1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

XP Home Security Malware attack- Multiple problems

Discussion in 'Virus & Other Malware Removal' started by rendezvous, Dec 8, 2011.

Thread Status:
Not open for further replies.
Advertisement
  1. rendezvous

    rendezvous Thread Starter

    Joined:
    Sep 28, 2008
    Messages:
    55
    Hi,

    It seems my machine is heavily infected with malware (trojans, rootkits probably)

    The symptoms are as follows-

    1) I cannot open any program from the Start menu like firefox, Antivirus, MS Office, MSPaint, regedit It keeps prompting the Open with Dialog Box and when I click ok it downloads a local exe file for the program in question say for example firefox.exe.

    2) I cannot open anything in the Control Panel, say Display Option etc. It says C:\Windows\System32\rundll.exe- Application Not Found

    3) I cannot update Antivirus (Miscrosoft Security Essentials, it fails to connect to the internet though I can connect on IE

    4) Web addresses get redirected.

    5) Cannot run GMER.exe

    ****************


    DDS log
    .
    DDS (Ver_2011-08-26.01) - NTFSx86
    Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26
    Run by ranit_banerjee at 15:56:27 on 2011-12-05
    Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3070.1362 [GMT -8:00]
    .
    AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
    .
    ============== Running Processes ===============
    .
    C:\WINDOWS\system32\ibmpmsvc.exe
    C:\WINDOWS\system32\svchost.exe -k DcomLaunch
    svchost.exe
    c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
    C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    svchost.exe
    svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    svchost.exe
    C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
    C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\nvsvc32.exe
    c:\tools\oracle\11gr1\Bin\extjob.exe
    C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    C:\Program Files\Microsoft\BingBar\SeaPort.EXE
    C:\Program Files\SonicWALL\SSL-VPN\NetExtender\NEService.exe
    C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
    C:\WINDOWS\System32\TPHDEXLG.exe
    C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
    C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
    c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
    C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
    C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
    C:\Program Files\RealVNC\VNC4\WinVNC4.exe
    C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
    c:\program files\lenovo\system update\suservice.exe
    C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
    C:\WINDOWS\System32\svchost.exe -k HTTPFilter
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Microsoft\BingBar\BingBar.exe
    C:\Program Files\Microsoft\BingBar\BingApp.exe
    C:\WINDOWS\system32\taskmgr.exe
    c:\PROGRA~1\MI239C~1\msseces.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\PROGRA~1\MICROS~2\Office12\OUTLOOK.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Citrix\ICA Client\wfcrun32.exe
    C:\PROGRA~1\Citrix\ICACLI~1\WFICA32.EXE
    C:\Documents and Settings\ranit_banerjee\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
    C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
    .
    ============== Pseudo HJT Report ===============
    .
    uWindow Title = Internet Explorer, optimized for Bing and MSN
    uInternet Settings,ProxyServer = http=localhost:8080
    uInternet Settings,ProxyOverride = *.local
    uURLSearchHooks: H - No File
    BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "c:\program files\microsoft\bingbar\BingExt.dll"
    BHO: FreeOnlineRadioPlayerRecorder Toolbar: {f999a48b-1950-4d81-9971-79018f807b4b} - c:\program files\freeonlineradioplayerrecorder\prxtbFre2.dll
    TB: Windows Live Toolbar: {bdad1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\windows live toolbar\msntb.dll
    TB: SnagIt: {8ff5e183-abde-46eb-b09e-d2aab95cabe3} - c:\program files\techsmith\snagit 8\SnagItIEAddin.dll
    TB: FreeOnlineRadioPlayerRecorder Toolbar: {f999a48b-1950-4d81-9971-79018f807b4b} - c:\program files\freeonlineradioplayerrecorder\prxtbFre2.dll
    TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "c:\program files\microsoft\bingbar\BingExt.dll"
    TB: {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
    TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
    EB: FreeOnlineRadioPlayerRecorder Findbar: {3f5276e6-b514-456f-b356-0e00d30d2392} - c:\program files\freeonlineradioplayerrecorder\prxtbFree.dll
    uRun: [Desktop Software] "c:\program files\common files\supportsoft\bin\bcont.exe" /ini "c:\program files\comcastui\desktop software\uinstaller.ini" /fromrun /starthidden
    uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
    uRun: [Google Update] "c:\documents and settings\ranit_banerjee\local settings\application data\google\update\GoogleUpdate.exe" /c
    mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
    mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
    mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
    mRun: [nwiz] nwiz.exe /install
    mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
    mRun: [Print2PDF Print Monitor] "c:\giveaway of the day softwareeeeeeees\Print2PDF.exe" /server
    mRun: [Sophos AutoUpdate Monitor] c:\program files\sophos\autoupdate\almon.exe
    dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
    IE: &Windows Live Search - c:\program files\windows live toolbar\msntb.dll/search.htm
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
    IE: Send to &Bluetooth Device... - c:\program files\thinkpad\bluetooth software\btsendto_ie_ctx.htm
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
    IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
    LSP: mswsock.dll
    Trusted Zone: calypso.com
    Trusted Zone: postoffice.net\calypso.sp
    DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1189027808234
    DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
    DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} - hxxp://www.crucial.com/controls/cpcScanner.cab
    DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - hxxps://calypso.webex.com/client/T26L/webex/ieatgpc.cab
    TCP: DhcpNameServer = 10.1.0.233
    TCP: Interfaces\{CE0C9C3D-4590-45E3-8DF1-96B17F01DF30} : DhcpNameServer = 10.1.0.233
    Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
    Notify: ACNotify - ACNotify.dll
    Notify: psfus - c:\windows\system32\psqlpwd.dll
    Notify: qoMeEurr - qoMeEurr.dll
    SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\documents and settings\ranit_banerjee\application data\mozilla\firefox\profiles\6zmnk594.default\
    FF - prefs.js: network.proxy.type - 0
    FF - component: c:\program files\mozilla firefox\extensions\{ab2ce124-6272-4b12-94a9-7303c7397bd1}\components\SkypeFfComponent.dll
    FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
    FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npatgpc.dll
    FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npgoogletalk.dll
    FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npgtpo3dautoplugin.dll
    FF - plugin: c:\documents and settings\ranit_banerjee\local settings\application data\google\update\1.3.21.79\npGoogleUpdate3.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\npatgpc.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\NPcol305.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\npCouponPrinter.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\npdeployJava1.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\npicaN.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\npMozCouponPrinter.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\npNELaunch.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\NPOFF12.DLL
    FF - plugin: c:\progra~1\mozill~1\plugins\nppdf32.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\nppl3260.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\nprjplug.dll
    FF - plugin: c:\progra~1\mozill~1\plugins\nprpjplug.dll
    FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
    FF - plugin: c:\program files\microsoft silverlight\4.0.60310.0\npctrlui.dll
    FF - plugin: c:\program files\veoh networks\veohwebplayer\NPVeohTVPlugin.dll
    FF - plugin: c:\program files\veoh networks\veohwebplayer\npWebPlayerVideoPluginATL.dll
    FF - plugin: c:\program files\virtual earth 3d\npVE3D.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 TPDIGIMN;TPDIGIMN;c:\windows\system32\drivers\ApsHM86.sys [2007-3-2 19760]
    R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 165648]
    R1 MpKsl298ba62e;MpKsl298ba62e;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsl298ba62e.sys [2011-12-4 29904]
