Norton picked up a Virus called 3365.rar and supposidly quarantined it. I went on the web to read about what it was and in 1 post someone said his sound card wasn't working right after being infected with this same Virus. I immediately tried playing some music and nothing happens!!! I don't think this Virus is gone. I really need some help finding and getting rid of this.. My main use of my computer is for my music as I have a business involving all of my music. Please can you help me!!!
katz1113
1
-
This topic is locked
67 replies to this topic
#1
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:
Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 10 September 2011 - 04:14 PM
#2 Re: [Inactive] Windows XP and Google Chrome
-
-
- 24,883 posts
- Joined: October 04, 2004
- 1,860 topics
- Age: 57
- Skin: IPBoard wide
- Local time: 01:15 AM
Malware Annihilator
-
Zodiac:
Virgo
- Gender:Male
- Location:Daly City, CA
- OS:Windows Vista
-
Country:
- Time Online: 57d 10h 30m 28s
Posted 10 September 2011 - 04:28 PM
Complete all steps from here: http://www.smartestc...ease-read-this/
Please, observe following rules:
Please, observe following rules:
- Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
- If you're stuck, or you're not sure about certain step, always ask before doing anything else.
- Please refrain from running tools or applying updates other than those I suggest.
- Never run more than one scan at a time.
- Keep updating me regarding your computer behavior, good, or bad.
- The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
- If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
- I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.
#3 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 10 September 2011 - 04:35 PM
Thank you Broni.. Update! I just noticed the program that plays my music is GONE! I am going to try reinstalling it and see what happens first... is that ok?
#4 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 10 September 2011 - 05:23 PM
Ok Broni I reinstalled the program I use for my music... everything seems ok so far..I am still somewhat concerned that this "Virus" may still be lurking around somewhere. Should I still complete all of your steps to make sure it's gone? If so I will wait and do this starting in the morning as I have some appointments today. I want to be able to sit down and complete this once I get started.
Katz1113
Katz1113
#5 Re: [Inactive] Windows XP and Google Chrome
-
-
- 24,883 posts
- Joined: October 04, 2004
- 1,860 topics
- Age: 57
- Skin: IPBoard wide
- Local time: 01:15 AM
Malware Annihilator
-
Zodiac:Virgo
- Gender:Male
- Location:Daly City, CA
- OS:Windows Vista
-
Country:
- Time Online: 57d 10h 30m 28s
#6 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 10 September 2011 - 07:06 PM
OK I thought I had to do it.. Thats the reason I was going to do it in the morning, so I could be here until all was done & finalized... but it you can do it... ok
#7 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 10 September 2011 - 07:07 PM
Did read that right?
#8 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 10 September 2011 - 07:20 PM
Ok Broni I will contact you in the morning and I'll run through all the steps..I feel much more comfortable if I can do this and have you there if I run into any problems
Thank you sooo much.. You people are priceless!!!
Thanks again
Thank you sooo much.. You people are priceless!!!
Thanks again
#9 Re: [Inactive] Windows XP and Google Chrome
-
-
- 24,883 posts
- Joined: October 04, 2004
- 1,860 topics
- Age: 57
- Skin: IPBoard wide
- Local time: 01:15 AM
Malware Annihilator
-
Zodiac:Virgo
- Gender:Male
- Location:Daly City, CA
- OS:Windows Vista
-
Country:
- Time Online: 57d 10h 30m 28s
#10 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 11 September 2011 - 04:11 PM
OK Broni.. I ran a complete virus scan last night...Just doing the malwarebytes now..Printed off all your instuctions..So when the scan finishes I will continue
#11 Re: [Inactive] Windows XP and Google Chrome
-
-
- 24,883 posts
- Joined: October 04, 2004
- 1,860 topics
- Age: 57
- Skin: IPBoard wide
- Local time: 01:15 AM
Malware Annihilator
-
Zodiac:Virgo
- Gender:Male
- Location:Daly City, CA
- OS:Windows Vista
-
Country:
- Time Online: 57d 10h 30m 28s
#12 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 11 September 2011 - 08:55 PM
Broni I have a message on the screen saying that my Lalmrnt5 driver stopped working normally!!! the screen looks real funny
says to reboot but the malewarebyte scan is not finished... Should I just let it finish then reboot?
says to reboot but the malewarebyte scan is not finished... Should I just let it finish then reboot?
#13 Re: [Inactive] Windows XP and Google Chrome
-
-
- 24,883 posts
- Joined: October 04, 2004
- 1,860 topics
- Age: 57
- Skin: IPBoard wide
- Local time: 01:15 AM
Malware Annihilator
-
Zodiac:Virgo
- Gender:Male
- Location:Daly City, CA
- OS:Windows Vista
-
Country:
- Time Online: 57d 10h 30m 28s
#14 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 11 September 2011 - 10:29 PM
Ok Broni I've finished Malwarebytes..saved the log to my desktop... downloaded GMER aswMBR and dds...Now it says to disconnect from the internet... Do I disconnect then run GMER....it don't say in the instructions but says to disconnect then the next thing it shows a black screen that shows an example of AswMBR????? So when do I run the GMER? before I disconnect or after ..and where do I disable script blocking?
#15 Re: [Inactive] Windows XP and Google Chrome
-
-
- 24,883 posts
- Joined: October 04, 2004
- 1,860 topics
- Age: 57
- Skin: IPBoard wide
- Local time: 01:15 AM
Malware Annihilator
-
Zodiac:Virgo
- Gender:Male
- Location:Daly City, CA
- OS:Windows Vista
-
Country:
- Time Online: 57d 10h 30m 28s
Posted 11 September 2011 - 10:47 PM
Disconnect from the internet just before running GMER.
IF you use Spybot...
Disable TeaTimer, as it'll interfere with the cleaning process:
Right click Spybot's TeaTimer System Tray Icon.
Click Exit Spybot-S&D Resident.
TeaTimer closes.
NOTE. If on re-boot, Spybot inquires about registry change(s), allow it.
Alternatively, I suggest, you uninstall Spybot since it's a tool of the past.
=================================================
IF you use Windows Defender...
Disable Windows Defender, as it'll interfere with cleaning process:
- Open Windows Defender by clicking the Start, clicking All Programs, and then clicking Windows Defender.
- Click Tools
then...
++ Windows XP:
- Click General Settings
- Scroll down to Real Time Protection Options
- Uncheck Turn on Real Time Protection
- After you uncheck this, click on the Save button
- Close Windows Defender
++ Windows Vista:
- Click Options
- Under Administrator options, clear the Use Windows Defender check box, and then click Save.
Enable Windows Defender, when all cleaning is done.
Quote
where do I disable script blocking?
IF you use Spybot...
Disable TeaTimer, as it'll interfere with the cleaning process:
Right click Spybot's TeaTimer System Tray Icon.
Click Exit Spybot-S&D Resident.
TeaTimer closes.
NOTE. If on re-boot, Spybot inquires about registry change(s), allow it.
Alternatively, I suggest, you uninstall Spybot since it's a tool of the past.
=================================================
IF you use Windows Defender...
Disable Windows Defender, as it'll interfere with cleaning process:
- Open Windows Defender by clicking the Start, clicking All Programs, and then clicking Windows Defender.
- Click Tools
then...
++ Windows XP:
- Click General Settings
- Scroll down to Real Time Protection Options
- Uncheck Turn on Real Time Protection
- After you uncheck this, click on the Save button
- Close Windows Defender
++ Windows Vista:
- Click Options
- Under Administrator options, clear the Use Windows Defender check box, and then click Save.
Enable Windows Defender, when all cleaning is done.
#16 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 12 September 2011 - 12:19 AM
Ok Broni.. all done ...The last time I did this I attached the logs??? Do I simply copy & paste them now? I don't see anything here that allows me to attach??
#17 Re: [Inactive] Windows XP and Google Chrome
-
-
- 24,883 posts
- Joined: October 04, 2004
- 1,860 topics
- Age: 57
- Skin: IPBoard wide
- Local time: 01:15 AM
Malware Annihilator
-
Zodiac:Virgo
- Gender:Male
- Location:Daly City, CA
- OS:Windows Vista
-
Country:
- Time Online: 57d 10h 30m 28s
#18 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 12 September 2011 - 03:55 AM
OK here they are
Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org
Database version: 7694
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
9/11/2011 3:01:23 PM
mbam-log-2011-09-11 (15-01-22).txt
Scan type: Full scan (C:\|G:\|)
Objects scanned: 663181
Time elapsed: 5 hour(s), 55 minute(s), 51 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
--------------------------------------------------------------------------------------------------------
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-09-11 17:06:12
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e HTS541010G9SA00 rev.MBZOC65D
Running: o0qs3zi9.exe; Driver: C:\DOCUME~1\ARLENE\LOCALS~1\Temp\kgkdqpow.sys
---- Devices - GMER 1.0.15 ----
Device Ntfs.sys (NT File System Driver/Microsoft Corporation)
AttachedDevice \Driver\Tcpip \Device\Ip SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Tcp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Udp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\RawIp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
---- EOF - GMER 1.0.15 ----
------------------------------------------------------------------------------------------------------------------
aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
Run date: 2011-09-11 17:09:17
-----------------------------
17:09:17.968 OS Version: Windows 5.1.2600 Service Pack 3
17:09:17.968 Number of processors: 2 586 0xE08
17:09:17.968 ComputerName: VALUED-2D4C2DDC UserName: ARLENE
17:09:18.828 Initialize success
17:09:32.781 AVAST engine download error: 0
17:10:37.593 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e
17:10:37.593 Disk 0 Vendor: HTS541010G9SA00 MBZOC65D Size: 95396MB BusType: 3
17:10:37.609 Disk 1 \Device\Harddisk1\DR3 -> \Device\00000095
17:10:37.609 Disk 1 Vendor: ( Size: 95396MB BusType: 0
17:10:39.687 Disk 0 MBR read successfully
17:10:39.687 Disk 0 MBR scan
17:10:39.687 Disk 0 Windows XP default MBR code
17:10:39.750 Disk 0 scanning sectors +195366465
17:10:39.937 Disk 0 scanning C:\WINDOWS\system32\drivers
17:11:10.359 Service scanning
17:11:11.671 Modules scanning
17:11:48.609 Disk 0 trace - called modules:
17:11:48.734 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys
17:11:49.234 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86d4bab8]
17:11:49.234 3 CLASSPNP.SYS[f755efd7] -> nt!IofCallDriver -> \Device\0000008d[0x86d069e8]
17:11:49.234 5 ACPI.sys[f73d5620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-e[0x86d05d98]
17:11:49.234 Scan finished successfully
17:12:01.421 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\ARLENE\Desktop\MBR.dat"
17:12:01.500 The log file has been saved successfully to "C:\Documents and Settings\ARLENE\Desktop\aswMBR.txt"
-----------------------------------------------------------------------------------------------------------------------------
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by ARLENE at 17:12:52 on 2011-09-11
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.341 [GMT -7:00]
.
AV: Norton AntiVirus *Disabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\WINDOWS\System32\svchost.exe -k Akamai
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe
C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService2.exe
C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Secunia\PSI\PSIA.exe
C:\Program Files\Common Files\Sony Shared\WMPlugIn\SonicStageMonitoring.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe
C:\Program Files\Secunia\PSI\sua.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9FA.EXE
C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\W3i\InstallIQUpdater\InstallIQUpdater.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\wscntfy.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.ca/
uSearch Page =
uSearch Bar =
uInternet Settings,ProxyOverride = *.local
mSearchAssistant =
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton antivirus\engine\18.6.0.29\ips\IPSBHO.DLL
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\arlene\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [InstallIQUpdater] "c:\program files\w3i\installiqupdater\InstallIQUpdater.exe" /silent /autorun
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [Apoint] c:\program files\apoint\Apoint.exe
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [VAIO Recovery] c:\windows\sonysys\vaio recovery\PartSeal.exe
mRun: [SonyPowerCfg] c:\program files\sony\vaio power management\SPMgr.exe
mRun: [ISBMgr.exe] c:\program files\sony\isb utility\ISBMgr.exe
mRun: [VAIO Update 2] "c:\program files\sony\vaio update 2\VAIOUpdt.exe" /Stationary
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [Switcher.exe] c:\program files\sony\wireless switch setting utility\Switcher.exe
mRun: [VAIOCameraUtility] "c:\program files\sony\vaio camera utility\VCUServe.exe"
mRun: [PartSeal] c:\windows\sonysys\vaio recovery\PartSeal.exe
mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [EPSON Stylus Photo R320 Series] c:\windows\system32\spool\drivers\w32x86\3\E_FATI9FA.EXE /P30 "EPSON Stylus Photo R320 Series" /O6 "USB001" /M "Stylus Photo R320"
mRun: [MaxMenuMgr] "c:\program files\seagate\seagatemanager\freeagent status\StxMenuMgr.exe"
mRun: [ArcSoft Connection Service] c:\program files\common files\arcsoft\connection service\bin\ACDaemon.exe
mRun: [USSShReg] c:\progra~1\uleads~1\uleadp~1\ssaver\Ussshreg.exe /r
mRun: [NUSB3MON] "c:\program files\nec electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\secuni~1.lnk - c:\program files\secunia\psi\psi_tray.exe
IE: &Search - http://tbedits.dicti...EE&n=2011062902
IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office11\EXCEL.EXE/3000
IE: Transfer by Image Converter 2 Plus - c:\program files\sony\image converter 2\menu.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office11\REFIEBAR.DLL
DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - file:///C:/Program%20Files/SCRABBLE/Images/stg_drm.ocx
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1289250041187
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos-beta/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - file:///C:/Program%20Files/SCRABBLE/Images/armhelper.ocx
Notify: igfxcui - igfxdev.dll
Notify: VESWinlogon - VESWinlogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
============= SERVICES / DRIVERS ===============
.
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nav\1206000.01d\SymDS.sys [2011-5-18 340088]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nav\1206000.01d\SymEFA.sys [2011-5-18 744568]
R1 BHDrvx86;BHDrvx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.6.0.29\definitions\bashdefs\20110901.001\BHDrvx86.sys [2011-9-1 815736]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nav\1206000.01d\Ironx86.sys [2011-5-18 136312]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2005-12-15 14336]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\seagate\seagatemanager\sync\FreeAgentService.exe [2009-9-26 189736]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB;c:\program files\microsoft sql server\mssql$vaio_vedb\binn\sqlservr.exe -svaio_vedb --> c:\program files\microsoft sql server\mssql$vaio_vedb\binn\sqlservr.exe -sVAIO_VEDB [?]
R2 NAV;Norton AntiVirus;c:\program files\norton antivirus\engine\18.6.0.29\ccSvcHst.exe [2011-5-18 130008]
R2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\program files\nitro pdf\reader\NitroPDFReaderDriverService2.exe [2011-6-21 196912]
R2 regi;regi;c:\windows\system32\drivers\regi.sys [2010-7-5 10680]
R2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\secunia\psi\psia.exe [2011-4-18 993848]
R2 Secunia Update Agent;Secunia Update Agent;c:\program files\secunia\psi\sua.exe [2011-4-18 399416]
R2 SVKP;SVKP;c:\windows\system32\SVKP.sys [2011-9-9 2368]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2011-7-27 105592]
R3 IDSxpx86;IDSxpx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.6.0.29\definitions\ipsdefs\20110909.030\IDSXpx86.sys [2011-9-9 356280]
R3 NAVENG;NAVENG;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.6.0.29\definitions\virusdefs\20110911.002\NAVENG.SYS [2011-9-11 86136]
R3 NAVEX15;NAVEX15;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.6.0.29\definitions\virusdefs\20110911.002\NAVEX15.SYS [2011-9-11 1576312]
R3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2010-9-1 15544]
R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [2005-12-15 28800]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2005-12-15 217472]
S0 ognl;ognl;c:\windows\system32\drivers\hten.sys --> c:\windows\system32\drivers\hten.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-11-13 136176]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-11-13 136176]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2009-11-20 58880]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2009-11-20 137728]
S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB;c:\program files\microsoft sql server\mssql$vaio_vedb\binn\sqlagent.exe -i vaio_vedb --> c:\program files\microsoft sql server\mssql$vaio_vedb\binn\sqlagent.EXE -i VAIO_VEDB [?]
S3 tvnserver;TightVNC Server;c:\documents and settings\arlene\local settings\application data\crossloop\tvnserver.exe [2011-5-12 814080]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 CrossLoopService;CrossLoop Service;c:\documents and settings\arlene\local settings\application data\crossloop\CrossLoopService.exe [2011-5-12 560848]
.
=============== Created Last 30 ================
.
2011-09-09 20:36:04 2368 ----a-w- c:\windows\system32\SVKP.sys
2011-09-04 21:39:33 -------- d-----w- c:\program files\Febooti fileTweak Case
2011-09-03 19:01:27 -------- d-----w- c:\documents and settings\arlene\application data\TightVNC
2011-09-03 10:17:37 599040 -c----w- c:\windows\system32\dllcache\crypt32.dll
2011-08-31 18:30:51 -------- d-----w- c:\documents and settings\all users\application data\GamesBar
2011-08-31 18:30:48 -------- d-----w- c:\program files\GamesBar
2011-08-31 18:30:46 -------- d-----w- c:\program files\common files\Oberon Media
2011-08-31 18:01:09 -------- d-----w- c:\documents and settings\arlene\local settings\application data\Oberon Media
2011-08-26 16:43:02 -------- d-----w- c:\program files\FileStream
2011-08-24 17:12:20 -------- d-----w- c:\program files\CCleaner
2011-08-24 06:13:04 -------- d-----w- c:\program files\Ulead Systems
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2011-08-24 04:30:47 -------- d-----w- c:\documents and settings\all users\Uniblue
2011-08-23 22:47:01 -------- d-----w- c:\documents and settings\arlene\application data\IObit
2011-08-23 22:35:23 -------- d-----w- c:\program files\Citrix
2011-08-23 22:35:03 -------- d-----w- c:\documents and settings\arlene\local settings\application data\Citrix
2011-08-23 22:35:02 110456 ----a-w- c:\documents and settings\arlene\g2ax_customer_downloadhelper_win32_x86.exe
2011-08-23 22:12:40 8 --sh--r- c:\documents and settings\all users\application data\CB42B86796.sys
2011-08-23 22:12:39 2828 --sha-w- c:\documents and settings\all users\application data\KGyGaAvL.sys
2011-08-23 16:31:45 -------- d-----w- c:\program files\common files\Akamai
2011-08-23 02:02:10 -------- d-----w- c:\documents and settings\arlene\WINDOWS
2011-08-22 22:25:09 -------- d--h--w- c:\windows\system32\GroupPolicy
2011-08-22 17:55:12 -------- d-----w- c:\documents and settings\all users\application data\Protexis
2011-08-22 17:49:28 -------- d-----w- c:\program files\SmartSound Software
2011-08-22 17:49:23 -------- d-----w- c:\documents and settings\all users\application data\SmartSound Software Inc
2011-08-22 17:47:58 -------- d-----w- c:\windows\system32\windows media
2011-08-22 17:30:27 -------- d-----w- c:\program files\Windows Media Components
2011-08-22 17:27:55 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2011-08-22 05:33:00 -------- d-----w- c:\documents and settings\arlene\application data\SpinTop
2011-08-20 19:54:26 -------- d-----w- c:\documents and settings\arlene\application data\BabylonToolbar
2011-08-20 19:22:53 -------- d-----w- c:\documents and settings\all users\application data\Trymedia
2011-08-20 19:21:33 -------- d-----w- c:\documents and settings\all users\application data\BabylonUpdater
2011-08-20 19:21:31 -------- d-----w- c:\documents and settings\arlene\local settings\application data\Babylon
2011-08-20 19:21:27 -------- d-----w- c:\documents and settings\arlene\application data\Babylon
2011-08-20 19:21:27 -------- d-----w- c:\documents and settings\all users\application data\Babylon
.
==================== Find3M ====================
.
2011-09-03 10:17:37 599040 ----a-w- c:\windows\system32\crypt32.dll
2011-08-24 04:52:08 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-07-15 13:29:31 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys
2011-07-07 02:52:42 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-07-07 02:52:42 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-07 01:58:48 0 ---ha-w- c:\documents and settings\arlene\tosxytuhwu.tmp
2011-07-07 01:56:08 203776 --sh--w- c:\windows\system32\unrar.exe
2011-07-06 01:37:00 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2011-07-06 01:37:00 69632 ----a-w- c:\windows\system32\QuickTime.qts
2011-06-24 14:10:36 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2011-06-23 18:36:30 916480 ----a-w- c:\windows\system32\wininet.dll
2011-06-23 18:36:30 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-06-23 18:36:30 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-06-23 12:05:13 385024 ----a-w- c:\windows\system32\html.iec
2011-06-22 01:56:44 17712 ----a-w- c:\windows\system32\nitrolocalui2.dll
2011-06-22 01:56:42 26416 ----a-w- c:\windows\system32\nitrolocalmon2.dll
2011-06-20 17:44:52 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-05-09 00:03:34 11991272 ----a-w- c:\program files\mp3rocket.exe
2009-06-03 14:34:54 3752448 ----a-w- c:\program files\ShowPresenter2008-02-29.msi
.
============= FINISH: 17:13:11.87 ===============
-------------------------------------------------------------------------------------------------------------------------------------
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 11/8/2010 12:28:10 PM
System Uptime: 9/11/2011 3:08:41 PM (2 hours ago)
.
Motherboard: Sony Corporation | | VAIO
Processor: Genuine Intel® CPU T2300 @ 1.66GHz | N/A | 1662/167mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 87 GiB total, 19.078 GiB free.
D: is Removable
E: is CDROM ()
F: is Removable
G: is FIXED (NTFS) - 1863 GiB total, 980.048 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: 1394 Net Adapter
Device ID: V1394\NIC1394\1F900698004603
Manufacturer: Microsoft
Name: 1394 Net Adapter #2
PNP Device ID: V1394\NIC1394\1F900698004603
Service: NIC1394
.
Class GUID:
Description: Microtek SimpleSCSI Miniport Drivers
Device ID: ROOT\SCSIADAPTER\SMPLSCSI.INF&SMPLSCSI
Manufacturer: Company
Name: Microtek SimpleSCSI Miniport Drivers
PNP Device ID: ROOT\SCSIADAPTER\SMPLSCSI.INF&SMPLSCSI
Service: SMPLSCSI
.
==== System Restore Points ===================
.
RP283: 8/13/2011 3:19:09 AM - System Checkpoint
RP284: 8/14/2011 2:20:20 PM - System Checkpoint
RP285: 8/15/2011 7:32:28 PM - System Checkpoint
RP286: 8/17/2011 8:53:43 AM - System Checkpoint
RP287: 8/18/2011 10:14:26 AM - System Checkpoint
RP288: 8/19/2011 10:32:06 AM - System Checkpoint
RP289: 8/20/2011 12:16:02 PM - System Checkpoint
RP290: 8/21/2011 1:00:19 PM - System Checkpoint
RP291: 8/22/2011 8:03:13 AM - Installed Akamai NetSession Interface
RP292: 8/22/2011 8:06:47 AM - Installed Akamai NetSession Interface
RP293: 8/22/2011 10:27:33 AM - Installed DirectX
RP294: 8/22/2011 10:49:11 AM - Installed SmartSound Common Data
RP295: 8/22/2011 10:49:55 AM - Installed SmartSound Quicktracks 5
RP296: 8/22/2011 2:04:01 PM - Installed DirectX
RP297: 8/22/2011 2:25:37 PM - Configured SmartSound Quicktracks 5
RP298: 8/22/2011 9:54:55 PM - Installed PhotoImpact X3
RP299: 8/23/2011 8:30:16 AM - Configured PhotoImpact X3
RP300: 8/23/2011 8:42:02 AM - Removed Skype Toolbars
RP301: 8/23/2011 8:42:51 AM - Removed Skype™ 5.1
RP302: 8/23/2011 8:44:01 AM - Configured SmartSound Common Data
RP303: 8/23/2011 9:31:37 AM - Installed Akamai NetSession Interface
RP304: 8/23/2011 10:21:04 AM - Installed Akamai NetSession Interface
RP305: 8/23/2011 2:39:40 PM - Installed DirectX
RP306: 8/23/2011 6:53:36 PM - Software Distribution Service 3.0
RP307: 8/23/2011 8:07:50 PM - Software Distribution Service 3.0
RP308: 8/24/2011 11:02:41 AM - Installed Windows Media Player 11
RP309: 8/24/2011 11:06:47 AM - Installed Windows XP MSCompPackV1.
RP310: 8/25/2011 3:00:28 AM - Software Distribution Service 3.0
RP311: 8/26/2011 11:25:37 AM - System Checkpoint
RP312: 8/27/2011 2:24:34 PM - System Checkpoint
RP313: 8/30/2011 12:03:01 AM - System Checkpoint
RP314: 8/31/2011 11:48:36 AM - System Checkpoint
RP315: 9/1/2011 1:38:18 PM - System Checkpoint
RP316: 9/2/2011 7:00:33 PM - System Checkpoint
RP317: 9/4/2011 11:41:37 AM - System Checkpoint
RP318: 9/4/2011 2:34:10 PM - Removed Febooti fileTweak
RP319: 9/4/2011 2:34:37 PM - Removed Febooti fileTweak Case
RP320: 9/4/2011 2:37:54 PM - Installed Febooti fileTweak
RP321: 9/4/2011 2:39:31 PM - Installed Febooti fileTweak Case
RP322: 9/5/2011 9:48:07 PM - System Checkpoint
RP323: 9/6/2011 10:32:26 PM - System Checkpoint
RP324: 9/6/2011 11:24:44 PM - Software Distribution Service 3.0
RP325: 9/8/2011 9:25:58 AM - System Checkpoint
RP326: 9/9/2011 2:10:24 PM - System Checkpoint
RP327: 9/10/2011 3:15:09 PM - System Checkpoint
RP328: 9/11/2011 4:19:06 PM - System Checkpoint
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Reader X (10.1.0)
Akamai NetSession Interface
Anti-Twin (Installation 11/9/2010)
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ArcSoft Print Creations
ArcSoft Print Creations - Album Page
ArcSoft Print Creations - Funhouse
ArcSoft Print Creations - Greeting Card
ArcSoft Print Creations - Photo Book
ArcSoft Print Creations - Photo Calendar
ArcSoft Print Creations - Scrapbook
ArcSoft Print Creations - Slimline Card
Auslogics Disk Defrag
AutoUpdate
Big Fish Games: Game Manager
Bonjour
CCleaner
CCScore
Click to DVD 2.0.03 Menu Data
Click to DVD 2.5.00
Compatibility Pack for the 2007 Office system
Corel WinDVD 2010
CrossLoop 2.74
DivX
DVgate Plus
EPSON CardMonitor
EPSON PhotoStarter3.0
EPSON Print CD
EPSON Printer Software
ESPR320 Reference Guide
ESSBrwr
ESSCDBK
ESScore
ESSgui
ESSini
ESSPCD
ESSPDock
ESSTOOLS
essvatgt
Febooti fileTweak
Febooti fileTweak Case
FileHippo.com Update Checker
Free Opener
Google Chrome
Google Earth
Google Update Helper
HDAUDIO SoftV92 Data Fax Modem with SmartCP
High Definition Audio Driver Package - KB835221
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 10 (KB903157)
Hotfix for Windows Media Player 10 (KB910393)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB932716-v2)
Hotfix for Windows XP (KB945060-v3)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB954708)
Hotfix for Windows XP (KB961118)
Image Converter 2 Plus
ImageStation
Ink Monitor
InstallIQ Updater
Intel® Graphics Media Accelerator Driver
Intel® PRO Network Connections Drivers
Intel® PROSet/Wireless Software
InterVideo WinDVD for VAIO
ISScript
Itibiti RTC
Java Auto Updater
Java™ 6 Update 24
Java™ 6 Update 26
Junk Mail filter update
K-Lite Codec Pack 7.0.0 (Standard)
Karaoke Song List Creator Professional KJ Edition 2004
Ken Ward's Zipper 1.4000
Knctr
Kodak EasyShare software
LAN Setting Utility
Luxor Bundle Pack
Malwarebytes' Anti-Malware version 1.51.1.1800
mCore
mDriver
Memory Stick Formatter
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Office File Validation Add-In
Microsoft Office Live Add-in 1.3
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Standard Edition 2003
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft SQL Server Desktop Engine (VAIO_VEDB)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
Microsoft Works
Microtek ScanSuite 1.11
Microtek ScanWizard
mIRC
mMHouse
MobileMe Control Panel
MP3 Rocket
MP3+G Toolz
mPfMgr
mProSafe
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6.0 Parser
mWlsSafe
mXML
NEC Electronics USB 3.0 Host Controller Driver
netbrdg
Nitro PDF Reader 2
Norton AntiVirus
NVIDIA Drivers
Office 2003 Trial Assistant
OfotoXMI
OpenMG Limited Patch 4.3-05-10-05-01
OpenMG Metadata Extractor for Windows Media Player
OpenMG Secure Module 4.3.00
ParetoLogic FileCure
PhotoScape
Power CD+G Burner
Power CD+G Player Pro
PrintMaster 2011 Platinum
Quicken 2006
QuickTime
Request Slip Generator
Roxio DigitalMedia Audio
Roxio DigitalMedia Data
Seagate Manager Installer
Search Enhancement by AOL Search
Secunia PSI (2.0.0.3003)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Encoder (KB2447961)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360131)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Segoe UI
Setting Utility Series
SFR
SHASTA
Show Presenter
SigmaTel Audio
skin0001
SKINXSDK
SmartSound Common Data
SmartSound Quicktracks 5
Sonic Encoders
SonicStage Mastering Studio 2.1
SonicStage Mastering Studio Audio Filter
SonicStage Mastering Studio Audio Filter Custom Preset
SonicStage Mastering Studio Plugins
Sony Certificate PCH
Sony MP4 Shared Library
Sony Utilities DLL
Sony Video Shared Library
staticcr
Switch Sound File Converter
TeamViewer 6
TurboZIP Express
Ulead PhotoImpact 4.0
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 8 (KB2362765)
Update for Windows Internet Explorer 8 (KB2447568)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2492386)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update Rollup 2 for Windows XP Media Center Edition 2005
VAIO Breeze Wallpaper
VAIO Camera Utility
VAIO Central
VAIO Entertainment Platform
VAIO Event Service
VAIO Light Flo Wallpaper
VAIO Media 5.0
VAIO Media AC3 Decoder 1.0
VAIO Media Integrated Server 5.0
VAIO Media Redistribution 5.0
VAIO Media Registration Tool 5.0
VAIO Original Screen Saver
VAIO Original Screen Saver VAIO Cozy Screen SD Wide Contents
VAIO Power Management
VAIO Registration
VAIO Security Center
VAIO Support Central
VAIO Update 2
VAIO Wireless LAN Setup Utility
VAIOSurveySA
VPRINTOL
WebFldrs XP
Winamp
Winamp Detector Plug-in
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer
Windows Media Encoder 9 Series
Windows Media Format 11 runtime
Windows Media Player 10 Hotfix [See KB886612 for more information]
Windows Media Player 11
Windows PowerShell™ 1.0
Windows Resource Kit Tools - SubInAcl.exe
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3
WinZip Self-Extractor
WIRELESS
Wireless Switch Setting Utility
Yahoo! Messenger
Yahoo! Software Update
YouTube Downloader 3.3
.
==== Event Viewer Messages From Past Week ========
.
9/8/2011 8:15:46 AM, error: ACPIEC [1] - \Device\ACPIEC: The embedded controller (EC) hardware didn't respond within the timeout period. This may indicate an error in the EC hardware or firmware, or possibly a poorly designed BIOS which accesses the EC in an unsafe manner. The EC driver will retry the failed transaction if possible.
9/5/2011 8:41:36 AM, error: System Error [1003] - Error code 000000ea, parameter1 84896798, parameter2 8435fec8, parameter3 83d86678, parameter4 00000001.
9/5/2011 10:55:18 AM, error: Service Control Manager [7034] - The VAIO Entertainment UPnP Client Adapter service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:18 AM, error: Service Control Manager [7034] - The VAIO Entertainment File Import Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:18 AM, error: Service Control Manager [7034] - The VAIO Entertainment Database Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:18 AM, error: Service Control Manager [7034] - The Secunia Update Agent service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:17 AM, error: Service Control Manager [7034] - The VAIO Event Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:17 AM, error: Service Control Manager [7034] - The SonicStageMonitoring service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:17 AM, error: Service Control Manager [7034] - The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:17 AM, error: Service Control Manager [7034] - The Intel® PROSet/Wireless Registry Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:16 AM, error: Service Control Manager [7034] - The Protexis Licensing V2 service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:16 AM, error: Service Control Manager [7034] - The NitroPDFReaderDriverCreatorReadSpool2 service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The Seagate Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The Intel® PROSet/Wireless Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The Intel® PROSet/Wireless Event Log service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The Bonjour Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The ArcSoft Connect Daemon service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
9/4/2011 12:59:34 PM, error: ialm [108] - The driver ialmrnt5 for the display device \Device\Video0 got stuck in an infinite loop. This usually indicates a problem with the device itself or with the device driver programming the hardware incorrectly. Please check with your hardware device vendor for any driver updates.
9/4/2011 1:20:28 PM, error: System Error [1003] - Error code 1000000a, parameter1 00000063, parameter2 0000001c, parameter3 00000000, parameter4 80535cc8.
9/4/2011 1:18:38 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SMPLSCSI
9/4/2011 1:18:34 PM, error: Service Control Manager [7000] - The ONSIO service failed to start due to the following error: The system cannot find the file specified.
9/4/2011 1:18:34 PM, error: Service Control Manager [7000] - The ASPI32 service failed to start due to the following error: The system cannot find the file specified.
9/11/2011 5:01:28 PM, error: atapi [9] - The device, \Device\Ide\IdePort1, did not respond within the timeout period.
9/11/2011 3:14:25 PM, error: System Error [1003] - Error code 000000ea, parameter1 83f85020, parameter2 84331f60, parameter3 83d19188, parameter4 00000001.
.
==== End Of File ===========================
Katz1113
Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org
Database version: 7694
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
9/11/2011 3:01:23 PM
mbam-log-2011-09-11 (15-01-22).txt
Scan type: Full scan (C:\|G:\|)
Objects scanned: 663181
Time elapsed: 5 hour(s), 55 minute(s), 51 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
--------------------------------------------------------------------------------------------------------
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-09-11 17:06:12
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e HTS541010G9SA00 rev.MBZOC65D
Running: o0qs3zi9.exe; Driver: C:\DOCUME~1\ARLENE\LOCALS~1\Temp\kgkdqpow.sys
---- Devices - GMER 1.0.15 ----
Device Ntfs.sys (NT File System Driver/Microsoft Corporation)
AttachedDevice \Driver\Tcpip \Device\Ip SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Tcp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Udp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\RawIp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
---- EOF - GMER 1.0.15 ----
------------------------------------------------------------------------------------------------------------------
aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
Run date: 2011-09-11 17:09:17
-----------------------------
17:09:17.968 OS Version: Windows 5.1.2600 Service Pack 3
17:09:17.968 Number of processors: 2 586 0xE08
17:09:17.968 ComputerName: VALUED-2D4C2DDC UserName: ARLENE
17:09:18.828 Initialize success
17:09:32.781 AVAST engine download error: 0
17:10:37.593 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e
17:10:37.593 Disk 0 Vendor: HTS541010G9SA00 MBZOC65D Size: 95396MB BusType: 3
17:10:37.609 Disk 1 \Device\Harddisk1\DR3 -> \Device\00000095
17:10:37.609 Disk 1 Vendor: ( Size: 95396MB BusType: 0
17:10:39.687 Disk 0 MBR read successfully
17:10:39.687 Disk 0 MBR scan
17:10:39.687 Disk 0 Windows XP default MBR code
17:10:39.750 Disk 0 scanning sectors +195366465
17:10:39.937 Disk 0 scanning C:\WINDOWS\system32\drivers
17:11:10.359 Service scanning
17:11:11.671 Modules scanning
17:11:48.609 Disk 0 trace - called modules:
17:11:48.734 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys
17:11:49.234 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86d4bab8]
17:11:49.234 3 CLASSPNP.SYS[f755efd7] -> nt!IofCallDriver -> \Device\0000008d[0x86d069e8]
17:11:49.234 5 ACPI.sys[f73d5620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-e[0x86d05d98]
17:11:49.234 Scan finished successfully
17:12:01.421 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\ARLENE\Desktop\MBR.dat"
17:12:01.500 The log file has been saved successfully to "C:\Documents and Settings\ARLENE\Desktop\aswMBR.txt"
-----------------------------------------------------------------------------------------------------------------------------
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by ARLENE at 17:12:52 on 2011-09-11
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.341 [GMT -7:00]
.
AV: Norton AntiVirus *Disabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\WINDOWS\System32\svchost.exe -k Akamai
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe
C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService2.exe
C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Secunia\PSI\PSIA.exe
C:\Program Files\Common Files\Sony Shared\WMPlugIn\SonicStageMonitoring.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe
C:\Program Files\Secunia\PSI\sua.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9FA.EXE
C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\W3i\InstallIQUpdater\InstallIQUpdater.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\wscntfy.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.ca/
uSearch Page =
uSearch Bar =
uInternet Settings,ProxyOverride = *.local
mSearchAssistant =
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton antivirus\engine\18.6.0.29\ips\IPSBHO.DLL
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\arlene\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [InstallIQUpdater] "c:\program files\w3i\installiqupdater\InstallIQUpdater.exe" /silent /autorun
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [Apoint] c:\program files\apoint\Apoint.exe
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [VAIO Recovery] c:\windows\sonysys\vaio recovery\PartSeal.exe
mRun: [SonyPowerCfg] c:\program files\sony\vaio power management\SPMgr.exe
mRun: [ISBMgr.exe] c:\program files\sony\isb utility\ISBMgr.exe
mRun: [VAIO Update 2] "c:\program files\sony\vaio update 2\VAIOUpdt.exe" /Stationary
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [Switcher.exe] c:\program files\sony\wireless switch setting utility\Switcher.exe
mRun: [VAIOCameraUtility] "c:\program files\sony\vaio camera utility\VCUServe.exe"
mRun: [PartSeal] c:\windows\sonysys\vaio recovery\PartSeal.exe
mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [EPSON Stylus Photo R320 Series] c:\windows\system32\spool\drivers\w32x86\3\E_FATI9FA.EXE /P30 "EPSON Stylus Photo R320 Series" /O6 "USB001" /M "Stylus Photo R320"
mRun: [MaxMenuMgr] "c:\program files\seagate\seagatemanager\freeagent status\StxMenuMgr.exe"
mRun: [ArcSoft Connection Service] c:\program files\common files\arcsoft\connection service\bin\ACDaemon.exe
mRun: [USSShReg] c:\progra~1\uleads~1\uleadp~1\ssaver\Ussshreg.exe /r
mRun: [NUSB3MON] "c:\program files\nec electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\secuni~1.lnk - c:\program files\secunia\psi\psi_tray.exe
IE: &Search - http://tbedits.dicti...EE&n=2011062902
IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office11\EXCEL.EXE/3000
IE: Transfer by Image Converter 2 Plus - c:\program files\sony\image converter 2\menu.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office11\REFIEBAR.DLL
DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - file:///C:/Program%20Files/SCRABBLE/Images/stg_drm.ocx
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1289250041187
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos-beta/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - file:///C:/Program%20Files/SCRABBLE/Images/armhelper.ocx
Notify: igfxcui - igfxdev.dll
Notify: VESWinlogon - VESWinlogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
============= SERVICES / DRIVERS ===============
.
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nav\1206000.01d\SymDS.sys [2011-5-18 340088]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nav\1206000.01d\SymEFA.sys [2011-5-18 744568]
R1 BHDrvx86;BHDrvx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.6.0.29\definitions\bashdefs\20110901.001\BHDrvx86.sys [2011-9-1 815736]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nav\1206000.01d\Ironx86.sys [2011-5-18 136312]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2005-12-15 14336]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\seagate\seagatemanager\sync\FreeAgentService.exe [2009-9-26 189736]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB;c:\program files\microsoft sql server\mssql$vaio_vedb\binn\sqlservr.exe -svaio_vedb --> c:\program files\microsoft sql server\mssql$vaio_vedb\binn\sqlservr.exe -sVAIO_VEDB [?]
R2 NAV;Norton AntiVirus;c:\program files\norton antivirus\engine\18.6.0.29\ccSvcHst.exe [2011-5-18 130008]
R2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\program files\nitro pdf\reader\NitroPDFReaderDriverService2.exe [2011-6-21 196912]
R2 regi;regi;c:\windows\system32\drivers\regi.sys [2010-7-5 10680]
R2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\secunia\psi\psia.exe [2011-4-18 993848]
R2 Secunia Update Agent;Secunia Update Agent;c:\program files\secunia\psi\sua.exe [2011-4-18 399416]
R2 SVKP;SVKP;c:\windows\system32\SVKP.sys [2011-9-9 2368]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2011-7-27 105592]
R3 IDSxpx86;IDSxpx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.6.0.29\definitions\ipsdefs\20110909.030\IDSXpx86.sys [2011-9-9 356280]
R3 NAVENG;NAVENG;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.6.0.29\definitions\virusdefs\20110911.002\NAVENG.SYS [2011-9-11 86136]
R3 NAVEX15;NAVEX15;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nav_18.6.0.29\definitions\virusdefs\20110911.002\NAVEX15.SYS [2011-9-11 1576312]
R3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2010-9-1 15544]
R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [2005-12-15 28800]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2005-12-15 217472]
S0 ognl;ognl;c:\windows\system32\drivers\hten.sys --> c:\windows\system32\drivers\hten.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-11-13 136176]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-11-13 136176]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2009-11-20 58880]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2009-11-20 137728]
S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB;c:\program files\microsoft sql server\mssql$vaio_vedb\binn\sqlagent.exe -i vaio_vedb --> c:\program files\microsoft sql server\mssql$vaio_vedb\binn\sqlagent.EXE -i VAIO_VEDB [?]
S3 tvnserver;TightVNC Server;c:\documents and settings\arlene\local settings\application data\crossloop\tvnserver.exe [2011-5-12 814080]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 CrossLoopService;CrossLoop Service;c:\documents and settings\arlene\local settings\application data\crossloop\CrossLoopService.exe [2011-5-12 560848]
.
=============== Created Last 30 ================
.
2011-09-09 20:36:04 2368 ----a-w- c:\windows\system32\SVKP.sys
2011-09-04 21:39:33 -------- d-----w- c:\program files\Febooti fileTweak Case
2011-09-03 19:01:27 -------- d-----w- c:\documents and settings\arlene\application data\TightVNC
2011-09-03 10:17:37 599040 -c----w- c:\windows\system32\dllcache\crypt32.dll
2011-08-31 18:30:51 -------- d-----w- c:\documents and settings\all users\application data\GamesBar
2011-08-31 18:30:48 -------- d-----w- c:\program files\GamesBar
2011-08-31 18:30:46 -------- d-----w- c:\program files\common files\Oberon Media
2011-08-31 18:01:09 -------- d-----w- c:\documents and settings\arlene\local settings\application data\Oberon Media
2011-08-26 16:43:02 -------- d-----w- c:\program files\FileStream
2011-08-24 17:12:20 -------- d-----w- c:\program files\CCleaner
2011-08-24 06:13:04 -------- d-----w- c:\program files\Ulead Systems
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2011-08-24 04:58:20 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2011-08-24 04:30:47 -------- d-----w- c:\documents and settings\all users\Uniblue
2011-08-23 22:47:01 -------- d-----w- c:\documents and settings\arlene\application data\IObit
2011-08-23 22:35:23 -------- d-----w- c:\program files\Citrix
2011-08-23 22:35:03 -------- d-----w- c:\documents and settings\arlene\local settings\application data\Citrix
2011-08-23 22:35:02 110456 ----a-w- c:\documents and settings\arlene\g2ax_customer_downloadhelper_win32_x86.exe
2011-08-23 22:12:40 8 --sh--r- c:\documents and settings\all users\application data\CB42B86796.sys
2011-08-23 22:12:39 2828 --sha-w- c:\documents and settings\all users\application data\KGyGaAvL.sys
2011-08-23 16:31:45 -------- d-----w- c:\program files\common files\Akamai
2011-08-23 02:02:10 -------- d-----w- c:\documents and settings\arlene\WINDOWS
2011-08-22 22:25:09 -------- d--h--w- c:\windows\system32\GroupPolicy
2011-08-22 17:55:12 -------- d-----w- c:\documents and settings\all users\application data\Protexis
2011-08-22 17:49:28 -------- d-----w- c:\program files\SmartSound Software
2011-08-22 17:49:23 -------- d-----w- c:\documents and settings\all users\application data\SmartSound Software Inc
2011-08-22 17:47:58 -------- d-----w- c:\windows\system32\windows media
2011-08-22 17:30:27 -------- d-----w- c:\program files\Windows Media Components
2011-08-22 17:27:55 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2011-08-22 05:33:00 -------- d-----w- c:\documents and settings\arlene\application data\SpinTop
2011-08-20 19:54:26 -------- d-----w- c:\documents and settings\arlene\application data\BabylonToolbar
2011-08-20 19:22:53 -------- d-----w- c:\documents and settings\all users\application data\Trymedia
2011-08-20 19:21:33 -------- d-----w- c:\documents and settings\all users\application data\BabylonUpdater
2011-08-20 19:21:31 -------- d-----w- c:\documents and settings\arlene\local settings\application data\Babylon
2011-08-20 19:21:27 -------- d-----w- c:\documents and settings\arlene\application data\Babylon
2011-08-20 19:21:27 -------- d-----w- c:\documents and settings\all users\application data\Babylon
.
==================== Find3M ====================
.
2011-09-03 10:17:37 599040 ----a-w- c:\windows\system32\crypt32.dll
2011-08-24 04:52:08 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-07-15 13:29:31 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys
2011-07-07 02:52:42 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-07-07 02:52:42 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-07 01:58:48 0 ---ha-w- c:\documents and settings\arlene\tosxytuhwu.tmp
2011-07-07 01:56:08 203776 --sh--w- c:\windows\system32\unrar.exe
2011-07-06 01:37:00 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2011-07-06 01:37:00 69632 ----a-w- c:\windows\system32\QuickTime.qts
2011-06-24 14:10:36 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2011-06-23 18:36:30 916480 ----a-w- c:\windows\system32\wininet.dll
2011-06-23 18:36:30 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-06-23 18:36:30 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-06-23 12:05:13 385024 ----a-w- c:\windows\system32\html.iec
2011-06-22 01:56:44 17712 ----a-w- c:\windows\system32\nitrolocalui2.dll
2011-06-22 01:56:42 26416 ----a-w- c:\windows\system32\nitrolocalmon2.dll
2011-06-20 17:44:52 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-05-09 00:03:34 11991272 ----a-w- c:\program files\mp3rocket.exe
2009-06-03 14:34:54 3752448 ----a-w- c:\program files\ShowPresenter2008-02-29.msi
.
============= FINISH: 17:13:11.87 ===============
-------------------------------------------------------------------------------------------------------------------------------------
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 11/8/2010 12:28:10 PM
System Uptime: 9/11/2011 3:08:41 PM (2 hours ago)
.
Motherboard: Sony Corporation | | VAIO
Processor: Genuine Intel® CPU T2300 @ 1.66GHz | N/A | 1662/167mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 87 GiB total, 19.078 GiB free.
D: is Removable
E: is CDROM ()
F: is Removable
G: is FIXED (NTFS) - 1863 GiB total, 980.048 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: 1394 Net Adapter
Device ID: V1394\NIC1394\1F900698004603
Manufacturer: Microsoft
Name: 1394 Net Adapter #2
PNP Device ID: V1394\NIC1394\1F900698004603
Service: NIC1394
.
Class GUID:
Description: Microtek SimpleSCSI Miniport Drivers
Device ID: ROOT\SCSIADAPTER\SMPLSCSI.INF&SMPLSCSI
Manufacturer: Company
Name: Microtek SimpleSCSI Miniport Drivers
PNP Device ID: ROOT\SCSIADAPTER\SMPLSCSI.INF&SMPLSCSI
Service: SMPLSCSI
.
==== System Restore Points ===================
.
RP283: 8/13/2011 3:19:09 AM - System Checkpoint
RP284: 8/14/2011 2:20:20 PM - System Checkpoint
RP285: 8/15/2011 7:32:28 PM - System Checkpoint
RP286: 8/17/2011 8:53:43 AM - System Checkpoint
RP287: 8/18/2011 10:14:26 AM - System Checkpoint
RP288: 8/19/2011 10:32:06 AM - System Checkpoint
RP289: 8/20/2011 12:16:02 PM - System Checkpoint
RP290: 8/21/2011 1:00:19 PM - System Checkpoint
RP291: 8/22/2011 8:03:13 AM - Installed Akamai NetSession Interface
RP292: 8/22/2011 8:06:47 AM - Installed Akamai NetSession Interface
RP293: 8/22/2011 10:27:33 AM - Installed DirectX
RP294: 8/22/2011 10:49:11 AM - Installed SmartSound Common Data
RP295: 8/22/2011 10:49:55 AM - Installed SmartSound Quicktracks 5
RP296: 8/22/2011 2:04:01 PM - Installed DirectX
RP297: 8/22/2011 2:25:37 PM - Configured SmartSound Quicktracks 5
RP298: 8/22/2011 9:54:55 PM - Installed PhotoImpact X3
RP299: 8/23/2011 8:30:16 AM - Configured PhotoImpact X3
RP300: 8/23/2011 8:42:02 AM - Removed Skype Toolbars
RP301: 8/23/2011 8:42:51 AM - Removed Skype™ 5.1
RP302: 8/23/2011 8:44:01 AM - Configured SmartSound Common Data
RP303: 8/23/2011 9:31:37 AM - Installed Akamai NetSession Interface
RP304: 8/23/2011 10:21:04 AM - Installed Akamai NetSession Interface
RP305: 8/23/2011 2:39:40 PM - Installed DirectX
RP306: 8/23/2011 6:53:36 PM - Software Distribution Service 3.0
RP307: 8/23/2011 8:07:50 PM - Software Distribution Service 3.0
RP308: 8/24/2011 11:02:41 AM - Installed Windows Media Player 11
RP309: 8/24/2011 11:06:47 AM - Installed Windows XP MSCompPackV1.
RP310: 8/25/2011 3:00:28 AM - Software Distribution Service 3.0
RP311: 8/26/2011 11:25:37 AM - System Checkpoint
RP312: 8/27/2011 2:24:34 PM - System Checkpoint
RP313: 8/30/2011 12:03:01 AM - System Checkpoint
RP314: 8/31/2011 11:48:36 AM - System Checkpoint
RP315: 9/1/2011 1:38:18 PM - System Checkpoint
RP316: 9/2/2011 7:00:33 PM - System Checkpoint
RP317: 9/4/2011 11:41:37 AM - System Checkpoint
RP318: 9/4/2011 2:34:10 PM - Removed Febooti fileTweak
RP319: 9/4/2011 2:34:37 PM - Removed Febooti fileTweak Case
RP320: 9/4/2011 2:37:54 PM - Installed Febooti fileTweak
RP321: 9/4/2011 2:39:31 PM - Installed Febooti fileTweak Case
RP322: 9/5/2011 9:48:07 PM - System Checkpoint
RP323: 9/6/2011 10:32:26 PM - System Checkpoint
RP324: 9/6/2011 11:24:44 PM - Software Distribution Service 3.0
RP325: 9/8/2011 9:25:58 AM - System Checkpoint
RP326: 9/9/2011 2:10:24 PM - System Checkpoint
RP327: 9/10/2011 3:15:09 PM - System Checkpoint
RP328: 9/11/2011 4:19:06 PM - System Checkpoint
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Reader X (10.1.0)
Akamai NetSession Interface
Anti-Twin (Installation 11/9/2010)
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ArcSoft Print Creations
ArcSoft Print Creations - Album Page
ArcSoft Print Creations - Funhouse
ArcSoft Print Creations - Greeting Card
ArcSoft Print Creations - Photo Book
ArcSoft Print Creations - Photo Calendar
ArcSoft Print Creations - Scrapbook
ArcSoft Print Creations - Slimline Card
Auslogics Disk Defrag
AutoUpdate
Big Fish Games: Game Manager
Bonjour
CCleaner
CCScore
Click to DVD 2.0.03 Menu Data
Click to DVD 2.5.00
Compatibility Pack for the 2007 Office system
Corel WinDVD 2010
CrossLoop 2.74
DivX
DVgate Plus
EPSON CardMonitor
EPSON PhotoStarter3.0
EPSON Print CD
EPSON Printer Software
ESPR320 Reference Guide
ESSBrwr
ESSCDBK
ESScore
ESSgui
ESSini
ESSPCD
ESSPDock
ESSTOOLS
essvatgt
Febooti fileTweak
Febooti fileTweak Case
FileHippo.com Update Checker
Free Opener
Google Chrome
Google Earth
Google Update Helper
HDAUDIO SoftV92 Data Fax Modem with SmartCP
High Definition Audio Driver Package - KB835221
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 10 (KB903157)
Hotfix for Windows Media Player 10 (KB910393)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB932716-v2)
Hotfix for Windows XP (KB945060-v3)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB954708)
Hotfix for Windows XP (KB961118)
Image Converter 2 Plus
ImageStation
Ink Monitor
InstallIQ Updater
Intel® Graphics Media Accelerator Driver
Intel® PRO Network Connections Drivers
Intel® PROSet/Wireless Software
InterVideo WinDVD for VAIO
ISScript
Itibiti RTC
Java Auto Updater
Java™ 6 Update 24
Java™ 6 Update 26
Junk Mail filter update
K-Lite Codec Pack 7.0.0 (Standard)
Karaoke Song List Creator Professional KJ Edition 2004
Ken Ward's Zipper 1.4000
Knctr
Kodak EasyShare software
LAN Setting Utility
Luxor Bundle Pack
Malwarebytes' Anti-Malware version 1.51.1.1800
mCore
mDriver
Memory Stick Formatter
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Office File Validation Add-In
Microsoft Office Live Add-in 1.3
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Standard Edition 2003
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft SQL Server Desktop Engine (VAIO_VEDB)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
Microsoft Works
Microtek ScanSuite 1.11
Microtek ScanWizard
mIRC
mMHouse
MobileMe Control Panel
MP3 Rocket
MP3+G Toolz
mPfMgr
mProSafe
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6.0 Parser
mWlsSafe
mXML
NEC Electronics USB 3.0 Host Controller Driver
netbrdg
Nitro PDF Reader 2
Norton AntiVirus
NVIDIA Drivers
Office 2003 Trial Assistant
OfotoXMI
OpenMG Limited Patch 4.3-05-10-05-01
OpenMG Metadata Extractor for Windows Media Player
OpenMG Secure Module 4.3.00
ParetoLogic FileCure
PhotoScape
Power CD+G Burner
Power CD+G Player Pro
PrintMaster 2011 Platinum
Quicken 2006
QuickTime
Request Slip Generator
Roxio DigitalMedia Audio
Roxio DigitalMedia Data
Seagate Manager Installer
Search Enhancement by AOL Search
Secunia PSI (2.0.0.3003)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Encoder (KB2447961)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360131)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Segoe UI
Setting Utility Series
SFR
SHASTA
Show Presenter
SigmaTel Audio
skin0001
SKINXSDK
SmartSound Common Data
SmartSound Quicktracks 5
Sonic Encoders
SonicStage Mastering Studio 2.1
SonicStage Mastering Studio Audio Filter
SonicStage Mastering Studio Audio Filter Custom Preset
SonicStage Mastering Studio Plugins
Sony Certificate PCH
Sony MP4 Shared Library
Sony Utilities DLL
Sony Video Shared Library
staticcr
Switch Sound File Converter
TeamViewer 6
TurboZIP Express
Ulead PhotoImpact 4.0
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 8 (KB2362765)
Update for Windows Internet Explorer 8 (KB2447568)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2492386)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update Rollup 2 for Windows XP Media Center Edition 2005
VAIO Breeze Wallpaper
VAIO Camera Utility
VAIO Central
VAIO Entertainment Platform
VAIO Event Service
VAIO Light Flo Wallpaper
VAIO Media 5.0
VAIO Media AC3 Decoder 1.0
VAIO Media Integrated Server 5.0
VAIO Media Redistribution 5.0
VAIO Media Registration Tool 5.0
VAIO Original Screen Saver
VAIO Original Screen Saver VAIO Cozy Screen SD Wide Contents
VAIO Power Management
VAIO Registration
VAIO Security Center
VAIO Support Central
VAIO Update 2
VAIO Wireless LAN Setup Utility
VAIOSurveySA
VPRINTOL
WebFldrs XP
Winamp
Winamp Detector Plug-in
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer
Windows Media Encoder 9 Series
Windows Media Format 11 runtime
Windows Media Player 10 Hotfix [See KB886612 for more information]
Windows Media Player 11
Windows PowerShell™ 1.0
Windows Resource Kit Tools - SubInAcl.exe
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3
WinZip Self-Extractor
WIRELESS
Wireless Switch Setting Utility
Yahoo! Messenger
Yahoo! Software Update
YouTube Downloader 3.3
.
==== Event Viewer Messages From Past Week ========
.
9/8/2011 8:15:46 AM, error: ACPIEC [1] - \Device\ACPIEC: The embedded controller (EC) hardware didn't respond within the timeout period. This may indicate an error in the EC hardware or firmware, or possibly a poorly designed BIOS which accesses the EC in an unsafe manner. The EC driver will retry the failed transaction if possible.
9/5/2011 8:41:36 AM, error: System Error [1003] - Error code 000000ea, parameter1 84896798, parameter2 8435fec8, parameter3 83d86678, parameter4 00000001.
9/5/2011 10:55:18 AM, error: Service Control Manager [7034] - The VAIO Entertainment UPnP Client Adapter service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:18 AM, error: Service Control Manager [7034] - The VAIO Entertainment File Import Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:18 AM, error: Service Control Manager [7034] - The VAIO Entertainment Database Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:18 AM, error: Service Control Manager [7034] - The Secunia Update Agent service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:17 AM, error: Service Control Manager [7034] - The VAIO Event Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:17 AM, error: Service Control Manager [7034] - The SonicStageMonitoring service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:17 AM, error: Service Control Manager [7034] - The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:17 AM, error: Service Control Manager [7034] - The Intel® PROSet/Wireless Registry Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:16 AM, error: Service Control Manager [7034] - The Protexis Licensing V2 service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:16 AM, error: Service Control Manager [7034] - The NitroPDFReaderDriverCreatorReadSpool2 service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The Seagate Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The Intel® PROSet/Wireless Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The Intel® PROSet/Wireless Event Log service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The Bonjour Service service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7034] - The ArcSoft Connect Daemon service terminated unexpectedly. It has done this 1 time(s).
9/5/2011 10:55:15 AM, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
9/4/2011 12:59:34 PM, error: ialm [108] - The driver ialmrnt5 for the display device \Device\Video0 got stuck in an infinite loop. This usually indicates a problem with the device itself or with the device driver programming the hardware incorrectly. Please check with your hardware device vendor for any driver updates.
9/4/2011 1:20:28 PM, error: System Error [1003] - Error code 1000000a, parameter1 00000063, parameter2 0000001c, parameter3 00000000, parameter4 80535cc8.
9/4/2011 1:18:38 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SMPLSCSI
9/4/2011 1:18:34 PM, error: Service Control Manager [7000] - The ONSIO service failed to start due to the following error: The system cannot find the file specified.
9/4/2011 1:18:34 PM, error: Service Control Manager [7000] - The ASPI32 service failed to start due to the following error: The system cannot find the file specified.
9/11/2011 5:01:28 PM, error: atapi [9] - The device, \Device\Ide\IdePort1, did not respond within the timeout period.
9/11/2011 3:14:25 PM, error: System Error [1003] - Error code 000000ea, parameter1 83f85020, parameter2 84331f60, parameter3 83d19188, parameter4 00000001.
.
==== End Of File ===========================
Katz1113
#19 Re: [Inactive] Windows XP and Google Chrome
-
-
- 24,883 posts
- Joined: October 04, 2004
- 1,860 topics
- Age: 57
- Skin: IPBoard wide
- Local time: 01:15 AM
Malware Annihilator
-
Zodiac:Virgo
- Gender:Male
- Location:Daly City, CA
- OS:Windows Vista
-
Country:
- Time Online: 57d 10h 30m 28s
Posted 12 September 2011 - 03:57 AM
All looks clean so far...
Please download ComboFix from Here or Here to your Desktop.
**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**
**Note 2 for AVG users: ComboFix will not run until AVG is uninstalled as a protective measure against the anti-virus. This is because AVG "falsely" detects ComboFix (or its embedded files) as a threat and may remove them resulting in the tool not working correctly which in turn can cause "unpredictable results". Since AVG cannot be effectively disabled before running ComboFix, the author recommends you to uninstall AVG first.
Use AppRemover to uninstall it: http://www.appremover.com/
We can reinstall it when we're done with CF.
**Note 3: If you receive an error "Illegal operation attempted on a registery key that has been marked for deletion", restart computer to fix the issue.
Make sure, you re-enable your security programs, when you're done with Combofix.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
NOTE.
If, for some reason, Combofix refuses to run, try one of the following:
1. Run Combofix from Safe Mode.
2. Delete Combofix file, download fresh one, but rename combofix.exe to yourname.exe BEFORE saving it to your desktop.
Do NOT run it yet.
Please download and run the below tool named Rkill (courtesy of BleepingComputer.com) which may help allow other programs to run.
There are 4 different versions. If one of them won't run then download and try to run the other one.
Vista and Win7 users need to right click Rkill and choose Run as Administrator
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.
Rkill.com
Rkill.scr
Rkill.exe
Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.
If normal mode still doesn't work, run BOTH tools from safe mode.
In case #2, please post BOTH logs, rKill and Combofix.
DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!
Please download ComboFix from Here or Here to your Desktop.
**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**
- Please, never rename Combofix unless instructed.
- Close any open browsers.
- Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
- Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
- Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
NOTE 2. If Combofix asks you to update the program, always do so.
- Close any open browsers.
- WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
- Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
- If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
- Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
- Double click on combofix.exe & follow the prompts.
- When finished, it will produce a report for you.
- Please post the "C:\ComboFix.txt"
**Note 2 for AVG users: ComboFix will not run until AVG is uninstalled as a protective measure against the anti-virus. This is because AVG "falsely" detects ComboFix (or its embedded files) as a threat and may remove them resulting in the tool not working correctly which in turn can cause "unpredictable results". Since AVG cannot be effectively disabled before running ComboFix, the author recommends you to uninstall AVG first.
Use AppRemover to uninstall it: http://www.appremover.com/
We can reinstall it when we're done with CF.
**Note 3: If you receive an error "Illegal operation attempted on a registery key that has been marked for deletion", restart computer to fix the issue.
Make sure, you re-enable your security programs, when you're done with Combofix.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
NOTE.
If, for some reason, Combofix refuses to run, try one of the following:
1. Run Combofix from Safe Mode.
2. Delete Combofix file, download fresh one, but rename combofix.exe to yourname.exe BEFORE saving it to your desktop.
Do NOT run it yet.
Please download and run the below tool named Rkill (courtesy of BleepingComputer.com) which may help allow other programs to run.
There are 4 different versions. If one of them won't run then download and try to run the other one.
Vista and Win7 users need to right click Rkill and choose Run as Administrator
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.
Rkill.com
Rkill.scr
Rkill.exe
- Double-click on the Rkill desktop icon to run the tool.
- If using Vista or Windows 7 right-click on it and choose Run As Administrator.
- A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
- If not, delete the file, then download and use the one provided in Link 2.
- If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
- Do not reboot until instructed.
- If the tool does not run from any of the links provided, please let me know.
Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.
If normal mode still doesn't work, run BOTH tools from safe mode.
In case #2, please post BOTH logs, rKill and Combofix.
DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!
#20 Re: [Inactive] Windows XP and Google Chrome
-
-
- 135 posts
- Joined: June 05, 2010
- 16 topics
- Skin: IP.Board
- Local time: 01:15 AM
$ Supporting Member
-
Zodiac:Aquarius
- Gender:Female
- Location:Kamloops, B.C. Canada
- Interests:Good Friends / Music / Computers / Travelling & Gardening
- OS:Windows XP
-
Country:
- Time Online: 1d 4h 9m
Posted 12 September 2011 - 04:58 AM
Broni... All downloads go in to My Documents? How do I change that?
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users
