windows 7 IE flashing screen

**judas** · 23-12-2010

Hello,

I recently went to a website that I think gave me a virus of some sort. Ever since then my internet explorer would blink or flash whenever I opened it.

I ran the scans but the gmer one did not save a log. It did leave a message that said nothing was found. I posted the logs of the other scans below. Thanks in advance.

malwarebyte scan:

Malwarebytes' Anti-Malware 1.50.1.1100
Malwarebytes

Database version: 5380

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

12/22/2010 8:54:58 PM
mbam-log-2010-12-22 (20-54-58).txt

Scan type: Quick scan
Objects scanned: 152255
Time elapsed: 35 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

MBRCHECK:

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows 7 Professional
Windows Information: (build 7600), 64-bit
Base Board Manufacturer: EVGA
BIOS Manufacturer: Phoenix Technologies, LTD
System Manufacturer: OEM
System Product Name: OEM
Logical Drives Mask: 0x000001fe

Kernel Drivers (total 159):
0x02C4F000 \SystemRoot\system32\ntoskrnl.exe
0x02C06000 \SystemRoot\system32\hal.dll
0x00BA7000 \SystemRoot\system32\kdcom.dll
0x00CA8000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x00CEC000 \SystemRoot\system32\PSHED.dll
0x00D00000 \SystemRoot\system32\CLFS.SYS
0x00E4B000 \SystemRoot\system32\CI.dll
0x00F0B000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00FAF000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00D5E000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x00FBE000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x00FC7000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x00E00000 \SystemRoot\system32\DRIVERS\pci.sys
0x00E33000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x00FD1000 \SystemRoot\System32\drivers\partmgr.sys
0x00FE6000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x00C00000 \SystemRoot\System32\drivers\volmgrx.sys
0x00E40000 \SystemRoot\system32\DRIVERS\pciide.sys
0x00C5C000 \SystemRoot\system32\DRIVERS\PCIIDEX.SYS
0x00C6C000 \SystemRoot\System32\drivers\mountmgr.sys
0x00C86000 \SystemRoot\system32\DRIVERS\atapi.sys
0x00DB5000 \SystemRoot\system32\DRIVERS\ataport.SYS
0x00DDF000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x010E3000 \SystemRoot\system32\drivers\fltmgr.sys
0x0112F000 \SystemRoot\system32\drivers\fileinfo.sys
0x01250000 \SystemRoot\System32\Drivers\Ntfs.sys
0x01143000 \SystemRoot\System32\Drivers\msrpc.sys
0x01200000 \SystemRoot\System32\Drivers\ksecdd.sys
0x01000000 \SystemRoot\System32\Drivers\cng.sys
0x0121A000 \SystemRoot\System32\drivers\pcw.sys
0x0122B000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x0145E000 \SystemRoot\system32\drivers\ndis.sys
0x01550000 \SystemRoot\system32\drivers\NETIO.SYS
0x015B0000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x01602000 \SystemRoot\System32\drivers\tcpip.sys
0x01400000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x0144A000 \SystemRoot\system32\DRIVERS\vmstorfl.sys
0x01073000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x015DB000 \SystemRoot\System32\Drivers\spldr.sys
0x011A1000 \SystemRoot\System32\drivers\rdyboost.sys
0x015E3000 \SystemRoot\System32\Drivers\mup.sys
0x015F5000 \SystemRoot\System32\drivers\hwpolicy.sys
0x0187E000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x018B8000 \SystemRoot\system32\DRIVERS\disk.sys
0x018CE000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x01934000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x0195E000 \SystemRoot\System32\Drivers\Null.SYS
0x01967000 \SystemRoot\System32\Drivers\Beep.SYS
0x0196E000 \SystemRoot\System32\drivers\vga.sys
0x0197C000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x019A1000 \SystemRoot\System32\drivers\watchdog.sys
0x019B1000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x019BA000 \SystemRoot\system32\drivers\rdpencdd.sys
0x019C3000 \SystemRoot\system32\drivers\rdprefmp.sys
0x019CC000 \SystemRoot\System32\Drivers\Msfs.SYS
0x019D7000 \SystemRoot\System32\Drivers\Npfs.SYS
0x01800000 \SystemRoot\system32\DRIVERS\tdx.sys
0x0181E000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x02C0F000 \SystemRoot\system32\drivers\afd.sys
0x02C99000 \SystemRoot\System32\DRIVERS\netbt.sys
0x02CDE000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x02CE7000 \SystemRoot\system32\DRIVERS\pacer.sys
0x02D0D000 \SystemRoot\system32\DRIVERS\netbios.sys
0x02D1C000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x02D37000 \SystemRoot\system32\DRIVERS\termdd.sys
0x02D4B000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x02D9C000 \SystemRoot\system32\drivers\nsiproxy.sys
0x02DA8000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x02DB3000 \SystemRoot\System32\drivers\discache.sys
0x03CFA000 \SystemRoot\system32\drivers\csc.sys
0x03D7D000 \SystemRoot\System32\Drivers\dfsc.sys
