Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

cannot connect to internet

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: cannot connect to internet

Unread postby Dakeyras » June 25th, 2009, 9:39 am

Hi :)

Is this right? Computer running ok
Excellent :thumbright:

Next:

Please make sure that RSIT.exe is still on the Desktop.(if not inform myself straight away please)

  • Double click once on RSIT.exe
  • RSIT will start running, at the disclaimer click on Continue.
  • When done, 1 log will be produced.
  • Post that in your next reply.

When completed the above, please post back the following:

  • A new RSIT Log.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra
Advertisement
Register to Remove

Re: cannot connect to internet

Unread postby Phoopsie » June 25th, 2009, 9:59 am

There's message on desktop--do you want to save changes in OTM file--what should I do??
Phoopsie
Regular Member
 
Posts: 23
Joined: June 19th, 2009, 10:20 am

Re: cannot connect to internet

Unread postby Phoopsie » June 25th, 2009, 10:05 am

Logfile of random's system information tool 1.06 (written by random/random)
Run by steve at 2009-06-25 10:00:43
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 20 GB (53%) free of 38 GB
Total RAM: 510 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:01:08 AM, on 6/25/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Norton PC Checkup\executables\mrHealthy\MrHealthy.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\notepad.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Documents and Settings\steve\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\steve.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zoomtown.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\Msdxm6.ocx
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Openwares LiveUpdate] C:\Program Files\LiveUpdate\LiveUpdate.exe
O4 - HKLM\..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_13.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_13.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/200 ... plugin.cab
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cab
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} -
O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Class) - https://www-secure.symantec.com/techsup ... gctlsr.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/pr01/re ... NPUpld.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} -
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab2.cab
O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 3816810984
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.crucial.com/controls/cpcScanner.cab
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} -
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.co ... nos/gp.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/f ... wflash.cab
O16 - DPF: {E856B973-45FD-4559-8F82-EAB539144667} (Dell PC Checkup Installer Control) - http://pccheckup.dellfix.com/rel/41/ins ... downde.cab
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://plugin.driveragent.com/files/driveragent.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: MrHealthy (MrHealthyService) - Symantec Corporation - C:\Program Files\Norton PC Checkup\executables\mrHealthy\MrHealthy.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI\RpcSandraSrv.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

--
End of file - 9968 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Norton AntiVirus - Run Full System Scan - Babs.job
C:\WINDOWS\tasks\Norton AntiVirus - Run Full System Scan - steve.job
C:\WINDOWS\tasks\Norton PC Checkup Weekday Scanner.job
C:\WINDOWS\tasks\Norton PC Checkup Weekend Scanner.job
C:\WINDOWS\tasks\Norton Security Scan.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{C38A9FB3-0631-49D6-9F48-755DC39F7E14}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2005-11-21 399424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-04-02 312928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll [2008-05-10 116088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-03-09 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-06-18 259696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-04-21 470512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-09 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2005-11-21 399424]
Locked
{8E718888-423F-11D2-876E-00A0C9082467} - @msdxmLC.dll,-1@1033,&Radio - C:\WINDOWS\system32\Msdxm6.ocx [2000-04-21 844048]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-06-18 259696]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"osCheck"=C:\Program Files\Norton AntiVirus\osCheck.exe [2008-02-07 718704]
"Openwares LiveUpdate"=C:\Program Files\LiveUpdate\LiveUpdate.exe [2003-11-22 65536]
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2008-10-17 51048]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2009-06-01 341312]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-04-21 39408]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2005-06-21 348160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDrives"=
"NoDriveTypeAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\SYSTEM32\LEXPPS.EXE"="C:\WINDOWS\SYSTEM32\LEXPPS.EXE:*:Disabled:LEXPPS.EXE"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI\RpcSandraSrv.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI\RpcSandraSrv.exe:*:Enabled:SiSoftware Sandra Agent Service"
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI\Win32\RpcDataSrv.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI\Win32\RpcDataSrv.exe:*:Enabled:SiSoftware Database Agent Service"
"C:\WINDOWS\SYSTEM32\ControlSuite.exe"="C:\WINDOWS\SYSTEM32\ControlSuite.exe:*:Enabled:Broadcom Advanced Control Suite"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\WINDOWS\SYSTEM32\dpvsetup.exe"="C:\WINDOWS\SYSTEM32\dpvsetup.exe:*:Disabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\SYSTEM32\rundll32.exe"="C:\WINDOWS\SYSTEM32\rundll32.exe:*:Disabled:Run a DLL as an App"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
"C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
"C:\Program Files\TVAnts\Tvants.exe"="C:\Program Files\TVAnts\Tvants.exe:*:Enabled:TVAnts"
"C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component"
"C:\WINDOWS\SYSTEM32\ftp.exe"="C:\WINDOWS\SYSTEM32\ftp.exe:*:Enabled:File Transfer Program"
"C:\WINDOWS\SYSTEM32\dxdiag.exe"="C:\WINDOWS\SYSTEM32\dxdiag.exe:*:Enabled:Microsoft DirectX Diagnostic Tool"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======File associations======

