Have the current problems/infections on my tower. Problems started approximatley a week ago. System is loaded with Windows XP 32 Bit. Have run Avast, malware bytes, super anti spy ware, and spy bot without success. No program finds issues. Avast Flaggin the following sites/issues
I am posting on another pc as I can not access the complete Avast screens. Please make sure all files are downloadable as I will pu them on a tumb drive and transfer to infected tower.
With so many cleaning tools out there its important to identify exactly what the problem is before running any of them. Hence why you were asking to post logs of your problem.
He is trying to help you, I would listen if I were you.
Farbar Service Scanner Version: 06-08-2012
Ran by Donald (administrator) on 16-08-2012 at 21:17:03
Running from “C:\Documents and Settings\Donald\Local Settings\Temporary Internet Files\Content.IE5\AVJHDEHF”
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
Internet Services:
Connection Status:
Localhost is accessible.
LAN connected.
Google IP is accessible. Google.com is accessible.
Yahoo IP is accessible. Yahoo.com is accessible.
Windows Firewall:
Firewall Disabled Policy:
System Restore:
System Restore Disabled Policy:
Security Center:
Windows Update:
Windows Autoupdate Disabled Policy:
File Check:
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
Extra List:
aswTdi(8) Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x080000000500000001000000020000000300000004000000080000000600000007000000
IpSec Tag value is correct.
[*]If malicious objects are found, they will show in the Scan results and offer three (3) options.
[*]Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
I tried to download AdwCleaner from your link, it will not donwload. After I select download the screen changes to French. Should I run Kaspersky again before I run AdwCleaner?
After running AdwCleaner I re-ran TDSSKiller, din NOT get \Device\Harddisk0\DRO (TDSS File System), so it is not deleted. Updated and re-ran Malwarebytes, log attached.