    R1 MpKsl7281eef8;MpKsl7281eef8;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsl7281eef8.sys [2011-12-4 29904]
    R1 MpKsld82e8c84;MpKsld82e8c84;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsld82e8c84.sys [2011-12-5 29904]
    R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2008-12-4 8944]
    R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2008-12-4 55024]
    R2 602XML Updater;602Updater;c:\program files\common files\soft602\602updsvc\602updsvc.exe [2011-11-7 73728]
    R2 OracleJobSchedulerCALYPSO;OracleJobSchedulerCALYPSO;c:\tools\oracle\11gr1\bin\extjob.exe calypso --> c:\tools\oracle\11gr1\bin\extjob.exe CALYPSO [?]
    R2 smihlp;SMI Helper Driver (smihlp);c:\program files\common files\thinkvantage fingerprint software\drivers\smihlp.sys [2007-3-14 11152]
    R2 Sophos AutoUpdate Service;Sophos AutoUpdate Service;c:\program files\sophos\autoupdate\ALsvc.exe [2010-9-21 230640]
    R2 TVT Backup Protection Service;TVT Backup Protection Service;c:\program files\lenovo\rescue and recovery\rrpservice.exe [2007-2-8 569344]
    R3 SSLDrv;SSL-VPN NetExtender Adapter;c:\windows\system32\drivers\SSLDrv.sys [2006-8-28 20504]
    R3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\drivers\tvti2c.sys [2006-9-13 35264]
    S1 MpKsl07422538;MpKsl07422538;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\mpksl07422538.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\MpKsl07422538.sys [?]
    S1 MpKsl0991b8e2;MpKsl0991b8e2;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3fbbcc81-4f79-4c9c-b403-1a9ae00eb529}\mpksl0991b8e2.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3fbbcc81-4f79-4c9c-b403-1a9ae00eb529}\MpKsl0991b8e2.sys [?]
    S1 MpKsl0eb09268;MpKsl0eb09268;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\mpksl0eb09268.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\MpKsl0eb09268.sys [?]
    S1 MpKsl1859233d;MpKsl1859233d;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\mpksl1859233d.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\MpKsl1859233d.sys [?]
    S1 MpKsl2b143e5b;MpKsl2b143e5b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\mpksl2b143e5b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\MpKsl2b143e5b.sys [?]
    S1 MpKsl2c588f17;MpKsl2c588f17;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{74e9608d-caf1-4a96-91c8-638a6073aa08}\mpksl2c588f17.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{74e9608d-caf1-4a96-91c8-638a6073aa08}\MpKsl2c588f17.sys [?]
    S1 MpKsl3c41bb6f;MpKsl3c41bb6f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4b43d7cd-bdcd-417f-ae0f-1e12c0eb593c}\mpksl3c41bb6f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4b43d7cd-bdcd-417f-ae0f-1e12c0eb593c}\MpKsl3c41bb6f.sys [?]
    S1 MpKsl413ab434;MpKsl413ab434;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{578a1a9e-1e5c-4da9-b195-638c110f107a}\mpksl413ab434.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{578a1a9e-1e5c-4da9-b195-638c110f107a}\MpKsl413ab434.sys [?]
    S1 MpKsl54d2a6a9;MpKsl54d2a6a9;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8f57cddc-229e-49ed-90b0-1040c5fce374}\mpksl54d2a6a9.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8f57cddc-229e-49ed-90b0-1040c5fce374}\MpKsl54d2a6a9.sys [?]
    S1 MpKsl56caaf10;MpKsl56caaf10;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{860e9b63-8aac-4574-81c8-168c3be59257}\mpksl56caaf10.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{860e9b63-8aac-4574-81c8-168c3be59257}\MpKsl56caaf10.sys [?]
    S1 MpKsl5c34ef82;MpKsl5c34ef82;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4840bf7b-8cd9-4f2e-8ab6-d71c41d6be7b}\mpksl5c34ef82.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4840bf7b-8cd9-4f2e-8ab6-d71c41d6be7b}\MpKsl5c34ef82.sys [?]
    S1 MpKsl6f1b5e12;MpKsl6f1b5e12;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\mpksl6f1b5e12.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\MpKsl6f1b5e12.sys [?]
    S1 MpKsla16a762f;MpKsla16a762f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{646399d4-f0d5-4a6a-a16d-3b1c81267749}\mpksla16a762f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{646399d4-f0d5-4a6a-a16d-3b1c81267749}\MpKsla16a762f.sys [?]
    S1 MpKsla40ea13b;MpKsla40ea13b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c74de639-bb9e-460a-89cf-5ebb93421b9f}\mpksla40ea13b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c74de639-bb9e-460a-89cf-5ebb93421b9f}\MpKsla40ea13b.sys [?]
    S1 MpKslc6480f16;MpKslc6480f16;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{dab20c15-1490-499b-9203-0679cfec871d}\mpkslc6480f16.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{dab20c15-1490-499b-9203-0679cfec871d}\MpKslc6480f16.sys [?]
    S1 MpKslcec671d8;MpKslcec671d8;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{12ff1473-7950-46aa-8b93-ba15cbdf1871}\mpkslcec671d8.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{12ff1473-7950-46aa-8b93-ba15cbdf1871}\MpKslcec671d8.sys [?]
    S1 MpKsle4d04fe3;MpKsle4d04fe3;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\mpksle4d04fe3.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\MpKsle4d04fe3.sys [?]
    S1 MpKsled9f6874;MpKsled9f6874;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{89961ca4-67d5-48be-80ec-f214682e2818}\mpksled9f6874.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{89961ca4-67d5-48be-80ec-f214682e2818}\MpKsled9f6874.sys [?]
    S1 MpKslfc5b8e7f;MpKslfc5b8e7f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{010fc79e-7fac-42dc-9f6b-9904b7ac4371}\mpkslfc5b8e7f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{010fc79e-7fac-42dc-9f6b-9904b7ac4371}\MpKslfc5b8e7f.sys [?]
    S2 necusb;NEC USB Device Service;c:\windows\system32\svchost.exe -k necusb3 [2006-4-29 14336]
    S2 OracleDBConsoleCALYPSO;OracleDBConsoleCALYPSO;c:\tools\oracle\11gr1\bin\nmesrvc.exe [2008-5-15 25600]
    S2 SYBSQL_LOCALHOST;Sybase SQLServer _ LOCALHOST;c:\tools\sybase15\ase-15_0\bin\sqlsrvr.exe -slocalhost -c --> c:\tools\sybase15\ase-15_0\bin\sqlsrvr.exe -sLOCALHOST -C [?]
    S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-5-16 191752]
    S3 LenovoRd;LenovoRd;c:\windows\system32\drivers\LenovoRd.sys [2007-8-11 81280]
    S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
    S3 OracleOraDb11g_home1TNSListener;OracleOraDb11g_home1TNSListener;c:\tools\oracle\11gr1\bin\tnslsnr --> c:\tools\oracle\11gr1\bin\TNSLSNR [?]
    S3 OracleServiceCALYPSO;OracleServiceCALYPSO;c:\tools\oracle\11gr1\bin\oracle.exe calypso --> c:\tools\oracle\11gr1\bin\ORACLE.EXE CALYPSO [?]
    S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2008-12-4 7408]
    S3 SybaseUAService;Sybase Unified Agent;c:\tools\sybase15\uaf-2_0\utility\ntautostart\release\uaservice.exe [2007-9-5 49152]
    S3 SYBBCK_LOCALHOST_BS;Sybase BCKServer _ LOCALHOST_BS;c:\tools\sybase15\ase-15_0\bin\bcksrvr.exe -slocalhost_bs -r --> c:\tools\sybase15\ase-15_0\bin\bcksrvr.exe -SLOCALHOST_BS -R [?]
    S3 SYBXPS_LOCALHOST_XP;Sybase XPServer _ LOCALHOST_XP;c:\tools\sybase15\ase-15_0\bin\xpserver.exe -slocalhost_xp -c --> c:\tools\sybase15\ase-15_0\bin\xpserver.exe -SLOCALHOST_XP -C [?]
    .
    =============== File Associations ===============
    .
    .exe=ah
    .
    =============== Created Last 30 ================
    .
    2011-12-05 16:12:03 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsld82e8c84.sys
    2011-12-05 02:41:34 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsl298ba62e.sys
    2011-12-04 17:52:20 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsl7281eef8.sys
    2011-12-04 17:52:17 56200 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\offreg.dll
    2011-12-03 20:13:40 6823496 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\mpengine.dll
    2011-11-14 20:38:04 -------- d-----w- c:\program files\ESET
    2011-11-14 08:40:15 -------- d-----w- c:\documents and settings\ranit_banerjee\application data\FddWWK8fRZ9hXwU
    2011-11-14 08:40:08 -------- d-----w- c:\documents and settings\ranit_banerjee\application data\7C459
    2011-11-08 06:51:20 6536192 ----a-w- c:\windows\system32\cdintf450_x64.dll
    2011-11-08 06:50:54 1262216 ----a-w- c:\windows\system32\GdViewerpro4.ocx
    2011-11-08 06:50:53 2335880 ----a-w- c:\windows\system32\gdpdfplug.dll
    2011-11-08 06:50:45 4835328 ----a-w- c:\windows\system32\cdintf450.dll
    2011-11-08 06:50:39 -------- d-----w- c:\program files\common files\soft602
    2011-11-08 06:50:39 -------- d-----w- c:\documents and settings\ranit_banerjee\application data\602Installer
    2011-11-08 06:50:33 -------- d-----w- c:\program files\Software602
    .
    ==================== Find3M ====================
    .
    2011-09-24 20:42:07 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    .
    ============= FINISH: 15:57:15.51 ===============