0x03D9B000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x03DAC000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x03DD2000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x0480F000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x053E9000 \SystemRoot\system32\DRIVERS\nvBridge.kmd
0x03C00000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x0182B000 \SystemRoot\System32\drivers\dxgmms1.sys
0x02DC2000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x053EB000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x042F3000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x04349000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x0435A000 \SystemRoot\system32\DRIVERS\Rt64win7.sys
0x04200000 \SystemRoot\system32\drivers\ctaud2k.sys
0x042A6000 \SystemRoot\system32\drivers\portcls.sys
0x043A5000 \SystemRoot\system32\drivers\drmk.sys
0x0442E000 \SystemRoot\system32\drivers\ks.sys
0x04471000 \SystemRoot\system32\drivers\ctoss2k.sys
0x044A2000 \SystemRoot\system32\drivers\ctprxy2k.sys
0x044AA000 \SystemRoot\system32\drivers\ksthunk.sys
0x044B0000 \SystemRoot\system32\DRIVERS\1394ohci.sys
0x044EE000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x0450C000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x0451B000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x04524000 \SystemRoot\system32\DRIVERS\serscan.sys
0x0452C000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x0453C000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x04552000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x04576000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x04582000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x045B1000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x045CC000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x04400000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x0441A000 \SystemRoot\system32\DRIVERS\rdpbus.sys
0x045ED000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x045FC000 \SystemRoot\system32\DRIVERS\swenum.sys
0x043C7000 \SystemRoot\system32\DRIVERS\umbus.sys
0x05AB6000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x05B10000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x06E10000 \SystemRoot\system32\drivers\ha20x2k.sys
0x06F91000 \SystemRoot\system32\drivers\emupia2k.sys
0x05B25000 \SystemRoot\system32\drivers\ctsfm2k.sys
0x05A00000 \SystemRoot\system32\drivers\ctac32k.sys
0x05B5D000 \SystemRoot\system32\drivers\nvhda64v.sys
0x06FDB000 \SystemRoot\System32\drivers\CTHWIUT.SYS
0x05B86000 \SystemRoot\System32\drivers\CT20XUT.SYS
0x07408000 \SystemRoot\System32\drivers\CTEXFIFX.SYS
0x07565000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0x07580000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x07582000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x07590000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x075A9000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x075B2000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x075BF000 \SystemRoot\system32\DRIVERS\point64.sys
0x00030000 \SystemRoot\System32\win32k.sys
0x075CF000 \SystemRoot\System32\drivers\Dxapi.sys
0x03890000 \SystemRoot\system32\DRIVERS\udfs.sys
0x038E4000 \SystemRoot\System32\Drivers\fastfat.SYS
0x0391A000 \SystemRoot\system32\DRIVERS\monitor.sys
0x03928000 \SystemRoot\System32\Drivers\crashdmp.sys
0x03936000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x03942000 \SystemRoot\System32\Drivers\dump_atapi.sys
0x0394B000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x004D0000 \SystemRoot\System32\TSDDD.dll
0x00770000 \SystemRoot\System32\cdd.dll
0x00870000 \SystemRoot\System32\ATMFD.DLL
0x0395E000 \SystemRoot\system32\drivers\luafv.sys
0x03981000 \SystemRoot\system32\drivers\WudfPf.sys
0x039A2000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x039B7000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x0702B000 \SystemRoot\system32\drivers\HTTP.sys
0x070F3000 \SystemRoot\system32\DRIVERS\bowser.sys
0x07111000 \SystemRoot\System32\drivers\mpsdrv.sys
0x07129000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x07156000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x071A4000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x07A5E000 \SystemRoot\system32\drivers\peauth.sys
0x07B04000 \SystemRoot\System32\Drivers\secdrv.SYS
0x07B0F000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x07B3C000 \SystemRoot\System32\drivers\tcpipreg.sys
0x07B4E000 \SystemRoot\System32\DRIVERS\srv2.sys
0x0804F000 \SystemRoot\System32\DRIVERS\srv.sys
0x080E5000 \SystemRoot\system32\DRIVERS\WUDFRd.sys
0x08116000 \SystemRoot\system32\drivers\spsys.sys
0x08187000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0x778D0000 \Windows\System32\ntdll.dll
0x48350000 \Windows\System32\smss.exe
0xFFBF0000 \Windows\System32\apisetschema.dll
0xFF690000 \Windows\System32\autochk.exe

Processes (total 52):
0 System Idle Process
4 System
292 C:\Windows\System32\smss.exe
412 csrss.exe
484 C:\Windows\System32\wininit.exe
492 csrss.exe
532 C:\Windows\System32\services.exe
560 C:\Windows\System32\lsass.exe
568 C:\Windows\System32\lsm.exe
620 C:\Windows\System32\winlogon.exe
708 C:\Windows\System32\svchost.exe
772 C:\Windows\System32\nvvsvc.exe
812 C:\Windows\System32\svchost.exe
912 C:\Windows\System32\svchost.exe
952 C:\Windows\System32\svchost.exe
980 C:\Windows\System32\svchost.exe
360 C:\Windows\System32\audiodg.exe
420 C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
828 C:\Windows\System32\svchost.exe
1116 C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
1144 C:\Windows\System32\nvvsvc.exe
1152 C:\Windows\System32\svchost.exe
1328 C:\Windows\System32\spoolsv.exe
1404 C:\Windows\System32\svchost.exe
1564 C:\Windows\System32\taskhost.exe
1596 C:\Windows\System32\svchost.exe
1680 C:\Windows\System32\dwm.exe
1708 C:\Windows\SysWOW64\PnkBstrA.exe
1792 C:\Windows\explorer.exe
1800 C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
1920 C:\Windows\System32\svchost.exe
2188 C:\Program Files\Microsoft IntelliPoint\ipoint.exe
2196 C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
2204 C:\Windows\System32\StikyNot.exe
2280 C:\Windows\SysWOW64\Ctxfihlp.exe
2312 C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
2660 C:\Windows\SysWOW64\CTxfispi.exe
2884 C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
3032 C:\Windows\System32\SearchIndexer.exe
1392 WUDFHost.exe
3540 C:\Windows\System32\sppsvc.exe
3580 C:\Windows\System32\svchost.exe
3616 C:\Program Files\Windows Media Player\wmpnetwk.exe
3824 WmiPrvSE.exe
1460 C:\Windows\System32\wuauclt.exe
2684 C:\Windows\System32\svchost.exe
2524 C:\Windows\System32\SearchProtocolHost.exe
1036 C:\Windows\System32\SearchFilterHost.exe
1816 C:\Windows\System32\svchost.exe
308 C:\Users\Matt\Desktop\anti virus information\MBRCheck.exe
1464 C:\Windows\System32\conhost.exe
3936 C:\Windows\System32\dllhost.exe

\\.\B: --> \\.\PhysicalDrive3 at offset 0x00000000`00100000 (NTFS)
\\.\C: --> \\.\PhysicalDrive1 at offset 0x00000000`06500000 (NTFS)
\\.\E: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\F: --> \\.\PhysicalDrive2 at offset 0x00000000`00007e00 (NTFS)
\\.\G: --> \\.\PhysicalDrive2 at offset 0x0000001a`dafc8c00 (NTFS)
\\.\H: --> \\.\PhysicalDrive5 at offset 0x00000000`00007e00 (NTFS)

PhysicalDrive3 Model Number: WDCWD20EARS-00J2GB0, Rev: 80.00A80
PhysicalDrive1 Model Number: CorsairCSSD-V32GB2, Rev: 2.1
PhysicalDrive0 Model Number: WDCWD1002FBYS-01A6B0, Rev: 03.00C05
PhysicalDrive2 Model Number: ST3400620NS, Rev: 3.AEG
PhysicalDrive5 Model Number: MICRONETFANTOM DRIVE, Rev: 2.10

Size Device Name MBR Status
--------------------------------------------
1863 GB \\.\PhysicalDrive3 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79
29 GB \\.\PhysicalDrive1 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79
931 GB \\.\PhysicalDrive0 Windows XP MBR code detected
SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644A
372 GB \\.\PhysicalDrive2 Windows XP MBR code detected
SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644A
931 GB \\.\PhysicalDrive5 RE: Unknown MBR code
SHA1: 7B673ACE7D764F99598D604CA48490D0A72DF547

Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:

DDS:

DDS (Ver_10-12-12.02) - NTFS_AMD64
Run by Matt at 21:05:18.05 on Wed 12/22/2010
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Professional 6.1.7600.0.1252.1.1033.18.6135.4629 [GMT -5:00]

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\Dwm.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Windows\System32\StikyNot.exe
C:\Windows\SysWOW64\Ctxfihlp.exe
C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
C:\Windows\SysWOW64\CTXFISPI.EXE
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
F:\Program Files\Ventrilo\Ventrilo.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\Matt\Desktop\anti virus information\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://espn.go.com/newyork/
uURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
mURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - B:\Office12\GrooveShellExtensions.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
TB: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
mRun: [CTxfiHlp] CTXFIHLP.EXE
mRun: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
mRun: [GrooveMonitor] "B:\Office12\GrooveMonitor.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - B:\Office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - B:\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - B:\Office12\REFIEBAR.DLL
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - B:\Office12\GrooveSystemServices.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - B:\Office12\GrooveShellExtensions.dll
TB-X64: {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No File
mRun-x64: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"

============= SERVICES / DRIVERS ===============

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-16 369256]
R3 CT20XUT.SYS;CT20XUT.SYS;C:\Windows\System32\driver s\CT20XUT.sys [2010-5-5 202840]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS;C:\Windows\System32\driv ers\CTEXFIFX.sys [2010-5-5 1417304]
R3 CTHWIUT.SYS;CTHWIUT.SYS;C:\Windows\System32\driver s\CTHWIUT.sys [2010-5-5 94808]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\System32\drivers\nvhda64v.sys [2010-12-7 155752]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-11-5 291328]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\ v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework6 4\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2010-8-18 79360]
S3 CT20XUT;CT20XUT;C:\Windows\System32\drivers\CT20XU T.sys [2010-5-5 202840]
S3 CTEXFIFX;CTEXFIFX;C:\Windows\System32\drivers\CTEX FIFX.sys [2010-5-5 1417304]
S3 CTHWIUT;CTHWIUT;C:\Windows\System32\drivers\CTHWIU T.sys [2010-5-5 94808]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-8-17 1255736]

=============== Created Last 30 ================

2010-12-23 01:10:02 -------- d-----w- C:\Users\Matt\AppData\Roaming\Malwarebytes
2010-12-23 01:09:58 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2010-12-23 01:09:58 -------- d-----w- C:\PROGRA~3\Malwarebytes
2010-12-23 01:09:55 24152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2010-12-23 01:09:55 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-12-14 05:49:08 8199504 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{35275D63-090E-4E13-B673-6893DADE13C4}\mpengine.dll
2010-12-11 05:02:03 -------- d-----w- C:\Program Files (x86)\Conduit
2010-12-11 05:02:01 -------- d-----w- C:\Program Files (x86)\ConduitEngine
2010-12-11 05:02:00 -------- d-----w- C:\Program Files (x86)\uTorrentBar
2010-12-11 05:01:59 -------- d-----w- C:\extensions
2010-12-08 01:59:00 -------- d-----w- C:\Program Files (x86)\SystemRequirementsLab

==================== Find3M ====================

2010-12-22 04:04:52 270904 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2010-12-22 04:04:52 270904 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2010-12-22 04:03:42 215128 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2010-12-02 04:08:59 75136 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2010-10-19 15:41:44 270720 ------w- C:\Windows\System32\MpSigStub.exe
2010-10-16 18:13:54 5901416 ----a-w- C:\Windows\System32\nvcpl.dll
2010-10-16 18:13:34 989800 ----a-w- C:\Windows\System32\nvvsvc.exe
2010-10-16 18:13:34 61032 ----a-w- C:\Windows\System32\nvshext.dll
2010-10-16 18:13:34 2590824 ----a-w- C:\Windows\System32\nvsvc64.dll
2010-10-16 18:13:34 116328 ----a-w- C:\Windows\System32\nvmctray.dll

============= FINISH: 21:05:28.99 ===============

ATTACH:

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-12-12.02)

Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume5
Install Date: 8/18/2010 4:01:42 AM
System Uptime: 12/22/2010 8:53:43 PM (1 hours ago)

Motherboard: EVGA | | 141-BL-E757
Processor: Intel(R) Core(TM) i7 CPU 930 @ 2.80GHz | Socket 423 | 2653/133mhz

==== Disk Partitions =========================

B: is FIXED (NTFS) - 1863 GiB total, 993.347 GiB free.
C: is FIXED (NTFS) - 30 GiB total, 3.776 GiB free.
D: is CDROM (UDF)
E: is FIXED (NTFS) - 932 GiB total, 221.304 GiB free.
F: is FIXED (NTFS) - 107 GiB total, 63.177 GiB free.
G: is FIXED (NTFS) - 265 GiB total, 3.042 GiB free.
H: is FIXED (NTFS) - 932 GiB total, 171.239 GiB free.
I: is Removable

==== Disabled Device Manager Items =============

==== System Restore Points ===================

No restore point in system.

==== Installed Programs ======================

µTorrent
AA Watcher V 2.9b
AA2Deploy
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Reader 9.4.1
Adobe Shockwave Player 11.5
Apple Application Support
Apple Software Update
ARMA 2: Operation Arrowhead Demo
Battlefield 2(TM)
Battlefield: Bad Company 2
Canon IJ Network Scan Utility
Canon IJ Network Tool
CCleaner
CMN3 4.0
Conduit Engine
Creative Audio Control Panel
Creative Console Launcher
Creative Software AutoUpdate
Creative Sound Blaster Properties x64 Edition
Empire: Total War
Far Cry 2
Junk Mail filter update
K-Lite Codec Pack 6.3.0 (Basic)
King Arthur - The Role-playing Wargame
Lionheart - Kings' Crusade DEMO v1.0
Malwarebytes' Anti-Malware
Microsoft Choice Guard
Microsoft Games for Windows - LIVE
Microsoft Games for Windows - LIVE Redistributable
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
MSVCRT
Napoleon: Total War
NVIDIA PhysX
NVIDIA Stereoscopic 3D Driver
OpenAL
Project Reality 0917 Full - Part 1 of 2
Project Reality 0917 Full - Part 2 of 2
PunkBuster Services
QuickTime
R.U.S.E. Demo
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2289158)
Security Update for 2007 Microsoft Office System (KB2344875)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Excel 2007 (KB2345035)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office Outlook 2007 (KB2288953)
Security Update for Microsoft Office PowerPoint 2007 (KB982158)
Security Update for Microsoft Office PowerPoint Viewer (KB2413381)
Security Update for Microsoft Office Publisher 2007 (KB982124)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Steam
System Requirements Lab
TWL AA Cheat Deterrent Client
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Outlook 2007 Junk Email Filter (KB2443839)
uTorrentBar Toolbar
Veetle TV 0.9.18
VLC media player 1.1.4
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Live Upload Tool
WinXP Manager

==== Event Viewer Messages From Past Week ========

12/22/2010 8:53:50 PM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 7 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
12/22/2010 8:53:50 PM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 6 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
12/22/2010 8:53:50 PM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 5 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
12/22/2010 8:53:50 PM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 4 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
12/22/2010 8:53:50 PM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 3 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
12/22/2010 8:53:50 PM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 2 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
12/22/2010 8:53:50 PM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 1 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
12/22/2010 8:53:50 PM, Error: Microsoft-Windows-Kernel-Processor-Power [35] - Performance power management features on processor 0 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
12/22/2010 8:52:08 PM, Error: Service Control Manager [7034] - The Creative Audio Service service terminated unexpectedly. It has done this 1 time(s).
12/21/2010 10:03:16 PM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

==== End Of File ===========================

**broni** · 23-12-2010

Please, observe following rules:

Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
If you're stuck, or you're not sure about certain step, always ask before doing anything else.
Please refrain from running tools or applying updates other than those I suggest.
Never run more than one scan at a time.
Keep updating me regarding your computer behavior, good, or bad.
The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

================================================== ==============================================

If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.

...which happened here: http://www.d-a-l.com/help/spyware-ad...s-problem.html
Consider this as a warning.

================================================== ==============================================

Close IE.
Go Start>All Programs>Accessories>System Tools, and click on Internet Explorer (no add-ons). Same problem?

**judas** · 23-12-2010

I did not have any problems when I clicked on internet explorer (no add-ons). Also I should mention that when I ran those other scans and restarted my machine I did not have any problems in the regular internet explorer either.

**broni** · 23-12-2010

Probably some fluke.
So far, I don't see anything malicious.

I'll keep this topic open for next 5 days.
Report back, if you have any more problems.

**judas** · 24-12-2010

Alright, thanks for the help.

windows 7 IE flashing screen

windows 7 IE flashing screen

Similar Threads

Black screen b4 Windows logo loading screen, and Safe mode own't work!!

Black screen before windows splash screen, safe mode and windows disk dont work.....

DOS windows keeps flashing when entering windows desktop at start up

Blue screen with flashing minus sign in upper left

black screen after windows load screen