Advertisement

There's no such thing as a stupid question, but they're the easiest to answer.
Login
Search

Advertisement

Virus & Other Malware Removal Virus & Other Malware Removal
Search Search
Search for:
Tech Support Guy > > >

Solved: No desktop-icons( security system and programs not working)


(!)

seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
16-Jul-2011, 02:07 PM #1
No desktop-icons( security system and programs not working)
Hello,My desktop and program files just dissappered.I tried to fix it by ready in forums by unhiding it and then attempted to use the malware program and found soem infected files. now the icons program fiels are back but my Mcafee total protection system is not working it jusy brings a blank screen when i open also I am unable to print any doc. seems my progam are still not working properly.It was written soem where to first do a clean boot for this howwver i am unable to do that also. Please help I spend 6 hrs yesterday for this

Last edited by seemacima; 16-Jul-2011 at 02:38 PM..
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
16-Jul-2011, 02:38 PM #2
I am now trying to re do the whole process again running malware again..I count do clean boot before that though.Attempted to DL the file for guided help but when i tried to DL and click user agrrement it wnt let me do it.Pleae help...
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
16-Jul-2011, 05:38 PM #3
this is the long after malware deleted infected filesMalwarebytes' Anti-Malware 1.51.1.1800www.malwarebytes.orgDatabase version: 7153Windows 5.1.2600 Service Pack 3Internet Explorer 8.0.6001.187027/15/2011 6:23:01 PMmbam-log-2011-07-15 (18-23-01).txtScan type: Full scan (A:\|C:\|D:\|E:\|)Objects scanned: 139650Time elapsed: 2 hour(s), 3 minute(s), 0 second(s)Memory Processes Infected: 0Memory Modules Infected: 0Registry Keys Infected: 10Registry Values Infected: 0Registry Data Items Infected: 0Folders Infected: 0Files Infected: 1Memory Processes InfectedNo malicious items detected)Memory Modules InfectedNo malicious items detected)Registry Keys Infected:HKEY_CLASSES_ROOT\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.HKEY_CLASSES_ROOT\CLSID\{2B96D5CC-C5B5-49A5-A69D-CC0A30F9028C} (Adware.Minibug) -> Quarantined and deleted successfully.HKEY_CLASSES_ROOT\TypeLib\{3C2D2A1E-031F-4397-9614-87C932A848E0} (Adware.Minibug) -> Quarantined and deleted successfully.HKEY_CLASSES_ROOT\Interface\{04A38F6B-006F-4247-BA4C-02A139D5531C} (Adware.Minibug) -> Quarantined and deleted successfully.HKEY_CLASSES_ROOT\MiniBugTransporter.MiniBugTransporterX.1 (Adware.Minibug) -> Quarantined and deleted successfully.HKEY_CLASSES_ROOT\MiniBugTransporter.MiniBugTransporterX (Adware.Minibug) -> Quarantined and deleted successfully.HKEY_CLASSES_ROOT\CLSID\{A4730EBE-43A6-443e-9776-36915D323AD3} (Adware.MyWebSearch) -> Quarantined and deleted successfully.HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ex t\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully.HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully.HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully.Registry Values InfectedNo malicious items detected)Registry Data Items InfectedNo malicious items detected)Folders InfectedNo malicious items detected)Files Infected:c:\documents and settings\all users\application data\fbnaoyjjdpw.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
16-Jul-2011, 05:52 PM #4
now basically my virus scan Mcafee not working and seems several others are also not wotrking..i tried to do system restore afetr deletdd files but when i try to do it system restore screen is white..same thing happens when i try to open my Mcafee security/./ in addition to all that sytem is very slow and freezes....I have seval doc. that i really cant loose..I have virus system and also OL nbacking system still it happend dnt understand why....All i know is yesterday a fake warning came and i was keep X in it out and then i turn of system and next time when i open all my icos were gone.I tried to do what was written in this post....http://forums.techguy.org/virus-othe...desktop-2.html
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
16-Jul-2011, 10:01 PM #5
I gave up I tried all what was said in other post.now my security McAfee doesn't work and now system restore also dnt work and system is slow.

I hope someone can help me thus is my first time here .
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
17-Jul-2011, 05:09 PM #6
Bumping the thread.not sure about rules new to forum.not sure what else to do.
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
17-Jul-2011, 06:04 PM #7
seems like i was supposed to post this log....Logfile of Trend Micro HijackThis v2.0.4Scan saved at 3:01:23 PM, on 7/17/2011Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v8.00 (8.00.6001.18702)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WI NDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32 \svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC :\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\Program Files\Maxtor\Maxtor Backup\MaxBackServiceInt.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exeC:\WINDOWS\system32\mfevtps.exeC:\Progra m Files\McAfee Online Backup\MOBKbackup.exeC:\Program Files\McAfee\MPF\MPFSrv.exeC:\Program Files\McAfee\MSK\MskSrver.exeC:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exeC:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\Explorer.EXEC:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12. EXEC:\WINDOWS\system32\PSIService.exeC:\Program Files\Common Files\Protexis\License Service\PsiService_2.exeC:\Program Files\Microsoft\BingBar\SeaPort.EXEC:\WINDOWS\System32\svchost.exeC:\Progra m Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exeC:\Program Files\Common Files\McAfee\SystemCore\mfefire.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\PROGRA~1\VIRTUA~1\CitiVAN.exeC:\Program Files\QuickTime\QTTask.exeC:\Program Files\Common Files\Corel\Standby\Standby.exeC:\Program Files\Common Files\Java\Java Update\jusched.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files\Messenger\msmsgs.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exeC:\WINDOWS\system32\OBroker.exeC:\Program Files\McAfee Online Backup\MOBKstat.exeC:\ScanPanel\ScnPanel.exeC:\WINDOWS\system32\rundll32.ex eC:\PROGRA~1\McAfee\MSM\McSmtFwk.exeC:\Program Files\iPod\bin\iPodService.exeC:\WINDOWS\system32\restore\rstrui.exeC:\PROG RA~1\COMMON~1\McAfee\MSC\McUICnt.exeC:\WINDOWS\system32\restore\rstrui.exeC :\WINDOWS\system32\restore\rstrui.exeC:\WINDOWS\system32\restore\rstrui.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exeC:\Program Files\Common Files\Java\Java Update\jucheck.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Common Files\McAfee\SystemCore\mcshield.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Documents and Settings\prakash1\Desktop\receipe\HijackThis.exeC:\WINDOWS\system32\wuauclt .exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/.../search.htmlR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/.../search.htmlR0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/...ww.yahoo.comR1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://mail.google.com/mail/R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 210.212.123.10:8080R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dllR3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn7\yt.dllO2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn7\yt.dllO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - BHO: Virtual Account Numbers Helper - {17424104-1444-4810-85D7-B4DA413C5A9A} - C:\Program Files\Virtual Account Numbers\CitiVANHelper.dllO2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll (file missing)O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110520185530.dll (file missing)O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dllO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dllO2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dllO2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dllO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dllO2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dllO2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn7\YTSingleInstance.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn7\yt.dllO3 - Toolbar: TurboTax ItsDeductible - {35CE0AE2-3411-4BB8-A16A-BEE30B282A26} - C:\Program Files\Intuit\IDO\IDOToolbar.dllO3 - Toolbar: Virtual Account Numbers - {7A21A046-B886-4A62-9D69-EF2059B0A27B} - C:\Program Files\Virtual Account Numbers\CitiVANToolbar.dllO3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dllO3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dllO3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dllO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [Citi Virtual Account Numbers] C:\PROGRA~1\VIRTUA~1\CitiVAN.exe /lang=en_RG /dontopenmycardsO4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkeyO4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottimeO4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resumeO4 - HKLM\..\Run: [Corel File Shell Monitor] C:\Program Files\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\CorelIOMonitor.exeO4 - HKLM\..\Run: [Standby] "C:\Program Files\Common Files\Corel\Standby\Standby.exe" -STARTO4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exeO4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttrayO4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /backgroundO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"O4 - HKCU\..\Run: [Corel Photo Downloader] "C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startupO4 - HKUS\S-1-5-18\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit (User 'Default user')O4 - Global Startup: McAfee Online Backup Status.lnk = C:\Program Files\McAfee Online Backup\MOBKstat.exeO4 - Global Startup: ScanPanel.lnk = C:\ScanPanel\ScnPanel.exeO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.htmlO9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dllO9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLLO9 - Extra button: TurboTax ItsDeductible - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - C:\Program Files\Intuit\IDO\IDOToolbar.dllO9 - Extra 'Tools' menuitem: TurboTax ItsDeductible - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - C:\Program Files\Intuit\IDO\IDOToolbar.dllO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO16 - DPF: Garmin Internet Explorer Plug-In - https://my.garmin.com/mygarmin/m/GarminAxControl.CABO16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/sh...cinsctl.cabO16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.winkflash.com/photo/loade...loader4.cabO16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr01...SNPUpld.cabO18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dllO18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dllO22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dllO22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dllO23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeO23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exeO23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exeO23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exeO23 - Service: Intuit Update Service (IntuitUpdateService) - Intuit Inc. - C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exeO23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exeO23 - Service: MaxBackServiceInt - Unknown owner - C:\Program Files\Maxtor\Maxtor Backup\MaxBackServiceInt.exeO23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exeO23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exeO23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exeO23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exeO23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exeO23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exeO23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exeO23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exeO23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exeO23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exeO23 - Service: McAfee Online Backup (MOBKbackup) - McAfee, Inc. - C:\Program Files\McAfee Online Backup\MOBKbackup.exeO23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exeO23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exeO23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exeO23 - Service: MaxSyncService (NTService1) - - C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exeO23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exeO23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXEO23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exeO23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exeO23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exeO23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exeO23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe--End of file - 15888 bytes
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
17-Jul-2011, 06:15 PM #8
this is the dds logDDS (Ver_2011-07-14.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702Run by prakash1 at 15:10:53 on 2011-07-17Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1023.468 [GMT -7:00].AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}FW: McAfee Firewall *Enabled* .============== Running Processes ================.C:\WINDOWS\system32\spoolsv.exeC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\Program Files\Maxtor\Maxtor Backup\MaxBackServiceInt.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exeC:\WINDOWS\system32\mfevtps.exeC:\Progra m Files\McAfee Online Backup\MOBKbackup.exeC:\Program Files\McAfee\MPF\MPFSrv.exeC:\Program Files\McAfee\MSK\MskSrver.exeC:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exeC:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\Explorer.EXEC:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12. EXEC:\WINDOWS\system32\PSIService.exeC:\Program Files\Common Files\Protexis\License Service\PsiService_2.exeC:\Program Files\Microsoft\BingBar\SeaPort.EXEC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exeC:\Program Files\Common Files\McAfee\SystemCore\mfefire.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\PROGRA~1\VIRTUA~1\CitiVAN.exeC:\Program Files\QuickTime\QTTask.exeC:\Program Files\Common Files\Corel\Standby\Standby.exeC:\Program Files\Common Files\Java\Java Update\jusched.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files\Messenger\msmsgs.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exeC:\WINDOWS\system32\OBroker.exeC:\Program Files\McAfee Online Backup\MOBKstat.exeC:\ScanPanel\ScnPanel.exeC:\WINDOWS\system32\rundll32.ex eC:\WINDOWS\System32\alg.exeC:\PROGRA~1\McAfee\MSM\McSmtFwk.exeC:\Program Files\iPod\bin\iPodService.exeC:\WINDOWS\system32\restore\rstrui.exeC:\PROG RA~1\COMMON~1\McAfee\MSC\McUICnt.exeC:\WINDOWS\system32\restore\rstrui.exeC :\WINDOWS\system32\restore\rstrui.exeC:\WINDOWS\system32\restore\rstrui.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exeC:\Program Files\Common Files\Java\Java Update\jucheck.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Common Files\McAfee\SystemCore\mcshield.exeC:\Program Files\Internet Explorer\iexplore.exeC:\WINDOWS\system32\wbem\wmiprvse.exeC:\WINDOWS\System 32\svchost.exe -k netsvcsC:\WINDOWS\System32\svchost.exe -k NetworkServiceC:\WINDOWS\System32\svchost.exe -k LocalServiceC:\WINDOWS\System32\svchost.exe -k LocalServiceC:\WINDOWS\System32\svchost.exe -k imgsvc.============== Pseudo HJT Report ===============.uStart Page = hxxp://www.google.com/webhp?sourceid=navclient&ie=UTF-8uWindow Title = Windows Internet Explorer provided by Yahoo!uSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.htmluSearch Page = hxxp://www.google.comuDefault_Page_URL = hxxp://www.yahoo.com/?fr=fp-yie8uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.htmluInternet Connection Wizard,ShellNext = hxxp://mail.google.com/mail/uProxyServer = 210.212.123.10:8080uProxyOverride = ;*.localuSearchAssistant = hxxp://www.google.com/ieuSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.commSearchAssistant = hxxp://www.google.com/ieuURLSearchHooks: UrlSearchHook Class: {00000000-6E41-4FD3-8538-502F5495E5FC} - c:\program files\ask.com\GenericAskToolbar.dlluURLSearchHooks: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn7\yt.dllBHO: &Yahoo! Toolbar Helper: {02478D38-C3F9-4EFB-9B51-7695ECA05670} - c:\program files\yahoo!\companion\installs\cpn7\yt.dllBHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dllBHO: Virtual Account Numbers Helper: {17424104-1444-4810-85D7-B4DA413C5A9A} - c:\program files\virtual account numbers\CitiVANHelper.dllBHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dllBHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dllBHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.6406.1642\swg.dllBHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\program files\mcafee\siteadvisor\McIEPlg.dllBHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - BHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dllBHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dllBHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dllBHO: SingleInstance Class: {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - c:\program files\yahoo!\companion\installs\cpn7\YTSingleInstance.dllTB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dllTB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn7\yt.dllTB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dllTB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn7\yt.dllTB: TurboTax ItsDeductible: {35CE0AE2-3411-4BB8-A16A-BEE30B282A26} - c:\program files\intuit\ido\IDOToolbar.dllTB: Virtual Account Numbers: {7A21A046-B886-4A62-9D69-EF2059B0A27B} - c:\program files\virtual account numbers\CitiVANToolbar.dllTB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\program files\mcafee\siteadvisor\McIEPlg.dllTB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dllTB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dllEB: {32683183-48a0-441b-a342-7c2a440a9478} - EB: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /backgrounduRun: [ctfmon.exe] c:\windows\system32\ctfmon.exeuRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"uRun: [TomTomHOME.exe] "c:\program files\tomtom home 2\TomTomHOMERunner.exe"uRun: [Corel Photo Downloader] "c:\program files\common files\corel\corel photodownloader\Corel Photo Downloader.exe" -startupmRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartupmRun: [Citi Virtual Account Numbers] c:\progra~1\virtua~1\CitiVAN.exe /lang=en_RG /dontopenmycardsmRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkeymRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottimemRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resumemRun: [Corel File Shell Monitor] c:\program files\corel\corel paintshop photo pro\x3\pspclassic\CorelIOMonitor.exemRun: [Standby] "c:\program files\common files\corel\standby\Standby.exe" -STARTmRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exemRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttraydRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NVMCTRAY.DLL,NvTaskbarInitStartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee online backup\MOBKstat.exeStartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\scanpa~1.lnk - c:\scanpanel\ScnPanel.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:0mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1mPolicies-Explorer: NoDriveTypeAutoRun = dword:145IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.htmlIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dllIE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}IE: {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - {35CE0AE2-3411-4BB8-A16A-BEE30B282A26}IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exeIE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exeTrusted Zone: ameritrade.comTrusted Zone: tdameritrade.comTrusted Zone: turbotax.comDPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cabDPF: Garmin Internet Explorer Plug-In - hxxps://my.garmin.com/mygarmin/m/GarminAxControl.CABDPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cabDPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,84/mcinsctl.cabDPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} - hxxp://www.winkflash.com/photo/loaders/ImageUploader4.cabDPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cabDPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cabDPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cabDPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cabDPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cabDPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} - hxxp://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cabTCP: NameServer = 192.168.0.1 205.171.3.25TCP: Interfaces\{13B2B0BE-60F1-4D01-B1B6-5C17FFDBB0AA} : DHCPNameServer = 192.168.0.1 205.171.3.25Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dllHandler: ipp - Handler: msdaipp - Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dllSSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dllLSA: Notification Packages = :\windows\system32\srrmASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "c:\program files\outlook express\setup50.exe" /APP:OE /CALLER:WINNT /user /installmASetup: {7790769C-0471-11d2-AF11-00C04FA35D02} - "c:\program files\outlook express\setup50.exe" /APP:WAB /CALLER:WINNT /user /installmASetup: {A509B1FF-37FF-4bFF-8CFF-4F3A747040FF} - c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,launchinfsectionex c:\program files\internet explorer\clrtour.inf,DefaultInstall.ResetTour,,12IFEO: Your Image File Name Here without a path - ntsd -d.============= SERVICES / DRIVERS ===============.R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2009-3-25 459728]R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2010-12-16 89368]R1 MOBKFilter;MOBKFilter;c:\windows\system32\drivers\MOBK.sys [2010-12-16 54776]R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-7-16 366640]R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2010-12-16 214904]R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2010-12-16 214904]R2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2010-12-16 214904]R2 McShield;McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2010-12-16 165000]R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2010-12-16 159832]R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2010-12-16 148520]R2 MOBKbackup;McAfee Online Backup;c:\program files\mcafee online backup\MOBKbackup.exe [2010-4-13 229688]R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-7-16 22712]R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2010-12-15 179248]R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2010-12-15 59288]R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-12-16 337912]R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2010-12-16 83688]S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-1-31 135664]S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-2-28 183560]S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-12-16 57432]S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-1-31 135664]S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2010-12-16 83688]S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-12-16 85984]S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2006-7-31 34248]S3 mfesmfk;McAfee Inc. mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2006-7-31 40552].=============== Created Last 30 ================.2011-07-16 18:27:52 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys2011-07-16 18:27:38 22712 ----a-w- c:\windows\system32\drivers\mbam.sys2011-07-16 18:27:36 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware2011-07-15 23:18:19 -------- d-----w- c:\documents and settings\prakash1\application data\Malwarebytes2011-07-15 23:17:52 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes2011-07-15 21:28:22 -------- d-----w- c:\windows\system32\wbem\repository\FS2011-07-15 21:28:22 -------- d-----w- c:\windows\system32\wbem\Repository2011-07-11 23:12:23 -------- d-----w- c:\program files\iPod2011-07-11 23:11:27 -------- d-----w- c:\program files\iTunes2011-07-09 19:14:25 18120 ----a-w- c:\windows\system32\drivers\Artec48.sys2011-07-09 19:14:08 7168 ------w- c:\windows\system32\48UMicro.dll2011-07-09 19:14:08 45056 ------w- c:\windows\Getkey.dll2011-07-09 19:14:08 167936 ------w- c:\windows\Ausba4.dll2011-07-09 19:14:08 167936 ------w- c:\windows\A4.dll2011-07-09 19:14:05 45056 ----a-w- c:\windows\system32\Remove48U.exe2011-07-04 00:18:50 -------- d-----w- c:\program files\WM Converter2011-07-03 23:47:45 -------- d-----w- c:\documents and settings\prakash1\local settings\application data\WMTools Downloaded Files2011-06-24 03:41:19 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl.==================== Find3M ====================.2011-07-11 02:57:17 848 --sha-w- c:\documents and settings\all users\application data\KGyGaAvL.sys2011-06-02 14:02:05 1858944 ----a-w- c:\windows\system32\win32k.sys2011-05-02 15:31:52 692736 ----a-w- c:\windows\system32\inetcomm.dll2011-04-29 17:25:27 151552 ----a-w- c:\windows\system32\schannel.dll2011-04-29 16:19:43 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys2011-04-26 11:07:50 33280 ----a-w- c:\windows\system32\csrsrv.dll2011-04-26 11:07:50 293376 ----a-w- c:\windows\system32\winsrv.dll2011-04-25 16:11:12 916480 ----a-w- c:\windows\system32\wininet.dll2011-04-25 16:11:11 43520 ----a-w- c:\windows\system32\licmgr10.dll2011-04-25 16:11:11 1469440 ----a-w- c:\windows\system32\inetcpl.cpl2011-04-25 12:01:22 385024 ----a-w- c:\windows\system32\html.iec2011-04-21 13:37:43 105472 ----a-w- c:\windows\system32\drivers\mup.sys2005-07-15 20:15:26 416 -c--a-w- c:\program files\layout.bin2000-05-16 22:37:14 46080 -c--a-w- c:\program files\Setup.exe.============= FINISH: 15:14:32.79 ===============
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
17-Jul-2011, 06:23 PM #9
I am for some reason not able to to add the attach log as atatchment its not giving me option....sry....DDS (Ver_2011-07-14.01).Microsoft Windows XP Home EditionBoot Device: \Device\HarddiskVolume1Install Date: 1/10/2005 10:42:25 PMSystem Uptime: 7/17/2011 2:23:27 PM (1 hours ago).Motherboard: Dell Computer Corp. | | 0J0592Processor: Intel(R) Pentium(R) 4 CPU 2.53GHz | Microprocessor | 2524/533mhz.==== Disk Partitions =========================.A: is RemovableC: is FIXED (NTFS) - 56 GiB total, 24.123 GiB free.D: is CDROM ()E: is CDROM ().==== Disabled Device Manager Items =============.==== System Restore Points ===================.RP1076: 4/16/2011 8:53:33 AM - System CheckpointRP1077: 4/18/2011 7:17:22 PM - System CheckpointRP1078: 4/19/2011 7:44:35 PM - System CheckpointRP1079: 4/21/2011 7:00:44 PM - Software Distribution Service 3.0RP1080: 4/22/2011 7:25:23 PM - System CheckpointRP1081: 4/25/2011 3:32:00 PM - System CheckpointRP1082: 4/26/2011 3:47:11 PM - System CheckpointRP1083: 4/26/2011 7:00:39 PM - Software Distribution Service 3.0RP1084: 4/29/2011 5:51:49 PM - System CheckpointRP1085: 4/30/2011 6:43:06 PM - System CheckpointRP1086: 5/1/2011 10:07:31 PM - System CheckpointRP1087: 5/11/2011 12:11:44 AM - Software Distribution Service 3.0RP1088: 5/16/2011 5:57:52 PM - System CheckpointRP1089: 5/17/2011 8:57:59 PM - System CheckpointRP1090: 5/22/2011 7:43:25 PM - System CheckpointRP1091: 5/24/2011 5:03:03 PM - System CheckpointRP1092: 5/27/2011 4:55:11 PM - System CheckpointRP1093: 5/29/2011 10:02:40 PM - System CheckpointRP1094: 5/31/2011 9:39:20 AM - System CheckpointRP1095: 6/1/2011 10:35:48 AM - System CheckpointRP1096: 6/2/2011 1:15:25 PM - System CheckpointRP1097: 6/3/2011 8:06:28 PM - System CheckpointRP1098: 6/11/2011 9:26:43 PM - System CheckpointRP1099: 6/14/2011 7:01:20 PM - Software Distribution Service 3.0RP1100: 6/22/2011 7:07:52 PM - System CheckpointRP1101: 6/30/2011 1:38:48 PM - Software Distribution Service 3.0RP1102: 7/5/2011 12:54:52 PM - Configured Microsoft Office Home and Student 2007RP1103: 7/5/2011 5:48:05 PM - Configured Microsoft Office Home and Student 2007RP1104: 7/6/2011 6:26:08 PM - System CheckpointRP1105: 7/7/2011 6:31:44 PM - System CheckpointRP1106: 7/9/2011 12:36:53 PM - Unsigned driver installRP1107: 7/12/2011 6:12:28 PM - System CheckpointRP1108: 7/12/2011 7:00:53 PM - Software Distribution Service 3.0RP1109: 7/13/2011 7:04:06 PM - System CheckpointRP1110: 7/15/2011 1:48:25 PM - Restore OperationRP1111: 7/15/2011 2:23:46 PM - Restore OperationRP1112: 7/16/2011 11:00:10 AM - Configured Microsoft Office Home and Student 2007.==== Installed Programs ======================.Adobe Flash Player 10 ActiveXAdobe Reader 8.1.4AnswerWorks 4.0 Runtime - EnglishAnswerWorks 5.0 English RuntimeApple Application SupportApple Mobile Device SupportApple Software UpdateArcSoft Software SuiteAsk ToolbarAudacity 1.2.6Bing BarBonjourConexant SmartHSFi V92 56K DF PCI ModemContentHDContentsCopyTrans Suite Remove OnlyCorel Painter Photo Essentials 4Corel PaintShop Photo Pro X3Critical Update for Windows Media Player 11 (KB959772)Dell Picture Studio - Dell Image ExpertDell ResourceCDDeviceIODream Doll Designere+ 48UEarthLink MDACGdiplusUpgradeGoogle Toolbar for Internet ExplorerGoogle Update HelperHotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)Hotfix for Windows Internet Explorer 7 (KB947864)Hotfix for Windows Media Format 11 SDK (KB929399)Hotfix for Windows Media Player 11 (KB939683)Hotfix for Windows XP (KB2158563)Hotfix for Windows XP (KB2443685)Hotfix for Windows XP (KB952287)Hotfix for Windows XP (KB954550-v5)Hotfix for Windows XP (KB961118)Hotfix for Windows XP (KB970653-v3)Hotfix for Windows XP (KB976098-v2)Hotfix for Windows XP (KB979306)Hotfix for Windows XP (KB981793)HP Software UpdateHP UpdateICAImageMixer VCD2Intel(R) PRO Ethernet Adapter and SoftwareInternet Explorer Q903235IPM_PSP_ProItsDeductible Online ToolbariTunesJasc Animation Shop 3Java Auto UpdaterJava(TM) 6 Update 24Linksys EasyLink Advisor 1.5 (1044)Macromedia Shockwave PlayerMalwarebytes' Anti-Malware version 1.51.1.1800Maxtor BackupMaxtor EncryptionMaxtor OneTouch IIIMcAfee Online BackupMcAfee ShredderMcAfee Total ProtectionMicrosoft .NET Framework 1.1Microsoft .NET Framework 1.1 Security Update (KB2416447)Microsoft .NET Framework 1.1 Security Update (KB979906)Microsoft .NET Framework 2.0 Service Pack 2Microsoft .NET Framework 3.0 Service Pack 2Microsoft .NET Framework 3.5 SP1Microsoft Compression Client Pack 1.0 for Windows XPMicrosoft Default ManagerMicrosoft Internationalized Domain Names Mitigation APIsMicrosoft National Language Support Downlevel APIsMicrosoft Office 2007 Service Pack 2 (SP2)Microsoft Office Excel MUI (English) 2007Microsoft Office File Validation Add-InMicrosoft Office Home and Student 2007Microsoft Office OneNote MUI (English) 2007Microsoft Office PowerPoint MUI (English) 2007Microsoft Office Proof (English) 2007Microsoft Office Proof (French) 2007Microsoft Office Proof (Spanish) 2007Microsoft Office Proofing (English) 2007Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)Microsoft Office Shared MUI (English) 2007Microsoft Office Shared Setup Metadata MUI (English) 2007Microsoft Office Word MUI (English) 2007Microsoft SilverlightMicrosoft Software Update for Web Folders (English) 12Microsoft User-Mode Driver Framework Feature Pack 1.0Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Word 97MLEMobileMe Control PanelMSSoapMSXML 4.0 SP2 (KB927978)MSXML 4.0 SP2 (KB936181)MSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)Multimedia Algebra 1Nero SuiteNetwork ViewerNVIDIA Display DriverOpenMG AAC Add-on Module 1.0.00OpenMG Secure Module 4.6.01PCFriendlyPDF Manual NW-E000 SeriesPowerDVDPSPH10ProPSPPContentPSPPRO_DCRAWPureHDQFolderQuickTimeSafariS ecurity Update for 2007 Microsoft Office System (KB2288621)Security Update for 2007 Microsoft Office System (KB2288931)Security Update for 2007 Microsoft Office System (KB2345043)Security Update for 2007 Microsoft Office System (KB2509488)Security Update for 2007 Microsoft Office System (KB969559)Security Update for 2007 Microsoft Office System (KB976321)Security Update for CAPICOM (KB931906)Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)Security Update for Microsoft Office 2007 System (KB2541012)Security Update for Microsoft Office Excel 2007 (KB2541007)Security Update for Microsoft Office InfoPath 2007 (KB979441)Security Update for Microsoft Office PowerPoint 2007 (KB2535818)Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)Security Update for Microsoft Office system 2007 (972581)Security Update for Microsoft Office system 2007 (KB974234)Security Update for Microsoft Office Visio Viewer 2007 (KB973709)Security Update for Microsoft Office Word 2007 (KB2344993)Security Update for Windows Internet Explorer 7 (KB928090)Security Update for Windows Internet Explorer 7 (KB929969)Security Update for Windows Internet Explorer 7 (KB931768)Security Update for Windows Internet Explorer 7 (KB933566)Security Update for Windows Internet Explorer 7 (KB937143)Security Update for Windows Internet Explorer 7 (KB938127)Security Update for Windows Internet Explorer 7 (KB939653)Security Update for Windows Internet Explorer 7 (KB942615)Security Update for Windows Internet Explorer 7 (KB944533)Security Update for Windows Internet Explorer 7 (KB950759)Security Update for Windows Internet Explorer 7 (KB953838)Security Update for Windows Internet Explorer 7 (KB956390)Security Update for Windows Internet Explorer 7 (KB958215)Security Update for Windows Internet Explorer 7 (KB960714)Security Update for Windows Internet Explorer 7 (KB961260)Security Update for Windows Internet Explorer 7 (KB963027)Security Update for Windows Internet Explorer 8 (KB2183461)Security Update for Windows Internet Explorer 8 (KB2360131)Security Update for Windows Internet Explorer 8 (KB2416400)Security Update for Windows Internet Explorer 8 (KB2482017)Security Update for Windows Internet Explorer 8 (KB2497640)Security Update for Windows Internet Explorer 8 (KB2510531)Security Update for Windows Internet Explorer 8 (KB2530548)Security Update for Windows Internet Explorer 8 (KB2544521)Security Update for Windows Internet Explorer 8 (KB969897)Security Update for Windows Internet Explorer 8 (KB971961)Security Update for Windows Internet Explorer 8 (KB972260)Security Update for Windows Internet Explorer 8 (KB974455)Security Update for Windows Internet Explorer 8 (KB976325)Security Update for Windows Internet Explorer 8 (KB978207)Security Update for Windows Internet Explorer 8 (KB981332)Security Update for Windows Internet Explorer 8 (KB982381)Security Update for Windows Media Encoder (KB2447961)Security Update for Windows Media Player (KB2378111)Security Update for Windows Media Player (KB911564)Security Update for Windows Media Player (KB952069)Security Update for Windows Media Player (KB954155)Security Update for Windows Media Player (KB968816)Security Update for Windows Media Player (KB973540)Security Update for Windows Media Player (KB975558)Security Update for Windows Media Player (KB978695)Security Update for Windows Media Player 11 (KB936782)Security Update for Windows Media Player 11 (KB954154)Security Update for Windows Media Player 6.4 (KB925398)Security Update for Windows Media Player 9 (KB911565)Security Update for Windows Media Player 9 (KB917734)Security Update for Windows XP (KB2079403)Security Update for Windows XP (KB2115168)Security Update for Windows XP (KB2121546)Security Update for Windows XP (KB2160329)Security Update for Windows XP (KB2229593)Security Update for Windows XP (KB2259922)Security Update for Windows XP (KB2279986)Security Update for Windows XP (KB2286198)Security Update for Windows XP (KB2296011)Security Update for Windows XP (KB2296199)Security Update for Windows XP (KB2347290)Security Update for Windows XP (KB2360937)Security Update for Windows XP (KB2387149)Security Update for Windows XP (KB2393802)Security Update for Windows XP (KB2412687)Security Update for Windows XP (KB2419632)Security Update for Windows XP (KB2423089)Security Update for Windows XP (KB2436673)Security Update for Windows XP (KB2440591)Security Update for Windows XP (KB2443105)Security Update for Windows XP (KB2476490)Security Update for Windows XP (KB2476687)Security Update for Windows XP (KB2478960)Security Update for Windows XP (KB2478971)Security Update for Windows XP (KB2479628)Security Update for Windows XP (KB2479943)Security Update for Windows XP (KB2481109)Security Update for Windows XP (KB2483185)Security Update for Windows XP (KB2485376)Security Update for Windows XP (KB2485663)Security Update for Windows XP (KB2503658)Security Update for Windows XP (KB2503665)Security Update for Windows XP (KB2506212)Security Update for Windows XP (KB2506223)Security Update for Windows XP (KB2507618)Security Update for Windows XP (KB2508272)Security Update for Windows XP (KB2508429)Security Update for Windows XP (KB2509553)Security Update for Windows XP (KB2511455)Security Update for Windows XP (KB2524375)Security Update for Windows XP (KB2535512)Security Update for Windows XP (KB2536276)Security Update for Windows XP (KB2544893)Security Update for Windows XP (KB923561)Security Update for Windows XP (KB923689)Security Update for Windows XP (KB938464)Security Update for Windows XP (KB941569)Security Update for Windows XP (KB946648)Security Update for Windows XP (KB950760)Security Update for Windows XP (KB950762)Security Update for Windows XP (KB950974)Security Update for Windows XP (KB951066)Security Update for Windows XP (KB951376-v2)Security Update for Windows XP (KB951698)Security Update for Windows XP (KB951748)Security Update for Windows XP (KB952004)Security Update for Windows XP (KB952954)Security Update for Windows XP (KB953839)Security Update for Windows XP (KB954211)Security Update for Windows XP (KB954459)Security Update for Windows XP (KB954600)Security Update for Windows XP (KB955069)Security Update for Windows XP (KB956391)Security Update for Windows XP (KB956572)Security Update for Windows XP (KB956744)Security Update for Windows XP (KB956802)Security Update for Windows XP (KB956803)Security Update for Windows XP (KB956841)Security Update for Windows XP (KB956844)Security Update for Windows XP (KB957095)Security Update for Windows XP (KB957097)Security Update for Windows XP (KB958644)Security Update for Windows XP (KB958687)Security Update for Windows XP (KB958690)Security Update for Windows XP (KB958869)Security Update for Windows XP (KB959426)Security Update for Windows XP (KB960225)Security Update for Windows XP (KB960715)Security Update for Windows XP (KB960803)Security Update for Windows XP (KB960859)Security Update for Windows XP (KB961371)Security Update for Windows XP (KB961373)Security Update for Windows XP (KB961501)Security Update for Windows XP (KB968537)Security Update for Windows XP (KB969059)Security Update for Windows XP (KB969898)Security Update for Windows XP (KB969947)Security Update for Windows XP (KB970238)Security Update for Windows XP (KB970430)Security Update for Windows XP (KB971468)Security Update for Windows XP (KB971486)Security Update for Windows XP (KB971557)Security Update for Windows XP (KB971633)Security Update for Windows XP (KB971657)Security Update for Windows XP (KB972270)Security Update for Windows XP (KB973346)Security Update for Windows XP (KB973354)Security Update for Windows XP (KB973507)Security Update for Windows XP (KB973525)Security Update for Windows XP (KB973869)Security Update for Windows XP (KB973904)Security Update for Windows XP (KB974112)Security Update for Windows XP (KB974318)Security Update for Windows XP (KB974392)Security Update for Windows XP (KB974571)Security Update for Windows XP (KB975025)Security Update for Windows XP (KB975467)Security Update for Windows XP (KB975560)Security Update for Windows XP (KB975561)Security Update for Windows XP (KB975562)Security Update for Windows XP (KB975713)Security Update for Windows XP (KB977165-v2)Security Update for Windows XP (KB977816)Security Update for Windows XP (KB977914)Security Update for Windows XP (KB978037)Security Update for Windows XP (KB978251)Security Update for Windows XP (KB978262)Security Update for Windows XP (KB978338)Security Update for Windows XP (KB978542)Security Update for Windows XP (KB978601)Security Update for Windows XP (KB978706)Security Update for Windows XP (KB979309)Security Update for Windows XP (KB979482)Security Update for Windows XP (KB979559)Security Update for Windows XP (KB979683)Security Update for Windows XP (KB979687)Security Update for Windows XP (KB980195)Security Update for Windows XP (KB980218)Security Update for Windows XP (KB980232)Security Update for Windows XP (KB980436)Security Update for Windows XP (KB981322)Security Update for Windows XP (KB981852)Security Update for Windows XP (KB981957)Security Update for Windows XP (KB981997)Security Update for Windows XP (KB982132)Security Update for Windows XP (KB982214)Security Update for Windows XP (KB982665)Security Update for Windows XP (KB982802)SereneScreen AquariumSerif 3DPlus 2.0SetupShareSonicStage 4.2Sony USB DriverSoundMAXTurboTax 2008TurboTax 2008 waziperTurboTax 2008 WinPerFedFormsetTurboTax 2008 WinPerProgramHelpTurboTax 2008 WinPerReleaseEngineTurboTax 2008 WinPerTaxSupportTurboTax 2008 WinPerUserEducationTurboTax 2008 wrapperTurboTax 2009TurboTax 2009 waziperTurboTax 2009 WinPerFedFormsetTurboTax 2009 WinPerReleaseEngineTurboTax 2009 WinPerTaxSupportTurboTax 2009 wrapperTurboTax Deluxe 2007TurboTax ItsDeductible 2004TurboTax ItsDeductible 2005Update for 2007 Microsoft Office System (KB967642)Update for Microsoft .NET Framework 3.5 SP1 (KB963707)Update for Microsoft Office 2007 System (KB2539530)Update for Microsoft Office OneNote 2007 (KB980729)Update for Windows Internet Explorer 8 (KB968220)Update for Windows Internet Explorer 8 (KB976662)Update for Windows Internet Explorer 8 (KB976749)Update for Windows Internet Explorer 8 (KB980182)Update for Windows XP (KB2141007)Update for Windows XP (KB2345886)Update for Windows XP (KB2467659)Update for Windows XP (KB2541763)Update for Windows XP (KB951072-v2)Update for Windows XP (KB951978)Update for Windows XP (KB955759)Update for Windows XP (KB955839)Update for Windows XP (KB967715)Update for Windows XP (KB968389)Update for Windows XP (KB971029)Update for Windows XP (KB971737)Update for Windows XP (KB973687)Update for Windows XP (KB973815)VIOVirtual Account NumbersWebFldrs XPWexTech AnswerWorksWindows Genuine Advantage Notifications (KB905474)Windows Genuine Advantage v1.3.0254.0Windows Genuine Advantage Validation Tool (KB892130)Windows Internet Explorer 7Windows Internet Explorer 8Windows Live ID Sign-in AssistantWindows Media Encoder 9 SeriesWindows Media Format 11 runtimeWindows Media Player 11Windows XP Hotfix - KB888162Windows XP Service Pack 3WinZip 15.0WinZip Self-ExtractorWM Converter 2.0Yahoo! Anti-SpyYahoo! Install ManagerYahoo! Internet MailYahoo! Software UpdateYahoo! Toolbar.==== Event Viewer Messages From Past Week ========.7/17/2011 2:30:33 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the stisvc service.7/17/2011 2:22:33 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}7/17/2011 2:17:05 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Fips intelppm MOBKFilter OMCI7/16/2011 1:57:04 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service McNaiAnn with arguments "" in order to run the server: {DC7EF8E1-824F-4110-AB43-1604DA9B4F40}7/16/2011 1:56:04 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD Fips intelppm IPSec mfehidk mfetdi2k MOBKFilter MPFP MRxSmb NetBIOS NetBT OMCI RasAcd Rdbss Tcpip WS2IFSL7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD Networking Support Environment service which failed to start because of the following error: A device attached to the system is not functioning.7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The McShield service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: The dependency service or group failed to start.7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The McAfee Validation Trust Protection Service service depends on the McAfee Inc. mfehidk service which failed to start because of the following error: A device attached to the system is not functioning.7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The McAfee Proxy Service service depends on the McAfee Firewall Core Service service which failed to start because of the following error: The dependency service or group failed to start.7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The McAfee Network Agent service depends on the McAfee Firewall Core Service service which failed to start because of the following error: The dependency service or group failed to start.7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The McAfee Firewall Core Service service depends on the McAfee Validation Trust Protection Service service which failed to start because of the following error: The dependency service or group failed to start.7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.7/16/2011 1:56:04 PM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.7/16/2011 1:55:49 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}7/16/2011 1:55:24 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}7/16/2011 1:39:48 PM, error: Service Control Manager [7031] - The McShield service terminated unexpectedly. It has done this 3 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.7/16/2011 1:37:11 PM, error: Service Control Manager [7031] - The McShield service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.7/16/2011 1:34:39 PM, error: Service Control Manager [7031] - The McShield service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.7/15/2011 6:31:20 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the McNaiAnn service.7/15/2011 6:30:50 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the mcmscsvc service.7/15/2011 6:30:17 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: IntelIde7/15/2011 2:54:02 PM, error: Service Control Manager [7022] - The McShield service hung on starting.7/15/2011 2:12:55 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the McAfee SiteAdvisor Service service.7/15/2011 2:05:16 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the McAfee Scanner service to connect.7/15/2011 2:05:16 PM, error: Service Control Manager [7000] - The McAfee Scanner service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.7/15/2011 2:05:16 PM, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service MCODS with arguments "" in order to run the server: {C98F04D7-CD30-4BB0-B7D7-8DD7448520F2}7/15/2011 1:43:01 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the iPod Service service to connect.7/15/2011 1:43:01 PM, error: Service Control Manager [7000] - The iPod Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.7/15/2011 1:43:00 PM, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service iPod Service with arguments "" in order to run the server: {063D34A4-BF84-4B8D-B699-E8CA06504DDE}7/12/2011 7:35:12 PM, error: Print [19] - Sharing printer failed + 1722, Printer Send To OneNote 2007 share name Send To OneNote 2007.7/12/2011 11:12:13 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the NVSvc service..==== End Of File ===========================
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
17-Jul-2011, 06:29 PM #10
thank you in advance for all the assistence...will wait now what to do next...
Satchfan's Avatar
Satchfan Satchfan is offline Satchfan is authorized to help remove malware.
Computer Specs
Malware Removal Specialist with 531 posts.
 
Join Date: Jan 2009
Location: Devon, UK
18-Jul-2011, 06:36 AM #11
Hello seemacima and welcome to the TSG forum.



My name is Satchfan and I would be glad to help you with your computer problem. Please read the following guidelines which will help to make cleaning your machine easier:
  • please follow all instructions in the order posted
  • please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear
  • all logs/reports, etc. must be posted in Notepad. Please ensure that Word Wrap is unchecked. In Notepad click Format, uncheck Word Wrap if it is checked
  • if you don't understand something, please don't hesitate to ask for clarification before proceeding
  • the fixes are specific to your problem and should only be used for this issue on this machine.
  • please reply within 3 days. If you do not reply within this period I will post a reminder but topics with no reply in 4 days will be closed!
IMPORTANT:

Please do not install/uninstall any programs unless asked to.
Please do not run any scans other than those requested

===================================================

Quote:
I tried to do what was written in this post....http://forums.techguy.org/virus-othe...desktop-2.html
If you followed those instructions you will probably not be able to recover what is missing. You should NEVER follow instructions intended for individual users.


That said, let’s see what we can recover.

Please note what is written above about Word Wrap as your other logs were pretty unreadable due to the fact that it was checked. Thanks

===================================================



Download and run OTL
  • download OTL to your desktop.
  • double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • when the window appears, underneath Output at the top change it to Minimal Output.
  • check the boxes beside LOP Check and Purity Check.
  • under Custom Scan paste this in
netsvcs
drivers32
%SYSTEMDRIVE%\*.*
%systemroot%\Fonts\*.com
%systemroot%\Fonts\*.dll
%systemroot%\Fonts\*.ini
%systemroot%\Fonts\*.ini2
%systemroot%\Fonts\*.exe
%systemroot%\system32\spool\prtprocs\w32x86\*.*
%systemroot%\REPAIR\*.bak1
%systemroot%\REPAIR\*.ini
%systemroot%\system32\*.jpg
%systemroot%\*.jpg
%systemroot%\*.png
%systemroot%\*.scr
%systemroot%\*._sy
%APPDATA%\Adobe\Update\*.*
%ALLUSERSPROFILE%\Favorites\*.*
%APPDATA%\Microsoft\*.*
%PROGRAMFILES%\*.*
%APPDATA%\Update\*.*
%systemroot%\*. /mp /s
CREATERESTOREPOINT
%systemroot%\System32\config\*.sav
%PROGRAMFILES%\bak. /s
%systemroot%\system32\bak. /s
%ALLUSERSPROFILE%\Start Menu\*.lnk /x
%systemroot%\system32\config\systemprofile\*.dat /x
%systemroot%\*.config
%systemroot%\system32\*.db
%PROGRAMFILES%\Internet Explorer\*.dat
%APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x
%USERPROFILE%\Desktop\*.exe
%PROGRAMFILES%\Common Files\*.*
%systemroot%\*.src
%systemroot%\install\*.*
%systemroot%\system32\DLL\*.*
%systemroot%\system32\HelpFiles\*.*
%systemroot%\system32\rundll\*.*
%systemroot%\winn32\*.*
%systemroot%\Java\*.*
%systemroot%\system32\test\*.*
%systemroot%\system32\Rundll32\*.*
%systemroot%\AppPatch\Custom\*.*
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\ Auto Update\Results\Install|LastSuccessTime /rs
  • click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan won’t take long.
  • when the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply.
You may need two posts to fit them both in.

===================================================

Run aswMBR



Download aswMBR.exe ( 511KB ) to your desktop.
  • double click the aswMBR.exe to run it
  • click the "Scan" button to start the scan
  • on completion of the scan click save log, save it to your desktop and post in your next reply



    ===================================================

Please download SystemLook from here and save it to your Desktop.
  • double-click SystemLook.exe to run it.
  • copy the content of the following codebox into the main textfield:
Code:
:dir 
%Temp%\smtmp /s
  • click the Look button to start the scan.
  • when finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
Note: The log can also be found on your Desktop entitled SystemLook.txt

Let me know if there are any changes

Logs to include in next post:

OTL.txt
Extras.txt
aswMBR.txt
SystemLook.txt

Thanks

Satchfan
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
18-Jul-2011, 11:49 AM #12
Thank you satchfan....I will not try to do other people solutions on myself.
2 questións

Do i have to make malware programa and McAfee inactive as it was written some where
And how to make them inactive.


And after i DL these application and have the logs do i need to delete them from desktop rightaway as i read somewhere


Thank you so much for all your help and guidence.
Satchfan's Avatar
Satchfan Satchfan is offline Satchfan is authorized to help remove malware.
Computer Specs
Malware Removal Specialist with 531 posts.
 
Join Date: Jan 2009
Location: Devon, UK
18-Jul-2011, 12:54 PM #13
Quote:
Do i have to make malware programa and McAfee inactive
Please do not ask about other forums and their recommendations. Ignore anything you have seen as your situation is individual , as were the ones you have seen.

Also, many of these forums have advice given by untrained advisors who could do more damage than good.

At present you do not have to disable anything, nor should you delete/run anything unless requested. If and when you need to do something, I'll give instructions.

Please proceed with the previous instructions.

Thanks

Satchfan
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
18-Jul-2011, 04:28 PM #14
thank you i will start doing as you have instructed right now...
seemacima's Avatar
seemacima seemacima is offline
Member with 212 posts.
THREAD STARTER
 
Join Date: Jul 2011
18-Jul-2011, 05:18 PM #15
here is the OTL.Txt file( i unchecked the word wrap)OTL logfile created on: 7/18/2011 1:37:34 PM - Run 1OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\prakash1\DesktopWindows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstationInternet Explorer (Version = 8.0.6001.18702)Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 1023.00 Mb Total Physical Memory | 446.62 Mb Available Physical Memory | 43.66% Memory free1.65 Gb Paging File | 1.05 Gb Available in Paging File | 63.48% Paging File freePaging file location(s): C:\pagefile.sys 768 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program FilesDrive C: | 55.87 Gb Total Space | 24.15 Gb Free Space | 43.23% Space Free | Partition Type: NTFSDrive F: | 7.44 Gb Total Space | 4.98 Gb Free Space | 66.98% Space Free | Partition Type: FAT32 Computer Name: FAMILY | User Name: prakash1 | Logged in as Administrator.Boot Mode: Normal | Scan Mode: Current userCompany Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\prakash1\Desktop\OTL.exe (OldTimer Tools)PRC - c:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)PRC - C:\WINDOWS\system32\mfevtps.exe (McAfee, Inc.)PRC - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.)PRC - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe (McAfee, Inc.)PRC - C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)PRC - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)PRC - C:\Program Files\Common Files\Java\Java Update\jucheck.exe (Sun Microsystems, Inc.)PRC - C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe (Corel, Inc.)PRC - C:\Program Files\McAfee Online Backup\MOBKstat.exe (McAfee, Inc.)PRC - C:\Program Files\McAfee Online Backup\MOBKbackup.exe (McAfee, Inc.)PRC - C:\Program Files\Common Files\Corel\Standby\Standby.exe (Corel)PRC - C:\Program Files\McAfee\MPF\MpfSrv.exe (McAfee, Inc.)PRC - C:\Program Files\McAfee\MSK\msksrver.exe (McAfee, Inc.)PRC - C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe (Intuit Inc.)PRC - C:\Program Files\Virtual Account Numbers\CitiVAN.exe (Orbiscom Ltd. All rights reserved.)PRC - C:\WINDOWS\system32\OBroker.exe (Orbiscom Ltd.)PRC - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)PRC - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)PRC - C:\WINDOWS\system32\PSIService.exe ()PRC - C:\Program Files\Maxtor\Maxtor Backup\MaxBackServiceInt.exe ()PRC - C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe ( )PRC - C:\ScanPanel\ScnPanel.exe () ========== Modules (SafeList) ========== MOD - C:\Documents and Settings\prakash1\Desktop\OTL.exe (OldTimer Tools)MOD - c:\Program Files\McAfee\SiteAdvisor\sahook.dll (McAfee, Inc.)MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV - (RoxLiveShare9) -- File not foundSRV - (HidServ) -- File not foundSRV - (AppMgmt) -- File not foundSRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)SRV - (McODS) -- C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)SRV - (mfevtp) -- C:\WINDOWS\system32\mfevtps.exe (McAfee, Inc.)SRV - (mfefire) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.)SRV - (McShield) -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe ()SRV - (BBSvc) -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)SRV - (SeaPort) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)SRV - (McProxy) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)SRV - (McNASvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)SRV - (McNaiAnn) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)SRV - (mcmscsvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)SRV - (McAfee SiteAdvisor Service) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)SRV - (MOBKbackup) -- C:\Program Files\McAfee Online Backup\MOBKbackup.exe (McAfee, Inc.)SRV - (MpfService) -- C:\Program Files\McAfee\MPF\MPFSrv.exe (McAfee, Inc.)SRV - (MSK80Service) -- C:\Program Files\McAfee\MSK\MskSrver.exe (McAfee, Inc.)SRV - (IntuitUpdateService) -- C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe (Intuit Inc.)SRV - (YahooAUService) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)SRV - (SerialKeys) -- C:\WINDOWS\system32\skeys.exe (Microsoft Corporation)SRV - (PSI_SVC_2) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)SRV - (ProtexisLicensing) -- C:\WINDOWS\system32\PSIService.exe ()SRV - (SSScsiSV) -- C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe (Sony Corporation)SRV - (MSCSPTISRV) -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe (Sony Corporation)SRV - (PACSPTISVR) -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe (Sony Corporation)SRV - (SPTISRV) -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe (Sony Corporation)SRV - (MaxBackServiceInt) -- C:\Program Files\Maxtor\Maxtor Backup\MaxBackServiceInt.exe ()SRV - (NTService1) -- C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe ( ) ========== Driver Services (SafeList) ========== DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)DRV - (mfehidk) -- C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)DRV - (mfefirek) -- C:\WINDOWS\system32\drivers\mfefirek.sys (McAfee, Inc.)DRV - (mfeavfk) -- C:\WINDOWS\system32\drivers\mfeavfk.sys (McAfee, Inc.)DRV - (mfeapfk) -- C:\WINDOWS\system32\drivers\mfeapfk.sys (McAfee, Inc.)DRV - (mfetdi2k) -- C:\WINDOWS\system32\drivers\mfetdi2k.sys (McAfee, Inc.)DRV - (mferkdet) -- C:\WINDOWS\system32\drivers\mferkdet.sys (McAfee, Inc.)DRV - (mfendiskmp) -- C:\WINDOWS\system32\drivers\mfendisk.sys (McAfee, Inc.)DRV - (mfendisk) -- C:\WINDOWS\system32\drivers\mfendisk.sys (McAfee, Inc.)DRV - (mfebopk) -- C:\WINDOWS\system32\drivers\mfebopk.sys (McAfee, Inc.)DRV - (cfwids) -- C:\WINDOWS\system32\drivers\cfwids.sys (McAfee, Inc.)DRV - (MPFP) -- C:\WINDOWS\system32\drivers\Mpfp.sys (McAfee, Inc.)DRV - (MOBKFilter) -- C:\WINDOWS\system32\drivers\MOBK.sys (Mozy, Inc.)DRV - (mfesmfk) -- C:\WINDOWS\system32\drivers\mfesmfk.sys (McAfee, Inc.)DRV - (mferkdk) -- C:\WINDOWS\system32\drivers\mferkdk.sys (McAfee, Inc.)DRV - (GoProto) -- C:\WINDOWS\system32\drivers\goprot51.sys (Gteko Ltd.)DRV - (Cdralw2k) -- C:\WINDOWS\System32\drivers\cdralw2k.sys (Sonic Solutions)DRV - (Cdr4_xp) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys (Sonic Solutions)DRV - (MXOPSWD) -- C:\WINDOWS\system32\drivers\mxopswd.sys (Maxtor Corp.)DRV - (SDDMI2) -- C:\WINDOWS\system32\DDMI2.sys (Gteko Ltd.)DRV - (cdrbsdrv) -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS (B.H.A Corporation)DRV - (pfc) -- C:\WINDOWS\system32\drivers\pfc.sys (Padus, Inc.)DRV - (PhilCam8116) Logitech QuickCam Pro 3000(PID_08B0) -- C:\WINDOWS\system32\drivers\CamDrL21.sys (Logitech Inc.)DRV - (sonypvs1) -- C:\WINDOWS\system32\drivers\sonypvs1.sys (Sony Corporation)DRV - (HSFHWBS2) -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys (Conexant Systems)DRV - (HSF_DP) -- C:\WINDOWS\system32\drivers\HSF_DP.sys (Conexant Systems)DRV - (winachsf) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys (Conexant Systems)DRV - (OMCI) -- C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS (Dell Computer Corporation)DRV - (wandrv) -- C:\WINDOWS\system32\drivers\wandrv.sys (America Online, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/.../search.htmlIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.com/customize/ie/.../search.htmlIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ieIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/.../search.htmlIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = GoogleIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/webhp?sourceid...ent&ie=UTF-8IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ieIE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn7\yt.dll (Yahoo! Inc.)IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: &quot;ProxyEnable&quot; = 0IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: &quot;ProxyOverride&quot; = ;*.localIE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: &quot;ProxyServer&quot; = 210.212.123.10:8080 ========== FireFox ========== FF - prefs.js..extensions.enabledItems: MapShare-status@tomtom.com:1.7FF - prefs.js..extensions.enabledItems: baseTheme@tomtom.com:1.0.2 FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not foundFF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\citius@orbiscom: C:\Program Files\Virtual Account Numbers [2009/12/10 00:32:21 | 000,000,000 | ---D | M]FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2011/05/24 18:16:26 | 000,000,000 | ---D | M] [2009/12/17 22:52:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\prakash1\Application Data\Mozilla\Extensions[2009/12/17 22:52:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\prakash1\Application Data\Mozilla\Extensions\home2@tomtom.comFile not found (No name found) -- C:\PROGRAM FILES\TOMTOM HOME 2\XUL\EXTENSIONS\MAPSHARE-STATUS@TOMTOM.COM O1 HOSTS File: ([2002/09/03 09:34:19 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hostsO1 - Hosts: 127.0.0.1 localhostO2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn7\yt.dll (Yahoo! Inc.)O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)O2 - BHO: (Virtual Account Numbers Helper) - {17424104-1444-4810-85D7-B4DA413C5A9A} - C:\Program Files\Virtual Account Numbers\CitiVANHelper.dll (Orbiscom Ltd. All rights reserved.)O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - File not foundO2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - File not foundO2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn7\YTSingleInstance.dll (Yahoo! Inc)O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)O3 - HKLM\..\Toolbar: (TurboTax ItsDeductible) - {35CE0AE2-3411-4BB8-A16A-BEE30B282A26} - C:\Program Files\Intuit\IDO\IDOToolbar.dll ()O3 - HKLM\..\Toolbar: (Virtual Account Numbers) - {7A21A046-B886-4A62-9D69-EF2059B0A27B} - C:\Program Files\Virtual Account Numbers\CitiVANToolbar.dll (Orbiscom Ltd. All rights reserved.)O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn7\yt.dll (Yahoo! Inc.)O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn7\yt.dll (Yahoo! Inc.)O4 - HKLM..\Run: [Citi Virtual Account Numbers] C:\Program Files\Virtual Account Numbers\CitiVAN.exe (Orbiscom Ltd. All rights reserved.)O4 - HKLM..\Run: [Corel File Shell Monitor] File not foundO4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)O4 - HKLM..\Run: [Standby] C:\Program Files\Common Files\Corel\Standby\Standby.exe (Corel)O4 - HKCU..\Run: [Corel Photo Downloader] C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe (Corel, Inc.)O4 - HKCU..\Run: [TomTomHOME.exe] File not foundO4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Online Backup Status.lnk = C:\Program Files\McAfee Online Backup\MOBKstat.exe (McAfee, Inc.)O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ScanPanel.lnk = C:\ScanPanel\ScnPanel.exe ()O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0O9 - Extra Button: TurboTax ItsDeductible - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - C:\Program Files\Intuit\IDO\IDOToolbar.dll ()O9 - Extra 'Tools' menuitem : TurboTax ItsDeductible - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - Reg Error: Value error. File not foundO10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)O15 - HKCU\..Trusted Domains: ([]msn in My Computer)O15 - HKCU\..Trusted Domains: ameritrade.com ([]https in Trusted sites)O15 - HKCU\..Trusted Domains: intuit.com ([ttlc] https in Trusted sites)O15 - HKCU\..Trusted Domains: tdameritrade.com ([]https in Trusted sites)O15 - HKCU\..Trusted Domains: turbotax.com ([]https in Trusted sites)O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://download.mcafee.com/molbin/sh...4/mcinsctl.cab (Reg Error: Key error.)O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} http://www.winkflash.com/photo/loade...eUploader4.cab (Image Uploader Control)O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_24)O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get.../ultrashim.cab (Reg Error: Key error.)O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_24)O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_24)O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get...nt/swflash.cab (Shockwave Flash Object)O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01...l/MSNPUpld.cab (Windows Live Hotmail Photo Upload Tool)O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)O16 - DPF: Garmin Internet Explorer Plug-In https://my.garmin.com/mygarmin/m/GarminAxControl.CAB (Reg Error: Key error.)O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 205.171.3.25O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)O24 - Desktop WallPaper: C:\Documents and Settings\prakash1\Local Settings\Application Data\Microsoft\Wallpaper1.bmpO24 - Desktop BackupWallPaper: C:\Documents and Settings\prakash1\Local Settings\Application Data\Microsoft\Wallpaper1.bmpO32 - HKLM CDRom: AutoRun - 1O32 - AutoRun File - [2006/08/05 20:13:31 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]O33 - MountPoints2\{5ae9c4c4-eb90-11de-a110-0007e97bdd08}\Shell\AutoRun\command - &quot;&quot; = F:\InstallTomTomHOME.exeO34 - HKLM BootExecute: (autocheck autochk *) - File not foundO35 - HKLM\..comfile [open] -- &quot;%1&quot; %*O35 - HKLM\..exefile [open] -- &quot;%1&quot; %*O37 - HKLM\...com [@ = comfile] -- &quot;%1&quot; %*O37 - HKLM\...exe [@ = exefile] -- &quot;%1&quot; %* NetSvcs: 6to4 - File not foundNetSvcs: AppMgmt - File not foundNetSvcs: HidServ - File not foundNetSvcs: Ias - File not foundNetSvcs: Iprip - File not foundNetSvcs: Irmon - File not foundNetSvcs: NWCWorkstation - File not foundNetSvcs: Nwsapagent - File not foundNetSvcs: WmdmPmSp - File not foundNetSvcs: uploadmgr - File not found Drivers32: msacm.dvacm - C:\Program Files\Common Files\Ulead Systems\VIO\DVACM.acm (Corel TW Corp.)Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)Drivers32: msacm.MPEGacm - C:\Program Files\Common Files\Ulead Systems\MPEG\MPEGACM.acm (Ulead Systems, Inc.)Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)Drivers32: msacm.ulmp3acm - C:\Program Files\Common Files\Ulead Systems\MPEG\ulmp3acm.acm (Ulead systems)Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)Drivers32: VIDC.WMV3 - C:\WINDOWS\System32\wmv9vcm.dll (Microsoft Corporation) CREATERESTOREPOINTRestore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2011/07/18 13:34:03 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\prakash1\Desktop\OTL.exe[2011/07/18 13:17:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee[2011/07/16 11:27:52 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys[2011/07/16 11:27:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware[2011/07/16 11:27:38 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys[2011/07/16 11:27:36 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware[2011/07/16 11:26:42 | 009,466,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\prakash1\My Documents\mbam-setup-1.51.1.1800.exe[2011/07/15 16:18:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\prakash1\Application Data\Malwarebytes[2011/07/15 16:17:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes[2011/07/15 13:50:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\prakash1\Recent[2011/07/11 16:22:39 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update[2011/07/11 16:15:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes[2011/07/11 16:12:23 | 000,000,000 | ---D | C] -- C:\Program Files\iPod[2011/07/11 16:11:27 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes[2011/07/09 12:14:25 | 000,018,120 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\Artec48.sys[2011/07/09 12:14:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\e+ 48U[2011/07/09 12:14:08 | 000,007,168 | ---- | C] (ULTIMA ELECTRONICS CORP.) -- C:\WINDOWS\System32\48UMicro.dll[2011/07/09 12:14:05 | 000,045,056 | ---- | C] (ULTIMA ELECTRONICS CORP.) -- C:\WINDOWS\System32\Remove48U.exe[2011/07/03 17:19:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\prakash1\Start Menu\Programs\WM Converter 2.0[2011/07/03 17:18:50 | 000,000,000 | ---D | C] -- C:\Program Files\WM Converter[2011/07/03 16:47:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\prakash1\Local Settings\Application Data\WMTools Downloaded Files[2011/06/23 20:41:19 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl[2000/05/16 15:37:14 | 000,046,080 | ---- | C] (InstallShield Software Corporation) -- C:\Program Files\Setup.exe[9 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ][6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ][3 C:\Documents and Settings\prakash1\My Documents\*.tmp files -> C:\Documents and Settings\prakash1\My Documents\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011/07/18 14:01:03 | 000,000,240 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job[2011/07/18 13:52:01 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job[2011/07/18 13:42:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job[2011/07/18 13:42:00 | 000,001,247 | ---- | M] () -- C:\WINDOWS\ScnPanel.ini[2011/07/18 13:34:15 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\prakash1\Desktop\OTL.exe[2011/07/18 13:30:20 | 000,002,515 | ---- | M] () -- C:\Documents and Settings\prakash1\Desktop\Microsoft Office Word 2007.lnk[2011/07/18 13:22:24 | 000,000,428 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{0B8D5D45-4DE7-4CF4-B38A-8AE2A9D2EC6A}.job[2011/07/18 13:22:10 | 000,019,445 | ---- | M] () -- C:\WINDOWS\System32\Config.MPF[2011/07/18 13:16:56 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job[2011/07/18 13:16:33 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat[2011/07/18 13:16:26 | 1072,766,976 | -HS- | M] () -- C:\hiberfil.sys[2011/07/17 14:17:02 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl[2011/07/16 13:24:09 | 000,256,656 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT[2011/07/16 11:26:59 | 009,466,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\prakash1\My Documents\mbam-setup-1.51.1.1800.exe[2011/07/15 16:10:10 | 001,008,041 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\iExplore.exe[2011/07/15 16:07:37 | 000,001,134 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\FixNCR.reg[2011/07/15 15:08:06 | 000,684,297 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\unhide.exe[2011/07/15 01:06:20 | 000,000,346 | ---- | M] () -- C:\WINDOWS\tasks\McDefragTask.job[2011/07/14 16:13:02 | 000,045,436 | ---- | M] () -- C:\WINDOWS\MOBK.blk[2011/07/14 16:13:01 | 000,002,004 | ---- | M] () -- C:\WINDOWS\MOBK.flt[2011/07/13 16:19:51 | 000,039,577 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\Smile.gif[2011/07/12 19:06:05 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK[2011/07/11 17:41:44 | 000,009,741 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\Animation11.gif[2011/07/11 16:15:42 | 000,001,542 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk[2011/07/10 20:16:30 | 000,586,596 | ---- | M] () -- C:\Documents and Settings\prakash1\Desktop\Image1.jpg[2011/07/10 19:57:17 | 000,000,848 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys[2011/07/09 12:47:30 | 000,030,720 | ---- | M] () -- C:\WINDOWS\6816White12.dat[2011/07/09 12:47:30 | 000,000,032 | ---- | M] () -- C:\WINDOWS\6816Error.dat[2011/07/09 12:47:25 | 000,030,720 | ---- | M] () -- C:\WINDOWS\6816Dark12.dat[2011/07/09 12:47:21 | 000,000,006 | ---- | M] () -- C:\WINDOWS\6816Exposure.dat[2011/07/09 12:47:21 | 000,000,003 | ---- | M] () -- C:\WINDOWS\6816Offset.dat[2011/07/09 12:47:21 | 000,000,003 | ---- | M] () -- C:\WINDOWS\6816Gain.dat[2011/07/09 12:14:28 | 000,001,355 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ScanPanel.lnk[2011/07/09 12:10:35 | 000,948,144 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\setup_123132.exe[2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys[2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys[2011/07/05 13:03:09 | 000,015,872 | ---- | M] () -- C:\Documents and Settings\prakash1\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2011/07/05 13:03:00 | 000,000,202 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini[2011/07/03 17:31:21 | 068,628,881 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\VTS_01_1.VOB.asf[2011/07/03 17:17:38 | 000,287,008 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\SoftonicDownloader_for_wm-converter.exe[2011/07/03 17:08:49 | 000,025,182 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\VIDEO-TS.avi[2011/07/03 16:58:48 | 004,087,940 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\Animation1.gif[2011/06/30 13:45:20 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\prakash1\Desktop\Shortcut to Internet Explorer.lnk[2011/06/23 20:41:20 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl[2011/06/19 12:02:56 | 005,448,081 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1247.JPG[2011/06/19 12:02:52 | 005,297,901 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1246.JPG[2011/06/19 12:02:46 | 004,951,032 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1245.JPG[2011/06/19 12:01:30 | 005,451,584 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1244.JPG[2011/06/19 12:01:22 | 005,335,572 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1243.JPG[2011/06/19 12:01:06 | 005,233,372 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1242.JPG[2011/06/19 12:00:48 | 005,066,604 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1241.JPG[2011/06/19 12:00:20 | 004,544,722 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1240.JPG[2011/06/19 11:00:52 | 005,045,051 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1239.JPG[2011/06/19 11:00:30 | 005,256,567 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1238.JPG[2011/06/19 10:58:54 | 005,073,889 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1237.JPG[2011/06/19 10:52:20 | 004,948,068 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1236.JPG[2011/06/19 10:52:12 | 004,975,431 | ---- | M] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1235.JPG[9 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ][6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ][3 C:\Documents and Settings\prakash1\My Documents\*.tmp files -> C:\Documents and Settings\prakash1\My Documents\*.tmp -> ] ========== Files Created - No Company Name ========== [2011/07/17 14:24:47 | 1072,766,976 | -HS- | C] () -- C:\hiberfil.sys[2011/07/15 16:08:55 | 001,008,041 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\iExplore.exe[2011/07/15 16:07:24 | 000,001,134 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\FixNCR.reg[2011/07/15 15:30:46 | 000,002,393 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TurboTax 2009.lnk[2011/07/15 15:30:46 | 000,002,393 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TurboTax 2008.lnk[2011/07/15 15:30:46 | 000,001,809 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Maxtor OneTouch ™ Manager.lnk[2011/07/15 15:30:46 | 000,001,618 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Citi Virtual Account Numbers.lnk[2011/07/15 15:30:46 | 000,001,542 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk[2011/07/15 15:30:45 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 8.lnk[2011/07/15 15:30:42 | 000,001,355 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ScanPanel.lnk[2011/07/15 15:30:41 | 000,000,780 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Online Backup Status.lnk[2011/07/15 15:30:14 | 000,001,467 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Yahoo! Mail.lnk[2011/07/15 15:30:14 | 000,001,077 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Live ID.lnk[2011/07/15 15:30:14 | 000,000,829 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk[2011/07/15 15:30:13 | 000,001,854 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Safari.lnk[2011/07/15 15:30:13 | 000,001,846 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\MSN Explorer.lnk[2011/07/15 15:30:13 | 000,001,077 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Default Manager.lnk[2011/07/15 15:30:13 | 000,000,748 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Word.lnk[2011/07/15 15:30:12 | 000,002,347 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader 8.lnk[2011/07/15 15:30:12 | 000,001,830 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Apple Software Update.lnk[2011/07/15 15:30:12 | 000,001,052 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Corel Painter Photo Essentials 4.lnk[2011/07/15 15:30:12 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Audacity.lnk[2011/07/15 15:08:03 | 000,684,297 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\unhide.exe[2011/07/13 16:19:51 | 000,039,577 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\Smile.gif[2011/07/11 17:41:44 | 000,009,741 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\Animation11.gif[2011/07/11 16:22:52 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job[2011/07/10 20:16:29 | 000,586,596 | ---- | C] () -- C:\Documents and Settings\prakash1\Desktop\Image1.jpg[2011/07/09 12:14:27 | 000,011,479 | ---- | C] () -- C:\WINDOWS\Dusb4ar.ini[2011/07/09 12:14:27 | 000,002,651 | ---- | C] () -- C:\WINDOWS\Ausba4.ini[2011/07/09 12:14:27 | 000,001,247 | ---- | C] () -- C:\WINDOWS\ScnPanel.ini[2011/07/09 12:14:25 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\drivers\Artec48.usb[2011/07/09 12:14:08 | 000,167,936 | ---- | C] () -- C:\WINDOWS\Ausba4.dll[2011/07/09 12:14:08 | 000,167,936 | ---- | C] () -- C:\WINDOWS\A4.dll[2011/07/09 12:14:08 | 000,045,056 | ---- | C] () -- C:\WINDOWS\Getkey.dll[2011/07/09 12:14:04 | 000,001,607 | ---- | C] () -- C:\WINDOWS\ePlus48U142.ini[2011/07/09 12:10:31 | 000,948,144 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\setup_123132.exe[2011/07/03 22:23:53 | 000,002,515 | ---- | C] () -- C:\Documents and Settings\prakash1\Desktop\Microsoft Office Word 2007.lnk[2011/07/03 17:20:07 | 068,628,881 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\VTS_01_1.VOB.asf[2011/07/03 17:17:20 | 000,287,008 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\SoftonicDownloader_for_wm-converter.exe[2011/07/03 17:08:48 | 000,025,182 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\VIDEO-TS.avi[2011/07/03 16:58:47 | 004,087,940 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\Animation1.gif[2011/06/30 13:45:20 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\prakash1\Desktop\Shortcut to Internet Explorer.lnk[2011/06/23 22:38:48 | 005,233,372 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1242.JPG[2011/06/23 22:38:47 | 005,448,081 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1247.JPG[2011/06/23 22:38:38 | 004,951,032 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1245.JPG[2011/06/23 22:38:37 | 005,451,584 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1244.JPG[2011/06/23 22:38:36 | 005,335,572 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1243.JPG[2011/06/21 23:40:03 | 016,493,946 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN3558.MOV[2011/06/21 23:39:22 | 001,123,762 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN3591.MOV[2011/06/21 22:52:18 | 005,066,604 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1241.JPG[2011/06/21 22:52:17 | 004,544,722 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1240.JPG[2011/06/21 22:52:12 | 005,256,567 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1238.JPG[2011/06/21 22:52:12 | 005,045,051 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1239.JPG[2011/06/21 22:52:11 | 005,073,889 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1237.JPG[2011/06/21 22:52:10 | 004,948,068 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1236.JPG[2011/06/21 22:52:03 | 004,975,431 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1235.JPG[2011/06/21 22:48:37 | 005,297,901 | ---- | C] () -- C:\Documents and Settings\prakash1\My Documents\DSCN1246.JPG[2011/04/05 20:02:18 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat[2011/01/21 19:59:15 | 000,001,718 | ---- | C] () -- C:\WINDOWS\ePlus48U122.ini[2011/01/21 17:47:36 | 000,000,848 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys[2010/05/19 20:49:50 | 000,065,536 | ---- | C] () -- C:\WINDOWS\IFinst27.exe[2010/01/12 23:18:27 | 000,000,256 | ---- | C] () -- C:\WINDOWS\System32\pool.bin[2007/12/12 13:45:34 | 000,015,872 | ---- | C] () -- C:\Documents and Settings\prakash1\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2007/05/15 22:25:46 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\prakash1\Local Settings\Application Data\fusioncache.dat[2007/04/14 16:53:46 | 000,000,032 | ---- | C] () -- C:\WINDOWS\basefx.INI[2007/03/20 14:56:19 | 000,005,018 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys[2007/03/20 14:56:19 | 000,000,168 | RHS- | C] () -- C:\WINDOWS\System32\08801E1EA7.sys[2007/02/05 21:25:16 | 000,000,560 | ---- | C] () -- C:\Documents and Settings\prakash1\Application Data\ViewerApp.dat[2006/12/25 22:23:21 | 000,000,031 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI[2006/12/15 19:38:29 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Sony.dll[2006/11/12 22:15:37 | 000,061,678 | ---- | C] () -- C:\Documents and Settings\prakash1\Application Data\PFP100JPR.{PB[2006/11/12 22:15:37 | 000,012,358 | ---- | C] () -- C:\Documents and Settings\prakash1\Application Data\PFP100JCM.{PB[2006/11/02 20:40:12 | 000,174,656 | ---- | C] () -- C:\WINDOWS\System32\PSIService.exe[2006/09/04 19:49:19 | 000,000,201 | ---- | C] () -- C:\WINDOWS\nsreg.dat[2006/08/05 20:11:07 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll[2006/07/08 07:43:11 | 000,000,206 | ---- | C] () -- C:\WINDOWS\HPGdiPlus.ini[2006/01/10 22:30:26 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini[2005/12/14 21:03:41 | 000,000,044 | ---- | C] () -- C:\WINDOWS\liveup.ini[2005/10/07 10:51:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Webspace.INI[2005/08/29 02:08:23 | 000,000,021 | ---- | C] () -- C:\WINDOWS\CS_SETUP.ini[2005/08/07 22:07:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI[2005/08/07 22:01:29 | 000,000,202 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini[2005/07/24 21:57:05 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin[2005/07/24 21:47:23 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat[2005/07/24 18:43:24 | 000,000,031 | ---- | C] () -- C:\WINDOWS\AUTHMGR.INI[2005/07/15 13:15:26 | 020,678,531 | ---- | C] () -- C:\Program Files\data2.cab[2005/07/15 13:15:26 | 000,000,416 | ---- | C] () -- C:\Program Files\layout.bin[2005/07/15 13:15:16 | 000,802,143 | ---- | C] () -- C:\Program Files\data1.cab[2005/07/15 13:15:16 | 000,106,457 | ---- | C] () -- C:\Program Files\data1.hdr[2005/07/15 13:14:52 | 000,148,141 | ---- | C] () -- C:\Program Files\setup.inx[2005/07/15 13:14:52 | 000,000,156 | ---- | C] () -- C:\Program Files\Setup.ini[2005/07/06 08:47:18 | 000,000,073 | ---- | C] () -- C:\WINDOWS\PUZZLES.INI[2005/06/17 19:00:46 | 000,000,247 | ---- | C] () -- C:\WINDOWS\SIERRA.INI[2005/06/17 19:00:45 | 000,000,086 | ---- | C] () -- C:\WINDOWS\ka.ini[2005/06/11 16:14:22 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI[2005/06/02 12:31:00 | 000,040,448 | ---- | C] () -- C:\WINDOWS\Teletub.exe[2005/06/02 12:31:00 | 000,000,509 | ---- | C] () -- C:\WINDOWS\Teletub.bin[2005/06/02 12:31:00 | 000,000,018 | ---- | C] () -- C:\WINDOWS\gfact.ini[2005/06/02 12:28:51 | 000,000,513 | ---- | C] () -- C:\WINDOWS\FISHTANK.bin[2005/06/02 12:28:51 | 000,000,019 | ---- | C] () -- C:\WINDOWS\cnc.ini[2005/06/02 12:28:50 | 000,015,264 | ---- | C] () -- C:\WINDOWS\FISHTANK.exe[2005/05/26 14:18:40 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\instlsp.exe[2005/03/04 21:30:44 | 000,030,720 | ---- | C] () -- C:\WINDOWS\6816White12.dat[2005/03/04 21:30:44 | 000,000,032 | ---- | C] () -- C:\WINDOWS\6816Error.dat[2005/03/04 21:30:40 | 000,030,720 | ---- | C] () -- C:\WINDOWS\6816Dark12.dat[2005/03/04 21:30:36 | 000,000,006 | ---- | C] () -- C:\WINDOWS\6816Exposure.dat[2005/03/04 21:30:36 | 000,000,003 | ---- | C] () -- C:\WINDOWS\6816Offset.dat[2005/03/04 21:30:36 | 000,000,003 | ---- | C] () -- C:\WINDOWS\6816Gain.dat[2005/02/07 20:10:32 | 000,339,456 | ---- | C] () -- C:\WINDOWS\System32\Tx32.dll[2005/01/25 08:53:35 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat[2005/01/14 17:28:26 | 000,017,563 | ---- | C] () -- C:\WINDOWS\cdplayer.ini[2005/01/11 19:30:39 | 000,011,653 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini[2005/01/10 22:42:31 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat[2005/01/10 22:37:49 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat[2005/01/10 17:26:14 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI[2005/01/10 17:25:12 | 000,256,656 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT[2003/12/05 15:26:56 | 000,346,602 | ---- | C] () -- C:\Program Files\ikernel.ex_[2003/10/06 12:16:00 | 000,027,136 | ---- | C] () -- C:\WINDOWS\System32\nvcod.dll[2002/09/03 10:17:03 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin[2002/09/03 10:16:59 | 000,004,594 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat[2002/09/03 09:52:01 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat[2002/09/03 09:52:00 | 000,506,918 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat[2002/09/03 09:51:58 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat[2002/09/03 09:51:54 | 000,091,466 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat[2002/09/03 09:49:33 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat[2002/09/03 09:41:59 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat[2002/09/03 09:41:43 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin[2002/09/03 09:32:10 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat[1998/10/11 00:07:38 | 000,088,576 | ---- | C] () -- C:\WINDOWS\System32\Iticheck.dll[1997/08/19 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\DOCOBJ.DLL[1997/08/19 00:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\HLINKPRX.DLL ========== LOP Check ========== [2007/05/18 08:56:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Icon Constructor 3[2006/12/25 21:29:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Maxtor[2010/12/31 11:18:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters[2009/12/17 22:55:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom[2011/03/25 19:50:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems[2010/12/18 13:54:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WindSolutions[2010/12/18 19:21:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip[2010/12/18 10:23:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}[2005/02/27 20:32:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{9F2E1130-016E-4D98-BF17-AA8307E75FA2}[2010/12/17 21:34:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\prakash1\Application Data\Blitware[2009/01/29 22:50:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\prakash1\Application Data\GARMIN[2007/03/10 17:36:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\prakash1\Application Data\Jasc[2008/02/18 21:20:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\prakash1\Application Data\Leadertech[2010/02/08 21:49:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\prakash1\Application Data\MSNInstaller[2009/12/17 22:52:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\prakash1\Application Data\TomTom[2011/01/21 09:54:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\prakash1\Application Data\Ulead Systems[2010/12/18 13:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\prakash1\Application Data\WindSolutions[2011/07/15 01:06:20 | 000,000,346 | ---- | M] () -- C:\WINDOWS\Tasks\McDefragTask.job[2011/01/01 01:02:00 | 000,000,338 | ---- | M] () -- C:\WINDOWS\Tasks\McQcTask.job[2011/07/18 14:01:03 | 000,000,240 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job[2011/07/18 13:22:24 | 000,000,428 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{0B8D5D45-4DE7-4CF4-B38A-8AE2A9D2EC6A}.job ========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* >[2006/08/05 20:13:31 | 000,000,050 | ---- | M] () -- C:\AUTOEXEC.BAT[2009/09/08 12:23:03 | 000,000,211 | RHS- | M] () -- C:\boot.ini[2005/01/10 22:40:31 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS[2007/05/09 22:11:24 | 000,009,586 | ---- | M] () -- C:\devicetable.log[2010/12/21 23:40:19 | 000,000,182 | ---- | M] () -- C:\drwtsn32.log[2007/01/26 21:28:33 | 000,004,413 | ---- | M] () -- C:\ffastun.ffa[2007/01/26 21:28:33 | 000,630,784 | ---- | M] () -- C:\ffastun.ffl[2007/01/26 21:28:33 | 000,671,744 | ---- | M] () -- C:\ffastun.ffo[2007/01/26 21:28:33 | 000,655,360 | ---- | M] () -- C:\ffastun0.ffx[2011/07/18 13:16:26 | 1072,766,976 | -HS- | M] () -- C:\hiberfil.sys[2005/01/10 22:40:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS[2006/01/03 08:51:46 | 000,000,387 | ---- | M] () -- C:\IPH.PH[2005/01/10 22:40:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS[2005/07/26 04:11:45 | 000,047,564 | ---- | M] () -- C:\ntdetect.com[2008/08/03 12:21:47 | 000,250,048 | ---- | M] () -- C:\ntldr[2011/07/18 13:16:04 | 805,306,368 | -HS- | M] () -- C:\pagefile.sys[2011/07/16 11:24:13 | 000,000,393 | ---- | M] () -- C:\rkill.log[2006/01/03 08:51:21 | 000,000,288 | ---- | M] () -- C:\T4Metrics.log[2006/12/14 14:52:11 | 000,000,146 | ---- | M] () -- C:\YServer.txt < %systemroot%\Fonts\*.com >[2006/04/18 15:39:28 | 000,026,040 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont[2006/06/29 14:53:56 | 000,026,489 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont[2006/04/18 15:39:28 | 000,029,779 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont[2006/06/29 14:58:52 | 000,030,808 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont < %systemroot%\Fonts\*.dll > < %systemroot%\Fonts\*.ini >[2005/01/10 22:40:06 | 000,000,067 | -HS- | M] () -- C:\WINDOWS\Fonts\desktop.ini < %systemroot%\Fonts\*.ini2 > < %systemroot%\Fonts\*.exe > < %systemroot%\system32\spool\prtprocs\w32x86\*.* >[2008/07/06 05:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll[2006/10/26 19:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll[2008/07/06 03:50:03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe < %systemroot%\REPAIR\*.bak1 > < %systemroot%\REPAIR\*.ini > < %systemroot%\system32\*.jpg > < %systemroot%\*.jpg > < %systemroot%\*.png > < %systemroot%\*.scr >[2005/06/02 12:28:51 | 000,148,650 | ---- | M] (Europress Software) -- C:\WINDOWS\FISHTANK.scr[2005/06/02 12:31:07 | 000,271,872 | ---- | M] (Europress Software) -- C:\WINDOWS\Teletub.scr[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] < %systemroot%\*._sy > < %APPDATA%\Adobe\Update\*.* > < %ALLUSERSPROFILE%\Favorites\*.* >[2004/05/18 15:26:04 | 000,000,208 | ---- | M] () -- C:\Documents and Settings\All Users\Favorites\Yahoo! Mail.url[2004/05/18 15:13:06 | 000,000,207 | ---- | M] () -- C:\Documents and Settings\All Users\Favorites\Yahoo!.url < %APPDATA%\Microsoft\*.* > < %PROGRAMFILES%\*.* >[2005/07/15 13:15:16 | 000,802,143 | ---- | M] () -- C:\Program Files\data1.cab[2005/07/15 13:15:16 | 000,106,457 | ---- | M] () -- C:\Program Files\data1.hdr[2005/07/15 13:15:26 | 020,678,531 | ---- | M] () -- C:\Program Files\data2.cab[2003/12/05 15:26:56 | 000,346,602 | ---- | M] () -- C:\Program Files\ikernel.ex_[2005/07/15 13:15:26 | 000,000,416 | ---- | M] () -- C:\Program Files\layout.bin[2000/05/16 15:37:14 | 000,046,080 | ---- | M] (InstallShield Software Corporation) -- C:\Program Files\Setup.exe[2005/07/15 13:14:52 | 000,000,156 | ---- | M] () -- C:\Program Files\Setup.ini[2005/07/15 13:14:52 | 000,148,141 | ---- | M] () -- C:\Program Files\setup.inx < %APPDATA%\Update\*.* > < %systemroot%\*. /mp /s > < %systemroot%\System32\config\*.sav >[2005/01/10 17:24:32 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav[2005/01/10 17:24:32 | 000,602,112 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav[2005/01/10 17:24:32 | 000,393,216 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav < %PROGRAMFILES%\bak. /s > < %systemroot%\system32\bak. /s > < %ALLUSERSPROFILE%\Start Menu\*.lnk /x >[2008/08/03 12:45:15 | 000,000,272 | -HS- | M] () -- C:\Documents and Settings\All Users\Start Menu\desktop.ini < %systemroot%\system32\config\systemprofile\*.dat /x > < %systemroot%\*.config > < %systemroot%\system32\*.db > < %PROGRAMFILES%\Internet Explorer\*.dat > < %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >[2006/10/27 21:37:17 | 000,000,119 | -HS- | M] () -- C:\Documents and Settings\prakash1\Application Data\Microsoft\Internet Explorer\Quick Launch\desktop.ini[2006/10/27 21:37:12 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\prakash1\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf < %USERPROFILE%\Desktop\*.exe >[2011/01/21 21:14:08 | 029,417,648 | ---- | M] (Artec) -- C:\Documents and Settings\prakash1\Desktop\Full.exe[2011/07/18 13:34:15 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\prakash1\Desktop\OTL.exe[2011/01/20 18:32:00 | 003,299,391 | ---- | M] (Artec) -- C:\Documents and Settings\prakash1\Desktop\V1.4.2.exe < %PROGRAMFILES%\Common Files\*.* > < %systemroot%\*.src > < %systemroot%\install\*.* > < %systemroot%\system32\DLL\*.* > < %systemroot%\system32\HelpFiles\*.* > < %systemroot%\system32\rundll\*.* > < %systemroot%\winn32\*.* > < %systemroot%\Java\*.* > < %systemroot%\system32\test\*.* > < %systemroot%\system32\Rundll32\*.* > < %systemroot%\AppPatch\Custom\*.* > < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\ Auto Update\Results\Install|LastSuccessTime /rs > < >< End of report >
As Seen On

BBC, Reader's Digest, PC Magazine, Today Show, Money Magazine
WELCOME TO TECH SUPPORT GUY!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.


(clock)
THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Search Tech Support Guy

Find the solution to your
computer problem!




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools


WELCOME
You Are Using: Server ID
Trusted Website Back to the Top ↑