    DDS Attach log

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-08-26.01)
    .
    Microsoft Windows XP Professional
    Boot Device: \Device\HarddiskVolume1
    Install Date: 9/6/2007 4:51:14 AM
    System Uptime: 12/5/2011 8:57:45 AM (7 hours ago)
    .
    Motherboard: LENOVO | | 7664RYU
    Processor: Intel Pentium III Xeon processor | None | 2094/200mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 86 GiB total, 4.041 GiB free.
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {4D36E965-E325-11CE-BFC1-08002BE10318}
    Description: CD-ROM Drive
    Device ID: IDE\CDROMOPTIARC_DVD_RW_AD-7910A_________________1.D1____\5&1609414&0&0.0.0
    Manufacturer: (Standard CD-ROM drives)
    Name: Optiarc DVD RW AD-7910A
    PNP Device ID: IDE\CDROMOPTIARC_DVD_RW_AD-7910A_________________1.D1____\5&1609414&0&0.0.0
    Service: cdrom
    .
    ==== System Restore Points ===================
    .
    RP213: 10/17/2011 12:11:52 PM - Software Distribution Service 3.0
    RP214: 10/18/2011 12:10:30 PM - Software Distribution Service 3.0
    RP215: 10/19/2011 12:11:36 PM - Software Distribution Service 3.0
    RP216: 10/19/2011 2:01:06 PM - Software Distribution Service 3.0
    RP217: 10/19/2011 5:03:00 PM - Software Distribution Service 3.0
    RP218: 10/20/2011 12:15:21 PM - Software Distribution Service 3.0
    RP219: 10/20/2011 9:44:33 PM - Software Distribution Service 3.0
    RP220: 10/21/2011 8:16:35 AM - Software Distribution Service 3.0
    RP221: 10/22/2011 6:42:46 PM - Software Distribution Service 3.0
    RP222: 10/23/2011 12:16:23 PM - Software Distribution Service 3.0
    RP223: 10/24/2011 11:58:43 AM - Software Distribution Service 3.0
    RP224: 10/25/2011 11:44:49 AM - Software Distribution Service 3.0
    RP225: 10/25/2011 10:21:46 PM - Software Distribution Service 3.0
    RP226: 10/26/2011 12:11:50 PM - Software Distribution Service 3.0
    RP227: 10/27/2011 11:55:34 AM - Software Distribution Service 3.0
    RP228: 10/27/2011 7:05:01 PM - Software Distribution Service 3.0
    RP229: 10/28/2011 12:08:29 PM - Software Distribution Service 3.0
    RP230: 10/29/2011 12:17:23 PM - Software Distribution Service 3.0
    RP231: 10/30/2011 12:22:55 PM - Software Distribution Service 3.0
    RP232: 10/30/2011 2:41:40 PM - Software Distribution Service 3.0
    RP233: 10/31/2011 11:48:56 AM - Software Distribution Service 3.0
    RP234: 11/1/2011 12:03:42 PM - System Checkpoint
    RP235: 11/1/2011 12:07:21 PM - Software Distribution Service 3.0
    RP236: 11/2/2011 11:50:35 AM - Software Distribution Service 3.0
    RP237: 11/3/2011 11:47:39 AM - Software Distribution Service 3.0
    RP238: 11/4/2011 11:57:29 AM - Software Distribution Service 3.0
    RP239: 11/5/2011 7:55:29 PM - Software Distribution Service 3.0
    RP240: 11/6/2011 11:36:52 AM - Software Distribution Service 3.0
    RP241: 11/7/2011 12:08:27 PM - Software Distribution Service 3.0
    RP242: 11/7/2011 10:50:29 PM - Installed Software602 Print2PDF
    RP243: 11/7/2011 10:51:34 PM - Printer Driver Print2PDF 9 Installed
    RP244: 11/7/2011 10:51:51 PM - Printer Driver Print2PDF 9 Installed
    RP245: 11/8/2011 11:35:30 AM - Software Distribution Service 3.0
    RP246: 11/9/2011 11:38:10 AM - Software Distribution Service 3.0
    RP247: 11/9/2011 5:00:59 PM - Software Distribution Service 3.0
    RP248: 11/10/2011 11:49:15 AM - Software Distribution Service 3.0
    RP249: 11/11/2011 11:36:04 AM - Software Distribution Service 3.0
    RP250: 11/12/2011 12:07:07 PM - Software Distribution Service 3.0
    RP251: 11/12/2011 5:57:30 PM - Software Distribution Service 3.0
    RP252: 11/13/2011 11:39:20 AM - Software Distribution Service 3.0
    RP253: 11/14/2011 12:02:57 PM - Software Distribution Service 3.0
    RP254: 11/15/2011 12:36:03 PM - Software Distribution Service 3.0
    RP255: 11/16/2011 7:40:14 PM - Software Distribution Service 3.0
    RP256: 11/17/2011 11:37:58 AM - Software Distribution Service 3.0
    RP257: 11/18/2011 2:12:36 PM - Software Distribution Service 3.0
    RP258: 11/19/2011 12:17:23 PM - Software Distribution Service 3.0
    RP259: 11/20/2011 11:57:08 AM - Software Distribution Service 3.0
    RP260: 11/20/2011 1:37:25 PM - Software Distribution Service 3.0
    RP261: 11/20/2011 6:19:03 PM - Software Distribution Service 3.0
    RP262: 11/21/2011 12:20:32 PM - Software Distribution Service 3.0
    RP263: 11/22/2011 11:52:37 AM - Software Distribution Service 3.0
    RP264: 11/23/2011 12:14:46 PM - Software Distribution Service 3.0
    RP265: 11/23/2011 12:25:53 PM - Software Distribution Service 3.0
    RP266: 11/23/2011 11:55:02 PM - Software Distribution Service 3.0
    RP267: 11/24/2011 11:53:46 AM - Software Distribution Service 3.0
    RP268: 11/24/2011 10:50:00 PM - Removed Sophos AutoUpdate
    RP269: 11/24/2011 10:50:52 PM - Installed Sophos AutoUpdate
    RP270: 11/25/2011 12:04:49 PM - Software Distribution Service 3.0
    RP271: 11/26/2011 11:33:17 AM - Software Distribution Service 3.0
    RP272: 11/27/2011 12:07:40 PM - Software Distribution Service 3.0
    RP273: 11/27/2011 12:33:38 PM - Software Distribution Service 3.0
    RP274: 11/28/2011 12:27:21 PM - Software Distribution Service 3.0
    RP275: 11/29/2011 12:24:42 PM - Software Distribution Service 3.0
    RP276: 11/30/2011 12:15:58 PM - Software Distribution Service 3.0
    RP277: 12/1/2011 12:31:16 PM - Software Distribution Service 3.0
    RP278: 12/2/2011 12:31:52 PM - Software Distribution Service 3.0
    RP279: 12/3/2011 12:13:39 PM - Software Distribution Service 3.0
    RP280: 12/4/2011 12:56:05 PM - System Checkpoint
    .
    ==== Installed Programs ======================
    .
    .
    2007 Microsoft Office system
    7-Zip 4.57
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Reader 8.1.2
    Asterisk Password Decryptor
    Bing Bar
    Bing Maps 3D
    Bonjour
    Calypso Main Entry Application
    Citrix XenApp Plugin for Hosted Apps
    Comcast Desktop Software (v1.2.0.9)
    Cool Record Edit Pro v7.9.3
    Coupon Printer for Windows
    Dell Laser MFP 1815 Software Uninstall
    Dell Printer Software Uninstall
    Diskeeper Lite
    Driver Magician 3.61
    ESET Online Scanner v3
    FreeOnlineRadioPlayerRecorder Toolbar
    Google Talk (remove only)
    Google Talk Plugin
    High Definition Audio Driver Package - KB888111
    HiJackThis
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Hotfix for Windows XP (KB2443685)
    Hotfix for Windows XP (KB952287)
    Hotfix for Windows XP (KB954550-v5)
    Hotfix for Windows XP (KB961118)
    Hotfix for Windows XP (KB970653-v3)
    Hotfix for Windows XP (KB981793)
    Integrated Camera
    Intel® PRO Network Connections Drivers
    Intel® PROSet/Wireless Software
    InterVideo Register Manager
    InterVideo WinDVD
    InterVideo WinDVD Creator 3
    Java Auto Updater
    Java DB 10.5.3.0
    Java™ 6 Update 26
    Java™ SE Development Kit 6
    Java™ SE Development Kit 6 Update 21
    KRyLack Archive Password Recovery
    magicJack
    Malwarebytes' Anti-Malware version 1.51.2.1300
    McAfee Security Scan Plus
    mCore
    mDriver
    MetaFrame Presentation Server Web Client for Win32
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1 Security Update (KB979906)
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 3.0 Service Pack 2
    Microsoft .NET Framework 3.5 SP1
    Microsoft Antimalware
    Microsoft Application Error Reporting
    Microsoft Internationalized Domain Names Mitigation APIs
    Microsoft National Language Support Downlevel APIs
    Microsoft Office Access MUI (English) 2007
    Microsoft Office Access Setup Metadata MUI (English) 2007
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office Outlook MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office Professional Hybrid 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Publisher MUI (English) 2007
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Security Client
    Microsoft Security Essentials
    Microsoft Silverlight
    Microsoft Software Update for Web Folders (English) 12
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    mMHouse
    Mozilla Firefox 8.0 (x86 en-US)
    mPfMgr
    mProSafe
    MSXML 4.0 SP2 (KB927978)
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    MSXML 6 Service Pack 2 (KB973686)
    mWlsSafe
    Notepad++
    NVIDIA Drivers
    PDFZilla V1.2.9
    Perfect Uninstaller v6.3.3.9
    Python 2.3.3
    RealPlayer
    RealUpgrade 1.0
    RecordNow Audio
    RecordNow Copy
    RecordNow Data
    Remove Multimedia Center
    Rescue and Recovery
    RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
    Security Update for Step By Step Interactive Training (KB898458)
    Security Update for Step By Step Interactive Training (KB923723)
    Security Update for Windows Internet Explorer 7 (KB2544521)
    Security Update for Windows Internet Explorer 7 (KB2559049)
    Security Update for Windows Internet Explorer 7 (KB929969)
    Security Update for Windows Internet Explorer 7 (KB938127-v2)
