My friend gave me this laptop because he thought it could not connect to the net. I created a new user and was able to connect to the net for a couple days. Now it gives me an error that it can not connect to the net on either Explorer or Chrome. I am able to connect in safe mode so I am sure this is malware but Spybot and AVG can not find anything.
.
DDS (Ver_2011-06-23.01) - NTFSx86 NETWORK
Internet Explorer: 7.0.6001.18000
Run by Marc at 16:28:56 on 2011-08-21
Microsoft® Windows Vista™ Home Basic 6.0.6001.1.1252.1.1033.18.1013.633 [GMT -6:00]
.
AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Windows\helppane.exe
C:\Users\Marc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marc\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
mStart Page = hxxp://en.us.acer.yahoo.com
mDefault_Page_URL = hxxp://en.us.acer.yahoo.com
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
BHO: {1e8a6170-7264-4d0f-beae-d42a53123c75} - c:\program files\common files\symantec shared\coshared\browser\1.0\NppBho.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg10\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - No File
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: TBSB05974 Class: {fcbccb87-9224-4b8d-b117-f56d924beb18} - c:\program files\search toolbar\tbcore3.dll
TB: Show Norton Toolbar: {90222687-f593-4738-b738-fbee9c7b26df} - c:\program files\common files\symantec shared\coshared\browser\1.0\UIBHO.dll
TB: Search Toolbar: {0c8413c1-fad1-446c-8584-be50576f863e} - c:\program files\search toolbar\tbcore3.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
uRun: [Google Update] "c:\users\marc\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [eRecoveryService]
mRun: [MSConfig] "c:\windows\system32\msconfig.exe" /auto
mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
dRun: [Acer Tour Reminder] c:\acer\acertour\Reminder.exe
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
TCP: DhcpNameServer = 192.168.2.1 68.87.85.102 68.87.69.150
TCP: Interfaces\{05DBC8C6-5315-4E99-AA36-CB889E98D544} : DhcpNameServer = 192.168.2.1 68.87.85.102 68.87.69.150
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
Notify: igfxcui - igfxdev.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-2-22 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-3-16 32592]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-4-5 297168]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2007-9-3 179712]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-1-7 248656]
S1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-3-1 34896]
S1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\symantec\defini~1\symcdata\idsdefs\20061025.029\IDSvix86.sys [2007-9-3 202872]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg10\identity protection\agent\bin\AVGIDSAgent.exe [2011-4-18 7398752]
S2 avgwd;AVG WatchDog;c:\program files\avg\avg10\avgwdsvc.exe [2011-2-8 269520]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2011-8-21 1153368]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-4-14 134480]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-2-10 24144]
S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-2-10 28624]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2011-8-19 105592]
S3 SYMNDISV;SYMNDISV;c:\windows\system32\drivers\symndisv.sys [2006-11-20 37008]
S4 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2011-8-18 1025352]
S4 Symantec Core LC;Symantec Core LC;c:\program files\common files\symantec shared\ccpd-lc\symlcsvc.exe [2007-9-3 1174152]
.
=============== Created Last 30 ================
.
2011-08-21 15:03:22 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2011-08-21 15:03:22 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-08-21 04:04:46 -------- d-----w- c:\programdata\MumboJumbo
2011-08-21 03:55:46 -------- d-----w- c:\users\marc\appdata\local\Apple
2011-08-21 03:52:34 -------- d-----w- c:\windows\Options
2011-08-21 03:51:25 -------- d-----w- c:\users\marc\appdata\local\Adobe
2011-08-21 01:40:58 -------- d-----w- C:\PerfLogs
2011-08-21 01:04:35 -------- d-----w- c:\users\marc\appdata\local\Google
2011-08-20 12:58:37 7152464 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{9db05a3a-d8d5-4873-8848-dbd1a6bd1c54}\mpengine.dll
2011-08-20 12:38:58 -------- d-----w- c:\users\marc\appdata\local\Apps
2011-08-20 12:38:57 -------- d-----w- c:\users\marc\appdata\local\Deployment
2011-08-19 12:49:37 -------- d-----w- c:\windows\pss
2011-08-19 03:28:23 -------- d--h--w- C:\$AVG
2011-08-19 02:39:34 -------- d-----w- c:\users\marc\appdata\roaming\AVG10
2011-08-19 02:36:07 -------- d-----w- c:\programdata\AVG Security Toolbar
2011-08-19 02:30:58 -------- d-----w- c:\windows\system32\drivers\AVG
2011-08-19 02:30:58 -------- d-----w- c:\programdata\AVG10
2011-08-19 02:28:15 -------- d-----w- c:\program files\AVG
2011-08-19 02:16:10 -------- d--h--w- c:\programdata\Common Files
2011-08-19 01:57:04 -------- d-----w- c:\programdata\MFAData
2011-08-19 01:52:21 -------- d-----w- c:\users\marc\appdata\roaming\Acer
2011-08-19 01:52:18 -------- d-----w- c:\users\marc\appdata\local\Acer Arcade
.
==================== Find3M ====================
.
2011-08-21 01:18:05 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2011-08-21 01:17:50 82432 ----a-w- c:\windows\system32\axaltocm.dll
2011-05-25 01:14:10 222080 ------w- c:\windows\system32\MpSigStub.exe
.
============= FINISH: 16:29:52.04 ===============