XP Home Security Malware attack- Multiple problems

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

rendezvous

Thread Starter
Joined
Sep 28, 2008
Messages
55
Hi,

It seems my machine is heavily infected with malware (trojans, rootkits probably)

The symptoms are as follows-

1) I cannot open any program from the Start menu like firefox, Antivirus, MS Office, MSPaint, regedit It keeps prompting the Open with Dialog Box and when I click ok it downloads a local exe file for the program in question say for example firefox.exe.

2) I cannot open anything in the Control Panel, say Display Option etc. It says C:\Windows\System32\rundll.exe- Application Not Found

3) I cannot update Antivirus (Miscrosoft Security Essentials, it fails to connect to the internet though I can connect on IE

4) Web addresses get redirected.

5) Cannot run GMER.exe

****************


DDS log
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26
Run by ranit_banerjee at 15:56:27 on 2011-12-05
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3070.1362 [GMT -8:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
c:\tools\oracle\11gr1\Bin\extjob.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\BingBar\SeaPort.EXE
C:\Program Files\SonicWALL\SSL-VPN\NetExtender\NEService.exe
C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\WINDOWS\System32\TPHDEXLG.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
C:\Program Files\RealVNC\VNC4\WinVNC4.exe
C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
c:\program files\lenovo\system update\suservice.exe
C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\Explorer.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft\BingBar\BingBar.exe
C:\Program Files\Microsoft\BingBar\BingApp.exe
C:\WINDOWS\system32\taskmgr.exe
c:\PROGRA~1\MI239C~1\msseces.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\MICROS~2\Office12\OUTLOOK.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Citrix\ICA Client\wfcrun32.exe
C:\PROGRA~1\Citrix\ICACLI~1\WFICA32.EXE
C:\Documents and Settings\ranit_banerjee\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
.
============== Pseudo HJT Report ===============
.
uWindow Title = Internet Explorer, optimized for Bing and MSN
uInternet Settings,ProxyServer = http=localhost:8080
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: H - No File
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "c:\program files\microsoft\bingbar\BingExt.dll"
BHO: FreeOnlineRadioPlayerRecorder Toolbar: {f999a48b-1950-4d81-9971-79018f807b4b} - c:\program files\freeonlineradioplayerrecorder\prxtbFre2.dll
TB: Windows Live Toolbar: {bdad1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\windows live toolbar\msntb.dll
TB: SnagIt: {8ff5e183-abde-46eb-b09e-d2aab95cabe3} - c:\program files\techsmith\snagit 8\SnagItIEAddin.dll
TB: FreeOnlineRadioPlayerRecorder Toolbar: {f999a48b-1950-4d81-9971-79018f807b4b} - c:\program files\freeonlineradioplayerrecorder\prxtbFre2.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "c:\program files\microsoft\bingbar\BingExt.dll"
TB: {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
EB: FreeOnlineRadioPlayerRecorder Findbar: {3f5276e6-b514-456f-b356-0e00d30d2392} - c:\program files\freeonlineradioplayerrecorder\prxtbFree.dll
uRun: [Desktop Software] "c:\program files\common files\supportsoft\bin\bcont.exe" /ini "c:\program files\comcastui\desktop software\uinstaller.ini" /fromrun /starthidden
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\ranit_banerjee\local settings\application data\google\update\GoogleUpdate.exe" /c
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [nwiz] nwiz.exe /install
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [Print2PDF Print Monitor] "c:\giveaway of the day softwareeeeeeees\Print2PDF.exe" /server
mRun: [Sophos AutoUpdate Monitor] c:\program files\sophos\autoupdate\almon.exe
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
IE: &Windows Live Search - c:\program files\windows live toolbar\msntb.dll/search.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\thinkpad\bluetooth software\btsendto_ie_ctx.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
LSP: mswsock.dll
Trusted Zone: calypso.com
Trusted Zone: postoffice.net\calypso.sp
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1189027808234
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} - hxxp://www.crucial.com/controls/cpcScanner.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - hxxps://calypso.webex.com/client/T26L/webex/ieatgpc.cab
TCP: DhcpNameServer = 10.1.0.233
TCP: Interfaces\{CE0C9C3D-4590-45E3-8DF1-96B17F01DF30} : DhcpNameServer = 10.1.0.233
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: ACNotify - ACNotify.dll
Notify: psfus - c:\windows\system32\psqlpwd.dll
Notify: qoMeEurr - qoMeEurr.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\ranit_banerjee\application data\mozilla\firefox\profiles\6zmnk594.default\
FF - prefs.js: network.proxy.type - 0
FF - component: c:\program files\mozilla firefox\extensions\{ab2ce124-6272-4b12-94a9-7303c7397bd1}\components\SkypeFfComponent.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npatgpc.dll
FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\ranit_banerjee\local settings\application data\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\progra~1\mozill~1\plugins\npatgpc.dll
FF - plugin: c:\progra~1\mozill~1\plugins\NPcol305.dll
FF - plugin: c:\progra~1\mozill~1\plugins\npCouponPrinter.dll
FF - plugin: c:\progra~1\mozill~1\plugins\npdeployJava1.dll
FF - plugin: c:\progra~1\mozill~1\plugins\npicaN.dll
FF - plugin: c:\progra~1\mozill~1\plugins\npMozCouponPrinter.dll
FF - plugin: c:\progra~1\mozill~1\plugins\npNELaunch.dll
FF - plugin: c:\progra~1\mozill~1\plugins\NPOFF12.DLL
FF - plugin: c:\progra~1\mozill~1\plugins\nppdf32.dll
FF - plugin: c:\progra~1\mozill~1\plugins\nppl3260.dll
FF - plugin: c:\progra~1\mozill~1\plugins\nprjplug.dll
FF - plugin: c:\progra~1\mozill~1\plugins\nprpjplug.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60310.0\npctrlui.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\NPVeohTVPlugin.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\npWebPlayerVideoPluginATL.dll
FF - plugin: c:\program files\virtual earth 3d\npVE3D.dll
.
============= SERVICES / DRIVERS ===============
.
R0 TPDIGIMN;TPDIGIMN;c:\windows\system32\drivers\ApsHM86.sys [2007-3-2 19760]
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 165648]
R1 MpKsl298ba62e;MpKsl298ba62e;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsl298ba62e.sys [2011-12-4 29904]
R1 MpKsl7281eef8;MpKsl7281eef8;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsl7281eef8.sys [2011-12-4 29904]
R1 MpKsld82e8c84;MpKsld82e8c84;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsld82e8c84.sys [2011-12-5 29904]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2008-12-4 8944]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2008-12-4 55024]
R2 602XML Updater;602Updater;c:\program files\common files\soft602\602updsvc\602updsvc.exe [2011-11-7 73728]
R2 OracleJobSchedulerCALYPSO;OracleJobSchedulerCALYPSO;c:\tools\oracle\11gr1\bin\extjob.exe calypso --> c:\tools\oracle\11gr1\bin\extjob.exe CALYPSO [?]
R2 smihlp;SMI Helper Driver (smihlp);c:\program files\common files\thinkvantage fingerprint software\drivers\smihlp.sys [2007-3-14 11152]
R2 Sophos AutoUpdate Service;Sophos AutoUpdate Service;c:\program files\sophos\autoupdate\ALsvc.exe [2010-9-21 230640]
R2 TVT Backup Protection Service;TVT Backup Protection Service;c:\program files\lenovo\rescue and recovery\rrpservice.exe [2007-2-8 569344]
R3 SSLDrv;SSL-VPN NetExtender Adapter;c:\windows\system32\drivers\SSLDrv.sys [2006-8-28 20504]
R3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\drivers\tvti2c.sys [2006-9-13 35264]
S1 MpKsl07422538;MpKsl07422538;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\mpksl07422538.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\MpKsl07422538.sys [?]
S1 MpKsl0991b8e2;MpKsl0991b8e2;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3fbbcc81-4f79-4c9c-b403-1a9ae00eb529}\mpksl0991b8e2.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3fbbcc81-4f79-4c9c-b403-1a9ae00eb529}\MpKsl0991b8e2.sys [?]
S1 MpKsl0eb09268;MpKsl0eb09268;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\mpksl0eb09268.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\MpKsl0eb09268.sys [?]
S1 MpKsl1859233d;MpKsl1859233d;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\mpksl1859233d.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\MpKsl1859233d.sys [?]
S1 MpKsl2b143e5b;MpKsl2b143e5b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\mpksl2b143e5b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\MpKsl2b143e5b.sys [?]
S1 MpKsl2c588f17;MpKsl2c588f17;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{74e9608d-caf1-4a96-91c8-638a6073aa08}\mpksl2c588f17.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{74e9608d-caf1-4a96-91c8-638a6073aa08}\MpKsl2c588f17.sys [?]
S1 MpKsl3c41bb6f;MpKsl3c41bb6f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4b43d7cd-bdcd-417f-ae0f-1e12c0eb593c}\mpksl3c41bb6f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4b43d7cd-bdcd-417f-ae0f-1e12c0eb593c}\MpKsl3c41bb6f.sys [?]
S1 MpKsl413ab434;MpKsl413ab434;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{578a1a9e-1e5c-4da9-b195-638c110f107a}\mpksl413ab434.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{578a1a9e-1e5c-4da9-b195-638c110f107a}\MpKsl413ab434.sys [?]
S1 MpKsl54d2a6a9;MpKsl54d2a6a9;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8f57cddc-229e-49ed-90b0-1040c5fce374}\mpksl54d2a6a9.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8f57cddc-229e-49ed-90b0-1040c5fce374}\MpKsl54d2a6a9.sys [?]
S1 MpKsl56caaf10;MpKsl56caaf10;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{860e9b63-8aac-4574-81c8-168c3be59257}\mpksl56caaf10.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{860e9b63-8aac-4574-81c8-168c3be59257}\MpKsl56caaf10.sys [?]
S1 MpKsl5c34ef82;MpKsl5c34ef82;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4840bf7b-8cd9-4f2e-8ab6-d71c41d6be7b}\mpksl5c34ef82.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4840bf7b-8cd9-4f2e-8ab6-d71c41d6be7b}\MpKsl5c34ef82.sys [?]
S1 MpKsl6f1b5e12;MpKsl6f1b5e12;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\mpksl6f1b5e12.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\MpKsl6f1b5e12.sys [?]
S1 MpKsla16a762f;MpKsla16a762f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{646399d4-f0d5-4a6a-a16d-3b1c81267749}\mpksla16a762f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{646399d4-f0d5-4a6a-a16d-3b1c81267749}\MpKsla16a762f.sys [?]
S1 MpKsla40ea13b;MpKsla40ea13b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c74de639-bb9e-460a-89cf-5ebb93421b9f}\mpksla40ea13b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c74de639-bb9e-460a-89cf-5ebb93421b9f}\MpKsla40ea13b.sys [?]
S1 MpKslc6480f16;MpKslc6480f16;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{dab20c15-1490-499b-9203-0679cfec871d}\mpkslc6480f16.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{dab20c15-1490-499b-9203-0679cfec871d}\MpKslc6480f16.sys [?]
S1 MpKslcec671d8;MpKslcec671d8;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{12ff1473-7950-46aa-8b93-ba15cbdf1871}\mpkslcec671d8.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{12ff1473-7950-46aa-8b93-ba15cbdf1871}\MpKslcec671d8.sys [?]
S1 MpKsle4d04fe3;MpKsle4d04fe3;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\mpksle4d04fe3.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\MpKsle4d04fe3.sys [?]
S1 MpKsled9f6874;MpKsled9f6874;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{89961ca4-67d5-48be-80ec-f214682e2818}\mpksled9f6874.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{89961ca4-67d5-48be-80ec-f214682e2818}\MpKsled9f6874.sys [?]
S1 MpKslfc5b8e7f;MpKslfc5b8e7f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{010fc79e-7fac-42dc-9f6b-9904b7ac4371}\mpkslfc5b8e7f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{010fc79e-7fac-42dc-9f6b-9904b7ac4371}\MpKslfc5b8e7f.sys [?]
S2 necusb;NEC USB Device Service;c:\windows\system32\svchost.exe -k necusb3 [2006-4-29 14336]
S2 OracleDBConsoleCALYPSO;OracleDBConsoleCALYPSO;c:\tools\oracle\11gr1\bin\nmesrvc.exe [2008-5-15 25600]
S2 SYBSQL_LOCALHOST;Sybase SQLServer _ LOCALHOST;c:\tools\sybase15\ase-15_0\bin\sqlsrvr.exe -slocalhost -c --> c:\tools\sybase15\ase-15_0\bin\sqlsrvr.exe -sLOCALHOST -C [?]
S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-5-16 191752]
S3 LenovoRd;LenovoRd;c:\windows\system32\drivers\LenovoRd.sys [2007-8-11 81280]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
S3 OracleOraDb11g_home1TNSListener;OracleOraDb11g_home1TNSListener;c:\tools\oracle\11gr1\bin\tnslsnr --> c:\tools\oracle\11gr1\bin\TNSLSNR [?]
S3 OracleServiceCALYPSO;OracleServiceCALYPSO;c:\tools\oracle\11gr1\bin\oracle.exe calypso --> c:\tools\oracle\11gr1\bin\ORACLE.EXE CALYPSO [?]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2008-12-4 7408]
S3 SybaseUAService;Sybase Unified Agent;c:\tools\sybase15\uaf-2_0\utility\ntautostart\release\uaservice.exe [2007-9-5 49152]
S3 SYBBCK_LOCALHOST_BS;Sybase BCKServer _ LOCALHOST_BS;c:\tools\sybase15\ase-15_0\bin\bcksrvr.exe -slocalhost_bs -r --> c:\tools\sybase15\ase-15_0\bin\bcksrvr.exe -SLOCALHOST_BS -R [?]
S3 SYBXPS_LOCALHOST_XP;Sybase XPServer _ LOCALHOST_XP;c:\tools\sybase15\ase-15_0\bin\xpserver.exe -slocalhost_xp -c --> c:\tools\sybase15\ase-15_0\bin\xpserver.exe -SLOCALHOST_XP -C [?]
.
=============== File Associations ===============
.
.exe=ah
.
=============== Created Last 30 ================
.
2011-12-05 16:12:03 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsld82e8c84.sys
2011-12-05 02:41:34 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsl298ba62e.sys
2011-12-04 17:52:20 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsl7281eef8.sys
2011-12-04 17:52:17 56200 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\offreg.dll
2011-12-03 20:13:40 6823496 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\mpengine.dll
2011-11-14 20:38:04 -------- d-----w- c:\program files\ESET
2011-11-14 08:40:15 -------- d-----w- c:\documents and settings\ranit_banerjee\application data\FddWWK8fRZ9hXwU
2011-11-14 08:40:08 -------- d-----w- c:\documents and settings\ranit_banerjee\application data\7C459
2011-11-08 06:51:20 6536192 ----a-w- c:\windows\system32\cdintf450_x64.dll
2011-11-08 06:50:54 1262216 ----a-w- c:\windows\system32\GdViewerpro4.ocx
2011-11-08 06:50:53 2335880 ----a-w- c:\windows\system32\gdpdfplug.dll
2011-11-08 06:50:45 4835328 ----a-w- c:\windows\system32\cdintf450.dll
2011-11-08 06:50:39 -------- d-----w- c:\program files\common files\soft602
2011-11-08 06:50:39 -------- d-----w- c:\documents and settings\ranit_banerjee\application data\602Installer
2011-11-08 06:50:33 -------- d-----w- c:\program files\Software602
.
==================== Find3M ====================
.
2011-09-24 20:42:07 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
============= FINISH: 15:57:15.51 ===============


DDS Attach log

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 9/6/2007 4:51:14 AM
System Uptime: 12/5/2011 8:57:45 AM (7 hours ago)
.
Motherboard: LENOVO | | 7664RYU
Processor: Intel Pentium III Xeon processor | None | 2094/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 86 GiB total, 4.041 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E965-E325-11CE-BFC1-08002BE10318}
Description: CD-ROM Drive
Device ID: IDE\CDROMOPTIARC_DVD_RW_AD-7910A_________________1.D1____\5&1609414&0&0.0.0
Manufacturer: (Standard CD-ROM drives)
Name: Optiarc DVD RW AD-7910A
PNP Device ID: IDE\CDROMOPTIARC_DVD_RW_AD-7910A_________________1.D1____\5&1609414&0&0.0.0
Service: cdrom
.
==== System Restore Points ===================
.
RP213: 10/17/2011 12:11:52 PM - Software Distribution Service 3.0
RP214: 10/18/2011 12:10:30 PM - Software Distribution Service 3.0
RP215: 10/19/2011 12:11:36 PM - Software Distribution Service 3.0
RP216: 10/19/2011 2:01:06 PM - Software Distribution Service 3.0
RP217: 10/19/2011 5:03:00 PM - Software Distribution Service 3.0
RP218: 10/20/2011 12:15:21 PM - Software Distribution Service 3.0
RP219: 10/20/2011 9:44:33 PM - Software Distribution Service 3.0
RP220: 10/21/2011 8:16:35 AM - Software Distribution Service 3.0
RP221: 10/22/2011 6:42:46 PM - Software Distribution Service 3.0
RP222: 10/23/2011 12:16:23 PM - Software Distribution Service 3.0
RP223: 10/24/2011 11:58:43 AM - Software Distribution Service 3.0
RP224: 10/25/2011 11:44:49 AM - Software Distribution Service 3.0
RP225: 10/25/2011 10:21:46 PM - Software Distribution Service 3.0
RP226: 10/26/2011 12:11:50 PM - Software Distribution Service 3.0
RP227: 10/27/2011 11:55:34 AM - Software Distribution Service 3.0
RP228: 10/27/2011 7:05:01 PM - Software Distribution Service 3.0
RP229: 10/28/2011 12:08:29 PM - Software Distribution Service 3.0
RP230: 10/29/2011 12:17:23 PM - Software Distribution Service 3.0
RP231: 10/30/2011 12:22:55 PM - Software Distribution Service 3.0
RP232: 10/30/2011 2:41:40 PM - Software Distribution Service 3.0
RP233: 10/31/2011 11:48:56 AM - Software Distribution Service 3.0
RP234: 11/1/2011 12:03:42 PM - System Checkpoint
RP235: 11/1/2011 12:07:21 PM - Software Distribution Service 3.0
RP236: 11/2/2011 11:50:35 AM - Software Distribution Service 3.0
RP237: 11/3/2011 11:47:39 AM - Software Distribution Service 3.0
RP238: 11/4/2011 11:57:29 AM - Software Distribution Service 3.0
RP239: 11/5/2011 7:55:29 PM - Software Distribution Service 3.0
RP240: 11/6/2011 11:36:52 AM - Software Distribution Service 3.0
RP241: 11/7/2011 12:08:27 PM - Software Distribution Service 3.0
RP242: 11/7/2011 10:50:29 PM - Installed Software602 Print2PDF
RP243: 11/7/2011 10:51:34 PM - Printer Driver Print2PDF 9 Installed
RP244: 11/7/2011 10:51:51 PM - Printer Driver Print2PDF 9 Installed
RP245: 11/8/2011 11:35:30 AM - Software Distribution Service 3.0
RP246: 11/9/2011 11:38:10 AM - Software Distribution Service 3.0
RP247: 11/9/2011 5:00:59 PM - Software Distribution Service 3.0
RP248: 11/10/2011 11:49:15 AM - Software Distribution Service 3.0
RP249: 11/11/2011 11:36:04 AM - Software Distribution Service 3.0
RP250: 11/12/2011 12:07:07 PM - Software Distribution Service 3.0
RP251: 11/12/2011 5:57:30 PM - Software Distribution Service 3.0
RP252: 11/13/2011 11:39:20 AM - Software Distribution Service 3.0
RP253: 11/14/2011 12:02:57 PM - Software Distribution Service 3.0
RP254: 11/15/2011 12:36:03 PM - Software Distribution Service 3.0
RP255: 11/16/2011 7:40:14 PM - Software Distribution Service 3.0
RP256: 11/17/2011 11:37:58 AM - Software Distribution Service 3.0
RP257: 11/18/2011 2:12:36 PM - Software Distribution Service 3.0
RP258: 11/19/2011 12:17:23 PM - Software Distribution Service 3.0
RP259: 11/20/2011 11:57:08 AM - Software Distribution Service 3.0
RP260: 11/20/2011 1:37:25 PM - Software Distribution Service 3.0
RP261: 11/20/2011 6:19:03 PM - Software Distribution Service 3.0
RP262: 11/21/2011 12:20:32 PM - Software Distribution Service 3.0
RP263: 11/22/2011 11:52:37 AM - Software Distribution Service 3.0
RP264: 11/23/2011 12:14:46 PM - Software Distribution Service 3.0
RP265: 11/23/2011 12:25:53 PM - Software Distribution Service 3.0
RP266: 11/23/2011 11:55:02 PM - Software Distribution Service 3.0
RP267: 11/24/2011 11:53:46 AM - Software Distribution Service 3.0
RP268: 11/24/2011 10:50:00 PM - Removed Sophos AutoUpdate
RP269: 11/24/2011 10:50:52 PM - Installed Sophos AutoUpdate
RP270: 11/25/2011 12:04:49 PM - Software Distribution Service 3.0
RP271: 11/26/2011 11:33:17 AM - Software Distribution Service 3.0
RP272: 11/27/2011 12:07:40 PM - Software Distribution Service 3.0
RP273: 11/27/2011 12:33:38 PM - Software Distribution Service 3.0
RP274: 11/28/2011 12:27:21 PM - Software Distribution Service 3.0
RP275: 11/29/2011 12:24:42 PM - Software Distribution Service 3.0
RP276: 11/30/2011 12:15:58 PM - Software Distribution Service 3.0
RP277: 12/1/2011 12:31:16 PM - Software Distribution Service 3.0
RP278: 12/2/2011 12:31:52 PM - Software Distribution Service 3.0
RP279: 12/3/2011 12:13:39 PM - Software Distribution Service 3.0
RP280: 12/4/2011 12:56:05 PM - System Checkpoint
.
==== Installed Programs ======================
.
.
2007 Microsoft Office system
7-Zip 4.57
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 8.1.2
Asterisk Password Decryptor
Bing Bar
Bing Maps 3D
Bonjour
Calypso Main Entry Application
Citrix XenApp Plugin for Hosted Apps
Comcast Desktop Software (v1.2.0.9)
Cool Record Edit Pro v7.9.3
Coupon Printer for Windows
Dell Laser MFP 1815 Software Uninstall
Dell Printer Software Uninstall
Diskeeper Lite
Driver Magician 3.61
ESET Online Scanner v3
FreeOnlineRadioPlayerRecorder Toolbar
Google Talk (remove only)
Google Talk Plugin
High Definition Audio Driver Package - KB888111
HiJackThis
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB981793)
Integrated Camera
Intel® PRO Network Connections Drivers
Intel® PROSet/Wireless Software
InterVideo Register Manager
InterVideo WinDVD
InterVideo WinDVD Creator 3
Java Auto Updater
Java DB 10.5.3.0
Java™ 6 Update 26
Java™ SE Development Kit 6
Java™ SE Development Kit 6 Update 21
KRyLack Archive Password Recovery
magicJack
Malwarebytes' Anti-Malware version 1.51.2.1300
McAfee Security Scan Plus
mCore
mDriver
MetaFrame Presentation Server Web Client for Win32
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Antimalware
Microsoft Application Error Reporting
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional Hybrid 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft Software Update for Web Folders (English) 12
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
mMHouse
Mozilla Firefox 8.0 (x86 en-US)
mPfMgr
mProSafe
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6 Service Pack 2 (KB973686)
mWlsSafe
Notepad++
NVIDIA Drivers
PDFZilla V1.2.9
Perfect Uninstaller v6.3.3.9
Python 2.3.3
RealPlayer
RealUpgrade 1.0
RecordNow Audio
RecordNow Copy
RecordNow Data
Remove Multimedia Center
Rescue and Recovery
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB2544521)
Security Update for Windows Internet Explorer 7 (KB2559049)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB982381)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Skype Click to Call
Skype™ 5.5
SnagIt 8
Software602 Print2PDF
Sonic DLA
Sonic Express Labeler
Sonic Icons for Lenovo
Sonic Update Manager
SonicWALL SSL-VPN NetExtender
Sophos AutoUpdate
SoundMAX
SUPERAntiSpyware Free Edition
Sybase Adaptive Server Enterprise Suite
System Update
Tcl/Tk 8.3.2 for Windows
ThinkPad Bluetooth with Enhanced Data Rate Software
ThinkPad EasyEject Utility
ThinkPad Hotkey Features Setup
ThinkPad Modem
ThinkPad PC Card Power Policy
ThinkPad Power Management Driver
ThinkPad Power Manager
ThinkPad UltraNav Driver
ThinkPad UltraNav Utility
ThinkVantage Access Connections
ThinkVantage Active Protection System
ThinkVantage Fingerprint Software 5.6
ThinkVantage Productivity Center
ThinkVantage Technologies Welcome Message
Uninstall Dell PC Fax
Unlocker 1.9.1
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB2447568)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Veoh Web Player Beta
Visokio Omniscope
VNC Free Edition 4.1.3
Wallpapers
WebEx
WebFldrs XP
WinCvs 1.3
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Toolbar
Windows Media Connect
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3
XP Themes
Yahoo! Messenger
.
==== Event Viewer Messages From Past Week ========
.
12/5/2011 9:30:47 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/5/2011 8:22:12 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/5/2011 8:14:05 AM, error: System Error [1003] - Error code 40000080, parameter1 8a6cbad0, parameter2 8a32f698, parameter3 ba4d3e5c, parameter4 00000001.
12/5/2011 11:35:27 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/5/2011 10:11:16 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/4/2011 9:32:45 AM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.
12/4/2011 8:56:00 AM, error: Schedule [7901] - The At18.job command failed to start due to the following error: %%2147942402
12/4/2011 8:56:00 AM, error: Schedule [7901] - The At17.job command failed to start due to the following error: %%2147942402
12/4/2011 7:56:00 AM, error: Schedule [7901] - The At16.job command failed to start due to the following error: %%2147942402
12/4/2011 7:56:00 AM, error: Schedule [7901] - The At15.job command failed to start due to the following error: %%2147942402
12/4/2011 6:56:00 AM, error: Schedule [7901] - The At14.job command failed to start due to the following error: %%2147942402
12/4/2011 6:56:00 AM, error: Schedule [7901] - The At13.job command failed to start due to the following error: %%2147942402
12/4/2011 6:51:44 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/4/2011 6:41:33 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000243' while processing the file 'i8042prt.sys' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
12/4/2011 5:56:00 AM, error: Schedule [7901] - The At12.job command failed to start due to the following error: %%2147942402
12/4/2011 5:56:00 AM, error: Schedule [7901] - The At11.job command failed to start due to the following error: %%2147942402
12/4/2011 4:56:00 AM, error: Schedule [7901] - The At9.job command failed to start due to the following error: %%2147942402
12/4/2011 4:56:00 AM, error: Schedule [7901] - The At10.job command failed to start due to the following error: %%2147942402
12/4/2011 3:56:00 AM, error: Schedule [7901] - The At8.job command failed to start due to the following error: %%2147942402
12/4/2011 3:56:00 AM, error: Schedule [7901] - The At7.job command failed to start due to the following error: %%2147942402
12/4/2011 2:56:00 AM, error: Schedule [7901] - The At6.job command failed to start due to the following error: %%2147942402
12/4/2011 2:56:00 AM, error: Schedule [7901] - The At5.job command failed to start due to the following error: %%2147942402
12/4/2011 12:56:00 AM, error: Schedule [7901] - The At2.job command failed to start due to the following error: %%2147942402
12/4/2011 12:56:00 AM, error: Schedule [7901] - The At1.job command failed to start due to the following error: %%2147942402
12/4/2011 12:18:31 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/4/2011 11:53:41 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/4/2011 1:56:00 AM, error: Schedule [7901] - The At4.job command failed to start due to the following error: %%2147942402
12/4/2011 1:56:00 AM, error: Schedule [7901] - The At3.job command failed to start due to the following error: %%2147942402
12/3/2011 9:56:00 PM, error: Schedule [7901] - The At44.job command failed to start due to the following error: %%2147942402
12/3/2011 9:56:00 PM, error: Schedule [7901] - The At43.job command failed to start due to the following error: %%2147942402
12/3/2011 9:56:00 AM, error: Schedule [7901] - The At20.job command failed to start due to the following error: %%2147942402
12/3/2011 9:56:00 AM, error: Schedule [7901] - The At19.job command failed to start due to the following error: %%2147942402
12/3/2011 8:56:00 PM, error: Schedule [7901] - The At42.job command failed to start due to the following error: %%2147942402
12/3/2011 8:56:00 PM, error: Schedule [7901] - The At41.job command failed to start due to the following error: %%2147942402
12/3/2011 7:56:00 PM, error: Schedule [7901] - The At40.job command failed to start due to the following error: %%2147942402
12/3/2011 7:56:00 PM, error: Schedule [7901] - The At39.job command failed to start due to the following error: %%2147942402
12/3/2011 6:56:00 PM, error: Schedule [7901] - The At38.job command failed to start due to the following error: %%2147942402
12/3/2011 6:56:00 PM, error: Schedule [7901] - The At37.job command failed to start due to the following error: %%2147942402
12/3/2011 5:56:00 PM, error: Schedule [7901] - The At36.job command failed to start due to the following error: %%2147942402
12/3/2011 5:56:00 PM, error: Schedule [7901] - The At35.job command failed to start due to the following error: %%2147942402
12/3/2011 4:56:00 PM, error: Schedule [7901] - The At34.job command failed to start due to the following error: %%2147942402
12/3/2011 4:56:00 PM, error: Schedule [7901] - The At33.job command failed to start due to the following error: %%2147942402
12/3/2011 3:56:00 PM, error: Schedule [7901] - The At32.job command failed to start due to the following error: %%2147942402
12/3/2011 3:56:00 PM, error: Schedule [7901] - The At31.job command failed to start due to the following error: %%2147942402
12/3/2011 2:56:00 PM, error: Schedule [7901] - The At30.job command failed to start due to the following error: %%2147942402
12/3/2011 2:56:00 PM, error: Schedule [7901] - The At29.job command failed to start due to the following error: %%2147942402
12/3/2011 12:56:00 PM, error: Schedule [7901] - The At26.job command failed to start due to the following error: %%2147942402
12/3/2011 12:56:00 PM, error: Schedule [7901] - The At25.job command failed to start due to the following error: %%2147942402
12/3/2011 11:56:00 PM, error: Schedule [7901] - The At48.job command failed to start due to the following error: %%2147942402
12/3/2011 11:56:00 PM, error: Schedule [7901] - The At47.job command failed to start due to the following error: %%2147942402
12/3/2011 11:56:00 AM, error: Schedule [7901] - The At24.job command failed to start due to the following error: %%2147942402
12/3/2011 11:56:00 AM, error: Schedule [7901] - The At23.job command failed to start due to the following error: %%2147942402
12/3/2011 10:56:00 PM, error: Schedule [7901] - The At46.job command failed to start due to the following error: %%2147942402
12/3/2011 10:56:00 PM, error: Schedule [7901] - The At45.job command failed to start due to the following error: %%2147942402
12/3/2011 10:56:00 AM, error: Schedule [7901] - The At22.job command failed to start due to the following error: %%2147942402
12/3/2011 10:56:00 AM, error: Schedule [7901] - The At21.job command failed to start due to the following error: %%2147942402
12/3/2011 10:32:25 PM, error: System Error [1003] - Error code 40000080, parameter1 8a84dad0, parameter2 8a34f828, parameter3 ba4dfbb8, parameter4 00000001.
12/3/2011 10:31:22 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Cdrom Imapi
12/3/2011 10:31:22 PM, error: Service Control Manager [7024] - The OracleDBConsoleCALYPSO service terminated with service-specific error 2 (0x2).
12/3/2011 10:31:22 PM, error: Service Control Manager [7023] - The NEC USB Device Service service terminated with the following error: The specified module could not be found.
12/3/2011 10:31:22 PM, error: Service Control Manager [7023] - The Diskeeper service terminated with the following error: The service has not been started.
12/3/2011 10:31:22 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Sybase SQLServer _ LOCALHOST service to connect.
12/3/2011 10:31:22 PM, error: Service Control Manager [7000] - The Sybase SQLServer _ LOCALHOST service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
12/3/2011 10:31:22 PM, error: Service Control Manager [7000] - The rimsptsk service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
12/3/2011 10:31:22 PM, error: Service Control Manager [7000] - The rimmptsk service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
12/3/2011 10:31:22 PM, error: Service Control Manager [7000] - The Ricoh xD-Picture Card Driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
12/3/2011 1:56:00 PM, error: Schedule [7901] - The At28.job command failed to start due to the following error: %%2147942402
12/3/2011 1:56:00 PM, error: Schedule [7901] - The At27.job command failed to start due to the following error: %%2147942402
12/2/2011 9:53:35 AM, error: Dhcp [1002] - The IP address lease 192.168.0.101 for the Network Card with network address 002186589B45 has been denied by the DHCP server 10.1.0.233 (The DHCP Server sent a DHCPNACK message).
12/2/2011 6:47:11 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the SUService service.
12/2/2011 6:01:19 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the stisvc service.
12/2/2011 10:10:24 PM, error: Dhcp [1002] - The IP address lease 10.1.2.115 for the Network Card with network address 002186589B45 has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message).
12/1/2011 8:16:47 PM, error: HTTP [15005] - Unable to bind to the underlying transport for 0.0.0.0:2869. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
.
==== End Of File ===========================
 
Joined
Aug 9, 2011
Messages
808
Hy there and sorry for the delay.
If you still need help,

Please launch DDS
  • When done, DDS will open two (2) logs:
    1. DDS.txt
    2. Attach.txt
  • Save both reports to your desktop and post both in your next reply
 

rendezvous

Thread Starter
Joined
Sep 28, 2008
Messages
55
DDS log

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26
Run by ranit_banerjee at 7:45:24 on 2011-12-15
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3070.1781 [GMT -8:00]
.
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *Enabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
c:\tools\oracle\11gr1\Bin\extjob.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\BingBar\SeaPort.EXE
C:\Program Files\SonicWALL\SSL-VPN\NetExtender\NEService.exe
C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\tools\sybase15\ASE-15_0\bin\sqlsrvr.exe
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\WINDOWS\System32\TPHDEXLG.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
C:\Program Files\RealVNC\VNC4\WinVNC4.exe
C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
c:\program files\lenovo\system update\suservice.exe
C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft\BingBar\BingBar.exe
C:\Program Files\Microsoft\BingBar\BingApp.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\ranit_banerjee\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe
.
============== Pseudo HJT Report ===============
.
uWindow Title = Internet Explorer, optimized for Bing and MSN
uInternet Settings,ProxyServer = http=localhost:8080
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: H - No File
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "c:\program files\microsoft\bingbar\BingExt.dll"
BHO: FreeOnlineRadioPlayerRecorder Toolbar: {f999a48b-1950-4d81-9971-79018f807b4b} - c:\program files\freeonlineradioplayerrecorder\prxtbFre2.dll
TB: Windows Live Toolbar: {bdad1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\windows live toolbar\msntb.dll
TB: SnagIt: {8ff5e183-abde-46eb-b09e-d2aab95cabe3} - c:\program files\techsmith\snagit 8\SnagItIEAddin.dll
TB: FreeOnlineRadioPlayerRecorder Toolbar: {f999a48b-1950-4d81-9971-79018f807b4b} - c:\program files\freeonlineradioplayerrecorder\prxtbFre2.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "c:\program files\microsoft\bingbar\BingExt.dll"
TB: {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
EB: FreeOnlineRadioPlayerRecorder Findbar: {3f5276e6-b514-456f-b356-0e00d30d2392} - c:\program files\freeonlineradioplayerrecorder\prxtbFree.dll
uRun: [Desktop Software] "c:\program files\common files\supportsoft\bin\bcont.exe" /ini "c:\program files\comcastui\desktop software\uinstaller.ini" /fromrun /starthidden
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\ranit_banerjee\local settings\application data\google\update\GoogleUpdate.exe" /c
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [nwiz] nwiz.exe /install
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [Print2PDF Print Monitor] "c:\giveaway of the day softwareeeeeeees\Print2PDF.exe" /server
mRun: [Sophos AutoUpdate Monitor] c:\program files\sophos\autoupdate\almon.exe
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
IE: &Windows Live Search - c:\program files\windows live toolbar\msntb.dll/search.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\thinkpad\bluetooth software\btsendto_ie_ctx.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
LSP: mswsock.dll
Trusted Zone: calypso.com
Trusted Zone: postoffice.net\calypso.sp
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1189027808234
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} - hxxp://www.crucial.com/controls/cpcScanner.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - hxxps://calypso.webex.com/client/T26L/webex/ieatgpc.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{CE0C9C3D-4590-45E3-8DF1-96B17F01DF30} : DhcpNameServer = 192.168.0.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: ACNotify - ACNotify.dll
Notify: psfus - c:\windows\system32\psqlpwd.dll
Notify: qoMeEurr - qoMeEurr.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\ranit_banerjee\application data\mozilla\firefox\profiles\6zmnk594.default\
FF - prefs.js: network.proxy.type - 0
FF - component: c:\program files\mozilla firefox\extensions\{ab2ce124-6272-4b12-94a9-7303c7397bd1}\components\SkypeFfComponent.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npatgpc.dll
FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\ranit_banerjee\application data\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\ranit_banerjee\local settings\application data\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60310.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npatgpc.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPcol305.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npicaN.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npMozCouponPrinter.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npNELaunch.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\NPVeohTVPlugin.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\npWebPlayerVideoPluginATL.dll
FF - plugin: c:\program files\virtual earth 3d\npVE3D.dll
.
============= SERVICES / DRIVERS ===============
.
R0 TPDIGIMN;TPDIGIMN;c:\windows\system32\drivers\ApsHM86.sys [2007-3-2 19760]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2011-8-4 118104]
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 165648]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2008-12-4 8944]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2008-12-4 55024]
R2 602XML Updater;602Updater;c:\program files\common files\soft602\602updsvc\602updsvc.exe [2011-11-7 73728]
R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2011-9-22 974944]
R2 OracleJobSchedulerCALYPSO;OracleJobSchedulerCALYPSO;c:\tools\oracle\11gr1\bin\extjob.exe calypso --> c:\tools\oracle\11gr1\bin\extjob.exe CALYPSO [?]
R2 smihlp;SMI Helper Driver (smihlp);c:\program files\common files\thinkvantage fingerprint software\drivers\smihlp.sys [2007-3-14 11152]
R2 Sophos AutoUpdate Service;Sophos AutoUpdate Service;c:\program files\sophos\autoupdate\ALsvc.exe [2010-9-21 230640]
R2 SYBSQL_LOCALHOST;Sybase SQLServer _ LOCALHOST;c:\tools\sybase15\ase-15_0\bin\sqlsrvr.exe -slocalhost -c --> c:\tools\sybase15\ase-15_0\bin\sqlsrvr.exe -sLOCALHOST -C [?]
R2 TVT Backup Protection Service;TVT Backup Protection Service;c:\program files\lenovo\rescue and recovery\rrpservice.exe [2007-2-8 569344]
R3 SSLDrv;SSL-VPN NetExtender Adapter;c:\windows\system32\drivers\SSLDrv.sys [2006-8-28 20504]
R3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\drivers\tvti2c.sys [2006-9-13 35264]
S1 MpKsl07422538;MpKsl07422538;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\mpksl07422538.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\MpKsl07422538.sys [?]
S1 MpKsl0991b8e2;MpKsl0991b8e2;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3fbbcc81-4f79-4c9c-b403-1a9ae00eb529}\mpksl0991b8e2.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3fbbcc81-4f79-4c9c-b403-1a9ae00eb529}\MpKsl0991b8e2.sys [?]
S1 MpKsl0eb09268;MpKsl0eb09268;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\mpksl0eb09268.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\MpKsl0eb09268.sys [?]
S1 MpKsl1859233d;MpKsl1859233d;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\mpksl1859233d.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b7cdf3f7-c7a2-4006-a090-bb9343124746}\MpKsl1859233d.sys [?]
S1 MpKsl2b143e5b;MpKsl2b143e5b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\mpksl2b143e5b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b126fa40-28a5-45b4-ab74-b7d44c09433e}\MpKsl2b143e5b.sys [?]
S1 MpKsl2c588f17;MpKsl2c588f17;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{74e9608d-caf1-4a96-91c8-638a6073aa08}\mpksl2c588f17.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{74e9608d-caf1-4a96-91c8-638a6073aa08}\MpKsl2c588f17.sys [?]
S1 MpKsl3c41bb6f;MpKsl3c41bb6f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4b43d7cd-bdcd-417f-ae0f-1e12c0eb593c}\mpksl3c41bb6f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4b43d7cd-bdcd-417f-ae0f-1e12c0eb593c}\MpKsl3c41bb6f.sys [?]
S1 MpKsl413ab434;MpKsl413ab434;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{578a1a9e-1e5c-4da9-b195-638c110f107a}\mpksl413ab434.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{578a1a9e-1e5c-4da9-b195-638c110f107a}\MpKsl413ab434.sys [?]
S1 MpKsl54d2a6a9;MpKsl54d2a6a9;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8f57cddc-229e-49ed-90b0-1040c5fce374}\mpksl54d2a6a9.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8f57cddc-229e-49ed-90b0-1040c5fce374}\MpKsl54d2a6a9.sys [?]
S1 MpKsl56caaf10;MpKsl56caaf10;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{860e9b63-8aac-4574-81c8-168c3be59257}\mpksl56caaf10.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{860e9b63-8aac-4574-81c8-168c3be59257}\MpKsl56caaf10.sys [?]
S1 MpKsl5c34ef82;MpKsl5c34ef82;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4840bf7b-8cd9-4f2e-8ab6-d71c41d6be7b}\mpksl5c34ef82.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4840bf7b-8cd9-4f2e-8ab6-d71c41d6be7b}\MpKsl5c34ef82.sys [?]
S1 MpKsl6f1b5e12;MpKsl6f1b5e12;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\mpksl6f1b5e12.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\MpKsl6f1b5e12.sys [?]
S1 MpKsl90d22b96;MpKsl90d22b96;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\mpksl90d22b96.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5988593b-bdcb-4ff0-9ccf-009d153c1274}\MpKsl90d22b96.sys [?]
S1 MpKsla16a762f;MpKsla16a762f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{646399d4-f0d5-4a6a-a16d-3b1c81267749}\mpksla16a762f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{646399d4-f0d5-4a6a-a16d-3b1c81267749}\MpKsla16a762f.sys [?]
S1 MpKsla40ea13b;MpKsla40ea13b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c74de639-bb9e-460a-89cf-5ebb93421b9f}\mpksla40ea13b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c74de639-bb9e-460a-89cf-5ebb93421b9f}\MpKsla40ea13b.sys [?]
S1 MpKslc6480f16;MpKslc6480f16;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{dab20c15-1490-499b-9203-0679cfec871d}\mpkslc6480f16.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{dab20c15-1490-499b-9203-0679cfec871d}\MpKslc6480f16.sys [?]
S1 MpKslcec671d8;MpKslcec671d8;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{12ff1473-7950-46aa-8b93-ba15cbdf1871}\mpkslcec671d8.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{12ff1473-7950-46aa-8b93-ba15cbdf1871}\MpKslcec671d8.sys [?]
S1 MpKsle4d04fe3;MpKsle4d04fe3;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\mpksle4d04fe3.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb5d33d0-c075-421f-b6df-f79a87bd58fa}\MpKsle4d04fe3.sys [?]
S1 MpKsled9f6874;MpKsled9f6874;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{89961ca4-67d5-48be-80ec-f214682e2818}\mpksled9f6874.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{89961ca4-67d5-48be-80ec-f214682e2818}\MpKsled9f6874.sys [?]
S1 MpKslfc5b8e7f;MpKslfc5b8e7f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{010fc79e-7fac-42dc-9f6b-9904b7ac4371}\mpkslfc5b8e7f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{010fc79e-7fac-42dc-9f6b-9904b7ac4371}\MpKslfc5b8e7f.sys [?]
S2 necusb;NEC USB Device Service;c:\windows\system32\svchost.exe -k necusb3 [2006-4-29 14336]
S2 OracleDBConsoleCALYPSO;OracleDBConsoleCALYPSO;c:\tools\oracle\11gr1\bin\nmesrvc.exe [2008-5-15 25600]
S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-5-16 191752]
S3 LenovoRd;LenovoRd;c:\windows\system32\drivers\LenovoRd.sys [2007-8-11 81280]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
S3 OracleOraDb11g_home1TNSListener;OracleOraDb11g_home1TNSListener;c:\tools\oracle\11gr1\bin\tnslsnr --> c:\tools\oracle\11gr1\bin\TNSLSNR [?]
S3 OracleServiceCALYPSO;OracleServiceCALYPSO;c:\tools\oracle\11gr1\bin\oracle.exe calypso --> c:\tools\oracle\11gr1\bin\ORACLE.EXE CALYPSO [?]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2008-12-4 7408]
S3 SybaseUAService;Sybase Unified Agent;c:\tools\sybase15\uaf-2_0\utility\ntautostart\release\uaservice.exe [2007-9-5 49152]
S3 SYBBCK_LOCALHOST_BS;Sybase BCKServer _ LOCALHOST_BS;c:\tools\sybase15\ase-15_0\bin\bcksrvr.exe -slocalhost_bs -r --> c:\tools\sybase15\ase-15_0\bin\bcksrvr.exe -SLOCALHOST_BS -R [?]
S3 SYBXPS_LOCALHOST_XP;Sybase XPServer _ LOCALHOST_XP;c:\tools\sybase15\ase-15_0\bin\xpserver.exe -slocalhost_xp -c --> c:\tools\sybase15\ase-15_0\bin\xpserver.exe -SLOCALHOST_XP -C [?]
.
=============== File Associations ===============
.
.exe=ah
.
=============== Created Last 30 ================
.
2011-12-15 15:36:15 56200 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{ffcd6597-3ac0-49cc-ab98-91d50a1e25a4}\offreg.dll
2011-12-12 23:17:39 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-12-10 17:35:05 6823496 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{ffcd6597-3ac0-49cc-ab98-91d50a1e25a4}\mpengine.dll
2011-12-08 00:08:26 -------- d-----w- c:\documents and settings\ranit_banerjee\local settings\application data\ESET
2011-12-08 00:08:26 -------- d-----w- c:\documents and settings\ranit_banerjee\application data\ESET
.
==================== Find3M ====================
.
2011-11-15 22:29:56 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-09-24 20:42:07 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
============= FINISH: 7:46:30.01 ===============
 

rendezvous

Thread Starter
Joined
Sep 28, 2008
Messages
55
Attach log

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 9/6/2007 4:51:14 AM
System Uptime: 12/15/2011 7:35:38 AM (0 hours ago)
.
Motherboard: LENOVO | | 7664RYU
Processor: Intel Pentium III Xeon processor | None | 2094/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 86 GiB total, 6.212 GiB free.
E: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E96B-E325-11CE-BFC1-08002BE10318}
Description: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Device ID: ACPI\PNP0303\4&374CCB25&0
Manufacturer: (Standard keyboards)
Name: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
PNP Device ID: ACPI\PNP0303\4&374CCB25&0
Service: i8042prt
.
Class GUID: {4D36E96F-E325-11CE-BFC1-08002BE10318}
Description: ThinkPad UltraNav Pointing Device
Device ID: ACPI\IBM0057\4&374CCB25&0
Manufacturer: Lenovo
Name: ThinkPad UltraNav Pointing Device
PNP Device ID: ACPI\IBM0057\4&374CCB25&0
Service: i8042prt
.
Class GUID: {4D36E965-E325-11CE-BFC1-08002BE10318}
Description: CD-ROM Drive
Device ID: IDE\CDROMOPTIARC_DVD_RW_AD-7910A_________________1.D1____\5&1609414&0&0.0.0
Manufacturer: (Standard CD-ROM drives)
Name: Optiarc DVD RW AD-7910A
PNP Device ID: IDE\CDROMOPTIARC_DVD_RW_AD-7910A_________________1.D1____\5&1609414&0&0.0.0
Service: cdrom
.
==== System Restore Points ===================
.
RP225: 10/25/2011 10:21:46 PM - Software Distribution Service 3.0
RP226: 10/26/2011 12:11:50 PM - Software Distribution Service 3.0
RP227: 10/27/2011 11:55:34 AM - Software Distribution Service 3.0
RP228: 10/27/2011 7:05:01 PM - Software Distribution Service 3.0
RP229: 10/28/2011 12:08:29 PM - Software Distribution Service 3.0
RP230: 10/29/2011 12:17:23 PM - Software Distribution Service 3.0
RP231: 10/30/2011 12:22:55 PM - Software Distribution Service 3.0
RP232: 10/30/2011 2:41:40 PM - Software Distribution Service 3.0
RP233: 10/31/2011 11:48:56 AM - Software Distribution Service 3.0
RP234: 11/1/2011 12:03:42 PM - System Checkpoint
RP235: 11/1/2011 12:07:21 PM - Software Distribution Service 3.0
RP236: 11/2/2011 11:50:35 AM - Software Distribution Service 3.0
RP237: 11/3/2011 11:47:39 AM - Software Distribution Service 3.0
RP238: 11/4/2011 11:57:29 AM - Software Distribution Service 3.0
RP239: 11/5/2011 7:55:29 PM - Software Distribution Service 3.0
RP240: 11/6/2011 11:36:52 AM - Software Distribution Service 3.0
RP241: 11/7/2011 12:08:27 PM - Software Distribution Service 3.0
RP242: 11/7/2011 10:50:29 PM - Installed Software602 Print2PDF
RP243: 11/7/2011 10:51:34 PM - Printer Driver Print2PDF 9 Installed
RP244: 11/7/2011 10:51:51 PM - Printer Driver Print2PDF 9 Installed
RP245: 11/8/2011 11:35:30 AM - Software Distribution Service 3.0
RP246: 11/9/2011 11:38:10 AM - Software Distribution Service 3.0
RP247: 11/9/2011 5:00:59 PM - Software Distribution Service 3.0
RP248: 11/10/2011 11:49:15 AM - Software Distribution Service 3.0
RP249: 11/11/2011 11:36:04 AM - Software Distribution Service 3.0
RP250: 11/12/2011 12:07:07 PM - Software Distribution Service 3.0
RP251: 11/12/2011 5:57:30 PM - Software Distribution Service 3.0
RP252: 11/13/2011 11:39:20 AM - Software Distribution Service 3.0
RP253: 11/14/2011 12:02:57 PM - Software Distribution Service 3.0
RP254: 11/15/2011 12:36:03 PM - Software Distribution Service 3.0
RP255: 11/16/2011 7:40:14 PM - Software Distribution Service 3.0
RP256: 11/17/2011 11:37:58 AM - Software Distribution Service 3.0
RP257: 11/18/2011 2:12:36 PM - Software Distribution Service 3.0
RP258: 11/19/2011 12:17:23 PM - Software Distribution Service 3.0
RP259: 11/20/2011 11:57:08 AM - Software Distribution Service 3.0
RP260: 11/20/2011 1:37:25 PM - Software Distribution Service 3.0
RP261: 11/20/2011 6:19:03 PM - Software Distribution Service 3.0
RP262: 11/21/2011 12:20:32 PM - Software Distribution Service 3.0
RP263: 11/22/2011 11:52:37 AM - Software Distribution Service 3.0
RP264: 11/23/2011 12:14:46 PM - Software Distribution Service 3.0
RP265: 11/23/2011 12:25:53 PM - Software Distribution Service 3.0
RP266: 11/23/2011 11:55:02 PM - Software Distribution Service 3.0
RP267: 11/24/2011 11:53:46 AM - Software Distribution Service 3.0
RP268: 11/24/2011 10:50:00 PM - Removed Sophos AutoUpdate
RP269: 11/24/2011 10:50:52 PM - Installed Sophos AutoUpdate
RP270: 11/25/2011 12:04:49 PM - Software Distribution Service 3.0
RP271: 11/26/2011 11:33:17 AM - Software Distribution Service 3.0
RP272: 11/27/2011 12:07:40 PM - Software Distribution Service 3.0
RP273: 11/27/2011 12:33:38 PM - Software Distribution Service 3.0
RP274: 11/28/2011 12:27:21 PM - Software Distribution Service 3.0
RP275: 11/29/2011 12:24:42 PM - Software Distribution Service 3.0
RP276: 11/30/2011 12:15:58 PM - Software Distribution Service 3.0
RP277: 12/1/2011 12:31:16 PM - Software Distribution Service 3.0
RP278: 12/2/2011 12:31:52 PM - Software Distribution Service 3.0
RP279: 12/3/2011 12:13:39 PM - Software Distribution Service 3.0
RP280: 12/4/2011 12:56:05 PM - System Checkpoint
RP281: 12/6/2011 2:56:14 PM - System Checkpoint
RP282: 12/7/2011 11:13:07 PM - System Checkpoint
RP283: 12/9/2011 8:18:57 PM - System Checkpoint
RP284: 12/10/2011 10:23:58 PM - System Checkpoint
RP285: 12/11/2011 11:24:38 PM - System Checkpoint
RP286: 12/13/2011 10:38:28 AM - System Checkpoint
RP287: 12/14/2011 11:47:14 AM - System Checkpoint
.
==== Installed Programs ======================
.
.
2007 Microsoft Office system
7-Zip 4.57
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 8.1.2
Asterisk Password Decryptor
Bing Bar
Bing Maps 3D
Bonjour
Calypso Main Entry Application
Citrix XenApp Plugin for Hosted Apps
Comcast Desktop Software (v1.2.0.9)
Cool Record Edit Pro v7.9.3
Coupon Printer for Windows
Dell Laser MFP 1815 Software Uninstall
Dell Printer Software Uninstall
Diskeeper Lite
Driver Magician 3.61
ESET Online Scanner v3
ESET Smart Security
FreeOnlineRadioPlayerRecorder Toolbar
Google Talk (remove only)
Google Talk Plugin
High Definition Audio Driver Package - KB888111
HiJackThis
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB981793)
Integrated Camera
Intel(R) PRO Network Connections Drivers
Intel(R) PROSet/Wireless Software
InterVideo Register Manager
InterVideo WinDVD
InterVideo WinDVD Creator 3
Java Auto Updater
Java DB 10.5.3.0
Java(TM) 6 Update 26
Java(TM) SE Development Kit 6
Java(TM) SE Development Kit 6 Update 21
KRyLack Archive Password Recovery
magicJack
Malwarebytes' Anti-Malware version 1.51.2.1300
McAfee Security Scan Plus
mCore
mDriver
MetaFrame Presentation Server Web Client for Win32
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Antimalware
Microsoft Application Error Reporting
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional Hybrid 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft Software Update for Web Folders (English) 12
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
mMHouse
Mozilla Firefox 8.0 (x86 en-US)
mPfMgr
mProSafe
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6 Service Pack 2 (KB973686)
mWlsSafe
Notepad++
NVIDIA Drivers
PDFZilla V1.2.9
Perfect Uninstaller v6.3.3.9
Python 2.3.3
RealPlayer
RealUpgrade 1.0
RecordNow Audio
RecordNow Copy
RecordNow Data
Remove Multimedia Center
Rescue and Recovery
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB2544521)
Security Update for Windows Internet Explorer 7 (KB2559049)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB982381)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Skype Click to Call
Skype™ 5.5
SnagIt 8
Software602 Print2PDF
Sonic DLA
Sonic Express Labeler
Sonic Icons for Lenovo
Sonic Update Manager
SonicWALL SSL-VPN NetExtender
Sophos AutoUpdate
SoundMAX
SUPERAntiSpyware Free Edition
Sybase Adaptive Server Enterprise Suite
System Update
Tcl/Tk 8.3.2 for Windows
ThinkPad Bluetooth with Enhanced Data Rate Software
ThinkPad EasyEject Utility
ThinkPad Hotkey Features Setup
ThinkPad Modem
ThinkPad PC Card Power Policy
ThinkPad Power Management Driver
ThinkPad Power Manager
ThinkPad UltraNav Driver
ThinkPad UltraNav Utility
ThinkVantage Access Connections
ThinkVantage Active Protection System
ThinkVantage Fingerprint Software 5.6
ThinkVantage Productivity Center
ThinkVantage Technologies Welcome Message
Uninstall Dell PC Fax
Unlocker 1.9.1
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB2447568)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Veoh Web Player Beta
Visokio Omniscope
VNC Free Edition 4.1.3
Wallpapers
WebEx
WebFldrs XP
WinCvs 1.3
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Toolbar
Windows Media Connect
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3
XP Themes
Yahoo! Messenger
.
==== Event Viewer Messages From Past Week ========
.
12/9/2011 9:57:53 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.275.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/9/2011 8:08:18 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Cdrom Imapi
12/9/2011 8:08:18 AM, error: Service Control Manager [7024] - The OracleDBConsoleCALYPSO service terminated with service-specific error 2 (0x2).
12/9/2011 8:08:18 AM, error: Service Control Manager [7023] - The NEC USB Device Service service terminated with the following error: The specified module could not be found.
12/9/2011 8:08:18 AM, error: Service Control Manager [7023] - The Diskeeper service terminated with the following error: The service has not been started.
12/9/2011 8:08:18 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Sybase SQLServer _ LOCALHOST service to connect.
12/9/2011 8:08:18 AM, error: Service Control Manager [7000] - The Sybase SQLServer _ LOCALHOST service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
12/9/2011 8:08:18 AM, error: Service Control Manager [7000] - The rimsptsk service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
12/9/2011 8:08:18 AM, error: Service Control Manager [7000] - The rimmptsk service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
12/9/2011 8:08:18 AM, error: Service Control Manager [7000] - The Ricoh xD-Picture Card Driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
12/9/2011 6:24:12 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the SUService service.
12/9/2011 6:01:36 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.
12/8/2011 9:56:00 AM, error: Schedule [7901] - The At68.job command failed to start due to the following error: %%2147942402
12/8/2011 9:56:00 AM, error: Schedule [7901] - The At20.job command failed to start due to the following error: %%2147942402
12/8/2011 9:27:43 AM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the Dnscache service.
12/8/2011 8:08:49 PM, error: Dhcp [1002] - The IP address lease 10.1.2.115 for the Network Card with network address 002186589B45 has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message).
12/8/2011 3:56:04 AM, error: Schedule [7901] - The At8.job command failed to start due to the following error: %%2147942402
12/8/2011 3:56:03 AM, error: Schedule [7901] - The At7.job command failed to start due to the following error: %%2147942402
12/8/2011 12:56:00 PM, error: Schedule [7901] - The At26.job command failed to start due to the following error: %%2147942402
12/8/2011 10:15:37 AM, error: PSched [14103] - QoS [Adapter {2E566090-38E4-4380-88C5-FA23407F62C2}]: The netcard driver failed the query for OID_GEN_LINK_SPEED.
12/8/2011 1:56:02 AM, error: Schedule [7901] - The At4.job command failed to start due to the following error: %%2147942402
12/8/2011 1:56:02 AM, error: Schedule [7901] - The At3.job command failed to start due to the following error: %%2147942402
12/15/2011 7:46:24 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/14/2011 7:53:40 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/14/2011 12:20:47 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/14/2011 10:24:57 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/13/2011 8:19:00 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/13/2011 7:49:16 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/13/2011 12:26:13 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/13/2011 12:14:23 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/13/2011 11:37:37 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/13/2011 10:55:14 AM, error: Dhcp [1002] - The IP address lease 192.168.0.100 for the Network Card with network address 002186589B45 has been denied by the DHCP server 10.1.0.233 (The DHCP Server sent a DHCPNACK message).
12/13/2011 10:42:09 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/12/2011 12:00:15 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/12/2011 11:31:59 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/12/2011 11:11:59 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/12/2011 10:56:44 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/11/2011 8:36:05 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/11/2011 4:02:42 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/11/2011 11:01:03 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.117.787.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7903.0 Error code: 0x80070424 Error description: The specified service does not exist as an installed service.
12/11/2011 10:52:16 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the System Update service to connect.
12/11/2011 10:52:16 AM, error: Service Control Manager [7000] - The System Update service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
12/10/2011 9:12:57 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Cdrom i8042prt Imapi
12/10/2011 9:05:33 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
12/10/2011 12:31:44 PM, error: Service Control Manager [7024] - The Sybase SQLServer _ LOCALHOST service terminated with service-specific error 13 (0xD).
.
==== End Of File ===========================
 
Joined
Aug 9, 2011
Messages
808
my name is Daniel and I will be assisting you with your Malware related problems.

Before we move on, please read the following points carefully.
  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, I will have to unsubscribe from this thread and move on to assist someone else.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.


Please download Gmer from here and save it to your Desktop.
  • Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent.
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.



    Click the image to enlarge it


  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • Sections
    • IAT/EAT
    • Drives/Partition other than Systemdrive (typically C:\)
    • Show All (don't miss this one)
  • Then click the Scan button & wait for it to finish.
  • Once done click on the [Save..] button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post.
  • Save it where you can easily find it, such as your desktop

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries



Please post in your next reply
ark.txt
 
Joined
Aug 9, 2011
Messages
808
Due a lack of response,

I will now unsubscribe this thread and do not get any notifications about now replies
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Staff online

Members online

Top