    Security Update for Windows Internet Explorer 7 (KB938127)
    Security Update for Windows Internet Explorer 7 (KB956390)
    Security Update for Windows Internet Explorer 7 (KB958215)
    Security Update for Windows Internet Explorer 7 (KB960714)
    Security Update for Windows Internet Explorer 7 (KB969897)
    Security Update for Windows Internet Explorer 7 (KB972260)
    Security Update for Windows Internet Explorer 7 (KB982381)
    Security Update for Windows Internet Explorer 8 (KB2559049)
    Security Update for Windows Internet Explorer 8 (KB982381)
    Security Update for Windows Media Player (KB2378111)
    Security Update for Windows Media Player (KB911564)
    Security Update for Windows Media Player (KB952069)
    Security Update for Windows Media Player (KB954155)
    Security Update for Windows Media Player (KB968816)
    Security Update for Windows Media Player (KB973540)
    Security Update for Windows Media Player (KB975558)
    Security Update for Windows Media Player (KB978695)
    Security Update for Windows Media Player 10 (KB917734)
    Security Update for Windows Media Player 10 (KB936782)
    Security Update for Windows XP (KB2079403)
    Security Update for Windows XP (KB2115168)
    Security Update for Windows XP (KB2229593)
    Security Update for Windows XP (KB2296011)
    Security Update for Windows XP (KB2347290)
    Security Update for Windows XP (KB2360937)
    Security Update for Windows XP (KB2387149)
    Security Update for Windows XP (KB2393802)
    Security Update for Windows XP (KB2412687)
    Security Update for Windows XP (KB2419632)
    Security Update for Windows XP (KB2423089)
    Security Update for Windows XP (KB2440591)
    Security Update for Windows XP (KB2443105)
    Security Update for Windows XP (KB2476490)
    Security Update for Windows XP (KB2478960)
    Security Update for Windows XP (KB2478971)
    Security Update for Windows XP (KB2479943)
    Security Update for Windows XP (KB2481109)
    Security Update for Windows XP (KB2483185)
    Security Update for Windows XP (KB2485663)
    Security Update for Windows XP (KB2503665)
    Security Update for Windows XP (KB2506212)
    Security Update for Windows XP (KB2507618)
    Security Update for Windows XP (KB2507938)
    Security Update for Windows XP (KB2508272)
    Security Update for Windows XP (KB2508429)
    Security Update for Windows XP (KB2509553)
    Security Update for Windows XP (KB2510581)
    Security Update for Windows XP (KB2524375)
    Security Update for Windows XP (KB2535512)
    Security Update for Windows XP (KB2536276-v2)
    Security Update for Windows XP (KB2544893)
    Security Update for Windows XP (KB2555917)
    Security Update for Windows XP (KB2562937)
    Security Update for Windows XP (KB2566454)
    Security Update for Windows XP (KB2567680)
    Security Update for Windows XP (KB2570222)
    Security Update for Windows XP (KB923561)
    Security Update for Windows XP (KB923689)
    Security Update for Windows XP (KB938464)
    Security Update for Windows XP (KB941569)
    Security Update for Windows XP (KB946648)
    Security Update for Windows XP (KB950762)
    Security Update for Windows XP (KB950974)
    Security Update for Windows XP (KB951066)
    Security Update for Windows XP (KB951376-v2)
    Security Update for Windows XP (KB951698)
    Security Update for Windows XP (KB951748)
    Security Update for Windows XP (KB952004)
    Security Update for Windows XP (KB952954)
    Security Update for Windows XP (KB954211)
    Security Update for Windows XP (KB954600)
    Security Update for Windows XP (KB955069)
    Security Update for Windows XP (KB956391)
    Security Update for Windows XP (KB956572)
    Security Update for Windows XP (KB956744)
    Security Update for Windows XP (KB956802)
    Security Update for Windows XP (KB956803)
    Security Update for Windows XP (KB956841)
    Security Update for Windows XP (KB956844)
    Security Update for Windows XP (KB957095)
    Security Update for Windows XP (KB957097)
    Security Update for Windows XP (KB958644)
    Security Update for Windows XP (KB958687)
    Security Update for Windows XP (KB958869)
    Security Update for Windows XP (KB959426)
    Security Update for Windows XP (KB960225)
    Security Update for Windows XP (KB960803)
    Security Update for Windows XP (KB960859)
    Security Update for Windows XP (KB961371)
    Security Update for Windows XP (KB961373)
    Security Update for Windows XP (KB961501)
    Security Update for Windows XP (KB968537)
    Security Update for Windows XP (KB969059)
    Security Update for Windows XP (KB969898)
    Security Update for Windows XP (KB970238)
    Security Update for Windows XP (KB970430)
    Security Update for Windows XP (KB971468)
    Security Update for Windows XP (KB971557)
    Security Update for Windows XP (KB971633)
    Security Update for Windows XP (KB971657)
    Security Update for Windows XP (KB971961)
    Security Update for Windows XP (KB972270)
    Security Update for Windows XP (KB973346)
    Security Update for Windows XP (KB973354)
    Security Update for Windows XP (KB973507)
    Security Update for Windows XP (KB973869)
    Security Update for Windows XP (KB973904)
    Security Update for Windows XP (KB974112)
    Security Update for Windows XP (KB974318)
    Security Update for Windows XP (KB974392)
    Security Update for Windows XP (KB974571)
    Security Update for Windows XP (KB975025)
    Security Update for Windows XP (KB975467)
    Security Update for Windows XP (KB975560)
    Security Update for Windows XP (KB975561)
    Security Update for Windows XP (KB975562)
    Security Update for Windows XP (KB975713)
    Security Update for Windows XP (KB977816)
    Security Update for Windows XP (KB977914)
    Security Update for Windows XP (KB978037)
    Security Update for Windows XP (KB978338)
    Security Update for Windows XP (KB978542)
    Security Update for Windows XP (KB978601)
    Security Update for Windows XP (KB978706)
    Security Update for Windows XP (KB979309)
    Security Update for Windows XP (KB979482)
    Security Update for Windows XP (KB979559)
    Security Update for Windows XP (KB979683)
    Security Update for Windows XP (KB979687)
    Security Update for Windows XP (KB980195)
    Security Update for Windows XP (KB980218)
    Security Update for Windows XP (KB980232)
    Security Update for Windows XP (KB980436)
    Security Update for Windows XP (KB981322)
    Security Update for Windows XP (KB981349)
    Security Update for Windows XP (KB981997)
    Security Update for Windows XP (KB982132)
    Security Update for Windows XP (KB982665)
    Skype Click to Call
    Skype™ 5.5
    SnagIt 8
    Software602 Print2PDF
    Sonic DLA
    Sonic Express Labeler
    Sonic Icons for Lenovo
    Sonic Update Manager
    SonicWALL SSL-VPN NetExtender
    Sophos AutoUpdate
    SoundMAX
    SUPERAntiSpyware Free Edition
    Sybase Adaptive Server Enterprise Suite
    System Update
    Tcl/Tk 8.3.2 for Windows
    ThinkPad Bluetooth with Enhanced Data Rate Software
    ThinkPad EasyEject Utility
    ThinkPad Hotkey Features Setup
    ThinkPad Modem
    ThinkPad PC Card Power Policy
    ThinkPad Power Management Driver
    ThinkPad Power Manager
    ThinkPad UltraNav Driver
    ThinkPad UltraNav Utility
    ThinkVantage Access Connections
    ThinkVantage Active Protection System
    ThinkVantage Fingerprint Software 5.6
    ThinkVantage Productivity Center
    ThinkVantage Technologies Welcome Message
    Uninstall Dell PC Fax
    Unlocker 1.9.1
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Windows Internet Explorer 8 (KB2447568)
    Update for Windows XP (KB2345886)
    Update for Windows XP (KB2467659)
    Update for Windows XP (KB2541763)
    Update for Windows XP (KB951072-v2)
    Update for Windows XP (KB951978)
    Update for Windows XP (KB955759)
    Update for Windows XP (KB955839)
    Update for Windows XP (KB967715)
    Update for Windows XP (KB968389)
    Update for Windows XP (KB971029)
    Update for Windows XP (KB971737)
    Update for Windows XP (KB973687)
    Update for Windows XP (KB973815)
    Veoh Web Player Beta
    Visokio Omniscope
    VNC Free Edition 4.1.3
    Wallpapers
    WebEx
    WebFldrs XP
    WinCvs 1.3
    Windows Genuine Advantage Notifications (KB905474)
    Windows Genuine Advantage Validation Tool (KB892130)
    Windows Imaging Component
    Windows Internet Explorer 7
    Windows Internet Explorer 8
    Windows Live Toolbar
    Windows Media Connect
    Windows Media Format Runtime
    Windows Media Player 10
    Windows XP Service Pack 3
    XP Themes
    Yahoo! Messenger
    .
    ==== Event Viewer Messages From Past Week ========
    .
    12/5/2011 9:30:47 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/5/2011 8:22:12 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/5/2011 8:14:05 AM, error: System Error [1003] - Error code 40000080, parameter1 8a6cbad0, parameter2 8a32f698, parameter3 ba4d3e5c, parameter4 00000001.
    12/5/2011 11:35:27 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/5/2011 10:11:16 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/4/2011 9:32:45 AM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.
    12/4/2011 8:56:00 AM, error: Schedule [7901] - The At18.job command failed to start due to the following error: %%2147942402
    12/4/2011 8:56:00 AM, error: Schedule [7901] - The At17.job command failed to start due to the following error: %%2147942402
    12/4/2011 7:56:00 AM, error: Schedule [7901] - The At16.job command failed to start due to the following error: %%2147942402
    12/4/2011 7:56:00 AM, error: Schedule [7901] - The At15.job command failed to start due to the following error: %%2147942402
    12/4/2011 6:56:00 AM, error: Schedule [7901] - The At14.job command failed to start due to the following error: %%2147942402
    12/4/2011 6:56:00 AM, error: Schedule [7901] - The At13.job command failed to start due to the following error: %%2147942402
    12/4/2011 6:51:44 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/4/2011 6:41:33 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000243' while processing the file 'i8042prt.sys' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
    12/4/2011 5:56:00 AM, error: Schedule [7901] - The At12.job command failed to start due to the following error: %%2147942402
    12/4/2011 5:56:00 AM, error: Schedule [7901] - The At11.job command failed to start due to the following error: %%2147942402
    12/4/2011 4:56:00 AM, error: Schedule [7901] - The At9.job command failed to start due to the following error: %%2147942402
    12/4/2011 4:56:00 AM, error: Schedule [7901] - The At10.job command failed to start due to the following error: %%2147942402
    12/4/2011 3:56:00 AM, error: Schedule [7901] - The At8.job command failed to start due to the following error: %%2147942402
    12/4/2011 3:56:00 AM, error: Schedule [7901] - The At7.job command failed to start due to the following error: %%2147942402
    12/4/2011 2:56:00 AM, error: Schedule [7901] - The At6.job command failed to start due to the following error: %%2147942402
    12/4/2011 2:56:00 AM, error: Schedule [7901] - The At5.job command failed to start due to the following error: %%2147942402
    12/4/2011 12:56:00 AM, error: Schedule [7901] - The At2.job command failed to start due to the following error: %%2147942402
    12/4/2011 12:56:00 AM, error: Schedule [7901] - The At1.job command failed to start due to the following error: %%2147942402
    12/4/2011 12:18:31 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/4/2011 11:53:41 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/4/2011 1:56:00 AM, error: Schedule [7901] - The At4.job command failed to start due to the following error: %%2147942402
    12/4/2011 1:56:00 AM, error: Schedule [7901] - The At3.job command failed to start due to the following error: %%2147942402
    12/3/2011 9:56:00 PM, error: Schedule [7901] - The At44.job command failed to start due to the following error: %%2147942402
    12/3/2011 9:56:00 PM, error: Schedule [7901] - The At43.job command failed to start due to the following error: %%2147942402
    12/3/2011 9:56:00 AM, error: Schedule [7901] - The At20.job command failed to start due to the following error: %%2147942402
    12/3/2011 9:56:00 AM, error: Schedule [7901] - The At19.job command failed to start due to the following error: %%2147942402
    12/3/2011 8:56:00 PM, error: Schedule [7901] - The At42.job command failed to start due to the following error: %%2147942402
    12/3/2011 8:56:00 PM, error: Schedule [7901] - The At41.job command failed to start due to the following error: %%2147942402
    12/3/2011 7:56:00 PM, error: Schedule [7901] - The At40.job command failed to start due to the following error: %%2147942402
    12/3/2011 7:56:00 PM, error: Schedule [7901] - The At39.job command failed to start due to the following error: %%2147942402
    12/3/2011 6:56:00 PM, error: Schedule [7901] - The At38.job command failed to start due to the following error: %%2147942402
    12/3/2011 6:56:00 PM, error: Schedule [7901] - The At37.job command failed to start due to the following error: %%2147942402
    12/3/2011 5:56:00 PM, error: Schedule [7901] - The At36.job command failed to start due to the following error: %%2147942402
    12/3/2011 5:56:00 PM, error: Schedule [7901] - The At35.job command failed to start due to the following error: %%2147942402
    12/3/2011 4:56:00 PM, error: Schedule [7901] - The At34.job command failed to start due to the following error: %%2147942402
    12/3/2011 4:56:00 PM, error: Schedule [7901] - The At33.job command failed to start due to the following error: %%2147942402
    12/3/2011 3:56:00 PM, error: Schedule [7901] - The At32.job command failed to start due to the following error: %%2147942402
    12/3/2011 3:56:00 PM, error: Schedule [7901] - The At31.job command failed to start due to the following error: %%2147942402
    12/3/2011 2:56:00 PM, error: Schedule [7901] - The At30.job command failed to start due to the following error: %%2147942402
    12/3/2011 2:56:00 PM, error: Schedule [7901] - The At29.job command failed to start due to the following error: %%2147942402
    12/3/2011 12:56:00 PM, error: Schedule [7901] - The At26.job command failed to start due to the following error: %%2147942402
    12/3/2011 12:56:00 PM, error: Schedule [7901] - The At25.job command failed to start due to the following error: %%2147942402
    12/3/2011 11:56:00 PM, error: Schedule [7901] - The At48.job command failed to start due to the following error: %%2147942402
    12/3/2011 11:56:00 PM, error: Schedule [7901] - The At47.job command failed to start due to the following error: %%2147942402
    12/3/2011 11:56:00 AM, error: Schedule [7901] - The At24.job command failed to start due to the following error: %%2147942402
    12/3/2011 11:56:00 AM, error: Schedule [7901] - The At23.job command failed to start due to the following error: %%2147942402
    12/3/2011 10:56:00 PM, error: Schedule [7901] - The At46.job command failed to start due to the following error: %%2147942402
    12/3/2011 10:56:00 PM, error: Schedule [7901] - The At45.job command failed to start due to the following error: %%2147942402
    12/3/2011 10:56:00 AM, error: Schedule [7901] - The At22.job command failed to start due to the following error: %%2147942402
    12/3/2011 10:56:00 AM, error: Schedule [7901] - The At21.job command failed to start due to the following error: %%2147942402
    12/3/2011 10:32:25 PM, error: System Error [1003] - Error code 40000080, parameter1 8a84dad0, parameter2 8a34f828, parameter3 ba4dfbb8, parameter4 00000001.
    12/3/2011 10:31:22 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Cdrom Imapi
    12/3/2011 10:31:22 PM, error: Service Control Manager [7024] - The OracleDBConsoleCALYPSO service terminated with service-specific error 2 (0x2).
    12/3/2011 10:31:22 PM, error: Service Control Manager [7023] - The NEC USB Device Service service terminated with the following error: The specified module could not be found.
    12/3/2011 10:31:22 PM, error: Service Control Manager [7023] - The Diskeeper service terminated with the following error: The service has not been started.
    12/3/2011 10:31:22 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Sybase SQLServer _ LOCALHOST service to connect.
    12/3/2011 10:31:22 PM, error: Service Control Manager [7000] - The Sybase SQLServer _ LOCALHOST service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
    12/3/2011 10:31:22 PM, error: Service Control Manager [7000] - The rimsptsk service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
    12/3/2011 10:31:22 PM, error: Service Control Manager [7000] - The rimmptsk service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
    12/3/2011 10:31:22 PM, error: Service Control Manager [7000] - The Ricoh xD-Picture Card Driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
    12/3/2011 1:56:00 PM, error: Schedule [7901] - The At28.job command failed to start due to the following error: %%2147942402
    12/3/2011 1:56:00 PM, error: Schedule [7901] - The At27.job command failed to start due to the following error: %%2147942402
    12/2/2011 9:53:35 AM, error: Dhcp [1002] - The IP address lease 192.168.0.101 for the Network Card with network address 002186589B45 has been denied by the DHCP server 10.1.0.233 (The DHCP Server sent a DHCPNACK message).
    12/2/2011 6:47:11 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the SUService service.
    12/2/2011 6:01:19 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the stisvc service.
    12/2/2011 10:10:24 PM, error: Dhcp [1002] - The IP address lease 10.1.2.115 for the Network Card with network address 002186589B45 has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message).
    12/1/2011 8:16:47 PM, error: HTTP [15005] - Unable to bind to the underlying transport for 0.0.0.0:2869. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
    .
    ==== End Of File ===========================
     
  2. Larusso

    Larusso

    Joined:
    Aug 9, 2011
    Messages:
    808
    Hy there and sorry for the delay.
    If you still need help,

    Please launch DDS
    • When done, DDS will open two (2) logs:
      1. DDS.txt
      2. Attach.txt
    • Save both reports to your desktop and post both in your next reply
     
  3. rendezvous

    rendezvous Thread Starter

    Joined:
    Sep 28, 2008
    Messages:
    55
    Hi there,

    I already posted DDS and Attach logs in my first post.

    Thanks
     
  4. Larusso

    Larusso

    Joined:
    Aug 9, 2011
    Messages:
    808
    Yes, and I want to look over fresh logs.
     
  5. rendezvous

    rendezvous Thread Starter

    Joined:
    Sep 28, 2008
    Messages:
    55
    DDS log

    .
    DDS (Ver_2011-08-26.01) - NTFSx86
    Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26
    Run by ranit_banerjee at 7:45:24 on 2011-12-15
    Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3070.1781 [GMT -8:00]
    .
    AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
    AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
    FW: ESET Personal firewall *Enabled*
    .
    ============== Running Processes ===============
    .
    C:\WINDOWS\system32\ibmpmsvc.exe
    C:\WINDOWS\system32\svchost.exe -k DcomLaunch
    svchost.exe
    c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
    C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    svchost.exe
    svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    svchost.exe
    C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
    C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
    C:\Program Files\ESET\ESET Smart Security\ekrn.exe
    C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\nvsvc32.exe
    c:\tools\oracle\11gr1\Bin\extjob.exe
    C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    C:\Program Files\Microsoft\BingBar\SeaPort.EXE
    C:\Program Files\SonicWALL\SSL-VPN\NetExtender\NEService.exe
    C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    C:\tools\sybase15\ASE-15_0\bin\sqlsrvr.exe
    C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
    C:\WINDOWS\System32\TPHDEXLG.exe
    C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
    C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
    c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
    C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
    C:\Program Files\RealVNC\VNC4\WinVNC4.exe
    C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
    c:\program files\lenovo\system update\suservice.exe
    C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
    C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Microsoft\BingBar\BingBar.exe
    C:\Program Files\Microsoft\BingBar\BingApp.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\WINDOWS\system32\msiexec.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Documents and Settings\ranit_banerjee\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uWindow Title = Internet Explorer, optimized for Bing and MSN
    uInternet Settings,ProxyServer = http=localhost:8080
    uInternet Settings,ProxyOverride = *.local
    uURLSearchHooks: H - No File
    BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "c:\program files\microsoft\bingbar\BingExt.dll"
    BHO: FreeOnlineRadioPlayerRecorder Toolbar: {f999a48b-1950-4d81-9971-79018f807b4b} - c:\program files\freeonlineradioplayerrecorder\prxtbFre2.dll
    TB: Windows Live Toolbar: {bdad1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\windows live toolbar\msntb.dll
    TB: SnagIt: {8ff5e183-abde-46eb-b09e-d2aab95cabe3} - c:\program files\techsmith\snagit 8\SnagItIEAddin.dll
    TB: FreeOnlineRadioPlayerRecorder Toolbar: {f999a48b-1950-4d81-9971-79018f807b4b} - c:\program files\freeonlineradioplayerrecorder\prxtbFre2.dll
    TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "c:\program files\microsoft\bingbar\BingExt.dll"
    TB: {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
    TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
    EB: FreeOnlineRadioPlayerRecorder Findbar: {3f5276e6-b514-456f-b356-0e00d30d2392} - c:\program files\freeonlineradioplayerrecorder\prxtbFree.dll
    uRun: [Desktop Software] "c:\program files\common files\supportsoft\bin\bcont.exe" /ini "c:\program files\comcastui\desktop software\uinstaller.ini" /fromrun /starthidden
    uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
    uRun: [Google Update] "c:\documents and settings\ranit_banerjee\local settings\application data\google\update\GoogleUpdate.exe" /c
    mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
    mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
    mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
    mRun: [nwiz] nwiz.exe /install
    mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
    mRun: [Print2PDF Print Monitor] "c:\giveaway of the day softwareeeeeeees\Print2PDF.exe" /server
    mRun: [Sophos AutoUpdate Monitor] c:\program files\sophos\autoupdate\almon.exe
    mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
    dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
    IE: &Windows Live Search - c:\program files\windows live toolbar\msntb.dll/search.htm
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
    IE: Send to &Bluetooth Device... - c:\program files\thinkpad\bluetooth software\btsendto_ie_ctx.htm
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
    IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
    LSP: mswsock.dll
    Trusted Zone: calypso.com
    Trusted Zone: postoffice.net\calypso.sp
    DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1189027808234
    DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
    DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} - hxxp://www.crucial.com/controls/cpcScanner.cab
    DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
    DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - hxxps://calypso.webex.com/client/T26L/webex/ieatgpc.cab
    TCP: DhcpNameServer = 192.168.0.1
    TCP: Interfaces\{CE0C9C3D-4590-45E3-8DF1-96B17F01DF30} : DhcpNameServer = 192.168.0.1
    Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
    Notify: ACNotify - ACNotify.dll
    Notify: psfus - c:\windows\system32\psqlpwd.dll
    Notify: qoMeEurr - qoMeEurr.dll
    SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\documents and settings\ranit_banerjee\application data\mozilla\firefox\profiles\6zmnk594.default\
    FF - prefs.js: network.proxy.type - 0
    FF - component: c:\program files\mozilla firefox\extensions\{ab2ce124-6272-4b12-94a9-7303c7397bd1}\components\SkypeFfComponent.dll
    FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
    FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npatgpc.dll
    FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npgoogletalk.dll
    FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npgtpo3dautoplugin.dll
    FF - plugin: c:\documents and settings\ranit_banerjee\local settings\application data\google\update\1.3.21.79\npGoogleUpdate3.dll
    FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
    FF - plugin: c:\program files\microsoft silverlight\4.0.60310.0\npctrlui.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npatgpc.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\NPcol305.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npicaN.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npMozCouponPrinter.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npNELaunch.dll
    FF - plugin: c:\program files\veoh networks\veohwebplayer\NPVeohTVPlugin.dll
    FF - plugin: c:\program files\veoh networks\veohwebplayer\npWebPlayerVideoPluginATL.dll
    FF - plugin: c:\program files\virtual earth 3d\npVE3D.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 TPDIGIMN;TPDIGIMN;c:\windows\system32\drivers\ApsHM86.sys [2007-3-2 19760]
    R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2011-8-4 118104]
    R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 165648]
    R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2008-12-4 8944]
    R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2008-12-4 55024]
    R2 602XML Updater;602Updater;c:\program files\common files\soft602\602updsvc\602updsvc.exe [2011-11-7 73728]
    R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2011-9-22 974944]
    R2 OracleJobSchedulerCALYPSO;OracleJobSchedulerCALYPSO;c:\tools\oracle\11gr1\bin\extjob.exe calypso --> c:\tools\oracle\11gr1\bin\extjob.exe CALYPSO [?]
    R2 smihlp;SMI Helper Driver (smihlp);c:\program files\common files\thinkvantage fingerprint software\drivers\smihlp.sys [2007-3-14 11152]
    R2 Sophos AutoUpdate Service;Sophos AutoUpdate Service;c:\program files\sophos\autoupdate\ALsvc.exe [2010-9-21 230640]
    R2 SYBSQL_LOCALHOST;Sybase SQLServer _ LOCALHOST;c:\tools\sybase15\ase-15_0\bin\sqlsrvr.exe -slocalhost -c --> c:\tools\sybase15\ase-15_0\bin\sqlsrvr.exe -sLOCALHOST -C [?]
    R2 TVT Backup Protection Service;TVT Backup Protection Service;c:\program files\lenovo\rescue and recovery\rrpservice.exe [2007-2-8 569344]
    R3 SSLDrv;SSL-VPN NetExtender Adapter;c:\windows\system32\drivers\SSLDrv.sys [2006-8-28 20504]
    R3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\drivers\tvti2c.sys [2006-9-13 35264]
    S1 MpKsl07422538;MpKsl07422538;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\mpksl07422538.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\MpKsl07422538.sys [?]
    S1 MpKsl0991b8e2;MpKsl0991b8e2;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3fbbcc81-4f79-4c9c-b403-1a9ae00eb529}\mpksl0991b8e2.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3fbbcc81-4f79-4c9c-b403-1a9ae00eb529}\MpKsl0991b8e2.sys [?]
    S1 MpKsl0eb09268;MpKsl0eb09268;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\mpksl0eb09268.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\MpKsl0eb09268.sys [?]
    S1 MpKsl1859233d;MpKsl1859233d;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\mpksl1859233d.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\MpKsl1859233d.sys [?]
    S1 MpKsl2b143e5b;MpKsl2b143e5b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\mpksl2b143e5b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\MpKsl2b143e5b.sys [?]
    S1 MpKsl2c588f17;MpKsl2c588f17;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{74e9608d-caf1-4a96-91c8-638a6073aa08}\mpksl2c588f17.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{74e9608d-caf1-4a96-91c8-638a6073aa08}\MpKsl2c588f17.sys [?]
    S1 MpKsl3c41bb6f;MpKsl3c41bb6f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4b43d7cd-bdcd-417f-ae0f-1e12c0eb593c}\mpksl3c41bb6f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4b43d7cd-bdcd-417f-ae0f-1e12c0eb593c}\MpKsl3c41bb6f.sys [?]
    S1 MpKsl413ab434;MpKsl413ab434;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{578a1a9e-1e5c-4da9-b195-638c110f107a}\mpksl413ab434.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{578a1a9e-1e5c-4da9-b195-638c110f107a}\MpKsl413ab434.sys [?]
    S1 MpKsl54d2a6a9;MpKsl54d2a6a9;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8f57cddc-229e-49ed-90b0-1040c5fce374}\mpksl54d2a6a9.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8f57cddc-229e-49ed-90b0-1040c5fce374}\MpKsl54d2a6a9.sys [?]
    S1 MpKsl56caaf10;MpKsl56caaf10;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{860e9b63-8aac-4574-81c8-168c3be59257}\mpksl56caaf10.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{860e9b63-8aac-4574-81c8-168c3be59257}\MpKsl56caaf10.sys [?]
    S1 MpKsl5c34ef82;MpKsl5c34ef82;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4840bf7b-8cd9-4f2e-8ab6-d71c41d6be7b}\mpksl5c34ef82.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4840bf7b-8cd9-4f2e-8ab6-d71c41d6be7b}\MpKsl5c34ef82.sys [?]
    S1 MpKsl6f1b5e12;MpKsl6f1b5e12;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\mpksl6f1b5e12.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\MpKsl6f1b5e12.sys [?]
    S1 MpKsl90d22b96;MpKsl90d22b96;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\mpksl90d22b96.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsl90d22b96.sys [?]
    S1 MpKsla16a762f;MpKsla16a762f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{646399d4-f0d5-4a6a-a16d-3b1c81267749}\mpksla16a762f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{646399d4-f0d5-4a6a-a16d-3b1c81267749}\MpKsla16a762f.sys [?]
    S1 MpKsla40ea13b;MpKsla40ea13b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c74de639-bb9e-460a-89cf-5ebb93421b9f}\mpksla40ea13b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c74de639-bb9e-460a-89cf-5ebb93421b9f}\MpKsla40ea13b.sys [?]
    S1 MpKslc6480f16;MpKslc6480f16;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{dab20c15-1490-499b-9203-0679cfec871d}\mpkslc6480f16.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{dab20c15-1490-499b-9203-0679cfec871d}\MpKslc6480f16.sys [?]
    S1 MpKslcec671d8;MpKslcec671d8;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{12ff1473-7950-46aa-8b93-ba15cbdf1871}\mpkslcec671d8.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{12ff1473-7950-46aa-8b93-ba15cbdf1871}\MpKslcec671d8.sys [?]
    S1 MpKsle4d04fe3;MpKsle4d04fe3;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\mpksle4d04fe3.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\MpKsle4d04fe3.sys [?]
    S1 MpKsled9f6874;MpKsled9f6874;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{89961ca4-67d5-48be-80ec-f214682e2818}\mpksled9f6874.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{89961ca4-67d5-48be-80ec-f214682e2818}\MpKsled9f6874.sys [?]
    S1 MpKslfc5b8e7f;MpKslfc5b8e7f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{010fc79e-7fac-42dc-9f6b-9904b7ac4371}\mpkslfc5b8e7f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{010fc79e-7fac-42dc-9f6b-9904b7ac4371}\MpKslfc5b8e7f.sys [?]
    S2 necusb;NEC USB Device Service;c:\windows\system32\svchost.exe -k necusb3 [2006-4-29 14336]
    S2 OracleDBConsoleCALYPSO;OracleDBConsoleCALYPSO;c:\tools\oracle\11gr1\bin\nmesrvc.exe [2008-5-15 25600]
    S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-5-16 191752]
    S3 LenovoRd;LenovoRd;c:\windows\system32\drivers\LenovoRd.sys [2007-8-11 81280]
    S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
    S3 OracleOraDb11g_home1TNSListener;OracleOraDb11g_home1TNSListener;c:\tools\oracle\11gr1\bin\tnslsnr --> c:\tools\oracle\11gr1\bin\TNSLSNR [?]
    S3 OracleServiceCALYPSO;OracleServiceCALYPSO;c:\tools\oracle\11gr1\bin\oracle.exe calypso --> c:\tools\oracle\11gr1\bin\ORACLE.EXE CALYPSO [?]
    S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2008-12-4 7408]
    S3 SybaseUAService;Sybase Unified Agent;c:\tools\sybase15\uaf-2_0\utility\ntautostart\release\uaservice.exe [2007-9-5 49152]
    S3 SYBBCK_LOCALHOST_BS;Sybase BCKServer _ LOCALHOST_BS;c:\tools\sybase15\ase-15_0\bin\bcksrvr.exe -slocalhost_bs -r --> c:\tools\sybase15\ase-15_0\bin\bcksrvr.exe -SLOCALHOST_BS -R [?]
    S3 SYBXPS_LOCALHOST_XP;Sybase XPServer _ LOCALHOST_XP;c:\tools\sybase15\ase-15_0\bin\xpserver.exe -slocalhost_xp -c --> c:\tools\sybase15\ase-15_0\bin\xpserver.exe -SLOCALHOST_XP -C [?]
    .
    =============== File Associations ===============
    .
    .exe=ah
    .
    =============== Created Last 30 ================
    .
    2011-12-15 15:36:15 56200 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{ffcd6597-3ac0-49cc-ab98-91d50a1e25a4}\offreg.dll
    2011-12-12 23:17:39 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2011-12-10 17:35:05 6823496 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{ffcd6597-3ac0-49cc-ab98-91d50a1e25a4}\mpengine.dll
    2011-12-08 00:08:26 -------- d-----w- c:\documents and settings\ranit_banerjee\local settings\application data\ESET
    2011-12-08 00:08:26 -------- d-----w- c:\documents and settings\ranit_banerjee\application data\ESET
    .
    ==================== Find3M ====================
    .
    2011-11-15 22:29:56 222080 ------w- c:\windows\system32\MpSigStub.exe
    2011-09-24 20:42:07 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    .
    ============= FINISH: 7:46:30.01 ===============
     
  6. rendezvous

    rendezvous Thread Starter

    Joined:
    Sep 28, 2008
    Messages:
    55
    Attach log

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-08-26.01)
    .
    Microsoft Windows XP Professional
    Boot Device: \Device\HarddiskVolume1
    Install Date: 9/6/2007 4:51:14 AM
    System Uptime: 12/15/2011 7:35:38 AM (0 hours ago)
    .
    Motherboard: LENOVO | | 7664RYU
    Processor: Intel Pentium III Xeon processor | None | 2094/200mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 86 GiB total, 6.212 GiB free.
    E: is Removable
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {4D36E96B-E325-11CE-BFC1-08002BE10318}
    Description: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
    Device ID: ACPI\PNP0303\4&374CCB25&0
    Manufacturer: (Standard keyboards)
    Name: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
    PNP Device ID: ACPI\PNP0303\4&374CCB25&0
    Service: i8042prt
    .
    Class GUID: {4D36E96F-E325-11CE-BFC1-08002BE10318}
    Description: ThinkPad UltraNav Pointing Device
    Device ID: ACPI\IBM0057\4&374CCB25&0
    Manufacturer: Lenovo
    Name: ThinkPad UltraNav Pointing Device
    PNP Device ID: ACPI\IBM0057\4&374CCB25&0
    Service: i8042prt
    .
    Class GUID: {4D36E965-E325-11CE-BFC1-08002BE10318}
    Description: CD-ROM Drive
    Device ID: IDE\CDROMOPTIARC_DVD_RW_AD-7910A_________________1.D1____\5&1609414&0&0.0.0
    Manufacturer: (Standard CD-ROM drives)
    Name: Optiarc DVD RW AD-7910A
    PNP Device ID: IDE\CDROMOPTIARC_DVD_RW_AD-7910A_________________1.D1____\5&1609414&0&0.0.0
    Service: cdrom
    .
    ==== System Restore Points ===================
    .
    RP225: 10/25/2011 10:21:46 PM - Software Distribution Service 3.0
    RP226: 10/26/2011 12:11:50 PM - Software Distribution Service 3.0
    RP227: 10/27/2011 11:55:34 AM - Software Distribution Service 3.0
    RP228: 10/27/2011 7:05:01 PM - Software Distribution Service 3.0
    RP229: 10/28/2011 12:08:29 PM - Software Distribution Service 3.0
    RP230: 10/29/2011 12:17:23 PM - Software Distribution Service 3.0
    RP231: 10/30/2011 12:22:55 PM - Software Distribution Service 3.0
    RP232: 10/30/2011 2:41:40 PM - Software Distribution Service 3.0
    RP233: 10/31/2011 11:48:56 AM - Software Distribution Service 3.0
    RP234: 11/1/2011 12:03:42 PM - System Checkpoint
    RP235: 11/1/2011 12:07:21 PM - Software Distribution Service 3.0
    RP236: 11/2/2011 11:50:35 AM - Software Distribution Service 3.0
    RP237: 11/3/2011 11:47:39 AM - Software Distribution Service 3.0
    RP238: 11/4/2011 11:57:29 AM - Software Distribution Service 3.0
    RP239: 11/5/2011 7:55:29 PM - Software Distribution Service 3.0
    RP240: 11/6/2011 11:36:52 AM - Software Distribution Service 3.0
    RP241: 11/7/2011 12:08:27 PM - Software Distribution Service 3.0
    RP242: 11/7/2011 10:50:29 PM - Installed Software602 Print2PDF
    RP243: 11/7/2011 10:51:34 PM - Printer Driver Print2PDF 9 Installed
    RP244: 11/7/2011 10:51:51 PM - Printer Driver Print2PDF 9 Installed
    RP245: 11/8/2011 11:35:30 AM - Software Distribution Service 3.0
    RP246: 11/9/2011 11:38:10 AM - Software Distribution Service 3.0
    RP247: 11/9/2011 5:00:59 PM - Software Distribution Service 3.0
    RP248: 11/10/2011 11:49:15 AM - Software Distribution Service 3.0
    RP249: 11/11/2011 11:36:04 AM - Software Distribution Service 3.0
    RP250: 11/12/2011 12:07:07 PM - Software Distribution Service 3.0
    RP251: 11/12/2011 5:57:30 PM - Software Distribution Service 3.0
    RP252: 11/13/2011 11:39:20 AM - Software Distribution Service 3.0
    RP253: 11/14/2011 12:02:57 PM - Software Distribution Service 3.0
    RP254: 11/15/2011 12:36:03 PM - Software Distribution Service 3.0
    RP255: 11/16/2011 7:40:14 PM - Software Distribution Service 3.0
    RP256: 11/17/2011 11:37:58 AM - Software Distribution Service 3.0
    RP257: 11/18/2011 2:12:36 PM - Software Distribution Service 3.0
    RP258: 11/19/2011 12:17:23 PM - Software Distribution Service 3.0
    RP259: 11/20/2011 11:57:08 AM - Software Distribution Service 3.0
    RP260: 11/20/2011 1:37:25 PM - Software Distribution Service 3.0
    RP261: 11/20/2011 6:19:03 PM - Software Distribution Service 3.0
    RP262: 11/21/2011 12:20:32 PM - Software Distribution Service 3.0
    RP263: 11/22/2011 11:52:37 AM - Software Distribution Service 3.0
    RP264: 11/23/2011 12:14:46 PM - Software Distribution Service 3.0
    RP265: 11/23/2011 12:25:53 PM - Software Distribution Service 3.0
    RP266: 11/23/2011 11:55:02 PM - Software Distribution Service 3.0
    RP267: 11/24/2011 11:53:46 AM - Software Distribution Service 3.0
    RP268: 11/24/2011 10:50:00 PM - Removed Sophos AutoUpdate
    RP269: 11/24/2011 10:50:52 PM - Installed Sophos AutoUpdate
    RP270: 11/25/2011 12:04:49 PM - Software Distribution Service 3.0
    RP271: 11/26/2011 11:33:17 AM - Software Distribution Service 3.0
    RP272: 11/27/2011 12:07:40 PM - Software Distribution Service 3.0
    RP273: 11/27/2011 12:33:38 PM - Software Distribution Service 3.0
    RP274: 11/28/2011 12:27:21 PM - Software Distribution Service 3.0
    RP275: 11/29/2011 12:24:42 PM - Software Distribution Service 3.0
    RP276: 11/30/2011 12:15:58 PM - Software Distribution Service 3.0
    RP277: 12/1/2011 12:31:16 PM - Software Distribution Service 3.0
    RP278: 12/2/2011 12:31:52 PM - Software Distribution Service 3.0
    RP279: 12/3/2011 12:13:39 PM - Software Distribution Service 3.0
    RP280: 12/4/2011 12:56:05 PM - System Checkpoint
    RP281: 12/6/2011 2:56:14 PM - System Checkpoint
    RP282: 12/7/2011 11:13:07 PM - System Checkpoint
    RP283: 12/9/2011 8:18:57 PM - System Checkpoint
    RP284: 12/10/2011 10:23:58 PM - System Checkpoint
    RP285: 12/11/2011 11:24:38 PM - System Checkpoint
    RP286: 12/13/2011 10:38:28 AM - System Checkpoint
    RP287: 12/14/2011 11:47:14 AM - System Checkpoint
    .
    ==== Installed Programs ======================
    .
    .
    2007 Microsoft Office system
    7-Zip 4.57
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Reader 8.1.2
    Asterisk Password Decryptor
    Bing Bar
    Bing Maps 3D
    Bonjour
    Calypso Main Entry Application
    Citrix XenApp Plugin for Hosted Apps
    Comcast Desktop Software (v1.2.0.9)
    Cool Record Edit Pro v7.9.3
    Coupon Printer for Windows
    Dell Laser MFP 1815 Software Uninstall
    Dell Printer Software Uninstall
    Diskeeper Lite
    Driver Magician 3.61
    ESET Online Scanner v3
    ESET Smart Security
    FreeOnlineRadioPlayerRecorder Toolbar
    Google Talk (remove only)
    Google Talk Plugin
    High Definition Audio Driver Package - KB888111
    HiJackThis
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Hotfix for Windows XP (KB2443685)
    Hotfix for Windows XP (KB952287)
    Hotfix for Windows XP (KB954550-v5)
    Hotfix for Windows XP (KB961118)
    Hotfix for Windows XP (KB970653-v3)
    Hotfix for Windows XP (KB981793)
    Integrated Camera
    Intel(R) PRO Network Connections Drivers
    Intel(R) PROSet/Wireless Software
    InterVideo Register Manager
    InterVideo WinDVD
    InterVideo WinDVD Creator 3
    Java Auto Updater
    Java DB 10.5.3.0
    Java(TM) 6 Update 26
    Java(TM) SE Development Kit 6
    Java(TM) SE Development Kit 6 Update 21
    KRyLack Archive Password Recovery
    magicJack
    Malwarebytes' Anti-Malware version 1.51.2.1300
    McAfee Security Scan Plus
    mCore
    mDriver
    MetaFrame Presentation Server Web Client for Win32
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1 Security Update (KB979906)
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 3.0 Service Pack 2
    Microsoft .NET Framework 3.5 SP1
    Microsoft Antimalware
    Microsoft Application Error Reporting
    Microsoft Internationalized Domain Names Mitigation APIs
    Microsoft National Language Support Downlevel APIs
    Microsoft Office Access MUI (English) 2007
    Microsoft Office Access Setup Metadata MUI (English) 2007
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office Outlook MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office Professional Hybrid 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Publisher MUI (English) 2007
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Security Client
    Microsoft Security Essentials
    Microsoft Silverlight
    Microsoft Software Update for Web Folders (English) 12
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    mMHouse
    Mozilla Firefox 8.0 (x86 en-US)
    mPfMgr
    mProSafe
    MSXML 4.0 SP2 (KB927978)
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    MSXML 6 Service Pack 2 (KB973686)
    mWlsSafe
    Notepad++
    NVIDIA Drivers
    PDFZilla V1.2.9
    Perfect Uninstaller v6.3.3.9
    Python 2.3.3
    RealPlayer
    RealUpgrade 1.0
    RecordNow Audio
    RecordNow Copy
    RecordNow Data
    Remove Multimedia Center
    Rescue and Recovery
    RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
    Security Update for Step By Step Interactive Training (KB898458)
    Security Update for Step By Step Interactive Training (KB923723)
    Security Update for Windows Internet Explorer 7 (KB2544521)
    Security Update for Windows Internet Explorer 7 (KB2559049)
    Security Update for Windows Internet Explorer 7 (KB929969)
    Security Update for Windows Internet Explorer 7 (KB938127-v2)
    Security Update for Windows Internet Explorer 7 (KB938127)
    Security Update for Windows Internet Explorer 7 (KB956390)
    Security Update for Windows Internet Explorer 7 (KB958215)
    Security Update for Windows Internet Explorer 7 (KB960714)
    Security Update for Windows Internet Explorer 7 (KB969897)
    Security Update for Windows Internet Explorer 7 (KB972260)
    Security Update for Windows Internet Explorer 7 (KB982381)
    Security Update for Windows Internet Explorer 8 (KB2559049)
    Security Update for Windows Internet Explorer 8 (KB982381)
    Security Update for Windows Media Player (KB2378111)
    Security Update for Windows Media Player (KB911564)
    Security Update for Windows Media Player (KB952069)
    Security Update for Windows Media Player (KB954155)
    Security Update for Windows Media Player (KB968816)
    Security Update for Windows Media Player (KB973540)
    Security Update for Windows Media Player (KB975558)
    Security Update for Windows Media Player (KB978695)
    Security Update for Windows Media Player 10 (KB917734)
    Security Update for Windows Media Player 10 (KB936782)
    Security Update for Windows XP (KB2079403)
    Security Update for Windows XP (KB2115168)
    Security Update for Windows XP (KB2229593)
    Security Update for Windows XP (KB2296011)
    Security Update for Windows XP (KB2347290)
    Security Update for Windows XP (KB2360937)
    Security Update for Windows XP (KB2387149)
    Security Update for Windows XP (KB2393802)
    Security Update for Windows XP (KB2412687)
    Security Update for Windows XP (KB2419632)
    Security Update for Windows XP (KB2423089)
    Security Update for Windows XP (KB2440591)
    Security Update for Windows XP (KB2443105)
    Security Update for Windows XP (KB2476490)
    Security Update for Windows XP (KB2478960)
    Security Update for Windows XP (KB2478971)
    Security Update for Windows XP (KB2479943)
    Security Update for Windows XP (KB2481109)
    Security Update for Windows XP (KB2483185)
    Security Update for Windows XP (KB2485663)
    Security Update for Windows XP (KB2503665)
    Security Update for Windows XP (KB2506212)
    Security Update for Windows XP (KB2507618)
    Security Update for Windows XP (KB2507938)
    Security Update for Windows XP (KB2508272)
    Security Update for Windows XP (KB2508429)
    Security Update for Windows XP (KB2509553)
    Security Update for Windows XP (KB2510581)
    Security Update for Windows XP (KB2524375)
    Security Update for Windows XP (KB2535512)
    Security Update for Windows XP (KB2536276-v2)
    Security Update for Windows XP (KB2544893)
    Security Update for Windows XP (KB2555917)
    Security Update for Windows XP (KB2562937)
    Security Update for Windows XP (KB2566454)
    Security Update for Windows XP (KB2567680)
    Security Update for Windows XP (KB2570222)
    Security Update for Windows XP (KB923561)
    Security Update for Windows XP (KB923689)
    Security Update for Windows XP (KB938464)
    Security Update for Windows XP (KB941569)
    Security Update for Windows XP (KB946648)
    Security Update for Windows XP (KB950762)
    Security Update for Windows XP (KB950974)