.reg - open -

======List of files/folders created in the last 1 months======

2009-06-24 19:48:47 ----DC---- C:\_OTM
2009-06-24 18:32:52 ----D---- C:\Program Files\Darkness Within
2009-06-24 16:51:41 ----D---- C:\WINDOWS\ERDNT
2009-06-24 16:49:07 ----D---- C:\Program Files\ERUNT
2009-06-24 07:56:53 ----DC---- C:\rsit
2009-06-24 07:24:26 ----D---- C:\Documents and Settings\steve\Application Data\Malwarebytes
2009-06-24 07:23:45 ----DC---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-06-24 07:23:42 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-06-22 07:28:08 ----D---- C:\Documents and Settings\steve\Application Data\WinPatrol
2009-06-22 07:27:10 ----D---- C:\Program Files\BillP Studios
2009-06-21 12:39:15 ----DC---- C:\EDEN
2009-06-21 09:44:38 ----AC---- C:\DOSBox0.73-win32-installer.exe
2009-06-20 20:26:45 ----D---- C:\Program Files\OLDGAMES
2009-06-19 09:13:39 ----D---- C:\Program Files\Belarc
2009-06-11 15:54:33 ----A---- C:\WINDOWS\MPLAYER.INI
2009-06-11 15:54:20 ----N---- C:\WINDOWS\system32\Wnaspi32.dll
2009-06-10 20:57:13 ----DC---- C:\Documents and Settings\All Users\Application Data\TVU Networks
2009-06-10 18:00:16 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2009-06-10 18:00:00 ----HDC---- C:\WINDOWS\$NtUninstallKB969898$
2009-06-10 17:54:23 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2009-06-10 17:54:03 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2009-06-10 15:07:27 ----A---- C:\WINDOWS\winstart.bat
2009-06-10 15:07:27 ----A---- C:\WINDOWS\wininit.ini
2009-06-10 15:07:27 ----A---- C:\WINDOWS\tmpdelis.bat
2009-06-10 15:07:27 ----A---- C:\WINDOWS\tmpcpyis.bat
2009-06-10 15:03:39 ----A---- C:\WINDOWS\system32\RSX.DLL
2009-06-10 15:03:39 ----A---- C:\WINDOWS\system32\AAUDIO.DLL
2009-06-02 21:08:15 ----D---- C:\Documents and Settings\steve\Application Data\Sierra
2009-06-02 20:46:37 ----D---- C:\Documents and Settings\steve\Application Data\TVU networks
2009-05-28 21:55:52 ----A---- C:\WINDOWS\ModemLog_Conexant D850 56K V.9x DFVc Modem.txt
2009-05-27 14:24:58 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2009-05-27 14:24:50 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2009-05-27 14:24:43 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2009-05-27 14:24:43 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2009-05-27 14:24:35 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2009-05-27 14:24:26 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2009-05-27 14:24:25 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2009-05-27 14:24:24 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2009-05-27 14:24:24 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2009-05-27 14:24:24 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-05-27 14:24:23 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2009-05-27 14:24:22 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2009-05-27 14:24:22 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2009-05-27 14:24:22 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2009-05-27 14:24:21 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2009-05-27 14:24:21 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2009-05-27 14:24:09 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2009-05-27 14:24:08 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2009-05-27 14:24:08 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2009-05-27 14:24:07 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2009-05-27 14:24:06 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-05-27 14:24:05 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2009-05-27 14:24:05 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2009-05-27 14:24:04 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2009-05-27 14:24:03 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2009-05-27 14:24:02 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2009-05-27 14:23:05 ----A---- C:\WINDOWS\system32\mpg4c32.dll

======List of files/folders modified in the last 1 months======

2009-06-25 08:53:54 ----D---- C:\WINDOWS\TEMP
2009-06-25 08:38:41 ----D---- C:\WINDOWS\system32\CatRoot2
2009-06-25 08:36:59 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-06-25 07:14:08 ----AC---- C:\WINDOWS\dellstat.ini
2009-06-24 22:04:54 ----D---- C:\WINDOWS\Prefetch
2009-06-24 19:55:57 ----D---- C:\WINDOWS
2009-06-24 19:48:51 ----D---- C:\Program Files
2009-06-24 15:27:25 ----SHD---- C:\WINDOWS\Installer
2009-06-24 15:27:25 ----HDC---- C:\Config.Msi
2009-06-24 15:27:03 ----D---- C:\Program Files\Java
2009-06-24 15:26:39 ----D---- C:\WINDOWS\SYSTEM32
2009-06-24 07:59:22 ----D---- C:\Program Files\SopCast
2009-06-24 07:50:05 ----AD---- C:\WINDOWS\system32\DRIVERS
2009-06-24 07:47:03 ----SHD---- C:\RECYCLER
2009-06-24 06:50:48 ----D---- C:\Program Files\LIVEUPDATE
2009-06-21 19:39:03 ----D---- C:\Documents and Settings\steve\Application Data\Move Networks
2009-06-21 13:09:08 ----D---- C:\Documents and Settings\steve\Application Data\vlc
2009-06-21 10:32:00 ----A---- C:\WINDOWS\SYSTEM.INI
2009-06-21 10:18:11 ----HD---- C:\WINDOWS\INF
2009-06-20 19:01:07 ----ASHC---- C:\BOOT.INI
2009-06-20 19:01:07 ----A---- C:\WINDOWS\WIN.INI
2009-06-20 18:41:47 ----AC---- C:\WINDOWS\QTW.INI
2009-06-20 18:41:36 ----AD---- C:\WINDOWS\SYSTEM
2009-06-20 14:50:44 ----D---- C:\Program Files\VDMSound
2009-06-20 11:50:23 ----D---- C:\WINDOWS\Help
2009-06-20 11:22:20 ----HD---- C:\WINDOWS\PIF
2009-06-20 07:54:59 ----SHD---- C:\System Volume Information
2009-06-19 22:42:01 ----D---- C:\Program Files\Trend Micro
2009-06-18 19:19:00 ----D---- C:\WINDOWS\network diagnostic
2009-06-17 17:56:39 ----D---- C:\Program Files\Common Files
2009-06-16 17:16:32 ----D---- C:\WINDOWS\system32\Restore
2009-06-15 16:54:16 ----D---- C:\Program Files\Mozilla Firefox
2009-06-15 16:54:13 ----D---- C:\Documents and Settings\steve\Application Data\Mozilla
2009-06-15 15:40:47 ----AD---- C:\WINDOWS\system32\CONFIG
2009-06-15 15:40:28 ----D---- C:\WINDOWS\Registration
2009-06-15 15:40:28 ----AD---- C:\WINDOWS\system32\WBEM
2009-06-14 20:57:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-06-14 20:15:47 ----D---- C:\Program Files\Norton Security Scan
2009-06-14 07:23:56 ----D---- C:\Program Files\Common Files\Symantec Shared
2009-06-11 10:33:27 ----A---- C:\WINDOWS\imsins.BAK
2009-06-11 10:33:00 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-06-11 09:39:50 ----DC---- C:\DECCHECK
2009-06-10 20:57:13 ----D---- C:\Program Files\TVUPlayer
2009-06-10 18:34:49 ----D---- C:\Program Files\Internet Explorer
2009-06-10 18:01:29 ----RSHD---- C:\WINDOWS\system32\DLLCACHE
2009-06-10 18:00:42 ----D---- C:\WINDOWS\ie8updates
2009-06-10 18:00:24 ----HD---- C:\WINDOWS\$hf_mig$
2009-06-10 15:31:30 ----AC---- C:\WINDOWS\cdPlayer.ini
2009-06-10 10:17:04 ----A---- C:\WINDOWS\system32\RPVersion.ini
2009-06-08 09:54:21 ----D---- C:\Program Files\GlobespanVirata
2009-06-02 20:38:20 ----A---- C:\WINDOWS\SIERRA.INI
2009-06-01 12:51:12 ----A---- C:\WINDOWS\system32\MRT.exe
2009-05-28 21:39:20 ----D---- C:\Program Files\Broadcom
2009-05-27 14:24:59 ----D---- C:\WINDOWS\system32\DirectX
2009-05-27 14:24:20 ----RSD---- C:\WINDOWS\assembly

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 BANTExt;Belarc SMBios Access; C:\WINDOWS\System32\Drivers\BANTExt.sys [2008-02-27 3840]
R1 Cdr4_xp;Cdr4_xp; C:\WINDOWS\system32\drivers\Cdr4_xp.sys [2006-10-04 2432]
R1 Cdralw2k;Cdralw2k; C:\WINDOWS\system32\drivers\Cdralw2k.sys [2006-10-04 2560]
R1 cdudf_xp;cdudf_xp; C:\WINDOWS\system32\drivers\cdudf_xp.sys [2002-12-17 241152]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 intelppm;Intel Processor Driver; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R1 omci;OMCI WDM Device Driver; C:\WINDOWS\System32\DRIVERS\omci.sys [2002-11-08 17217]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2003-09-06 51744]
R1 pwd_2k;pwd_2k; C:\WINDOWS\system32\drivers\pwd_2k.sys [2003-07-30 143834]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys []
R1 SRTSPX;SRTSPX; C:\WINDOWS\System32\Drivers\SRTSPX.SYS [2008-01-31 43696]
R1 SYMTDI;SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [2009-02-19 184496]
R1 UdfReadr_xp;UdfReadr_xp; C:\WINDOWS\system32\drivers\UdfReadr_xp.sys [2003-07-30 206464]
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2002-08-29 12032]
R2 athsgt;athsgt; C:\WINDOWS\system32\DRIVERS\athsgt.sys [2007-06-04 164992]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-07-14 278984]
R2 enodpl;enodpl; C:\WINDOWS\System32\drivers\enodpl.sys [2003-03-02 7552]
R2 irda;IrDA Protocol; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-13 88192]
R2 limsgt;limsgt; C:\WINDOWS\system32\DRIVERS\limsgt.sys [2007-06-04 12544]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-06-12 18048]
R2 litsgt;litsgt; C:\WINDOWS\system32\DRIVERS\litsgt.sys [2008-02-01 137344]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2003-04-09 11043]
R2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;NWLink NetBIOS; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [2002-08-29 63232]
R2 NwlnkSpx;NWLink SPX/SPXII Protocol; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [2002-08-29 55936]
R2 PfModNT;PfModNT; \??\C:\WINDOWS\System32\PfModNT.sys []
R2 tandpl;tandpl; C:\WINDOWS\System32\drivers\tandpl.sys [2003-04-19 4736]
R2 tansgt;tansgt; C:\WINDOWS\system32\DRIVERS\tansgt.sys [2008-02-01 12032]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\System32\DRIVERS\bcm4sbxp.sys [2005-08-05 45312]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2003-09-22 130192]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2003-11-17 1042432]
R3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys [2003-11-17 212224]
R3 ialm;ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [2005-06-22 807998]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\System32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 mmc_2K;mmc_2K; C:\WINDOWS\system32\drivers\mmc_2K.sys [2003-07-30 30630]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MxlW2k;MxlW2k; C:\WINDOWS\system32\drivers\MxlW2k.sys [2003-07-30 28164]
R3 NAVENG;NAVENG; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20090624.037\NAVENG.SYS []
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20090624.037\NAVEX15.SYS []
R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2003-09-22 178672]
R3 P16X;Creative SB Live! Series (WDM); C:\WINDOWS\system32\drivers\P16X.sys [2003-09-22 1330048]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 SRTSP;SRTSP; C:\WINDOWS\System32\Drivers\SRTSP.SYS [2008-01-31 279088]
R3 SYMDNS;SYMDNS; C:\WINDOWS\System32\Drivers\SYMDNS.SYS [2009-02-19 13616]
R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 SYMFW;SYMFW; C:\WINDOWS\System32\Drivers\SYMFW.SYS [2009-02-19 96560]
R3 SYMIDS;SYMIDS; C:\WINDOWS\System32\Drivers\SYMIDS.SYS [2009-02-19 38576]
R3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\ipsdefs\20090618.001\SymIDSCo.sys []
R3 SymIMMP;SymIMMP; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2009-02-19 31280]
R3 SYMNDIS;SYMNDIS; C:\WINDOWS\System32\Drivers\SYMNDIS.SYS [2009-02-19 37424]
R3 SYMREDRV;SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2009-02-19 22320]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Microsoft USB Standard Hub Driver; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;USB Scanner Driver; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2003-11-17 680704]
S1 P3;Intel PentiumIII Processor Driver; C:\WINDOWS\System32\DRIVERS\p3.sys [2008-04-13 42752]
S3 {6080A529-897E-4629-A488-ABA0C29B635E};Intel(R) Graphics Platform (SoftBIOS) Driver; C:\WINDOWS\system32\drivers\ialmsbw.sys [2003-04-15 113504]
S3 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91};Intel(R) Graphics Chipset (KCH) Driver; C:\WINDOWS\system32\drivers\ialmkchw.sys [2003-04-15 78752]
S3 bvrp_pci;bvrp_pci; C:\WINDOWS\system32\drivers\bvrp_pci.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 COH_Mon;COH_Mon; \??\C:\WINDOWS\system32\Drivers\COH_Mon.sys []
S3 dvd_2K;dvd_2K; C:\WINDOWS\system32\drivers\dvd_2K.sys [2003-07-30 25898]
S3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\System32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\System32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 i81x;i81x; C:\WINDOWS\System32\DRIVERS\i81xnt5.sys [2004-08-04 161020]
S3 iAimFP0;iAimFP0; C:\WINDOWS\System32\DRIVERS\wADV01nt.sys [2004-08-04 12415]
S3 iAimFP1;iAimFP1; C:\WINDOWS\System32\DRIVERS\wADV02NT.sys [2004-08-04 12127]
S3 iAimFP2;iAimFP2; C:\WINDOWS\System32\DRIVERS\wADV05NT.sys [2004-08-04 11775]
S3 iAimFP3;iAimFP3; C:\WINDOWS\System32\DRIVERS\wSiINTxx.sys [2004-08-04 12063]
S3 iAimFP4;iAimFP4; C:\WINDOWS\System32\DRIVERS\wVchNTxx.sys [2004-08-04 19455]
S3 iAimTV0;iAimTV0; C:\WINDOWS\System32\DRIVERS\wATV01nt.sys [2004-08-04 29311]
S3 iAimTV1;iAimTV1; C:\WINDOWS\System32\DRIVERS\wATV02NT.sys [2004-08-04 19551]
S3 iAimTV3;iAimTV3; C:\WINDOWS\System32\DRIVERS\wATV04nt.sys [2004-08-04 33599]
S3 iAimTV4;iAimTV4; C:\WINDOWS\System32\DRIVERS\wCh7xxNT.sys [2004-08-04 23615]
S3 mdxgthkn;mdxgthkn; \??\C:\DOCUME~1\steve\LOCALS~1\Temp\mdxgthkn.sys []
S3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2004-08-04 1897408]
S3 QCDonner;Logitech QuickCam Express(PID_0840); C:\WINDOWS\System32\DRIVERS\LVCD.sys [2002-06-10 39936]
S3 samhid;samhid; C:\WINDOWS\system32\drivers\samhid.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SRTSPL;SRTSPL; C:\WINDOWS\System32\Drivers\SRTSPL.SYS [2008-01-31 317616]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 STV680;USB Dual-mode Camera; C:\WINDOWS\system32\drivers\STV680.sys [2002-02-11 119536]
S3 STV680m;USB Dual-mode Cameram; C:\WINDOWS\system32\drivers\STV680m.sys [2002-02-11 9024]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2009-02-19 31280]
S3 TVICHW32;TVICHW32; \??\C:\WINDOWS\system32\DRIVERS\TVICHW32.SYS []
S3 USB_RNDIS_XP;Westell WireSpeed Dual Connect Modem; C:\WINDOWS\System32\DRIVERS\usb8023.sys [2008-04-13 12800]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 agp440;Intel AGP Bus Filter; C:\WINDOWS\System32\DRIVERS\agp440.sys [2008-04-13 42368]
S4 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\System32\DRIVERS\agpCPQ.sys [2008-04-13 44928]
S4 alim1541;ALI AGP Bus Filter; C:\WINDOWS\System32\DRIVERS\alim1541.sys [2008-04-13 42752]
S4 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\System32\DRIVERS\amdagp.sys [2008-04-13 43008]
S4 cbidf;cbidf; C:\WINDOWS\System32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
S4 IntelIde;IntelIde; C:\WINDOWS\System32\DRIVERS\intelide.sys [2008-04-13 5504]
S4 sisagp;SIS AGP Bus Filter; C:\WINDOWS\System32\DRIVERS\sisagp.sys [2008-04-13 40960]
S4 viaagp;VIA AGP Bus Filter; C:\WINDOWS\System32\DRIVERS\viaagp.sys [2008-04-13 42240]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
R2 Automatic LiveUpdate Scheduler;Automatic LiveUpdate Scheduler; C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe [2008-02-09 238968]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352]
R2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\System32\CTsvcCDA.exe [1999-12-13 44032]
R2 Irmon;Infrared Monitor; C:\WINDOWS\System32\svchost.exe [2008-04-13 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-09 152984]
R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2003-05-12 303104]
R2 LiveUpdate Notice;LiveUpdate Notice; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352]
R2 MrHealthyService;MrHealthy; C:\Program Files\Norton PC Checkup\executables\mrHealthy\MrHealthy.exe [2009-01-29 578920]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
R2 NwSapAgent;SAP Agent; C:\WINDOWS\System32\svchost.exe [2008-04-13 14336]
R2 WMDM PMSP Service;WMDM PMSP Service; C:\WINDOWS\System32\MsPMSPSv.exe [2000-06-26 53520]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2009-03-03 33176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-21 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-01-06 536872]
S3 LiveUpdate;LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE [2008-08-04 3220856]
S3 SandraDataSrv;SiSoftware Database Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI\Win32\RpcDataSrv.exe [2006-11-16 123064]
S3 SandraTheSrv;SiSoftware Sandra Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI\RpcSandraSrv.exe [2006-11-16 1138880]
S3 Symantec Core LC;Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [2008-05-10 1245064]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Phoopsie
Regular Member
 
Posts: 23
Joined: June 19th, 2009, 10:20 am

Re: cannot connect to internet

Unread postby Dakeyras » June 25th, 2009, 3:38 pm

Hi :)

There's message on desktop--do you want to save changes in OTM file--what should I do??
Not a cause for concern, possibly something was modified within the actual text document itself when you were coping it, safe to allow as I do not need to see that log file again.

For the time being we will not be using RSIT again but leave it on the Desktop please until I advise otherwise, thank you.

F-Secure Blacklight:

Please download Blacklight from here to your desktop.

or

Link to it from the ftp site: ftp://ftp.f-secure.com/anti-virus/tools/fsbl.exe
and save it to your desktop from there.

Go to Start >> Run... , copy in the following text, and press Enter:
"%userprofile%\desktop\fsbl.exe" /expert
Accept the license agreement. Click > scan, wait for it to finish, then click Close

There will be a log on your desktop with the name fsbl.xxxxxxx.log (the xxxxxxx stand for numbers).
Copy and paste the contents of this log into your next reply.

So all I require this time is when the above scan completed is for your good self to post the log created and a quick update on how your computer is performing overall OK.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: cannot connect to internet

Unread postby Phoopsie » June 25th, 2009, 7:36 pm

Hey there! Computer is performing well-just wondering if you know why email login(fuse,net)-won't hold auto login. Every time I enter email address and password it asks if I want to remember psswd and info and I say YES. Next time I still have to reenter psswd and email. No other sites do this-just fuse.06/25/09 19:03:01 [Info]: BlackLight Engine 2.2.1092 initialized
06/25/09 19:03:01 [Info]: OS: 5.1 build 2600 (Service Pack 3)
06/25/09 19:03:02 [Note]: 7019 4
06/25/09 19:03:02 [Note]: 7005 0
06/25/09 19:03:08 [Note]: 7006 0
06/25/09 19:03:08 [Note]: 7022 0
06/25/09 19:03:08 [Note]: 7011 3056
06/25/09 19:03:08 [Note]: 7035 0
06/25/09 19:03:08 [Note]: 7026 0
06/25/09 19:03:09 [Note]: 7026 0
06/25/09 19:03:09 [Note]: FSRAW library version 1.7.1024
06/25/09 19:28:56 [Note]: 7007 0
net email.
Phoopsie
Regular Member
 
Posts: 23
Joined: June 19th, 2009, 10:20 am

Re: cannot connect to internet

Unread postby Dakeyras » June 25th, 2009, 7:54 pm

Hi :)

Hey there! Computer is performing well
Good :thumbup:

just wondering if you know why email login(fuse,net)-won't hold auto login. Every time I enter email address and password it asks if I want to remember psswd and info and I say YES. Next time I still have to reenter psswd and email. No other sites do this-just fuse.
From what you described it sounds like the fault lies with the website in question and the cookies created expiring after every visit.

Run Kaspersky Online AV Scanner:

Go to this Kaspersky website and perform an online antivirus scan.

Note: Use Internet Explorer for this scan.

  • Read through the requirements and privacy statement and click on Accept button.
  • It will start downloading and installing the scanner and virus definitions. You will be prompted to install an application from Kaspersky. Click Run.
  • When the downloads have finished, click on Settings.
  • Make sure these boxes are checked (ticked). If they are not, please tick them and click on the Save button:
      Spyware, Adware, Dialers, and other potentially dangerous programs
      Archives
      Mail databases
  • Click on My Computer under Scan.
  • Once the scan is complete, it will display the results. Click on View Scan Report.
  • You will see a list of infected items there. Click on Save Report As....
  • Save this report to a convenient place. Change the Files of type to Text file (.txt) before clicking on the Save button.
  • Please post this log in your next reply.

This online tuturial will help explain how to use the aforementioned online scan.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: cannot connect to internet

Unread postby Phoopsie » June 26th, 2009, 12:05 am

When trying to download Kaspersky I got message that I need to install Java ver 1.5 or later to run Kaspersky. Also it said to shut down anti virus program-should I turn off Norton? And I have gotten a few messages from win patrol about allowing java plug in 1.6.o-13. I have checked no. Thanks
Phoopsie
Regular Member
 
Posts: 23
Joined: June 19th, 2009, 10:20 am

Re: cannot connect to internet

Unread postby Dakeyras » June 26th, 2009, 3:46 am

Hi :)

You should still have this Java version installed:

Java(TM) 6 Update 13

Please check if it is located in Add/Remove Programs

Repair File Extensions:

Download System Repair Engineer

Scroll down to System Repair Engineer 2.7.1.1261 and click on the Local Download button to do so.

  • Extract it to Desktop and double click SREng.exe to run it
  • Select System Repair from the left pane.
  • Click on File Association
  • Select all entries that has an Error status click [Repair]
  • Refer to this image for an example:

    Image
  • In your case, it would be .REG
  • Close SREng now.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: cannot connect to internet

Unread postby Phoopsie » June 26th, 2009, 5:59 am

HI! I tried the system repair and don't think it worked. When I first open it there is already a check in reg--when I click repair a big hour glass comes on for one second and kind of flickers then nothing else happens--when I close and reopen the check is still by reg--shouldn't the check be gone? yes in add and remove programs java 1.6.0 is there.
Phoopsie
Regular Member
 
Posts: 23
Joined: June 19th, 2009, 10:20 am

Re: cannot connect to internet

Unread postby Dakeyras » June 26th, 2009, 7:41 am

Hi :)

When I first open it there is already a check in reg
That is because the file extension is corrupted hence the need to repair it.

when I click repair a big hour glass comes on for one second and kind of flickers then nothing else happens--when I close and reopen the check is still by reg--shouldn't the check be gone?
OK something is causing the application to not function correctly, possibly the installed WinPatrol application.

If still running/not working correctly merely depress the Ctrl/Alt/Del keys at the same time to bring up the TaskManager or alternatively right click in the bottom toolbar area and select Task Manager.

When Task Manager is open click on the Applications button >> click on D958E832DDb(or whatever yr SReng is named) to highlight>> now click on End Task and follow the prompts.

We will address the file extension issue another time OK.

All I need to you do for now is confirm whether or not Java(TM) 6 Update 13 is still installed on your computer.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: cannot connect to internet

Unread postby Phoopsie » June 26th, 2009, 8:05 am

In control panel in remove programs java 6 update 13 is listed and a java 2SE runtime environment 5.0 update 3 ---that's the only javas. So I opened
sreng and task manager and in applications it says EBC8271759 and Documents and settings\steve\desktop\sr running-that's all it says. I highlighted EBC8271759 and clicked end task and got -this program is not responding-cancel or end now-tried both and program just closed.
Phoopsie
Regular Member
 
Posts: 23
Joined: June 19th, 2009, 10:20 am

Re: cannot connect to internet

Unread postby Dakeyras » June 26th, 2009, 3:28 pm

Hi :)

OK all what you informed myself is fine apart from the erroneous Java version. We did remove all the older installations the other day. No problem we can verify that again in due course.

Right a fair few tasks for you good self now but only two of them will require logs posted OK which I think you should be fine with now :thumbup:

Step 1:-

System File Check:

Close all open applications/windows etc.

  • Click on Start >> Run...
  • Type in SFC /Scannow <--- Make sure to leave a space between SFC and the forward slash.
  • Click on OK
  • System File Checker will now scan all protected files to verify their versions.

Note: This will take some time. Also you may be prompted to place your XP installation CD-ROM in the CD-Drive if required.

Step 2:-

ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

  • Please go here then click on: Image
    Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
    All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox.
  • Select the option YES, I accept the Terms of Use then click on: Image
  • When prompted allow the Add-On/Active X to install.
  • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Now click on: Image
  • The virus signature database... will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
  • Now click on: Image
  • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.

Note: Do not forget to re-enable your Anti-Virus application after running the above scan!

When completed the above, please post back the following in the order asked for:

  • How is you computer performing now, any further symptoms and or problems encountered?
  • ESET Log.
  • A new HijackThis Log.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: cannot connect to internet

Unread postby Phoopsie » June 26th, 2009, 9:59 pm

ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=6
# IEXPLORE.EXE=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
# OnlineScanner.ocx=1.0.0.5863
# api_version=3.0.2
# EOSSerial=f214bc6667041042b6a40597dc435434
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2009-06-27 01:15:08
# local_time=2009-06-26 09:15:08 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=3586 38 60 12 356546086406250
# scanned=91644
# found=484
# cleaned=0
# scan_time=5004
C:\DELL\DELLBUTN.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\backuphelp.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\BDGTWLCM.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\CANCELED.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\DEBTWLCM.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\DEFENRLL.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\DEFSERV.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\GettingISP.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\InvestmentQIFImport.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\InvestmentResearch.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\InvResearchOnline.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\LTWELCO2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\LTWELCOM.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\MKTPLACE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\OSUDFLT.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\passportfaqs.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\PassportFAQsBenifit.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\PassportFAQsBkgnd.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\PassportFAQsLost.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\PassportFAQsScrty.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\PLNWLCM2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\pocketpcinfo.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\pssprtbnftfaq.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\pssprtscrtyfaq.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\Repaircorruptedfiles.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\Resolving Windows Cryptography Error.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\sbwelcome.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\SHOPPING.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\UPGRADE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\UPGRADED.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\Home\ALTHOME.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\Home\GUIDE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\Home\_ALTHOME.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Documents and Settings\All Users\Application Data\Microsoft\Money\11.0\Webcache\Home\_altLeft.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ACTCONN.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ACTDONE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ACTERROR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ACTIV.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ACTIVATE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ACTIVERR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ACTIVSVC.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ACTLAN.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ACTSHELL.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ACT_PLCY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ADESKERR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ADRDYREG.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\APOLICY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\APRVCYMS.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\AREG1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\AREGDIAL.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\AREGDONE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\AUSRINFO.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\back[1].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\BADEULA.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\BADPKEY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\CIADMIN.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\CIQUERY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\CNNCTERR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPNAME.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\connected_data.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\connected_fr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\connected_multiple.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\connected_networks.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\connected_wizard.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\CONTENTS.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DEFAULT.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DIALTONE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DIALUP.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DRDYISP.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DRDYMIG.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DRDYOEM.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DRDYREF.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DSLMAIN.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DSL_A.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DSL_B.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DTIWAIT.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\DTSGNUP.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\FINI.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\FOOTER.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\HNDSHAKE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\HNWPRMPT.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ICNTLAST.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ICONN.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ICONNECT.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ICS.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ICSDC.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\IDENT1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\IDENT2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISP.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISP1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISP2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISP2BUSY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISP3.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISPCNERR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISPDTONE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISPHDSHK.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISPINS.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISPNOANW.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISPPBERR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISPPHBSY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISPSBUSY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISPTYPE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\ISPWAIT.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\IXQLANG.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\JNDOMAIN.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\JNDOM_A.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\KEYBD.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\KEYBDCMT.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MDACReadme.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MIGDIAL.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MIGLIST.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MIGPAGE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MIGWIZ.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MIGWIZ2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_A.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_B.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_C.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_D.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_E.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_F.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_G.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_H.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_I.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_J.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MOUSE_K.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\MSOBSHEL.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\NETMEET.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\NEWEULA.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\NEWEULA2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\NOANSWER.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\OEMPRIV.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\oobe_process[1].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\oobe_process[2].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\oobe_process[3].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\oobe_process[4].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\PBERR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\PRODKEY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\PRVCYMS.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\PULSE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\RCNTERR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\RDTONE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\REFDIAL.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\REG1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\REG3.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\REGDIAL.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\RHNDSHK.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\RNOANSW.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\RNOMDM.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\RPBERR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\RPULSE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\RTOOBUSY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\safe_better.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\safe_easier.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\safe_faster.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\SAFE_FR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\SCNTLAST.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\SCONNECT.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\SECURITY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\SND.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\start_control.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\start_ending.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\start_files.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\START_FR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\start_icons.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\start_menu.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\start_taskbar.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\start_windows.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\TIMEZONE.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\TOOBUSY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\unlock_built.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\unlock_fr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\unlock_optimized.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\unlock_playing.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\USERNAME.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\WELCOME.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\ALPSPRT.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\CNMULTI1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\CPQIJ.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\EPSCOLOR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\EPSON1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\EPSON3.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\EPSPHOTO.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HP4050P6.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPAIO1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPAIO2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPCLJ450.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPCLJ850.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDJ1000.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDJ610.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDJ810.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDJ815.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDJ830.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDJ880.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDJ900.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK10.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK11.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK12.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK14.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK3.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK4.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK5.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK6.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK7.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK8.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPDSK9.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPLJ4050.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPLJ5E.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPOJG.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HPPS.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\HP_PLD.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\LEX3200.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\LEXOPTRA.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\LM5700.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\LMOPTRA.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\MFPBR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\MFPHP.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\MIN8E.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\MNLT1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\MTA57080.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\NECPG1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\OKIPG1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\OKIPG2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\OKIPG8W.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\XEROX1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\XEROX2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\XEROX4.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\XEROX6.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\I386\COMPDATA\XEROXWCT.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Adobe\Acrobat 5.0\Reader\plug_ins\WEBBUY\HTML\template1.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Adobe\Acrobat 5.0\Reader\plug_ins\WEBBUY\HTML\template2.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Adobe\Acrobat 5.0\Reader\plug_ins\WEBBUY\HTML\template5.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\CreateCD\cd5r1.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\CreateCD\cd5r2.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\CreateCD\cd5r3.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Support\cdcopier.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Support\data_cd.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Support\data_dvd.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Support\directcd.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Support\enhanced.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Support\index.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Support\intro.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Support\mixed.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Support\music_cd.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Support\trouble.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Upgrade\notconnected.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Adaptec Shared\Upgrade\oemupgrade.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\InstallShield\UpdateService\pm.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Blank.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Citrus Punch.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Clear Day.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Fiesta.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Glacier.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Ivy.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Leaves.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Maize.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Nature.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Network Blitz.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Pie Charts.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Sunflower.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Sweets.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Stationery\Technical.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\Microsoft Shared\Works Shared\ST03WARR.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Common Files\System\ADO\MDACReadme.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Creative\SBLive\Diagnostics\techsup.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\app.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\bks.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\config.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\cpf.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\dis_sub.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\exp-menu.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\glossary.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\gts.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\index.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\info.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\koke_opt.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\menus.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\nav_cha.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\osd_con.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\play_dvd.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\play_vcd.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\ply-dvd.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\ply-file.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\ply-vcd.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\pt_ctrl.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\rep_sce.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\shu_rew.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\swi_ang.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\swi_str.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\s_a_con.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\s_g_con.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\s_reg.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\s_scr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\s_skin.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\tech.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\trouble.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\vcd_fea.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\visual.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\CyberLink\PowerDVD\help\zoom.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Dell Computer\Dell Image Expert\system\Dell.Shutterfly.com - Online Print Service.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Dell Computer\Dell Picture Studio\dps_dell_ie.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Dell Computer\Dell Picture Studio\dps_psp.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Dell Computer\Dell Picture Studio\dps_sf.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Dell Computer\Dell Picture Studio\dps_welcome.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\EarthLink 5.0\Access\blank.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\EarthLink 5.0\Access\naverr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\EarthLink 5.0\Access\naverrnw.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\EarthLink 5.0\Access\notcon.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\EarthLink 5.0\Access\search.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\EarthLink 5.0\Access\sidecar.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\LIVEUPDATE\About.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\LIVEUPDATE\EULA.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\calc_title.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\html_bottom.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\html_tabs.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\C_Erorg\DATA.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\C_Erorg\FRAME.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\C_Erorg\PG_1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\C_Erorg\PG_2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\C_Erorg\PG_3.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\C_Erorg\PG_4.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\C_Erorg\PG_5.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\C_Erorg\PG_6.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\C_Erorg\PG_7.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Calcs\C_Erorg\PG_8.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Money\Media\IUE\IUEVID.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Office\Office10\INTLBAND.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Office\Office10\1033\FEEDBACK.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Office\Office10\1033\OFREAD10.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Office\Office10\1033\THANKYOU.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Office\Office10\1033\WDREAD10.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Picture It! 7\1033\Movies\CUTOUTS.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Picture It! 7\1033\Movies\exploringpi.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Microsoft Picture It! 7\1033\Movies\TOUCHUP.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Modem Helper\Default.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Modem Helper\Template.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MSN\MSNCoreFiles\MSNREAD.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\blank.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\conn.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\conn1.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\nodata.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\nodata1.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\nonowplaycd.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\nosong.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\output.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\template.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\xconn.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\xconn1.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\Add_Music_Files.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\Create_MP3_WAV_and_WMA_files.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\Create_Music_CDs.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\Getting_Started.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\Getting_Started_b.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\Getting_Started_b_csh.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\MusicMatch_Guide.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\MusicMatch_Radio.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\Playing_Music_Files.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\Playing_Music_Files_Menu.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\Play_Music_CDs.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\Html\Help\Purchase.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Real\RealPlayer\DataCache\Devices\cdr_help.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Real\RealPlayer\DataCache\Help\myacct.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Real\RealPlayer\DataCache\Login\test.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\Program Files\Yahoo!\Messenger\imvcache\photos\viewer.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP14\A0015614.DLL Win32/Adware.MyWaySpeed application 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\actconn.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\actdone.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\acterror.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\activate.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\activerr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\act_plcy.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\adrdyreg.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\apolicy.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\aprvcyms.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\areg1.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\aregdial.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\aregdone.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\ausrinfo.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\badeula.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\badpkey.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\cnncterr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\compname.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\dialtone.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\dialup.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\drdyisp.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\drdymig.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\drdyoem.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\drdyref.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\dslmain.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\dsl_a.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\dsl_b.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\dtiwait.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\fini.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\hndshake.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\hnwprmpt.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\icntlast.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\iconn.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\iconnect.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\icsdc.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\ident1.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\ident2.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\isp.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\isp2busy.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\ispcnerr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\ispdtone.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\isphdshk.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\ispins.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\ispnoanw.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\isppberr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\ispphbsy.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\ispsbusy.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\isptype.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\ispwait.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\jndomain.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\jndom_a.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\keybd.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\keybdcmt.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\migdial.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\miglist.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\migpage.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_a.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_b.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_c.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_d.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_e.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_f.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_g.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_h.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_i.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_j.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\mouse_k.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\neweula2.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\noanswer.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\oempriv.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\pberr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\prodkey.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\prvcyms.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\pulse.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\rcnterr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\rdtone.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\refdial.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\reg1.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\reg3.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\regdial.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\rhndshk.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\rnoansw.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\rnomdm.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\rpberr.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\rpulse.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\rtoobusy.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\scntlast.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\sconnect.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\security.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\timezone.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\toobusy.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtServicePackUninstall$\username.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtUninstallKB896344$\migwiz.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\$NtUninstallKB896344$\migwiz2.htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\Help\CIADMIN.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\Help\CIQUERY.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\Help\IXQLANG.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\Help\Tours\WindowsMediaPlayer\Audio\SND.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\Help\Tours\WindowsMediaPlayer\Cnt\CONTENTS.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\Adobe\SVG Viewer\ReadMe.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\Adobe\SVG Viewer\SVGHelp.html Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\4BSPEZOF\oobe_process[1].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\4BSPEZOF\oobe_process[2].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\4BSPEZOF\oobe_process[3].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\4BSPEZOF\regsuccess[1].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\6JYLAZOX\back[1].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\6JYLAZOX\oobe_process[1].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\6JYLAZOX\oobe_process[2].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\O9YJK1IJ\oobe_process[1].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\O9YJK1IJ\oobe_process[2].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\O9YJK1IJ\oobe_process[3].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\O9YJK1IJ\oobe_process[4].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\OT2JQP0H\oobe_process[1].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\OT2JQP0H\spf50_reg[1].htm Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\OOBE\SETUP\ISP1.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\OOBE\SETUP\ISP2.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
C:\WINDOWS\SYSTEM32\OOBE\SETUP\ISP3.HTM Win32/Allaple.Gen worm 00000000000000000000000000000000
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:54:04 PM, on 6/26/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Norton PC Checkup\executables\mrHealthy\MrHealthy.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://zoomtown.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\Msdxm6.ocx
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Openwares LiveUpdate] C:\Program Files\LiveUpdate\LiveUpdate.exe
O4 - HKLM\..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_13.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_13.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/200 ... plugin.cab
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cab
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} -
O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Class) - https://www-secure.symantec.com/techsup ... gctlsr.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/pr01/re ... NPUpld.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} -
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab2.cab
O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 3816810984
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.crucial.com/controls/cpcScanner.cab
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} -
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.co ... nos/gp.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/f ... wflash.cab
O16 - DPF: {E856B973-45FD-4559-8F82-EAB539144667} (Dell PC Checkup Installer Control) - http://pccheckup.dellfix.com/rel/41/ins ... downde.cab
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://plugin.driveragent.com/files/driveragent.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: MrHealthy (MrHealthyService) - Symantec Corporation - C:\Program Files\Norton PC Checkup\executables\mrHealthy\MrHealthy.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI\RpcSandraSrv.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

--
End of file - 9807 bytes
Computer running fine thank you.The SFC /Scannow -was that supposed to do something after the blue line got to the end? It just fininhed on it's own and nothing else happened.
Phoopsie
Regular Member
 
Posts: 23
Joined: June 19th, 2009, 10:20 am

Re: cannot connect to internet

Unread postby Dakeyras » June 27th, 2009, 4:47 pm

Hi :)

Computer running fine thank you.The SFC /Scannow -was that supposed to do something after the blue line got to the end? It just fininhed on it's own and nothing else happened.
Re the SFC, that is absolutely fine OK.

At present I have sort a second opinion from a esteemed colleague of mine about the Eset online scan results, hence this is the first time I have replied to you good self today.

Please be patient and I will reply again soon as.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: cannot connect to internet

Unread postby Dakeyras » June 28th, 2009, 7:46 am

Hi,

I have bad news I'm afraid :(

The results of the Eset online scan have revealed your computer is heavily infected with a code exploit worm that has compromised the operating system and many software applications beyond disinfection/recovery.

OK since we are dealing with the aforementioned infection(s) I would be providing your good self with a disservice if I did not make you aware of the ramifications below:

This allows hackers to remotely control your computer, steal critical system information and Download and Execute files.

I would counsel you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Unfortunately no attempt what so ever could be made to clean this machine, it could never again be considered to be either secure, or trustworthy. I cannot remedy unknown changes the malware may likely have made in order to allow itself access, nor can I repair the damage it has caused to vital system files. In short, your system may never regain its former stability or its full functionality without a reformat. Therefore, your best and safest course of action is a reformat and reinstallation of the Windows operating system, and that is the course I strongly recommend.

Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?

When Should I Format, How Should I Reinstall

So to reiterate I cannot attempt to clean this machine further at all.

Should you have any questions, please feel free to ask. Or if you are not sure how to perform a reformat and reinstallation of the Windows operating system I will gladly provide assistance.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra
Advertisement
Register to Remove

PreviousNext

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 74 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware