May be need to use different command, but booted from XP-CD and selected R,then at recovery console typed 'fixboot'. Got message "the target partition is H:. Which is not right !! It is definitly (I:). So i typed n and backed out. Any ideas ??
Let me backtrack a little. Was fine til I installed a Lubunut distro. It boots fine. At first Winxp was not listed on boot option screen. So I did Boot Repair from live USB. And updated grub. Windows shows up on boot selection screen now, but when selected does not load.

THANKS!!!
Pretty sure the problem resides in Windows !

Spybot has not been able to remove it. Thank you very much for any help.

------------------------------------------------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:07:29 PM, on 2/28/2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Eraser\Eraser.exe
C:\Program Files\USB 2.0 PC CAMERA\Camera Snap.exe
C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
C:\Program Files\Classic PDF Editor\PDFVPrinter.exe
C:\PROGRA~1\AD-AWA~1\AdAware.exe
C:\ProgramData\OfficeGuardianV2\reminder\SacReminder.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
C:\Users\Owner\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\Downloads\HijackThis.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Ad-Aware Security Add-on - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files\adawaretb\adawareDx.dll
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Ad-Aware Security Add-on - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files\adawaretb\adawareDx.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SearchMe Toolbar - {B9C767DD-F66A-40B4-8F12-4199A9A4393C} - C:\Program Files\SearchMe Toolbar\IE\8.6\searchmeToolbarIE.dll
O2 - BHO: WeCareReminder - {D824F0DE-3D60-4F57-9EB1-66033ECD8ABB} - C:\ProgramData\WeCareReminder\IEHelperv2.5.0.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (file missing)
O3 - Toolbar: Ad-Aware Security Add-on - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files\adawaretb\adawareDx.dll
O3 - Toolbar: SearchMe Toolbar - {B9C767DD-F66A-40B4-8F12-4199A9A4393C} - C:\Program Files\SearchMe Toolbar\IE\8.6\searchmeToolbarIE.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Anti-phishing Domain Advisor] "C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Eraser] "C:\PROGRA~1\Eraser\Eraser.exe" --atRestart
O4 - HKLM\..\Run: [Snap] C:\Program Files\USB 2.0 PC CAMERA\Camera Snap.exe
O4 - HKLM\..\Run: [Ad-Aware Browsing Protection] "C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe"
O4 - HKLM\..\Run: [SearchProtection] C:\ProgramData\Search Protection\_run.bat
O4 - HKLM\..\Run: [Ad-Aware Antivirus] "C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher" --windows-run
O4 - HKLM\..\Run: [PDFVPrinter] C:\Program Files\Classic PDF Editor\PDFVPrinter.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ShowBatteryBar] "C:\Program Files\BatteryBar\ShowBatteryBar.exe" show
O4 - HKCU\..\Run: [SacReminderHDDV2] C:\ProgramData\OfficeGuardianV2\reminder\SacReminder.exe
O4 - HKCU\..\Run: [StartNow Search Protect] "C:\Program Files\StartNow Toolbar\search_protect.exe" /RELAY /REPORT /PROTECT
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request_wil...=menu_ie_frame
O8 - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request_wil...=menu_ie_image
O8 - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request_wil...d=menu_ie_link
O8 - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request_wil...enu_ie_exclude
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_wil...menu_ie_report
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ad-Aware Service - Lavasoft Limited - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_242880 96a5cd99f6\aestsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CFUACProxy_officeguardianv2 - Storage Appliance Corp. - C:\ProgramData\OfficeGuardianV2\UACProxy.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Ad-Aware (SBAMSvc) - GFI Software - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_242880 96a5cd99f6\STacSV.exe

--
End of file - 11676 bytes

------------------------------------------------------------------------------------------

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 11.0.9600.16518
Run by Owner at 20:12:21 on 2014-02-28
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.3062.1450 [GMT -8:00]
.
AV: Lavasoft Ad-Aware *Enabled/Updated* {E0D97DD4-42BA-B3F2-A5A7-22E9ACE81FC7}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Lavasoft Ad-Aware *Enabled/Updated* {5BB89C30-6480-BC7C-9F17-199BD76F557A}
FW: Lavasoft Ad-Aware *Disabled* {D8E2FCF1-08D5-B2AA-8EF8-8BDC523B58BC}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_242880 96a5cd99f6\aestsrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\ProgramData\OfficeGuardianV2\UACProxy.exe
C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_242880 96a5cd99f6\STacSV.exe
C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Eraser\Eraser.exe
C:\Program Files\USB 2.0 PC CAMERA\Camera Snap.exe
C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
C:\Program Files\Classic PDF Editor\PDFVPrinter.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\AD-AWA~1\AdAware.exe
C:\ProgramData\OfficeGuardianV2\reminder\SacReminder.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
C:\Users\Owner\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\svchost.exe -k SDRSVC
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://google.com/
uURLSearchHooks: Ad-Aware Security Add-on: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - c:\program files\adawaretb\adawareDx.dll
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.8.141\McAfeeMSS_IE.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: Ad-Aware Security Add-on: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - c:\program files\adawaretb\adawareDx.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned>
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
BHO: SearchMe Toolbar: {B9C767DD-F66A-40B4-8F12-4199A9A4393C} - c:\program files\searchme toolbar\ie\8.6\searchmeToolbarIE.dll
BHO: WeCareReminder Class: {D824F0DE-3D60-4F57-9EB1-66033ECD8ABB} - c:\programdata\wecarereminder\IEHelperv2.5.0.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} -
TB: Ad-Aware Security Add-on: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - c:\program files\adawaretb\adawareDx.dll
TB: SearchMe Toolbar: {B9C767DD-F66A-40B4-8F12-4199A9A4393C} - c:\program files\searchme toolbar\ie\8.6\searchmeToolbarIE.dll
uRun: [Google Update] "c:\users\owner\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [ShowBatteryBar] "c:\program files\batterybar\ShowBatteryBar.exe" show
uRun: [SacReminderHDDV2] c:\programdata\officeguardianv2\reminder\SacReminder.exe
uRun: [StartNow Search Protect] "c:\program files\startnow toolbar\search_protect.exe" /RELAY /REPORT /PROTECT
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [SigmatelSysTrayApp] c:\program files\sigmatel\c-major audio\wdm\sttray.exe
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [Anti-phishing Domain Advisor] "c:\programdata\anti-phishing domain advisor\visicom_antiphishing.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [Eraser] "c:\progra~1\eraser\Eraser.exe" --atRestart
mRun: [Snap] c:\program files\usb 2.0 pc camera\Camera Snap.exe
mRun: [Ad-Aware Browsing Protection] "c:\programdata\ad-aware browsing protection\adawarebp.exe"
mRun: [SearchProtection] c:\programdata\search protection\_run.bat
mRun: [Ad-Aware Antivirus] "c:\program files\ad-aware antivirus\AdAwareLauncher" --windows-run
mRun: [PDFVPrinter] c:\program files\classic pdf editor\PDFVPrinter.exe
StartupFolder: c:\users\owner\appdata\roaming\micros~1\windows\startm~1\programs\startup\o nenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\3.8.141\SSScheduler.exe
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Block frame with Ad Muncher - http://www.admuncher.com/request_wil...=menu_ie_frame
IE: Block image with Ad Muncher - http://www.admuncher.com/request_wil...=menu_ie_image
IE: Block link with Ad Muncher - http://www.admuncher.com/request_wil...d=menu_ie_link
IE: Don't filter page with Ad Muncher - http://www.admuncher.com/request_wil...enu_ie_exclude
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Report page to the Ad Muncher developers - http://www.admuncher.com/request_wil...menu_ie_report
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 168.150.253.2 168.150.253.1 75.101.19.192
TCP: Interfaces\{88B56E80-767A-411C-805B-E6E5627351EF} : DHCPNameServer = 168.150.253.2 168.150.253.1 192.168.1.1
TCP: Interfaces\{C0111147-2A0D-4BF8-B5A3-1321517285EF} : DHCPNameServer = 168.150.253.2 168.150.253.1 75.101.19.192
TCP: Interfaces\{C0111147-2A0D-4BF8-B5A3-1321517285EF}\2375942554736393 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{C0111147-2A0D-4BF8-B5A3-1321517285EF}\34963736F66303030353 : DHCPNameServer = 168.150.253.2 168.150.253.1
TCP: Interfaces\{C0111147-2A0D-4BF8-B5A3-1321517285EF}\356484F4354554C4 : DHCPNameServer = 208.201.224.11 208.201.224.33 4.2.2.2
TCP: Interfaces\{C0111147-2A0D-4BF8-B5A3-1321517285EF}\966496870254C656364727F6E6963637 : DHCPNameServer = 192.168.1.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\owner\appdata\roaming\mozilla\firefox\profiles\0cazx7f7.default-1385247547231\
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\google\update\1.3.22.5\npGoogleUpdate3.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\mcafee security scan\3.8.141\npMcAfeeMSS.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: c:\users\owner\appdata\local\google\update\1.3.22.5\npGoogleUpdate3.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_12_0_0_70.dll
.
============= SERVICES / DRIVERS ===============
.
R0 gfibto;gfibto;c:\windows\system32\drivers\gfibto.sys [2012-12-19 13560]
R2 Ad-Aware Service;Ad-Aware Service;c:\program files\ad-aware antivirus\AdAwareService.exe [2012-12-14 1236968]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\system32\driverstore\filerepository\stwrt.inf_x86_neutra l_24288096a5cd99f6\AEstSrv.exe [2011-3-7 73728]
R2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\skype\toolbars\autoupdate\SkypeC2CAutoUpdateSvc.exe [2014-1-3 1363616]
R2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\skype\toolbars\pnrsvc\SkypeC2CPNRSvc.exe [2014-1-3 1748640]
R2 CFUACProxy_officeguardianv2;CFUACProxy_officeguardianv2;c:\programdata\offi ceguardianv2\UACProxy.exe [2011-12-24 83792]
R2 SBAMSvc;Ad-Aware;c:\program files\ad-aware antivirus\SBAMSvc.exe [2012-9-20 3677000]
R2 sbapifs;sbapifs;c:\windows\system32\drivers\sbapifs.sys [2012-9-12 66344]
R2 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2012-12-19 1153368]
R3 gfiark;gfiark;c:\windows\system32\drivers\gfiark.sys [2012-12-19 43368]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-13 207360]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\drivers\yk62x86.sys [2009-7-13 311296]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-10-19 160944]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2009-10-26 25088]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2014-2-12 108032]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.8.141\McCHSvc.exe [2014-1-15 235696]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-7-1 15872]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-7-1 52224]
S3 usbcamcl;Driver for usbcamcl Device;c:\windows\system32\drivers\usbcamcl.sys [2011-8-18 28416]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2011-3-11 1343400]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2008-5-6 11520]
.
=============== File Associations ===============
.
FileExt: .js: JSFile="c:\program files\macromedia\dreamweaver mx\Dreamweaver.exe" "%1"
.
=============== Created Last 30 ================
.
2014-02-26 12:12:49 -------- d-----w- c:\windows\Migration
2014-02-13 06:14:17 454656 ----a-w- c:\windows\system32\vbscript.dll
2014-02-12 21:51:55 -------- d-----w- c:\program files\McAfee Security Scan
2014-02-12 15:59:27 1237504 ----a-w- c:\windows\system32\msxml3.dll
2014-02-12 15:59:26 2048 ----a-w- c:\windows\system32\msxml3r.dll
2014-02-12 15:59:09 1987584 ----a-w- c:\windows\system32\d3d10warp.dll
2014-02-12 15:59:08 3419136 ----a-w- c:\windows\system32\d2d1.dll
2014-02-12 15:58:59 594944 ----a-w- c:\windows\system32\RMActivate_isv.exe
2014-02-12 15:58:58 572416 ----a-w- c:\windows\system32\RMActivate.exe
2014-02-12 15:58:57 508928 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2014-02-12 15:58:55 510976 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2014-02-12 15:58:54 423936 ----a-w- c:\windows\system32\secproc_isv.dll
2014-02-12 15:58:53 428032 ----a-w- c:\windows\system32\secproc.dll
2014-02-12 15:58:53 390144 ----a-w- c:\windows\system32\msdrm.dll
2014-02-12 15:58:52 87040 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2014-02-12 15:58:52 87040 ----a-w- c:\windows\system32\secproc_ssp.dll
.
==================== Find3M ====================
.
2014-02-21 01:12:05 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-02-21 01:12:05 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-02-06 10:20:26 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-02-06 10:19:55 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-02-06 10:01:36 61952 ----a-w- c:\windows\system32\iesetup.dll
2014-02-06 10:00:46 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-02-06 09:47:22 112128 ----a-w- c:\windows\system32\ieUnatt.exe
2014-02-06 09:47:18 108032 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-02-06 09:46:27 553472 ----a-w- c:\windows\system32\jscript9diag.dll
2014-02-06 09:25:36 4244480 ----a-w- c:\windows\system32\jscript9.dll
2014-02-06 09:09:30 1964032 ----a-w- c:\windows\system32\inetcpl.cpl
2014-02-06 08:41:35 1820160 ----a-w- c:\windows\system32\wininet.dll
.
============= FINISH: 20:18:14.25 ===============

