PDA

View Full Version : ie popping up luxe software like the other guy, i couldnt post in his thread though



agoga
2010-01-19, 21:14
malwarebytes wont install or run

OTL logfile created on: 1/19/2010 2:11:18 PM - Run 1
OTL by OldTimer - Version 3.1.25.2 Folder = D:\Documents and Settings\focktor\My Documents\Downloads
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 707.00 Mb Available Physical Memory | 69.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 92.00% Paging File free
Paging file location(s): D:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 19.53 Gb Total Space | 19.31 Gb Free Space | 98.86% Space Free | Partition Type: NTFS
Drive D: | 54.96 Gb Total Space | 13.35 Gb Free Space | 24.29% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 149.05 Gb Total Space | 148.98 Gb Free Space | 99.95% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
Drive I: | 232.83 Gb Total Space | 128.59 Gb Free Space | 55.23% Space Free | Partition Type: FAT32

Computer Name: TASCO
Current User Name: focktor
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/01/19 14:11:10 | 00,547,328 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\focktor\My Documents\Downloads\OTL.exe
PRC - [2010/01/04 18:23:26 | 11,525,632 | ---- | M] (mozilla.org) -- D:\Program Files\SeaMonkey\seamonkey.exe
PRC - [2004/08/04 00:56:52 | 00,093,184 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Internet Explorer\iexplore.exe
PRC - [2004/08/04 00:56:50 | 01,032,192 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2010/01/19 14:11:10 | 00,547,328 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\focktor\My Documents\Downloads\OTL.exe
MOD - [2004/08/04 00:57:02 | 01,050,624 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (Roxio Upnp Server 9)
SRV - File not found [Disabled | Stopped] -- -- (Roxio UPnP Renderer 9)
SRV - [2009/04/11 13:17:46 | 00,313,840 | ---- | M] (Sonic Solutions) [Disabled | Stopped] -- D:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe -- (RoxLiveShare9)
SRV - [2009/04/11 13:17:44 | 00,170,480 | ---- | M] (Sonic Solutions) [Disabled | Stopped] -- D:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe -- (RoxWatch9)
SRV - [2009/04/11 13:17:26 | 01,108,464 | ---- | M] (Sonic Solutions) [Disabled | Stopped] -- D:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe -- (RoxMediaDB9)
SRV - [2009/02/12 05:52:22 | 00,655,624 | ---- | M] (Acresso Software Inc.) [Disabled | Stopped] -- D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/02/12 03:54:26 | 00,068,096 | ---- | M] () [Disabled | Stopped] -- D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
SRV - [2006/02/09 21:05:00 | 00,520,192 | ---- | M] () [Disabled | Stopped] -- D:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart)
SRV - [2006/02/09 20:51:48 | 00,405,504 | ---- | M] (ATI Technologies Inc.) [Disabled | Stopped] -- D:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller)
SRV - [2004/10/22 02:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) [Disabled | Stopped] -- D:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV - [2009/01/09 15:18:02 | 00,027,136 | R--- | M] (Research in Motion Ltd) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\RimSerial.sys -- (RimVSerPort)
DRV - [2008/08/14 07:57:42 | 00,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- D:\WINDOWS\system32\drivers\adfs.sys -- (adfs)
DRV - [2008/05/16 12:33:14 | 00,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\s0016unic.sys -- (s0016unic) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM)
DRV - [2008/05/16 12:33:14 | 00,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\s0016nd5.sys -- (s0016nd5) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS)
DRV - [2008/05/16 12:33:14 | 00,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\s0016mdfl.sys -- (s0016mdfl)
DRV - [2008/05/16 12:33:12 | 00,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\s0016mdm.sys -- (s0016mdm)
DRV - [2008/05/16 12:33:12 | 00,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\s0016mgmt.sys -- (s0016mgmt) Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM)
DRV - [2008/05/16 12:33:12 | 00,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex)
DRV - [2008/05/16 12:33:12 | 00,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\s0016bus.sys -- (s0016bus) Sony Ericsson Device 0016 driver (WDM)
DRV - [2008/01/09 11:28:34 | 00,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2007/05/01 02:00:00 | 00,043,528 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- D:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2006/02/09 20:57:46 | 01,502,208 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005/01/27 15:31:06 | 00,260,352 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\smwdm.sys -- (smwdm)
DRV - [2004/09/17 09:02:54 | 00,732,928 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\senfilt.sys -- (senfilt)
DRV - [2004/08/23 14:49:30 | 00,121,472 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2003/07/16 08:37:58 | 00,027,440 | ---- | M] () [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2003/07/16 08:37:03 | 00,005,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\rootmdm.sys -- (ROOTMODEM)
DRV - [2003/07/16 08:36:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2001/08/17 14:05:16 | 00,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\OVCD.sys -- (QCDonner)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========


FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2010/01/19 12:39:15 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2010/01/19 12:15:45 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 1.1.18\Extensions\\Components: D:\Program Files\mozilla.org\SeaMonkey\Components [2010/01/19 11:35:14 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 1.1.18\Extensions\\Plugins: D:\Program Files\mozilla.org\SeaMonkey\Plugins [2010/01/16 19:24:55 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 2.0.2\extensions\\Components: D:\Program Files\SeaMonkey\components [2010/01/19 11:41:55 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 2.0.2\extensions\\Plugins: D:\Program Files\SeaMonkey\plugins [2010/01/19 11:40:31 | 00,000,000 | ---D | M]

[2010/01/19 12:39:20 | 00,000,000 | ---D | M] -- D:\Documents and Settings\focktor\Application Data\Mozilla\Extensions
[2010/01/19 12:39:18 | 00,000,000 | ---D | M] (No name found) -- D:\Documents and Settings\focktor\Application Data\Mozilla\Extensions\{92650c4d-4b8e-4d2a-b7eb-24ecf4f6b63a}
[2010/01/19 12:39:20 | 00,000,000 | ---D | M] -- D:\Documents and Settings\focktor\Application Data\Mozilla\Firefox\Profiles\ed1uh6uv.default\extensions
[2010/01/19 12:39:18 | 00,000,000 | ---D | M] -- D:\Documents and Settings\focktor\Application Data\Mozilla\SeaMonkey\Profiles\2jjtnu95.default\extensions
[2010/01/19 10:48:08 | 00,000,000 | ---D | M] -- D:\Program Files\Mozilla Firefox\extensions

O1 HOSTS File: ([2003/07/16 08:23:48 | 00,000,734 | ---- | M]) - D:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.6.0_05\bin\ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [MSConfig] D:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe (Microsoft Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_05\bin\npjpi160_05.dll (Sun Microsystems, Inc.)
O9 - Extra Button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - D:\Program Files\AIM\aim.exe (America Online, Inc.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Program Files\Bonjour\mdnsNSP.dll File not found
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: D:\Documents and Settings\fucktorr\Desktop\meekrob\Desktop\PIXXOR\err2.gif
O24 - Desktop BackupWallPaper: D:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/03/17 06:16:04 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/09/06 07:52:38 | 00,000,000 | ---D | M] - I:\autorun -- [ FAT32 ]
O32 - AutoRun File - [2005/11/15 12:08:04 | 00,000,036 | -H-- | M] () - I:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/01/19 13:44:22 | 00,000,000 | ---D | C] -- D:\Documents and Settings\focktor\My Documents\Downloads
[2010/01/19 12:29:04 | 00,000,000 | ---D | C] -- D:\Documents and Settings\focktor\Application Data\Macromedia
[2010/01/19 12:29:04 | 00,000,000 | ---D | C] -- D:\Documents and Settings\focktor\Application Data\Adobe
[2010/01/19 12:28:26 | 00,000,000 | ---D | C] -- D:\Documents and Settings\focktor\Local Settings\Application Data\Mozilla
[2010/01/19 12:28:26 | 00,000,000 | ---D | C] -- D:\Documents and Settings\focktor\Application Data\Mozilla
[2010/01/19 12:27:59 | 00,000,000 | ---D | C] -- D:\Documents and Settings\focktor\Local Settings\Application Data\Apple Computer
[2010/01/19 12:18:52 | 00,000,000 | ---D | C] -- D:\Documents and Settings\focktor\Application Data\Identities
[2010/01/19 12:18:50 | 00,000,000 | R--D | C] -- D:\Documents and Settings\focktor\My Documents\My Pictures
[2010/01/19 12:18:50 | 00,000,000 | R--D | C] -- D:\Documents and Settings\focktor\My Documents\My Music
[2010/01/19 12:17:05 | 00,000,000 | ---D | C] -- D:\Program Files\Common Files\Research In Motion
[2010/01/19 12:09:06 | 00,000,000 | ---D | C] -- D:\WINDOWS\System32\appmgmt
[2010/01/19 11:52:03 | 00,000,000 | ---D | C] -- D:\Documents and Settings\focktor\Local Settings\Application Data\Microsoft
[2010/01/19 11:52:02 | 00,000,000 | --SD | C] -- D:\Documents and Settings\focktor\Application Data\Microsoft
[2010/01/19 11:52:02 | 00,000,000 | --SD | C] -- D:\Documents and Settings\focktor\Cookies
[2010/01/19 11:52:02 | 00,000,000 | RH-D | C] -- D:\Documents and Settings\focktor\SendTo
[2010/01/19 11:52:02 | 00,000,000 | RH-D | C] -- D:\Documents and Settings\focktor\Recent
[2010/01/19 11:52:02 | 00,000,000 | RH-D | C] -- D:\Documents and Settings\focktor\Application Data
[2010/01/19 11:52:02 | 00,000,000 | R--D | C] -- D:\Documents and Settings\focktor\Start Menu
[2010/01/19 11:52:02 | 00,000,000 | R--D | C] -- D:\Documents and Settings\focktor\My Documents
[2010/01/19 11:52:02 | 00,000,000 | R--D | C] -- D:\Documents and Settings\focktor\Favorites
[2010/01/19 11:52:02 | 00,000,000 | -H-D | C] -- D:\Documents and Settings\focktor\Templates
[2010/01/19 11:52:02 | 00,000,000 | -H-D | C] -- D:\Documents and Settings\focktor\PrintHood
[2010/01/19 11:52:02 | 00,000,000 | -H-D | C] -- D:\Documents and Settings\focktor\NetHood
[2010/01/19 11:52:02 | 00,000,000 | -H-D | C] -- D:\Documents and Settings\focktor\Local Settings
[2010/01/19 11:52:02 | 00,000,000 | ---D | C] -- D:\Documents and Settings\focktor\Desktop
[2010/01/19 11:43:32 | 00,157,712 | ---- | C] (Trend Micro Inc.) -- D:\WINDOWS\System32\drivers\tmcomm.sys
[2010/01/19 11:15:34 | 00,000,000 | ---D | C] -- D:\WINDOWS\Minidump
[2010/01/18 21:22:54 | 00,027,632 | ---- | C] (Sony Ericsson Mobile Communications) -- D:\WINDOWS\System32\drivers\seehcri.sys
[2010/01/18 21:22:39 | 00,115,752 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016unic.sys
[2010/01/18 21:22:39 | 00,114,216 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016mgmt.sys
[2010/01/18 21:22:39 | 00,010,792 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016cr.sys
[2010/01/18 21:22:38 | 00,120,744 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016mdm.sys
[2010/01/18 21:22:38 | 00,110,632 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016obex.sys
[2010/01/18 21:22:38 | 00,089,256 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016bus.sys
[2010/01/18 21:22:38 | 00,025,512 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016nd5.sys
[2010/01/18 21:22:38 | 00,015,016 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016mdfl.sys
[2010/01/18 21:22:38 | 00,012,200 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016whnt.sys
[2010/01/18 21:22:38 | 00,012,200 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016wh.sys
[2010/01/18 21:22:38 | 00,012,200 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016cmnt.sys
[2010/01/18 21:22:38 | 00,012,200 | ---- | C] (MCCI Corporation) -- D:\WINDOWS\System32\drivers\s0016cm.sys
[2010/01/18 21:18:39 | 00,014,048 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\spmsg.dll
[2010/01/18 21:17:37 | 00,000,000 | ---D | C] -- D:\WINDOWS\System32\drivers\UMDF
[2010/01/18 21:17:37 | 00,000,000 | ---D | C] -- D:\WINDOWS\System32\LogFiles
[2010/01/14 03:06:05 | 00,000,000 | ---D | C] -- D:\Program Files\QuickTime
[2010/01/12 19:02:54 | 00,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\TEMP
[2010/01/04 06:03:47 | 00,000,000 | ---D | C] -- D:\Program Files\Common Files\DivX Shared
[2010/01/04 06:03:45 | 00,000,000 | ---D | C] -- D:\Program Files\DivX
[2009/07/28 12:05:45 | 00,000,000 | ---D | M] -- D:\Documents and Settings\LocalService\Application Data\Roxio
[2009/02/12 05:46:02 | 00,000,000 | ---D | M] -- D:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2008/03/17 06:21:42 | 00,000,000 | ---D | M] -- D:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2008/03/17 06:15:48 | 00,000,000 | --SD | M] -- D:\Documents and Settings\NetworkService\Application Data\Microsoft
[2008/03/17 06:15:48 | 00,000,000 | --SD | M] -- D:\Documents and Settings\LocalService\Application Data\Microsoft
[4 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]
[1 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/01/19 14:11:14 | 00,786,432 | -H-- | M] () -- D:\Documents and Settings\focktor\NTUSER.DAT
[2010/01/19 13:24:54 | 00,000,006 | -H-- | M] () -- D:\WINDOWS\tasks\SA.DAT
[2010/01/19 13:24:52 | 00,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2010/01/19 12:41:28 | 00,000,178 | -HS- | M] () -- D:\Documents and Settings\focktor\ntuser.ini
[2010/01/19 12:41:23 | 03,758,118 | -H-- | M] () -- D:\Documents and Settings\focktor\Local Settings\Application Data\IconCache.db
[2010/01/19 12:29:37 | 00,000,284 | ---- | M] () -- D:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/01/19 12:22:55 | 00,000,503 | ---- | M] () -- D:\WINDOWS\win.ini
[2010/01/19 12:22:55 | 00,000,227 | ---- | M] () -- D:\WINDOWS\system.ini
[2010/01/18 21:18:27 | 00,001,374 | ---- | M] () -- D:\WINDOWS\imsins.BAK
[2010/01/18 21:17:39 | 00,000,000 | -H-- | M] () -- D:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010/01/17 11:23:43 | 00,002,206 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl
[2010/01/10 22:24:03 | 00,000,008 | ---- | M] () -- D:\Documents and Settings\All Users\Application Data\sysReserve.ini
[4 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]
[1 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/01/19 12:14:42 | 00,000,284 | ---- | C] () -- D:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/01/19 11:52:03 | 00,000,178 | -HS- | C] () -- D:\Documents and Settings\focktor\ntuser.ini
[2010/01/19 11:52:02 | 00,786,432 | -H-- | C] () -- D:\Documents and Settings\focktor\NTUSER.DAT
[2010/01/18 21:18:29 | 00,764,868 | ---- | C] () -- D:\WINDOWS\System32\dllcache\apph_sp.sdb
[2010/01/18 21:18:29 | 00,217,118 | ---- | C] () -- D:\WINDOWS\System32\dllcache\apphelp.sdb
[2010/01/18 21:17:39 | 00,000,000 | -H-- | C] () -- D:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010/01/10 22:24:03 | 00,000,008 | ---- | C] () -- D:\Documents and Settings\All Users\Application Data\sysReserve.ini
[2009/12/13 10:13:04 | 00,000,018 | ---- | C] () -- D:\WINDOWS\gfact.ini
[2009/07/28 10:46:33 | 00,000,058 | ---- | C] () -- D:\WINDOWS\WININIT.INI
[2009/07/24 10:55:25 | 00,593,920 | ---- | C] () -- D:\WINDOWS\System32\xvidcore.dll
[2009/07/24 10:55:25 | 00,180,224 | ---- | C] () -- D:\WINDOWS\System32\xvidvfw.dll
[2009/07/24 10:55:24 | 03,596,288 | ---- | C] () -- D:\WINDOWS\System32\qt-dx331.dll
[2009/07/24 10:55:23 | 00,010,752 | ---- | C] () -- D:\WINDOWS\System32\ff_vfw.dll
[2009/07/24 10:55:23 | 00,000,547 | ---- | C] () -- D:\WINDOWS\System32\ff_vfw.dll.manifest
[2009/02/12 05:34:29 | 00,081,920 | ---- | C] () -- D:\WINDOWS\System32\ieencode.dll
[2009/02/12 04:19:37 | 00,000,173 | ---- | C] () -- D:\WINDOWS\KPCMS.INI
[2009/02/12 04:19:23 | 00,210,944 | ---- | C] () -- D:\WINDOWS\System32\MSVCRT10.DLL
[2003/07/16 08:37:58 | 00,027,440 | ---- | C] () -- D:\WINDOWS\System32\drivers\secdrv.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 229 bytes -> D:\Documents and Settings\All Users\Application Data\TEMP:8FF81EB0
< End of report >


tell me what to do fellas

also

OTL Extras logfile created on: 1/19/2010 2:11:18 PM - Run 1
OTL by OldTimer - Version 3.1.25.2 Folder = D:\Documents and Settings\focktor\My Documents\Downloads
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 707.00 Mb Available Physical Memory | 69.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 92.00% Paging File free
Paging file location(s): D:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 19.53 Gb Total Space | 19.31 Gb Free Space | 98.86% Space Free | Partition Type: NTFS
Drive D: | 54.96 Gb Total Space | 13.35 Gb Free Space | 24.29% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 149.05 Gb Total Space | 148.98 Gb Free Space | 99.95% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
Drive I: | 232.83 Gb Total Space | 128.59 Gb Free Space | 55.23% Space Free | Partition Type: FAT32

Computer Name: TASCO
Current User Name: focktor
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome File not found
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 File not found
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome File not found
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome File not found
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "D:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "D:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"5353:TCP" = 5353:TCP:*:Enabled:Adobe CSI CS4

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" = D:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4 -- (Adobe Systems Incorporated)
"D:\Program Files\AIM\aim.exe" = D:\Program Files\AIM\aim.exe:*:Enabled:AOL Instant Messenger -- (America Online, Inc.)
"D:\Program Files\uTorrent\uTorrent.exe" = D:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"D:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = D:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)
"D:\Program Files\SoulseekNS\slsk.exe" = D:\Program Files\SoulseekNS\slsk.exe:*:Enabled:SoulSeek -- ()
"D:\Program Files\Skype\Plugin Manager\skypePM.exe" = D:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager -- (Skype Technologies)
"D:\Program Files\Skype\Phone\Skype.exe" = D:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4D612FB2-1AE7-4E46-9377-35BB2F06A787}" = Roxio Media Manager
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{A1BC8E02-6B5B-4B4A-A75F-B27A16918C2B}" = DiscWizard for Windows
"{A7460CF9-586F-45EF-BCF1-927627F6F80F}" = Froddle Pod
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B508B3F1-A24A-32C0-B310-85786919EF28}" = Microsoft .NET Framework 2.0 Service Pack 1
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BE6890C7-31EF-478C-812E-1E2899ABFCA9}" = Broadcom Gigabit Integrated Controller
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{EE59E3BD-6B7D-4BBB-B9CD-20EA7AEF1E10}" = BlackBerry Desktop Software 5.0
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"7-Zip" = 7-Zip 4.65
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop 5.5" = Adobe Photoshop 5.5
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"All ATI Software" = ATI - Software Uninstall Utility
"AOL Instant Messenger" = AOL Instant Messenger
"ATI Display Driver" = ATI Display Driver
"BlackBerry_{EE59E3BD-6B7D-4BBB-B9CD-20EA7AEF1E10}" = BlackBerry Desktop Software 5.0
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"InstallShield_{BE6890C7-31EF-478C-812E-1E2899ABFCA9}" = Broadcom Gigabit Integrated Controller
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.1.5 Full
"Mozilla Firefox (3.5.7)" = Mozilla Firefox (3.5.7)
"SeaMonkey (1.1.18)" = SeaMonkey (1.1.18)
"SeaMonkey (2.0.2)" = SeaMonkey (2.0.2)
"Soulseek2" = SoulSeek 157 NS 13e
"ViewpointMediaPlayer" = Viewpoint Media Player
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 2
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Yahoo! Messenger" = Yahoo! Messenger

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1/8/2010 11:22:30 PM | Computer Name = TASCO | Source = Application Error | ID = 1000
Description = Faulting application aim.exe, version 5.9.6089.0, faulting module
unknown, version 0.0.0.0, fault address 0x1221254f.

Error - 1/12/2010 11:19:19 PM | Computer Name = TASCO | Source = Application Error | ID = 1000
Description = Faulting application myphoneexplorer.exe, version 1.7.0.0, faulting
module unknown, version 0.0.0.0, fault address 0x001a15eb.

Error - 1/19/2010 3:19:38 PM | Computer Name = TASCO | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 6.0.2900.2180, faulting
module shlwapi.dll, version 6.0.2900.2180, fault address 0x0001aaa6.

Error - 1/19/2010 4:10:24 PM | Computer Name = TASCO | Source = MsiInstaller | ID = 11001
Description =

Error - 1/19/2010 4:10:29 PM | Computer Name = TASCO | Source = MsiInstaller | ID = 11001
Description =

Error - 1/19/2010 4:14:42 PM | Computer Name = TASCO | Source = MsiInstaller | ID = 11721
Description = Product: Apple Software Update -- Error 1721. There is a problem with
this Windows Installer package. A program required for this install to complete
could not be run. Contact your support personnel or package vendor. Action: SoftwareUpdate_UnregServer,
location: D:\Program Files\Apple Software Update\SoftwareUpdate.exe, command: /UnregServer


Error - 1/19/2010 4:15:27 PM | Computer Name = TASCO | Source = MsiInstaller | ID = 11316
Description = Product: BlackBerry Desktop Software 5.0 -- Error 1316.A network error
occurred while attempting to read from the file D:\WINDOWS\Installer\BlackBerry
Desktop Software.msi

Error - 1/19/2010 4:17:04 PM | Computer Name = TASCO | Source = MsiInstaller | ID = 11316
Description = Product: BlackBerry Desktop Software 5.0 -- Error 1316.A network error
occurred while attempting to read from the file D:\WINDOWS\Installer\BlackBerry
Desktop Software.msi

Error - 1/19/2010 4:29:36 PM | Computer Name = TASCO | Source = MsiInstaller | ID = 11721
Description = Product: Apple Software Update -- Error 1721. There is a problem with
this Windows Installer package. A program required for this install to complete
could not be run. Contact your support personnel or package vendor. Action: SoftwareUpdate_UnregServer,
location: D:\Program Files\Apple Software Update\SoftwareUpdate.exe, command: /UnregServer


Error - 1/19/2010 4:41:08 PM | Computer Name = TASCO | Source = MsiInstaller | ID = 11706
Description = Product: BlackBerry Desktop Software 5.0 -- Error 1706.No valid source
could be found for product BlackBerry Desktop Software 5.0. The Windows Installer
cannot continue.

[ System Events ]
Error - 1/19/2010 1:28:31 AM | Computer Name = TASCO | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Workstation service which
failed to start because of the following error: %%1058

Error - 1/19/2010 3:17:14 PM | Computer Name = TASCO | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Workstation service which
failed to start because of the following error: %%1058

Error - 1/19/2010 4:06:37 PM | Computer Name = TASCO | Source = Service Control Manager | ID = 7031
Description = The Print Spooler service terminated unexpectedly. It has done this
1 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 1/19/2010 4:08:57 PM | Computer Name = TASCO | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service MSIServer with
arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}

Error - 1/19/2010 4:09:06 PM | Computer Name = TASCO | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service MSIServer with
arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}

Error - 1/19/2010 4:09:15 PM | Computer Name = TASCO | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service MSIServer with
arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}

Error - 1/19/2010 4:09:25 PM | Computer Name = TASCO | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service MSIServer with
arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}

Error - 1/19/2010 4:25:26 PM | Computer Name = TASCO | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Workstation service which
failed to start because of the following error: %%1058

Error - 1/19/2010 4:30:16 PM | Computer Name = TASCO | Source = Service Control Manager | ID = 7034
Description = The Windows Installer service terminated unexpectedly. It has done
this 1 time(s).

Error - 1/19/2010 5:26:33 PM | Computer Name = TASCO | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Workstation service which
failed to start because of the following error: %%1058


< End of report >

malwarebytes wouldnt open, wouldnt update

spybot installed, wont open

deleted and re installed malwarebytes, wont run after install

reinstalled and ran housecall, detects nothing

ive absolutely got something here, got the blue screen of death earlier

rebooted and erased user profiles

using dell dimension 8400 with xp service pack 2, legit copy

only started having issues with bogging 2 weeks ago, then ie started popping up and running in the background - I NEVER RUN IE and deleted it from my computer
=================================
"BEFORE you POST"(READ this Procedure BEFORE Requesting Assistance) (http://forums.spybot.info/showthread.php?t=288)

Blade81
2010-01-24, 19:43
Hi,

IMPORTANT I notice there are signs of one or more P2P (Peer to Peer) File Sharing Programs on your computer.

SoulSeek


I'd like you to read this thread (http://forums.spybot.info/showthread.php?t=282).

Please go to Control Panel > Add/Remove Programs and uninstall the programs listed above (in red).


After that:

Download GMER (http://www.gmer.net) here by clicking download exe -button and then saving it your desktop:
Double-click .exe that you downloaded
Click rootkit-tab and then scan.
Don't check
Show All
box while scanning in progress!
When scanning is ready, click Copy.
This copies log to clipboard
Post log (if the log is long, archive it into a zip file and attach instead of posting) in your reply.

Blade81
2010-01-31, 13:04
Due to inactivity, this thread will now be closed.

Note:If it has been four days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread. Please do not add any logs that might have been requested in the closed topic, you would be starting fresh.

If it has been less than four days since your last response and you need the thread re-opened, please send me or MOD a private message (pm). A valid, working link to the closed topic is required.