I have no clue what I'm doing here, all I know is that between shutting the computer down early morning Thursday to firing it back up Thursday night something has happened to make it stop working properly. It's XP, when I opened up, the desktop froze on me it unfroze after 5 minutes but then the taskbar froze. I have attempted two restore points, the day of the last update for XP and from the day after, both failed.
I'm unable to locate the links for ERUNT on either of the three site you've linked to.
DDS (Ver_2012-11-20.01) - NTFS_x86 NETWORK
Internet Explorer: 8.0.6001.18702
Run by SARAH BROUGH at 0:18:32 on 2014-04-18
Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.1023.594 [GMT 1:00]
.
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
============== Running Processes ================
.
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalService
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxps://www.google.co.uk/
uWindow Title = Microsoft Internet Explorer
uSearch Bar = hxxp://www.btopenworld.com/searchpane
uInternet Connection Wizard,ShellNext = iexplore
uProxyOverride = localhost
uSearchURL,(Default) = hxxp://uk.search.yahoo.com/search?fr=mcafee&p=%s
BHO: myBar BHO: {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} -
BHO: PlurPush: {82249076-d5c8-431d-982b-023779779587} - c:\program files\plurpush\PlurPushbho.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.9012.1008\swg.dll
BHO: EpsonToolBandKicker Class: {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - c:\program files\epson\epson web-to-page\EPSON Web-To-Page.dll
BHO: AlxHelper Class: {F443A627-5009-4323-9C1D-7FD598D0D712} - c:\program files\amazon browser bar\AmazonBrowserBar.3.0.dll
TB: &SearchBar: {0494D0D9-F8E0-41AD-92A3-14154ECE70AC} -
TB: EPSON Web-To-Page: {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - c:\program files\epson\epson web-to-page\EPSON Web-To-Page.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: &SearchBar: {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} -
TB: EPSON Web-To-Page: {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - c:\program files\epson\epson web-to-page\EPSON Web-To-Page.dll
TB: Amazon Browser Bar: {EA582743-9076-4178-9AA6-7393FDF4D5CE} - c:\program files\amazon browser bar\AmazonBrowserBar.3.0.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - <orphaned>
EB: Real.com: {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\shdocvw.dll
mRun: [HTpatch] c:\windows\htpatch.exe
mRun: [EPSON Stylus Photo R240 Series] c:\windows\system32\spool\drivers\w32x86\3\E_FATIAHE.EXE /P30 "EPSON Stylus Photo R240 Series" /O6 "USB001" /M "Stylus Photo R240"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
dRun: [Google Update] "c:\windows\system32\config\systemprofile\local settings\application data\google\update\GoogleUpdate.exe" /c
dRunOnce: [SpUninstallDeleteDir] rmdir /s /q "c:\windows\system32\config\systemprofile\application data\SearchProtect"
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: &AOL Toolbar search - c:\program files\aol toolbar\toolbar.dll/SEARCH.HTML
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office10\EXCEL.EXE/3000
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {48DD0448-9209-4F81-9F6D-D83562940134} - hxxp://lads.myspace.com/upload/MySpaceUploader1006.cab
DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} - hxxp://aolcc.aolsvc.aol.co.uk/computercheckup/qdiagcc.cab
DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader4_5.cab
TCP: NameServer = 192.168.1.1 0.0.0.0
TCP: Interfaces\{A5E95AD4-C025-4D79-8589-7E6E60E82AE2} : DHCPNameServer = 192.168.1.1 0.0.0.0
AppInit_DLLs= c:\progra~1\searchprotect\searchprotect\bin\SPVC32Loader.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\34.0.1847.116\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\sarah brough\application data\mozilla\firefox\profiles\jv73zqex.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.co.uk/
FF - plugin: c:\documents and settings\sarah brough\local settings\application data\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\documents and settings\sarah brough\local settings\application data\google\update\1.3.23.9\npGoogleUpdate3.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\google\update\1.3.23.9\npGoogleUpdate3.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_12_0_0_77.dll
FF - ExtSQL: 2014-03-28 00:00; {552199fb-9890-4055-9aaf-b2f6d51d46e9}; c:\documents and settings\sarah brough\application data\mozilla\firefox\profiles\jv73zqex.default\extensions\{552199fb-9890-4055-9aaf-b2f6d51d46e9}.xpi
.
---- FIREFOX POLICIES ----
.
user_pref(extensions.autoDisableScopes,14);
============= SERVICES / DRIVERS ===============
.
R0 BsStor;InCD Storage Helper Driver;c:\windows\system32\drivers\bsstor.sys [2003-11-1 9344]
S0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 231960]
S2 BsUDF;InCD UDF Driver;c:\windows\system32\drivers\bsudf.sys [2003-11-1 468480]
S2 CltMngSvc;Search Protect by Conduit Service;c:\progra~1\searchprotect\main\bin\CltMngSvc.exe [2014-4-8 2470688]
S2 Update PlurPush;Update PlurPush;c:\program files\plurpush\updatePlurPush.exe [2014-3-28 348440]
S2 Updater Service for AMZN;Updater Service for AMZN;c:\program files\amazon browser bar\ToolbarUpdaterService.exe [2012-5-22 222368]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2014-2-21 40776]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\rtl8192su.sys [2011-12-10 602912]
.
=============== Created Last 30 ================
.
2014-04-17 00:54:41 -------- d-----w- c:\windows\pss
2014-04-16 00:28:40 8049928 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f572755a-b83f-4f26-bdb3-d37465633cfb}\mpengine.dll
2014-04-14 23:15:23 7969936 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2014-04-07 02:46:47 -------- d-----w- c:\windows\Performance
2014-04-07 02:46:35 -------- d-----w- c:\documents and settings\sarah brough\local settings\application data\Microsoft Corporation
2014-04-07 02:45:52 -------- d-----w- c:\program files\Microsoft Windows 7 Upgrade Advisor
2014-03-29 00:14:32 -------- d-----w- c:\documents and settings\sarah brough\local settings\application data\WinZip
2014-03-28 02:01:19 -------- d-----w- c:\documents and settings\sarah brough\local settings\application data\SearchProtect
2014-03-28 01:51:45 -------- d-----w- c:\program files\PlurPush
2014-03-28 01:51:05 -------- d-----w- c:\program files\SearchProtect
2014-03-26 22:44:53 13312 -c----w- c:\windows\system32\dllcache\xp_eos.exe
2014-03-26 22:44:53 13312 ------w- c:\windows\system32\xp_eos.exe
.
==================== Find3M ====================
.
2014-03-12 02:40:41 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-12 02:40:41 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-03-06 17:59:23 920064 ----a-w- c:\windows\system32\wininet.dll
2014-03-06 17:59:22 43520 ----a-w- c:\windows\system32\licmgr10.dll
2014-03-06 17:59:22 18944 ----a-w- c:\windows\system32\corpol.dll
2014-03-06 17:59:22 1469440 ------w- c:\windows\system32\inetcpl.cpl
2014-03-06 00:46:54 385024 ----a-w- c:\windows\system32\html.iec
2014-02-21 23:29:39 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2014-02-07 02:01:37 1879040 ----a-w- c:\windows\system32\win32k.sys
2014-02-05 08:55:04 562688 ----a-w- c:\windows\system32\qedit.dll
2014-01-25 00:19:42 231960 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2014-01-19 07:32:23 231584 ------w- c:\windows\system32\MpSigStub.exe
2013-07-07 01:40:18 0 ----a-w- c:\program files\GUM6F.tmp
.
============= FINISH: 0:20:26.84 ===============
aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2014-04-18 00:37:37
-----------------------------
00:37:37.625 OS Version: Windows 5.1.2600 Service Pack 3
00:37:37.625 Number of processors: 1 586 0x209
00:37:37.625 ComputerName: SARAH-IETMS0KJ2 UserName: SARAH BROUGH
00:37:38.250 Initialize success
00:39:00.859 AVAST engine defs: 14041703
00:39:09.656 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4
00:39:09.671 Disk 0 Vendor: IC35L060AVV207-0 V22OA66A Size: 58643MB BusType: 3
00:39:09.843 Disk 0 MBR read successfully
00:39:09.859 Disk 0 MBR scan
00:39:09.953 Disk 0 Windows XP default MBR code
00:39:09.968 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 58627 MB offset 63
00:39:09.984 Disk 0 scanning sectors +120069810
00:39:10.125 Disk 0 scanning C:\WINDOWS\system32\drivers
00:39:29.671 Service scanning
00:40:00.500 Modules scanning
00:40:09.843 Disk 0 trace - called modules:
00:40:09.890 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
00:40:09.906 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x873caab8]
00:40:12.343 3 CLASSPNP.SYS[f782efd7] -> nt!IofCallDriver -> \Device\00000058[0x873c99e8]
00:40:12.468 5 ACPI.sys[f77a5620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-4[0x873c9d98]
00:40:14.328 AVAST engine scan C:\WINDOWS
00:40:47.609 AVAST engine scan C:\WINDOWS\system32
00:44:21.796 AVAST engine scan C:\WINDOWS\system32\drivers
00:44:48.375 AVAST engine scan C:\Documents and Settings\SARAH BROUGH
00:46:41.328 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\SARAH BROUGH\Desktop\MBR.dat"
00:46:41.343 The log file has been saved successfully to "C:\Documents and Settings\SARAH BROUGH\Desktop\aswMBR.txt"
-----------------------------------------------------------