View Full Version : Win32.Agent.tdd (need removal help)
diesel_fireman2001
2009-10-25, 21:22
Sespybot couldn't remove this initally, so tried on the begining of a re-start, but still no luck. Any Help guys would be much apreciated. considering I JUST re-formatted my Comp due to a virus.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:17:33 PM, on 10/25/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2010\IEToolbar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe"
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
O20 - Winlogon Notify: RelevantKnowledge - c:\program files\relevantknowledge\rlls.dll (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
--
End of file - 6003 bytes
Hi diesel_fireman2001
To access the Uninstall Manager you would do the following:
1. Start HijackThis
2. Click on the Config button
3. Click on the Misc Tools button
4. Click on the Open Uninstall Manager button.
You will now be presented with a screen similar to the one below:
http://img.bleepingcomputer.com/tutorials/hijackthis/uninstall-man.jpg
5. Click on the Save list... button and specify where you would like to save this file. When you press Save button a notepad will open with the contents of that file. Simply copy and paste the contents of that notepad here on your next reply.
diesel_fireman2001
2009-10-28, 06:45
Thanks for the help:
µTorrent
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Help Center 1.0
Adobe Photoshop CS2
Adobe Stock Photos 1.0
Ask Toolbar
AsusUpdate
Athlon 64 Processor Driver
BitDefender Antivirus 2010
Call of Duty(R) 4 - Modern Warfare(TM)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
Cool & Quiet
Easy CD & DVD Creator 6
EVGA Display Driver
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
NVIDIA Drivers
NVIDIA nView Desktop Manager
PC Probe II
Realtek AC'97 Audio
RelevantKnowledge
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371-v2)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Spybot - Search & Destroy
System Requirements Lab
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB973874)
Update for Windows XP (KB898461)
Update for Windows XP (KB943729)
Update for Windows XP (KB951978)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973815)
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows PowerShell(TM) 1.0
Windows PowerShell(TM) 1.0 MUI pack
Windows Search 4.0
WinRAR archiver
IMPORTANT I notice there are signs of one or more P2P (Peer to Peer) File Sharing Programs on your computer.
µTorrent
I'd like you to read the this thread (http://forums.spybot.info/showthread.php?t=282).
Please go to Control Panel > Add/Remove Programs and uninstall the programs listed above (in red).
Uninstall also this:
Ask Toolbar
Please run a new uninstall list can when finished and post the log back here.
diesel_fireman2001
2009-10-29, 06:44
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Help Center 1.0
Adobe Photoshop CS2
Adobe Stock Photos 1.0
AsusUpdate
Athlon 64 Processor Driver
BitDefender Antivirus 2010
Call of Duty(R) 4 - Modern Warfare(TM)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
Cool & Quiet
Easy CD & DVD Creator 6
EVGA Display Driver
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
NVIDIA Drivers
NVIDIA nView Desktop Manager
PC Probe II
Realtek AC'97 Audio
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371-v2)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Spybot - Search & Destroy
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB973874)
Update for Windows XP (KB898461)
Update for Windows XP (KB943729)
Update for Windows XP (KB951978)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973815)
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows PowerShell(TM) 1.0
Windows PowerShell(TM) 1.0 MUI pack
Windows Search 4.0
WinRAR archiver
Please post next spybot report :)
diesel_fireman2001
2009-10-30, 03:25
This thing is Long:
--- Search result list ---
Win32.Agent.tdd: [SBI $AC97CB48] Settings (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\livesrv.exe
MediaPlex: Tracking cookie (Internet Explorer: Administrator) (Cookie, fixed)
DoubleClick: Tracking cookie (Internet Explorer: Administrator) (Cookie, fixed)
Statcounter: Tracking cookie (Internet Explorer: Administrator) (Cookie, fixed)
FastClick: Tracking cookie (Internet Explorer: Administrator) (Cookie, fixed)
Right Media: Tracking cookie (Internet Explorer: Administrator) (Cookie, fixed)
MediaPlex: Tracking cookie (Internet Explorer: Administrator) (Cookie, fixed)
--- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) ---
2009-01-26 blindman.exe (1.0.0.8)
2009-01-26 SDFiles.exe (1.6.1.7)
2009-01-26 SDMain.exe (1.0.0.6)
2009-01-26 SDShred.exe (1.0.2.5)
2009-01-26 SDUpdate.exe (1.6.0.12)
2009-01-26 SpybotSD.exe (1.6.2.46)
2009-03-05 TeaTimer.exe (1.6.6.32)
2009-10-24 unins000.exe (51.49.0.0)
2009-01-26 Update.exe (1.6.0.7)
2009-09-07 advcheck.dll (1.6.4.18)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2009-01-26 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2009-01-26 Tools.dll (2.1.6.10)
2009-01-16 UninsSrv.dll (1.0.0.0)
2009-10-08 Includes\Adware.sbi (*)
2009-10-20 Includes\AdwareC.sbi (*)
2009-01-22 Includes\Cookies.sbi (*)
2009-10-14 Includes\Dialer.sbi (*)
2009-10-13 Includes\DialerC.sbi (*)
2009-01-22 Includes\HeavyDuty.sbi (*)
2009-05-26 Includes\Hijackers.sbi (*)
2009-10-13 Includes\HijackersC.sbi (*)
2009-10-20 Includes\Keyloggers.sbi (*)
2009-10-20 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2009-10-13 Includes\Malware.sbi (*)
2009-10-20 Includes\MalwareC.sbi (*)
2009-03-25 Includes\PUPS.sbi (*)
2009-10-20 Includes\PUPSC.sbi (*)
2009-01-22 Includes\Revision.sbi (*)
2009-01-13 Includes\Security.sbi (*)
2009-10-20 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2009-10-13 Includes\Spyware.sbi (*)
2009-10-20 Includes\SpywareC.sbi (*)
2009-06-08 Includes\Tracks.uti
2009-10-06 Includes\Trojans.sbi (*)
2009-10-21 Includes\TrojansC.sbi (*)
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll
--- System information ---
Windows XP (Build: 2600) Service Pack 3 (5.1.2600)
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Security Update (KB953297)
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
/ Windows Media Format 11 SDK: Hotfix for Windows Media Format 11 SDK (KB929399)
/ Windows Media Player: Security Update for Windows Media Player (KB952069)
/ Windows Media Player: Security Update for Windows Media Player (KB954155)
/ Windows Media Player: Security Update for Windows Media Player (KB968816)
/ Windows Media Player: Security Update for Windows Media Player (KB973540)
/ Windows Media Player 11: Hotfix for Windows Media Player 11 (KB939683)
/ Windows Media Player 11: Security Update for Windows Media Player 11 (KB954154)
/ Windows XP: Security Update for Windows XP (KB941569)
/ Windows XP / SP0: Security Update for Windows Internet Explorer 8 (KB971961)
/ Windows XP / SP0: Update for Windows Internet Explorer 8 (KB973874)
/ Windows XP / SP0: Security Update for Windows Internet Explorer 8 (KB974455)
/ Windows XP / SP10: Microsoft Compression Client Pack 1.0 for Windows XP
/ Windows XP / SP3: Update for Windows XP (KB898461)
/ Windows XP / SP3: Windows PowerShell(TM) 1.0
/ Windows XP / SP3: Windows PowerShell(TM) 1.0 MUI pack
/ Windows XP / SP4: Hotfix for Windows XP (KB915800-v4)
/ Windows XP / SP4: Security Update for Windows XP (KB923561)
/ Windows XP / SP4: Security Update for Windows XP (KB946648)
/ Windows XP / SP4: Security Update for Windows XP (KB950762)
/ Windows XP / SP4: Security Update for Windows XP (KB950974)
/ Windows XP / SP4: Security Update for Windows XP (KB951066)
/ Windows XP / SP4: Security Update for Windows XP (KB951376-v2)
/ Windows XP / SP4: Security Update for Windows XP (KB951748)
/ Windows XP / SP4: Update for Windows XP (KB951978)
/ Windows XP / SP4: Security Update for Windows XP (KB952004)
/ Windows XP / SP4: Hotfix for Windows XP (KB952287)
/ Windows XP / SP4: Security Update for Windows XP (KB952954)
/ Windows XP / SP4: Security Update for Windows XP (KB954459)
/ Windows XP / SP4: Hotfix for Windows XP (KB954550-v5)
/ Windows XP / SP4: Security Update for Windows XP (KB955069)
/ Windows XP / SP4: Security Update for Windows XP (KB956572)
/ Windows XP / SP4: Security Update for Windows XP (KB956744)
/ Windows XP / SP4: Security Update for Windows XP (KB956802)
/ Windows XP / SP4: Security Update for Windows XP (KB956803)
/ Windows XP / SP4: Security Update for Windows XP (KB956844)
/ Windows XP / SP4: Security Update for Windows XP (KB957097)
/ Windows XP / SP4: Security Update for Windows XP (KB958644)
/ Windows XP / SP4: Security Update for Windows XP (KB958687)
/ Windows XP / SP4: Security Update for Windows XP (KB958869)
/ Windows XP / SP4: Security Update for Windows XP (KB959426)
/ Windows XP / SP4: Security Update for Windows XP (KB960225)
/ Windows XP / SP4: Security Update for Windows XP (KB960803)
/ Windows XP / SP4: Security Update for Windows XP (KB960859)
/ Windows XP / SP4: Hotfix for Windows XP (KB961118)
/ Windows XP / SP4: Security Update for Windows XP (KB961371-v2)
/ Windows XP / SP4: Security Update for Windows XP (KB961501)
/ Windows XP / SP4: Update for Windows XP (KB967715)
/ Windows XP / SP4: Update for Windows XP (KB968389)
/ Windows XP / SP4: Security Update for Windows XP (KB968537)
/ Windows XP / SP4: Security Update for Windows XP (KB969059)
/ Windows XP / SP4: Security Update for Windows XP (KB970238)
/ Windows XP / SP4: Hotfix for Windows XP (KB970653-v3)
/ Windows XP / SP4: Security Update for Windows XP (KB971486)
/ Windows XP / SP4: Security Update for Windows XP (KB971557)
/ Windows XP / SP4: Security Update for Windows XP (KB971633)
/ Windows XP / SP4: Security Update for Windows XP (KB971657)
/ Windows XP / SP4: Security Update for Windows XP (KB971961)
/ Windows XP / SP4: Security Update for Windows XP (KB973354)
/ Windows XP / SP4: Security Update for Windows XP (KB973507)
/ Windows XP / SP4: Security Update for Windows XP (KB973525)
/ Windows XP / SP4: Update for Windows XP (KB973815)
/ Windows XP / SP4: Security Update for Windows XP (KB973869)
/ Windows XP / SP4: Security Update for Windows XP (KB974112)
/ Windows XP / SP4: Security Update for Windows XP (KB974455)
/ Windows XP / SP4: Security Update for Windows XP (KB974571)
/ Windows XP / SP4: Security Update for Windows XP (KB975025)
/ Windows XP / SP4: Security Update for Windows XP (KB975467)
--- Startup entries list ---
Located: HK_LM:Run, BDAgent
command: "C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe"
file: C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
size: 1114536
MD5: A027E5EC68CFCD3A34F8086BE0551D01
Located: HK_LM:Run, BitDefender Antiphishing Helper
command: "C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe"
file: C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe
size: 71152
MD5: 34D0E74CB310DAF90520DAEA99BFDFB9
Located: HK_LM:Run, NvCplDaemon
command: RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
file: C:\WINDOWS\system32\NvCpl.dll
size: 13918208
MD5: 25A4CABD197A4527A0B45559C3706302
Located: HK_LM:Run, NvMediaCenter
command: RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
file: C:\WINDOWS\system32\NvMcTray.dll
size: 86016
MD5: 39FF1BD0E33F1936AEFCB4936D9D8536
Located: HK_LM:Run, nwiz
command: C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install
file: C:\Program Files\NVIDIA Corporation\nView\nwiz.exe
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: HK_LM:Run, RoxioAudioCentral
command: "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
file: C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
size: 319488
MD5: B96CB1DA50F3C1D37E08E756264597B6
Located: HK_LM:Run, RoxioDragToDisc
command: "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
file: C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
size: 868352
MD5: 4AC10A796570C7ADE99881CAE697AA26
Located: HK_LM:Run, RoxioEngineUtility
command: "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe"
file: C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe
size: 65536
MD5: 364784A6F653DF81B76424A39DBA237B
Located: HK_LM:Run, SoundMan
command: SOUNDMAN.EXE
file: C:\WINDOWS\SOUNDMAN.EXE
size: 77824
MD5: D5D0CD6A04617A15C2DF76CD668FF540
Located: HK_CU:Run, ctfmon.exe
where: S-1-5-21-1715567821-1788223648-1801674531-500...
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5F1D5F88303D4A4DBC8E5F97BA967CC3
Located: HK_CU:Run, SpybotSD TeaTimer
where: S-1-5-21-1715567821-1788223648-1801674531-500...
command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 2260480
MD5: 390679F7A217A5E73D756276C40AE887
Located: Startup (common), Windows Search.lnk
where: C:\Documents and Settings\All Users\Start Menu\Programs\Startup...
command: C:\Program Files\Windows Desktop Search\WindowsSearch.exe
file: C:\Program Files\Windows Desktop Search\WindowsSearch.exe
size: 123904
MD5: B5C9F63C01FCFEC3F64EC6A0940A1825
Located: Startup (user), Adobe Gamma.lnk
where: C:\Documents and Settings\Administrator\Start Menu\Programs\Startup...
command: C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
file: C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
size: 113664
MD5: C2FF17734176CD15221C10044EF0BA1A
Located: WinLogon, crypt32chain
command: crypt32.dll
file: crypt32.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, cryptnet
command: cryptnet.dll
file: cryptnet.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, cscdll
command: cscdll.dll
file: cscdll.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, dimsntfy
command: %SystemRoot%\System32\dimsntfy.dll
file: %SystemRoot%\System32\dimsntfy.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, ScCertProp
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, Schedule
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, SensLogn
command: WlNotify.dll
file: WlNotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, termsrv
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, WgaLogon
command: WgaLogon.dll
file: WgaLogon.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
Located: WinLogon, wlballoon
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!
--- Browser helper object list ---
{53707962-6F74-2D53-2644-206D7942484F} (Spybot-S&D IE Protection)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Spybot-S&D IE Protection
description: Spybot-S&D IE Browser plugin
classification: Legitimate
known filename: SDhelper.dll
info link: http://spybot.eon.net.au/
info source: Patrick M. Kolla
Path: C:\Program Files\Spybot - Search & Destroy\
Long name: SDHelper.dll
Short name:
Date (created): 10/24/2009 8:27:26 PM
Date (last access): 10/29/2009 7:01:42 PM
Date (last write): 1/26/2009 3:31:02 PM
Filesize: 1879896
Attributes: archive
MD5: 022C2F6DCCDFA0AD73024D254E62AFAC
CRC32: 5BA24007
Version: 1.6.2.14
--- ActiveX list ---
{74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan)
DPF name:
CLSID name: NVIDIA Smart Scan
Installer: C:\WINDOWS\Downloaded Program Files\NvidiaSmartScan.inf
Codebase: http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
Path: C:\WINDOWS\DOWNLO~1\
Long name: NvidiaSmartScan.ocx
Short name: NVIDIA~1.OCX
Date (created): 6/15/2009 11:33:02 AM
Date (last access): 10/28/2009 10:01:22 PM
Date (last write): 6/15/2009 11:33:02 AM
Filesize: 401408
Attributes: archive
MD5: F78FA9A828D685C3E7E0955FEC426970
CRC32: 3B7EB3FD
Version: 1.0.0.3
--- Process list ---
PID: 0 ( 0) [System]
PID: 712 ( 4) \SystemRoot\System32\smss.exe
size: 50688
PID: 776 ( 712) \??\C:\WINDOWS\system32\csrss.exe
size: 6144
PID: 800 ( 712) \??\C:\WINDOWS\system32\winlogon.exe
size: 507904
PID: 844 ( 800) C:\WINDOWS\system32\services.exe
size: 110592
MD5: 65DF52F5B8B6E9BBD183505225C37315
PID: 856 ( 800) C:\WINDOWS\system32\lsass.exe
size: 13312
MD5: BF2466B3E18E970D8A976FB95FC1CA85
PID: 1024 ( 844) C:\WINDOWS\system32\nvsvc32.exe
size: 172100
MD5: 96F1A6F0A0D4F11047DF2F5C17C87E9D
PID: 1068 ( 844) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
PID: 1112 ( 844) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
PID: 1204 ( 844) C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
size: 320424
MD5: 3242B7F001F5990B72074DD63BE76C43
PID: 1232 ( 844) C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
size: 1595016
MD5: 556301F9518786C5FD768914A8CE093D
PID: 1340 ( 844) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
PID: 1476 ( 844) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
PID: 1600 ( 844) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
PID: 1696 ( 844) C:\WINDOWS\system32\spoolsv.exe
size: 57856
MD5: D8E14A61ACC1D4A6CD0D38AEBAC7FA3B
PID: 1828 ( 844) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
PID: 1900 ( 844) C:\WINDOWS\system32\pctspk.exe
size: 86016
MD5: 0275215D01C3985E682A661B8826F371
PID: 1924 ( 844) C:\WINDOWS\system32\PnkBstrA.exe
size: 66872
MD5: 0E01D7EEBADA0B324DB0CA1EE73440BA
PID: 1980 ( 844) C:\WINDOWS\system32\PnkBstrB.exe
size: 103736
MD5: 1428E6CC1458A36CBFC1F2E304C7C42D
PID: 264 ( 844) C:\WINDOWS\system32\MsPMSPSv.exe
size: 53248
MD5: 668056D5C3C11AB7D266819A96B964E8
PID: 308 ( 844) C:\WINDOWS\system32\SearchIndexer.exe
size: 439808
MD5: 7778BDFA3F6F6FBA0E75B9594098F737
PID: 868 ( 844) C:\WINDOWS\System32\alg.exe
size: 44544
MD5: 8C515081584A38AA007909CD02020B3D
PID: 3148 (3076) C:\WINDOWS\Explorer.EXE
size: 1033728
MD5: 12896823FB95BFB3DC9B46BCAEDC9923
PID: 3360 (2700) C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
size: 1114536
MD5: A027E5EC68CFCD3A34F8086BE0551D01
PID: 3596 (3360) C:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
size: 1086232
MD5: 354E714ED8F88954E2ECEC1097A13D59
PID: 4028 (3148) C:\WINDOWS\system32\RUNDLL32.EXE
size: 33280
MD5: 037B1E7798960E0420003D05BB577EE6
PID: 1168 (3148) C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 5F1D5F88303D4A4DBC8E5F97BA967CC3
PID: 3840 (3148) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 2260480
MD5: 390679F7A217A5E73D756276C40AE887
PID: 972 (3148) C:\Program Files\Windows Desktop Search\WindowsSearch.exe
size: 123904
MD5: B5C9F63C01FCFEC3F64EC6A0940A1825
PID: 1860 (3148) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 5365592
MD5: 0477C2F9171599CA5BC3307FDFBA8D89
PID: 2144 (3148) C:\Program Files\Internet Explorer\iexplore.exe
size: 638816
MD5: B60DDDD2D63CE41CB8C487FCFBB6419E
PID: 3560 (2144) C:\Program Files\Internet Explorer\iexplore.exe
size: 638816
MD5: B60DDDD2D63CE41CB8C487FCFBB6419E
PID: 2108 (2144) C:\Program Files\Internet Explorer\iexplore.exe
size: 638816
MD5: B60DDDD2D63CE41CB8C487FCFBB6419E
PID: 3304 ( 844) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
PID: 3332 ( 308) C:\WINDOWS\system32\SearchFilterHost.exe
size: 87552
MD5: 87889A983C015080FA813D7E32910D1E
PID: 3800 ( 308) C:\WINDOWS\system32\SearchProtocolHost.exe
size: 184832
MD5: C4894B3B448B647BEDC9E916D181BDBE
PID: 4 ( 0) System
--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 10/29/2009 7:19:30 PM
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.yahoo.com/
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
--- Winsock Layered Service Provider list ---
Protocol 0: MSAFD Tcpip [TCP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip
Protocol 1: MSAFD Tcpip [UDP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip
Protocol 2: MSAFD Tcpip [RAW/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip
Protocol 3: RSVP UDP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider
Protocol 4: RSVP TCP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider
Protocol 5: MSAFD NetBIOS [\Device\NetBT_Tcpip_{52D1A81D-EE51-4778-84F5-6412D78893B7}] SEQPACKET 4
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{52D1A81D-EE51-4778-84F5-6412D78893B7}] DATAGRAM 4
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{711F31F8-A0A7-4AE5-81A5-012A3886CEF5}] SEQPACKET 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{711F31F8-A0A7-4AE5-81A5-012A3886CEF5}] DATAGRAM 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{2561D64E-AB21-407A-9892-E29F811D07FE}] SEQPACKET 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{2561D64E-AB21-407A-9892-E29F811D07FE}] DATAGRAM 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{429449F9-C4A6-445A-8239-132A516845BC}] SEQPACKET 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip_{429449F9-C4A6-445A-8239-132A516845BC}] DATAGRAM 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip_{99C6592B-A97F-4372-9A7D-85CC8B9BEF1F}] SEQPACKET 3
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip_{99C6592B-A97F-4372-9A7D-85CC8B9BEF1F}] DATAGRAM 3
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *
Namespace Provider 0: Tcpip
GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP TCP/IP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: TCP/IP
Namespace Provider 1: NTDS
GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
Filename: %SystemRoot%\System32\winrnr.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\winrnr.dll
DB protocol: NTDS
Namespace Provider 2: Network Location Awareness (NLA) Namespace
GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: NLA-Namespace
--- Uninstall list ---
(AddressBook)
Adobe Flash Player 10 ActiveX 10.0.32.18 (Adobe Flash Player ActiveX)
uninstall cmd: C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
publisher: Adobe Systems Incorporated
help link: http://www.adobe.com/go/flashplayer_support/
Adobe Flash Player 10 Plugin 10.0.32.18 (Adobe Flash Player Plugin)
uninstall cmd: C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
publisher: Adobe Systems Incorporated
Adobe Photoshop CS2 9.0 (Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D})
version: 9
version (major): 9
install location: C:\Program Files\Adobe\Adobe Photoshop CS2\
uninstall cmd: msiexec /I {236BB7C4-4419-42FD-0409-1E257A25E34D}
publisher: Adobe Systems, Inc.
comments:
contact: Customer Support
help link: http://www.adobe.com/support/main.html
help telephone: 1-555-555-4505
AsusUpdate (AsusUpdate)
uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\ASUS\AsusUpdate\Uninst.isu"
(Branding)
(Connection Manager)
(DirectAnimation)
(DirectDrawEx)
(DXM_Runtime)
(Fontcore)
HijackThis 2.0.2 2.0.2 (HijackThis)
uninstall cmd: "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
publisher: TrendMicro
(ICW)
(IDNMitigationAPIs)
(IE40)
(IE4Data)
(IE5BAKEX)
(ie7)
Windows Internet Explorer 8 20090308.140743 (ie8)
install date: 20091022
uninstall cmd: "C:\WINDOWS\ie8\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://www.microsoft.com/ie
(IEData)
(InstallShield Uninstall Information)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE})
uninstall cmd: C:\Program Files\InstallShield Installation Information\{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498})
uninstall cmd: C:\Program Files\InstallShield Installation Information\{931C37FC-594D-43A9-B10F-A2F2B1F03498}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 (InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217})
version: 16777216
version (major): 1
estimated size: 6497364
install date: 20091022
install location: C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\
install source: E:\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe -runfromtemp -l0x0409
publisher: Activision
contact: Technical Support
help link: http://activision.custhelp.com
(KB884267)
(KB885353)
(KB886612)
(KB887078)
(KB887626)
(KB888656)
(KB889858)
(KB891122)
(KB892313)
(KB893240)
(KB893241)
(KB895181)
(KB895316)
(KB895572)
(KB897586)
Update for Windows XP (KB898461) 1 (KB898461)
uninstall cmd: "C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=898461
(KB898549)
(KB900399)
(KB902344)
(KB907658)
Microsoft Base Smart Card Cryptographic Service Provider Package (KB909520)
uninstall cmd: "C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
(KB911565)
(KB911854)
Hotfix for Windows XP (KB915800-v4) 4 (KB915800-v4)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB915800-v4$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=915800-v4
Security Update for Windows XP (KB923561) 1 (KB923561)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=923561
Windows PowerShell(TM) 1.0 2 (KB926139-v2)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB926139-v2$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=926139-v2
Windows PowerShell(TM) 1.0 MUI pack 2 (KB926141)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB926141$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=926141
Hotfix for Windows Media Format 11 SDK (KB929399) (KB929399)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com/?kbid=929399
Hotfix for Windows Media Player 11 (KB939683) (KB939683)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com/?kbid=939683
Windows Search 4.0 04.00.6001.503 (KB940157)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB940157$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=940157
Security Update for Windows XP (KB941569) (KB941569)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=941569
Update for Windows XP (KB943729) (KB943729)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB943729$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=943729
Security Update for Windows XP (KB946648) 1 (KB946648)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=946648
Security Update for Windows XP (KB950762) 1 (KB950762)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=950762
Security Update for Windows XP (KB950974) 1 (KB950974)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=950974
Security Update for Windows XP (KB951066) 1 (KB951066)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=951066
Security Update for Windows XP (KB951376-v2) 2 (KB951376-v2)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=951376
Security Update for Windows XP (KB951748) 1 (KB951748)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=951748
Update for Windows XP (KB951978) 1 (KB951978)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=951978
Security Update for Windows XP (KB952004) 1 (KB952004)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=952004
Security Update for Windows Media Player (KB952069) (KB952069_WM9)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com/?kbid=952069
Hotfix for Windows XP (KB952287) 1 (KB952287)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=952287
Security Update for Windows XP (KB952954) 1 (KB952954)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=952954
Security Update for Windows Media Player 11 (KB954154) (KB954154_WM11)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com/?kbid=954154
Security Update for Windows Media Player (KB954155) (KB954155_WM9)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com/?kbid=954155
Security Update for Windows XP (KB954459) 1 (KB954459)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=954459
Hotfix for Windows XP (KB954550-v5) 5 (KB954550-v5)
install date: 20091022
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=954550
Security Update for Windows XP (KB955069) 1 (KB955069)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=955069
Security Update for Windows XP (KB956572) 1 (KB956572)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=956572
Security Update for Windows XP (KB956744) 1 (KB956744)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=956744
Security Update for Windows XP (KB956802) 1 (KB956802)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=956802
Security Update for Windows XP (KB956803) 1 (KB956803)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=956803
Security Update for Windows XP (KB956844) 1 (KB956844)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=956844
Security Update for Windows XP (KB957097) 1 (KB957097)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=957097
Security Update for Windows XP (KB958644) 1 (KB958644)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=958644
Security Update for Windows XP (KB958687) 1 (KB958687)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=958687
Security Update for Windows XP (KB958869) 1 (KB958869)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=958869
Security Update for Windows XP (KB959426) 1 (KB959426)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=959426
Security Update for Windows XP (KB960225) 1 (KB960225)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=960225
Security Update for Windows XP (KB960803) 1 (KB960803)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=960803
Security Update for Windows XP (KB960859) 1 (KB960859)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=960859
Hotfix for Windows XP (KB961118) 1 (KB961118)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=961118
Security Update for Windows XP (KB961371-v2) 2 (KB961371-v2)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB961371-v2$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=961371
Security Update for Windows XP (KB961501) 1 (KB961501)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=961501
Security Update for Windows Search 4 - KB963093 (KB963093)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB963093$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
Update for Windows XP (KB967715) 1 (KB967715)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=967715
Update for Windows XP (KB968389) 1 (KB968389)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=968389
Security Update for Windows XP (KB968537) 1 (KB968537)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=968537
Security Update for Windows Media Player (KB968816) (KB968816_WM9)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com/?kbid=968816
Security Update for Windows XP (KB969059) 1 (KB969059)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=969059
Security Update for Windows XP (KB970238) 1 (KB970238)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=970238
Hotfix for Windows XP (KB970653-v3) 3 (KB970653-v3)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=970653
Security Update for Windows XP (KB971486) 1 (KB971486)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=971486
Security Update for Windows XP (KB971557) 1 (KB971557)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=971557
Security Update for Windows XP (KB971633) 1 (KB971633)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=971633
Security Update for Windows XP (KB971657) 1 (KB971657)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=971657
Security Update for Windows XP (KB971961) 1 (KB971961)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=971961
Security Update for Windows Internet Explorer 8 (KB971961) 1 (KB971961-IE8)
install date: 20091022
uninstall cmd: "C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=971961
Security Update for Windows XP (KB973354) 1 (KB973354)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=973354
Security Update for Windows XP (KB973507) 1 (KB973507)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=973507
Security Update for Windows XP (KB973525) 1 (KB973525)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=973525
Security Update for Windows Media Player (KB973540) (KB973540_WM9)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com/?kbid=973540
Update for Windows XP (KB973815) 1 (KB973815)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=973815
Security Update for Windows XP (KB973869) 1 (KB973869)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=973869
Update for Windows Internet Explorer 8 (KB973874) 1 (KB973874-IE8)
install date: 20091022
uninstall cmd: "C:\WINDOWS\ie8updates\KB973874-IE8\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=973874
Security Update for Windows XP (KB974112) 1 (KB974112)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=974112
Security Update for Windows XP (KB974455) 1 (KB974455)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB974455$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=974455
Security Update for Windows Internet Explorer 8 (KB974455) 1 (KB974455-IE8)
install date: 20091022
uninstall cmd: "C:\WINDOWS\ie8updates\KB974455-IE8\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=974455
Security Update for Windows XP (KB974571) 1 (KB974571)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=974571
Security Update for Windows XP (KB975025) 1 (KB975025)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=975025
Security Update for Windows XP (KB975467) 1 (KB975467)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=975467
Microsoft .NET Framework 1.1 Security Update (KB953297) (M953297)
uninstall cmd: "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp"
Microsoft .NET Framework 1.1 (Microsoft .NET Framework 1.1 (1033))
uninstall cmd: msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
readme: file://C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm
Microsoft .NET Framework 3.5 SP1 (Microsoft .NET Framework 3.5 SP1)
install location: C:\WINDOWS\Microsoft.NET\Framework\v3.5\
uninstall cmd: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
publisher: Microsoft Corporation
help link: http://go.microsoft.com/fwlink/?LinkId=120337
(MobileOptionPack)
(MPlayer2)
Microsoft Compression Client Pack 1.0 for Windows XP 1 (MSCompPackV1)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http://go.microsoft.com/fwlink/?LinkId=74087
(NetMeeting)
(NLSDownlevelMapping)
NVIDIA Drivers 1.10 (NVIDIA Drivers)
version (major): 1
version (minor): 10
install location: C:\WINDOWS\system32
uninstall cmd: C:\WINDOWS\system32\nvuninst.exe UninstallGUI
publisher: NVIDIA Corporation
NVIDIA nView Desktop Manager 125.24 (NVIDIA nView Desktop Manager)
version (major): 125
version (minor): 24
install location: C:\Program Files\NVIDIA Corporation\nView
uninstall cmd: C:\Program Files\NVIDIA Corporation\nView\nViewSetup.exe -uninstall
publisher: NVIDIA Corporation
(OutlookExpress)
(PCHealth)
uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
(SchedulingAgent)
Windows Genuine Advantage Notifications (KB905474) 1.9.0040.0 (WgaNotify)
install date: 20091022
publisher: Microsoft Corporation
help link: http://support.microsoft.com?kbid=905474
(WIC)
Windows Media Format 11 runtime (Windows Media Format Runtime)
uninstall cmd: "C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
help link: http://go.microsoft.com/fwlink/?LinkId=62768
Windows Media Player 11 (Windows Media Player)
uninstall cmd: "C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
WinRAR archiver (WinRAR archiver)
uninstall cmd: C:\Program Files\WinRAR\uninstall.exe
(WMCSetup)
Windows Media Format 11 runtime (WMFDist11)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http:
Windows Media Player 11 (wmp11)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http:
Microsoft User-Mode Driver Framework Feature Pack 1.0 (Wudf01000)
install date: 20091022
uninstall cmd: "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
comments: Build Number 5716
Cool & Quiet ({1ADE1AA0-7F82-4BB1-B1BD-727DE438057B})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}\Setup.exe" -l0x9
Adobe Photoshop CS2 9.0 ({236BB7C4-4419-42FD-0409-1E257A25E34D})
version: 150994944
version (major): 9
estimated size: 639892
install date: 20091024
install location: C:\Program Files\Adobe\Adobe Photoshop CS2\
install source: C:\Documents and Settings\Administrator\My Documents\Downloads\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\
publisher: Adobe Systems, Inc.
comments:
contact: Customer Support
help link: http://www.adobe.com/support/main.html
help telephone: 1-555-555-4505
WebFldrs XP 9.50.7523 ({350C97B0-3D7C-4EE8-BAA9-00BCB3D54227})
version: 154279267
version (major): 9
version (minor): 50
estimated size: 2472
install date: 20091022
install source: C:\WINDOWS\system32\
publisher: Microsoft Corporation
help link: http://www.microsoft.com/windows
Easy CD & DVD Creator 6 6.1.1.17 ({644F9DBE-CEDB-45AF-ACB8-E26692B74F62})
version: 100663296
version (major): 6
estimated size: 414408
install date: 20091024
install source: E:\
uninstall cmd: MsiExec.exe /I{644F9DBE-CEDB-45AF-ACB8-E26692B74F62}
publisher: Roxio Inc.,
comments:
contact: Tech Support
help link: http://support.roxio.com
help telephone: +1 408-367-5555
readme: C:\Program Files\Common Files\Roxio Shared\Support\Readme.txt
Adobe Stock Photos 1.0 001.000.000 ({786C5747-1033-0000-B58E-000000000001})
version: 16777216
version (major): 1
estimated size: 5397
install date: 20091024
install location: C:\Program Files\Adobe\Adobe Stock Photos\
install source: C:\Documents and Settings\Administrator\My Documents\Downloads\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\Stock Photography\
uninstall cmd: MsiExec.exe /I{786C5747-1033-0000-B58E-000000000001}
publisher: Adobe Systems
comments: Your Comments
contact: Customer Support Department
help link: http://www.adobe.com
help telephone: 1-555-555-4505
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch 1.6 ({8A15B7D9-908A-4EF9-BA84-5AEDE61743EE})
version: 17170432
version (major): 1
version (minor): 6
estimated size: 41924
install date: 20091023
install location: C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\
install source: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\{FA32F0D6-5B69-4093-ACFC-9821D743E925}\
publisher: Activision
Adobe Common File Installer 1.00.0000 ({8EDBA74D-0686-4C99-BFDD-F894678E5B39})
version: 16777216
version (major): 1
estimated size: 136561
install date: 20091024
install location: C:\Program Files\Common Files\Adobe\
install source: C:\Documents and Settings\Administrator\My Documents\Downloads\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\commonfilesinstaller\
uninstall cmd: MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5B39}
publisher: Adobe System Incorporated
comments: Your Comments
contact: Customer Support Department
help link: http://www.adobe.com/help
help telephone: 1-555-555-4505
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch 1.7 ({931C37FC-594D-43A9-B10F-A2F2B1F03498})
version: 17235968
version (major): 1
version (minor): 7
estimated size: 31232
install date: 20091023
install location: C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\
install source: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\{D453A685-A594-4443-AC9D-770D0A3B1A81}\
publisher: Activision
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 9.0.30729 ({9A25302D-30C0-39D9-BD6F-21E6EC160475})
version: 151025673
version (major): 9
estimated size: 10524
install date: 20091024
install source: c:\99690c266bc042d43f72\
uninstall cmd: MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
publisher: Microsoft Corporation
Microsoft .NET Framework 3.0 Service Pack 2 3.2.30729 ({A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7})
version: 50493449
version (major): 3
version (minor): 2
estimated size: 184293
install date: 20091022
install source: c:\6e814d92bd554d8321acb6c0aaeff0\dotnetfx30\
uninstall cmd: MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
publisher: Microsoft Corporation
help link: http://go.microsoft.com/fwlink/?LinkId=98075
({A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}.KB958483)
Spybot - Search & Destroy 1.6.2 ({B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1)
install date: 20091024
install location: C:\Program Files\Spybot - Search & Destroy\
uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
publisher: Safer Networking Limited
help link: http://www.safer-networking.org/index.php?page=support
Adobe Bridge 1.0 001.000.000 ({B74D4E10-1033-0000-0000-000000000001})
version: 16777216
version (major): 1
estimated size: 64689
install date: 20091024
install location: C:\Program Files\Adobe\Adobe Bridge\
install source: C:\Documents and Settings\Administrator\My Documents\Downloads\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\Bridge\
uninstall cmd: MsiExec.exe /I{B74D4E10-1033-0000-0000-000000000001}
publisher: Adobe Systems
comments: Your Comments
contact: Customer Support Department
help link: http://www.adobe.com/support/main.html
help telephone: 1-555-555-4505
BitDefender Antivirus 2010 13.0.16 ({BADC5319-A2A0-4BE1-A7C3-A271AE0E791D})
version: 218103824
version (major): 13
estimated size: 102468
install date: 20091022
install source: C:\Program Files\Common Files\BitDefender\Setup Information\{BADC5319-A2A0-4BE1-A7C3-A271AE0E791D}\
uninstall cmd: MsiExec.exe /X{BADC5319-A2A0-4BE1-A7C3-A271AE0E791D}
publisher: BitDefender
help link: http://www.bitdefender.com
EVGA Display Driver 1.00.000 ({BEF3EFE7-5159-436D-9BF0-CCC633179EB4})
version: 16777216
install date: 20091022
install location: C:\Program Files\EVGA\EVGA Display Driver
install source: E:\Drivers\XP2K\
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BEF3EFE7-5159-436D-9BF0-CCC633179EB4}\setup.exe" -l0x9 -removeonly
publisher: EVGA
help link: www.evga.com/support/default.asp
Microsoft .NET Framework 2.0 Service Pack 2 2.2.30729 ({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F})
version: 33716233
version (major): 2
version (minor): 2
estimated size: 189597
install date: 20091022
install source: c:\6e814d92bd554d8321acb6c0aaeff0\dotnetfx20\
uninstall cmd: MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
publisher: Microsoft Corporation
help link: http://go.microsoft.com/fwlink/?LinkId=98073
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB200003)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB431780)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB946922)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB947748)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB949272)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB952137)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB952677)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB953300)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB953990)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB954832)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB956860)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB957541)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB957542)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB957543)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB958129)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB958481)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB960043)
({C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}.KB974417)
Athlon 64 Processor Driver 1.2.2.2 ({C151CE54-E7EA-4804-854B-F515368B0798})
version: 16908290
install location: C:\Program Files\AMD\Athlon 64 Processor Driver
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x9
Microsoft .NET Framework 1.1 1.1.4322 ({CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1})
version: 16847074
version (major): 1
version (minor): 1
estimated size: 71859
install date: 20091022
install source: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\IXP000.TMP\
uninstall cmd: MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
publisher: Microsoft
readme: file://C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm
Microsoft .NET Framework 3.5 SP1 3.5.30729 ({CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9})
version: 50690057
version (major): 3
version (minor): 5
estimated size: 75592
install date: 20091022
install source: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\IXP02455.tmp\dotnetfx35\x86\
uninstall cmd: MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
publisher: Microsoft Corporation
({CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB350003)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) 1 ({CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595)
uninstall cmd: C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
publisher: Microsoft Corporation
comments: This hotfix is for Microsoft .NET Framework 3.5 SP1.
If you later install a more recent service pack, this hotfix will be uninstalled automatically.
For more information, visit http://support.microsoft.com/kb/953595.
help link: http://support.microsoft.com/kb/953595
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) 1 ({CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484)
uninstall cmd: C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
publisher: Microsoft Corporation
comments: This hotfix is for Microsoft .NET Framework 3.5 SP1.
If you later install a more recent service pack, this hotfix will be uninstalled automatically.
For more information, visit http://support.microsoft.com/kb/958484.
help link: http://support.microsoft.com/kb/958484
({CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB960043)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) 1 ({CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707)
uninstall cmd: C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
publisher: Microsoft Corporation
comments: This update is for Microsoft .NET Framework 3.5 SP1.
If you later install a more recent service pack, this update will be uninstalled automatically.
For more information, visit http://support.microsoft.com/kb/963707.
help link: http://support.microsoft.com/kb/963707
Call of Duty(R) 4 - Modern Warfare(TM) 1.00.0000 ({E48469CC-635E-4FD5-A122-1497C286D217})
version: 16777216
version (major): 1
estimated size: 6497364
install date: 20091022
install location: C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\
install source: E:\
publisher: Activision
contact: Technical Support
help link: http://activision.custhelp.com
Adobe Help Center 1.0 001.000.000 ({E9787678-1033-0000-8E67-000000000001})
version: 16777216
version (major): 1
estimated size: 21738
install date: 20091024
install location: C:\Program Files\Adobe\Adobe Help Center\
install source: C:\Documents and Settings\Administrator\My Documents\Downloads\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\Help Center\
uninstall cmd: MsiExec.exe /I{E9787678-1033-0000-8E67-000000000001}
publisher: Adobe Systems
comments: Your Comments
contact: Customer Support Department
help link: http://www.adobe.com
help telephone: 1-555-555-4505
PC Probe II 1.00.42 ({F7338FA3-DAB5-49B2-900D-0AFB5760C166})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F7338FA3-DAB5-49B2-900D-0AFB5760C166}\Setup.exe" -l0x9
Realtek AC'97 Audio ({FB08F381-6533-4108-B7DD-039E11FBC27E})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
Download at your desktop DDS from one of the links below:
Link 1 (http://download.bleepingcomputer.com/sUBs/dds.scr)
Link 2 (http://www.forospyware.com/sUBs/dds)
Double click the tool to run it.
A black Screen will open, just read the contents and do nothing.
When the tool finish it will open 2 reports.
Copy/paste both reports back here and remove DDS from your desktop.
diesel_fireman2001
2009-10-31, 06:04
#1:
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_09-10-26.01)
Microsoft Windows XP Professional
Boot Device: \Device\Harddisk0\DP(1)0x7e00-0x74701a8200+1
Install Date: 10/21/2009 8:31:31 PM
System Uptime: 10/30/2009 9:53:47 PM (0 hours ago)
Motherboard: ASUSTeK Computer INC. | | A8N-SLI Premium
Processor: AMD Athlon(tm) 64 Processor 3700+ | Socket 939 | 2211/200mhz
==== Disk Partitions =========================
A: is Removable
C: is FIXED (NTFS) - 466 GiB total, 439.659 GiB free.
D: is CDROM ()
E: is CDROM ()
==== Disabled Device Manager Items =============
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: RAID Controller
Device ID: PCI\VEN_1095&DEV_3114&SUBSYS_81671043&REV_02\4&13699180&0&5048
Manufacturer:
Name: RAID Controller
PNP Device ID: PCI\VEN_1095&DEV_3114&SUBSYS_81671043&REV_02\4&13699180&0&5048
Service:
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Ethernet Controller
Device ID: PCI\VEN_11AB&DEV_4320&SUBSYS_811A1043&REV_13\4&13699180&0&6048
Manufacturer:
Name: Ethernet Controller
PNP Device ID: PCI\VEN_11AB&DEV_4320&SUBSYS_811A1043&REV_13\4&13699180&0&6048
Service:
==== System Restore Points ===================
RP1: 10/22/2009 6:56:37 AM - System Checkpoint
RP2: 10/22/2009 7:05:21 AM - Installed PC Probe II
RP3: 10/22/2009 7:06:24 AM - Installed Athlon 64 Processor Driver
RP4: 10/22/2009 7:06:43 AM - Installed Cool & Quiet
RP5: 10/22/2009 7:10:32 AM - Installed EVGA Display Driver
RP6: 10/22/2009 7:19:04 AM - Installed BitDefender Antivirus 2010
RP7: 10/22/2009 7:30:40 AM - Installed NVIDIA ForceWare Network Access Manager
RP8: 10/22/2009 7:59:47 AM - Installed Windows XP WgaNotify.
RP9: 10/22/2009 8:02:33 AM - Installed Windows XP WgaNotify.
RP10: 10/22/2009 8:03:32 AM - Software Distribution Service 3.0
RP11: 10/22/2009 8:08:19 AM - Software Distribution Service 3.0
RP12: 10/22/2009 8:55:29 AM - Software Distribution Service 3.0
RP13: 10/22/2009 9:00:25 AM - Software Distribution Service 3.0
RP14: 10/22/2009 9:08:04 AM - Software Distribution Service 3.0
RP15: 10/22/2009 9:12:09 AM - Software Distribution Service 3.0
RP16: 10/22/2009 9:18:33 AM - Software Distribution Service 3.0
RP17: 10/22/2009 3:49:49 PM - Installed Call of Duty(R) - World at War(TM)
RP18: 10/22/2009 3:58:52 PM - Installed Call of Duty(R) 4 - Modern Warfare(TM)
RP19: 10/23/2009 12:33:39 PM - Installed Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
RP20: 10/23/2009 12:48:57 PM - Installed Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
RP21: 10/24/2009 1:57:45 PM - Installed Easy CD & DVD Creator 6
RP22: 10/24/2009 3:49:04 PM - Installed Adobe Photoshop CS2
RP23: 10/25/2009 12:36:14 PM - Restore Operation
RP24: 10/25/2009 12:38:46 PM - Restore Operation
RP25: 10/25/2009 12:41:15 PM - Restore Operation
RP26: 10/26/2009 8:54:55 PM - System Checkpoint
RP27: 10/27/2009 9:54:16 PM - System Checkpoint
RP28: 10/28/2009 10:06:08 PM - Removed Ask Toolbar.
==== Installed Programs ======================
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Help Center 1.0
Adobe Photoshop CS2
Adobe Stock Photos 1.0
AsusUpdate
Athlon 64 Processor Driver
BitDefender Antivirus 2010
Call of Duty(R) 4 - Modern Warfare(TM)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
Cool & Quiet
Easy CD & DVD Creator 6
EVGA Display Driver
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
NVIDIA Drivers
NVIDIA nView Desktop Manager
PC Probe II
Realtek AC'97 Audio
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371-v2)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Spybot - Search & Destroy
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB973874)
Update for Windows XP (KB898461)
Update for Windows XP (KB943729)
Update for Windows XP (KB951978)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973815)
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows PowerShell(TM) 1.0
Windows PowerShell(TM) 1.0 MUI pack
Windows Search 4.0
WinRAR archiver
==== Event Viewer Messages From Past Week ========
10/24/2009 3:58:34 PM, error: System Error [1003] - Error code 1000008e, parameter1 c0000005, parameter2 8062dc69, parameter3 abad6ac8, parameter4 00000000.
10/24/2009 3:55:48 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: bdftdif
10/24/2009 11:25:50 PM, error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
10/24/2009 11:25:30 PM, error: Service Control Manager [7031] - The Remote Procedure Call (RPC) service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Reboot the machine.
==== End Of File ===========================
#2:
DDS (Ver_09-10-26.01) - NTFSx86
Run by Administrator at 21:57:15.54 on Fri 10/30/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1535.754 [GMT -7:00]
AV: BitDefender Antivirus *On-access scanning enabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB}
============== Running Processes ===============
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
svchost.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wiaacmgr.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\XMYE4ENH\dds[1].scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.yahoo.com/
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
TB: BitDefender Toolbar: {381ffde8-2394-4f90-b10d-fc6124a40f8c} - c:\program files\bitdefender\bitdefender 2010\IEToolbar.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [BitDefender Antiphishing Helper] "c:\program files\bitdefender\bitdefender 2010\IEShow.exe"
mRun: [BDAgent] "c:\program files\bitdefender\bitdefender 2010\bdagent.exe"
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /install
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [RoxioEngineUtility] "c:\program files\common files\roxio shared\system\EngUtil.exe"
mRun: [RoxioDragToDisc] "c:\program files\roxio\easy cd creator 6\dragtodisc\DrgToDsc.exe"
mRun: [RoxioAudioCentral] "c:\program files\roxio\easy cd creator 6\audiocentral\RxMon.exe"
StartupFolder: c:\docume~1\admini~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
============= SERVICES / DRIVERS ===============
R3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [2009-9-17 152328]
S3 Arrakis3;BitDefender Arrakis Server;c:\program files\common files\bitdefender\bitdefender arrakis server\bin\arrakis3.exe [2009-9-13 183880]
=============== Created Last 30 ================
2009-10-30 02:10:08 5632 ----a-w- c:\windows\system32\ptpusb.dll
2009-10-30 02:10:08 159232 ----a-w- c:\windows\system32\ptpusd.dll
2009-10-30 02:10:07 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2009-10-30 02:10:07 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2009-10-29 05:06:12 0 d-----w- c:\windows\system32\appmgmt
2009-10-25 20:17:24 0 d-----w- c:\program files\Trend Micro
2009-10-25 03:27:25 0 d-----w- c:\program files\Spybot - Search & Destroy
2009-10-25 03:27:25 0 d-----w- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2009-10-25 03:16:16 121 ----a-w- c:\windows\bdagent.INI
2009-10-24 22:55:55 664 ----a-w- c:\windows\system32\d3d9caps.dat
2009-10-24 22:49:41 0 d-----w- c:\program files\common files\Adobe Systems Shared
2009-10-24 20:57:51 0 d-----w- c:\program files\Roxio
2009-10-24 05:39:38 679 ----a-w- c:\windows\password.ini
2009-10-23 20:50:32 120 ----a-w- c:\windows\WINRESAZ.INI
2009-10-23 20:50:01 0 d-----w- C:\EMBIRD32
2009-10-23 20:41:16 0 d-----w- c:\docume~1\admini~1\applic~1\Windows Search
2009-10-23 20:37:09 0 d-----w- c:\docume~1\admini~1\applic~1\uTorrent
2009-10-23 16:42:28 0 d-----w- c:\program files\Movie Player
2009-10-22 23:14:53 22328 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2009-10-22 23:14:52 22328 ----a-w- c:\docume~1\admini~1\applic~1\PnkBstrK.sys
2009-10-22 23:14:17 103736 ----a-w- c:\windows\system32\PnkBstrB.exe
2009-10-22 23:14:16 66872 ----a-w- c:\windows\system32\PnkBstrA.exe
2009-10-22 23:14:11 319 ----a-w- c:\windows\game.ini
2009-10-22 22:59:33 0 d-----w- c:\program files\Activision
2009-10-22 22:42:52 0 d-sh--w- c:\windows\ftpcache
2009-10-22 16:08:48 132 ----a-w- c:\windows\system32\rezumatenoi.dat
2009-10-22 15:15:04 0 d-----w- c:\windows\system32\XPSViewer
2009-10-22 15:14:41 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-10-22 15:14:41 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-10-22 15:14:41 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2009-10-22 15:14:41 575488 ------w- c:\windows\system32\xpsshhdr.dll
2009-10-22 15:14:41 117760 ------w- c:\windows\system32\prntvpt.dll
2009-10-22 15:14:40 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2009-10-22 15:14:40 1676288 ------w- c:\windows\system32\xpssvcs.dll
2009-10-22 15:14:40 0 d-----w- C:\76e9706898e3166eb179ccb930edac
2009-10-22 15:12:09 0 d-----w- c:\docume~1\admini~1\applic~1\Windows Desktop Search
2009-10-22 15:11:42 0 d-----w- c:\windows\system32\GroupPolicy
2009-10-22 15:11:42 0 d-----w- c:\program files\Windows Desktop Search
2009-10-22 15:10:58 0 d-----w- c:\program files\Windows Media Connect 2
2009-10-22 15:09:55 0 d-----w- c:\windows\system32\LogFiles
2009-10-22 15:08:27 0 d-----w- c:\windows\system32\URTTemp
2009-10-22 15:04:35 13646 ----a-w- c:\windows\system32\wpa.bak
2009-10-22 14:59:58 0 d-sh--w- c:\documents and settings\administrator\PrivacIE
2009-10-22 14:59:00 0 d-sh--w- c:\documents and settings\administrator\IETldCache
2009-10-22 14:55:02 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2009-10-22 14:55:02 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2009-10-22 14:55:02 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2009-10-22 14:55:02 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll
2009-10-22 14:55:02 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2009-10-22 14:55:02 11069440 -c----w- c:\windows\system32\dllcache\ieframe.dll
2009-10-22 14:54:54 0 d-----w- c:\windows\ie8updates
2009-10-22 14:54:52 100352 -c----w- c:\windows\system32\dllcache\iecompat.dll
2009-10-22 14:54:10 0 dc-h--w- c:\windows\ie8
2009-10-22 14:45:42 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2009-10-22 14:45:42 272128 ------w- c:\windows\system32\drivers\bthport.sys
2009-10-22 14:44:38 455296 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2009-10-22 14:39:04 2145280 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2009-10-22 14:39:03 2066048 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2009-10-22 14:39:03 2023936 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2009-10-22 14:37:49 2560 ------w- c:\windows\system32\xpsp4res.dll
2009-10-22 14:36:58 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2009-10-22 14:36:58 0 d-----w- c:\windows\system32\PreInstall
2009-10-22 14:36:57 0 d--h--w- c:\windows\$hf_mig$
2009-10-22 14:35:01 0 d-sh--w- c:\documents and settings\administrator\UserData
2009-10-22 14:31:04 4 ----a-w- c:\windows\system32\aspdict-en.dat
2009-10-22 14:31:04 16 ----a-w- c:\windows\system32\asdict.dat
2009-10-22 14:31:04 0 ----a-w- c:\windows\system32\ab_bl.sig
2009-10-22 14:31:04 0 ----a-w- C:\pcwords2.dat
2009-10-22 14:31:04 0 ----a-w- C:\pcwords.dat
2009-10-22 14:31:04 0 ----a-w- C:\pcconf.ini
2009-10-22 14:31:04 0 ----a-w- C:\pc_sign.slf
2009-10-22 14:30:08 7143 ----a-w- c:\windows\system32\nvide.nvu
2009-10-22 14:28:58 4984 ----a-w- c:\windows\system32\drivers\nvphy.bin
2009-10-22 14:28:43 6045 ----a-w- c:\windows\system32\nvnrm.nvu
2009-10-22 14:28:43 446464 ----a-w- c:\windows\system32\nvunrm.exe
2009-10-22 14:27:40 385 ----a-w- c:\windows\system32\user_gensett.xml
2009-10-22 14:23:39 0 d-----w- c:\docume~1\alluse~1\applic~1\NVIDIA Corporation
2009-10-22 14:23:33 0 d-----w- c:\program files\NVIDIA Corporation
2009-10-22 14:23:06 0 d-----w- C:\NVIDIA
2009-10-22 14:19:22 0 d-----w- c:\docume~1\admini~1\applic~1\BitDefender
2009-10-22 14:19:09 0 d-----w- c:\program files\BitDefender
2009-10-22 14:19:09 0 d-----w- c:\docume~1\alluse~1\applic~1\BitDefender
2009-10-22 14:18:46 0 d-----w- c:\program files\common files\BitDefender
2009-10-22 14:06:45 434252 ----a-w- c:\windows\system32\MSVCRTD.DLL
2009-10-22 14:06:44 962612 ----a-w- c:\windows\system32\mfc42d.dll
2009-10-22 14:06:24 36352 ----a-w- c:\windows\system32\drivers\AmdK8.sys
2009-10-22 14:06:24 0 d-----w- c:\program files\AMD
2009-10-22 14:05:24 4962 ----a-r- c:\windows\system32\drivers\AsIO.sys
2009-10-22 14:05:24 24576 ----a-r- c:\windows\system32\AsIO.dll
2009-10-22 14:05:22 5120 ----a-w- c:\windows\system32\drivers\AsInsHelp64.sys
2009-10-22 14:05:22 3328 ----a-w- c:\windows\system32\drivers\AsInsHelp32.sys
2009-10-22 14:05:15 0 d-----w- c:\windows\system32\SoftwareDistribution
2009-10-22 14:05:06 0 d-----w- c:\program files\ASUS
2009-10-22 14:04:55 306688 ----a-w- c:\windows\IsUninst.exe
2009-10-22 14:02:38 92800 ----a-r- c:\windows\system32\drivers\nvata.sys
2009-10-22 14:02:38 300032 ----a-r- c:\windows\system32\idecoi.dll
2009-10-22 14:02:22 200704 ----a-w- c:\windows\system32\fdco1ins.dll
2009-10-22 14:02:20 9216 ----a-w- c:\windows\system32\bdco1ins.dll
2009-10-22 14:02:19 490088 ----a-w- c:\windows\system32\NVUNINST.EXE
2009-10-22 14:02:19 453152 ----a-w- c:\windows\system32\nvusmb.exe
2009-10-22 14:02:19 2344 ----a-w- c:\windows\system32\nvsmb.nvu
2009-10-22 14:02:09 0 d-----w- c:\windows\system32\ReinstallBackups
2009-10-22 14:01:00 0 d-----w- c:\program files\Realtek Sound Manager
2009-10-22 14:00:59 164 ------w- c:\windows\avrack.ini
2009-10-22 14:00:59 0 d-----w- c:\program files\AvRack
2009-10-22 14:00:56 77824 ----a-w- c:\windows\SOUNDMAN.EXE
2009-10-22 14:00:56 40960 ------w- c:\windows\system32\ChCfg.exe
2009-10-22 14:00:56 2317504 ----a-w- c:\windows\system32\drivers\ALCXWDM.SYS
2009-10-22 14:00:56 156672 ----a-w- c:\windows\system32\RTLCPAPI.dll
2009-10-22 14:00:54 9324032 ----a-w- c:\windows\system32\RTLCPL.EXE
2009-10-22 14:00:54 141016 ----a-w- c:\windows\system32\ALSNDMGR.WAV
2009-10-22 14:00:42 18706432 ----a-w- c:\windows\system32\ALSNDMGR.CPL
2009-10-22 14:00:41 294912 ------w- c:\windows\alcupd.exe
2009-10-22 14:00:41 200704 ------w- c:\windows\alcrmv.exe
2009-10-22 14:00:35 192512 ------w- c:\windows\RtlExUpd.dll
2009-10-22 14:00:01 5810 ----a-r- c:\windows\system32\drivers\ASACPI.sys
2009-10-22 13:59:58 3021 ----a-w- c:\windows\Ascd_tmp.ini
2009-10-22 13:59:56 5824 ----a-w- c:\windows\system32\drivers\ASUSHWIO.SYS
2009-10-22 03:28:01 0 d-sh--w- c:\documents and settings\all users\DRM
2009-10-22 03:27:43 0 d--h--w- c:\program files\WindowsUpdate
2009-10-22 03:27:12 0 d-----w- c:\program files\common files\MSSoap
2009-10-22 03:25:54 0 d-----w- c:\program files\Online Services
2009-10-22 03:25:48 0 d-----w- c:\program files\Messenger
2009-10-22 03:25:45 0 d-----w- c:\program files\MSN Gaming Zone
2009-10-22 03:25:11 0 d-----w- c:\program files\Windows NT
2009-10-21 20:04:50 0 d-----w- c:\program files\common files\ODBC
2009-10-21 20:04:47 0 d-----w- c:\program files\common files\SpeechEngines
2009-10-21 20:04:22 0 d-----r- c:\documents and settings\all users\Documents
==================== Find3M ====================
2009-10-22 14:35:57 152328 ----a-w- c:\windows\system32\drivers\bdfm.sys
2009-10-22 03:26:16 21640 ----a-w- c:\windows\system32\emptyregdb.dat
2009-10-21 20:06:34 1536 ----a-w- c:\windows\system32\TrueSoft.dat
2009-09-28 01:20:04 2173544 ----a-w- c:\windows\system32\nvcplui.exe
2009-09-28 01:20:00 81920 ----a-w- c:\windows\system32\nvwddi.dll
2009-09-28 01:19:52 3166208 ----a-w- c:\windows\system32\nvwss.dll
2009-09-28 01:19:50 4026368 ----a-w- c:\windows\system32\nvvitvs.dll
2009-09-28 01:19:48 3547136 ----a-w- c:\windows\system32\nvgames.dll
2009-09-28 01:19:48 188416 ----a-w- c:\windows\system32\nvmccss.dll
2009-09-28 01:19:48 1286144 ----a-w- c:\windows\system32\nvmobls.dll
2009-09-28 01:19:46 86016 ----a-w- c:\windows\system32\nvmctray.dll
2009-09-28 01:19:46 4935680 ----a-w- c:\windows\system32\nvdisps.dll
2009-09-28 01:19:46 172100 ----a-w- c:\windows\system32\nvsvc32.exe
2009-09-28 01:19:46 13918208 ----a-w- c:\windows\system32\nvcpl.dll
2009-09-28 01:19:40 229376 ----a-w- c:\windows\system32\nvmccs.dll
2009-09-27 23:12:22 888832 ----a-w- c:\windows\system32\nvapi.dll
2009-09-27 23:12:22 7655872 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2009-09-27 23:12:22 5900416 ----a-w- c:\windows\system32\nv4_disp.dll
2009-09-27 23:12:22 490088 ----a-w- c:\windows\system32\nvudisp.exe
2009-09-27 23:12:22 2194024 ----a-w- c:\windows\system32\nvcuvid.dll
2009-09-27 23:12:22 2007040 ----a-w- c:\windows\system32\nvcuda.dll
2009-09-27 23:12:22 1714792 ----a-w- c:\windows\system32\nvcuvenc.dll
2009-09-27 23:12:22 170600 ----a-w- c:\windows\system32\nvcodins.dll
2009-09-27 23:12:22 170600 ----a-w- c:\windows\system32\nvcod.dll
2009-09-27 23:12:22 1604482 ----a-w- c:\windows\system32\nvdata.bin
2009-09-27 23:12:22 10756096 ----a-w- c:\windows\system32\nvoglnt.dll
2009-09-25 05:37:09 81920 ------w- c:\windows\system32\ieencode.dll
2009-09-17 23:11:04 105736 ----a-w- c:\windows\system32\drivers\bdhv.sys
2009-09-11 14:18:39 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 21:03:36 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-08-29 08:08:21 916480 ----a-w- c:\windows\system32\wininet.dll
2009-08-26 08:00:21 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-05 09:01:48 204800 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-05 03:44:46 2189184 ----a-w- c:\windows\system32\ntoskrnl.exe
2009-08-04 14:20:08 2066048 ----a-w- c:\windows\system32\ntkrnlpa.exe
============= FINISH: 21:59:09.34 ===============
Thanks,
Dan
I'd like you to check a file for malware.
Go to VirusTotal (http://www.virustotal.com) or Jotti's (http://virusscan.jotti.org/)
c:\windows\system32\rezumatenoi.dat
Copy/Paste file on the list into the white Upload a file box.
Click Send/Submit, and the file will upload to VirusTotal/Jotti, where it will be scanned by several anti-virus programmes.
After a while, a window will open, with details of what the scans found.
Save the complete results in a Notepad/Word document on your desktop.
Post back results here, please.
Due to the lack of feedback this Topic is closed.
If it has been four days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread.
If it has been less than four days since your last response and you need the thread re-opened, please send a private message (pm). A valid, working link to the closed topic is required. Please do not add any logs that might have been requested in the closed topic, you would be starting fresh.
Everyone else please begin a New Topic.