Inactive Logs for your Perusal

[Inactive] Logs for your Perusal

This computer tries to open everything in IE. I could not get GMER to create a log, but will try again if it is vital to your diagnostics. TIA!!

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6400

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

4/19/2011 5:53:00 PM
mbam-log-2011-04-19 (17-53-00).txt

Scan type: Quick scan
Objects scanned: 170374
Time elapsed: 4 minute(s), 9 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 64-bit
Base Board Manufacturer: Hewlett-Packard
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: HP G61 Notebook PC
Logical Drives Mask: 0x0000003c

Kernel Drivers (total 197):
0x02A52000 \SystemRoot\system32\ntoskrnl.exe
0x02A09000 \SystemRoot\system32\hal.dll
0x00BBC000 \SystemRoot\system32\kdcom.dll
0x00C25000 \SystemRoot\system32\mcupdate_AuthenticAMD.dll
0x00C32000 \SystemRoot\system32\PSHED.dll
0x00C46000 \SystemRoot\system32\CLFS.SYS
0x00CA4000 \SystemRoot\system32\CI.dll
0x00E22000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00EC6000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00ED5000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x00F2C000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x00F35000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x00F3F000 \SystemRoot\system32\DRIVERS\pci.sys
0x00F72000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x00F7F000 \SystemRoot\system32\DRIVERS\isapnp.sys
0x00F88000 \SystemRoot\system32\DRIVERS\mpio.sys
0x00FB2000 \SystemRoot\System32\drivers\partmgr.sys
0x00FC7000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x00FD0000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x00FDC000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x00D64000 \SystemRoot\System32\drivers\volmgrx.sys
0x00FF1000 \SystemRoot\system32\DRIVERS\intelide.sys
0x00E00000 \SystemRoot\system32\DRIVERS\PCIIDEX.SYS
0x00E10000 \SystemRoot\system32\DRIVERS\aliide.sys
0x00E17000 \SystemRoot\system32\DRIVERS\amdide.sys
0x00DC0000 \SystemRoot\system32\DRIVERS\cmdide.sys
0x00DC8000 \SystemRoot\System32\drivers\mountmgr.sys
0x01092000 \SystemRoot\system32\DRIVERS\msdsm.sys
0x010B8000 \SystemRoot\system32\DRIVERS\nvraid.sys
0x010E1000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x01111000 \SystemRoot\system32\DRIVERS\pciide.sys
0x01118000 \SystemRoot\system32\DRIVERS\viaide.sys
0x012A5000 \SystemRoot\system32\DRIVERS\iaStorV.sys
0x013C3000 \SystemRoot\system32\DRIVERS\atapi.sys
0x013CC000 \SystemRoot\system32\DRIVERS\ataport.SYS
0x01200000 \SystemRoot\system32\DRIVERS\lsi_sas.sys
0x0121D000 \SystemRoot\system32\DRIVERS\storport.sys
0x0127F000 \SystemRoot\system32\DRIVERS\msahci.sys
0x0128A000 \SystemRoot\system32\DRIVERS\HpSAMD.sys
0x01120000 \SystemRoot\system32\DRIVERS\adp94xx.sys
0x0119B000 \SystemRoot\system32\DRIVERS\adpahci.sys
0x01000000 \SystemRoot\system32\DRIVERS\adpu320.sys
0x0102F000 \SystemRoot\system32\DRIVERS\amdsata.sys
0x014D8000 \SystemRoot\system32\DRIVERS\amdsbs.sys
0x0151F000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x0152A000 \SystemRoot\system32\DRIVERS\arc.sys
0x01543000 \SystemRoot\system32\DRIVERS\arcsas.sys
0x0155E000 \SystemRoot\system32\DRIVERS\elxstor.sys
0x015E5000 \SystemRoot\system32\DRIVERS\iirsp.sys
0x01400000 \SystemRoot\system32\DRIVERS\lsi_fc.sys
0x0141F000 \SystemRoot\system32\DRIVERS\lsi_sas2.sys
0x01432000 \SystemRoot\system32\DRIVERS\lsi_scsi.sys
0x01451000 \SystemRoot\system32\DRIVERS\megasas.sys
0x016E4000 \SystemRoot\system32\DRIVERS\MegaSR.sys
0x01788000 \SystemRoot\system32\DRIVERS\nfrd960.sys
0x01798000 \SystemRoot\system32\DRIVERS\nvstor.sys
0x0185C000 \SystemRoot\system32\DRIVERS\ql2300.sys
0x01600000 \SystemRoot\system32\DRIVERS\ql40xx.sys
0x01800000 \SystemRoot\system32\DRIVERS\SiSRaid2.sys
0x0180E000 \SystemRoot\system32\DRIVERS\sisraid4.sys
0x01826000 \SystemRoot\system32\DRIVERS\stexstor.sys
0x01830000 \SystemRoot\system32\DRIVERS\vsmraid.sys
0x0165F000 \SystemRoot\system32\drivers\fltmgr.sys
0x016AB000 \SystemRoot\system32\drivers\fileinfo.sys
0x01A5D000 \SystemRoot\System32\Drivers\Ntfs.sys
0x0145D000 \SystemRoot\System32\Drivers\msrpc.sys
0x01A00000 \SystemRoot\System32\Drivers\ksecdd.sys
0x01C72000 \SystemRoot\System32\Drivers\cng.sys
0x01CE5000 \SystemRoot\System32\drivers\pcw.sys
0x01CF6000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x01D00000 \SystemRoot\system32\drivers\ndis.sys
0x01C00000 \SystemRoot\system32\drivers\NETIO.SYS
0x01A1A000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x01E01000 \SystemRoot\System32\drivers\tcpip.sys
0x02009000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x02053000 \SystemRoot\system32\DRIVERS\wd.sys
0x0205B000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x020A7000 \SystemRoot\System32\Drivers\spldr.sys
0x020AF000 \SystemRoot\system32\DRIVERS\sbp2port.sys
0x020CC000 \SystemRoot\System32\drivers\rdyboost.sys
0x02106000 \SystemRoot\System32\Drivers\mup.sys
0x02118000 \SystemRoot\System32\drivers\hwpolicy.sys
0x02121000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x0215B000 \SystemRoot\system32\DRIVERS\disk.sys
0x02171000 \SystemRoot\system32\DRIVERS\avgrkx64.sys
0x0217B000 \SystemRoot\system32\DRIVERS\AVGIDSEH.Sys
0x02185000 \SystemRoot\system32\DRIVERS\AtiPcie.sys
0x021C5000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x021EF000 \SystemRoot\system32\DRIVERS\avgmfx64.sys
0x03E92000 \SystemRoot\system32\drivers\NISx64\1100000.088\SRTSP64.SYS
0x03F18000 \SystemRoot\system32\drivers\NISx64\1100000.088\SRTSPX64.SYS
0x0423C000 \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20090829.019\EX64.SYS
0x04200000 \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20090829.019\ENG64.SYS
0x04220000 \SystemRoot\System32\Drivers\Null.SYS
0x04229000 \SystemRoot\System32\Drivers\Beep.SYS
0x043E9000 \SystemRoot\System32\drivers\vga.sys
0x03F2C000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x03F51000 \SystemRoot\System32\drivers\watchdog.sys
0x043F7000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x04230000 \SystemRoot\system32\drivers\rdpencdd.sys
0x03F61000 \SystemRoot\system32\drivers\rdprefmp.sys
0x03F6A000 \SystemRoot\System32\Drivers\Msfs.SYS
0x03F75000 \SystemRoot\System32\Drivers\Npfs.SYS
0x03F86000 \SystemRoot\system32\DRIVERS\tdx.sys
0x03FA4000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x03E00000 \SystemRoot\system32\DRIVERS\avgtdia.sys
0x03FB1000 \SystemRoot\System32\DRIVERS\netbt.sys
0x03499000 \SystemRoot\system32\drivers\afd.sys
0x03523000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x0352C000 \SystemRoot\system32\DRIVERS\pacer.sys
0x03552000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x03568000 \SystemRoot\system32\DRIVERS\netbios.sys
0x03594000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x035AF000 \SystemRoot\system32\DRIVERS\termdd.sys
0x03400000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x03451000 \SystemRoot\system32\drivers\nsiproxy.sys
0x0345D000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x03468000 \SystemRoot\System32\drivers\discache.sys
0x03477000 \SystemRoot\System32\Drivers\dfsc.sys
0x03577000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x046FE000 \SystemRoot\system32\DRIVERS\avgldx64.sys
0x0474E000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x04774000 \SystemRoot\system32\DRIVERS\amdppm.sys
0x050AB000 \SystemRoot\system32\DRIVERS\atikmdag.sys
0x056C2000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x057B6000 \SystemRoot\System32\drivers\dxgmms1.sys
0x05000000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x0483C000 \SystemRoot\system32\DRIVERS\athrx.sys
0x049AB000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x049B8000 \SystemRoot\system32\DRIVERS\Rt64win7.sys
0x049F1000 \SystemRoot\system32\DRIVERS\usbohci.sys
0x05024000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x04800000 \SystemRoot\system32\DRIVERS\usbfilter.sys
0x0480D000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x0480F000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x0507A000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x04820000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x0482C000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x04789000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x05098000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x047D2000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x047D7000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x047E0000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x04600000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x04616000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x0463A000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x04646000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x04675000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x04690000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x046B1000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x049FC000 \SystemRoot\system32\DRIVERS\swenum.sys
0x0104D000 \SystemRoot\system32\DRIVERS\ks.sys
0x046CB000 \SystemRoot\system32\DRIVERS\umbus.sys
0x04CA0000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x04CFA000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x04D0F000 \SystemRoot\system32\drivers\AtiHdmi.sys
0x04D30000 \SystemRoot\system32\drivers\portcls.sys
0x04D6D000 \SystemRoot\system32\drivers\drmk.sys
0x04D8F000 \SystemRoot\system32\drivers\ksthunk.sys
0x04C00000 \SystemRoot\system32\DRIVERS\stwrt64.sys
0x05899000 \SystemRoot\system32\DRIVERS\agrsm64.sys
0x059CA000 \SystemRoot\system32\drivers\modem.sys
0x05800000 \SystemRoot\System32\Drivers\fastfat.SYS
0x05836000 \SystemRoot\System32\Drivers\crashdmp.sys
0x05844000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x05850000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x0585B000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x00010000 \SystemRoot\System32\win32k.sys
0x0586E000 \SystemRoot\System32\drivers\Dxapi.sys
0x0587A000 \SystemRoot\system32\DRIVERS\monitor.sys
0x004D0000 \SystemRoot\System32\TSDDD.dll
0x006A0000 \SystemRoot\System32\cdd.dll
0x00940000 \SystemRoot\System32\ATMFD.DLL
0x059D9000 \SystemRoot\system32\drivers\luafv.sys
0x04C7B000 \SystemRoot\system32\drivers\WudfPf.sys
0x04D95000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x04DAA000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x046DD000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x035C3000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x05888000 \SystemRoot\system32\DRIVERS\vwifimp.sys
0x03A24000 \SystemRoot\system32\drivers\HTTP.sys
0x03AEC000 \SystemRoot\system32\DRIVERS\bowser.sys
0x03B0A000 \SystemRoot\System32\drivers\mpsdrv.sys
0x03B22000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x03B4F000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x03B9D000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x03BC0000 \SystemRoot\system32\DRIVERS\AVGIDSFilter.Sys
0x05ADB000 \SystemRoot\system32\drivers\peauth.sys
0x05B81000 \SystemRoot\System32\Drivers\secdrv.SYS
0x05B8C000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x05BB9000 \SystemRoot\System32\drivers\tcpipreg.sys
0x05BCB000 \SystemRoot\system32\DRIVERS\AVGIDSDriver.Sys
0x05A00000 \SystemRoot\System32\DRIVERS\srv2.sys
0x068B1000 \SystemRoot\System32\DRIVERS\srv.sys
0x77750000 \Windows\System32\ntdll.dll
0x48150000 \Windows\System32\smss.exe
0xFFA70000 \Windows\System32\apisetschema.dll

Processes (total 82):
0 System Idle Process
4 System
264 C:\Windows\System32\smss.exe
328 C:\PROGRA~2\AVG\AVG10\avgchsva.exe
540 csrss.exe
616 csrss.exe
632 C:\Windows\System32\wininit.exe
668 C:\Windows\System32\winlogon.exe
732 C:\Windows\System32\services.exe
740 C:\Windows\System32\lsass.exe
752 C:\Windows\System32\lsm.exe
880 C:\Windows\System32\svchost.exe
960 C:\Windows\System32\svchost.exe
1000 C:\Windows\System32\atiesrxx.exe
504 C:\Windows\System32\svchost.exe
536 C:\Windows\System32\svchost.exe
608 C:\Windows\System32\svchost.exe
792 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe
1212 C:\Windows\System32\svchost.exe
1252 C:\Windows\System32\atieclxx.exe
1360 C:\Windows\System32\svchost.exe
1504 C:\Windows\System32\spoolsv.exe
1540 C:\Windows\System32\svchost.exe
1636 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
1656 C:\Program Files\LSI SoftModem\agr64svc.exe
1696 C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
1732 C:\Windows\System32\svchost.exe
1768 C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
1792 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
1820 C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\ccSvcHst.exe
1908 C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
1976 C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
2040 C:\Windows\System32\svchost.exe
804 C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
2240 C:\Windows\System32\taskhost.exe
2312 C:\Windows\System32\dwm.exe
2336 C:\Windows\explorer.exe
2452 C:\Program Files (x86)\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS\A5E82D02\17.0.0.136\InstStub.exe
2976 C:\Program Files (x86)\AVG\AVG10\avgnsa.exe
2992 C:\Program Files (x86)\AVG\AVG10\avgemca.exe
3024 C:\Windows\System32\conhost.exe
3244 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3252 C:\Program Files\IDT\WDM\sttray64.exe
3260 C:\Program Files\Java\jre6\bin\jusched.exe
3268 C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
3276 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
3816 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
3892 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
3076 C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
3088 C:\Program Files (x86)\AVG\AVG10\avgtray.exe
3096 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
3580 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
500 C:\Windows\System32\SearchIndexer.exe
2908 C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
3180 C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
3432 C:\Windows\System32\conhost.exe
4064 WmiPrvSE.exe
3336 C:\Program Files\Windows Media Player\wmpnetwk.exe
4168 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
4616 C:\Windows\System32\svchost.exe
3296 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
3496 C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
272 C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
1644 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
3148 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
3460 C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
4936 C:\PROGRA~2\AVG\AVG10\avgrsa.exe
2104 C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe
196 C:\Windows\System32\svchost.exe
4276 C:\Windows\System32\wuauclt.exe
6096 C:\Windows\System32\audiodg.exe
5172 C:\Windows\System32\SearchProtocolHost.exe
4512 C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe
6024 C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe
5136 C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe
5808 C:\Windows\SysWOW64\rundll32.exe
5388 C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe
5188 C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe
404 C:\Windows\System32\SearchFilterHost.exe
4124 C:\Users\Christian\Downloads\MBRCheck.exe
2256 C:\Windows\System32\conhost.exe
788 C:\Windows\System32\dllhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`0c800000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000036`cd300000 (NTFS)
\\.\E: --> \\.\PhysicalDrive0 at offset 0x0000003a`32300000 (FAT32)

PhysicalDrive0 Model Number: HitachiHTS725025A9A364, Rev: PC2OC72E

Size Device Name MBR Status
--------------------------------------------
232 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 5656EFB5644FBE5B550E1B2377322996CD02D93D


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:



.
DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by Christian at 18:19:20.09 on Wed 04/20/2011
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.2812.1167 [GMT -5:00]
.
AV: Norton Internet Security *Enabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Internet Security *Disabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
FW: Norton Internet Security *Disabled* {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG10\avgchsva.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
C:\Program Files\LSI SoftModem\agr64svc.exe
C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\ccSvcHst.exe
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS\A5E82D02\17.0.0.136\InstStub.exe
C:\Program Files (x86)\AVG\AVG10\avgnsa.exe
C:\Program Files (x86)\AVG\AVG10\avgemca.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files (x86)\AVG\AVG10\avgtray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\PROGRA~2\AVG\AVG10\avgrsa.exe
C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\wuauclt.exe
C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Christian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\Christian\Downloads\dds.pif
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://welcometointernet.org/
uSearch Bar = Preserve
mStart Page = hxxp://www.youcansearch.com
mURLSearchHooks: Quizulous2 Toolbar: {392d065e-4679-4d12-8342-2a2d505fd309} - C:\Program Files (x86)\Quizulous2\prxtbQuiz.dll
mURLSearchHooks: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll
mWinlogon: Userinit=userinit.exe,
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
BHO: Quizulous2 Toolbar: {392d065e-4679-4d12-8342-2a2d505fd309} - C:\Program Files (x86)\Quizulous2\prxtbQuiz.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\IPSBHO.DLL
BHO: Browser Enhancer: {86ef8bd1-47f3-4322-923f-f29cdf477eb0} - C:\Program Files (x86)\CAJ Media\Browser Enhancer\adxloader.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll "
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\coIEPlg.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll
TB: Quizulous2 Toolbar: {392d065e-4679-4d12-8342-2a2d505fd309} - C:\Program Files (x86)\Quizulous2\prxtbQuiz.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll
TB: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll "
TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
uRun: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW
uRun: [Google Update] "C:\Users\Christian\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
mRun: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe "
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [<NO NAME>]
mRun: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
mRun: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe "
mRun: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
StartupFolder: C:\Users\CHRIST~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\ADOBEG~1.LNK - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files (x86)\McAfee Security Scan\2.1.121\SSScheduler.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\PICTUR~1.LNK - C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgpp.dll
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe "
BHO-X64: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssiea.dll
BHO-X64: WormRadar.com IESiteBlocker.NavFilter - No File
BHO-X64: Browser Enhancer: {86ef8bd1-47f3-4322-923f-f29cdf477eb0} - C:\Program Files (x86)\CAJ Media\Browser Enhancer\adxloader64.dll
BHO-X64: 0x1 - No File
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
TB-X64: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
TB-X64: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
TB-X64: {392D065E-4679-4D12-8342-2A2D505FD309} - No File
TB-X64: {90B49673-5506-483E-B92B-CA0265BD9CA8} - No File
EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File
mRun-x64: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun-x64: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
mRun-x64: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe "
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;C:\Windows\System32\drivers\AVGIDSEH.sys [2010-9-13 27216]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2010-9-7 30288]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2010-12-8 308304]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2010-9-7 41040]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2010-11-12 382032]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904]
R2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [2010-3-15 89600]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2009-8-4 203264]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-1-6 6128720]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe [2010-10-22 265400]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-10-14 92216]
R2 NIS;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\ccSvcHst.exe [2010-3-15 126392]
R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\AVGIDSDriver.sys [2010-8-19 157264]
R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\System32\drivers\AVGIDSFilter.sys [2010-8-19 35920]
R3 Com4QLBEx;Com4QLBEx;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-10-30 228408]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2010-3-15 215040]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2010-3-15 36408]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\System32\drivers\vwifimp.sys [2009-7-13 17920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-1-19 136176]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [2010-12-25 517448]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-2-15 183560]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe [2010-9-3 227232]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-10 5434368]
S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-12-29 1255736]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120]
.
=============== Created Last 30 ================
.
2011-04-19 21:51:39 -------- d-----w- C:\Users\CHRIST~1\AppData\Roaming\Malwarebytes
2011-04-19 21:51:33 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-04-19 21:51:33 -------- d-----w- C:\PROGRA~3\Malwarebytes
2011-04-19 21:51:30 24152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-04-19 21:51:29 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-04-16 03:19:59 740864 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2011-04-16 03:19:58 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2011-04-16 03:19:58 286720 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2011-04-16 03:19:58 157696 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2011-04-16 03:19:58 126464 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2011-03-29 05:09:26 -------- d-----w- C:\Users\CHRIST~1\AppData\Roaming\CoreInternetUtility
2011-03-24 04:22:21 -------- d-----w- C:\tmp
.
==================== Find3M ====================
.
2011-03-11 06:19:26 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2011-03-11 06:19:26 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2011-03-11 05:40:24 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2011-03-11 05:40:24 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2011-03-08 06:14:30 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2011-03-03 06:17:10 182272 ----a-w- C:\Windows\System32\dnsrslvr.dll
2011-03-03 06:14:38 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2011-03-03 05:27:30 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2011-03-03 03:58:32 3133440 ----a-w- C:\Windows\System32\win32k.sys
2011-02-24 06:30:00 476160 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2011-02-24 06:29:15 1197056 ----a-w- C:\Windows\System32\wininet.dll
2011-02-24 06:24:57 57856 ----a-w- C:\Windows\System32\licmgr10.dll
2011-02-24 05:32:52 288256 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2011-02-24 05:32:44 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
2011-02-24 05:30:16 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2011-02-24 05:05:13 482816 ----a-w- C:\Windows\System32\html.iec
2011-02-24 04:24:04 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2011-02-24 04:23:48 386048 ----a-w- C:\Windows\SysWow64\html.iec
2011-02-24 03:50:26 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2011-02-23 05:16:28 461312 ----a-w- C:\Windows\System32\drivers\srv.sys
2011-02-23 05:16:01 401920 ----a-w- C:\Windows\System32\drivers\srv2.sys
2011-02-23 05:15:50 161792 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2011-02-21 03:30:14 2868224 ----a-w- C:\Windows\System32\python32.dll
2011-02-19 06:37:44 1135104 ----a-w- C:\Windows\System32\FntCache.dll
2011-02-19 06:37:10 1540608 ----a-w- C:\Windows\System32\DWrite.dll
2011-02-19 06:36:49 902656 ----a-w- C:\Windows\System32\d2d1.dll
2011-02-19 06:36:13 46080 ----a-w- C:\Windows\System32\atmlib.dll
2011-02-19 05:32:48 1074176 ----a-w- C:\Windows\SysWow64\DWrite.dll
2011-02-19 05:32:35 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2011-02-19 05:32:08 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2011-02-19 04:13:39 367104 ----a-w- C:\Windows\System32\atmfd.dll
2011-02-19 03:37:02 294912 ----a-w- C:\Windows\SysWow64\atmfd.dll
2011-02-18 06:37:05 612352 ----a-w- C:\Windows\System32\vbscript.dll
2011-02-18 05:36:26 428032 ----a-w- C:\Windows\SysWow64\vbscript.dll
2011-02-12 06:14:41 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2011-02-05 12:41:43 556928 ----a-w- C:\Windows\System32\winresume.efi
2011-02-05 12:41:35 640896 ----a-w- C:\Windows\System32\winload.efi
2011-02-05 12:41:24 20352 ----a-w- C:\Windows\System32\kdusb.dll
2011-02-05 12:41:24 19328 ----a-w- C:\Windows\System32\kd1394.dll
2011-02-05 12:41:23 17792 ----a-w- C:\Windows\System32\kdcom.dll
2011-02-05 12:39:21 603976 ----a-w- C:\Windows\System32\winload.exe
2011-02-05 12:39:21 518160 ----a-w- C:\Windows\System32\winresume.exe
2011-02-03 03:40:23 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-01-26 06:53:10 982912 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2011-01-26 06:53:10 265088 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2011-01-26 06:31:20 144384 ----a-w- C:\Windows\System32\cdd.dll
.
============= FINISH: 18:20:14.23 ===============



.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 12/25/2010 10:22:44 PM
System Uptime: 4/20/2011 1:19:46 PM (5 hours ago)
.
Motherboard: Hewlett-Packard | | 363F
Processor: AMD Sempron(tm) M120 | Socket S1G3 | 2100/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 219 GiB total, 168.668 GiB free.
D: is FIXED (NTFS) - 14 GiB total, 2.244 GiB free.
E: is FIXED (FAT32) - 0 GiB total, 0.09 GiB free.
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP35: 3/10/2011 12:18:46 AM - Windows Update
RP36: 3/20/2011 2:10:52 PM - Scheduled Checkpoint
RP37: 3/24/2011 12:02:30 AM - Windows Update
RP38: 4/15/2011 10:43:32 PM - Windows Update
.
==== Installed Programs ======================
.
Acrobat.com
ActiveCheck component for HP Active Support Library
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Photoshop 7.0
Adobe Reader 9.1 MUI
Adobe Shockwave Player
Adobe Shockwave Player 11.5
AMD USB Filter Driver
Atheros Driver Installation Program
Bing Bar
Bing Rewards Client Installer
Blender (remove only)
Browser Enhancer
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Compatibility Pack for the 2007 Office system
Conduit Engine
CyberLink DVD Suite
CyberLink MediaShow
CyberLink PowerDVD 8
EA Download Manager
FaceMorpher Lite 2.5
Free RAR Extract Frog
Google Chrome
Google Earth
Google SketchUp 8
Google Update Helper
HP Advisor
HP Customer Experience Enhancements
HP Games
HP Quick Launch Buttons
HP Setup
HP Smart Web Printing
HP Support Assistant
HP Update
HP User Guides 0148
HP Wireless Assistant
HPAsset component for HP Active Support Library
IDT Audio
IMVU Avatar Chat Software
IMVU Inc Toolbar
Java Auto Updater
Java(TM) 6 Update 20
Java(TM) 6 Update 24
Junk Mail filter update
LabelPrint
LightScribe System Software
Malwarebytes' Anti-Malware
McAfee Security Scan Plus
Microsoft Choice Guard
Microsoft Live Search Toolbar
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Works
Microsoft WSE 3.0 Runtime
MSVCRT
muvee Reveal
Norton Internet Security
Norton Online Backup
OpenOffice.org 3.2
PictureMover
Power2Go
PowerDirector
QLBCASL
Quizulous2 Toolbar
Realtek 8136 8168 8169 Ethernet Driver
Realtek USB 2.0 Card Reader
Recovery Manager
Secret Crush Revealer
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Slingbox - Watch Your TV Anywhere
SlingPlayer
The Simsâ„¢ 3
thriXXX WebLaunch
Tom Clancy's Rainbow Six
Total Annihilation
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft Office Word 2007 (KB974631)
Update for Office 2007 (KB934528)
Update Installer for WildTangent Games App
VirtuaGirl
Virtual DJ Home - Atomix Productions
Visual Studio 2008 x64 Redistributables
WildTangent Games App (HP Games)
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer
WinRAR archiver
Zoo Tycoon 2
.
==== Event Viewer Messages From Past Week ========
.
4/19/2011 4:58:44 PM, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter
.
==== End Of File ===========================

 

Thanks broni!
Here's the log file from exehelper:


exeHelper by Raktor
Build 20100414
Run at 19:00:39 on 04/20/11
Now searching...
Checking for numerical processes...
Checking for sysguard processes...
Checking for bad processes...
Checking for bad files...
Checking for bad registry entries...
Resetting filetype association for .exe
Resetting filetype association for .com
Resetting userinit and shell values...
Resetting policies...
--Finished--


Should I go ahead and remove one of the anti-viruses now? I'm going to take out Norton because we never purchased it, so it must be a pre-loaded trial version or something. I'll wait to hear from you before I do anything else.

 

Programs aren't opening properly. When I double clip on an icon, several ie windows open and they ask for the OK to begin downloads. I can't even open the "system info" window in the accessories panel without the same type of process happening.

I'll go ahead with the Norton removal.

 

Another problem...
I clicked your link to remove Norton, but it asks me which product I have. My Start Menu says, "Norton Internet Security ", but that isn't one of the choices at the link site. Also, I can't open the Norton due to the problem described in post 1.

Can I try the uninstall that came with the Norton?

 

Here's the ComboFix log. I went ahead and uninstalled the AVG for now, per your instructions above. I'll reinstall it now while I await your next post. Thanks!


ComboFix 11-04-20.03 - Christian 04/20/2011 22:26:33.1.1 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.2812.1791 [GMT -5:00]
Running from: c:\users\Christian\Downloads\ComboFix.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
.
.
((((((((((((((((((((((((( Files Created from 2011-03-21 to 2011-04-21 )))))))))))))))))))))))))))))))
.
.
2011-04-21 03:35 . 2011-04-21 03:35 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-04-19 21:51 . 2011-04-19 21:51 -------- d-----w- c:\users\Christian\AppData\Roaming\Malwarebytes
2011-04-19 21:51 . 2011-04-19 21:51 -------- d-----w- c:\programdata\Malwarebytes
2011-04-19 21:51 . 2010-12-20 23:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-04-19 21:51 . 2010-12-20 23:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-19 21:51 . 2011-04-19 21:51 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-04-16 03:19 . 2011-03-08 05:38 740864 ----a-w- c:\windows\SysWow64\inetcomm.dll
2011-04-16 03:19 . 2011-02-23 05:15 157696 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-16 03:19 . 2011-02-23 05:15 286720 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-04-16 03:19 . 2011-02-23 05:15 126464 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-04-16 03:19 . 2011-02-23 05:15 90624 ----a-w- c:\windows\system32\drivers\bowser.sys
2011-03-29 05:09 . 2011-04-19 21:13 -------- d-----w- c:\users\Christian\AppData\Roaming\CoreInternetUtility
2011-03-24 04:22 . 2011-03-26 23:30 -------- d-----w- C:\tmp
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-21 03:30 . 2011-02-21 03:30 2868224 ----a-w- c:\windows\system32\python32.dll
2011-02-19 06:37 . 2011-03-09 21:44 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-02-19 06:37 . 2011-03-09 21:44 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-02-19 06:36 . 2011-03-09 21:43 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-02-19 05:32 . 2011-03-09 21:44 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-02-19 05:32 . 2011-03-09 21:43 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-02-03 03:40 . 2010-12-29 01:25 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-01-26 06:53 . 2011-02-09 06:44 982912 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2011-01-26 06:53 . 2011-02-09 06:44 265088 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-01-26 06:31 . 2011-02-09 06:44 144384 ----a-w- c:\windows\system32\cdd.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2011-01-03 16:16 175400 ----a-w- c:\program files (x86)\ConduitEngine\prxConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{392d065e-4679-4d12-8342-2a2d505fd309}]
2011-01-03 16:16 175400 ----a-w- c:\program files (x86)\Quizulous2\prxtbQuiz.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{86ef8bd1-47f3-4322-923f-f29cdf477eb0}]
2010-07-01 15:31 462848 ----a-w- c:\program files (x86)\CAJ Media\Browser Enhancer\adxloader.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{90b49673-5506-483e-b92b-ca0265bd9ca8}]
2011-01-17 22:54 175912 ----a-w- c:\program files (x86)\IMVU_Inc\prxtbIMVU.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{392d065e-4679-4d12-8342-2a2d505fd309} "= "c:\program files (x86)\Quizulous2\prxtbQuiz.dll" [2011-01-03 175400]
"{30F9B915-B755-4826-820B-08FBA6BD249D} "= "c:\program files (x86)\ConduitEngine\prxConduitEngine.dll" [2011-01-03 175400]
"{90b49673-5506-483e-b92b-ca0265bd9ca8} "= "c:\program files (x86)\IMVU_Inc\prxtbIMVU.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{392d065e-4679-4d12-8342-2a2d505fd309}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CLASSES_ROOT\clsid\{90b49673-5506-483e-b92b-ca0265bd9ca8}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel "= "c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-08-20 2363392]
"HPADVISOR "= "c:\program files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [2009-09-29 1685048]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC "= "c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-08-05 98304]
"QlbCtrl.exe "= "c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-08-20 322104]
"NortonOnlineBackupReminder "= "c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-06-29 600936]
"Adobe Reader Speed Launcher "= "c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-28 35696]
"HP Software Update "= "c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"WirelessAssistant "= "c:\program files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-07-23 498744]
"SunJavaUpdateSched "= "c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
.
c:\users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.2.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2011-1-3 113664]
McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\2.1.121\SSScheduler.exe [2010-9-3 255536]
PictureMover.lnk - c:\program files (x86)\PictureMover\Bin\PictureMover.exe [2009-5-24 430080]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin "= 5 (0x5)
"ConsentPromptBehaviorUser "= 3 (0x3)
"EnableUIADesktopToggle "= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer "=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG10\avgchsva.exe /sync\0c:\progra~2\AVG\AVG10\avgrsa.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@= "Driver "
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-19 136176]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-15 183560]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe [2010-09-03 227232]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [2009-03-02 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-10-14 92216]
S3 Com4QLBEx;Com4QLBEx;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-08-20 20:24 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2011-04-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-19 23:15]
.
2011-04-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-19 23:15]
.
2011-04-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2712886818-4175280020-673999654-1001Core.job
- c:\users\Christian\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-09 01:34]
.
2011-04-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2712886818-4175280020-673999654-1001UA.job
- c:\users\Christian\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-09 01:34]
.
2011-04-21 c:\windows\Tasks\HPCeeScheduleForChristian.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2009-10-07 11:22]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{86ef8bd1-47f3-4322-923f-f29cdf477eb0}]
2010-07-01 15:31 662016 ----a-w- c:\program files (x86)\CAJ Media\Browser Enhancer\adxloader64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp "= "c:\program files\IDT\WDM\sttray64.exe" [2009-07-22 450048]
"SunJavaUpdateSched "= "c:\program files\Java\jre6\bin\jusched.exe" [2009-10-31 171520]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs "=0x0
.
------- Supplementary Scan -------
.
uStart Page = hxxp://welcometointernet.org/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.youcansearch.com
mLocal Page = c:\windows\SysWOW64\blank.htm
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKCU-Run-EA Core - c:\program files (x86)\Electronic Arts\EADM\Core.exe
WebBrowser-{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{392D065E-4679-4D12-8342-2A2D505FD309} - (no file)
WebBrowser-{90B49673-5506-483E-B92B-CA0265BD9CA8} - (no file)
HKLM-Run-SynTPEnh - %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-Free RAR Extract Frog - c:\program files (x86)\Free RAR Extract Frog\uninstall.exe
AddRemove-vghd - c:\users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtuaGirl\uninstall.lnk
AddRemove-{08DB3902-2CE0-474D-BCE3-0177766CE9F1} - c:\program files (x86)\InstallShield Installation Information\{08DB3902-2CE0-474D-BCE3-0177766CE9F1}\setup.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@= "FlashBroker "
"LocalizedString "= "@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled "=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@= "c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10c.exe "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@= "{FAB3E735-69C7-453B-A446-B6823C6DF1C9} "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@= "Shockwave Flash Object "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@= "c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx "
"ThreadingModel "= "Apartment "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@= "0 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@= "ShockwaveFlash.ShockwaveFlash.10 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@= "c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@= "{D27CDB6B-AE6D-11cf-96B8-444553540000} "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@= "1.0 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@= "ShockwaveFlash.ShockwaveFlash "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@= "Macromedia Flash Factory Object "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@= "c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx "
"ThreadingModel "= "Apartment "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@= "FlashFactory.FlashFactory.1 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@= "c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@= "{D27CDB6B-AE6D-11cf-96B8-444553540000} "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@= "1.0 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@= "FlashFactory.FlashFactory "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@= "IFlashBroker3 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@= "{00020424-0000-0000-C000-000000000046} "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@= "{FAB3E735-69C7-453B-A446-B6823C6DF1C9} "
"Version "= "1.0 "
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial "=dword:00000000
"MSCurrentCountry "=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2011-04-20 22:37:33
ComboFix-quarantined-files.txt 2011-04-21 03:37
.
Pre-Run: 181,955,686,400 bytes free
Post-Run: 181,836,652,544 bytes free
.
- - End Of File - - 4E6122A41B371B1E62309B6477A9FAF6

 

Because I've had to download the scans, I'm opening them from the download section in the bottom of my "Chrome" browser. I've opened Maleware Bytes by right clicking a program icon on my desktop, then selecting "scan with Maleware Bytes... ". I opened my AVG from the system tray. Is there a way to video my desktop to show you exactly what happens when I double click a program icon?

Most all my icons have changed to an icon like this -
http://www.infocellar.com/software/Images-Files/ie-html-icon.jpg
Is there any chance that this is a settings issue of some sort instead of a virus? this system belongs to my 16 year old son that is really pretty good with computers, but may have gotten into some settings that he shouldn't have.

 

Thanks for all your efforts broni!