    Security Update for Windows XP (KB951066)
    Security Update for Windows XP (KB951376-v2)
    Security Update for Windows XP (KB951698)
    Security Update for Windows XP (KB951748)
    Security Update for Windows XP (KB952004)
    Security Update for Windows XP (KB952954)
    Security Update for Windows XP (KB954211)
    Security Update for Windows XP (KB954600)
    Security Update for Windows XP (KB955069)
    Security Update for Windows XP (KB956391)
    Security Update for Windows XP (KB956572)
    Security Update for Windows XP (KB956744)
    Security Update for Windows XP (KB956802)
    Security Update for Windows XP (KB956803)
    Security Update for Windows XP (KB956841)
    Security Update for Windows XP (KB956844)
    Security Update for Windows XP (KB957095)
    Security Update for Windows XP (KB957097)
    Security Update for Windows XP (KB958644)
    Security Update for Windows XP (KB958687)
    Security Update for Windows XP (KB958869)
    Security Update for Windows XP (KB959426)
    Security Update for Windows XP (KB960225)
    Security Update for Windows XP (KB960803)
    Security Update for Windows XP (KB960859)
    Security Update for Windows XP (KB961371)
    Security Update for Windows XP (KB961373)
    Security Update for Windows XP (KB961501)
    Security Update for Windows XP (KB968537)
    Security Update for Windows XP (KB969059)
    Security Update for Windows XP (KB969898)
    Security Update for Windows XP (KB970238)
    Security Update for Windows XP (KB970430)
    Security Update for Windows XP (KB971468)
    Security Update for Windows XP (KB971557)
    Security Update for Windows XP (KB971633)
    Security Update for Windows XP (KB971657)
    Security Update for Windows XP (KB971961)
    Security Update for Windows XP (KB972270)
    Security Update for Windows XP (KB973346)
    Security Update for Windows XP (KB973354)
    Security Update for Windows XP (KB973507)
    Security Update for Windows XP (KB973869)
    Security Update for Windows XP (KB973904)
    Security Update for Windows XP (KB974112)
    Security Update for Windows XP (KB974318)
    Security Update for Windows XP (KB974392)
    Security Update for Windows XP (KB974571)
    Security Update for Windows XP (KB975025)
    Security Update for Windows XP (KB975467)
    Security Update for Windows XP (KB975560)
    Security Update for Windows XP (KB975561)
    Security Update for Windows XP (KB975562)
    Security Update for Windows XP (KB975713)
    Security Update for Windows XP (KB977816)
    Security Update for Windows XP (KB977914)
    Security Update for Windows XP (KB978037)
    Security Update for Windows XP (KB978338)
    Security Update for Windows XP (KB978542)
    Security Update for Windows XP (KB978601)
    Security Update for Windows XP (KB978706)
    Security Update for Windows XP (KB979309)
    Security Update for Windows XP (KB979482)
    Security Update for Windows XP (KB979559)
    Security Update for Windows XP (KB979683)
    Security Update for Windows XP (KB979687)
    Security Update for Windows XP (KB980195)
    Security Update for Windows XP (KB980218)
    Security Update for Windows XP (KB980232)
    Security Update for Windows XP (KB980436)
    Security Update for Windows XP (KB981322)
    Security Update for Windows XP (KB981349)
    Security Update for Windows XP (KB981997)
    Security Update for Windows XP (KB982132)
    Security Update for Windows XP (KB982665)
    Skype Click to Call
    Skype™ 5.5
    SnagIt 8
    Software602 Print2PDF
    Sonic DLA
    Sonic Express Labeler
    Sonic Icons for Lenovo
    Sonic Update Manager
    SonicWALL SSL-VPN NetExtender
    Sophos AutoUpdate
    SoundMAX
    SUPERAntiSpyware Free Edition
    Sybase Adaptive Server Enterprise Suite
    System Update
    Tcl/Tk 8.3.2 for Windows
    ThinkPad Bluetooth with Enhanced Data Rate Software
    ThinkPad EasyEject Utility
    ThinkPad Hotkey Features Setup
    ThinkPad Modem
    ThinkPad PC Card Power Policy
    ThinkPad Power Management Driver
    ThinkPad Power Manager
    ThinkPad UltraNav Driver
    ThinkPad UltraNav Utility
    ThinkVantage Access Connections
    ThinkVantage Active Protection System
    ThinkVantage Fingerprint Software 5.6
    ThinkVantage Productivity Center
    ThinkVantage Technologies Welcome Message
    Uninstall Dell PC Fax
    Unlocker 1.9.1
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Windows Internet Explorer 8 (KB2447568)
    Update for Windows XP (KB2345886)
    Update for Windows XP (KB2467659)
    Update for Windows XP (KB2541763)
    Update for Windows XP (KB951072-v2)
    Update for Windows XP (KB951978)
    Update for Windows XP (KB955759)
    Update for Windows XP (KB955839)
    Update for Windows XP (KB967715)
    Update for Windows XP (KB968389)
    Update for Windows XP (KB971029)
    Update for Windows XP (KB971737)
    Update for Windows XP (KB973687)
    Update for Windows XP (KB973815)
    Veoh Web Player Beta
    Visokio Omniscope
    VNC Free Edition 4.1.3
    Wallpapers
    WebEx
    WebFldrs XP
    WinCvs 1.3
    Windows Genuine Advantage Notifications (KB905474)
    Windows Genuine Advantage Validation Tool (KB892130)
    Windows Imaging Component
    Windows Internet Explorer 7
    Windows Internet Explorer 8
    Windows Live Toolbar
    Windows Media Connect
    Windows Media Format Runtime
    Windows Media Player 10
    Windows XP Service Pack 3
    XP Themes
    Yahoo! Messenger
    .
    ==== Event Viewer Messages From Past Week ========
    .
    12/9/2011 9:57:53 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/9/2011 8:08:18 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Cdrom Imapi
    12/9/2011 8:08:18 AM, error: Service Control Manager [7024] - The OracleDBConsoleCALYPSO service terminated with service-specific error 2 (0x2).
    12/9/2011 8:08:18 AM, error: Service Control Manager [7023] - The NEC USB Device Service service terminated with the following error: The specified module could not be found.
    12/9/2011 8:08:18 AM, error: Service Control Manager [7023] - The Diskeeper service terminated with the following error: The service has not been started.
    12/9/2011 8:08:18 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Sybase SQLServer _ LOCALHOST service to connect.
    12/9/2011 8:08:18 AM, error: Service Control Manager [7000] - The Sybase SQLServer _ LOCALHOST service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
    12/9/2011 8:08:18 AM, error: Service Control Manager [7000] - The rimsptsk service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
    12/9/2011 8:08:18 AM, error: Service Control Manager [7000] - The rimmptsk service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
    12/9/2011 8:08:18 AM, error: Service Control Manager [7000] - The Ricoh xD-Picture Card Driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
    12/9/2011 6:24:12 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the SUService service.
    12/9/2011 6:01:36 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.
    12/8/2011 9:56:00 AM, error: Schedule [7901] - The At68.job command failed to start due to the following error: %%2147942402
    12/8/2011 9:56:00 AM, error: Schedule [7901] - The At20.job command failed to start due to the following error: %%2147942402
    12/8/2011 9:27:43 AM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the Dnscache service.
    12/8/2011 8:08:49 PM, error: Dhcp [1002] - The IP address lease 10.1.2.115 for the Network Card with network address 002186589B45 has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message).
    12/8/2011 3:56:04 AM, error: Schedule [7901] - The At8.job command failed to start due to the following error: %%2147942402
    12/8/2011 3:56:03 AM, error: Schedule [7901] - The At7.job command failed to start due to the following error: %%2147942402
    12/8/2011 12:56:00 PM, error: Schedule [7901] - The At26.job command failed to start due to the following error: %%2147942402
    12/8/2011 10:15:37 AM, error: PSched [14103] - QoS [Adapter {2E566090-38E4-4380-88C5-FA23407F62C2}]: The netcard driver failed the query for OID_GEN_LINK_SPEED.
    12/8/2011 1:56:02 AM, error: Schedule [7901] - The At4.job command failed to start due to the following error: %%2147942402
    12/8/2011 1:56:02 AM, error: Schedule [7901] - The At3.job command failed to start due to the following error: %%2147942402
    12/15/2011 7:46:24 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/14/2011 7:53:40 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/14/2011 12:20:47 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/14/2011 10:24:57 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/13/2011 8:19:00 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/13/2011 7:49:16 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/13/2011 12:26:13 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/13/2011 12:14:23 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/13/2011 11:37:37 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/13/2011 10:55:14 AM, error: Dhcp [1002] - The IP address lease 192.168.0.100 for the Network Card with network address 002186589B45 has been denied by the DHCP server 10.1.0.233 (The DHCP Server sent a DHCPNACK message).
    12/13/2011 10:42:09 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/12/2011 12:00:15 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/12/2011 11:31:59 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/12/2011 11:11:59 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/12/2011 10:56:44 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/11/2011 8:36:05 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/11/2011 4:02:42 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/11/2011 11:01:03 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
    12/11/2011 10:52:16 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the System Update service to connect.
    12/11/2011 10:52:16 AM, error: Service Control Manager [7000] - The System Update service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
    12/10/2011 9:12:57 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Cdrom i8042prt Imapi
    12/10/2011 9:05:33 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
    12/10/2011 12:31:44 PM, error: Service Control Manager [7024] - The Sybase SQLServer _ LOCALHOST service terminated with service-specific error 13 (0xD).
    .
    ==== End Of File ===========================
     
  7. Larusso

    Larusso

    Joined:
    Aug 9, 2011
    Messages:
    808
    my name is Daniel and I will be assisting you with your Malware related problems.

    Before we move on, please read the following points carefully.
    • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
    • Perform everything in the correct order. Sometimes one step requires the previous one.
    • If you have any problems while you are following my instructions, Stop there and tell me the exact nature of your problem.
    • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
    • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
    • If I don't hear from you within 3 days from this initial or any subsequent post, I will have to unsubscribe from this thread and move on to assist someone else.
    • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
    • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.


    Please download Gmer from here and save it to your Desktop.
    • Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent.
    • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.


      [​IMG]
      Click the image to enlarge it


    • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
      • Sections
      • IAT/EAT
      • Drives/Partition other than Systemdrive (typically C:\)
      • Show All (don't miss this one)
    • Then click the Scan button & wait for it to finish.
    • Once done click on the [Save..] button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post.
    • Save it where you can easily find it, such as your desktop

    **Caution**
    Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries



    Please post in your next reply
    ark.txt
     
  8. Larusso

    Larusso

    Joined:
    Aug 9, 2011
    Messages:
    808
    Due a lack of response,

    I will now unsubscribe this thread and do not get any notifications about now replies
     
  9. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1030371

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice