PDA

View Full Version : Computer running slow and some icons not longer directing to website...whats wrong?


calwyglfer
2010-07-03, 16:31
Here is the first DDS report that came up:

DDS (Ver_10-03-17.01) - NTFSx86
Run by Tom Dotson at 10:23:46.96 on Sat 07/03/2010
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1155 [GMT -4:00]

AV: AntiVir Desktop *On-access scanning enabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: ZoneAlarm Firewall *enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\WINDOWS\system32\svchost.exe -k HPService
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlservr.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Tom Dotson\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.yahoo.com/
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
uInternet Connection Wizard,ShellNext = iexplore
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [AnyDVD] c:\program files\slysoft\anydvd\AnyDVDtray.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [uTorrent] "c:\program files\utorrent\uTorrent.exe"
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [ZoneAlarm Client] "c:\program files\zone labs\zonealarm\zlclient.exe"
mRun: [pdfFactory Pro Dispatcher v2] "c:\windows\system32\spool\drivers\w32x86\3\fppdis2a.exe" /runonce
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [<NO NAME>]
mRun: [Monitor] "c:\program files\leapfrog\leapfrog connect\Monitor.exe"
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [MySpaceIM] c:\program files\myspace\im\MySpaceIM.exe
StartupFolder: c:\docume~1\tomdot~1\startm~1\programs\startup\erunta~1.lnk - c:\program files\erunt\AUTOBACK.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobea~1.lnk - c:\windows\installer\{ac76ba86-1033-0000-7760-000000000002}\SC_Acrobat.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\servic~1.lnk - c:\program files\microsoft sql server\80\tools\binn\sqlmangr.exe
IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\program files\partygaming\partypoker\RunApp.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {284DAE3C-A691-11D3-AD58-00E0B8107A24} - hxxp://mfr.mlxchange.com/Control/SISC.cab
DPF: {31435657-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - hxxp://office.microsoft.com/officeupdate/content/opuc2.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.3.cab
DPF: {4989312D-58CF-11D5-A7D7-00E02911103E} - hxxp://mfr.mlxchange.com/Control/MultiSelectComboBox.cab
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,99/mcinsctl.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {6FD482A3-7B57-438B-B040-52CAA30147EE} - hxxp://mfr.mlxchange.com/Control/MLXClientUtils.cab
DPF: {7584C670-2274-4EFB-B00B-D6AABA6D3850} - hxxp://www.hmoa.com/APPS/msrdp.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {83AB6E4D-CDD7-11D3-B5E7-00104B9AFF6E} - hxxp://mfr.mlxchange.com/3.0.08.72/Control/IRCSharc.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - hxxp://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - hxxp://download.mcafee.com/molbin/shared/mcgdmgr/1,0,0,26/mcgdmgr.cab
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - hxxp://3dlifeplayer.dl.3dvia.com/player/install/3DVIA_player_installer.exe
DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} - hxxp://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
Notify: LMIinit - LMIinit.dll
Hosts: 127.0.0.1 www.spywareinfo.com

============= SERVICES / DRIVERS ===============

R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2009-3-21 130424]
R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2009-3-27 11608]
R1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2009-3-27 353672]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2009-3-27 108289]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2009-3-27 185089]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2009-3-27 56816]
R2 MSSQL$EMMSDE;MSSQL$EMMSDE;c:\program files\microsoft sql server\mssql$emmsde\binn\sqlservr.exe -semmsde --> c:\program files\microsoft sql server\mssql$emmsde\binn\sqlservr.exe -sEMMSDE [?]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2007-4-11 24652]
R2 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32\zonelabs\vsmon.exe -service [?]
S2 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\logmein\rainfo.sys --> c:\program files\logmein\RaInfo.sys [?]
S3 FlyUsb;FLY Fusion;c:\windows\system32\drivers\FlyUsb.sys [2009-12-29 18560]
S3 SQLAgent$EMMSDE;SQLAgent$EMMSDE;c:\program files\microsoft sql server\mssql$emmsde\binn\sqlagent.exe -i emmsde --> c:\program files\microsoft sql server\mssql$emmsde\binn\sqlagent.EXE -i EMMSDE [?]
S3 V0060VID;Creative WebCam Live! Ultra;c:\windows\system32\drivers\V0060Vid.sys [2005-9-22 196409]

=============== Created Last 30 ================

2010-06-29 17:35:21 0 d-----w- c:\program files\Posh Boutique
2010-06-29 17:34:36 0 d-----w- c:\program files\Life Quest
2010-06-29 17:33:32 0 d-----w- c:\program files\Baby Drive
2010-06-25 22:20:18 0 d-----w- c:\docume~1\tomdot~1\applic~1\HitPoint Studios
2010-06-25 22:20:18 0 d-----w- c:\docume~1\alluse~1\applic~1\HitPoint Studios
2010-06-25 22:17:54 0 d-----w- c:\program files\Zylom Games
2010-06-15 23:19:01 0 d-----w- c:\docume~1\alluse~1\applic~1\Go Go Gourmet
2010-06-15 23:18:13 0 d-----w- c:\program files\Go-Go Gourmet
2010-06-14 17:51:21 0 d-----w- c:\docume~1\alluse~1\applic~1\SulusGames
2010-06-11 11:59:49 54156 ---ha-w- c:\windows\QTFont.qfn
2010-06-11 11:59:49 1409 ----a-w- c:\windows\QTFont.for
2010-06-10 02:02:30 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2010-06-08 14:19:19 0 d-----w- c:\docume~1\tomdot~1\applic~1\Hotdog Hotshot

==================== Find3M ====================

2010-05-05 13:30:57 173056 ------w- c:\windows\system32\dllcache\ie4uinit.exe
2010-05-02 05:22:50 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-05-02 05:22:50 1851264 ------w- c:\windows\system32\dllcache\win32k.sys
2010-04-20 05:30:08 285696 ----a-w- c:\windows\system32\atmfd.dll
2010-04-20 05:30:08 285696 ------w- c:\windows\system32\dllcache\atmfd.dll
2008-03-05 14:01:40 0 ----a-w- c:\program files\temp01
2006-09-06 14:13:28 774144 ----a-w- c:\program files\RngInterstitial.dll
2008-09-25 20:57:02 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008092520080926\index.dat

============= FINISH: 10:24:55.31 ===============

Here is the 2nd report that came up:

DDS (Ver_10-03-17.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 9/21/2005 8:52:48 PM
System Uptime: 7/2/2010 8:15:42 PM (14 hours ago)

Motherboard: Dell Inc. | | 0X8582
Processor: Intel(R) Pentium(R) D CPU 2.80GHz | Microprocessor | 2793/800mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 228 GiB total, 64.781 GiB free.
D: is CDROM ()
E: is CDROM ()
G: is Removable

==== Disabled Device Manager Items =============

Class GUID: {4D36E971-E325-11CE-BFC1-08002BE10318}
Description: Officejet Pro 8500 A909g
Device ID: ROOT\MULTIFUNCTION\0000
Manufacturer: HP
Name: Officejet Pro 8500 A909g
PNP Device ID: ROOT\MULTIFUNCTION\0000
Service:

Class GUID: {4D36E979-E325-11CE-BFC1-08002BE10318}
Description: Officejet Pro 8500 A909g
Device ID: ROOT\PRINTER\0000
Manufacturer: HP
Name: Officejet Pro 8500 A909g
PNP Device ID: ROOT\PRINTER\0000
Service:

==== System Restore Points ===================

RP385: 4/5/2010 6:59:36 AM - System Checkpoint
RP386: 4/6/2010 7:44:13 AM - System Checkpoint
RP387: 4/7/2010 8:56:25 AM - System Checkpoint
RP388: 4/8/2010 9:30:46 AM - System Checkpoint
RP389: 4/9/2010 10:28:57 AM - System Checkpoint
RP390: 4/10/2010 11:04:25 AM - System Checkpoint
RP391: 4/11/2010 12:05:56 PM - System Checkpoint
RP392: 4/12/2010 12:34:39 PM - System Checkpoint
RP393: 4/13/2010 1:35:45 PM - System Checkpoint
RP394: 4/14/2010 2:25:42 PM - System Checkpoint
RP395: 4/15/2010 3:00:15 AM - Software Distribution Service 3.0
RP396: 4/16/2010 3:29:19 AM - System Checkpoint
RP397: 4/17/2010 4:29:18 AM - System Checkpoint
RP398: 4/18/2010 8:20:31 AM - System Checkpoint
RP399: 4/19/2010 8:55:46 AM - System Checkpoint
RP400: 4/20/2010 8:56:47 AM - System Checkpoint
RP401: 4/21/2010 9:29:18 AM - System Checkpoint
RP402: 4/22/2010 11:05:18 AM - System Checkpoint
RP403: 4/23/2010 11:41:18 AM - System Checkpoint
RP404: 4/24/2010 11:50:25 AM - System Checkpoint
RP405: 4/25/2010 12:46:53 PM - System Checkpoint
RP406: 4/26/2010 1:41:30 PM - System Checkpoint
RP407: 4/27/2010 7:19:46 PM - System Checkpoint
RP408: 4/28/2010 7:28:25 PM - System Checkpoint
RP409: 4/29/2010 9:31:08 PM - System Checkpoint
RP410: 4/30/2010 9:44:30 PM - System Checkpoint
RP411: 5/1/2010 10:37:43 PM - System Checkpoint
RP412: 5/2/2010 11:28:26 PM - System Checkpoint
RP413: 5/3/2010 11:41:30 PM - System Checkpoint
RP414: 5/5/2010 12:52:25 AM - System Checkpoint
RP415: 5/6/2010 2:16:25 AM - System Checkpoint
RP416: 5/7/2010 2:47:48 AM - System Checkpoint
RP417: 5/8/2010 2:52:25 AM - System Checkpoint
RP418: 5/9/2010 6:07:33 AM - System Checkpoint
RP419: 5/10/2010 6:44:41 AM - System Checkpoint
RP420: 5/11/2010 9:06:47 AM - System Checkpoint
RP421: 5/12/2010 7:40:40 AM - Software Distribution Service 3.0
RP422: 5/12/2010 8:14:43 AM - System Checkpoint
RP423: 5/13/2010 10:40:57 AM - System Checkpoint
RP424: 5/14/2010 12:32:40 PM - System Checkpoint
RP425: 5/15/2010 1:17:03 PM - System Checkpoint
RP426: 5/16/2010 2:05:29 PM - System Checkpoint
RP427: 5/17/2010 2:54:10 PM - System Checkpoint
RP428: 5/18/2010 3:48:06 PM - System Checkpoint
RP429: 5/19/2010 4:46:04 PM - System Checkpoint
RP430: 5/20/2010 4:52:13 PM - System Checkpoint
RP431: 5/21/2010 5:15:33 PM - System Checkpoint
RP432: 5/22/2010 5:49:13 PM - System Checkpoint
RP433: 5/23/2010 6:48:07 PM - System Checkpoint
RP434: 5/24/2010 8:27:54 PM - System Checkpoint
RP435: 5/25/2010 9:48:29 PM - System Checkpoint
RP436: 5/26/2010 3:00:15 AM - Software Distribution Service 3.0
RP437: 5/27/2010 3:58:36 AM - System Checkpoint
RP438: 5/28/2010 5:10:36 AM - System Checkpoint
RP439: 5/29/2010 5:58:37 AM - System Checkpoint
RP440: 5/30/2010 6:58:35 AM - System Checkpoint
RP441: 5/31/2010 7:24:20 AM - System Checkpoint
RP442: 6/1/2010 9:45:42 AM - System Checkpoint
RP443: 6/2/2010 10:46:38 AM - System Checkpoint
RP444: 6/3/2010 10:48:03 AM - System Checkpoint
RP445: 6/4/2010 11:01:16 AM - System Checkpoint
RP446: 6/5/2010 11:50:59 AM - System Checkpoint
RP447: 6/6/2010 12:23:43 PM - System Checkpoint
RP448: 6/7/2010 1:33:40 PM - System Checkpoint
RP449: 6/8/2010 1:47:41 PM - System Checkpoint
RP450: 6/9/2010 3:14:54 PM - System Checkpoint
RP451: 6/10/2010 3:00:17 AM - Software Distribution Service 3.0
RP452: 6/11/2010 4:07:32 AM - System Checkpoint
RP453: 6/12/2010 5:43:31 AM - System Checkpoint
RP454: 6/13/2010 7:31:31 AM - System Checkpoint
RP455: 6/14/2010 7:57:16 AM - System Checkpoint
RP456: 6/15/2010 8:31:32 AM - System Checkpoint
RP457: 6/16/2010 8:38:30 AM - System Checkpoint
RP458: 6/17/2010 8:41:41 AM - System Checkpoint
RP459: 6/18/2010 9:10:26 AM - System Checkpoint
RP460: 6/19/2010 9:42:09 AM - System Checkpoint
RP461: 6/20/2010 10:30:09 AM - System Checkpoint
RP462: 6/21/2010 11:29:58 AM - System Checkpoint
RP463: 6/22/2010 12:42:09 PM - System Checkpoint
RP464: 6/23/2010 1:48:35 PM - System Checkpoint
RP465: 6/24/2010 2:50:07 PM - System Checkpoint
RP466: 6/25/2010 3:14:08 PM - System Checkpoint
RP467: 6/26/2010 4:51:00 PM - System Checkpoint
RP468: 6/27/2010 5:28:55 PM - System Checkpoint
RP469: 6/28/2010 5:46:20 PM - System Checkpoint
RP470: 6/29/2010 6:44:46 PM - System Checkpoint
RP471: 6/30/2010 7:44:44 PM - System Checkpoint
RP472: 7/1/2010 8:38:06 PM - System Checkpoint
RP473: 7/2/2010 9:56:31 PM - System Checkpoint

==== Installed Programs ======================

µTorrent
32 Bit HP CIO Components Installer
3DVIA player 5.0
8500A909_eDocs
8500A909_Help
8500A909g
Adobe Acrobat - Reader 6.0.2 Update
Adobe Acrobat 7.0 Professional
Adobe Acrobat 7.1.0 Professional
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe MPEG Encoder
Adobe Photoshop 6.0
Adobe Premiere 6.5
Adobe Reader 6.0.1
Adobe Shockwave Player
Adobe SVG Viewer
Advanced RealMedia Export Plug-in for Premiere 6.0
AnyDVD
AOLIcon
Apple Software Update
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
Avira AntiVir Personal - Free Antivirus
Baby Drive
Big Fish Games: Game Manager
BPD_DSWizards
bpd_scan
BPDSoftware
BPDSoftware_Ini
Broward_02 - Placemarks & Overlays for entire Broward County
BufferChm
Compatibility Pack for the 2007 Office system
Creative MediaSource
Creative WebCam Live! Ultra Driver (1.01.03.0127)
Dell Driver Reset Tool
Dell Support 3.2.1
Dell System Restore
Destination Component
DeviceDiscovery
Diego`s Dinosaur Adventure
DivX Content Uploader
DivX Web Player
DocMgr
DocProc
Dora the Explorer: Swiper's Big Adventure!
Dr. Despicable's Dastardly Deeds
Dream Day First Home (remove only)
Dream Day Honeymoon
Dream Day Wedding: Married in Manhattan
Dream Day Wedding: Viva Las Vegas
DVD Decrypter (Remove Only)
DVD Shrink 3.2
DVDFab Platinum 2.9.7.9
EVGA Display Driver
Fax
Feeding Frenzy
Forgotten Riddles: The Moonlight Sonatas
Form Viewer
GameHouse
Gardenscapes
Garmin City Navigator North America NT 2009 Update
Garmin Communicator Plugin
Garmin USB Drivers
GemMaster Mystic
Go-Go Gourmet
Google Earth
GPBaseService2
HashCheck Shell Extension (x86-32)
High Definition Audio Driver Package - KB835221
HijackThis 2.0.2
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Customer Participation Program 12.0
HP Document Manager 2.0
HP Imaging Device Functions 12.0
hp photosmart 7700 series
HP Smart Web Printing 4.60
HP Solution Center 13.0
HP Update
HPProductAssistant
HPSSupply
HyperLoad - Field Goal Challenge
Intel Matrix Storage Manager
Intel(R) 537EP V9x DF PCI Modem
Intel(R) PRO Network Connections Software v9.2.4.11
Intel(R) PROSafe for Wired Connections
Internet Explorer Default Page
iPod for Windows 2005-02-07
iPod for Windows 2005-09-23
iTunes
Java Auto Updater
Java(TM) 6 Update 17
JSWPFCom
JSWPFGradeK
JumpStart 3D Ages 4-6
JumpStart Animal Field Trip
JumpStart Arts and Crafts
Jurassic Realm
Kid Keys 2
LeapFrog Connect
LeapFrog Tag Plugin
Learn2 Player (Uninstall Only)
Life Quest ™
Macromedia Flash Player
Magic Encyclopedia: Moon Light
Malwarebytes' Anti-Malware
MarketResearch
Miami-Dade_02 - Placemarks & Overlays for entire Miami-Dade Cou
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft SQL Server Desktop Engine (EMMSDE)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual J# .NET Redistributable Package 1.1
Microsoft XML Parser
Modem Event Monitor
Modem Helper
Modem On Hold
MPM
MSVCSetup
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Musicmatch for Windows Media Player
My Wal-Mart Digital Photo Center
MySpaceIM
Mystery Case Files - Huntsville (remove only)
Mystery Case Files - Prime Suspects (remove only)
Mystery Case Files - Ravenhearst (remove only)
Mystery Case Files&reg;: Dire Grove™
Mystery Case Files: Madame Fate (remove only)
Mystery P.I. - The Lottery Ticket
MyWay Search Assistant
Nero 7 Demo
neroxml
Network
OCR Software by I.R.I.S. 12.0
Officejet Pro 8500 A909 Series
Offshore Hunter
Otto
PartyPoker
pdfFactory Pro
Posh Boutique
PowerDVD 5.5
ProductContext
QuickBooks Simple Start Special Edition
QuickTime
RayTech RNS
RealArcade
RealPlayer Basic
Samantha Swift and the Hidden Roses of Athena
SAMSUNG Mobile Modem V2 Software
Sandlot Games Client Services 1.2.2
Scan
Season Match
Season Match 2
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Shop for HP Supplies
SmartTRAK
SmartWebPrinting
SolutionCenter
Sonic DLA
Sonic Encoders
Sonic MyDVD LE
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Sony USB Driver
SpongeBob Squarepants™ Collapse®
Spybot - Search & Destroy
SpywareBlaster 4.3
Status
Supercow
TC Native Essentials 2.02
The Secret of Margrave Manor
The Treasures of Mystery Island
Toolbox
TrayApp
Unity Web Player
UnloadSupport
Update for Windows Internet Explorer 8 (KB971180)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update Rollup 1 for Windows XP Media Center Edition 2005 with HDTV Support (KB873369)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin)
VC 9.0 Runtime
VCRedistSetup
Viewpoint Manager (Remove Only)
Viewpoint Media Player
Web Games Player Plugin
WebCyberCoach 3.2 Dell
WebFldrs XP
WebReg
Windows Defender Signatures
Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0)
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage v1.3.0254.0
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Messenger
Windows Media Format Runtime
Windows Media Player 10
Windows XP Media Center Edition 2005 KB895198
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3
WinRAR archiver
Wonder Pets Save the Puppy
WordPerfect Office 12
Yahoo! Toolbar
Yard Sale Hidden Treasures: Lucky Junction
Zhu Zhu Pets
ZoneAlarm

==== Event Viewer Messages From Past Week ========

7/2/2010 8:16:59 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the TrueVector Internet Monitor service to connect.
7/2/2010 8:16:59 PM, error: Service Control Manager [7000] - The TrueVector Internet Monitor service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
7/2/2010 8:16:59 PM, error: Service Control Manager [7000] - The LogMeIn Kernel Information Provider service failed to start due to the following error: The system cannot find the path specified.
6/27/2010 7:58:00 PM, error: SideBySide [61] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" on line 2. The required attribute version is missing from element assemblyIdentity.
6/27/2010 7:58:00 PM, error: SideBySide [61] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest" on line 2. The required attribute version is missing from element assemblyIdentity.
6/27/2010 7:58:00 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest. Reference error message: The operation completed successfully. .
6/27/2010 7:58:00 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest. Reference error message: The operation completed successfully. .
6/27/2010 7:58:00 PM, error: SideBySide [58] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" on line 2.
6/27/2010 7:58:00 PM, error: SideBySide [58] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest" on line 2.

==== End Of File ===========================
Blade81
2010-07-07, 18:31
Hi,

IMPORTANT I notice there are signs of one or more P2P (Peer to Peer) File Sharing Programs on your computer.

µTorrent


I'd like you to read this thread (http://forums.spybot.info/showthread.php?t=282).

Please go to Control Panel > Add/Remove Programs and uninstall the programs listed above (in red).


After that:

Please visit this webpage for download links, and instructions for running ComboFix tool:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Please ensure you read this guide carefully first.

Please continue as follows:


Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix, link (http://www.bleepingcomputer.com/forums/topic114351.html)
Remember to re-enable them afterwards.


Click Yes to allow ComboFix to continue scanning for malware.


When the tool is finished, it will produce a report for you.

Please include the following reports for further review, and so we may continue cleansing the system:

C:\ComboFix.txt
New dds log.

A word of warning: Neither I nor sUBs are responsible for any damage you may have caused your machine by running ComboFix. This tool is not a toy and not for everyday use.
calwyglfer
2010-07-08, 05:03
Combolog report:

ComboFix 10-07-06.05 - Tom Dotson 07/07/2010 22:03:52.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1291 [GMT -4:00]
Running from: c:\documents and settings\Tom Dotson\Desktop\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: ZoneAlarm Firewall *disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat
c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat
c:\windows\system32\Data
c:\windows\xpsp1hfm.log

----- BITS: Possible infected sites -----

hxxp://j+|Cv+@J:NGD_DQ{zGD_DQ{zGD_DQ{zGD_DQ{z+@J:Nj+|Cvwnload:17400
.
((((((((((((((((((((((((( Files Created from 2010-06-08 to 2010-07-08 )))))))))))))))))))))))))))))))
.

2010-07-07 22:30 . 2010-07-07 22:31 -------- d-----w- c:\program files\Vault Cracker
2010-07-07 01:01 . 2010-07-07 01:31 -------- d-----w- c:\documents and settings\All Users\Application Data\FarmFrenzy3_Russia
2010-07-07 00:35 . 2010-07-07 00:35 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\NevoSoft Games
2010-07-06 22:27 . 2010-07-06 22:27 -------- d-----w- c:\program files\Farm Frenzy 3 - Russian Roulette
2010-07-06 22:26 . 2010-07-06 22:27 -------- d-----w- c:\program files\Farm Craft 2
2010-07-05 00:24 . 2010-07-05 00:25 -------- d-----w- c:\program files\Flux Family Secrets - The Rabbit Hole
2010-07-04 01:18 . 2010-07-04 01:18 503808 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-11532240-n\msvcp71.dll
2010-07-04 01:18 . 2010-07-04 01:18 499712 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-11532240-n\jmc.dll
2010-07-04 01:18 . 2010-07-04 01:18 348160 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-11532240-n\msvcr71.dll
2010-07-04 01:18 . 2010-07-04 01:18 61440 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-7036afb2-n\decora-sse.dll
2010-07-04 01:18 . 2010-07-04 01:18 12800 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-7036afb2-n\decora-d3d.dll
2010-07-04 01:18 . 2010-04-12 21:29 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-25 22:22 . 2010-06-25 22:22 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Google
2010-06-25 22:20 . 2010-06-25 22:20 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\HitPoint Studios
2010-06-25 22:20 . 2010-06-25 22:20 -------- d-----w- c:\documents and settings\All Users\Application Data\HitPoint Studios
2010-06-25 22:17 . 2010-06-25 22:17 -------- d-----w- c:\program files\Zylom Games
2010-06-25 22:17 . 2009-07-02 15:19 102400 ----a-w- c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
2010-06-25 22:17 . 2004-12-20 16:17 147456 ----a-w- c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylomgamesplayer.dll
2010-06-25 22:17 . 2010-06-25 22:17 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Google
2010-06-21 00:32 . 2010-06-21 00:32 -------- d-----w- c:\documents and settings\Tom Dotson\Local Settings\Application Data\Unity
2010-06-16 19:49 . 2010-06-16 19:49 -------- d-----w- c:\program files\Common Files\Java
2010-06-15 23:19 . 2010-06-15 23:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Go Go Gourmet
2010-06-14 17:51 . 2010-06-14 17:51 -------- d-----w- c:\documents and settings\All Users\Application Data\SulusGames
2010-06-10 22:00 . 2010-06-10 22:00 143360 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\Upgrade\stub\vaultcracker_s1_l1_gF5833T1L1_d951541658[1].exe
2010-06-10 22:00 . 2010-06-10 22:00 143360 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\Upgrade\stub\flux-family-secrets-the-rabbit-hole_s1_l1_gF6005T1L1_d948104483[1].exe
2010-06-10 22:00 . 2010-06-10 22:00 143360 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\Upgrade\stub\dorascarnivaladven_s1_l1_gF649T1L1_d948107144[1].exe
2010-06-10 02:02 . 2010-05-06 10:41 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2010-06-09 18:50 . 2010-06-09 18:51 44355256 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\GameManager\GameDB\F5800T1L1\setup_gF5800T1L1_d919962926_l1_s1.exe
2010-06-08 14:19 . 2010-06-08 14:19 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\Hotdog Hotshot

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-08 01:47 . 2009-12-09 05:02 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\HPAppData
2010-07-08 01:46 . 2006-02-16 05:19 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\uTorrent
2010-07-08 01:41 . 2007-03-16 17:44 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-07-06 22:31 . 2008-08-01 20:38 -------- d-----w- c:\program files\RealArcade
2010-07-06 00:32 . 2006-03-08 04:44 -------- d-----w- c:\documents and settings\All Users\Application Data\DVD Shrink
2010-07-05 03:31 . 2009-12-17 11:24 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\HpUpdate
2010-07-04 01:17 . 2005-09-19 20:18 -------- d-----w- c:\program files\Java
2010-07-04 00:45 . 2008-08-16 19:56 384 ----a-w- c:\windows\system32\DVCStateBkp-{00000004-00000000-00000004-00001102-00000004-20061102}.dat
2010-07-04 00:45 . 2008-08-16 19:56 384 ----a-w- c:\windows\system32\DVCState-{00000004-00000000-00000004-00001102-00000004-20061102}.dat
2010-07-03 20:54 . 2009-04-05 19:02 3168386 ----a-w- c:\windows\Internet Logs\tvDebug.Zip
2010-07-03 20:54 . 2009-04-02 01:29 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-07-03 15:01 . 2006-02-17 00:48 -------- d-----w- c:\program files\PartyGaming
2010-06-29 21:14 . 2009-12-17 15:40 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\Big Fish Games
2010-06-27 02:22 . 2009-01-09 20:43 -------- d-----w- c:\program files\Google
2010-06-25 22:17 . 2007-08-19 17:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Zylom
2010-06-21 11:23 . 2010-04-13 17:44 40 ----a-w- c:\windows\RSoftInfo.dat
2010-06-17 19:28 . 2010-06-17 21:02 2779136 ----a-w- c:\windows\Internet Logs\xDB6.tmp
2010-06-14 22:19 . 2007-01-15 19:27 -------- d-----w- c:\program files\Mystery Case Files - Prime Suspects
2010-06-11 12:00 . 2010-03-15 23:30 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\Apple Computer
2010-06-09 23:57 . 2009-12-09 04:50 -------- d-----w- c:\documents and settings\All Users\Application Data\HP
2010-05-25 00:40 . 2009-01-23 22:25 -------- d-----w- c:\program files\SmartTrak
2010-05-23 16:03 . 2009-10-28 20:35 -------- d-----w- c:\program files\Diego`s Dinosaur Adventure
2010-05-23 11:23 . 2010-05-23 11:23 503808 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\cache\6.0\46\f84c6ae-2efbcc96-n\msvcp71.dll
2010-05-23 11:23 . 2010-05-23 11:23 499712 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\cache\6.0\46\f84c6ae-2efbcc96-n\jmc.dll
2010-05-23 11:23 . 2010-05-23 11:23 348160 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\cache\6.0\46\f84c6ae-2efbcc96-n\msvcr71.dll
2010-05-17 21:15 . 2010-05-17 20:19 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\Magic3
2010-05-14 10:31 . 2009-04-02 01:19 -------- d-----w- c:\program files\SpywareBlaster
2010-05-14 02:36 . 2009-03-21 17:35 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-05-13 21:04 . 2009-10-29 02:18 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\GamesCafe
2010-05-06 10:41 . 2004-08-19 20:49 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-02 05:22 . 2004-08-19 20:49 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-04-29 19:39 . 2009-03-21 17:35 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 19:39 . 2009-03-21 17:35 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-23 16:31 . 2010-04-23 16:31 106432 ----a-w- c:\windows\system32\drivers\AnyDVD.sys
2010-04-20 05:30 . 2004-08-19 20:49 285696 ----a-w- c:\windows\system32\atmfd.dll
2010-04-13 22:20 . 2010-04-13 22:21 2621952 ----a-w- c:\windows\Internet Logs\xDB5.tmp
2008-03-05 14:01 . 2008-03-05 14:01 0 ----a-w- c:\program files\temp01
2006-09-06 14:13 . 2006-09-06 14:19 774144 ----a-w- c:\program files\RngInterstitial.dll
2007-08-01 18:48 . 2007-08-01 18:48 0 --sh--w- c:\windows\S52B669C9.tmp
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AnyDVD"="c:\program files\SlySoft\AnyDVD\AnyDVDtray.exe" [2010-06-01 3513280]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-19 7700480]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2009-02-16 981384]
"pdfFactory Pro Dispatcher v2"="c:\windows\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe" [2004-02-23 393216]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-02-16 282624]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2010-03-12 49208]
"Monitor"="c:\program files\LeapFrog\LeapFrog Connect\Monitor.exe" [2009-11-10 443728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"MySpaceIM"="c:\program files\MySpace\IM\MySpaceIM.exe" [2008-02-01 8699904]

c:\documents and settings\Tom Dotson\Start Menu\Programs\Startup\
ERUNT AutoBackup.lnk - c:\program files\ERUNT\AUTOBACK.EXE [2005-10-20 38912]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Acrobat Speed Launcher.lnk - c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe [2006-3-2 25214]
Adobe Gamma Loader.exe.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-12-31 113664]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2008-10-16 214360]
QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2004-11-11 806912]
Service Manager.lnk - c:\program files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe [2002-12-17 74308]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2006-10-07 00:56 11504 ----a-w- c:\windows\system32\LMIinit.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\MySpace\\IM\\MySpaceIM.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Program Files\\Raymarine\\Raymarine RayTech Navigator\\raytechnavigator.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxs08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqfxt08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"=
"c:\\Program Files\\HP\\HP Software Update\\hpwucli.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Smart Web Printing\\SmartWebPrintExe.exe"=

R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [3/21/2009 1:12 PM 130424]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [3/27/2009 9:17 AM 108289]
R2 MSSQL$EMMSDE;MSSQL$EMMSDE;c:\program files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlservr.exe -sEMMSDE --> c:\program files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlservr.exe -sEMMSDE [?]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\Viewpoint\Common\ViewpointService.exe [4/11/2007 7:55 PM 24652]
S2 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\LogMeIn\RaInfo.sys --> c:\program files\LogMeIn\RaInfo.sys [?]
S3 FlyUsb;FLY Fusion;c:\windows\system32\drivers\FlyUsb.sys [12/29/2009 9:55 PM 18560]
S3 SQLAgent$EMMSDE;SQLAgent$EMMSDE;c:\program files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlagent.EXE -i EMMSDE --> c:\program files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlagent.EXE -i EMMSDE [?]
S3 V0060VID;Creative WebCam Live! Ultra;c:\windows\system32\drivers\V0060Vid.sys [9/22/2005 6:26 PM 196409]

--- Other Services/Drivers In Memory ---

*NewlyCreated* - JAVAQUICKSTARTERSERVICE

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder

2010-07-04 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2006-10-10 22:13]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
uInternet Connection Wizard,ShellNext = iexplore
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
DPF: {4989312D-58CF-11D5-A7D7-00E02911103E} - hxxp://mfr.mlxchange.com/Control/MultiSelectComboBox.cab
DPF: {6FD482A3-7B57-438B-B040-52CAA30147EE} - hxxp://mfr.mlxchange.com/Control/MLXClientUtils.cab
DPF: {83AB6E4D-CDD7-11D3-B5E7-00104B9AFF6E} - hxxp://mfr.mlxchange.com/3.0.08.72/Control/IRCSharc.cab
DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
.
- - - - ORPHANS REMOVED - - - -

AddRemove-Broward County Rev. 02_is1 - c:\documents and settings\Tom Dotson\Application Data\Google\FNS_Google_Files\Uninstall\ Broward County Rev. 02\unins000.exe
AddRemove-Miami-Dade Rev. 02_is1 - c:\documents and settings\Tom Dotson\Application Data\Google\FNS_Google_Files\Uninstall\ Miami-Dade Rev. 02\unins000.exe
AddRemove-WebCyberCoach_wtrb - c:\program files\WebCyberCoach\b_Dell\WCC_Wipe.exe WebCyberCoach ext\wtrb



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-07-07 22:22
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-3762860483-3354526951-3339804920-1005\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:f2,66,a0,6a,9b,aa,97,85,0b,e2,66,a9,7d,d9,49,5f,f4,c1,b0,2e,db,69,f2,
44,b3,61,ea,93,4a,40,8b,88,bc,ed,ca,d0,2a,79,86,5e,fa,ed,b9,c5,9f,c9,74,eb,\
"??"=hex:a0,26,67,da,cb,4b,47,8d,fc,18,f8,70,ad,36,4e,9a

[HKEY_USERS\S-1-5-21-3762860483-3354526951-3339804920-1005\Software\Zepter Software\RegLib*f0503197\AnyDVD/1]
"1"=dword:444d9bdb
"2"=dword:448c5229
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(792)
c:\windows\system32\LMIinit.dll
.
Completion time: 2010-07-07 22:25:44
ComboFix-quarantined-files.txt 2010-07-08 02:25

Pre-Run: 90,118,074,368 bytes free
Post-Run: 92,647,522,304 bytes free

- - End Of File - - 5DBF2B64638A847A6D0E47A0FCCAFEFD







dds first report:


DDS (Ver_10-03-17.01) - NTFSx86
Run by Tom Dotson at 22:59:03.65 on Wed 07/07/2010
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1234 [GMT -4:00]

AV: AntiVir Desktop *On-access scanning enabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: ZoneAlarm Firewall *enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\WINDOWS\system32\svchost.exe -k HPService
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlservr.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\WINDOWS\system32\WISPTIS.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Documents and Settings\Tom Dotson\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.yahoo.com/
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
uInternet Connection Wizard,ShellNext = iexplore
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
uRun: [AnyDVD] c:\program files\slysoft\anydvd\AnyDVDtray.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [ZoneAlarm Client] "c:\program files\zone labs\zonealarm\zlclient.exe"
mRun: [pdfFactory Pro Dispatcher v2] "c:\windows\system32\spool\drivers\w32x86\3\fppdis2a.exe" /runonce
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [Monitor] "c:\program files\leapfrog\leapfrog connect\Monitor.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [MySpaceIM] c:\program files\myspace\im\MySpaceIM.exe
StartupFolder: c:\docume~1\tomdot~1\startm~1\programs\startup\erunta~1.lnk - c:\program files\erunt\AUTOBACK.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobea~1.lnk - c:\windows\installer\{ac76ba86-1033-0000-7760-000000000002}\SC_Acrobat.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\servic~1.lnk - c:\program files\microsoft sql server\80\tools\binn\sqlmangr.exe
IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\program files\partygaming\partypoker\RunApp.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {284DAE3C-A691-11D3-AD58-00E0B8107A24} - hxxp://mfr.mlxchange.com/Control/SISC.cab
DPF: {31435657-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - hxxp://office.microsoft.com/officeupdate/content/opuc2.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.3.cab
DPF: {4989312D-58CF-11D5-A7D7-00E02911103E} - hxxp://mfr.mlxchange.com/Control/MultiSelectComboBox.cab
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,99/mcinsctl.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {6FD482A3-7B57-438B-B040-52CAA30147EE} - hxxp://mfr.mlxchange.com/Control/MLXClientUtils.cab
DPF: {7584C670-2274-4EFB-B00B-D6AABA6D3850} - hxxp://www.hmoa.com/APPS/msrdp.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {83AB6E4D-CDD7-11D3-B5E7-00104B9AFF6E} - hxxp://mfr.mlxchange.com/3.0.08.72/Control/IRCSharc.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - hxxp://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - hxxp://download.mcafee.com/molbin/shared/mcgdmgr/1,0,0,26/mcgdmgr.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - hxxp://3dlifeplayer.dl.3dvia.com/player/install/3DVIA_player_installer.exe
DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} - hxxp://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
Notify: LMIinit - LMIinit.dll

============= SERVICES / DRIVERS ===============

R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2009-3-21 130424]
R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2009-3-27 11608]
R1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2009-3-27 353672]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2009-3-27 108289]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2009-3-27 185089]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2009-3-27 56816]
R2 MSSQL$EMMSDE;MSSQL$EMMSDE;c:\program files\microsoft sql server\mssql$emmsde\binn\sqlservr.exe -semmsde --> c:\program files\microsoft sql server\mssql$emmsde\binn\sqlservr.exe -sEMMSDE [?]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2007-4-11 24652]
R2 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32\zonelabs\vsmon.exe -service [?]
S2 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\logmein\rainfo.sys --> c:\program files\logmein\RaInfo.sys [?]
S3 FlyUsb;FLY Fusion;c:\windows\system32\drivers\FlyUsb.sys [2009-12-29 18560]
S3 SQLAgent$EMMSDE;SQLAgent$EMMSDE;c:\program files\microsoft sql server\mssql$emmsde\binn\sqlagent.exe -i emmsde --> c:\program files\microsoft sql server\mssql$emmsde\binn\sqlagent.EXE -i EMMSDE [?]
S3 V0060VID;Creative WebCam Live! Ultra;c:\windows\system32\drivers\V0060Vid.sys [2005-9-22 196409]

=============== Created Last 30 ================

2010-07-08 02:00:19 98816 ----a-w- c:\windows\sed.exe
2010-07-08 02:00:19 77312 ----a-w- c:\windows\MBR.exe
2010-07-08 02:00:19 256512 ----a-w- c:\windows\PEV.exe
2010-07-08 02:00:19 161792 ----a-w- c:\windows\SWREG.exe
2010-07-07 22:30:24 0 d-----w- c:\program files\Vault Cracker
2010-07-07 01:01:02 0 d-----w- c:\docume~1\alluse~1\applic~1\FarmFrenzy3_Russia
2010-07-07 00:35:16 0 d-----w- c:\docume~1\tomdot~1\applic~1\NevoSoft Games
2010-07-06 22:27:27 0 d-----w- c:\program files\Farm Frenzy 3 - Russian Roulette
2010-07-06 22:26:16 0 d-----w- c:\program files\Farm Craft 2
2010-07-05 00:24:45 0 d-----w- c:\program files\Flux Family Secrets - The Rabbit Hole
2010-07-04 01:18:05 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-25 22:20:18 0 d-----w- c:\docume~1\tomdot~1\applic~1\HitPoint Studios
2010-06-25 22:20:18 0 d-----w- c:\docume~1\alluse~1\applic~1\HitPoint Studios
2010-06-25 22:17:54 0 d-----w- c:\program files\Zylom Games
2010-06-15 23:19:01 0 d-----w- c:\docume~1\alluse~1\applic~1\Go Go Gourmet
2010-06-14 17:51:21 0 d-----w- c:\docume~1\alluse~1\applic~1\SulusGames
2010-06-11 11:59:49 54156 ---ha-w- c:\windows\QTFont.qfn
2010-06-11 11:59:49 1409 ----a-w- c:\windows\QTFont.for
2010-06-10 02:02:30 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2010-06-08 14:19:19 0 d-----w- c:\docume~1\tomdot~1\applic~1\Hotdog Hotshot

==================== Find3M ====================

2010-05-05 13:30:57 173056 ------w- c:\windows\system32\dllcache\ie4uinit.exe
2010-05-02 05:22:50 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-05-02 05:22:50 1851264 ------w- c:\windows\system32\dllcache\win32k.sys
2010-04-20 05:30:08 285696 ----a-w- c:\windows\system32\atmfd.dll
2010-04-20 05:30:08 285696 ------w- c:\windows\system32\dllcache\atmfd.dll
2008-03-05 14:01:40 0 ----a-w- c:\program files\temp01
2006-09-06 14:13:28 774144 ----a-w- c:\program files\RngInterstitial.dll
2008-09-25 20:57:02 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008092520080926\index.dat

============= FINISH: 22:59:42.32 ===============






dds 2nd report:


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 9/21/2005 8:52:48 PM
System Uptime: 7/3/2010 8:45:33 PM (98 hours ago)

Motherboard: Dell Inc. | | 0X8582
Processor: Intel(R) Pentium(R) D CPU 2.80GHz | Microprocessor | 2793/800mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 228 GiB total, 86.453 GiB free.
D: is CDROM ()
E: is CDROM ()
G: is Removable

==== Disabled Device Manager Items =============

Class GUID: {6BDD1FC6-810F-11D0-BEC7-08002BE2092F}
Description: Officejet Pro 8500 A909g
Device ID: ROOT\IMAGE\0000
Manufacturer: HP
Name: 8500 A909g,192.168.1.105
PNP Device ID: ROOT\IMAGE\0000
Service: StillCam

Class GUID: {4D36E971-E325-11CE-BFC1-08002BE10318}
Description: Officejet Pro 8500 A909g
Device ID: ROOT\MULTIFUNCTION\0000
Manufacturer: HP
Name: Officejet Pro 8500 A909g
PNP Device ID: ROOT\MULTIFUNCTION\0000
Service:

Class GUID: {4D36E979-E325-11CE-BFC1-08002BE10318}
Description: Officejet Pro 8500 A909g
Device ID: ROOT\PRINTER\0000
Manufacturer: HP
Name: Officejet Pro 8500 A909g
PNP Device ID: ROOT\PRINTER\0000
Service:

==== System Restore Points ===================

RP389: 4/9/2010 10:28:57 AM - System Checkpoint
RP390: 4/10/2010 11:04:25 AM - System Checkpoint
RP391: 4/11/2010 12:05:56 PM - System Checkpoint
RP392: 4/12/2010 12:34:39 PM - System Checkpoint
RP393: 4/13/2010 1:35:45 PM - System Checkpoint
RP394: 4/14/2010 2:25:42 PM - System Checkpoint
RP395: 4/15/2010 3:00:15 AM - Software Distribution Service 3.0
RP396: 4/16/2010 3:29:19 AM - System Checkpoint
RP397: 4/17/2010 4:29:18 AM - System Checkpoint
RP398: 4/18/2010 8:20:31 AM - System Checkpoint
RP399: 4/19/2010 8:55:46 AM - System Checkpoint
RP400: 4/20/2010 8:56:47 AM - System Checkpoint
RP401: 4/21/2010 9:29:18 AM - System Checkpoint
RP402: 4/22/2010 11:05:18 AM - System Checkpoint
RP403: 4/23/2010 11:41:18 AM - System Checkpoint
RP404: 4/24/2010 11:50:25 AM - System Checkpoint
RP405: 4/25/2010 12:46:53 PM - System Checkpoint
RP406: 4/26/2010 1:41:30 PM - System Checkpoint
RP407: 4/27/2010 7:19:46 PM - System Checkpoint
RP408: 4/28/2010 7:28:25 PM - System Checkpoint
RP409: 4/29/2010 9:31:08 PM - System Checkpoint
RP410: 4/30/2010 9:44:30 PM - System Checkpoint
RP411: 5/1/2010 10:37:43 PM - System Checkpoint
RP412: 5/2/2010 11:28:26 PM - System Checkpoint
RP413: 5/3/2010 11:41:30 PM - System Checkpoint
RP414: 5/5/2010 12:52:25 AM - System Checkpoint
RP415: 5/6/2010 2:16:25 AM - System Checkpoint
RP416: 5/7/2010 2:47:48 AM - System Checkpoint
RP417: 5/8/2010 2:52:25 AM - System Checkpoint
RP418: 5/9/2010 6:07:33 AM - System Checkpoint
RP419: 5/10/2010 6:44:41 AM - System Checkpoint
RP420: 5/11/2010 9:06:47 AM - System Checkpoint
RP421: 5/12/2010 7:40:40 AM - Software Distribution Service 3.0
RP422: 5/12/2010 8:14:43 AM - System Checkpoint
RP423: 5/13/2010 10:40:57 AM - System Checkpoint
RP424: 5/14/2010 12:32:40 PM - System Checkpoint
RP425: 5/15/2010 1:17:03 PM - System Checkpoint
RP426: 5/16/2010 2:05:29 PM - System Checkpoint
RP427: 5/17/2010 2:54:10 PM - System Checkpoint
RP428: 5/18/2010 3:48:06 PM - System Checkpoint
RP429: 5/19/2010 4:46:04 PM - System Checkpoint
RP430: 5/20/2010 4:52:13 PM - System Checkpoint
RP431: 5/21/2010 5:15:33 PM - System Checkpoint
RP432: 5/22/2010 5:49:13 PM - System Checkpoint
RP433: 5/23/2010 6:48:07 PM - System Checkpoint
RP434: 5/24/2010 8:27:54 PM - System Checkpoint
RP435: 5/25/2010 9:48:29 PM - System Checkpoint
RP436: 5/26/2010 3:00:15 AM - Software Distribution Service 3.0
RP437: 5/27/2010 3:58:36 AM - System Checkpoint
RP438: 5/28/2010 5:10:36 AM - System Checkpoint
RP439: 5/29/2010 5:58:37 AM - System Checkpoint
RP440: 5/30/2010 6:58:35 AM - System Checkpoint
RP441: 5/31/2010 7:24:20 AM - System Checkpoint
RP442: 6/1/2010 9:45:42 AM - System Checkpoint
RP443: 6/2/2010 10:46:38 AM - System Checkpoint
RP444: 6/3/2010 10:48:03 AM - System Checkpoint
RP445: 6/4/2010 11:01:16 AM - System Checkpoint
RP446: 6/5/2010 11:50:59 AM - System Checkpoint
RP447: 6/6/2010 12:23:43 PM - System Checkpoint
RP448: 6/7/2010 1:33:40 PM - System Checkpoint
RP449: 6/8/2010 1:47:41 PM - System Checkpoint
RP450: 6/9/2010 3:14:54 PM - System Checkpoint
RP451: 6/10/2010 3:00:17 AM - Software Distribution Service 3.0
RP452: 6/11/2010 4:07:32 AM - System Checkpoint
RP453: 6/12/2010 5:43:31 AM - System Checkpoint
RP454: 6/13/2010 7:31:31 AM - System Checkpoint
RP455: 6/14/2010 7:57:16 AM - System Checkpoint
RP456: 6/15/2010 8:31:32 AM - System Checkpoint
RP457: 6/16/2010 8:38:30 AM - System Checkpoint
RP458: 6/17/2010 8:41:41 AM - System Checkpoint
RP459: 6/18/2010 9:10:26 AM - System Checkpoint
RP460: 6/19/2010 9:42:09 AM - System Checkpoint
RP461: 6/20/2010 10:30:09 AM - System Checkpoint
RP462: 6/21/2010 11:29:58 AM - System Checkpoint
RP463: 6/22/2010 12:42:09 PM - System Checkpoint
RP464: 6/23/2010 1:48:35 PM - System Checkpoint
RP465: 6/24/2010 2:50:07 PM - System Checkpoint
RP466: 6/25/2010 3:14:08 PM - System Checkpoint
RP467: 6/26/2010 4:51:00 PM - System Checkpoint
RP468: 6/27/2010 5:28:55 PM - System Checkpoint
RP469: 6/28/2010 5:46:20 PM - System Checkpoint
RP470: 6/29/2010 6:44:46 PM - System Checkpoint
RP471: 6/30/2010 7:44:44 PM - System Checkpoint
RP472: 7/1/2010 8:38:06 PM - System Checkpoint
RP473: 7/2/2010 9:56:31 PM - System Checkpoint
RP474: 7/3/2010 9:17:01 PM - Installed Java(TM) 6 Update 20
RP475: 7/4/2010 9:49:52 PM - System Checkpoint
RP476: 7/5/2010 10:06:41 PM - System Checkpoint
RP477: 7/6/2010 10:50:59 PM - System Checkpoint

==== Installed Programs ======================

32 Bit HP CIO Components Installer
3DVIA player 5.0
8500A909_eDocs
8500A909_Help
8500A909g
Adobe Acrobat - Reader 6.0.2 Update
Adobe Acrobat 7.0 Professional
Adobe Acrobat 7.1.0 Professional
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe MPEG Encoder
Adobe Photoshop 6.0
Adobe Premiere 6.5
Adobe Reader 6.0.1
Adobe Shockwave Player
Adobe SVG Viewer
Advanced RealMedia Export Plug-in for Premiere 6.0
AnyDVD
AOLIcon
Apple Software Update
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
Avira AntiVir Personal - Free Antivirus
Big Fish Games: Game Manager
BPD_DSWizards
bpd_scan
BPDSoftware
BPDSoftware_Ini
BufferChm
Compatibility Pack for the 2007 Office system
Creative MediaSource
Creative WebCam Live! Ultra Driver (1.01.03.0127)
Dell Driver Reset Tool
Dell Support 3.2.1
Dell System Restore
Destination Component
DeviceDiscovery
Diego`s Dinosaur Adventure
DivX Content Uploader
DivX Web Player
DocMgr
DocProc
Dream Day First Home (remove only)
Dream Day Honeymoon
Dream Day Wedding: Married in Manhattan
Dream Day Wedding: Viva Las Vegas
DVD Decrypter (Remove Only)
DVD Shrink 3.2
DVDFab Platinum 2.9.7.9
EVGA Display Driver
Farm Craft 2
Farm Frenzy 3: Russian Roulette
Fax
Feeding Frenzy
Flux Family Secrets - The Rabbit Hole
Forgotten Riddles: The Moonlight Sonatas
Form Viewer
GameHouse
Gardenscapes
Garmin City Navigator North America NT 2009 Update
Garmin Communicator Plugin
Garmin USB Drivers
GemMaster Mystic
Google Earth
GPBaseService2
HashCheck Shell Extension (x86-32)
High Definition Audio Driver Package - KB835221
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Customer Participation Program 12.0
HP Document Manager 2.0
HP Imaging Device Functions 12.0
hp photosmart 7700 series
HP Smart Web Printing 4.60
HP Solution Center 13.0
HP Update
HPProductAssistant
HPSSupply
HyperLoad - Field Goal Challenge
Intel Matrix Storage Manager
Intel(R) 537EP V9x DF PCI Modem
Intel(R) PRO Network Connections Software v9.2.4.11
Intel(R) PROSafe for Wired Connections
Internet Explorer Default Page
iPod for Windows 2005-02-07
iPod for Windows 2005-09-23
iTunes
Java Auto Updater
Java(TM) 6 Update 20
JSWPFCom
JSWPFGradeK
JumpStart 3D Ages 4-6
JumpStart Animal Field Trip
JumpStart Arts and Crafts
Jurassic Realm
Kid Keys 2
LeapFrog Connect
LeapFrog Tag Plugin
Learn2 Player (Uninstall Only)
Macromedia Flash Player
Magic Encyclopedia: Moon Light
Malwarebytes' Anti-Malware
MarketResearch
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft SQL Server Desktop Engine (EMMSDE)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual J# .NET Redistributable Package 1.1
Microsoft XML Parser
Modem Event Monitor
Modem Helper
Modem On Hold
MPM
MSVCSetup
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Musicmatch for Windows Media Player
My Wal-Mart Digital Photo Center
MySpaceIM
Mystery Case Files - Huntsville (remove only)
Mystery Case Files - Prime Suspects (remove only)
Mystery Case Files - Ravenhearst (remove only)
Mystery Case Files&reg;: Dire Grove™
Mystery Case Files: Madame Fate (remove only)
Mystery P.I. - The Lottery Ticket
MyWay Search Assistant
Nero 7 Demo
neroxml
Network
OCR Software by I.R.I.S. 12.0
Officejet Pro 8500 A909 Series
Offshore Hunter
Otto
pdfFactory Pro
PowerDVD 5.5
ProductContext
QuickBooks Simple Start Special Edition
QuickTime
RayTech RNS
RealArcade
RealPlayer Basic
Samantha Swift and the Hidden Roses of Athena
SAMSUNG Mobile Modem V2 Software
Sandlot Games Client Services 1.2.2
Scan
Season Match
Season Match 2
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Shop for HP Supplies
SmartTRAK
SmartWebPrinting
SolutionCenter
Sonic DLA
Sonic Encoders
Sonic MyDVD LE
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Sony USB Driver
SpongeBob Squarepants™ Collapse®
Spybot - Search & Destroy
SpywareBlaster 4.3
Status
Supercow
TC Native Essentials 2.02
The Secret of Margrave Manor
The Treasures of Mystery Island
Toolbox
TrayApp
Unity Web Player
UnloadSupport
Update for Windows Internet Explorer 8 (KB971180)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update Rollup 1 for Windows XP Media Center Edition 2005 with HDTV Support (KB873369)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin)
Vault Cracker
VC 9.0 Runtime
VCRedistSetup
Viewpoint Manager (Remove Only)
Viewpoint Media Player
Web Games Player Plugin
WebFldrs XP
WebReg
Windows Defender Signatures
Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0)
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage v1.3.0254.0
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Messenger
Windows Media Format Runtime
Windows Media Player 10
Windows XP Media Center Edition 2005 KB895198
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3
WinRAR archiver
Wonder Pets Save the Puppy
WordPerfect Office 12
Yahoo! Toolbar
Yard Sale Hidden Treasures: Lucky Junction
Zhu Zhu Pets
ZoneAlarm

==== Event Viewer Messages From Past Week ========

7/4/2010 7:58:01 PM, error: SideBySide [61] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" on line 2. The required attribute version is missing from element assemblyIdentity.
7/4/2010 7:58:01 PM, error: SideBySide [61] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest" on line 2. The required attribute version is missing from element assemblyIdentity.
7/4/2010 7:58:01 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest. Reference error message: The operation completed successfully. .
7/4/2010 7:58:01 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest. Reference error message: The operation completed successfully. .
7/4/2010 7:58:01 PM, error: SideBySide [58] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" on line 2.
7/4/2010 7:58:01 PM, error: SideBySide [58] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest" on line 2.
7/2/2010 8:16:59 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the TrueVector Internet Monitor service to connect.
7/2/2010 8:16:59 PM, error: Service Control Manager [7000] - The TrueVector Internet Monitor service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
7/2/2010 8:16:59 PM, error: Service Control Manager [7000] - The LogMeIn Kernel Information Provider service failed to start due to the following error: The system cannot find the path specified.

==== End Of File ===========================
Blade81
2010-07-08, 08:14
Hi again,


Open notepad and copy/paste the text in the quotebox below into it:



Folder::
c:\documents and settings\Tom Dotson\Application Data\uTorrent



Save this as
CFScript

A word of warning: Neither I nor sUBs are responsible for any damage you may have caused your machine. This tool is not a toy and not for everyday use.

http://img.photobucket.com/albums/v666/sUBs/CFScriptB-4.gif

Close all browser windows and refering to the picture above, drag CFScript into ComboFix.exe
Then post the resultant log.


Uninstall old Adobe Reader versions and get the latest one with updates (9.3 and updates 9.3.2 & 9.3.3) here (http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows) or get Foxit Reader here (http://www.foxitsoftware.com/pdf/reader_2/down_reader.htm). Make sure you don't install toolbar if choose Foxit Reader! You may also check free readers introduced here (http://pdfreaders.org/).

Uninstall your current Adobe shockwave player and get the fresh one here (http://get.adobe.com/shockwave/) if needed.




Download ATF (Atribune Temp File) Cleaner© by Atribune (http://www.atribune.org/ccount/click.php?id=1) to your desktop.

Double-click ATF Cleaner.exe to open it

Under Main choose:
Windows Temp
Current User Temp
All Users Temp
Cookies
Temporary Internet Files
Prefetch
Java Cache
*The other boxes are optional*
Then click the Empty Selected button.

If you use Firefox:
Click Firefox at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click NO at the prompt.

If you use Opera:
Click Opera at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click NO at the prompt.

Click Exit on the Main menu to close the program.


Please run an online scan with Kaspersky Online Scanner (http://www.kaspersky.com/kos/eng/partner/default/kavwebscan.html) as instructed in the screenshot here (http://i275.photobucket.com/albums/jj285/Bleeping/KAS/KAS9.gif).


Post back its report, a fresh dds.txt log and above mentioned ComboFix resultant log.
calwyglfer
2010-07-08, 21:46
I had a little problem. After 2:47 of running Kaspersky Online Scanner and 83% done it locked up and stopped working. Any suggestion on a fix to that? I did notice that before it locked up it had found 3 warnings and 4 infections. Everything else went fine and here are the logs.

Combofix log:

ComboFix 10-07-06.05 - Tom Dotson 07/08/2010 8:48.4.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1488 [GMT -4:00]
Running from: c:\documents and settings\Tom Dotson\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Tom Dotson\Desktop\CFScript.txt
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: ZoneAlarm Firewall *enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.

((((((((((((((((((((((((( Files Created from 2010-06-08 to 2010-07-08 )))))))))))))))))))))))))))))))
.

2010-07-08 12:24 . 2010-07-08 12:24 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-07-08 12:23 . 2010-07-08 12:23 71680 ----a-w- c:\documents and settings\All Users\Application Data\NOS\Adobe_Downloads\arh.exe
2010-07-08 12:23 . 2010-07-08 12:29 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS
2010-07-08 12:23 . 2010-07-08 12:23 -------- d-----w- c:\program files\NOS
2010-07-07 22:30 . 2010-07-07 22:31 -------- d-----w- c:\program files\Vault Cracker
2010-07-07 01:01 . 2010-07-07 01:31 -------- d-----w- c:\documents and settings\All Users\Application Data\FarmFrenzy3_Russia
2010-07-07 00:35 . 2010-07-07 00:35 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\NevoSoft Games
2010-07-06 22:27 . 2010-07-06 22:27 -------- d-----w- c:\program files\Farm Frenzy 3 - Russian Roulette
2010-07-06 22:26 . 2010-07-06 22:27 -------- d-----w- c:\program files\Farm Craft 2
2010-07-05 00:24 . 2010-07-05 00:25 -------- d-----w- c:\program files\Flux Family Secrets - The Rabbit Hole
2010-07-04 01:18 . 2010-07-04 01:18 503808 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-11532240-n\msvcp71.dll
2010-07-04 01:18 . 2010-07-04 01:18 499712 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-11532240-n\jmc.dll
2010-07-04 01:18 . 2010-07-04 01:18 348160 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-11532240-n\msvcr71.dll
2010-07-04 01:18 . 2010-07-04 01:18 61440 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-7036afb2-n\decora-sse.dll
2010-07-04 01:18 . 2010-07-04 01:18 12800 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-7036afb2-n\decora-d3d.dll
2010-07-04 01:18 . 2010-04-12 21:29 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-25 22:22 . 2010-06-25 22:22 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Google
2010-06-25 22:20 . 2010-06-25 22:20 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\HitPoint Studios
2010-06-25 22:20 . 2010-06-25 22:20 -------- d-----w- c:\documents and settings\All Users\Application Data\HitPoint Studios
2010-06-25 22:17 . 2010-06-25 22:17 -------- d-----w- c:\program files\Zylom Games
2010-06-25 22:17 . 2009-07-02 15:19 102400 ----a-w- c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
2010-06-25 22:17 . 2004-12-20 16:17 147456 ----a-w- c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylomgamesplayer.dll
2010-06-25 22:17 . 2010-06-25 22:17 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Google
2010-06-21 00:32 . 2010-06-21 00:32 -------- d-----w- c:\documents and settings\Tom Dotson\Local Settings\Application Data\Unity
2010-06-16 19:49 . 2010-06-16 19:49 -------- d-----w- c:\program files\Common Files\Java
2010-06-15 23:19 . 2010-06-15 23:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Go Go Gourmet
2010-06-14 17:51 . 2010-06-14 17:51 -------- d-----w- c:\documents and settings\All Users\Application Data\SulusGames
2010-06-10 22:00 . 2010-06-10 22:00 143360 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\Upgrade\stub\vaultcracker_s1_l1_gF5833T1L1_d951541658[1].exe
2010-06-10 22:00 . 2010-06-10 22:00 143360 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\Upgrade\stub\flux-family-secrets-the-rabbit-hole_s1_l1_gF6005T1L1_d948104483[1].exe
2010-06-10 22:00 . 2010-06-10 22:00 143360 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\Upgrade\stub\dorascarnivaladven_s1_l1_gF649T1L1_d948107144[1].exe
2010-06-10 02:02 . 2010-05-06 10:41 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2010-06-09 18:50 . 2010-06-09 18:51 44355256 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\GameManager\GameDB\F5800T1L1\setup_gF5800T1L1_d919962926_l1_s1.exe
2010-06-08 14:19 . 2010-06-08 14:19 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\Hotdog Hotshot

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-08 12:42 . 2008-08-16 19:56 384 ----a-w- c:\windows\system32\DVCStateBkp-{00000004-00000000-00000004-00001102-00000004-20061102}.dat
2010-07-08 12:42 . 2008-08-16 19:56 384 ----a-w- c:\windows\system32\DVCState-{00000004-00000000-00000004-00001102-00000004-20061102}.dat
2010-07-08 12:26 . 2005-09-26 00:21 -------- d-----w- c:\program files\Common Files\Adobe
2010-07-08 12:14 . 2009-12-09 05:02 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\HPAppData
2010-07-08 02:57 . 2009-04-05 19:02 4584980 ----a-w- c:\windows\Internet Logs\tvDebug.Zip
2010-07-08 01:46 . 2006-02-16 05:19 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\uTorrent
2010-07-08 01:41 . 2007-03-16 17:44 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-07-06 22:31 . 2008-08-01 20:38 -------- d-----w- c:\program files\RealArcade
2010-07-06 00:32 . 2006-03-08 04:44 -------- d-----w- c:\documents and settings\All Users\Application Data\DVD Shrink
2010-07-05 03:31 . 2009-12-17 11:24 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\HpUpdate
2010-07-04 01:17 . 2005-09-19 20:18 -------- d-----w- c:\program files\Java
2010-07-03 20:54 . 2009-04-02 01:29 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-07-03 15:01 . 2006-02-17 00:48 -------- d-----w- c:\program files\PartyGaming
2010-06-29 21:14 . 2009-12-17 15:40 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\Big Fish Games
2010-06-27 02:22 . 2009-01-09 20:43 -------- d-----w- c:\program files\Google
2010-06-25 22:17 . 2007-08-19 17:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Zylom
2010-06-21 11:23 . 2010-04-13 17:44 40 ----a-w- c:\windows\RSoftInfo.dat
2010-06-17 19:28 . 2010-06-17 21:02 2779136 ----a-w- c:\windows\Internet Logs\xDB6.tmp
2010-06-14 22:19 . 2007-01-15 19:27 -------- d-----w- c:\program files\Mystery Case Files - Prime Suspects
2010-06-11 12:00 . 2010-03-15 23:30 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\Apple Computer
2010-06-09 23:57 . 2009-12-09 04:50 -------- d-----w- c:\documents and settings\All Users\Application Data\HP
2010-05-25 00:40 . 2009-01-23 22:25 -------- d-----w- c:\program files\SmartTrak
2010-05-23 16:03 . 2009-10-28 20:35 -------- d-----w- c:\program files\Diego`s Dinosaur Adventure
2010-05-23 11:23 . 2010-05-23 11:23 503808 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\cache\6.0\46\f84c6ae-2efbcc96-n\msvcp71.dll
2010-05-23 11:23 . 2010-05-23 11:23 499712 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\cache\6.0\46\f84c6ae-2efbcc96-n\jmc.dll
2010-05-23 11:23 . 2010-05-23 11:23 348160 ----a-w- c:\documents and settings\Tom Dotson\Application Data\Sun\Java\Deployment\cache\6.0\46\f84c6ae-2efbcc96-n\msvcr71.dll
2010-05-17 21:15 . 2010-05-17 20:19 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\Magic3
2010-05-14 10:31 . 2009-04-02 01:19 -------- d-----w- c:\program files\SpywareBlaster
2010-05-14 02:36 . 2009-03-21 17:35 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-05-13 21:04 . 2009-10-29 02:18 -------- d-----w- c:\documents and settings\Tom Dotson\Application Data\GamesCafe
2010-05-06 10:41 . 2004-08-19 20:49 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-02 05:22 . 2004-08-19 20:49 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-04-29 19:39 . 2009-03-21 17:35 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 19:39 . 2009-03-21 17:35 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-23 16:31 . 2010-04-23 16:31 106432 ----a-w- c:\windows\system32\drivers\AnyDVD.sys
2010-04-20 05:30 . 2004-08-19 20:49 285696 ----a-w- c:\windows\system32\atmfd.dll
2010-04-13 22:20 . 2010-04-13 22:21 2621952 ----a-w- c:\windows\Internet Logs\xDB5.tmp
2008-03-05 14:01 . 2008-03-05 14:01 0 ----a-w- c:\program files\temp01
2006-09-06 14:13 . 2006-09-06 14:19 774144 ----a-w- c:\program files\RngInterstitial.dll
2007-08-01 18:48 . 2007-08-01 18:48 0 --sh--w- c:\windows\S52B669C9.tmp
.

((((((((((((((((((((((((((((( SnapShot@2010-07-08_02.22.50 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-07-08 12:43 . 2010-07-08 12:43 16384 c:\windows\Temp\Perflib_Perfdata_738.dat
+ 2010-07-08 12:43 . 2010-07-08 12:43 16384 c:\windows\Temp\Perflib_Perfdata_5d4.dat
+ 2010-07-08 12:36 . 2010-07-08 12:36 87702 c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
+ 2010-05-05 14:05 . 2010-05-05 14:05 94208 c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll
+ 2010-05-05 14:38 . 2010-05-05 14:38 65816 c:\windows\system32\Adobe\Director\SWDNLD.EXE
+ 2010-07-08 12:24 . 2010-07-08 12:24 24576 c:\windows\Installer\1719180c.msi
+ 2010-07-08 12:24 . 2010-07-08 12:24 28160 c:\windows\Installer\17191807.msi
+ 2006-03-02 23:42 . 2010-07-08 12:41 25214 c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Distiller.exe
- 2006-03-02 23:42 . 2008-08-23 17:06 25214 c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Distiller.exe
+ 2006-03-02 23:42 . 2010-07-08 12:41 25214 c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat_Standard.exe
- 2006-03-02 23:42 . 2008-08-23 17:06 25214 c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat_Standard.exe
+ 2006-03-02 23:42 . 2010-07-08 12:41 25214 c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe
- 2006-03-02 23:42 . 2008-08-23 17:06 25214 c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe
- 2006-03-02 23:42 . 2008-08-23 17:06 65536 c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\PM_Designer.exe
+ 2006-03-02 23:42 . 2010-07-08 12:41 65536 c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\PM_Designer.exe
+ 2009-12-22 00:09 . 2009-12-22 00:09 16832 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\ViewerPS.dll
+ 2009-12-22 05:57 . 2009-12-22 05:57 35760 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\reader_sl.exe
+ 2009-12-22 00:02 . 2009-12-22 00:02 79280 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\PDFPrevHndlr.dll
+ 2009-12-22 03:21 . 2009-12-22 03:21 99776 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\eula.exe
+ 2009-12-11 19:57 . 2009-12-11 19:57 70584 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\adobeextractfiles.dll
+ 2009-12-22 03:37 . 2009-12-22 03:37 27048 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\acrotextextractor.exe
+ 2009-12-21 22:39 . 2009-12-21 22:39 15288 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\AcroRd32Info.exe
+ 2009-12-21 22:27 . 2009-12-21 22:27 75200 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\acroiehelpershim.dll
+ 2009-12-21 22:27 . 2009-12-21 22:27 61888 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\AcroIEHelper.dll
+ 2010-05-05 14:07 . 2010-05-05 14:07 9216 c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll
+ 2006-03-02 23:42 . 2010-07-08 12:41 7278 c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_ELEMENTS_DT.exe
- 2006-03-02 23:42 . 2008-08-23 17:06 7278 c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_ELEMENTS_DT.exe
+ 2010-05-05 14:05 . 2010-05-05 14:05 114688 c:\windows\system32\Adobe\Shockwave 11\SwInit.exe
+ 2010-05-05 14:36 . 2010-05-05 14:36 467224 c:\windows\system32\Adobe\Shockwave 11\SwHelper_1157609.exe
+ 2010-05-05 14:08 . 2010-05-05 14:08 446464 c:\windows\system32\Adobe\Shockwave 11\Proj.dll
+ 2010-05-05 14:06 . 2010-05-05 14:06 372736 c:\windows\system32\Adobe\Shockwave 11\Plugin.dll
+ 2010-05-05 14:05 . 2010-05-05 14:05 503808 c:\windows\system32\Adobe\Shockwave 11\Control.dll
+ 2010-05-05 14:37 . 2010-05-05 14:37 213272 c:\windows\system32\Adobe\Director\SwDir.dll
+ 2010-05-05 14:07 . 2010-05-05 14:07 131072 c:\windows\system32\Adobe\Director\np32dsw.dll
+ 2009-12-11 19:57 . 2009-12-11 19:57 326056 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\readerupdater.exe
+ 2009-12-21 22:35 . 2009-12-21 22:35 378264 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\pdfshell.dll
+ 2009-12-22 00:05 . 2009-12-22 00:05 116168 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\PDFPrevHndlrShim.exe
+ 2009-12-21 22:34 . 2009-12-21 22:34 103864 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\nppdf32.dll
+ 2009-11-09 23:18 . 2009-11-09 23:18 684032 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\JP2KLib.dll
+ 2009-12-22 00:02 . 2009-12-22 00:02 542168 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\AdobeCollabSync.exe
+ 2009-12-11 19:57 . 2009-12-11 19:57 948672 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\adobearm.exe
+ 2009-12-21 22:43 . 2009-12-21 22:43 120240 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\AcroRdIF.dll
+ 2009-12-22 05:57 . 2009-12-22 05:57 349616 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\AcroRd32.exe
+ 2009-12-21 22:15 . 2009-12-21 22:15 660912 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\AcroPDF.dll
+ 2009-12-21 23:32 . 2009-12-21 23:32 280024 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\acrobroker.exe
+ 2009-12-11 19:57 . 2009-12-11 19:57 326056 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\acrobatupdater.exe
+ 2009-12-21 23:15 . 2009-12-21 23:15 251296 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\a3dutility.exe
+ 2010-07-08 12:44 . 2010-07-08 12:44 180224 c:\windows\ERDNT\AutoBackup\7-8-2010\Users\00000002\UsrClass.dat
+ 2010-07-08 12:44 . 2005-10-20 16:02 163328 c:\windows\ERDNT\AutoBackup\7-8-2010\ERDNT.EXE
+ 2010-05-05 13:40 . 2010-05-05 13:40 1011712 c:\windows\system32\Adobe\Shockwave 11\iml32.dll
+ 2010-05-05 13:44 . 2010-05-05 13:44 1798144 c:\windows\system32\Adobe\Shockwave 11\dirapi.dll
+ 2010-07-08 12:29 . 2010-07-08 12:29 8040960 c:\windows\Installer\17191a0e.msp
+ 2010-07-08 12:26 . 2010-07-08 12:26 3940352 c:\windows\Installer\171918da.msi
+ 2009-12-21 22:29 . 2009-12-21 22:29 2409880 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\rt3d.dll
+ 2009-10-28 00:34 . 2009-10-28 00:34 5009408 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\authplay.dll
+ 2009-12-22 03:31 . 2009-12-22 03:31 5713920 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\AGM.dll
+ 2010-07-08 12:27 . 2010-07-08 12:27 11850240 c:\windows\Installer\1719197c.msp
+ 2009-12-22 03:21 . 2009-12-22 03:21 20436408 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0300000010\9.3.0\AcroRd32.dll
+ 2010-07-08 12:44 . 2010-07-08 12:44 10903552 c:\windows\ERDNT\AutoBackup\7-8-2010\Users\00000001\NTUSER.DAT
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AnyDVD"="c:\program files\SlySoft\AnyDVD\AnyDVDtray.exe" [2010-06-01 3513280]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-19 7700480]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2009-02-16 981384]
"pdfFactory Pro Dispatcher v2"="c:\windows\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe" [2004-02-23 393216]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-02-16 282624]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2010-03-12 49208]
"Monitor"="c:\program files\LeapFrog\LeapFrog Connect\Monitor.exe" [2009-11-10 443728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"MySpaceIM"="c:\program files\MySpace\IM\MySpaceIM.exe" [2008-02-01 8699904]

c:\documents and settings\Tom Dotson\Start Menu\Programs\Startup\
ERUNT AutoBackup.lnk - c:\program files\ERUNT\AUTOBACK.EXE [2005-10-20 38912]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Acrobat Speed Launcher.lnk - c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe [2006-3-2 25214]
Adobe Gamma Loader.exe.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-12-31 113664]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2008-10-16 214360]
QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2004-11-11 806912]
Service Manager.lnk - c:\program files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe [2002-12-17 74308]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2006-10-07 00:56 11504 ----a-w- c:\windows\system32\LMIinit.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\MySpace\\IM\\MySpaceIM.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Program Files\\Raymarine\\Raymarine RayTech Navigator\\raytechnavigator.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxs08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqfxt08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"=
"c:\\Program Files\\HP\\HP Software Update\\hpwucli.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Smart Web Printing\\SmartWebPrintExe.exe"=

R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [3/21/2009 1:12 PM 130424]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [3/27/2009 9:17 AM 108289]
R2 MSSQL$EMMSDE;MSSQL$EMMSDE;c:\program files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlservr.exe -sEMMSDE --> c:\program files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlservr.exe -sEMMSDE [?]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\Viewpoint\Common\ViewpointService.exe [4/11/2007 7:55 PM 24652]
S2 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\LogMeIn\RaInfo.sys --> c:\program files\LogMeIn\RaInfo.sys [?]
S3 FlyUsb;FLY Fusion;c:\windows\system32\drivers\FlyUsb.sys [12/29/2009 9:55 PM 18560]
S3 SQLAgent$EMMSDE;SQLAgent$EMMSDE;c:\program files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlagent.EXE -i EMMSDE --> c:\program files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlagent.EXE -i EMMSDE [?]
S3 V0060VID;Creative WebCam Live! Ultra;c:\windows\system32\drivers\V0060Vid.sys [9/22/2005 6:26 PM 196409]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
getPlusHelper REG_MULTI_SZ getPlusHelper
.
Contents of the 'Scheduled Tasks' folder

2010-07-04 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2006-10-10 22:13]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
uInternet Connection Wizard,ShellNext = iexplore
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
DPF: {4989312D-58CF-11D5-A7D7-00E02911103E} - hxxp://mfr.mlxchange.com/Control/MultiSelectComboBox.cab
DPF: {6FD482A3-7B57-438B-B040-52CAA30147EE} - hxxp://mfr.mlxchange.com/Control/MLXClientUtils.cab
DPF: {83AB6E4D-CDD7-11D3-B5E7-00104B9AFF6E} - hxxp://mfr.mlxchange.com/3.0.08.72/Control/IRCSharc.cab
DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
.

**************************************************************************
scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files:

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-3762860483-3354526951-3339804920-1005\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:f2,66,a0,6a,9b,aa,97,85,0b,e2,66,a9,7d,d9,49,5f,f4,c1,b0,2e,db,69,f2,
44,b3,61,ea,93,4a,40,8b,88,bc,ed,ca,d0,2a,79,86,5e,fa,ed,b9,c5,9f,c9,74,eb,\
"??"=hex:a0,26,67,da,cb,4b,47,8d,fc,18,f8,70,ad,36,4e,9a

[HKEY_USERS\S-1-5-21-3762860483-3354526951-3339804920-1005\Software\Zepter Software\RegLib*f0503197\AnyDVD/1]
"1"=dword:444d9bdb
"2"=dword:448c5229
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(792)
c:\windows\system32\LMIinit.dll

- - - - - - - > 'explorer.exe'(3700)
c:\windows\system32\WININET.dll
c:\program files\SlySoft\AnyDVD\ADvdDiscHlp.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
Completion time: 2010-07-08 09:03:51
ComboFix-quarantined-files.txt 2010-07-08 13:03
ComboFix2.txt 2010-07-08 02:25

Pre-Run: 91,969,204,224 bytes free
Post-Run: 92,005,871,616 bytes free

- - End Of File - - 7A395435BF309DC5993151D4A0DC8094






DDS log 1:



DDS (Ver_10-03-17.01) - NTFSx86
Run by Tom Dotson at 15:38:09.78 on Thu 07/08/2010
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1431 [GMT -4:00]

AV: AntiVir Desktop *On-access scanning enabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: ZoneAlarm Firewall *enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\WINDOWS\system32\svchost.exe -k HPService
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$EMMSDE\Binn\sqlservr.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir Desktop\avcenter.exe
C:\Documents and Settings\Tom Dotson\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.yahoo.com/
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
uInternet Connection Wizard,ShellNext = iexplore
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
uRun: [AnyDVD] c:\program files\slysoft\anydvd\AnyDVDtray.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [ZoneAlarm Client] "c:\program files\zone labs\zonealarm\zlclient.exe"
mRun: [pdfFactory Pro Dispatcher v2] "c:\windows\system32\spool\drivers\w32x86\3\fppdis2a.exe" /runonce
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [Monitor] "c:\program files\leapfrog\leapfrog connect\Monitor.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
dRun: [MySpaceIM] c:\program files\myspace\im\MySpaceIM.exe
StartupFolder: c:\docume~1\tomdot~1\startm~1\programs\startup\erunta~1.lnk - c:\program files\erunt\AUTOBACK.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobea~1.lnk - c:\windows\installer\{ac76ba86-1033-0000-7760-000000000002}\SC_Acrobat.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quickb~1.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\servic~1.lnk - c:\program files\microsoft sql server\80\tools\binn\sqlmangr.exe
IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\program files\partygaming\partypoker\RunApp.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {284DAE3C-A691-11D3-AD58-00E0B8107A24} - hxxp://mfr.mlxchange.com/Control/SISC.cab
DPF: {31435657-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - hxxp://office.microsoft.com/officeupdate/content/opuc2.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.3.cab
DPF: {4989312D-58CF-11D5-A7D7-00E02911103E} - hxxp://mfr.mlxchange.com/Control/MultiSelectComboBox.cab
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,99/mcinsctl.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {6FD482A3-7B57-438B-B040-52CAA30147EE} - hxxp://mfr.mlxchange.com/Control/MLXClientUtils.cab
DPF: {7584C670-2274-4EFB-B00B-D6AABA6D3850} - hxxp://www.hmoa.com/APPS/msrdp.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {83AB6E4D-CDD7-11D3-B5E7-00104B9AFF6E} - hxxp://mfr.mlxchange.com/3.0.08.72/Control/IRCSharc.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - hxxp://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - hxxp://download.mcafee.com/molbin/shared/mcgdmgr/1,0,0,26/mcgdmgr.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - hxxp://3dlifeplayer.dl.3dvia.com/player/install/3DVIA_player_installer.exe
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} - hxxp://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
Notify: LMIinit - LMIinit.dll

============= SERVICES / DRIVERS ===============

R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2009-3-21 130424]
R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2009-3-27 11608]
R1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2009-3-27 353672]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2009-3-27 108289]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2009-3-27 185089]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2009-3-27 56816]
R2 MSSQL$EMMSDE;MSSQL$EMMSDE;c:\program files\microsoft sql server\mssql$emmsde\binn\sqlservr.exe -semmsde --> c:\program files\microsoft sql server\mssql$emmsde\binn\sqlservr.exe -sEMMSDE [?]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2007-4-11 24652]
R2 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32\zonelabs\vsmon.exe -service [?]
S2 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\logmein\rainfo.sys --> c:\program files\logmein\RaInfo.sys [?]
S3 FlyUsb;FLY Fusion;c:\windows\system32\drivers\FlyUsb.sys [2009-12-29 18560]
S3 SQLAgent$EMMSDE;SQLAgent$EMMSDE;c:\program files\microsoft sql server\mssql$emmsde\binn\sqlagent.exe -i emmsde --> c:\program files\microsoft sql server\mssql$emmsde\binn\sqlagent.EXE -i EMMSDE [?]
S3 V0060VID;Creative WebCam Live! Ultra;c:\windows\system32\drivers\V0060Vid.sys [2005-9-22 196409]

=============== Created Last 30 ================

2010-07-08 12:47:19 0 d-----w- C:\ComboFix
2010-07-08 02:00:19 98816 ----a-w- c:\windows\sed.exe
2010-07-08 02:00:19 77312 ----a-w- c:\windows\MBR.exe
2010-07-08 02:00:19 256512 ----a-w- c:\windows\PEV.exe
2010-07-08 02:00:19 161792 ----a-w- c:\windows\SWREG.exe
2010-07-07 22:30:24 0 d-----w- c:\program files\Vault Cracker
2010-07-07 01:01:02 0 d-----w- c:\docume~1\alluse~1\applic~1\FarmFrenzy3_Russia
2010-07-07 00:35:16 0 d-----w- c:\docume~1\tomdot~1\applic~1\NevoSoft Games
2010-07-06 22:27:27 0 d-----w- c:\program files\Farm Frenzy 3 - Russian Roulette
2010-07-06 22:26:16 0 d-----w- c:\program files\Farm Craft 2
2010-07-05 00:24:45 0 d-----w- c:\program files\Flux Family Secrets - The Rabbit Hole
2010-07-04 01:18:05 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-25 22:20:18 0 d-----w- c:\docume~1\tomdot~1\applic~1\HitPoint Studios
2010-06-25 22:20:18 0 d-----w- c:\docume~1\alluse~1\applic~1\HitPoint Studios
2010-06-25 22:17:54 0 d-----w- c:\program files\Zylom Games
2010-06-15 23:19:01 0 d-----w- c:\docume~1\alluse~1\applic~1\Go Go Gourmet
2010-06-14 17:51:21 0 d-----w- c:\docume~1\alluse~1\applic~1\SulusGames
2010-06-11 11:59:49 54156 ---ha-w- c:\windows\QTFont.qfn
2010-06-11 11:59:49 1409 ----a-w- c:\windows\QTFont.for
2010-06-10 02:02:30 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll

==================== Find3M ====================

2010-05-05 13:30:57 173056 ------w- c:\windows\system32\dllcache\ie4uinit.exe
2010-05-02 05:22:50 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-05-02 05:22:50 1851264 ------w- c:\windows\system32\dllcache\win32k.sys
2010-04-20 05:30:08 285696 ----a-w- c:\windows\system32\atmfd.dll
2010-04-20 05:30:08 285696 ------w- c:\windows\system32\dllcache\atmfd.dll
2008-03-05 14:01:40 0 ----a-w- c:\program files\temp01
2006-09-06 14:13:28 774144 ----a-w- c:\program files\RngInterstitial.dll
2008-09-25 20:57:02 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008092520080926\index.dat

============= FINISH: 15:39:32.75 ===============






DDS log 2:



UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 9/21/2005 8:52:48 PM
System Uptime: 7/8/2010 8:43:08 AM (7 hours ago)

Motherboard: Dell Inc. | | 0X8582
Processor: Intel(R) Pentium(R) D CPU 2.80GHz | Microprocessor | 2793/800mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 228 GiB total, 85.607 GiB free.
D: is CDROM ()
E: is CDROM ()
G: is Removable

==== Disabled Device Manager Items =============

Class GUID: {6BDD1FC6-810F-11D0-BEC7-08002BE2092F}
Description: Officejet Pro 8500 A909g
Device ID: ROOT\IMAGE\0000
Manufacturer: HP
Name: 8500 A909g,192.168.1.105
PNP Device ID: ROOT\IMAGE\0000
Service: StillCam

Class GUID: {4D36E971-E325-11CE-BFC1-08002BE10318}
Description: Officejet Pro 8500 A909g
Device ID: ROOT\MULTIFUNCTION\0000
Manufacturer: HP
Name: Officejet Pro 8500 A909g
PNP Device ID: ROOT\MULTIFUNCTION\0000
Service:

Class GUID: {4D36E979-E325-11CE-BFC1-08002BE10318}
Description: Officejet Pro 8500 A909g
Device ID: ROOT\PRINTER\0000
Manufacturer: HP
Name: Officejet Pro 8500 A909g
PNP Device ID: ROOT\PRINTER\0000
Service:

==== System Restore Points ===================

RP389: 4/9/2010 10:28:57 AM - System Checkpoint
RP390: 4/10/2010 11:04:25 AM - System Checkpoint
RP391: 4/11/2010 12:05:56 PM - System Checkpoint
RP392: 4/12/2010 12:34:39 PM - System Checkpoint
RP393: 4/13/2010 1:35:45 PM - System Checkpoint
RP394: 4/14/2010 2:25:42 PM - System Checkpoint
RP395: 4/15/2010 3:00:15 AM - Software Distribution Service 3.0
RP396: 4/16/2010 3:29:19 AM - System Checkpoint
RP397: 4/17/2010 4:29:18 AM - System Checkpoint
RP398: 4/18/2010 8:20:31 AM - System Checkpoint
RP399: 4/19/2010 8:55:46 AM - System Checkpoint
RP400: 4/20/2010 8:56:47 AM - System Checkpoint
RP401: 4/21/2010 9:29:18 AM - System Checkpoint
RP402: 4/22/2010 11:05:18 AM - System Checkpoint
RP403: 4/23/2010 11:41:18 AM - System Checkpoint
RP404: 4/24/2010 11:50:25 AM - System Checkpoint
RP405: 4/25/2010 12:46:53 PM - System Checkpoint
RP406: 4/26/2010 1:41:30 PM - System Checkpoint
RP407: 4/27/2010 7:19:46 PM - System Checkpoint
RP408: 4/28/2010 7:28:25 PM - System Checkpoint
RP409: 4/29/2010 9:31:08 PM - System Checkpoint
RP410: 4/30/2010 9:44:30 PM - System Checkpoint
RP411: 5/1/2010 10:37:43 PM - System Checkpoint
RP412: 5/2/2010 11:28:26 PM - System Checkpoint
RP413: 5/3/2010 11:41:30 PM - System Checkpoint
RP414: 5/5/2010 12:52:25 AM - System Checkpoint
RP415: 5/6/2010 2:16:25 AM - System Checkpoint
RP416: 5/7/2010 2:47:48 AM - System Checkpoint
RP417: 5/8/2010 2:52:25 AM - System Checkpoint
RP418: 5/9/2010 6:07:33 AM - System Checkpoint
RP419: 5/10/2010 6:44:41 AM - System Checkpoint
RP420: 5/11/2010 9:06:47 AM - System Checkpoint
RP421: 5/12/2010 7:40:40 AM - Software Distribution Service 3.0
RP422: 5/12/2010 8:14:43 AM - System Checkpoint
RP423: 5/13/2010 10:40:57 AM - System Checkpoint
RP424: 5/14/2010 12:32:40 PM - System Checkpoint
RP425: 5/15/2010 1:17:03 PM - System Checkpoint
RP426: 5/16/2010 2:05:29 PM - System Checkpoint
RP427: 5/17/2010 2:54:10 PM - System Checkpoint
RP428: 5/18/2010 3:48:06 PM - System Checkpoint
RP429: 5/19/2010 4:46:04 PM - System Checkpoint
RP430: 5/20/2010 4:52:13 PM - System Checkpoint
RP431: 5/21/2010 5:15:33 PM - System Checkpoint
RP432: 5/22/2010 5:49:13 PM - System Checkpoint
RP433: 5/23/2010 6:48:07 PM - System Checkpoint
RP434: 5/24/2010 8:27:54 PM - System Checkpoint
RP435: 5/25/2010 9:48:29 PM - System Checkpoint
RP436: 5/26/2010 3:00:15 AM - Software Distribution Service 3.0
RP437: 5/27/2010 3:58:36 AM - System Checkpoint
RP438: 5/28/2010 5:10:36 AM - System Checkpoint
RP439: 5/29/2010 5:58:37 AM - System Checkpoint
RP440: 5/30/2010 6:58:35 AM - System Checkpoint
RP441: 5/31/2010 7:24:20 AM - System Checkpoint
RP442: 6/1/2010 9:45:42 AM - System Checkpoint
RP443: 6/2/2010 10:46:38 AM - System Checkpoint
RP444: 6/3/2010 10:48:03 AM - System Checkpoint
RP445: 6/4/2010 11:01:16 AM - System Checkpoint
RP446: 6/5/2010 11:50:59 AM - System Checkpoint
RP447: 6/6/2010 12:23:43 PM - System Checkpoint
RP448: 6/7/2010 1:33:40 PM - System Checkpoint
RP449: 6/8/2010 1:47:41 PM - System Checkpoint
RP450: 6/9/2010 3:14:54 PM - System Checkpoint
RP451: 6/10/2010 3:00:17 AM - Software Distribution Service 3.0
RP452: 6/11/2010 4:07:32 AM - System Checkpoint
RP453: 6/12/2010 5:43:31 AM - System Checkpoint
RP454: 6/13/2010 7:31:31 AM - System Checkpoint
RP455: 6/14/2010 7:57:16 AM - System Checkpoint
RP456: 6/15/2010 8:31:32 AM - System Checkpoint
RP457: 6/16/2010 8:38:30 AM - System Checkpoint
RP458: 6/17/2010 8:41:41 AM - System Checkpoint
RP459: 6/18/2010 9:10:26 AM - System Checkpoint
RP460: 6/19/2010 9:42:09 AM - System Checkpoint
RP461: 6/20/2010 10:30:09 AM - System Checkpoint
RP462: 6/21/2010 11:29:58 AM - System Checkpoint
RP463: 6/22/2010 12:42:09 PM - System Checkpoint
RP464: 6/23/2010 1:48:35 PM - System Checkpoint
RP465: 6/24/2010 2:50:07 PM - System Checkpoint
RP466: 6/25/2010 3:14:08 PM - System Checkpoint
RP467: 6/26/2010 4:51:00 PM - System Checkpoint
RP468: 6/27/2010 5:28:55 PM - System Checkpoint
RP469: 6/28/2010 5:46:20 PM - System Checkpoint
RP470: 6/29/2010 6:44:46 PM - System Checkpoint
RP471: 6/30/2010 7:44:44 PM - System Checkpoint
RP472: 7/1/2010 8:38:06 PM - System Checkpoint
RP473: 7/2/2010 9:56:31 PM - System Checkpoint
RP474: 7/3/2010 9:17:01 PM - Installed Java(TM) 6 Update 20
RP475: 7/4/2010 9:49:52 PM - System Checkpoint
RP476: 7/5/2010 10:06:41 PM - System Checkpoint
RP477: 7/6/2010 10:50:59 PM - System Checkpoint
RP478: 7/8/2010 8:25:11 AM - Removed Adobe Reader 6.0.1
RP479: 7/8/2010 8:25:26 AM - Removed Adobe Acrobat - Reader 6.0.2 Update
RP480: 7/8/2010 8:25:33 AM - Installed Adobe Reader 9.3.

==== Installed Programs ======================

32 Bit HP CIO Components Installer
3DVIA player 5.0
8500A909_eDocs
8500A909_Help
8500A909g
Acrobat.com
Adobe Acrobat 7.0 Professional
Adobe Acrobat 7.1.0 Professional
Adobe AIR
Adobe Download Manager
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe MPEG Encoder
Adobe Photoshop 6.0
Adobe Premiere 6.5
Adobe Reader 9.3.3
Adobe Shockwave Player 11.5
Adobe SVG Viewer
Advanced RealMedia Export Plug-in for Premiere 6.0
AnyDVD
AOLIcon
Apple Software Update
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
Avira AntiVir Personal - Free Antivirus
Big Fish Games: Game Manager
BPD_DSWizards
bpd_scan
BPDSoftware
BPDSoftware_Ini
BufferChm
Compatibility Pack for the 2007 Office system
Creative MediaSource
Creative WebCam Live! Ultra Driver (1.01.03.0127)
Dell Driver Reset Tool
Dell Support 3.2.1
Dell System Restore
Destination Component
DeviceDiscovery
Diego`s Dinosaur Adventure
DivX Content Uploader
DivX Web Player
DocMgr
DocProc
Dream Day First Home (remove only)
Dream Day Honeymoon
Dream Day Wedding: Married in Manhattan
Dream Day Wedding: Viva Las Vegas
DVD Decrypter (Remove Only)
DVD Shrink 3.2
DVDFab Platinum 2.9.7.9
EVGA Display Driver
Farm Craft 2
Farm Frenzy 3: Russian Roulette
Fax
Feeding Frenzy
Flux Family Secrets - The Rabbit Hole
Forgotten Riddles: The Moonlight Sonatas
Form Viewer
GameHouse
Gardenscapes
Garmin City Navigator North America NT 2009 Update
Garmin Communicator Plugin
Garmin USB Drivers
GemMaster Mystic
Google Earth
GPBaseService2
HashCheck Shell Extension (x86-32)
High Definition Audio Driver Package - KB835221
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Customer Participation Program 12.0
HP Document Manager 2.0
HP Imaging Device Functions 12.0
hp photosmart 7700 series
HP Smart Web Printing 4.60
HP Solution Center 13.0
HP Update
HPProductAssistant
HPSSupply
HyperLoad - Field Goal Challenge
Intel Matrix Storage Manager
Intel(R) 537EP V9x DF PCI Modem
Intel(R) PRO Network Connections Software v9.2.4.11
Intel(R) PROSafe for Wired Connections
Internet Explorer Default Page
iPod for Windows 2005-02-07
iPod for Windows 2005-09-23
iTunes
Java Auto Updater
Java(TM) 6 Update 20
JSWPFCom
JSWPFGradeK
JumpStart 3D Ages 4-6
JumpStart Animal Field Trip
JumpStart Arts and Crafts
Jurassic Realm
Kid Keys 2
LeapFrog Connect
LeapFrog Tag Plugin
Learn2 Player (Uninstall Only)
Macromedia Flash Player
Magic Encyclopedia: Moon Light
Malwarebytes' Anti-Malware
MarketResearch
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft SQL Server Desktop Engine (EMMSDE)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual J# .NET Redistributable Package 1.1
Microsoft XML Parser
Modem Event Monitor
Modem Helper
Modem On Hold
MPM
MSVCSetup
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Musicmatch for Windows Media Player
My Wal-Mart Digital Photo Center
MySpaceIM
Mystery Case Files - Huntsville (remove only)
Mystery Case Files - Prime Suspects (remove only)
Mystery Case Files - Ravenhearst (remove only)
Mystery Case Files&reg;: Dire Grove™
Mystery Case Files: Madame Fate (remove only)
Mystery P.I. - The Lottery Ticket
MyWay Search Assistant
Nero 7 Demo
neroxml
Network
OCR Software by I.R.I.S. 12.0
Officejet Pro 8500 A909 Series
Offshore Hunter
Otto
pdfFactory Pro
PowerDVD 5.5
ProductContext
QuickBooks Simple Start Special Edition
QuickTime
RayTech RNS
RealArcade
RealPlayer Basic
Samantha Swift and the Hidden Roses of Athena
SAMSUNG Mobile Modem V2 Software
Sandlot Games Client Services 1.2.2
Scan
Season Match
Season Match 2
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Shop for HP Supplies
SmartTRAK
SmartWebPrinting
SolutionCenter
Sonic DLA
Sonic Encoders
Sonic MyDVD LE
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Sony USB Driver
SpongeBob Squarepants™ Collapse®
Spybot - Search & Destroy
SpywareBlaster 4.3
Status
Supercow
TC Native Essentials 2.02
The Secret of Margrave Manor
The Treasures of Mystery Island
Toolbox
TrayApp
Unity Web Player
UnloadSupport
Update for Windows Internet Explorer 8 (KB971180)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update Rollup 1 for Windows XP Media Center Edition 2005 with HDTV Support (KB873369)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin)
Vault Cracker
VC 9.0 Runtime
VCRedistSetup
Viewpoint Manager (Remove Only)
Viewpoint Media Player
Web Games Player Plugin
WebFldrs XP
WebReg
Windows Defender Signatures
Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0)
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage v1.3.0254.0
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Messenger
Windows Media Format Runtime
Windows Media Player 10
Windows XP Media Center Edition 2005 KB895198
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3
WinRAR archiver
Wonder Pets Save the Puppy
WordPerfect Office 12
Yahoo! Toolbar
Yard Sale Hidden Treasures: Lucky Junction
Zhu Zhu Pets
ZoneAlarm

==== Event Viewer Messages From Past Week ========

7/4/2010 7:58:01 PM, error: SideBySide [61] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" on line 2. The required attribute version is missing from element assemblyIdentity.
7/4/2010 7:58:01 PM, error: SideBySide [61] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest" on line 2. The required attribute version is missing from element assemblyIdentity.
7/4/2010 7:58:01 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest. Reference error message: The operation completed successfully. .
7/4/2010 7:58:01 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest. Reference error message: The operation completed successfully. .
7/4/2010 7:58:01 PM, error: SideBySide [58] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" on line 2.
7/4/2010 7:58:01 PM, error: SideBySide [58] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest" on line 2.
7/3/2010 8:46:18 PM, error: Service Control Manager [7000] - The LogMeIn Kernel Information Provider service failed to start due to the following error: The system cannot find the path specified.
7/2/2010 8:16:59 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the TrueVector Internet Monitor service to connect.
7/2/2010 8:16:59 PM, error: Service Control Manager [7000] - The TrueVector Internet Monitor service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

==== End Of File ===========================
Blade81
2010-07-08, 21:53
Hi,

Please defrag hard drive and then try to run Kaspersky online scanner again (having antivirus protection disabled meanwhile).
calwyglfer
2010-07-09, 05:34
Alright thanks for the help i got it to work and here is the report:

--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7.0: scan report
Thursday, July 8, 2010
Operating system: Microsoft Windows XP Professional Service Pack 3 (build 2600)
Kaspersky Online Scanner version: 7.0.26.13
Last database update: Thursday, July 08, 2010 17:09:46
Records in database: 4242510
--------------------------------------------------------------------------------

Scan settings:
scan using the following database: extended
Scan archives: yes
Scan e-mail databases: yes

Scan area - My Computer:
C:\
D:\
E:\
G:\

Scan statistics:
Objects scanned: 135546
Threats found: 3
Infected objects found: 5
Suspicious objects found: 0
Scan duration: 04:19:01


File name / Threat / Threats count
winlogon.exe\LMIinit.dll/winlogon.exe\LMIinit.dll Infected: not-a-virus:RemoteAdmin.Win32.RemotelyAnywhere.a 1
C:\WINDOWS\system32\LMIinit.dll/C:\WINDOWS\system32\LMIinit.dll Infected: not-a-virus:RemoteAdmin.Win32.RemotelyAnywhere.a 1
C:\Program Files\Best Buy Games\Dream Day Honeymoon\Agatha_Christie-setup.exe Infected: Trojan.Win32.Inject.trs 1
C:\Program Files\Best Buy Games\Dream Day Honeymoon\Big_City_Adventure-setup.exe Infected: Trojan.Win32.Inject.ufu 1
C:\WINDOWS\system32\LMIinit.dll Infected: not-a-virus:RemoteAdmin.Win32.RemotelyAnywhere.a 1

Selected area has been scanned.
Blade81
2010-07-09, 08:39
Good. Kaspersky findings seem to be false positives. How's the system running now?
calwyglfer
2010-07-09, 13:41
over all the computer is ok but i am still having 2 problems. When i am in my outlook email and try and click on a link from my email i get an error message saying "This operation has been canceled due to restrictions in effect on this computer. Please contact your system admin." This has never happened before and i have not changed anything that i know of.

I also have a icon on my desk top for my wife to get to her online games it goes to bigfish games and this no longer works either. When i click on the icon it will open a web brozer and says connecting but does nothing after that.

Any help would be great.:bigthumb:
Blade81
2010-07-09, 17:31
When i am in my outlook email and try and click on a link from my email i get an error message saying "This operation has been canceled due to restrictions in effect on this computer. Please contact your system admin." This has never happened before and i have not changed anything that i know of.
You could try to restore Internet Explorer settings (yes, Internet Explorer issue may affect Outlook in this case too) by following this (http://support.microsoft.com/kb/923737) article.


I also have a icon on my desk top for my wife to get to her online games it goes to bigfish games and this no longer works either. When i click on the icon it will open a web brozer and says connecting but does nothing after that.
It's possible this is related to same issue as the first mentioned.
Blade81
2010-07-15, 10:38
Due to inactivity, this thread will now be closed.

Note:If it has been three days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh DDS log and a link to your previous thread. Please do not add any logs that might have been requested in the closed topic, you would be starting fresh.

If it has been less than three days since your last response and you need the thread re-opened, please send me or other MOD a private message (pm). A valid, working link to the closed topic is required.