYS [2007-2-20 32256]
R1 sosnf32;sosnf32;c:\windows\system32\drivers\sosnf32.sys [2012-3-8 49160]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2012-4-7 54760]
R2 ssax226;ZTE AX226 WiMAX Modem Switch Service;c:\program files\mada cm\cm\ssax226.exe [2012-9-13 61440]
R2 uxpatch;uxpatch;c:\windows\system32\drivers\uxpatch.sys [2009-7-13 25448]
R3 KeyScrambler;KeyScrambler;c:\windows\system32\drivers\keyscrambler.sys [2012-1-29 173880]
R3 SmbDrvI;SmbDrvI;c:\windows\system32\drivers\Smb_driver_Intel.sys [2012-8-23 23608]
R3 SRS_HDAL_Service;HD Audio Lab;c:\windows\system32\drivers\SRS_HDAL_i386.sys [2011-8-20 390944]
S1 AntiLog32;AntiLog32;\??\c:\windows\system32\drivers\antilog32.sys --> c:\windows\system32\drivers\AntiLog32.sys [?]
S1 CFRMD;CFRMD;c:\windows\system32\drivers\CFRMD.sys [2012-8-3 36112]
S1 WinFLAdrv;WinFLAdrv;c:\windows\system32\WinFLAdrv.sys [2012-3-11 29584]
S1 WinFPdrv;WinFPdrv;c:\windows\system32\WinFPdrv.sys [2011-8-27 19456]
S2 Browser Defender Update Service;Browser Defender Update Service; [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 5U875UVC;Sony Visual Communication Camera;c:\windows\system32\drivers\5U875.sys [2011-8-2 71296]
S3 a2acc;a2acc; [x]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-8-2 1691480]
S3 bcm;WiMAX Network Adapter;c:\windows\system32\drivers\drxvi314.sys [2012-2-2 331264]
S3 bcmbusctr;WiMAX Bus Driver;c:\windows\system32\drivers\BcmBusCtr.sys [2012-2-2 48512]
S3 DIGIRPS;Digi PortServer Driver;c:\windows\system32\drivers\digirlpt.sys [2012-9-8 42432]
S3 eRootDrv;eRootDrv;c:\windows\system32\drivers\eRootDrv.sys [2012-9-7 23976]
S3 esihdrv;esihdrv; [x]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-4-28 704872]
S3 mdf16;mdf16;c:\program files\clarus\samsung secretzone\mdf16.sys [2012-2-2 18288]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-6-17 114144]
S3 MusCAudio;MusCAudio;c:\windows\system32\drivers\MusCAudio.sys [2012-8-2 23608]
S3 mvd22;mvd22;c:\program files\clarus\samsung secretzone\mvd22.sys [2012-2-2 70512]
S3 NPF;WinPcap Packet Driver (NPF);c:\windows\system32\drivers\npf.sys [2010-6-25 35088]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2012\TuneUpUtilitiesDriver32.sys [2011-12-12 10064]
S3 UnsignedThemes;Unsigned Themes;c:\windows\UnsignedThemesSvc.exe [2009-7-13 21096]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-3 250056]
S4 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files\iobit\advanced systemcare 6\ASCService.exe [2012-8-17 1026432]
S4 FLService;FLService;c:\program files\gilisoft\file lock pro\FLService.exe [2012-3-11 86016]
S4 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\intel\intel(r) rapid storage technology\IAStorDataMgrSvc.exe [2011-8-3 13592]
S4 Skype C2C Service;Skype C2C Service;c:\documents and settings\all users\application data\skype\toolbars\skype c2c service\c2c_service.exe [2012-4-9 3063968]
S4 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
S4 SZASSIST;SecretZone Assist Service;c:\program files\clarus\samsung secretzone\SZAssistSVC.exe [2012-2-2 90112]
S4 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2012\TuneUpUtilitiesService32.exe [2012-2-9 1529152]
S4 Uniblue.MaxiDiskSvc;Uniblue Maxi Disk Service;c:\program files\uniblue\maxidisk\service.exe [2012-8-18 30096]
S4 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== File Associations ===============
.
scrfile="%1" %*
.
=============== Created Last 30 ================
.
2012-09-14 14:28:38 79360 ----a-w- c:\windows\system32\swxcacls.exe
2012-09-14 14:28:38 53248 ----a-w- c:\windows\system32\Process.exe
2012-09-14 14:28:38 135168 ----a-w- c:\windows\system32\swreg.exe
2012-09-14 13:42:00 98816 ----a-w- c:\windows\sed.exe
2012-09-14 13:42:00 518144 ----a-w- c:\windows\SWREG.exe
2012-09-14 13:42:00 256000 ----a-w- c:\windows\PEV.exe
2012-09-14 13:42:00 208896 ----a-w- c:\windows\MBR.exe
2012-09-14 13:41:57 -------- d-s---w- C:\ComboFix
2012-09-13 14:22:30 1894808 ----a-w- c:\windows\system32\drivers\macxvi200.bin
2012-09-13 14:22:27 -------- d-----w- c:\windows\system32\SupportWimax
2012-09-13 14:22:26 88704 ------w- c:\windows\Packet.dll
2012-09-13 14:22:26 240248 ------w- c:\windows\wpcap.dll
2012-09-13 14:22:22 -------- d-----w- c:\program files\Mada CM
2012-09-12 09:01:52 -------- d-----w- C:\driver
2012-09-12 07:04:03 7446 ----a-w- c:\windows\hr.reg
2012-09-12 07:04:03 398 ----a-w- c:\windows\im.reg
2012-09-12 07:04:03 13091 ----a-w- c:\windows\sb.reg
2012-09-12 06:30:00 0 ----a-w- C:\osy3.sys
2012-09-12 06:28:18 -------- d-s---w- C:\ComboFix_2
2012-09-11 16:20:30 -------- d-----w- c:\program files\ãäÇá
2012-09-11 15:16:15 -------- d-----w- c:\windows\system32\wbem\repository\FS
2012-09-11 15:16:15 -------- d-----w- c:\windows\system32\wbem\Repository
2012-09-10 17:00:23 1754 ----a-w- c:\windows\system32\tmp.reg
2012-09-10 17:00:05 87552 ----a-w- c:\windows\system32\VACFix.exe
2012-09-10 17:00:05 82944 ----a-w- c:\windows\system32\IEDFix.exe
2012-09-10 17:00:05 82944 ----a-w- c:\windows\system32\IEDFix.C.exe
2012-09-10 17:00:05 82432 ----a-w- c:\windows\system32\404Fix.exe
2012-09-10 17:00:05 80384 ----a-w- c:\windows\system32\o4Patch.exe
2012-09-10 17:00:05 78336 ----a-w- c:\windows\system32\Agent.OMZ.Fix.exe
2012-09-10 17:00:05 75776 ----a-w- c:\windows\system32\WS2Fix.exe
2012-09-10 17:00:05 51200 ----a-w- c:\windows\system32\dumphive.exe
2012-09-10 17:00:05 289144 ----a-w- c:\windows\system32\VCCLSID.exe
2012-09-10 17:00:05 288417 ----a-w- c:\windows\system32\SrchSTS.exe
2012-09-10 13:18:54 -------- dc-h--w- c:\documents and settings\all users\application data\{D36303DF-0AF1-460C-9A26-C4D3BAE007EE}
2012-09-10 08:39:38 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\ESET
2012-09-10 06:15:50 -------- d-----w- C:\SMCLpav
2012-09-10 04:43:04 -------- d-----w- c:\program files\Pale Moon
2012-09-09 19:30:40 7168 -c--a-w- c:\windows\system32\dllcache\EXCH_snprfdll.dll
2012-09-09 19:30:35 12288 -c--a-w- c:\windows\system32\dllcache\EXCH_smtpctrs.dll
2012-09-09 19:30:14 26112 -c--a-w- c:\windows\system32\dllcache\EXCH_seos.dll
2012-09-09 19:30:11 57856 -c--a-w- c:\windows\system32\dllcache\EXCH_scripto.dll
2012-09-09 19:29:53 23040 -c--a-w- c:\windows\system32\dllcache\EXCH_regtrace.exe
2012-09-09 19:29:12 38912 -c--a-w- c:\windows\system32\dllcache\EXCH_ntfsdrv.dll
2012-09-09 19:28:18 65536 -c--a-w- c:\windows\system32\dllcache\EXCH_mailmsg.dll
2012-09-09 19:27:38 60928 -c--a-w- c:\windows\system32\dllcache\iisclex4.dll
2012-09-09 19:26:47 43520 -c--a-w- c:\windows\system32\dllcache\EXCH_fcachdll.dll
2012-09-09 19:24:48 45056 -c--a-w- c:\windows\system32\dllcache\EXCH_aqadmin.dll
2012-09-09 19:24:40 5632 -c--a-w- c:\windows\system32\dllcache\EXCH_adsiisex.dll
2012-09-09 16:36:45 -------- d-----w- C:\CCE_Quarantine
2012-09-09 11:02:20 16910 ----a-w- C:\CIS REMOVAL TOOL.bat
2012-09-09 07:53:52 52736 ----a-w- C:\ÈÑäÇãÌ ÍÌÈ ÇáãæÇÞÚ-64ÈÊ.exe
2012-09-09 05:47:42 -------- d-----w- C:\Ad-Remover
2012-09-09 04:52:49 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\ElevatedDiagnostics
2012-09-09 01:59:11 -------- d-----w- C:\Log
2012-09-09 00:59:39 -------- d-----w- c:\program files\SuperCopier2
2012-09-09 00:54:57 -------- d-----w- C:\IDM_Setup_Temp
2012-09-08 22:30:13 -------- d-----w- c:\documents and settings\all users\application data\Comodo
2012-09-08 21:46:20 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2012-09-08 21:46:20 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2012-09-08 21:46:20 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2012-09-08 21:46:19 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2012-09-08 21:46:19 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2012-09-08 21:46:03 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2012-09-08 21:46:02 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2012-09-08 21:46:01 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2012-09-08 21:44:59 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2012-09-08 21:43:57 6912 -c--a-w- c:\windows\system32\dllcache\seaddsmc.sys
2012-09-08 21:42:59 54528 -c--a-w- c:\windows\system32\dllcache\opl3sax.sys
2012-09-08 21:41:59 8320 -c--a-w- c:\windows\system32\dllcache\memcard.sys
2012-09-08 21:41:59 47616 -c--a-w- c:\windows\system32\dllcache\memgrp.dll
2012-09-08 21:41:59 26624 -c--a-w- c:\windows\system32\dllcache\mdsync.dll
2012-09-08 21:41:59 26112 -c--a-w- c:\windows\system32\dllcache\memstpci.sys
2012-09-08 21:41:58 164586 -c--a-w- c:\windows\system32\dllcache\mdgndis5.sys
2012-09-08 21:41:57 7424 -c--a-w- c:\windows\system32\dllcache\mammoth.sys
2012-09-08 21:39:57 372824 -c--a-w- c:\windows\system32\dllcache\iconf32.dll
2012-09-08 21:38:59 8320 -c--a-w- c:\windows\system32\dllcache\dlttape.sys
2012-09-08 21:37:59 6272 -c--a-w- c:\windows\system32\dllcache\apmbatt.sys
2012-09-08 21:36:57 7680 -c--a-w- c:\windows\system32\dllcache\inetmgr.exe
2012-09-08 21:36:57 19968 -c--a-w- c:\windows\system32\dllcache\inetsloc.dll
2012-09-08 21:36:55 169984 -c--a-w- c:\windows\system32\dllcache\iisui.dll
2012-09-08 21:36:54 5632 -c--a-w- c:\windows\system32\dllcache\iisrstap.dll
2012-09-08 21:36:54 14336 -c--a-w- c:\windows\system32\dllcache\iisreset.exe
2012-09-08 21:36:53 6144 -c--a-w- c:\windows\system32\dllcache\ftpsapi2.dll
2012-09-08 20:01:54 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\Uninstaller Tool(Comodo Forums)
2012-09-08 17:02:13 -------- d-----w- c:\program files\common files\Comodo
2012-09-08 13:31:45 45320 ----a-w- c:\windows\system32\certsentry.dll
2012-09-08 13:16:42 499712 ----a-w- C:\msvcp71.dll
2012-09-08 13:16:42 262144 ----a-w- C:\RegCleaner.dll
2012-09-08 13:16:42 1060864 ----a-w- C:\MFC71.dll
2012-09-08 13:16:27 90112 ----a-w- C:\RegCleaner.exe
2012-09-08 09:03:55 -------- d-----w- C:\New Folder (4)
2012-09-08 08:56:07 -------- d-----w- c:\documents and settings\llllllllllllllllllll\Bluetooth Software
2012-09-08 08:30:16 42432 -c--a-w- c:\windows\system32\dllcache\digirlpt.sys
2012-09-08 08:30:16 42432 ----a-w- c:\windows\system32\drivers\digirlpt.sys
2012-09-08 08:30:16 110621 -c--a-w- c:\windows\system32\dllcache\digirlpt.dll
2012-09-08 08:30:16 110621 ----a-w- c:\windows\system32\digirlpt.dll
2012-09-08 07:12:41 -------- d-----w- c:\documents and settings\llllllllllllllllllll\local settings\application data\Privatefirewall
2012-09-08 05:45:14 -------- d---a-w- c:\windows\logo1_.exe
2012-09-07 19:53:33 -------- d---a-w- c:\windows\VDLL.DLL
2012-09-07 19:53:33 -------- d---a-w- c:\windows\system32\runouce.exe
2012-09-07 19:53:33 -------- d---a-w- c:\windows\logo_1.exe
2012-09-07 19:48:41 23976 ----a-w- c:\windows\system32\drivers\eRootDrv.sys
2012-09-07 19:24:58 632064 ----a-w- c:\windows\system32\msvcr80.dll
2012-09-07 19:24:54 554240 ----a-w- c:\windows\system32\msvcp80.dll
2012-09-07 19:24:53 572928 ----a-w- c:\windows\system32\msvcp90.dll
2012-09-07 19:24:51 655872 ----a-w- c:\windows\system32\msvcr90.dll
2012-09-07 19:24:48 34048 ----a-w- c:\windows\system32\eEmpty.exe
2012-09-07 19:24:36 146432 ----a-w- c:\windows\R.COM
2012-09-07 19:24:36 135680 ----a-w- c:\windows\system32\T.COM
2012-09-07 19:24:34 69120 ----a-w- c:\windows\notepad.exe
2012-09-07 19:24:32 -------- d-----w- c:\program files\common files\MicroWorld
2012-09-07 19:24:23 -------- d-----w- c:\documents and settings\all users\application data\MicroWorld
2012-09-07 16:01:15 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\TeamViewer
2012-09-07 16:01:08 -------- d-----w- c:\program files\TeamViewer
2012-09-07 02:37:02 -------- d-----w- c:\documents and settings\llllllllllllllllllll\local settings\application data\Opera
2012-09-07 02:27:47 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\Panda Security
2012-09-07 02:26:40 -------- d-----w- c:\program files\Toolbar Cleaner
2012-09-07 02:26:35 -------- d-----w- c:\documents and settings\llllllllllllllllllll\local settings\application data\panda2_0dn
2012-09-07 02:26:17 -------- d-----w- c:\documents and settings\all users\application data\Panda Security URL Filtering
2012-09-07 02:25:32 46280 ----a-w- c:\windows\system32\drivers\PSKMAD.sys
2012-09-07 02:24:49 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\pandasecuritytb
2012-09-07 02:20:38 -------- d-----w- c:\documents and settings\all users\application data\Panda Security
2012-09-07 02:20:37 -------- d-----w- c:\program files\Panda Security
2012-09-06 22:49:34 -------- d-----w- c:\program files\WinASO
2012-09-06 19:26:56 -------- d-----w- c:\documents and settings\all users\application data\Privacyware
2012-08-30 07:36:51 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\DiskAid
2012-08-30 07:36:38 -------- d-----w- c:\program files\DigiDNA
2012-08-30 03:00:23 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\iPhone Tool Kits
2012-08-30 02:59:20 94854 ----a-w- c:\windows\system32\HKCU_GNU.reg
2012-08-30 02:59:20 6144 ----a-w- c:\windows\system32\ff_acm.acm
2012-08-30 02:59:20 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2012-08-30 02:59:20 258352 ----a-w- c:\windows\system32\unicows.dll
2012-08-30 02:59:20 2004 ----a-w- c:\windows\system32\HKLM_GNU.reg
2012-08-30 02:59:19 499712 ----a-w- c:\windows\system32\MSVCP71.DLL
2012-08-30 02:59:19 14909 ----a-w- c:\windows\system32\A_reg.reg
2012-08-30 02:59:11 -------- d-----w- c:\program files\Cucusoft
2012-08-30 00:43:58 -------- d-----w- c:\program files\nFinity
2012-08-30 00:26:58 -------- d-----w- c:\program files\Temp
2012-08-30 00:13:57 -------- d-----w- c:\documents and settings\llllllllllllllllllll\local settings\application data\Apple Computer
2012-08-30 00:12:03 -------- d-----w- c:\program files\iPod
2012-08-30 00:12:01 -------- d-----w- c:\program files\iTunes
2012-08-30 00:12:01 -------- d-----w- c:\documents and settings\all users\application data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2012-08-30 00:11:41 -------- d-----w- c:\documents and settings\llllllllllllllllllll\local settings\application data\Apple
2012-08-30 00:11:13 4547944 ----a-w- c:\windows\system32\usbaaplrc.dll
2012-08-30 00:11:13 43520 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2012-08-30 00:10:48 -------- d-----w- c:\program files\Bonjour
2012-08-29 23:41:13 -------- d-----w- c:\documents and settings\llllllllllllllllllll\local settings\application data\Wondershare
2012-08-29 23:41:11 -------- d-----w- c:\program files\common files\Wondershare
2012-08-29 23:40:50 -------- d-----w- c:\documents and settings\all users\application data\Wondershare
2012-08-29 23:40:47 67680 ----a-w- c:\windows\system32\libusb0.dll
2012-08-29 23:40:46 42592 ----a-w- c:\windows\system32\drivers\libusb0.sys
2012-08-29 23:40:42 -------- d--h--w- c:\program files\Dr.Fone_Temp
2012-08-29 23:40:42 -------- d-----w- c:\program files\Wondershare
2012-08-29 23:23:20 -------- d-----w- c:\program files\GetData
2012-08-28 21:28:29 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\OnlineArmor
2012-08-28 21:28:29 -------- d-----w- c:\documents and settings\all users\application data\OnlineArmor
2012-08-28 21:28:14 42152 ----a-w- c:\windows\system32\drivers\oahlp32.sys
2012-08-28 21:28:14 29464 ----a-w- c:\windows\system32\drivers\OAnet.sys
2012-08-28 21:28:14 25192 ----a-w- c:\windows\system32\drivers\OAmon.sys
2012-08-28 21:28:14 205864 ----a-w- c:\windows\system32\drivers\OADriver.sys
2012-08-28 21:26:59 -------- d-----w- c:\program files\Online Armor
2012-08-28 21:24:20 -------- d-----w- c:\program files\NCH Software
2012-08-28 21:24:18 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\NCH Software
2012-08-28 20:48:39 -------- d-----w- c:\documents and settings\all users\CrypKey
2012-08-28 20:45:29 27648 ----a-r- c:\windows\Setup_ck.exe
2012-08-28 20:45:29 19584 ----a-w- c:\windows\system32\Ckldrv.sys
2012-08-28 20:45:29 18432 ----a-w- c:\windows\Setup_ck.dll
2012-08-28 20:45:29 165888 ----a-w- c:\windows\Ckconfig.exe
2012-08-28 20:45:29 122880 ----a-w- c:\windows\system32\Crypserv.exe
2012-08-28 20:45:29 11776 ----a-w- c:\windows\Ckrfresh.exe
2012-08-28 20:45:27 -------- d-----w- c:\program files\Stellar Phoenix Windows Data Recovery
2012-08-28 20:33:38 73696 ----a-w- c:\program files\mozilla firefox\breakpadinjector.dll
2012-08-28 20:19:01 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\IDM
2012-08-28 20:18:44 -------- d-----w- c:\program files\Internet Download Manager
2012-08-28 05:07:49 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\Windows Search
2012-08-28 05:01:18 -------- d-----w- c:\program files\Windows Desktop Search
2012-08-28 04:50:14 -------- dc-h--w- c:\windows\ie8
2012-08-28 03:59:17 -------- d-----w- c:\documents and settings\all users\application data\KRSHistory
2012-08-28 03:50:49 -------- d-----w- c:\program files\Microsoft Chart Controls
2012-08-28 03:49:52 -------- d-sh--w- C:\KRECYCLE
2012-08-28 03:49:05 -------- d-----w- c:\program files\kingsoft
2012-08-28 03:49:01 -------- d-----w- c:\documents and settings\all users\application data\kingsoft
2012-08-28 00:47:28 -------- d-----w- c:\program files\Emsisoft Anti-Malware
2012-08-27 19:53:33 -------- d-----w- c:\program files\VS Revo Group
2012-08-27 18:11:20 14664 ----a-w- c:\windows\stinger.sys
2012-08-27 16:38:42 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\dll-files.com
2012-08-27 16:38:20 -------- d-----w- c:\program files\Dll-Files.com Fixer
2012-08-27 14:44:07 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\nFinity
2012-08-26 19:27:08 -------- d-----w- c:\program files\stinger
2012-08-26 08:46:43 120872 ----a-w- c:\windows\system32\drivers\PSINProt.sys
2012-08-26 08:46:42 179368 ----a-w- c:\windows\system32\drivers\PSINKNC.sys
2012-08-26 08:46:42 114856 ----a-w- c:\windows\system32\drivers\PSINProc.sys
2012-08-26 08:46:42 102696 ----a-w- c:\windows\system32\drivers\PSINFile.sys
2012-08-26 08:46:00 149544 ----a-w- c:\windows\system32\drivers\PSINAflt.sys
2012-08-25 05:49:33 -------- d-----w- c:\documents and settings\llllllllllllllllllll\licman
2012-08-25 05:49:29 -------- d-----w- c:\documents and settings\llllllllllllllllllll\EREnt
2012-08-25 05:48:58 -------- d-----w- c:\program files\Kroll Ontrack
2012-08-25 04:04:30 -------- d-----w- c:\documents and settings\all users\application data\Spybot - Search & Destroy
2012-08-25 02:58:12 -------- d-----w- C:\Tweaking.com_Windows_Repair_Logs
2012-08-25 02:42:48 -------- d-----w- c:\program files\McAfee Security Scan
2012-08-25 02:38:30 143872 ----a-w- c:\windows\system32\javacpl.cpl
2012-08-25 02:38:14 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2012-08-23 09:16:55 223152 ----a-w- c:\windows\system32\drivers\SynTP.sys
2012-08-23 09:16:55 206120 ----a-w- c:\windows\system32\SynCtrl.dll
2012-08-23 09:16:55 169256 ----a-w- c:\windows\system32\SynCOM.dll
2012-08-23 09:16:55 161064 ----a-w- c:\windows\system32\SynTPAPI.dll
2012-08-23 09:16:55 120104 ----a-w- c:\windows\system32\SynTPCo4.dll
2012-08-23 09:11:26 -------- d-----w- c:\program files\Synaptics
2012-08-23 09:10:58 1461992 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2012-08-23 09:10:57 23608 ----a-w- c:\windows\system32\drivers\Smb_driver_Intel.sys
2012-08-22 03:36:38 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\SystemSpeedBooster
2012-08-22 03:36:38 -------- d-----w- c:\documents and settings\all users\application data\SystemSpeedBooster
2012-08-20 05:04:09 -------- d-----w- c:\documents and settings\llllllllllllllllllll\VirtualBox VMs
2012-08-20 05:01:59 -------- d-----w- c:\documents and settings\llllllllllllllllllll\.VirtualBox
2012-08-20 04:40:16 158552 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2012-08-20 04:39:18 91992 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2012-08-19 21:49:27 -------- d-----w- c:\program files\AdFender
2012-08-19 21:49:27 -------- d-----w- c:\documents and settings\llllllllllllllllllll\local settings\application data\AdFender
2012-08-19 16:57:08 -------- d-----w- c:\program files\AntiLogger
2012-08-19 15:01:18 -------- d-----w- c:\program files\CCleaner
2012-08-19 14:59:26 28672 ----a-w- c:\windows\system32\MSGHOO32.OCX
2012-08-19 14:59:13 368912 ----a-w- c:\windows\system32\vbar332.dll
2012-08-19 14:43:19 -------- d-----w- c:\program files\File Scavenger 3.2
2012-08-19 06:27:57 20304 ----a-w- c:\windows\system32\drivers\L8042Kbd.sys
2012-08-18 20:51:57 -------- d-----w- c:\documents and settings\llllllllllllllllllll\application data\Uniblue
2012-08-18 20:51:38 -------- d-----w- c:\program files\Uniblue
2012-08-18 05:48:01 114144 ----a-w- c:\program files\mozilla firefox\maintenanceservice.exe
2012-08-18 04:49:01 -------- d-----w- c:\program files\SpyShelter Premium
2012-08-17 22:59:12 29528 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2012-08-17 22:58:57 14776 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2012-08-17 21:55:09 -------- d-----w- c:\documents and settings\llllllllllllllllllll\AppData
2012-08-17 07:03:23 -------- d-----w- c:\program files\Zemana AntiMalware
2012-08-17 07:02:54 -------- d-----w- c:\documents and settings\all users\application data\Zemana AntiMalware
.
==================== Find3M ====================
.
2012-09-14 14:47:36 0 ----a-w- c:\windows\FileLock.bin
2012-09-07 17:16:02 12872 ----a-w- c:\windows\system32\bootdelete.exe
2012-08-28 04:54:32 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-28 04:54:32 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-25 02:38:02 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-08-25 02:38:02 746984 ----a-w- c:\windows\system32\deployJava1.dll
2012-08-03 08:23:28 36112 ----a-w- c:\windows\system32\drivers\CFRMD.sys
2012-08-03 08:23:28 36112 ----a-w- c:\windows\inf\lps-ca\cfrmd.sys
2012-08-02 00:23:14 109768 ----a-w- c:\windows\system32\drivers\idmtdi.sys
2012-07-30 13:18:54 22400 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2012-07-12 09:18:32 206632 ----a-w- c:\windows\system32\drivers\NNSStrm.sys
2012-07-06 13:58:51 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05:18 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 16:21:32 41224 ----a-w- c:\windows\avastSS.scr
2012-07-03 13:40:15 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-02 17:49:33 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:49:32 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-07-02 17:49:32 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05:43 385024 ----a-w- c:\windows\system32\html.iec
2012-06-27 13:51:07 92840 ----a-w- c:\windows\system32\drivers\NNStlsc.sys
2012-06-27 13:51:06 286376 ----a-w- c:\windows\system32\drivers\NNSProt.sys
2012-06-27 13:51:06 153000 ----a-w- c:\windows\system32\drivers\NNSPrv.sys
2012-06-27 13:51:06 106536 ----a-w- c:\windows\system32\drivers\NNSSmtp.sys
2012-06-27 13:51:05 51496 ----a-w- c:\windows\system32\drivers\NNSpihs.sys
2012-06-27 13:51:05 104104 ----a-w- c:\windows\system32\drivers\NNSPop3.sys
2012-06-27 13:51:04 93992 ----a-w- c:\windows\system32\drivers\NNSpicc.sys
2012-06-27 13:51:04 122664 ----a-w- c:\windows\system32\drivers\NNSIds.sys
2012-06-27 13:51:03 82472 ----a-w- c:\windows\system32\drivers\NNSAlpc.sys
2012-06-27 13:51:03 120744 ----a-w- c:\windows\system32\drivers\NNSHttp.sys
2012-06-25 14:04:24 1394248 ----a-w- c:\windows\system32\msxml4.dll
2012-06-25 14:02:34 88904 ----a-w- c:\windows\system32\msxml4r.dll
2012-06-22 09:39:14 70768 ----a-w- c:\windows\system32\drivers\PCTBD.sys
2012-06-22 09:39:02 149464 ----a-w- c:\windows\SGDetectionTool.dll
2012-06-22 09:39:00 2267096 ----a-w- c:\windows\PCTBDCore.dll
2012-06-22 09:39:00 1689560 ----a-w- c:\windows\PCTBDRes.dll
2012-06-22 09:38:38 767960 ----a-w- c:\windows\BDTSupport.dll
2008-03-09 05:25:10 236 ----a-w- c:\program files\common files\dx.reg
.
============= FINISH: 17:11:11.56 ===============
kamry2009
Active Member
 
Posts: 7
Joined: September 10th, 2012, 12:39 pm
Advertisement
Register to Remove

Re: INTERNET NOT WORKING

Unread postby MWR 3 day Mod » September 17th, 2012, 4:09 pm

Hi,

We are sorry to see your topic is over three days old and no one has yet been able to respond and offer help.

If you still require assistance, please post a link to your topic in our Waiting for help with malware removal? forum, and our staff will make an effort to assist you as promptly as possible. Only post a LINK to this topic, DO NOT post your DDS log!

Please do not reply to this topic.

If you haven't posted within two days in the "Waiting for help with malware removal?" forum, we will assume you have been able to get assistance in other ways and this topic will be closed.
MWR 3 day Mod
MRU Undergrad
MRU Undergrad
 
Posts: 2534
Joined: April 4th, 2008, 8:40 am

Re: INTERNET NOT WORKING

Unread postby askey127 » September 19th, 2012, 11:44 am

Hi kamry2009,
Sorry for the delay.

Since the machine has no internet, you will need to download the tools onto a flash using a clean machine, and copy these files to the infected machine's desktop.
Download CKScanner from HERE
Download OTL.exe by OldTimer
Download the TDSSKiller.exe by Kaspersky...
Download the Microsoft Security Essentials Installer from here: http://www.microsoft.com/security_essentials/

After any scans are run and logs are generated, you will need to copy the logs back onto the flash drive, and post them as a reply here, using the clean machine again.

After looking this over, It is not at all clear whether this machine can be "Fixed".

First, there is Not enough Free Space on the machine Hard Drive. XP needs about 15% free space to run properly.
-----------------------------------------------------------
Insufficient Free Space on Hard Drive C:
You have a fairly severe emergency having to do with available space on your hard Drive.
Windows needs about 15% of the drive free to run properly.
You need to remove some files by burning them to CD/DVD, transferring to another storage device, and/or just deleting them.
If you have a large music, photo or video collection stored on the C: drive, consider trimming it down or storing some of the collection elsewhere.
-----------------------------------------------------------
About Some of the Installed Utilities
You have a lot of very risky utilities on the machine, any one of which could render the machine useless.
I cannot help but notice that most of them are also available on crack sites, as well.
If you used these sites, you can be certain the downloads will infect the machine
-----------------------------------------------------------
Remove Programs Using Control Panel
From Start, Settings, Control Panel or Start, Control Panel, click Add/Remove Programs.
Highlight each Entry, as follows, one by one, if it exists, and choose Remove :

Advanced SystemCare 6
CamStudio OSS Desktop Recorder
Device Doctor v2.1
DiskAid 5.31
<== if you did NOT pay for this, Uninstall it
DiskGetor Data Recovery V3.2
File Scavenger 3.2 (en)
Game Booster 3
GeekBuddy
<== if you did NOT pay for this, Uninstall it
HDD Regenerator
Smart Defrag 2
SpeederXP v2.63
Uniblue MaxiDisk

Take extra care in answering questions posed by any Uninstaller.
-----------------------------------------------------------
REBOOT (RESTART) Your Machine
-----------------------------------------------------------
Check Hard Disk For Errors
Press Start->Run, then type or copy/paste the following command into the box and press OK:
Code: Select all
cmd  /c  chkdsk  c:  |find  /v  "percent"  >> "%userprofile%\desktop\checkhd.txt"
A blank command window will open on your desktop, then close in a few minutes. This is normal.
A file and icon named checkhd.txt should appear on your Desktop. Please post the contents of this file.
---------------------------------------------
Run CKScanner
Doubleclick CKScanner.exe and click Search For Files.
After a couple minutes or less, when the cursor hourglass disappears, click Save List To File.
A message box will verify the file saved. Please run the program just once.
Double-click the CKFiles.txt icon on your desktop and copy/paste the contents in your next reply.

askey127
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 14025
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA

Re: INTERNET NOT WORKING

Unread postby askey127 » September 23rd, 2012, 7:36 am

Due to Lack of Response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 14025
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 123 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware