Warning: Illegal offset type in /home/content/a/s/k/askhelpdesq/html/wp-includes/rss.php on line 1458
Help Desq

Help Desq

Questions Answered – Info on tech support, health, travel questions and more…..

Welcome To Our Site...

Please feel free to add comments , answer questions, or submit questions for other users and admin to answer.

January 2012
M T W T F S S
« Dec    
 1
2345678
9101112131415
16171819202122
23242526272829
3031  

My HP Pavilion a000 desktop starts but beeps!!!

Posted By mikyz on January 27, 2012

Hi,
I am currently trying to fix my HP pavilion a000 desktop. I was working fine then after turning it off i tried to start it again and it just beeps at me.

I have tried cleaning all the fans and dust of all components but its doesn't help.
I have checked the memory and cd/dvd rom but it continues to beep at me

Is this a case of getting a new tower or can it be fixed?

Category: Troubleshooting Dead Machines | No Comments »
Tags:

PC doesnt boot

Posted By Karlwakim on January 26, 2012

Hi everybody,
I have an old Dell 5150 PC from 2007 and i use it as a second pc,
It shutdowned suddely, and now it doesn't boot anymore, when i press the power button, it flashes again and again until i release the button.
INFO :
pentium d 2.66 ghz cpu,
originally 512 MB ram but 3 years ago i upgraded it to 2 GB.
Original power supply died so i replaced it with another one.
The small battery for time (on the motherboard) is still the same.
DVD-RW replaced
Windows 7 but originally Windows XP.
I think the problem is the power supply because when the other one died, I it happened the same way.
Anyway i will get another one, but i need my data from it.
Thanks.

Category: Troubleshooting Dead Machines | No Comments »
Tags:

PC doesnt boot

Posted By Karlwakim on January 26, 2012

Hi everybody,
I have an old Dell 5150 PC from 2007 and i use it as a second pc,
It shutdowned suddely, and now it doesn't boot anymore, when i press the power button, it flashes again and again until i release the button.
INFO :
pentium d 2.66 ghz cpu,
originally 512 MB ram but 3 years ago i upgraded it to 2 GB.
Original power supply died so i replaced it with another one.
The small battery for time (on the motherboard) is still the same.
DVD-RW replaced
Windows 7 but originally Windows XP.
I think the problem is the power supply because when the other one died, I it happened the same way.
Anyway i will get another one, but i need my data from it.
Thanks.

Category: Troubleshooting Dead Machines | No Comments »
Tags:

Junk File

Posted By skkhan on January 25, 2012

I have much junk file in my drive. Now how can i remove all the junk file?

Category: Viruses, Spyware and other Nasties | No Comments »
Tags:

Dead laptop help?

Posted By UEofMusic on January 23, 2012

I just recently bought a Compaq presario for repair off ebay. I just got it today and began looking at it for problems.
I took the power button cover off and found there's no button board. I also found there was a soda spill on the keyboard. So I bought a new keyboard and the Board. Now. when I plug in this laptop no lights turn on at all. Its dead it has 500mbs of ram and no hard drive which I can get easily. Anyway how should I diagnose a dead battery/ DC plug or a bad motherboard? Which is most likely the problem? (Assuming the power cord works) ive yet to test the cord. Thx all

Category: Troubleshooting Dead Machines | No Comments »
Tags:

ping.exe and uncloseable pop-ups

Posted By ossray2000 on January 23, 2012

Hi, thanks in advance to whoever can help me out here. I guess the issues with my computer are currently.

1. ping.exe using up a large chunk of the CPU, very erratic but sometimes going near 100%
2. When I open Firefox or Internet Explorer, another tab or window automatically opens for internetpayday.co, and when I try to close that i just get more pop-ups. Also if I do a Google search and then click on a result I get redirected to some other search site or more pop-ups (9newstoday.net is another one).
3. When I try to connect to my wireless network, it continues to say "acquiring network address" but the internet itself is working ok. Sometimes it eventually officially connects.

When I first opened GMER Rootkit Scanner it didn't do a quick-scan so that log ended up being empty. Also I don't know if it matters, but I did a MBA-M scan a day earlier than the other things before I found this site and followed the instructions of the readme, and that earlier scan did detect and clean 5 items. I did another full scan today but it didn't detect anything so I'll withhold that one unless it is useful and instead provide the MBA-M log from the scan performed before GMER and the other things. However the issue with the automatic and difficult to close pop-ups is still happening even when MBA-M comes up blank, and ping.exe is still pretty erratic. The Microsoft Malicious Removal Tool didn't find anything. GMER did find some things so maybe that log will be informative. Also when I ran the DDS, my internet and antivirus were disabled. Anyway here are the logs (MBA-M, then GMER Two, then DDS, then Attach.)

Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.21.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Ross :: ROSSDESKTOP [administrator]

1/21/2012 4:12:03 PM
mbam-log-2012-01-21 (16-12-03).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 185128
Time elapsed: 23 minute(s), 29 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 5
C:\Documents and Settings\Ross\Local Settings\Temp\fka0.38390525430625055.exe (Trojan.FakeMS) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ross\Local Settings\Temp\mos0.12154232053690583.exe (Trojan.FakeMS) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\mos0.44537994246301293.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\p9pl5852269922588412307.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\fka0.5686061745054946.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.

(end)


GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-01-22 15:57:29
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e SAMSUNG_HD160JJ/P rev.ZM100-34
Running: xxrb25ok.exe; Driver: C:\DOCUME~1\Ross\LOCALS~1\Temp\agtoypod.sys


---- System - GMER 1.0.15 ----

SSDT Lbd.sys (Boot Driver/Lavasoft AB) ZwCreateKey [0xF760E87E]
SSDT Lbd.sys (Boot Driver/Lavasoft AB) ZwSetValueKey [0xF760EBFE]

---- Devices - GMER 1.0.15 ----

Device mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)
Device A8E9BD20

AttachedDevice fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- Modules - GMER 1.0.15 ----

Module (noname) (*** hidden *** ) F67AD000-F67C9000 (114688 bytes)

---- Files - GMER 1.0.15 ----

File C:\WINDOWS\$NtUninstallKB51245$\133943254 0 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\@ 2048 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\bckfg.tmp 846 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\cfg.ini 198 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\Desktop.ini 4608 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\keywords 164 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\kwrd.dll 223744 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\L 0 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\L\gnilnfgt 57600 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\lsflt7.ver 5176 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\U 0 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\U\00000001.@ 2048 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\U\00000002.@ 224768 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\U\00000004.@ 1024 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\U\80000000.@ 11264 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\U\80000004.@ 12800 bytes
File C:\WINDOWS\$NtUninstallKB51245$\133943254\U\80000032.@ 77312 bytes
File C:\WINDOWS\$NtUninstallKB51245$\861728094 0 bytes

