[Banned] XP syst thrashing, IE can't go to bookmarked sites

Malwarebytes forun 5 errors fixed all 5.

MBAM log after REPAIR
Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.04.04.03

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Rosemary :: DAN-9B587E4D6B [administrator]

4/4/2013 9:38:20 AM
mbam-log-2013-04-04 (09-38-20).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 288306
Time elapsed: 10 minute(s), 22 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


ASWMBR log

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-04-04 09:50:48
-----------------------------
09:50:48.734 OS Version: Windows 5.1.2600 Service Pack 3
09:50:48.734 Number of processors: 2 586 0x170A
09:50:48.734 ComputerName: DAN-9B587E4D6B UserName: Rosemary
09:50:50.703 Initialize success
09:58:57.046 AVAST engine defs: 13040400
10:01:08.937 The log file has been saved successfully to "C:\Documents and Settings\Rosemary\Desktop\aswMBR log 4-4-13.txt "


DDS. TXT

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.17.2
Run by Rosemary at 10:16:31 on 2013-04-04
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3583.2593 [GMT -4:00]
.
AV: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE
C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files\AVG SafeGuard toolbar\vprot.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
C:\Program Files\Intuit\QuickBooks 2012\QBW32.EXE
C:\Documents and Settings\Rosemary\Application Data\Dropbox\bin\Dropbox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.goodsearch.com/
mStart Page = hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10042&barid={834C93B1-9AB8-11E2-B353-6C626D7982BA}
uURLSearchHooks: SweetIM ToolbarURLSearchHook Class: {EEE6C35D-6118-11DC-9C72-001320C79847} -
BHO: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - <orphaned>
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>
BHO: GetSavin 5.0: {5EB1D2B1-45DC-48B3-852D-E575B405B851} - c:\documents and settings\rosemary\local settings\application data\getsavin\ie\getsavin_1362667201.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: {95B7759C-8C7F-4BF1-B163-73684A933233} - <orphaned>
uRun: [Auto EPSON Stylus Photo R280 Series (Copy 1) on PREFERRE-901505] c:\windows\system32\spool\drivers\w32x86\3\e_faticka.exe /fu "c:\windows\temp\E_S68.tmp" /EF "HKCU "
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [TrueImageMonitor.exe] "c:\program files\acronis\trueimagehome\TrueImageMonitor.exe "
mRun: [Acronis Scheduler2 Service] "c:\program files\common files\acronis\schedule2\schedhlp.exe "
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe "
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Carbonite Backup] c:\program files\carbonite\carbonite backup\CarboniteUI.exe
mRun: [Intuit SyncManager] c:\program files\common files\intuit\sync\IntuitSyncManager.exe startup
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe "
mRun: [Samsung PanelMgr] c:\windows\samsung\panelmgr\SSMMgr.exe /autorun
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mRun: [vProt] "c:\program files\avg safeguard toolbar\vprot.exe "
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\rosemary\startm~1\programs\startup\dropbox.lnk - c:\documents and settings\rosemary\application data\dropbox\bin\Dropbox.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\intuit~1.lnk - c:\program files\common files\intuit\dataprotect\IntuitDataProtect.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\nkbmon~1.lnk - c:\program files\nikon\pictureproject\NkbMonitor.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~2.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\intuit\quickbooks 2012\QBW32.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1340479904892
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1340479886048
DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{1277BEF1-ECD1-4BB4-AF06-854B23CFF0F1} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{42D65B82-7165-4BC7-8322-035057612EF1} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{DA10535F-91B7-4963-B9C2-49678085FF7D} : DHCPNameServer = 192.168.0.1
Handler: intu-help-qb5 - {867FCB77-9823-4cd6-8210-D85F968D466F} - c:\program files\intuit\quickbooks 2012\HelpAsyncPluggableProtocol.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} -
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\14.2.0\ViProtocol.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\rosemary\application data\mozilla\firefox\profiles\m34ymj1u.default\
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://www.goodsearch.com/
FF - prefs.js: keyword.URL - hxxp://start.sweetpacks.com/?src=2&st=12&barid={834C93B1-9AB8-11E2-B353-6C626D7982BA}&q=
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\14.2.0\npsitesafety.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_6_602_180.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
FF - ExtSQL: 2013-03-29 09:23; avg@toolbar; c:\documents and settings\all users\application data\avg safeguard toolbar\firefoxext\14.2.0.1
FF - ExtSQL: 2013-04-01 06:41; {EEE6C361-6118-11DC-9C72-001320C79847}; c:\documents and settings\rosemary\application data\mozilla\firefox\profiles\m34ymj1u.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-4-19 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2013-2-8 245048]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-8-8 96568]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-9-13 39224]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\drivers\tdrpm273.sys [2011-4-14 752128]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2011-12-23 208184]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2011-12-23 22328]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-7-11 170808]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-7-11 182072]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-3-29 33112]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/04/13 21:45:00];c:\program files\cyberlink\powerdvd10\navfilter\000.fcl [2010-4-2 87536]
R2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files\common files\acronis\cdp\afcdpsrv.exe [2011-4-14 3246040]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2013-2-27 4937264]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2013-2-19 282624]
R2 IntuitUpdateServiceV4;Intuit Update Service v4;c:\program files\common files\intuit\update service v4\IntuitUpdateService.exe [2012-8-23 13672]
R2 ioloSystemService;iolo System Service;c:\program files\iolo\common\lib\ioloServiceManager.exe [2011-9-22 1053184]
R2 PDFsFilter;PDFsFilter;c:\windows\system32\drivers\PDFsFilter.sys [2012-7-28 68464]
R2 QBVSS;QBIDPService;c:\program files\common files\intuit\dataprotect\QBIDPService.exe [2011-8-19 1248256]
R2 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0;c:\program files\common files\avg secure search\vtoolbarupdater\14.2.0\ToolbarUpdater.exe [2013-3-30 968880]
R3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [2011-4-14 167968]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [2011-4-13 50176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SSPORT;SSPORT;\??\c:\windows\system32\drivers\ssport.sys --> c:\windows\system32\drivers\SSPORT.sys [?]
S3 cpuz135;cpuz135;\??\c:\docume~1\rosemary\locals~1\temp\cpuz135\cpuz135_x32.sys --> c:\docume~1\rosemary\locals~1\temp\cpuz135\cpuz135_x32.sys [?]
S3 MSICDSetup;MSICDSetup;\??\d:\cdriver.sys --> d:\CDriver.sys [?]
S3 SWDUMon;SWDUMon;c:\windows\system32\drivers\SWDUMon.sys [2011-11-27 12984]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2011-4-13 2127728]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== File Associations ===============
.
FileExt: .vbe: VBEFile=NOTEPAD.EXE "%1 "
FileExt: .vbs: VBSFile=NOTEPAD.EXE "%1 "
FileExt: .js: JSFile=NOTEPAD.EXE "%1 "
FileExt: .jse: JSEFile=NOTEPAD.EXE "%1 "
FileExt: .wsf: WSFFile=NOTEPAD.EXE "%1 "
.
=============== Created Last 30 ================
.
2013-04-04 12:51:52 -------- d-----w- c:\documents and settings\rosemary\application data\Malwarebytes
2013-04-04 12:51:33 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2013-04-04 12:51:32 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-04-04 12:51:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-04-04 12:43:10 -------- d-sh--w- c:\documents and settings\rosemary\IECompatCache
2013-04-01 10:47:32 -------- d-----w- c:\documents and settings\all users\application data\SweetIM
2013-04-01 10:47:10 -------- d-----w- c:\program files\DomaIQ Uninstaller
2013-04-01 10:41:15 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\Updater19962
2013-04-01 10:40:32 -------- d-----w- c:\program files\Optimizer Pro
2013-03-30 14:26:00 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\AVG SafeGuard toolbar
2013-03-30 14:25:44 -------- d-----w- c:\windows\system32\cache
2013-03-29 13:33:07 -------- d-----w- c:\documents and settings\rosemary\application data\AVG2013
2013-03-29 13:23:57 -------- d-----w- c:\documents and settings\rosemary\application data\TuneUp Software
2013-03-29 13:23:52 -------- d-----w- c:\documents and settings\all users\application data\AVG SafeGuard toolbar
2013-03-29 13:23:44 -------- d-----w- c:\documents and settings\rosemary\application data\AVG SafeGuard toolbar
2013-03-29 13:23:40 33112 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2013-03-29 13:23:36 -------- d-----w- c:\program files\common files\AVG Secure Search
2013-03-29 13:23:35 -------- d-----w- c:\program files\AVG SafeGuard toolbar
2013-03-29 13:20:10 -------- d-----w- c:\documents and settings\all users\application data\AVG2013
2013-03-29 13:17:29 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\MFAData
2013-03-29 13:17:29 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\Avg2013
2013-03-27 17:48:05 1167536 ----a-w- c:\windows\isRS-000.tmp
2013-03-25 04:28:07 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\LogMeIn Rescue Applet
2013-03-20 12:54:07 266360 ----a-w- c:\windows\system32\TweakUI.exe
2013-03-20 12:02:23 14048 ------w- c:\windows\system32\spmsg2.dll
2013-03-20 03:28:51 482408 ----a-w- c:\windows\ssndii.exe
2013-03-20 03:28:50 -------- d-----w- c:\program files\SamsungPrinterLiveUpdate
2013-03-20 03:28:48 -------- d-----w- c:\windows\Samsung
2013-03-20 03:28:24 81920 ----a-w- c:\windows\system32\ssdevm.dll
2013-03-20 03:28:24 49152 ----a-w- c:\windows\system32\ssusbpn.dll
2013-03-20 03:28:24 44544 ----a-w- c:\windows\system32\msxml4a.dll
2013-03-20 03:28:24 21776 ----a-w- c:\windows\system32\msxml2a.dll
2013-03-20 03:28:17 65536 ----a-w- c:\windows\system32\cl31cci.dll
2013-03-20 03:28:17 22723 ----a-w- c:\windows\system32\cl31cl3.dll
2013-03-20 03:28:17 19968 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\cl31cpc.dll
2013-03-20 03:28:17 151552 ----a-w- c:\windows\system32\cl31cci.exe
2013-03-20 03:27:37 -------- d-----w- c:\program files\Samsung
2013-03-20 03:27:29 -------- d-----w- C:\Temp
2013-03-19 16:16:01 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\1Click DVD Copy Pro
2013-03-19 00:58:30 -------- d-----w- c:\program files\Windows Live SkyDrive
2013-03-17 22:55:17 -------- d-----w- c:\documents and settings\rosemary\application data\TaxCut
2013-03-15 08:09:02 -------- d-----w- c:\program files\MSECache
2013-03-14 20:46:02 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-03-14 15:09:26 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\Mozilla
2013-03-13 23:31:18 -------- d-sh--w- C:\INCINERATE
2013-03-13 23:14:52 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\PCHealth
2013-03-13 11:20:59 21504 ----a-w- c:\windows\system32\drivers\hidserv.dll
2013-03-13 11:19:59 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2013-03-13 06:54:52 -------- d-----w- c:\documents and settings\all users\application data\Norton
2013-03-10 21:37:53 -------- d-----w- c:\program files\HRBlock2012
2013-03-10 21:32:24 -------- d-----w- c:\documents and settings\all users\application data\TaxCut
2013-03-10 21:27:13 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\ApplicationHistory
2013-03-10 21:23:39 45056 ----a-r- c:\documents and settings\rosemary\application data\microsoft\installer\{bcfef7fd-da6d-4a14-8f44-fb290d96a804}\NewShortcut21_BCFEF7FDDA6D4A148F44FB290D96A804_2.exe
2013-03-10 21:23:39 45056 ----a-r- c:\documents and settings\rosemary\application data\microsoft\installer\{bcfef7fd-da6d-4a14-8f44-fb290d96a804}\NewShortcut2_BCFEF7FDDA6D4A148F44FB290D96A804_3.exe
2013-03-10 21:23:03 -------- d-----w- c:\program files\common files\Crystal Decisions
2013-03-10 21:20:51 -------- d-----w- c:\program files\OrchidWiz
2013-03-10 01:20:14 4200896 ----a-w- c:\windows\system32\cdintf400.dll
2013-03-10 01:19:33 -------- d-----w- c:\program files\Quicken
2013-03-10 00:52:21 733184 ----a-w- c:\program files\common files\installshield\professional\runtime\10\00\intel32\iKernel.dll
2013-03-10 00:52:21 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\10\00\intel32\ctor.dll
2013-03-10 00:52:21 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\10\00\intel32\DotNetInstaller.exe
2013-03-10 00:52:21 266240 ----a-w- c:\program files\common files\installshield\professional\runtime\10\00\intel32\iscript.dll
2013-03-10 00:52:21 172032 ----a-w- c:\program files\common files\installshield\professional\runtime\10\00\intel32\iuser.dll
2013-03-10 00:52:20 303236 ----a-w- c:\program files\common files\installshield\professional\runtime\10\00\intel32\setup.dll
2013-03-10 00:52:20 180356 ----a-w- c:\program files\common files\installshield\professional\runtime\10\00\intel32\iGdi.dll
2013-03-09 22:43:15 -------- d-----w- c:\documents and settings\all users\application data\Nuance
2013-03-09 22:42:31 -------- d-----w- c:\documents and settings\all users\application data\SQL Anywhere 11
2013-03-09 22:32:54 -------- d-----w- c:\windows\Intuit
2013-03-09 02:14:33 -------- d-----w- c:\program files\Dropbox
2013-03-09 02:13:30 -------- d-----w- c:\documents and settings\rosemary\application data\Dropbox
2013-03-09 01:24:07 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\Identities
2013-03-08 23:51:29 -------- d-----w- c:\documents and settings\rosemary\local settings\application data\Help
2013-03-08 23:49:54 -------- d-----w- C:\lj632
2013-03-08 23:47:29 -------- d-----w- C:\LaserJet 5P driver
.
==================== Find3M ====================
.
2013-04-02 12:43:44 59 ----a-w- c:\windows\wpd99.drv
2013-03-18 03:59:00 41616 ----a-w- c:\windows\system32\iolobtdfg.exe
2013-03-18 03:58:52 23568 ----a-w- c:\windows\system32\smrgdf.exe
2013-03-18 03:43:56 2097472 ----a-w- c:\windows\system32\Incinerator32.dll
2013-03-14 20:45:36 143872 ----a-w- c:\windows\system32\javacpl.cpl
2013-03-14 20:45:35 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-03-14 20:45:35 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-03-13 06:18:32 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-13 06:18:32 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-03-10 20:15:05 1079188 ----a-w- c:\windows\system32\nvdrsdb0.bin
2013-03-10 20:15:05 1 ----a-w- c:\windows\system32\nvdrssel.bin
2013-03-10 20:15:02 1079188 ----a-w- c:\windows\system32\nvdrsdb1.bin
2013-03-01 14:32:20 22328 ----a-w- c:\windows\system32\drivers\avgidsshimx.sys
2013-02-27 03:40:46 208184 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys
2013-02-14 07:52:46 182072 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2013-02-12 00:32:23 12928 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-10 03:20:28 892704 ----a-w- c:\windows\system32\nvdispgenco3220162.dll
2013-02-10 03:20:28 7749632 ----a-w- c:\windows\system32\nvcuda.dll
2013-02-10 03:20:28 65536 ----a-w- c:\windows\system32\OpenCL.dll
2013-02-10 03:20:28 6070272 ----a-w- c:\windows\system32\nvopencl.dll
2013-02-10 03:20:28 4078976 ----a-w- c:\windows\system32\nv4_disp.dll
2013-02-10 03:20:28 2731296 ----a-w- c:\windows\system32\nvcuvid.dll
2013-02-10 03:20:28 2481664 ----a-w- c:\windows\system32\nvapi.dll
2013-02-10 03:20:28 1990944 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-02-10 03:20:28 19685376 ----a-w- c:\windows\system32\nvoglnt.dll
2013-02-10 03:20:28 17551360 ----a-w- c:\windows\system32\nvcompiler.dll
2013-02-10 03:20:28 10707360 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2013-02-10 03:20:28 1012512 ----a-w- c:\windows\system32\nvdispco3220294.dll
2013-02-10 00:27:31 54272 ----a-w- c:\windows\system32\nvwddi.dll
2013-02-10 00:27:29 223008 ----a-w- c:\windows\system32\nvmctray.dll
2013-02-10 00:27:29 156960 ----a-w- c:\windows\system32\nvsvc32.exe
2013-02-10 00:27:29 15664416 ----a-w- c:\windows\system32\nvcpl.dll
2013-02-10 00:27:28 144160 ----a-w- c:\windows\system32\nvcolor.exe
2013-02-08 08:37:56 245048 ----a-w- c:\windows\system32\drivers\avglogx.sys
2013-02-08 08:37:52 60216 ----a-w- c:\windows\system32\drivers\avgidshx.sys
2013-02-08 08:37:44 170808 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2013-02-08 08:37:40 39224 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
2013-02-05 20:05:47 916480 ----a-w- c:\windows\system32\wininet.dll
2013-02-05 20:05:46 43520 ------w- c:\windows\system32\licmgr10.dll
2013-02-05 20:05:46 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-02-05 05:53:57 385024 ------w- c:\windows\system32\html.iec
2013-01-26 03:55:44 552448 ----a-w- c:\windows\system32\oleaut32.dll
2013-01-07 01:19:45 2148864 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-07 00:37:01 2027520 ----a-w- c:\windows\system32\ntkrnlpa.exe
.
============= FINISH: 10:19:29.46 ===============

 

ASWMBR log

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-04-04 09:50:48
-----------------------------
09:50:48.734 OS Version: Windows 5.1.2600 Service Pack 3
09:50:48.734 Number of processors: 2 586 0x170A
09:50:48.734 ComputerName: DAN-9B587E4D6B UserName: Rosemary
09:50:50.703 Initialize success
09:58:57.046 AVAST engine defs: 13040400
10:01:08.937 The log file has been saved successfully to "C:\Documents and Settings\Rosemary\Desktop\aswMBR log 4-4-13.txt "


aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-04-04 10:57:54
-----------------------------
10:57:54.718 OS Version: Windows 5.1.2600 Service Pack 3
10:57:54.718 Number of processors: 2 586 0x170A
10:57:54.718 ComputerName: DAN-9B587E4D6B UserName: Rosemary
10:57:57.156 Initialize success
10:58:15.937 AVAST engine defs: 13040400
11:17:07.078 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-5
11:17:07.078 Disk 0 Vendor: Hitachi_HDS721010CLA332 JP4OA3MA Size: 953869MB BusType: 3
11:17:07.218 Disk 0 MBR read successfully
11:17:07.218 Disk 0 MBR scan
11:17:07.265 Disk 0 unknown MBR code
11:17:07.281 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 478020 MB offset 2048
11:17:07.281 Disk 0 Partition - 00 05 Extended 475848 MB offset 978987008
11:17:07.390 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 424582 MB offset 978989056
11:17:07.515 Disk 0 scanning sectors +1953525168
11:17:07.750 Disk 0 scanning C:\WINDOWS\system32\drivers
11:17:19.062 Service scanning
11:17:45.312 Modules scanning
11:17:52.765 Disk 0 trace - called modules:
11:17:52.781 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
11:17:52.781 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8b0a4ab8]
11:17:52.796 3 CLASSPNP.SYS[b80e8fd7] -> nt!IofCallDriver -> \Device\0000006f[0x8b083510]
11:17:52.796 5 ACPI.sys[b7f7f620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-5[0x8b082940]
11:17:54.984 AVAST engine scan C:\WINDOWS
11:18:11.328 AVAST engine scan C:\WINDOWS\system32
11:24:43.171 AVAST engine scan C:\WINDOWS\system32\drivers
11:25:22.093 AVAST engine scan C:\Documents and Settings\Rosemary
11:26:02.281 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Rosemary\Desktop\MBR.dat "
11:26:02.281 The log file has been saved successfully to "C:\Documents and Settings\Rosemary\Desktop\aswMBR log 4-4-13.txt "

 

ADDITIONAL INFO

clicking on the Mirror 1
link on Arie's post takes IE to a differnent site

NOT http://download.bleepingcomputer.com/sUBs/dds.com

When I force this URL into IE, I can download DDS, byt it quits part way through, and I have to tun off the power to get re-started.

 

Whatever this 'thing' is. it has changed the font size on IE to LARGE which can't be changed.