------------------------------------------------------------------------------------------
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 3/7/2011 5:45:16 PM
System Uptime: 2/28/2014 7:03:53 PM (1 hours ago)
.
Motherboard: Dell Inc. | | 0U990C
Processor: Intel(R) Pentium(R) Dual CPU T3200 @ 2.00GHz | Microprocessor | 2000/166mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 149 GiB total, 73.957 GiB free.
D: is CDROM ()
E: is CDROM (CDFS)
F: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP297: 2/12/2014 10:12:38 PM - Windows Update
RP298: 2/20/2014 1:17:31 PM - Scheduled Checkpoint
RP299: 2/26/2014 4:03:59 AM - Windows Update
RP300: 2/27/2014 9:43:26 PM - Windows Update
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
Ad-Aware Antivirus
Ad-Aware Security Add-on
Ad Muncher v4.91 Build 32562
Adobe AIR
Adobe Flash Player 12 ActiveX
Adobe Flash Player 12 Plugin
Adobe Reader X (10.1.5)
Anti-phishing Domain Advisor
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ASPCA Reminder by We-Care.com v5.0.5.1
BatteryBar (remove only)
Bonjour
Cisco Connect
Classic PDF Editor 12.0
CoffeeCup HTML Editor
CuteFTP 8 Home
Dell Touchpad
DHTML Editing Component
Document Express DjVu Plug-in
Eraser 6.0.10.2620
FileZilla Client 3.5.3
GIMP 2.6.12
Google Chrome
Google Earth Plug-in
Google Update Helper
Intel(R) Graphics Media Accelerator Driver
Intel(R) TV Wizard
iTunes
K-Lite Mega Codec Pack 5.7.0
Macromedia Dreamweaver MX
Macromedia Extension Manager
McAfee Security Scan Plus
Microsoft .NET Framework 4.5.1
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Mozilla Firefox 27.0.1 (x86 en-US)
Mozilla Maintenance Service
Mozilla Thunderbird (3.1.9)
Notepad++
NoteTab Light 6 (Remove only)
Paint Shop Pro 6.02 EVAL
Picasa 3
PrimoPDF -- brought to you by Nitro PDF Software
QuickTime
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
SearchMe Toolbar v8.6
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition
SigmaTel Audio
Skype Click to Call
Skype™ 6.0
Spybot - Search & Destroy
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
USB2.0 PC CAMERA
VLC media player 1.0.5
WinRAR archiver
.
==== Event Viewer Messages From Past Week ========
.
2/27/2014 5:01:13 AM, Error: Service Control Manager [7022] - The Windows Search service hung on starting.
2/27/2014 10:59:57 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
2/23/2014 6:18:27 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
.
==== End Of File ===========================

------------------------------------------------------------------------------------------

GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-02-28 20:45:39
Windows 6.1.7601 Service Pack 1 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-2 Hitachi_HTS542516K9SA00 rev.BBCOC32P 149.05GB
Running: 1jos37o3.exe; Driver: C:\Users\Owner\AppData\Local\Temp\kgloapow.sys


---- Kernel code sections - GMER 2.1 ----

.text ntkrnlpa.exe!ZwRollbackEnlistment + 142D 82E78A15 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 82EB2212 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
? C:\Users\Owner\AppData\Local\Temp\mbr.sys The system cannot find the file specified. !

---- User code sections - GMER 2.1 ----

.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[2268] WS2_32.dll!WSASend 77A44406 6 Bytes JMP 719A0F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[2268] WS2_32.dll!GetAddrInfoW 77A44889 6 Bytes JMP 71AF0F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[2268] WS2_32.dll!FreeAddrInfoW 77A44B1B 6 Bytes JMP 71A90F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[2268] WS2_32.dll!recv 77A46B0E 6 Bytes JMP 719D0F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[2268] WS2_32.dll!send 77A46F01 6 Bytes JMP 71A00F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[2268] WS2_32.dll!WSARecv 77A47089 6 Bytes JMP 71970F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[2268] WS2_32.dll!WSAGetOverlappedResult 77A47489 6 Bytes JMP 71940F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[2268] WS2_32.dll!GetAddrInfoExW 77A4D1EA 6 Bytes JMP 71A60F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[2268] WS2_32.dll!FreeAddrInfoEx 77A4E14D 6 Bytes JMP 71A30F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtCreateFile + 6 7794560E 4 Bytes [28, 5C, 01, 01] {SUB [ECX+EAX+0x1], BL}
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtCreateFile + B 77945613 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtMapViewOfSection + 6 77945C6E 4 Bytes [28, 5F, 01, 01]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtMapViewOfSection + B 77945C73 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenFile + 6 77945D1E 4 Bytes [68, 5C, 01, 01]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenFile + B 77945D23 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenProcess + 6 77945DCE 4 Bytes [A8, 5D, 01, 01] {TEST AL, 0x5d; ADD [ECX], EAX}
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenProcess + B 77945DD3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenProcessToken + B 77945DE3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenProcessTokenEx + 6 77945DEE 4 Bytes [A8, 5E, 01, 01] {TEST AL, 0x5e; ADD [ECX], EAX}
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenProcessTokenEx + B 77945DF3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenThread + 6 77945E4E 4 Bytes [68, 5D, 01, 01]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenThread + B 77945E53 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenThreadToken + 6 77945E5E 4 Bytes [68, 5E, 01, 01]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenThreadToken + B 77945E63 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtOpenThreadTokenEx + B 77945E73 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtQueryAttributesFile + 6 77945F7E 4 Bytes [A8, 5C, 01, 01] {TEST AL, 0x5c; ADD [ECX], EAX}
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtQueryAttributesFile + B 77945F83 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtQueryFullAttributesFile + B 77946033 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtSetInformationFile + 6 7794667E 4 Bytes [28, 5D, 01, 01]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtSetInformationFile + B 77946683 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtSetInformationThread + 6 779466DE 4 Bytes [28, 5E, 01, 01]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtSetInformationThread + B 779466E3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtTerminateProcess 77946908 5 Bytes JMP 009FEA9B C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtUnmapViewOfSection + 6 779469FE 4 Bytes [68, 5F, 01, 01]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] ntdll.dll!NtUnmapViewOfSection + B 77946A03 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] WS2_32.dll!WSASend 77A44406 6 Bytes JMP 719A0F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] WS2_32.dll!GetAddrInfoW 77A44889 6 Bytes JMP 71AF0F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] WS2_32.dll!FreeAddrInfoW 77A44B1B 6 Bytes JMP 71A90F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] WS2_32.dll!recv 77A46B0E 6 Bytes JMP 719D0F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] WS2_32.dll!send 77A46F01 6 Bytes JMP 71A00F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] WS2_32.dll!WSARecv 77A47089 6 Bytes JMP 71970F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] WS2_32.dll!WSAGetOverlappedResult 77A47489 6 Bytes JMP 71940F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] WS2_32.dll!GetAddrInfoExW 77A4D1EA 6 Bytes JMP 71A60F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3532] WS2_32.dll!FreeAddrInfoEx 77A4E14D 6 Bytes JMP 71A30F5A
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtCreateFile + 6 7794560E 4 Bytes [28, A8, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtCreateFile + B 77945613 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtMapViewOfSection + 6 77945C6E 4 Bytes [28, AB, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtMapViewOfSection + B 77945C73 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenFile + 6 77945D1E 4 Bytes [68, A8, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenFile + B 77945D23 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenProcess + 6 77945DCE 4 Bytes [A8, A9, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenProcess + B 77945DD3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenProcessToken + B 77945DE3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenProcessTokenEx + 6 77945DEE 4 Bytes [A8, AA, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenProcessTokenEx + B 77945DF3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenThread + 6 77945E4E 4 Bytes [68, A9, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenThread + B 77945E53 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenThreadToken + 6 77945E5E 4 Bytes [68, AA, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenThreadToken + B 77945E63 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtOpenThreadTokenEx + B 77945E73 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtQueryAttributesFile + 6 77945F7E 4 Bytes [A8, A8, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtQueryAttributesFile + B 77945F83 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtQueryFullAttributesFile + B 77946033 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtSetInformationFile + 6 7794667E 4 Bytes [28, A9, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtSetInformationFile + B 77946683 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtSetInformationThread + 6 779466DE 4 Bytes [28, AA, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtSetInformationThread + B 779466E3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtTerminateProcess 77946908 5 Bytes JMP 009FEA9B C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtUnmapViewOfSection + 6 779469FE 4 Bytes [68, AB, FB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[3756] ntdll.dll!NtUnmapViewOfSection + B 77946A03 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtCreateFile + 6 7794560E 4 Bytes [28, 00, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtCreateFile + B 77945613 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtMapViewOfSection + 6 77945C6E 1 Byte [28]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtMapViewOfSection + 6 77945C6E 4 Bytes [28, 03, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtMapViewOfSection + B 77945C73 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenFile + 6 77945D1E 4 Bytes [68, 00, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenFile + B 77945D23 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenProcess + 6 77945DCE 4 Bytes [A8, 01, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenProcess + B 77945DD3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenProcessToken + B 77945DE3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenProcessTokenEx + 6 77945DEE 4 Bytes [A8, 02, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenProcessTokenEx + B 77945DF3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenThread + 6 77945E4E 4 Bytes [68, 01, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenThread + B 77945E53 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenThreadToken + 6 77945E5E 4 Bytes [68, 02, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenThreadToken + B 77945E63 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtOpenThreadTokenEx + B 77945E73 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtQueryAttributesFile + 6 77945F7E 4 Bytes [A8, 00, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtQueryAttributesFile + B 77945F83 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtQueryFullAttributesFile + B 77946033 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtSetInformationFile + 6 7794667E 4 Bytes [28, 01, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtSetInformationFile + B 77946683 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtSetInformationThread + 6 779466DE 4 Bytes [28, 02, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtSetInformationThread + B 779466E3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtTerminateProcess 77946908 5 Bytes JMP 009FEA9B C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtUnmapViewOfSection + 6 779469FE 1 Byte [68]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtUnmapViewOfSection + 6 779469FE 4 Bytes [68, 03, 54, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[4172] ntdll.dll!NtUnmapViewOfSection + B 77946A03 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtCreateFile + 6 7794560E 4 Bytes [28, F4, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtCreateFile + B 77945613 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtMapViewOfSection + 6 77945C6E 4 Bytes [28, F7, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtMapViewOfSection + B 77945C73 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenFile + 6 77945D1E 4 Bytes [68, F4, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenFile + B 77945D23 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenProcess + 6 77945DCE 4 Bytes [A8, F5, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenProcess + B 77945DD3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenProcessToken + B 77945DE3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenProcessTokenEx + 6 77945DEE 4 Bytes [A8, F6, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenProcessTokenEx + B 77945DF3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenThread + 6 77945E4E 4 Bytes [68, F5, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenThread + B 77945E53 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenThreadToken + 6 77945E5E 4 Bytes [68, F6, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenThreadToken + B 77945E63 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtOpenThreadTokenEx + B 77945E73 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtQueryAttributesFile + 6 77945F7E 4 Bytes [A8, F4, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtQueryAttributesFile + B 77945F83 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtQueryFullAttributesFile + B 77946033 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtSetInformationFile + 6 7794667E 4 Bytes [28, F5, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtSetInformationFile + B 77946683 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtSetInformationThread + 6 779466DE 4 Bytes [28, F6, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtSetInformationThread + B 779466E3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtTerminateProcess 77946908 5 Bytes JMP 009FEA9B C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtUnmapViewOfSection + 6 779469FE 4 Bytes [68, F7, AB, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5384] ntdll.dll!NtUnmapViewOfSection + B 77946A03 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtCreateFile + 6 7794560E 4 Bytes [28, 7C, 8A, 00] {SUB [EDX+ECX*4+0x0], BH}
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtCreateFile + B 77945613 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtMapViewOfSection + 6 77945C6E 4 Bytes [28, 7F, 8A, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtMapViewOfSection + B 77945C73 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenFile + 6 77945D1E 4 Bytes [68, 7C, 8A, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenFile + B 77945D23 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenProcess + 6 77945DCE 4 Bytes [A8, 7D, 8A, 00] {TEST AL, 0x7d; MOV AL, [EAX]}
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenProcess + B 77945DD3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenProcessToken + B 77945DE3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenProcessTokenEx + 6 77945DEE 4 Bytes [A8, 7E, 8A, 00] {TEST AL, 0x7e; MOV AL, [EAX]}
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenProcessTokenEx + B 77945DF3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenThread + 6 77945E4E 4 Bytes [68, 7D, 8A, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenThread + B 77945E53 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenThreadToken + 6 77945E5E 4 Bytes [68, 7E, 8A, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenThreadToken + B 77945E63 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtOpenThreadTokenEx + B 77945E73 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtQueryAttributesFile + 6 77945F7E 4 Bytes [A8, 7C, 8A, 00] {TEST AL, 0x7c; MOV AL, [EAX]}
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtQueryAttributesFile + B 77945F83 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtQueryFullAttributesFile + B 77946033 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtSetInformationFile + 6 7794667E 4 Bytes [28, 7D, 8A, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtSetInformationFile + B 77946683 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtSetInformationThread + 6 779466DE 4 Bytes [28, 7E, 8A, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtSetInformationThread + B 779466E3 1 Byte [E2]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtTerminateProcess 77946908 5 Bytes JMP 009FEA9B C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtUnmapViewOfSection + 6 779469FE 4 Bytes [68, 7F, 8A, 00]
.text C:\Users\Owner\AppData\Local\Google\Chrome\Application\chrome.exe[5548] ntdll.dll!NtUnmapViewOfSection + B 77946A03 1 Byte [E2]