---- EOF - GMER 1.0.15 ----


.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_23
Run by Ross at 4:59:18 on 2012-01-23
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.160 [GMT -5:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\PRISMSVR.EXE
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\PRISMSVC.EXE
C:\Program Files\Secunia\PSI\PSIA.exe
C:\WINDOWS\system32\tcpsvcs.exe
svchost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\BOINC\boinctray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
C:\Program Files\Dell Wireless\PRISMCFG.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Secunia\PSI\sua.exe
C:\Documents and Settings\Ross\Desktop\xxrb25ok.exe
C:\WINDOWS\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\ping.exe
C:\WINDOWS\system32\NOTEPAD.EXE
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.cnn.com/
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [boincmgr] "c:\program files\boinc\boincmgr.exe" /a /s
uRun: [CPN Notifier] c:\program files\cake poker 2.0\PokerNotifier.exe
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [IDTSysTrayApp] sttray.exe
mRun: [DLCCCATS] rundll32 c:\windows\system32\spool\drivers\w32x86\3\DLCCtime.dll,_RunDLLEntry@16
mRun: [boinctray] "c:\program files\boinc\boinctray.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\netgea~1.lnk - c:\program files\netgear\wg111v2\WG111v2.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\wirele~1.lnk - c:\program files\dell wireless\PRISMCFG.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
LSP: mswsock.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
Notify: igfxcui - igfxdev.dll
Notify: PRISMAPI.DLL - PRISMAPI.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\ross\application data\mozilla\firefox\profiles\p24dx0ru.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.cnn.com
FF - component: c:\documents and settings\ross\application data\mozilla\firefox\profiles\p24dx0ru.default\extensions\{463f6ca5-ee3c-4be1-b7e6-7fee11953374}\platform\winnt\components\FoxyTunes.5.dll
FF - component: c:\documents and settings\ross\application data\mozilla\firefox\profiles\p24dx0ru.default\extensions\{463f6ca5-ee3c-4be1-b7e6-7fee11953374}\platform\winnt\components\FoxyTunes.6.dll
FF - component: c:\documents and settings\ross\application data\mozilla\firefox\profiles\p24dx0ru.default\extensions\{463f6ca5-ee3c-4be1-b7e6-7fee11953374}\platform\winnt\components\FoxyTunes.7.dll
FF - component: c:\documents and settings\ross\application data\mozilla\firefox\profiles\p24dx0ru.default\extensions\{463f6ca5-ee3c-4be1-b7e6-7fee11953374}\platform\winnt\components\FoxyTunes.8.dll
FF - component: c:\documents and settings\ross\application data\mozilla\firefox\profiles\p24dx0ru.default\extensions\{463f6ca5-ee3c-4be1-b7e6-7fee11953374}\platform\winnt\components\FoxyTunes.dll
FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\amazon\mp3 downloader\npAmazonMP3DownloaderPlugin.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Ghostery: firefox@ghostery.com - %profile%\extensions\firefox@ghostery.com
FF - Ext: FoxyTunes: {463F6CA5-EE3C-4be1-B7E6-7FEE11953374} - %profile%\extensions\{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}
FF - Ext: Ad blocker: {4DC70064-89E2-4a55-8FC6-E8CDEAE3612C} - %profile%\extensions\{4DC70064-89E2-4a55-8FC6-E8CDEAE3612C}
FF - Ext: FastestFox: smarterwiki@wikiatic.com - %profile%\extensions\smarterwiki@wikiatic.com
FF - Ext: QuickDrag: quickdrag@mozilla.ktechcomputing.com - %profile%\extensions\quickdrag@mozilla.ktechcomputing.com
FF - Ext: Stylish: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8} - %profile%\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
.
============= SERVICES / DRIVERS ===============
.
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-10-23 64288]
R1 AmgHips;AmgHips;c:\windows\system32\drivers\AmgHips.sys [2012-1-8 25248]
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2010-10-24 165648]
R1 MpKsledb160f6;MpKsledb160f6;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a3f66426-dadb-43ee-81ef-c36be3c2d074}\MpKsledb160f6.sys [2012-1-22 29904]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
R2 PRISMSVC;PRISMSVC;c:\windows\system32\PRISMSVC.exe [2009-3-21 61529]
R2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\secunia\psi\psia.exe [2011-10-14 994360]
R2 Secunia Update Agent;Secunia Update Agent;c:\program files\secunia\psi\sua.exe [2011-10-14 399416]
R3 RTLWUSB;NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter NT Driver;c:\windows\system32\drivers\wg111v2.sys [2009-9-11 194304]
RUnknown MpKsl5e4b04ec;MpKsl5e4b04ec; [x]
RUnknown MpKslcbdb6df1;MpKslcbdb6df1; [x]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\lavasoft\ad-aware\kernexplorer.sys --> c:\program files\lavasoft\ad-aware\KernExplorer.sys [?]
S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\drivers\manycam.sys --> c:\windows\system32\drivers\ManyCam.sys [?]
S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2010-9-1 15544]
.
=============== Created Last 30 ================
.
2012-01-22 17:37:35 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a3f66426-dadb-43ee-81ef-c36be3c2d074}\MpKsledb160f6.sys
2012-01-22 06:29:11 56200 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a3f66426-dadb-43ee-81ef-c36be3c2d074}\offreg.dll
2012-01-22 06:14:24 -------- d-----w- c:\windows\system32\MpEngineStore
2012-01-22 06:11:36 -------- d-----w- C:\b98dde3254b0edd7a8cb
2012-01-21 23:41:19 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a3f66426-dadb-43ee-81ef-c36be3c2d074}\MpKsl5e4b04ec.sys
2012-01-21 22:01:37 6557240 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a3f66426-dadb-43ee-81ef-c36be3c2d074}\mpengine.dll
2012-01-18 18:35:54 -------- d-----w- c:\program files\Cake Poker 2.0
2012-01-10 04:30:28 -------- d-----w- c:\documents and settings\ross\local settings\application data\CPN
2012-01-09 21:07:40 -------- d-----w- c:\program files\iPod
2012-01-09 04:24:12 59888 ------w- c:\windows\system32\pxwma.dll
2012-01-08 17:56:49 25248 ----a-w- c:\windows\system32\drivers\AmgHips.sys
2012-01-08 17:56:39 -------- d-----w- c:\documents and settings\ross\local settings\application data\360Amigo
2012-01-08 17:56:35 -------- d-----w- c:\program files\360Amigo
2012-01-06 21:30:10 -------- d-----w- c:\documents and settings\ross\application data\Malwarebytes
2012-01-06 21:30:01 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2012-01-06 21:29:56 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-01-06 21:29:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-01-06 19:51:44 -------- d-----w- c:\program files\Pidgin
2012-01-06 19:06:01 -------- d-----w- c:\documents and settings\ross\local settings\application data\Secunia PSI
2012-01-06 19:05:20 -------- d-----w- c:\program files\Secunia
2012-01-04 01:43:15 -------- d-sh--w- c:\documents and settings\ross\IECompatCache
2012-01-03 13:22:02 103864 ----a-w- c:\program files\mozilla firefox\plugins\nppdf32.dll
2012-01-03 13:22:02 103864 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll
.
==================== Find3M ====================
.
2012-01-06 19:38:03 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-25 21:57:19 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-11-23 13:25:32 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-18 12:35:08 60416 ----a-w- c:\windows\system32\packager.exe
2011-11-16 14:21:44 354816 ----a-w- c:\windows\system32\winhttp.dll
2011-11-16 14:21:44 152064 ----a-w- c:\windows\system32\schannel.dll
2011-11-04 19:20:51 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:20:51 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-11-04 19:20:51 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:23:59 385024 ----a-w- c:\windows\system32\html.iec
2011-11-03 15:28:36 386048 ----a-w- c:\windows\system32\qdvd.dll
2011-11-03 15:28:36 1292288 ----a-w- c:\windows\system32\quartz.dll
2011-11-01 16:07:10 1288704 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 05:31:48 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-10-25 13:33:08 2192768 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-10-25 12:52:03 2069376 ----a-w- c:\windows\system32\ntkrnlpa.exe
.
============= FINISH: 5:01:12.93 ===============


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 3/21/2009 2:43:41 PM
System Uptime: 1/22/2012 12:15:45 PM (17 hours ago)
.
Motherboard: Dell Inc. | | 0JC474
Processor: Intel(R) Pentium(R) 4 CPU 2.80GHz | Microprocessor | 2792/800mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 144 GiB total, 6.39 GiB free.
D: is Removable
E: is Removable
F: is Removable
G: is Removable
H: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP708: 10/25/2011 7:49:07 PM - System Checkpoint
RP709: 10/26/2011 8:37:07 PM - System Checkpoint
RP710: 10/27/2011 9:37:03 PM - System Checkpoint
RP711: 10/28/2011 10:07:50 PM - System Checkpoint
RP712: 10/29/2011 10:36:59 PM - System Checkpoint
RP713: 10/31/2011 12:58:31 AM - System Checkpoint
RP714: 11/1/2011 2:54:01 AM - System Checkpoint
RP715: 11/2/2011 3:37:02 AM - System Checkpoint
RP716: 11/3/2011 3:00:35 PM - System Checkpoint
RP717: 11/5/2011 3:40:11 AM - System Checkpoint
RP718: 11/6/2011 3:05:40 AM - System Checkpoint
RP719: 11/6/2011 4:53:15 PM - Software Distribution Service 3.0
RP720: 11/7/2011 3:00:15 AM - Software Distribution Service 3.0
RP721: 11/8/2011 3:34:48 AM - System Checkpoint
RP722: 11/9/2011 4:34:48 AM - System Checkpoint
RP723: 11/10/2011 5:34:48 AM - System Checkpoint
RP724: 11/11/2011 6:34:48 AM - System Checkpoint
RP725: 11/12/2011 3:00:29 AM - Software Distribution Service 3.0
RP726: 11/13/2011 3:24:02 AM - System Checkpoint
RP727: 11/14/2011 4:24:08 AM - System Checkpoint
RP728: 11/15/2011 5:24:00 AM - System Checkpoint
RP729: 11/16/2011 6:23:58 AM - System Checkpoint
RP730: 11/17/2011 12:28:52 AM - Software Distribution Service 3.0
RP731: 11/17/2011 10:26:57 AM - Software Distribution Service 3.0
RP732: 11/18/2011 12:28:17 AM - Software Distribution Service 3.0
RP733: 11/18/2011 3:00:22 AM - Software Distribution Service 3.0
RP734: 11/19/2011 3:12:37 AM - Software Distribution Service 3.0
RP735: 11/20/2011 3:08:35 AM - Software Distribution Service 3.0
RP736: 11/21/2011 1:33:19 AM - Software Distribution Service 3.0
RP737: 11/22/2011 2:49:32 AM - System Checkpoint
RP738: 11/22/2011 3:09:29 AM - Software Distribution Service 3.0
RP739: 11/23/2011 3:08:40 AM - Software Distribution Service 3.0
RP740: 11/24/2011 3:45:28 AM - System Checkpoint
RP741: 11/25/2011 3:10:20 AM - Software Distribution Service 3.0
RP742: 11/26/2011 3:14:45 AM - Software Distribution Service 3.0
RP743: 11/27/2011 3:26:37 AM - Software Distribution Service 3.0
RP744: 11/28/2011 2:29:45 AM - Software Distribution Service 3.0
RP745: 11/29/2011 2:39:07 AM - System Checkpoint
RP746: 11/29/2011 11:42:01 AM - Software Distribution Service 3.0
RP747: 11/30/2011 11:44:32 AM - System Checkpoint
RP748: 11/30/2011 11:46:31 AM - Software Distribution Service 3.0
RP749: 12/1/2011 11:42:23 AM - Software Distribution Service 3.0
RP750: 12/2/2011 11:42:42 AM - Software Distribution Service 3.0
RP751: 12/3/2011 11:42:13 AM - Software Distribution Service 3.0
RP752: 12/4/2011 11:42:26 AM - Software Distribution Service 3.0
RP753: 12/5/2011 2:04:20 AM - Software Distribution Service 3.0
RP754: 12/5/2011 12:11:43 PM - Software Distribution Service 3.0
RP755: 12/6/2011 12:07:22 PM - Software Distribution Service 3.0
RP756: 12/7/2011 12:11:20 PM - Software Distribution Service 3.0
RP757: 12/8/2011 12:45:32 PM - System Checkpoint
RP758: 12/8/2011 3:49:08 PM - Software Distribution Service 3.0
RP759: 12/9/2011 5:16:19 PM - System Checkpoint
RP760: 12/9/2011 8:48:15 PM - Software Distribution Service 3.0
RP761: 12/10/2011 8:49:47 PM - System Checkpoint
RP762: 12/10/2011 8:52:34 PM - Software Distribution Service 3.0
RP763: 12/11/2011 8:48:31 PM - Software Distribution Service 3.0
RP764: 12/12/2011 2:03:34 AM - Software Distribution Service 3.0
RP765: 12/12/2011 8:49:42 PM - Software Distribution Service 3.0
RP766: 12/13/2011 8:56:58 PM - System Checkpoint
RP767: 12/14/2011 2:03:58 AM - Software Distribution Service 3.0
RP768: 12/14/2011 3:00:35 AM - Software Distribution Service 3.0
RP769: 12/15/2011 3:30:50 AM - System Checkpoint
RP770: 12/15/2011 3:34:22 AM - Software Distribution Service 3.0
RP771: 12/16/2011 3:33:44 AM - Software Distribution Service 3.0
RP772: 12/17/2011 3:33:34 AM - Software Distribution Service 3.0
RP773: 12/18/2011 3:34:40 AM - Software Distribution Service 3.0
RP774: 12/19/2011 2:27:37 AM - Software Distribution Service 3.0
RP775: 12/20/2011 2:30:46 AM - System Checkpoint
RP776: 12/20/2011 1:43:53 PM - Software Distribution Service 3.0
RP777: 12/21/2011 2:35:48 PM - Software Distribution Service 3.0
RP778: 12/22/2011 2:31:06 PM - Software Distribution Service 3.0
RP779: 12/30/2011 7:16:08 PM - Software Distribution Service 3.0
RP780: 1/1/2012 9:13:17 PM - Software Distribution Service 3.0
RP781: 1/2/2012 2:08:43 AM - Software Distribution Service 3.0
RP782: 1/2/2012 9:07:10 PM - Software Distribution Service 3.0
RP783: 1/3/2012 9:08:10 PM - Software Distribution Service 3.0
RP784: 1/4/2012 9:09:11 PM - Software Distribution Service 3.0
RP785: 1/5/2012 9:09:56 PM - Software Distribution Service 3.0
RP786: 1/6/2012 3:54:41 PM - Installed Adobe Shockwave Player 11.6.
RP787: 1/7/2012 4:14:59 PM - System Checkpoint
RP788: 1/7/2012 4:21:33 PM - Software Distribution Service 3.0
RP789: 1/8/2012 12:56:35 PM - 360Amigo System Speedup Free(1.2.1.7700)
RP790: 1/8/2012 2:24:39 PM - 360Amigo System Speedup(Privacy Cleaner)
RP791: 1/8/2012 4:21:11 PM - Software Distribution Service 3.0
RP792: 1/8/2012 9:52:07 PM - Software Distribution Service 3.0
RP793: 1/9/2012 2:15:00 AM - Software Distribution Service 3.0
RP794: 1/9/2012 8:39:54 PM - Software Distribution Service 3.0
RP795: 1/10/2012 8:51:25 PM - System Checkpoint
RP796: 1/11/2012 12:48:35 PM - Software Distribution Service 3.0
RP797: 1/12/2012 3:00:28 AM - Software Distribution Service 3.0
RP798: 1/13/2012 3:30:37 AM - System Checkpoint
RP799: 1/13/2012 3:33:50 AM - Software Distribution Service 3.0
RP800: 1/14/2012 3:35:57 AM - System Checkpoint
RP801: 1/14/2012 7:40:53 PM - Software Distribution Service 3.0
RP802: 1/15/2012 8:02:28 PM - System Checkpoint
RP803: 1/16/2012 2:00:57 AM - Software Distribution Service 3.0
RP804: 1/16/2012 2:31:56 PM - 360Amigo System Speedup(Privacy Cleaner)
RP805: 1/17/2012 10:42:27 AM - Software Distribution Service 3.0
RP806: 1/18/2012 11:21:25 AM - Software Distribution Service 3.0
RP807: 1/19/2012 2:50:37 AM - Software Distribution Service 3.0
RP808: 1/19/2012 12:29:35 PM - Software Distribution Service 3.0
RP809: 1/20/2012 1:33:18 PM - Microsoft Antimalware Checkpoint
RP810: 1/20/2012 2:37:46 PM - Software Distribution Service 3.0
RP811: 1/21/2012 3:21:38 PM - System Checkpoint
RP812: 1/21/2012 3:35:22 PM - Microsoft Antimalware Checkpoint
RP813: 1/21/2012 5:01:33 PM - Software Distribution Service 3.0
RP814: 1/22/2012 4:54:22 PM - Microsoft Antimalware Checkpoint
.
==== Installed Programs ======================
.
360Amigo System Speedup Free
7-Zip 4.65
ABBYY FineReader 6.0 Sprint
AC3Filter (remove only)
Acrobat.com
Ad-Aware Email Scanner for Outlook
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader 9.5.0
Adobe Shockwave Player 11.5
Adobe Shockwave Player 11.6
Amazon Kindle For PC v1.1
Amazon MP3 Downloader 1.0.15
Amazon Unbox Video
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Aspell English Dictionary-0.50-2
Bonjour
BS.Player FREE
Cake Poker 2.0
Compatibility Pack for the 2007 Office system
Conexant D850 56K V.9x DFVc Modem
Dell Photo AIO Printer 924
ESPN Java Check
FoxyTunes for Firefox
GNU Aspell 0.50-3
GTK+ Runtime 2.14.7 rev a (remove only)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Format 11 SDK (KB939209)
Hotfix for Windows Media Player 10 (KB903157)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
Intel(R) Graphics Media Accelerator Driver
Intel(R) PRO Network Connections Drivers
iTunes
Java Auto Updater
Java(TM) 6 Update 23
Malwarebytes Anti-Malware version 1.60.0.1800
MATLAB R2010a
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Antimalware
Microsoft Application Error Reporting
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office File Validation Add-In
Microsoft Office Professional Edition 2003
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Mozilla Firefox (3.6.25)
NETGEAR WG111v2 wireless USB 2.0 adapter
Pidgin
QuickTime
Secunia PSI (2.0.0.4003)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
SigmaTel Audio
Sonic Encoders
Spybot - Search & Destroy
Starcraft
StarCraft II
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB971180)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB2641690)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update Rollup 2 for Windows XP Media Center Edition 2005
USB 2.0 Wireless LAN Card Utility
VC80CRTRedist - 8.0.50727.4053
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
VLC media player 0.9.9
WebFldrs XP
Winamp
Winamp Detector Plug-in
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB2619340
Windows XP Media Center Edition 2005 KB2628259
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3
World Community Grid - BOINC for Windows
Xvid 1.2.1 final uninstall
.
==== Event Viewer Messages From Past Week ========
.
1/21/2012 4:40:24 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: PCIIde
1/20/2012 2:27:41 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.
1/18/2012 6:17:42 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the Dnscache service.
1/17/2012 7:56:50 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
1/17/2012 6:09:41 PM, error: Dhcp [1002] - The IP address lease 192.168.0.100 for the Network Card with network address 0024B23E8397 has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message).
.
==== End Of File ===========================

Thanks!

Category: Viruses, Spyware and other Nasties | No Comments »
Tags:

SPYBOT

Posted By rosecirc23 on January 22, 2012

After download Spybot Search & Destroy on my computer, I couldn’t open any files on my Desktop, Control Panel to remove or deleted any software, and use the wireless internet, the message C:\WINDOW \SYSTEM32\RUNDLL32EX, pop up. What should I do to remove the message? The software on my computer is Window XP Professional.

Category: Viruses, Spyware and other Nasties | No Comments »
Tags:

Computer shutdown and won’t boot…

Posted By GiddyupGilbert on January 22, 2012

ASUS Mb, 3 gigs of RAM, 1.9 AMD processor with WindowsXP Pro.
Well the machine was operating just fine and I was working on it. All of a sudden it shutdown and turned off. So, I turned it back on, it did the first DOS screen and then went into a blue screen and began a MemTest 86 procedure, but would never go beyond that. I had 3 sticks of RAM (Not new). I pulled them out one stick at a time to see if it would even run with less RAM; always coming back to the same MemTest86 screen. I did notice that the RAM was recognized each time I rebooted. I then took a different set of RAM and put it in. It booted to the MemTest86 screen, recognizing the amount of RAM I'd put in, but would never go further. I hope someone has an idea. I don't. I get the feeling the RAM is good, but that there is a problem on the motherboard. Any input or thoughts will be greatly appreciated. thanks.

Category: Troubleshooting Dead Machines | No Comments »
Tags:

Cant connect to any antivrus websites

Posted By AnnieJo on January 22, 2012

I can not connect to any antivrus websites. I am trying to download Microsoft Security Essentials and I keep getting an error message that says My computer cannot connect to the microsoft server. I also tried going to the AVG site and received the same error message. I do not know a lot about computers so please be very specific with your advice. Thank you in advance! Oh, and I am using a windows XP operating system and Firefox browser. I dont have access to any other computer at this time, so I am using the infected computer to access this site.

Category: Viruses, Spyware and other Nasties | No Comments »
Tags:

Cant connect to any antivrus websites

Posted By AnnieJo on January 22, 2012

I can not connect to any antivrus websites. I am trying to download Microsoft Security Essentials and I keep getting an error message that says My computer cannot connect to the microsoft server. I also tried going to the AVG site and received the same error message. I do not know a lot about computers so please be very specific with your advice. Thank you in advance! Oh, and I am using a windows XP operating system and Firefox browser. I dont have access to any other computer at this time, so I am using the infected computer to access this site.

Category: Viruses, Spyware and other Nasties | No Comments »
Tags:

No Post New MOBO New PSU

Posted By spiker2010 on January 20, 2012

I bought a new motherboard (asrock n86c-s ucc) because my old one's PCI-E slot was not working. I installed the board properly the first time with my cpu and everything seated correctly in a new case only to find that my computer was not turning on at all woth 2 different motherboards including the new one. I fixed this problem and successfully booted the new motherboard straight into windows. After turning off my computer to install my new internal SATA HDD, my computer would not POST. The PSU's fans, CPU's fan and Graphic card's fan all powered on but my monitor just stayed in standby mode. I unplugged and re-plugged the monitor's VGA only to realize it said immediately "Entering Power Save". I switched the monitor with my second computer's monitor, still to get no POST. I tried another PSU from an old computer, still no POST. I bought a new PSU (ATX 800 Watt - Omega), still no POST. I transferred everything to my previous motherboard that was working before, I get no POST. Previously during transferring the components back and forward to 2 different motherboards including the new one, I had to force the CPU out of one of the motherboards (AMD Athlon X4 Core), it was chipped at the top left corner. I placed my hand on the CPU (with the fan off) while the computer was on, on the CPU, and it heated up as it was suppose to, that takes a dead CPU out of the question. I can hear a beep when I remove my RAM from the motherboard (previous), unfortunately the new one does not have a speaker. Three motherboards, three PSU's, 2 RAM sticks and no success in POST'ing. I have hit a brick wall, PLEASE HELP ME

Category: Troubleshooting Dead Machines | No Comments »
Tags:

Automatic shutdown

Posted By vinodvinu on January 20, 2012

Hi all,
Is there any chance to shut down a pc automatically only because of loose connection of processor fan ?.
-vinod

Category: Troubleshooting Dead Machines | No Comments »
Tags:

Christian Louboutin Daffodile 160 Calf Hair Platform Pumps

Posted By DixeliaBaiply on January 19, 2012

Now it gradully swept popular in Southeast Asia and several other countries. At the first, outlet is just the particular factory stores. and slowly, it forms the outlet that is just like shopping mall, and then developed directly into an independent retail models Christian Louboutin Hot Retailers. Many people tend to buy famous Louboutin UK brands in that outlet. Well this is unquestionably a wise choice. Saying about famous makes, have you heard regarding Christian Louboutin. Its main sign may be the red soles that exhibits temptation and sexy, which can let women become more charming. And to follow fashion in such a year, you should buy a set of it. So where to obtain it. Since I have described outlet, then you will know the answer. To go to this Christian Louboutin outlet to buy a couple shoes.

Mourot understand that your brand's feelings for India, in addition to your flagship store opening, the spring and summer shoes from the Louboutin Pumps also once again been confirmed. The new season with style roughly divided straight into two factions, one faction is that him and i have mentioned in the decorative patterns in the classic Indian Bollywood type luxury; faction is distinct surges nailed the tough shiny rivet style. Compared two groups, with which the Distance Indian style shoes really should be a real highlight of this series, we always Christian Louboutin sale break the particular impression for Louboutin shoes and boots, very suitable for wind or mix and match styles much like the nation up to affiliates wear. Louboutin to create a new style he had as their intended purpose the sexy shoes throughout India, will focus on the details of the way to decorate on a black-jack shoe, shoe continues the brand's most popular type is the sea food head models, boat shoes, etc.

As you can observe, it is not very difficult to learn how to tell fake Christian Louboutin sneakers from authentic ones. Once you have appreciated these subtle techniques on spotting fake Christian Louboutin heels it gives you the peace of mind on all your future purchases. Visit Shoes Christian Louboutin UK Sale With Red Bottoms for further information. You entrust treasure by simply they taking into consideration every single shade more formation which you guilt picture. By agent of paying for these sneakers, a band of kinsfolk whore certainly not now outstretched becoming extensive to serve rap hinge taller than they wholly are generally. Theyre once more bought by means of the constancy these pumps provide.

Read More:
http://www.christianlouboutinuksite.com/
Christian Louboutin Shoes Online
Christian Louboutin Shoe Signing mdash
Designer red bottom shoes christian louboutin shoes
Christian Louboutin Daffodile 160 Calf Hair Platform Pumps
Christian Louboutin Crystal Encrusted Suede Pump

Category: Viruses, Spyware and other Nasties | No Comments »
Tags:

dead machine by dust

Posted By joni.aston on January 18, 2012

my pc is not booting up? when i open it, its full of dust. what is the suggestion to boot it?

joni
____
Recovery Pen Drive
Data Recovery Pen Drive

Category: Troubleshooting Dead Machines | No Comments »
Tags:

dead machine by dust

Posted By joni.aston on January 18, 2012

my pc is not booting up? when i open it, its full of dust. what is the suggestion to boot it?

joni
____
Recovery Pen Drive
Data Recovery Pen Drive

Category: Troubleshooting Dead Machines | No Comments »
Tags:

Internet redirect, wont allow AVG etc

Posted By Treadiculous on January 18, 2012

Hello, and Thank You for taking the time to read this!

A couple of days ago my laptop (running Vista Service Pack 1) started to play up, mainly the internet was redirecting me to ebay or some tacky advertising. So I tried to use AVG and found it dissapeared, then I found that any internet search would not work if it used the phrase anti-virus or similar!!

Thankfully I was able to get on to Danniweb...

I have followed the 'Do This First' though have to point out my laptop frequently cuts out (a previous problem due to overheating - even with a heat mat with twin fans in it).

This has meant that the Logs may be slightly out-of-date, by which I mean they were run yesterday or day before, the reason for this is that the LAptop cut out either while running scans, or when I was trying to access the internet to post the results!

I did find that after running the programs as requested AVG did return and I was able to run a scan with that too (I have added that log at the end of the post).

so here goes:

GMER 1
GMER 2
MalwareBytes
DDS
DDS Attach
AVG


GMER 1:


GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-01-15 22:14:22
Windows 6.0.6001 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 Hitachi_HTS542516K9SA00 rev.BBCOC33P
Running: knnkl9dp.exe; Driver: C:\Users\Duff\AppData\Local\Temp\fwxdruow.sys


---- Devices - GMER 1.0.15 ----

Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0 847721E8
Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-3 847721E8
Device \Driver\atapi \Device\Ide\IdePort0 847721E8
Device \Driver\atapi \Device\Ide\IdePort1 847721E8
Device \Driver\atapi \Device\Ide\IdePort2 847721E8
Device \Driver\atapi \Device\Ide\IdePort3 847721E8
Device \Driver\aroua4nn \Device\Scsi\aroua4nn1 865E71E8
Device \Driver\aroua4nn \Device\Scsi\aroua4nn1Port5Path0Target0Lun0 865E71E8
Device \FileSystem\Ntfs \Ntfs 847731E8

AttachedDevice \Driver\tdx \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (WDF Dynamic/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (WDF Dynamic/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----





GMER LOG 2:




GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-01-16 00:10:17
Windows 6.0.6001 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 Hitachi_HTS542516K9SA00 rev.BBCOC33P
Running: knnkl9dp.exe; Driver: C:\Users\Duff\AppData\Local\Temp\fwxdruow.sys


---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUchar] [806075FE] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUchar] [80606AB4] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort] [80607728] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUshort] [80606B7C] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort] [80606BFA] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [80619C5A] \SystemRoot\System32\Drivers\sptd.sys

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [73058864] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [73099855] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [7305B984] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [7304FB47] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [73057A29] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [7304EA65] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM] [7308B12D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream] [7305BC4A] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [73050756] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [730506BD] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [730471B3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM] [730DD9E0] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile] [73077329] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [7304E109] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [7304697E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [730469A9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3384] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [73052475] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

---- Modules - GMER 1.0.15 ----

Module (noname) (*** hidden *** ) 8E49C000-8E4B6000 (106496 bytes)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 -835707507
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 1811611317
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0 E:\Program Files\DAEMON Tools\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xD3 0x62 0x5D 0xA8 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0x8E 0xEF 0x45 0x8F ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0xD5 0xE8 0x1D 0xCD ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41@khjeh 0x28 0xD4 0x3F 0xED ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42@khjeh 0x0F 0x4D 0x77 0xAF ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43@khjeh 0x0F 0x4D 0x77 0xAF ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0 E:\Program Files\DAEMON Tools\
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xD3 0x62 0x5D 0xA8 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0x8E 0xEF 0x45 0x8F ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0xD5 0xE8 0x1D 0xCD ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41@khjeh 0x28 0xD4 0x3F 0xED ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42@khjeh 0x0F 0x4D 0x77 0xAF ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43@khjeh 0x0F 0x4D 0x77 0xAF ...
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@cd042efbbd7f7af1647644e76e06692b 0xE2 0x63 0x26 0xF1 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@bca643cdc5c2726b20d2ecedcc62c59b 0x46 0x47 0x15 0xB0 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@2c81e34222e8052573023a60d06dd016 0x25 0xDA 0xEC 0x7E ...
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@2582ae41fb52324423be06337561aa48 0x86 0x8C 0x21 0x01 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@caaeda5fd7a9ed7697d9686d4b818472 0xF5 0x1D 0x4D 0x73 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@a4a1bcf2cc2b8bc3716b74b2b4522f5d 0xB0 0x18 0xED 0xA7 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@4d370831d2c43cd13623e232fed27b7b 0xFB 0xA7 0x78 0xE6 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@1d68fe701cdea33e477eb204b76f993d 0x83 0x6C 0x56 0x8B ...
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@1fac81b91d8e3c5aa4b0a51804d844a3 0xF6 0x0F 0x4E 0x58 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@f5f62a6129303efb32fbe080bb27835b 0x3D 0xCE 0xEA 0x26 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@fd4e2e1a3940b94dceb5a6a021f2e3c6 0x2A 0xB7 0xCC 0xB5 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@8a8aec57dd6508a385616fbc86791ec2 0x6C 0x43 0x2D 0x1E ...

---- Files - GMER 1.0.15 ----

File C:\Windows\$NtUninstallKB7761$\263087761 0 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385 0 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\@ 2048 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\bckfg.tmp 850 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\cfg.ini 185 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\Desktop.ini 4608 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\keywords 185 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\kwrd.dll 223744 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\L 0 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\L\qnbwvoto 273408 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\U 0 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\U\00000001.@ 2048 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\U\00000002.@ 224768 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\U\00000004.@ 1024 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\U\80000000.@ 11264 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\U\80000004.@ 12800 bytes
File C:\Windows\$NtUninstallKB7761$\3903387385\U\80000032.@ 77312 bytes

---- EOF - GMER 1.0.15 ----








MALWARE BYTES:




Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.16.01

Windows Vista Service Pack 1 x86 NTFS
Internet Explorer 7.0.6001.18000
Duff :: TRICKSWOPLAPTOP [administrator]

16/01/2012 16:01:06
mbam-log-2012-01-16 (16-01-06).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 431347
Time elapsed: 2 hour(s), 41 minute(s), 32 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
E:\Propellerheads.Reason.v4.0\air-reason4kgn\KEYGEN.EXE (RiskWare.Tool.CK) -> Quarantined and deleted successfully.

(end)






DDS 1



.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.6001.18000 BrowserJavaVersion: 1.6.0_26
Run by Duff at 19:33:53 on 2012-01-16
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.44.1033.18.1917.582 [GMT 0:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Tablet\Pen\Pen_TouchService.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\agrsmsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
C:\Windows\system32\svchost.exe -k hpdevmgmt
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
C:\Windows\system32\TODDSrv.exe
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Google\Update\1.3.21.79\GoogleCrashHandler.exe
C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
C:\Windows\Explorer.EXE
C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\Tablet\Pen\Pen_Tablet.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Windows\ehome\ehtray.exe
E:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\Duff\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
E:\Program Files\Mozilla Firefox\firefox.exe
E:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uStart Page = hxxp://www.google.co.uk/
uSearch Bar = hxxp://www.google.com/ie
mDefault_Page_URL = hxxp://www.google.co.uk
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: H - No File
mURLSearchHooks: H - No File
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\10.0.0.7\AVG Secure Search_toolbar.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7227.1100\swg.dll
BHO: GOM Player + Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: Google Gears Helper: {e0fefe40-fbf9-42ae-ba58-794ca7e3fb53} - c:\program files\google\google gears\internet explorer\0.5.36.0\gears.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
TB: GOM Player + Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\10.0.0.7\AVG Secure Search_toolbar.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
uRun: [TOSCDSPD] TOSCDSPD.EXE
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [DAEMON Tools] "e:\program files\daemon tools\daemon.exe" -lang 1033
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [MediaGet2] c:\users\duff\appdata\local\mediaget2\mediaget.exe --minimized
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [{7B902AD2-1440-4970-E273-40B5EC94B02A}] c:\users\duff\appdata\roaming\cily\urqaaqe.exe
mRun: [StartCCC] c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe
mRun: [SynTPStart] c:\program files\synaptics\syntp\SynTPStart.exe
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [NDSTray.exe] NDSTray.exe
mRun: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
mRun: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
mRun: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
mRun: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
mRun: [Toshiba Registration] c:\program files\toshiba\registration\ToshibaRegistration.exe
mRun: [LaunchList] c:\program files\pinnacle\studio 11\LaunchList.exe
mRun: [QuickTime Plugin Install] e:\program files\quicktime\plugins\DeleteMe1.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [Skytel] Skytel.exe
mRun: [QuickTime Task] "e:\program files\quicktime\QTTask.exe" -atboottime
mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [ROC_roc_dec12] "c:\program files\avg secure search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
StartupFolder: c:\users\duff\appdata\roaming\micros~1\windows\startm~1\programs\startup\bbcipl~1.lnk - e:\program files\bbc iplayer desktop\BBC iPlayer Desktop.exe
StartupFolder: c:\users\duff\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\duff\appdata\roaming\dropbox\bin\Dropbox.exe
StartupFolder: c:\users\duff\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\users\duff\appdata\roaming\micros~1\windows\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {76577871-04EC-495E-A12B-91F7C3600AFA} - http://rover.ebay.com/rover/1/710-44557-9400-3/4
IE: {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/...k-21&site=home
IE: {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - {0B4350D1-055F-47A3-B112-5F2F2B0D6F08} - c:\program files\google\google gears\internet explorer\0.5.36.0\gears.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
LSP: mswsock.dll
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_04-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{570640AD-6E22-48FA-BD2F-3FE66353C000} : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{7D905777-700D-4F0F-B9BF-6776C7A3469E} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{AEEBFAD7-0AF7-4B72-BEFB-1DA7F01AF518} : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{CCE2549C-E52A-457A-9FCF-743BEF48151C} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{E821772B-49AD-4718-B3A5-DE61EFECD4C5} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{F104C6BB-4047-4D3F-A194-D95B28E0E66B} : DhcpNameServer = 192.168.0.1
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\10.0.6\ViProtocol.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\duff\appdata\roaming\mozilla\firefox\profiles\3q4n1w4w.default\
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\np_gp.dll
FF - plugin: c:\program files\tabletplugins\npwacom.dll
FF - plugin: c:\users\duff\appdata\locallow\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: e:\program files\divx\divx player\npDivxPlayerPlugin.dll
FF - plugin: e:\program files\quicktime\plugins\npqtplugin.dll
FF - plugin: e:\program files\quicktime\plugins\npqtplugin2.dll
FF - plugin: e:\program files\quicktime\plugins\npqtplugin3.dll
FF - plugin: e:\program files\quicktime\plugins\npqtplugin4.dll
FF - plugin: e:\program files\quicktime\plugins\npqtplugin5.dll
FF - plugin: e:\program files\quicktime\plugins\npqtplugin6.dll
FF - plugin: e:\program files\quicktime\plugins\npqtplugin7.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-7-11 23120]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-7-11 295248]
R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-1-3 63928]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2011-8-2 192776]
R2 TabletServicePen;TabletServicePen;c:\program files\tablet\pen\Pen_Tablet.exe [2010-10-4 4867952]
R2 TouchServicePen;Wacom Consumer Touch Service;c:\program files\tablet\pen\Pen_TouchService.exe [2010-10-4 414576]
R2 vToolbarUpdater;vToolbarUpdater;c:\program files\common files\avg secure search\vtoolbarupdater\10.0.6\ToolbarUpdater.exe [2012-1-16 909152]
R3 FwLnk;FwLnk Driver;c:\windows\system32\drivers\FwLnk.sys [2007-9-13 7168]
R3 RTL8187B;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187B.sys [2008-5-29 337920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate1c99cf3c426a969;Google Update Service (gupdate1c99cf3c426a969);c:\program files\google\update\GoogleUpdate.exe [2009-3-4 133104]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;e:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2010-10-29 1025352]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2009-3-4 133104]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-1-16 40776]
S3 McComponentHostService;McAfee Security Scan Component Host Service;"c:\program files\mcafee security scan\2.0.181\mcchsvc.exe" --> c:\program files\mcafee security scan\2.0.181\McCHSvc.exe [?]
S3 netr73;Sitecom RT73 Wireless Driver for Vista;c:\windows\system32\drivers\netr73.sys [2008-2-26 493568]
S3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\drivers\wacmoumonitor.sys [2010-10-4 16240]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2012-01-16 16:00:39 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2012-01-16 15:49:33 -------- d-----w- c:\users\duff\appdata\roaming\Malwarebytes
2012-01-16 15:49:23 -------- d-----w- c:\programdata\Malwarebytes
2012-01-16 15:49:22 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-01-16 07:09:01 -------- d-----w- c:\users\duff\appdata\local\Adobe
2012-01-15 12:50:46 -------- d-----w- c:\users\duff\appdata\roaming\Ufuvr
2012-01-15 12:50:46 -------- d-----w- c:\users\duff\appdata\roaming\Cily
2012-01-14 22:38:21 -------- d-----w- c:\users\duff\appdata\roaming\Qyux
2012-01-14 22:38:21 -------- d-----w- c:\users\duff\appdata\roaming\Epazk
2012-01-03 13:10:44 182672 ----a-w- c:\program files\mozilla firefox\plugins\nppdf32.dll
2012-01-03 13:10:44 182672 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll
2011-12-31 20:03:24 -------- d-----w- c:\users\duff\appdata\roaming\SmartDraw
2011-12-31 19:55:12 -------- d-----w- C:\SmartDraw 2012
2011-12-20 15:00:49 -------- d-----w- c:\programdata\WEBREG
2011-12-20 14:48:39 -------- d-----w- c:\program files\common files\HP
2011-12-20 14:48:35 -------- d-----w- c:\program files\common files\Hewlett-Packard
2011-12-20 14:39:46 315904 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\hpfpp70w.dll
2011-12-20 14:38:15 452408 ----a-w- c:\windows\system32\hpzids01.dll
2011-12-20 14:38:03 123904 ----a-w- c:\windows\system32\hpf3l70w.dll
2011-12-20 14:35:46 713728 ----a-w- c:\windows\system32\hposwia_d02d.dll
2011-12-20 14:35:46 589824 ----a-w- c:\windows\system32\hpost_d02d.dll
2011-12-20 14:35:46 372736 ----a-w- c:\windows\system32\hppldcoi.dll
2011-12-20 14:35:46 315392 ----a-w- c:\windows\system32\hposc_d02a.dll
2011-12-20 14:35:46 309760 ----a-w- c:\windows\system32\difxapi.dll
.
==================== Find3M ====================
.
2012-01-14 15:45:32 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-20 23:26:22 94208 ----a-w- c:\windows\system32\dpl100.dll
.
============= FINISH: 19:35:31.99 ===============






DDS Attach




.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 08/01/2008 20:35:59
System Uptime: 16/01/2012 19:26:25 (0 hours ago)
.
Motherboard: ATI | | SB600
Processor: AMD Turion(tm) 64 X2 Mobile Technology TL-58 | Socket M2/S1G1 | 800/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 74 GiB total, 14.136 GiB free.
D: is CDROM (UDF)
E: is FIXED (NTFS) - 73 GiB total, 42.915 GiB free.
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Realtek RTL8101E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
Device ID: PCI\VEN_10EC&DEV_8136&SUBSYS_FF101179&REV_01\4&2BB509F3&0&0028
Manufacturer: Realtek
Name: Realtek RTL8101E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
PNP Device ID: PCI\VEN_10EC&DEV_8136&SUBSYS_FF101179&REV_01\4&2BB509F3&0&0028
Service: RTL8169
.
Class GUID: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Description:
Device ID: ROOT\HIDCLASS\0000
Manufacturer: Wacom
Name:
PNP Device ID: ROOT\HIDCLASS\0000
Service:
.
==== System Restore Points ===================
.
RP1070: 13/01/2012 14:08:18 - Scheduled Checkpoint
RP1071: 14/01/2012 10:15:25 - Scheduled Checkpoint
RP1072: 16/01/2012 10:10:34 - Scheduled Checkpoint
.
==== Installed Programs ======================
.
.
Update for Microsoft Office 2007 (KB2508958)
32 Bit HP CIO Components Installer
ABBYY FineReader 6.0 Sprint
Activation Assistant for the 2007 Microsoft Office suites
Adobe AIR
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color - Photoshop Specific
Adobe Color Common Settings
Adobe Color EU Extra Settings
Adobe Color JA Extra Settings
Adobe Color NA Recommended Settings
Adobe Default Language CS3
Adobe Device Central CS3
Adobe ExtendScript Toolkit 2
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Fonts All
Adobe Help Viewer CS3
Adobe Illustrator 10.0.3
Adobe Linguistics CS3
Adobe PDF Library Files
Adobe Photoshop CS3
Adobe Reader X (10.1.2)
Adobe Setup
Adobe Shockwave Player 11
Adobe Stock Photos CS3
Adobe SVG Viewer 3.0
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS3
Adobe® CreatePDF Desktop
Apple Mobile Device Support
Apple Software Update
Army Builder 3.3b
Ask Toolbar
ATI Catalyst Install Manager
Autodesk 123D
Autodesk 123D Beta
Autodesk 123D Language Pack
Autodesk Material Library 2012
Autodesk Material Library Base Resolution Image Library 2012
AVG 2012
Bamboo
Battlefield Vietnam(TM)
Bluetooth Stack for Windows by Toshiba
Bonjour
BufferChm
Camera RAW Plug-In for EPSON Creativity Suite
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center Localization Chinese Standard
Catalyst Control Center Localization Chinese Traditional
Catalyst Control Center Localization Czech
Catalyst Control Center Localization Danish
Catalyst Control Center Localization Dutch
Catalyst Control Center Localization Finnish
Catalyst Control Center Localization French
Catalyst Control Center Localization German
Catalyst Control Center Localization Greek
Catalyst Control Center Localization Hungarian
Catalyst Control Center Localization Italian
Catalyst Control Center Localization Japanese
Catalyst Control Center Localization Korean
Catalyst Control Center Localization Norwegian
Catalyst Control Center Localization Polish
Catalyst Control Center Localization Portuguese
Catalyst Control Center Localization Russian
Catalyst Control Center Localization Spanish
Catalyst Control Center Localization Swedish
Catalyst Control Center Localization Thai
Catalyst Control Center Localization Turkish
ccc-core-static
ccc-utility
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CD/DVD Drive Acoustic Silencer
Company of Heroes
Company of Heroes - FAKEMSI
Copy
CutePDF Writer 2.7
Dawn of War - Dark Crusade
Destinations
DeviceDiscovery
DivX Converter
DivX Setup
DJ_AIO_06_F4500_SW_MIN
Dropbox
DVD MovieFactory for TOSHIBA
EPSON Attach To Email
EPSON Copy Utility 3
EPSON Easy Photo Print
EPSON File Manager
EPSON Printer Software
EPSON Scan
EPSON Scan Assistant
EPSON Stylus CX7300_CX8300_DX7400_DX8400 Manual
F4500
ffdshow
FileZilla Client 3.3.5.1
FlatOut
GOM Player
Google Earth Plug-in
Google Gears
Google SketchUp Pro 8
Google Toolbar for Internet Explorer
Google Update Helper
GPBaseService2
Hercules WiFi Controller
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
HP Customer Participation Program 13.0
HP Deskjet 3050 J610 series Basic Device Software
HP Deskjet 3050 J610 series Help
HP Deskjet F4500 Printer Driver Software 13.0 Rel .6
HP Imaging Device Functions 13.0
HP Print Projects 1.0
HP Smart Web Printing 4.5
HP Solution Center 13.0
HP Update
HPPhotoGadget
hpPrintProjects
HPProductAssistant
HPSSupply
hpWLPGInstaller
IDrop
Java Auto Updater
Java(TM) 6 Update 2
Java(TM) 6 Update 26
Java(TM) 6 Update 3
Java(TM) 6 Update 4
Java(TM) 6 Update 5
Java(TM) 6 Update 7
Malwarebytes Anti-Malware version 1.60.0.1800
MarketResearch
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Games for Windows - LIVE Redistributable
Microsoft Games for Windows Marketplace
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
Microsoft XML Parser
MMConvert 1.0.5.236 Beta
Mozilla Firefox (3.6.8)
Mozilla Firefox 9.0.1 (x86 en-US)
MP3 Workstation
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Network
OpenOffice.org 3.2
PDF Settings
Pinnacle Instant DVD Recorder
Pivot Stickfigure Animator
proDAD Heroglyph 2.5
proDAD Vitascene 1.0
Quick Screen Capture 3.0
QuickTime
RealPlayer
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista
Realtek High Definition Audio Driver
REALTEK RTL8187B Wireless LAN Driver
Reason 4.0
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01
Scan
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2553089)
Security Update for 2007 Microsoft Office System (KB2553090)
Security Update for 2007 Microsoft Office System (KB2584063)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Security Update for Windows Media Encoder (KB2447961)
Security Update for Windows Media Encoder (KB954156)
Security Update for Windows Media Encoder (KB979332)
Shockwave
Shop for HP Supplies
Skins
SmartWebPrinting
SolutionCenter
Spelling Dictionaries Support For Adobe Reader 8
Status
Studio 11
Studio 11 Bonus DVD
Synaptics Pointing Device Driver
Toolbox
TOSHIBA Assist
TOSHIBA ConfigFree
TOSHIBA Disc Creator
TOSHIBA DVD PLAYER
TOSHIBA Extended Tiles for Windows Mobility Center
TOSHIBA Hardware Setup
TOSHIBA Manuals
TOSHIBA SD Memory Utilities
TOSHIBA Software Modem
TOSHIBA Supervisor Password
TOSHIBA Value Added Package
TrayApp
Unity
Unity Web Player
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.6195
WebReg
WebTablet IE Plugin
WebTablet Netscape Plugin
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Messenger
Windows Live OneCare safety scanner
Windows Live Upload Tool
Windows Media Encoder 9 Series
Windows Media Player Firefox Plugin
WinRAR archiver
WinZip 12.0
Wisdom-soft Set up ASR 3.1 Pro
Wisdom-soft Set up ScreenHunter 5.1 Pro
Yahoo! Desktop Login
.
==== Event Viewer Messages From Past Week ========
.
16/01/2012 15:43:04, Error: EventLog [6008] - The previous system shutdown at 11:55:22 on 16/01/2012 was unexpected.
15/01/2012 15:59:21, Error: Service Control Manager [7034] - The Adobe Acrobat Update Service service terminated unexpectedly. It has done this 1 time(s).
15/01/2012 15:59:07, Error: Service Control Manager [7034] - The Ulead Burning Helper service terminated unexpectedly. It has done this 1 time(s).
15/01/2012 15:46:17, Error: EventLog [6008] - The previous system shutdown at 15:42:58 on 15/01/2012 was unexpected.
15/01/2012 12:49:05, Error: Service Control Manager [7023] - The Computer Browser service terminated with the following error: The specified service does not exist as an installed service.
15/01/2012 12:49:05, Error: Service Control Manager [7003] - The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.
15/01/2012 12:49:05, Error: Service Control Manager [7003] - The Internet Connection Sharing (ICS) service depends the following service: BFE. This service might not be installed.
15/01/2012 12:49:05, Error: Service Control Manager [7003] - The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.
15/01/2012 12:48:11, Error: Microsoft-Windows-PrintSpooler [19] - The print spooler failed to share printer EPSON Stylus DX8400 Series with shared resource name EPSON Stylus DX8400 Series. Error 1753. The printer cannot be used by others on the network.
14/01/2012 18:28:22, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TouchServicePen service.
13/01/2012 22:57:02, Error: Microsoft-Windows-SharedAccess_NAT [30013] - The DHCP allocator has disabled itself on IP address 169.254.75.101, since the IP address is outside the 192.168.0.0/255.255.255.0 scope from which addresses are being allocated to DHCP clients. To enable the DHCP allocator on this IP address, change the scope to include the IP address, or change the IP address to fall within the scope.
13/01/2012 16:28:04, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
13/01/2012 13:23:37, Error: EventLog [6008] - The previous system shutdown at 12:53:50 on 13/01/2012 was unexpected.
12/01/2012 19:24:58, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
12/01/2012 10:01:14, Error: Microsoft-Windows-SharedAccess_NAT [31004] - The DNS proxy agent was unable to allocate 0 bytes of memory. This may indicate that the system is low on virtual memory, or that the memory manager has encountered an internal error.
12/01/2012 10:00:14, Error: EventLog [6008] - The previous system shutdown at 09:53:41 on 12/01/2012 was unexpected.
11/01/2012 21:37:39, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
11/01/2012 21:37:39, Error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/01/2012 21:37:39, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
11/01/2012 18:48:58, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avgwd service.
11/01/2012 18:19:24, Error: EventLog [6008] - The previous system shutdown at 14:21:02 on 11/01/2012 was unexpected.
10/01/2012 17:28:36, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Media Player Network Sharing Service service to connect.
10/01/2012 17:28:36, Error: Service Control Manager [7000] - The Windows Media Player Network Sharing Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
09/01/2012 18:51:23, Error: EventLog [6008] - The previous system shutdown at 17:34:22 on 09/01/2012 was unexpected.
09/01/2012 15:36:52, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TabletServicePen service.
09/01/2012 13:03:47, Error: Microsoft-Windows-ResourcePublication [1002] - Element Provider\Microsoft.Base.Publication/Publication/Computer failed to publish. Ensure that both PKEY_PUBSVCS_METADATA and PKEY_PUBSVCS_TYPE are set properly on the function instance and there were no errors adding the function instance.
09/01/2012 08:02:15, Error: Service Control Manager [7000] - The TOSHIBA Bluetooth Service service failed to start due to the following error: The system cannot find the file specified.
09/01/2012 08:02:15, Error: Service Control Manager [7000] - The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
09/01/2012 08:01:57, Error: Microsoft-Windows-SharedAccess_NAT [34001] - The ICS_IPV6 failed to configure IPv6 stack.
09/01/2012 08:01:57, Error: Microsoft-Windows-SharedAccess_NAT [30013] - The DHCP allocator has disabled itself on IP address 192.168.1.64, since the IP address is outside the 192.168.0.0/255.255.255.0 scope from which addresses are being allocated to DHCP clients. To enable the DHCP allocator on this IP address, change the scope to include the IP address, or change the IP address to fall within the scope.
09/01/2012 08:01:28, Error: EventLog [6008] - The previous system shutdown at 00:16:59 on 09/01/2012 was unexpected.
.
==== End Of File ===========================







AVG




"";"C:\Windows\System32\drivers\afd.sys";"Trojan horse Dropper.Generic5.TKC";"Object is white-listed (critical/system file that should not be removed)"


ps : AVG seems unable to remove, delete or do anything to this Trojan, if I empty the virus vault I assume this does nothing and allows it back into the system?



I look forward to hearing from any one kind enough to offer advice or help!!

Thanks in advance!

Category: Viruses, Spyware and other Nasties | No Comments »
Tags:

what is this in my msconfig

Posted By jemz on January 17, 2012

Hi can i ask some help with you guys,what is in my msconfig there is a list "cuqal" C:\Documents and Settings\jemz\cuqal.exe/S if i will check that box and restart my pc and when i put usb flash drive,the content of my flash drive will keep duplicating the files and the folders.i don't know how am i going to remove that list in my msconfig start up tab.i already done full scan with antivirus but nothing happens,i also used malwarebytes but nothing found.please help me.


Thank you in advance.

Category: Viruses, Spyware and other Nasties | No Comments »
Tags:

UK – workpermit (sajid334)

Posted By abidsajid9 on January 14, 2012

Workpermit.com guide to UK immigration, UK
work permits, HSMP (Highly Skilled Migrant Programme)
and UK work visa Services.
http://www.workpermit.com

Category: Troubleshooting Dead Machines | No Comments »
Tags:

Error loading otvasbt.dll

Posted By kefert on January 13, 2012

hi im seeking your assistance. everytime i open my laptop Error loading otvasbpt.dll appears. please help me t fix this problem! thank you so much

Category: Viruses, Spyware and other Nasties | No Comments »
Tags:

IP addresses ping but not site names no internet connections

Posted By mflexnet on January 13, 2012

I removed a virus via MSE and afterwards have lost the ability to connect to the internet. This is a windows 7 professional 32 bit laptop. Staticly i can set the ip address and dns server and can ping the DG and the DNS server. I can also ping google by IP address. However cannot reach the website through IP address. I have tried winsock resets along with reinstallation of network adapter drivers. Even have done a system restore to a month back but so far none have worked. I have been scouring the web for the last 4 hours looking for a solution to fix the problem but have yet to find anything. Also i have uninstalled all antivirus software aside from MBAM. I hope that I can find a solution through this community.

Category: Viruses, Spyware and other Nasties | No Comments »
Tags:

Next Page »