---- Devices - GMER 2.1 ----

Device \Driver\gfiark \Device\GFIARK 9AB9E992

---- Registry - GMER 2.1 ----

Reg HKLM\SOFTWARE\Classes\{47BF077C-44C6-42B1-8F88-ADE2585DD2ED}
Reg HKLM\SOFTWARE\Classes\{47BF077C-44C6-42B1-8F88-ADE2585DD2ED}@ 0x4D 0x35 0x29 0xB5 ...
Reg HKLM\SOFTWARE\Classes\{97A98033-9FA1-4E80-A339-59787B43CC89}
Reg HKLM\SOFTWARE\Classes\{97A98033-9FA1-4E80-A339-59787B43CC89}@ 0xD9 0x59 0x3D 0xB5 ...
Reg HKLM\SOFTWARE\Classes\{A82EB336-567D-4F41-A63E-8113AD8B6903}
Reg HKLM\SOFTWARE\Classes\{A82EB336-567D-4F41-A63E-8113AD8B6903}@ 0xDD 0x26 0x9C 0xB3 ...
Reg HKLM\SOFTWARE\Classes\{C4B20040-7D5A-4558-9E19-B7DF94366F97}
Reg HKLM\SOFTWARE\Classes\{C4B20040-7D5A-4558-9E19-B7DF94366F97}@ 0xDF 0x7B 0x65 0xB5 ...

---- EOF - GMER 2.1 ----

I am only home from school for the holiday and I brought my laptop home. When I went to connect to my home's wifi, there was a problem. Usually, these are quickly resolved and unimportant, but this particular instance has been a real hassle, and if I could figure it out on my own, trust me, I would.
The error, first and foremost, seems to be down to some kind of hardware issue, either it be with my laptop or with the wireless router. I have suspicion for a two reason.
1. My laptop's wireless receiver was 100% functional when I left school a few hours ago
2. Other devices work just fine on my home internet, my laptop is the only one with issues
I think it is kind of unlikely that my wireless receiver would have been irreparably damaged while in the trunk of my vehicle in a carry case, although there was a basket or two of clothes also in the trunk. The ride wasn't very bumpy and I don't have reason to believe that a basket smashed one particular part of the laptop.
But, from the diagnostic tool on Windows, it says that there is a "problem with wireless adapter or access point", which doesn't exactly narrow it down from my two options. I am worried that I will have to replace the wireless adapter in my ASUS G75V. I have fiddled with the software portion of it, insofar as messing with the router's DHCP settings and clearing certain databases using command prompt. I also enabled the "obtain IP addresses" and "obtain DNS server address" automatically. If I could prove any further information that would help, I'd be happy to. Below is the results I get from ipconfig /all in cmd.


Windows IP Configuration

Host Name . . . . . . . . . . . . : Eli-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Spotflux Virtual Network Device Driver
Physical Address. . . . . . . . . : 00-FF-6B-BC-23-D4
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 82-B9-A5-FA-88-22
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR9485WB-EG Wireless Network Adap
ter
Physical Address. . . . . . . . . : E0-B9-A5-FA-88-22
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Con
troller (NDIS 6.20)
Physical Address. . . . . . . . . : 30-85-A9-02-CB-9D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::e06c:ad58:1ea4:9926%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, February 28, 2014 10:31:24 PM
Lease Expires . . . . . . . . . . : Saturday, March 01, 2014 10:31:24 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 355501481
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-5F-36-E1-30-85-A9-02-CB-9D

DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Hamachi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Hamachi Network Interface
Physical Address. . . . . . . . . : 7A-79-19-1A-C8-CF
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2620:9b::191a:c8cf(Preferred)
Link-local IPv6 Address . . . . . : fe80::39dc:2b6b:c11:d486%20(Preferred)
IPv4 Address. . . . . . . . . . . : 25.26.200.207(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Lease Obtained. . . . . . . . . . : Friday, February 28, 2014 9:50:41 PM
Lease Expires . . . . . . . . . . : Saturday, February 28, 2015 9:50:41 PM
Default Gateway . . . . . . . . . : 2620:9b::1900:1
DHCP Server . . . . . . . . . . . : 25.0.0.1
DHCPv6 IAID . . . . . . . . . . . : 729446768
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-5F-36-E1-30-85-A9-02-CB-9D

DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{906A8664-7DC8-4D33-86CB-5F91551B1505}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:3c4a:2beb:9c3c:d720(Pref
erred)
Link-local IPv6 Address . . . . . : fe80::3c4a:2beb:9c3c:d720%16(Preferred)
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{B00DE262-DD26-4E00-8070-5461B2F3514B}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{B02BACCF-2CF6-492A-9FA7-CDA4A5DC2CD9}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{72E82341-8EC2-432D-92DC-95903F39737D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Good evening,

I recently started at a new university and after a month I've finally moved my computer here from my old place. This included a 4 hour drive. I plugged it in and the monitor gave me "no signal detected". I tried my monitor on my laptop and it worked fine.

Opening up my computer I discovered that the chasis fans do not spin, although the closed-circuit CPU liquid cooling fans do spin. Additionally, the aforementioned cooling system lights up and seems to function fine.

The graphics card lights up and spins, although it also does this if I disconnect the power cables from it.

Additionally, I have made sure I'm using the right input mode, and having tried an HDMI cable as well I suffer the same problem.

Having plugged it into the power socket my dryer runs off I know it's not a building related issue, so it must be something within the system.

My system: (purchased New Year's Eve and worked fine through January)
1 Corsair Obsidian 800D Black Full Tower Case with Window
1 Seagate SATA3 3TB 7200RPM Barracuda 64mb Cache
1 8WARE Anti-Static Wrist Strap
1 Corsair Cooling Hydro Series H100i Liquid CPU Cooler - Extreme Performance CPU Cooling and Built-In
1 Asus Z87-PRO 4xDDR3 16xPCI-E SATA3 6xUSB3.0 8CH AUDIO
1 Intel Core i7 4770 LGA1150 CPU 3.4Ghz 8Mb Cache Haswell
1 Corsair 16GB (2x8GB) DDR3 CMY16GX3M2A1600C9 1600MHz Dimm, Unbuffered, 9-9-9-24, Vengeance Pro Black
1 LG BH16NS40(Retail) Blu-Ray WRITER/16X BD-WRITE/16X DVDRW/SATA
1 Samsung 250GB SSD 840 EVO SATA III 6Gbs 2.5 7mm 540MB/s/520MB/s
1 Microsoft Windows 8.1 64bit OEM
1 Asus GF GTX780TI-3GD5 3G
1 Corsair AX860 Modular ATX Power Supply, 80 PLUS Platinum Certified
1 BENQ XL24IIT monitor



Thanks in advanced,

ArtisanBlade

From research on the web, I haven't been able to accurately find out how malicious robots operate when hijacking forms.
I can guess that they follow all links from site (a) and write them into a file or array. Then they examine each link page looking for <form> tags.

But does anyone know programmatically what happens next?
I have some theories, but no facts ...
Thanks in advance:)

Hi Everyone

Hope this finds all happy and healthy, I have a wee problem, don’t know if this is in the right section but it only happened after installing hardware.

I installed a Toshiba Dynadock U3.0 monitor Docker this afternoon, and its working great but since I installed it, two things are happening.

1. I get a message that desktop window manager has stopped working - I close the box and nothing happens, this also comes up when I boot up.

2. Every so often I get the message that IE has stopped working, again I close the box and nothing happens, IE is still working.

I have done a bit of a search, reset IE, etc does not help, I have installed this software before but it was on I5 computers with W7 Pro and all monitors where same size and make

I have Windows 7 Home Premium on my main computer of which the Docker is on, The computer is a Sony and it’s an I7 and all monitors are different, Sony/Philips/Compaq

Any suggestions? Thanks in advance

Hello, I received this error after trying to re-install Chrome.
SystemComponentModel.Win32Exception:
The system cannot find the file specified
at SystemDiagnostics.Process.StartWithShellExecuteEx(ProcessStartInfo startInfo)
at System.Diagnostics.Process.Start()
at System.Diagnostics.Process.Start(ProcessStartInfo startInfo)
at ClickOnceBootstrap.ClickOnceEntry-Main()
I also uninstalled Flash Player in IE8 I have WinXP Media Center Edition 2005 on Acer Aspire AES360 I also use a dinosaur dial-up connction Motorola SM56 speakerphone modem lol.
I also uninstalled my Avast AV software, Slim Cleaner, re-installed Java. Intend to re-install Flash Player in IE, after I re-install (I hope) Chrome. will re-install Avast.
My computer was running very slow. I play 2 games on fb using Chrome. But, I kept having loading, and connection probs with games, or a prob with Flash Player. A pop-up said I need to update Flash Player. until the games wouldn't load at all. IE was also loading web pages very slow.
The reason I uninstalled my Avast other than it being so large, I noticed there were previous versions still on my computer taking up a lot of space.
I hope you can help me resolve this issue. I don't have a clue how to fix it. I appreciate it very much.
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows XP Professional, Service Pack 3, 32 bit
Processor: AMD Athlon(tm) 64 Processor 3800+, x86 Family 15 Model 47 Stepping 2
Processor Count: 1
RAM: 958 Mb
Graphics Card: NVIDIA GeForce 6100, 256 Mb
Hard Drives: C: Total - 115992 MB, Free - 98017 MB; D: Total - 116458 MB, Free - 116427 MB;
Motherboard: Acer, FC51GM
Antivirus: None
I don't know why the sys info says WinXP Pro Serv. Pack 3
I tried a long time ago to get Pack 3 when Win update prompted me to. It caused my PC to crash. ???????

I wasnt' sure if this should be under Apple Mac or Hardware, but since the problem started with Mavericks install, I chose here. My Canon MG5320 all-in-one printer/scanner will print wirelessly with no problems, but the scanner gives the following message:

Cannot scan for these reasons:
-Scanner is turned off.
-USB cable is disconnected.

Please check and try again
Scanner driver will be closed.

2.156.0

I've gone to the Canon site and gotten the latest driver for the scanner and the latest version of MP Navigator, but still get the same results.

Have also used the CD that came with the printer and went through the steps to be sure the printer/scanner was properly connected to my router. I thought it had to be for the printer to work, but thought I should do it again. It says it is now connected, but still getting the same message.

Would appreciate any help you can give.
Peg

Hi,

I have the following components in my PC:

GT 520 gpu
Intel i5 661 CPU
Gigabyte H55m-D2H motherboard (this is a small one, I believe it's micro ATX)
Two sticks of 4GB of RAM
ESI Juli@ audio card

I'm gonna stick with this build for a while (in fact, I don't see myself upgrading anytime soon - it runs great).

My case is big and makes a lot of noise (the fan is old...). I need a new one, and I wonder what compact cases are available for my setup. As you can see above, I do not use a gaming GPU, so I can probably make do with a thin case. The audio card isn't exactly tiny, though.

I'd appreciate any recommendations!

Thanks.

Got a blue screen had to shut down with the button on the computer and restart in safe mode. windows vista home basic.
here's the report.

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft® Windows Vista™ Home Basic, Service Pack 2, 32 bit
Processor: Intel(R) Pentium(R) Dual CPU E2140 @ 1.60GHz, x64 Family 6 Model 15 Stepping 13
Processor Count: 2
RAM: 1014 Mb
Graphics Card: Intel(R) 82945G Express Chipset Family, 256 Mb
Hard Drives: C: Total - 152617 MB, Free - 95939 MB;
Motherboard: ECS, Livermore8
Antivirus: Microsoft Security Essentials, Updated and Enabled



Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.0.6002.2.2.0.768.2
Locale ID: 1033

Additional information about the problem:
BCCode: 1000008e
BCP1: C0000005
BCP2: 900CA5BE
BCP3: A13D9C68
BCP4: 00000000
OS Version: 6_0_6002
Service Pack: 2_0
Product: 768_1

Files that help describe the problem:
C:\Windows\Minidump\Mini030114-01.dmp
C:\Users\RandR\AppData\Local\Temp\WER-55458-0.sysdata.xml
C:\Users\RandR\AppData\Local\Temp\WER510C.tmp.version.txt

I have a logisys CS305BK and i have a lga 755 motherboard and every time i press the power button it just blinks nothing else happens. I dosent even run!

Hello.
I have just upgraded my graphics card from a GeForce 640 to a Radeon MSI R7 260X 2GB. I was expecting a huge increase in gaming, but when I play games like TF2, I notice my FPS drops frequently, and playing other games such as Assassins Creed II and GTA IV I get lag spikes.
I have tried downloading and reinstalling to the latest catalyst suite, and I have also tried installing the catalyst suite that came with it on a disk which had no effect.
I don't think it needs to be overclocked etc because the R7 260X that I bought was an overclocked version.

What can I do to improve performance? When people play games like Farcry 3 at full graphics in Eyefinity it seems to work flawlessly, have I missed something out?

Any help is appreciated.

Thanks in advance!
-Dan

I had this printer before with an old router, worked fine over wireless. Now I have a new TP link router (300mbps wireless N ADSL2+ modem router). I have set up the printer as instructed to with the CD countless times, tried adhoc mode which works, but then I have to disconnect from the internet and connect to the printer to print anything. I have tried giving the printer a static IP, tried infrastructure mode, tried WPSS, none of it works. What's odd is that with all the messing around I DID get it to work wirelessly for a few weeks, then the printer icon sarted to grey out randomly and would come back 'online' if I restarted the computer. Now it is always greyed out.

The problem is that whenever the setup wizard searches for the printer, it always says 'device cannot be found ensure all wires plugged in' etc. Same when I select the WPSS option on the printer, it searches and searches but finds nothing. I have tried putting PC and printer right next to each other, nothing. I then end up setting up the wireless printer by putting in its IP or Node name, and it says completed and the icon for it is always 'ready', but it never prints.

It really strikes me as an incompatibility issue caused by the modem. Tried resetting everything to factory and starting over, same issue. Disabled all firewalls and antiviruses, no change.

ANY help??? TPLINK router manual and Brother manual dont have anything that covers this issue, just says 'if device cannot be found check the printer is on and connected to network'. Which it always is.

Thanks in advance!

EDIT: I have it working. I did this: reset printer then just activated the WLAN function on it but did NOT connect to the router. This meant the printer just broadcast its own signal 'SETUP'. Ran the cd, chose temporary ad hoc mode to install wireless printer, followed the instructions and set it up.

However, if I try and SCAN wirelessley, it stops working altogether, printing included....

Hello all,

so, I created several different policies to allow my client computers to play SWTOR for ports, 80, 8995, 12000-12999 and 20000-30000 and even made a policy that would open all ports for the client computer and still the ports are getting blocked.

If anyone has an idea on how to open the ports it would be great. If I move the dhcp server off my SBS 2011 Standard server to the router there is no problem.

If you can point me to a place it would be awesome.

Thanks

Ok i have adobe flash 12.0 active X and java update 51 and can t get a dsl speed test; all i keep getting is i must update my flash ! ? Update to what pretty sure i have the latest thats what the java / sdobe web sites tell me . Using win 7 / HP / 64 bit with i.e . 11.o .


So how do i fix this i assume something somewhere got mis set so need some help to fix it - thanks .


P.S . i can watch flash videos great if that means anything but can t get the speakeasy speed test .

Hi
I’m running Windows7 Professional on a PC
It takes about 7 mins. To boot
Is there a program (either built in or to buy) that will show me what is happening AS it boots?

Mike

The other day I was looking to download something that would turn flac VIDEO into mpegs. I dl'd from cnet.com where I usually go when I'm searching for something I don't know any websites to go to. cnet.com downloads have never been a problem in the past but this is the only thing I can think of. Nothing I downloaded was what I was really looking for, so I uninstalled it right away. I was using Firefox and imo FF has gotten buggier with each new version so I blamed what was happening on FF. I uninstalled FF and installed Chrome. These problems (window after window after window, etc., opening telling me I didn't have Java (I have the latest version) that I should update my Vista drivers or I was going to die a slow, torturous death, etc. You get the picture.

Anyway, since nothing unusual showed up in my programs and features I went into my program files and there it was. Main folder, another folder inside, and the 32 version, and the 64 version. I tried to delete but of course, to no avail.

I've gotten help from you guys in the past and so here I am. Let me know if I provided the correct information because it seems that both of the buttons you told me push provided the same information. Just so you know, when I did the first button, on the very first line it stopped, was highlighted in red, and said something about not being able to fix it but it's there for you to see. Then this pops up. I'm gonna wait for a response before I do anything

Thanks a bunch. Sorry, now I don't remember which came first, the chicken or the egg.

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 10:05:15 AM, on 3/1/2014
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16533)


Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\rundll32.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Users\rman56\Downloads\HijackThis.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a...=614045414&ir=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a...=614045414&ir=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: IEOptimizer - {10AD2C61-0898-4348-8600-14A342F22AC3} - C:\Program Files\SavingsBull\IEOptimizer.dll (file missing)
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [BrowserSafeguard] "C:\Program Files\Browsersafeguard\BrowserSafeguard.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" -f "C:\ProgramData\NVIDIA\Updatus\NvTmru\nvtmru.dat"
O4 - HKLM\..\RunOnce: [RAInstaller c:\Zylom Games\Jewel Quest Mysteries - The Seventh Gate Premium Edition] cmd.exe /c "rmdir /S /Q "c:\Zylom Games\Jewel Quest Mysteries - The Seventh Gate Premium Edition""
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [NTRedirect] C:\Windows\system32\rundll32.exe "C:\Users\rman56\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O8 - Extra context menu item: &Save the YouTube video as MP3 - C:\Users\rman56\AppData\Roaming\Free YouTube to MP3 Converter Studio\Free YouTube to MP3 Converter Studio.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\progra~1\contin~1\sprote~1.dll c:\progra~1\softqu~1\sprote~1.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - C:\Program Files\BitComet\tools\BitCometService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Level Quality Watcher - Unknown owner - C:\Program Files\Level Quality Watcher\v1.01\levelqualitywatcher32.exe
O23 - Service: lxbc_device - - C:\Windows\system32\lxbccoms.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Update lookinglink - Unknown owner - C:\Program Files\lookinglink\updatelookinglink.exe (file missing)

--
End of file - 6271 bytes


This came last, I remember it saying a file is missing and I believe it's the first one.

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 10:05:15 AM, on 3/1/2014
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16533)


Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\rundll32.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Users\rman56\Downloads\HijackThis.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a...=614045414&ir=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a...=614045414&ir=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: IEOptimizer - {10AD2C61-0898-4348-8600-14A342F22AC3} - C:\Program Files\SavingsBull\IEOptimizer.dll (file missing)
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [BrowserSafeguard] "C:\Program Files\Browsersafeguard\BrowserSafeguard.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" -f "C:\ProgramData\NVIDIA\Updatus\NvTmru\nvtmru.dat"
O4 - HKLM\..\RunOnce: [RAInstaller c:\Zylom Games\Jewel Quest Mysteries - The Seventh Gate Premium Edition] cmd.exe /c "rmdir /S /Q "c:\Zylom Games\Jewel Quest Mysteries - The Seventh Gate Premium Edition""
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [NTRedirect] C:\Windows\system32\rundll32.exe "C:\Users\rman56\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O8 - Extra context menu item: &Save the YouTube video as MP3 - C:\Users\rman56\AppData\Roaming\Free YouTube to MP3 Converter Studio\Free YouTube to MP3 Converter Studio.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\progra~1\contin~1\sprote~1.dll c:\progra~1\softqu~1\sprote~1.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - C:\Program Files\BitComet\tools\BitCometService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Level Quality Watcher - Unknown owner - C:\Program Files\Level Quality Watcher\v1.01\levelqualitywatcher32.exe
O23 - Service: lxbc_device - - C:\Windows\system32\lxbccoms.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Update lookinglink - Unknown owner - C:\Program Files\lookinglink\updatelookinglink.exe (file missing)

--
End of file - 6271 bytes


Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 10:05:15 AM, on 3/1/2014
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16533)


Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\rundll32.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Users\rman56\Downloads\HijackThis.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a...=614045414&ir=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a...=614045414&ir=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: IEOptimizer - {10AD2C61-0898-4348-8600-14A342F22AC3} - C:\Program Files\SavingsBull\IEOptimizer.dll (file missing)
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [BrowserSafeguard] "C:\Program Files\Browsersafeguard\BrowserSafeguard.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" -f "C:\ProgramData\NVIDIA\Updatus\NvTmru\nvtmru.dat"
O4 - HKLM\..\RunOnce: [RAInstaller c:\Zylom Games\Jewel Quest Mysteries - The Seventh Gate Premium Edition] cmd.exe /c "rmdir /S /Q "c:\Zylom Games\Jewel Quest Mysteries - The Seventh Gate Premium Edition""
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [NTRedirect] C:\Windows\system32\rundll32.exe "C:\Users\rman56\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O8 - Extra context menu item: &Save the YouTube video as MP3 - C:\Users\rman56\AppData\Roaming\Free YouTube to MP3 Converter Studio\Free YouTube to MP3 Converter Studio.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\progra~1\contin~1\sprote~1.dll c:\progra~1\softqu~1\sprote~1.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - C:\Program Files\BitComet\tools\BitCometService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Level Quality Watcher - Unknown owner - C:\Program Files\Level Quality Watcher\v1.01\levelqualitywatcher32.exe
O23 - Service: lxbc_device - - C:\Windows\system32\lxbccoms.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Update lookinglink - Unknown owner - C:\Program Files\lookinglink\updatelookinglink.exe (file missing)

--
End of file - 6271 bytes

Trying to format hard drive with XP. when I boot the CD with Xp on it...it goes through the install cycle, but when it restarts. ..it says UNABLE TO READ, I would think this is a HD problem, is there a program to boot to DOS, and use dos commands to format the hard drive? Or maybe a boot program that will scan the hard drive and block any errored sectors,etc. so data could not be written to them. Just thinking of a workaround from buying a new HD.

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft® Windows Vista™ Business, Service Pack 2, 32 bit
Processor: Intel(R) Core(TM)2 Duo CPU E4400 @ 2.00GHz, x64 Family 6 Model 15 Stepping 13
Processor Count: 2
RAM: 3316 Mb
Graphics Card: Intel(R) 82945G Express Chipset Family, 256 Mb
Hard Drives: C: Total - 157063 MB, Free - 79823 MB; E: Total - 5931 MB, Free - 743 MB; F: Total - 184828 MB, Free - 86986 MB;
Motherboard: Intel Corporation, D945GCNL
Antivirus: avast! Internet Security, Updated and Enabled

I am unable to find a reason why my speakers don't work. They are properly plugged in, turned on, sound volume is up, etc. Is there a diagnostic tool I can use to check the status of speakers. Looking at audio in the control panel, it says everything is good. Will not play a cd, video or game with sound. please help