Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Some Applications wont open, and some websites wont load.

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Some Applications wont open, and some websites wont load

Unread postby Alander » May 28th, 2011, 3:46 pm

Hi, you are welcomed :) Lets continue with the fix

ComboFix - CFScript
WARNING !
This script is for THIS user and computer ONLY!
Using this tool incorrectly could damage your Operating System... preventing it from starting again!


You will not have Internet access when you execute ComboFix. All open windows will need to be closed!

  1. Please open Notepad and copy/paste all the text below... into the window:
    File::
    A:\Blonder\Documents and Settings\Eynat\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@mmagoo.com\chrome\mmtextlinks.jar
    A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\jar_cache1326079376391305830.tmp
    A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\jar_cache6940860146275876399.tmp
    A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\OCSetupHlp.dll Win32/OpenCandy application
    A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\Launcher.exe Win32/RegistryBooster application
    A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rbmonitor.exe Win32/RegistryBooster application
    A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rbnotifier.exe Win32/RegistryBooster application
    A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rb_move_serial.exe Win32/RegistryBooster application
    A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\registrybooster.exe Win32/RegistryBooster application
    A:\Blonder\Program Files\Windows Live\Messenger\msimg32.dll
    A:\Blonder\Program Files\Windows Live\Messenger\riched20.dll

    C:\Users\Moshe\Desktop\Deamon (DAEMON) Tools Pro 4.30.305 32&64bit Latest\DTPro4300305.exe
    D:\PowerISO 4.3.rar
    D:\downloads 4-14-10\videora-ipod-503-setup.exe
    D:\Installs\Driver_Genius_9_Professional_US_Full.EXE
    Q:\Downloads Backup\Miro_Installer.exe
    Q:\Downloads Backup\videora-ipod-503-setup.exe
    T:\Completed Downloads\Deamon (DAEMON) Tools Pro 4.30.305 32&64bit Latest.rar

    Folder::
    A:\Blonder\Program Files\DictionaryBoss
    A:\Blonder\Program Files\FunWebProducts
    A:\Blonder\Program Files\MyWebSearch
    A:\Blonder\Program Files\Uniblue
    A:\Blonder\Program Files\Winferno
  2. Save it to your desktop as CFScript.txt
  3. Please disable any Antivirus or Firewall you have active, as shown in this topic. Please close all open application windows.
  4. Drag the CFScript.txt (icon) into the ComboFix.exe icon... as seen in the image below:

    Image

    This will cause ComboFix to run again.
    Do Not use your keyboard or mouse click anywhere in the ComboFix window, as this may cause the program to stall or crash.
    Do Not touch your computer when ComboFix is running!

    When finished... Notepad will open ... ComboFix will produce a log file called "ComboFix.txt".
  5. Please copy/paste the contents of ComboFix.txt... in your next reply.

** Enable your Antivirus and Firewall, before connecting to the Internet again! **
User avatar
Alander
Regular Member
 
Posts: 1599
Joined: September 15th, 2007, 2:04 pm
Location: Singapore
Advertisement
Register to Remove

Re: Some Applications wont open, and some websites wont load

Unread postby MarkA » May 29th, 2011, 4:36 am

ComboFix 11-05-27.02 - Moshe 05/29/2011 1:14.4.4 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.4095.2414 [GMT -7:00]
Running from: c:\users\Moshe\Desktop\cfsky.exe
Command switches used :: c:\users\Moshe\Desktop\cfscript.txt
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"a:\blonder\Documents and Settings\Eynat\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@mmagoo.com\chrome\mmtextlinks.jar"
"a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\jar_cache1326079376391305830.tmp"
"a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\jar_cache6940860146275876399.tmp"
"a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\Launcher.exe Win32/RegistryBooster application"
"a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rb_move_serial.exe Win32/RegistryBooster application"
"a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rbmonitor.exe Win32/RegistryBooster application"
"a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rbnotifier.exe Win32/RegistryBooster application"
"a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\registrybooster.exe Win32/RegistryBooster application"
"a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\OCSetupHlp.dll Win32/OpenCandy application"
"a:\blonder\Program Files\Windows Live\Messenger\msimg32.dll"
"a:\blonder\Program Files\Windows Live\Messenger\riched20.dll"
"c:\users\Moshe\Desktop\Deamon (DAEMON) Tools Pro 4.30.305 32&64bit Latest\DTPro4300305.exe"
"d:\downloads 4-14-10\videora-ipod-503-setup.exe"
"d:\installs\Driver_Genius_9_Professional_US_Full.EXE"
"D:\PowerISO 4.3.rar"
"q:\downloads backup\Miro_Installer.exe"
"q:\downloads backup\videora-ipod-503-setup.exe"
"t:\completed downloads\Deamon (DAEMON) Tools Pro 4.30.305 32&64bit Latest.rar"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
a:\blonder\Documents and Settings\Eynat\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@mmagoo.com\chrome\mmtextlinks.jar
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\jar_cache1326079376391305830.tmp
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\jar_cache6940860146275876399.tmp
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\CHROME.MANIFEST
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\chrome\v4ffxtbr.jar
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\INSTALL.RDF
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\LOGO.BMP
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\NPv4Stub.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4auxstb.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4bar.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4barsvc.exe
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4brmon.exe
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4brstub.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4datact.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4dlghk.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4dyn.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4highin.exe
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4html.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4htmlmu.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4httpct.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4idle.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4impipe.exe
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4medint.exe
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4msg.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4Plugin.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4regiet.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4skin.dll
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4skplay.exe
a:\blonder\Program Files\DictionaryBoss\bar\1.bin\v4SrcAs.dll
a:\blonder\Program Files\DictionaryBoss\bar\Cache\05C78B5D
a:\blonder\Program Files\DictionaryBoss\bar\Cache\05C78F55.bmp
a:\blonder\Program Files\DictionaryBoss\bar\Cache\05C79149.bmp
a:\blonder\Program Files\DictionaryBoss\bar\Cache\05C791B6.bmp
a:\blonder\Program Files\DictionaryBoss\bar\Cache\05C79214.bmp
a:\blonder\Program Files\DictionaryBoss\bar\Cache\05C79272.bmp
a:\blonder\Program Files\DictionaryBoss\bar\Cache\05C792C0.bmp
a:\blonder\Program Files\DictionaryBoss\bar\Cache\05C7932D.bmp
a:\blonder\Program Files\DictionaryBoss\bar\Cache\05C7939B.bmp
a:\blonder\Program Files\DictionaryBoss\bar\Cache\files.ini
a:\blonder\Program Files\DictionaryBoss\bar\History\search3
a:\blonder\Program Files\DictionaryBoss\bar\Message\COMMON.T8S
a:\blonder\Program Files\DictionaryBoss\bar\Settings\prevcfg2.htm
a:\blonder\Program Files\DictionaryBoss\bar\Settings\s_pid.dat
a:\blonder\Program Files\DictionaryBoss\Shared\Cache\PopupProperties100016559.html
a:\blonder\Program Files\DictionaryBoss\Shared\Cache\PopupProperties100016563.html
a:\blonder\Program Files\DictionaryBoss\Shared\Cache\PopupProperties100016565.html
a:\blonder\Program Files\DictionaryBoss\Shared\Cache\PopupProperties100016567.html
a:\blonder\Program Files\DictionaryBoss\Shared\Cache\PopupProperties100016569.html
a:\blonder\Program Files\DictionaryBoss\Shared\Cache\PopupProperties100016571.html
a:\blonder\Program Files\DictionaryBoss\Shared\Cache\PopupProperties100016752.html
a:\blonder\Program Files\FunWebProducts\Installr\1.bin\F3EZSETP.DLL
a:\blonder\Program Files\FunWebProducts\Installr\1.bin\F3PLUGIN.DLL
a:\blonder\Program Files\FunWebProducts\Installr\1.bin\NPFUNWEB.DLL
a:\blonder\Program Files\FunWebProducts\Installr\Cache\files.ini
a:\blonder\Program Files\FunWebProducts\Shared\Cache\SmileyCentralBtn.html
a:\blonder\Program Files\MyWebSearch\bar\1.bin\CHROME.MANIFEST
a:\blonder\Program Files\MyWebSearch\bar\1.bin\chrome\M3FFXTBR.JAR
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3BKGERR.JPG
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3CJPEG.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3DTACTL.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3HISTSW.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3HKSTUB.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3HTMLMU.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3HTTPCT.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3IMSTUB.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3POPSWT.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3REGHK.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3REPROX.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3RESTUB.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3SCHMON.EXE
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3SCRCTR.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3SPACER.WMV
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3WALLPP.DAT
a:\blonder\Program Files\MyWebSearch\bar\1.bin\F3WPHOOK.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\FWPBUDDY.PNG
a:\blonder\Program Files\MyWebSearch\bar\1.bin\INSTALL.RDF
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3AUXSTB.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3DLGHK.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3HIGHIN.EXE
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3HTML.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3IDLE.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3IMPIPE.EXE
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3MEDINT.EXE
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3MSG.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3OUTLCN.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3SKIN.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3SKPLAY.EXE
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3SLSRCH.EXE
a:\blonder\Program Files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE
a:\blonder\Program Files\MyWebSearch\bar\1.bin\MWSMLBTN.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
a:\blonder\Program Files\MyWebSearch\bar\1.bin\MWSOEPLG.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\MWSOESTB.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\MWSSVC.EXE
a:\blonder\Program Files\MyWebSearch\bar\1.bin\MWSUABTN.DLL
a:\blonder\Program Files\MyWebSearch\bar\1.bin\NPMYWEBS.DLL
a:\blonder\Program Files\MyWebSearch\bar\Avatar\COMMON.F3S
a:\blonder\Program Files\MyWebSearch\bar\Cache\000210BF
a:\blonder\Program Files\MyWebSearch\bar\Cache\0007562C.bin
a:\blonder\Program Files\MyWebSearch\bar\Cache\00075755.bin
a:\blonder\Program Files\MyWebSearch\bar\Cache\000758AD.bin
a:\blonder\Program Files\MyWebSearch\bar\Cache\00075A04.bin
a:\blonder\Program Files\MyWebSearch\bar\Cache\00075A62.bin
a:\blonder\Program Files\MyWebSearch\bar\Cache\files.ini
a:\blonder\Program Files\MyWebSearch\bar\Game\CHECKERS.F3S
a:\blonder\Program Files\MyWebSearch\bar\Game\CHESS.F3S
a:\blonder\Program Files\MyWebSearch\bar\Game\REVERSI.F3S
a:\blonder\Program Files\MyWebSearch\bar\History\search3
a:\blonder\Program Files\MyWebSearch\bar\icons\CM.ICO
a:\blonder\Program Files\MyWebSearch\bar\icons\MFC.ICO
a:\blonder\Program Files\MyWebSearch\bar\icons\PSS.ICO
a:\blonder\Program Files\MyWebSearch\bar\icons\SMILEY.ICO
a:\blonder\Program Files\MyWebSearch\bar\icons\WB.ICO
a:\blonder\Program Files\MyWebSearch\bar\icons\ZWINKY.ICO
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON.F3S
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\8_step1.gif
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\autoup.gif
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\autoup.htm
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkez.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkgr.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkgs.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bklf.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkrg.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkwebfet.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkzc.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkzl.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkzn.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkzq.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkzr.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkzu.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkzv.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkzw.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\bkzwinky.jpg
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\blubtn2d.png
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\blubtn2r.png
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\blubtn3d.png
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\blubtn3r.png
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\center.htm
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\index.htm
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\mid_dots.gif
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\protect.htm
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\rebut4.htm
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\rebut4b.htm
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\rebut4c.htm
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\shield.png
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\shocked.gif
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\stop.gif
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\systray.htm
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\systrayp.htm
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\tp_grad.gif
a:\blonder\Program Files\MyWebSearch\bar\Message\COMMON\warn.gif
a:\blonder\Program Files\MyWebSearch\bar\Notifier\COMMON.F3S
a:\blonder\Program Files\MyWebSearch\bar\Notifier\DOG.F3S
a:\blonder\Program Files\MyWebSearch\bar\Notifier\FISH.F3S
a:\blonder\Program Files\MyWebSearch\bar\Notifier\KUNGFU.F3S
a:\blonder\Program Files\MyWebSearch\bar\Notifier\LIFEGARD.F3S
a:\blonder\Program Files\MyWebSearch\bar\Notifier\MAID.F3S
a:\blonder\Program Files\MyWebSearch\bar\Notifier\MAILBOX.F3S
a:\blonder\Program Files\MyWebSearch\bar\Notifier\OPERA.F3S
a:\blonder\Program Files\MyWebSearch\bar\Notifier\ROBOT.F3S
a:\blonder\Program Files\MyWebSearch\bar\Notifier\SEDUCT.F3S
a:\blonder\Program Files\MyWebSearch\bar\Notifier\SURFER.F3S
a:\blonder\Program Files\MyWebSearch\bar\Overlay\COMMON.F3S
a:\blonder\Program Files\MyWebSearch\bar\Settings\prevcfg2.htm
a:\blonder\Program Files\MyWebSearch\bar\Settings\s_pid.dat
a:\blonder\Program Files\Uniblue\RegistryBooster\cache.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\cwebpage.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\intermediate_views.dat
a:\blonder\Program Files\Uniblue\RegistryBooster\Launcher.exe
a:\blonder\Program Files\Uniblue\RegistryBooster\library.dat
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\br\br.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\br\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\de\de.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\de\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\dk\dk.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\dk\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\en\en.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\en\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\es\es.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\es\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\fi\fi.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\fi\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\fr\fr.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\fr\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\gr\gr.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\gr\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\it\it.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\it\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\jp\jp.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\jp\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\nl\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\nl\nl.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\no\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\no\no.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\pl\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\pl\pl.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\pt\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\pt\pt.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\ru\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\ru\ru.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\se\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\se\se.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\tr\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\tr\tr.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\xs\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\xs\xs.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\xt\LC_MESSAGES\messages.mo
a:\blonder\Program Files\Uniblue\RegistryBooster\locale\xt\xt.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\Microsoft.VC90.CRT.manifest
a:\blonder\Program Files\Uniblue\RegistryBooster\msvcp90.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\msvcr90.dll
a:\blonder\Program Files\Uniblue\RegistryBooster\rb_move_serial.exe
a:\blonder\Program Files\Uniblue\RegistryBooster\rbmonitor.exe
a:\blonder\Program Files\Uniblue\RegistryBooster\rbnotifier.exe
a:\blonder\Program Files\Uniblue\RegistryBooster\registrybooster.exe
a:\blonder\Program Files\Uniblue\RegistryBooster\repair_transform.xsl
a:\blonder\Program Files\Uniblue\RegistryBooster\settings.ini
a:\blonder\Program Files\Uniblue\RegistryBooster\Third Party Terms\comtypes.txt
a:\blonder\Program Files\Uniblue\RegistryBooster\Third Party Terms\cwebpage.dll.html
a:\blonder\Program Files\Uniblue\RegistryBooster\Third Party Terms\decorator.py.txt
a:\blonder\Program Files\Uniblue\RegistryBooster\Third Party Terms\ordereddict.py.txt
a:\blonder\Program Files\Uniblue\RegistryBooster\Third Party Terms\py2exe.txt
a:\blonder\Program Files\Uniblue\RegistryBooster\Third Party Terms\python-changes.txt
a:\blonder\Program Files\Uniblue\RegistryBooster\Third Party Terms\python.txt
a:\blonder\Program Files\Uniblue\RegistryBooster\Third Party Terms\simplejson.txt
a:\blonder\Program Files\Uniblue\RegistryBooster\Third Party Terms\wmi.txt
a:\blonder\Program Files\Uniblue\RegistryBooster\views.dat
a:\blonder\Program Files\Windows Live\Messenger\msimg32.dll
a:\blonder\Program Files\Windows Live\Messenger\riched20.dll
a:\blonder\Program Files\Winferno\PC Confidential\DeleteIndex.exe
a:\blonder\Program Files\Winferno\PC Confidential\Graphics\HandPoint.ico
a:\blonder\Program Files\Winferno\PC Confidential\PCCL.DLL
a:\blonder\Program Files\Winferno\PC Confidential\PCConfidential.chm
a:\blonder\Program Files\Winferno\PC Confidential\PCConfidential.exe
a:\blonder\Program Files\Winferno\PC Confidential\unins000.dat
a:\blonder\Program Files\Winferno\PC Confidential\unins000.exe
a:\blonder\Program Files\Winferno\PC Confidential\WinCMR.dll
a:\blonder\Program Files\Winferno\PC Confidential\WinfernoSoftware.url
c:\users\Moshe\Desktop\Deamon (DAEMON) Tools Pro 4.30.305 32&64bit Latest\DTPro4300305.exe
d:\downloads 4-14-10\videora-ipod-503-setup.exe
d:\installs\Driver_Genius_9_Professional_US_Full.EXE
D:\PowerISO 4.3.rar
q:\downloads backup\Miro_Installer.exe
q:\downloads backup\videora-ipod-503-setup.exe
t:\completed downloads\Deamon (DAEMON) Tools Pro 4.30.305 32&64bit Latest.rar
.
.
((((((((((((((((((((((((( Files Created from 2011-04-28 to 2011-05-29 )))))))))))))))))))))))))))))))
.
.
2011-05-29 08:21 . 2011-05-29 08:21 -------- d-----w- c:\users\GAmes\AppData\Local\temp
2011-05-29 08:21 . 2011-05-29 08:21 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-29 03:48 . 2011-05-29 04:16 -------- d-----w- C:\cfsky
2011-05-27 10:38 . 2011-05-27 10:38 -------- d-----w- c:\program files (x86)\ESET
2011-05-27 00:49 . 2011-05-27 00:49 -------- d-----w- c:\users\Moshe\AppData\Local\Apple
2011-05-24 05:29 . 2011-05-24 05:30 -------- d-----w- c:\users\Moshe\AppData\Local\Adobe
2011-05-24 04:04 . 2011-05-24 04:04 53248 ----a-r- c:\users\Moshe\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2011-05-24 04:04 . 2011-05-24 04:04 -------- d-----w- c:\users\Moshe\AppData\Local\Logishrd
2011-05-24 04:04 . 2011-05-24 04:04 -------- d-----w- c:\program files\Logitech
2011-05-24 04:02 . 2011-05-24 04:02 -------- d-----w- c:\program files\Microsoft IntelliType Pro
2011-05-24 04:00 . 2011-05-24 04:00 331908 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2011-05-24 04:00 . 2011-05-24 04:00 200836 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2011-05-24 03:57 . 2011-05-24 03:57 -------- d-----w- c:\program files (x86)\Driver-Soft
2011-05-23 04:33 . 2011-05-23 04:33 -------- d-----w- c:\programdata\LightScribe
2011-05-22 06:54 . 2011-05-22 06:54 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-17 10:48 . 2011-05-17 10:48 -------- d-----w- c:\program files (x86)\Avira
2011-05-17 10:48 . 2011-04-02 00:07 83120 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-05-17 10:48 . 2011-04-02 00:07 116568 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-05-17 10:35 . 2011-05-17 10:35 -------- d-----w- c:\program files (x86)\VS Revo Group
2011-05-16 00:24 . 2011-03-21 13:57 173056 ----a-w- c:\windows\system32\xvid.ax
2011-05-16 00:24 . 2011-03-19 15:06 255488 ----a-w- c:\windows\system32\xvidvfw.dll
2011-05-16 00:24 . 2011-03-19 15:05 703488 ----a-w- c:\windows\system32\xvidcore.dll
2011-05-16 00:23 . 2011-05-16 00:23 -------- d-----w- c:\programdata\QuestScan
2011-05-16 00:23 . 2011-05-16 00:23 -------- d-----w- c:\program files (x86)\QuestScan
2011-05-15 09:55 . 2011-05-15 09:56 -------- d-----w- c:\users\Moshe\AppData\Local\Nero
2011-05-13 21:02 . 2011-05-13 21:02 -------- d-----w- c:\program files (x86)\Common Files\LightScribe
2011-05-13 11:31 . 2011-05-13 11:34 -------- d-----w- c:\users\Moshe\AppData\Roaming\TrueCrypt
2011-05-13 11:31 . 2011-05-13 11:31 230352 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2011-05-13 11:30 . 2011-05-13 11:31 -------- d-----w- c:\program files\TrueCrypt
2011-05-13 03:27 . 2011-05-13 03:41 -------- d-----w- c:\program files (x86)\Yzshadow
2011-05-13 03:27 . 2011-05-13 03:41 -------- d-----w- c:\program files (x86)\RocketDock
2011-05-12 22:33 . 2009-07-14 01:41 2851328 ----a-w- c:\windows\system32\themeui.dll.backup
2011-05-12 22:33 . 2009-07-14 01:41 44544 ----a-w- c:\windows\system32\themeservice.dll.backup
2011-05-12 22:33 . 2009-07-14 01:41 332288 ----a-w- c:\windows\system32\uxtheme.dll.backup
2011-05-12 22:33 . 2009-07-14 01:16 2755072 ----a-w- c:\windows\SysWow64\themeui.dll.backup
2011-05-12 22:33 . 2009-07-14 01:11 245760 ----a-w- c:\windows\SysWow64\uxtheme.dll.backup
2011-05-12 22:33 . 2006-12-04 00:15 111104 ----a-w- c:\windows\SysWow64\Uharc.exe
2011-05-12 22:33 . 2006-12-04 00:14 8636 ----a-w- c:\windows\SysWow64\modifype.exe
2011-05-06 00:44 . 2011-05-06 05:10 -------- dc----w- c:\users\Moshe\AppData\Local\MigWiz
2011-05-04 09:54 . 2011-05-05 01:03 -------- d-----w- c:\users\Moshe\AppData\Roaming\PCF-VLC
2011-05-04 09:48 . 2011-05-04 09:48 -------- d-----w- c:\program files (x86)\GetMiro Toolbar
2011-05-04 09:47 . 2011-05-04 09:47 -------- d-----w- c:\users\Moshe\AppData\Roaming\Participatory Culture Foundation
2011-05-04 09:46 . 2011-05-04 09:46 -------- d-----w- c:\program files (x86)\Participatory Culture Foundation
2011-05-03 10:22 . 2011-05-03 10:22 -------- d-----w- c:\program files (x86)\Common Files\LogiShrd
2011-05-03 10:22 . 2011-05-24 04:04 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2011-05-03 10:19 . 2009-11-11 22:17 729600 ----a-w- c:\windows\system32\cohelper.dll
2011-05-03 10:19 . 2009-11-11 16:22 9548 ----a-w- c:\windows\system32\drivers\nvphy.bin
2011-05-03 08:30 . 2011-05-03 08:30 -------- d-----w- c:\program files (x86)\AMD APP
2011-05-03 08:30 . 2011-05-03 08:30 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-05-22 07:00 . 2010-09-14 07:09 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-05-12 22:33 . 2009-07-13 23:54 2851328 ----a-w- c:\windows\system32\themeui.dll
2011-05-12 22:33 . 2009-07-13 23:54 44544 ----a-w- c:\windows\system32\themeservice.dll
2011-05-12 22:33 . 2009-07-13 23:55 332288 ----a-w- c:\windows\system32\uxtheme.dll
2011-05-12 22:33 . 2009-07-13 23:39 2755072 ----a-w- c:\windows\SysWow64\themeui.dll
2011-05-12 22:33 . 2009-07-13 23:39 245760 ----a-w- c:\windows\SysWow64\uxtheme.dll
2011-04-11 09:58 . 2009-08-18 20:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2011-04-11 09:58 . 2009-08-18 19:24 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-04-11 09:19 . 2011-04-11 09:19 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2011-04-10 01:55 . 2011-04-10 01:55 15453336 ----a-w- c:\windows\SysWow64\xlive.dll
2011-04-10 01:55 . 2011-04-10 01:55 13642904 ----a-w- c:\windows\SysWow64\xlivefnt.dll
2011-04-06 23:26 . 2011-04-06 23:26 96544 ----a-w- c:\windows\system32\dnssd.dll
2011-04-06 23:26 . 2011-04-06 23:26 237856 ----a-w- c:\windows\system32\dnssdX.dll
2011-04-06 23:26 . 2011-04-06 23:26 119584 ----a-w- c:\windows\system32\dns-sd.exe
2011-04-06 23:20 . 2011-04-06 23:20 91424 ----a-w- c:\windows\SysWow64\dnssd.dll
2011-04-06 23:20 . 2011-04-06 23:20 197920 ----a-w- c:\windows\SysWow64\dnssdX.dll
2011-04-06 23:20 . 2011-04-06 23:20 107808 ----a-w- c:\windows\SysWow64\dns-sd.exe
2011-03-21 13:58 . 2011-01-26 08:14 152064 ----a-w- c:\windows\SysWow64\xvid.ax
2011-03-19 15:06 . 2011-01-26 08:14 240640 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2011-03-19 15:04 . 2011-01-26 08:14 650752 ----a-w- c:\windows\SysWow64\xvidcore.dll
2011-03-16 00:40 . 2011-03-16 00:40 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-03-16 00:40 . 2011-03-16 00:40 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-03-16 00:40 . 2011-03-16 00:40 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-03-16 00:40 . 2011-03-16 00:40 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-03-16 00:40 . 2011-03-16 00:40 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-03-16 00:40 . 2011-03-16 00:40 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-03-16 00:40 . 2011-03-16 00:40 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-03-16 00:40 . 2011-03-16 00:40 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-03-16 00:40 . 2011-03-16 00:40 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-03-16 00:40 . 2011-03-16 00:40 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-03-16 00:40 . 2011-03-16 00:40 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2011-03-16 00:40 . 2011-03-16 00:40 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-03-16 00:40 . 2011-03-16 00:40 1797632 ----a-w- c:\windows\SysWow64\jscript9.dll
2011-03-16 00:40 . 2011-03-16 00:40 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-03-16 00:40 . 2011-03-16 00:40 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-03-16 00:40 . 2011-03-16 00:40 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-03-16 00:40 . 2011-03-16 00:40 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-03-16 00:40 . 2011-03-16 00:40 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-03-16 00:40 . 2011-03-16 00:40 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-03-16 00:40 . 2011-03-16 00:40 1126912 ----a-w- c:\windows\SysWow64\wininet.dll
2011-03-16 00:40 . 2011-03-16 00:40 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-03-16 00:40 . 2011-03-16 00:40 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-03-16 00:40 . 2011-03-16 00:40 13086208 ----a-w- c:\windows\system32\ieframe.dll.stp
2011-03-16 00:40 . 2011-03-16 00:40 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-03-16 00:40 . 2011-03-16 00:40 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-03-16 00:40 . 2011-03-16 00:40 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-03-16 00:40 . 2011-03-16 00:40 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-03-16 00:40 . 2011-03-16 00:40 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-03-16 00:40 . 2011-03-16 00:40 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-03-16 00:40 . 2011-03-16 00:40 448512 ----a-w- c:\windows\system32\html.iec
2011-03-16 00:40 . 2011-03-16 00:40 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-03-16 00:40 . 2011-03-16 00:40 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-03-16 00:40 . 2011-03-16 00:40 2303488 ----a-w- c:\windows\system32\jscript9.dll
2011-03-16 00:40 . 2011-03-16 00:40 222208 ----a-w- c:\windows\system32\msls31.dll
2011-03-16 00:40 . 2011-03-16 00:40 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-03-16 00:40 . 2011-03-16 00:40 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-03-16 00:40 . 2011-03-16 00:40 160256 ----a-w- c:\windows\system32\wextract.exe
2011-03-16 00:40 . 2011-03-16 00:40 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-03-16 00:40 . 2011-03-16 00:40 1389056 ----a-w- c:\windows\system32\wininet.dll
2011-03-16 00:40 . 2011-03-16 00:40 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-03-16 00:40 . 2011-03-16 00:40 12288 ----a-w- c:\windows\system32\mshta.exe
2011-03-16 00:40 . 2011-03-16 00:40 114176 ----a-w- c:\windows\system32\admparse.dll
2011-03-16 00:40 . 2011-03-16 00:40 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-03-16 00:39 . 2011-03-16 00:39 982912 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2011-03-16 00:39 . 2011-03-16 00:39 662528 ----a-w- c:\windows\system32\XpsPrint.dll
2011-03-16 00:39 . 2011-03-16 00:39 470016 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-03-16 00:39 . 2011-03-16 00:39 320512 ----a-w- c:\windows\system32\d3d10_1core.dll
2011-03-16 00:39 . 2011-03-16 00:39 265088 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-03-16 00:39 . 2011-03-16 00:39 197120 ----a-w- c:\windows\system32\d3d10_1.dll
2011-03-16 00:39 . 2011-03-16 00:39 1888256 ----a-w- c:\windows\system32\WMVDECOD.DLL
2011-03-16 00:39 . 2011-03-16 00:39 1837568 ----a-w- c:\windows\system32\d3d10warp.dll
2011-03-16 00:39 . 2011-03-16 00:39 1619456 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2011-03-16 00:39 . 2011-03-16 00:39 144384 ----a-w- c:\windows\system32\cdd.dll
2011-03-16 00:39 . 2011-03-16 00:39 1133568 ----a-w- c:\windows\system32\FntCache.dll
2011-03-16 00:39 . 2011-03-16 00:39 1863680 ----a-w- c:\windows\system32\ExplorerFrame.dll.stp
2011-03-16 00:39 . 2011-03-16 00:39 1863680 ----a-w- c:\windows\system32\ExplorerFrame.dll
2011-03-16 00:39 . 2011-03-16 00:39 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-03-16 00:39 . 2011-03-16 00:39 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-03-16 00:39 . 2011-03-16 00:39 442880 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2011-03-16 00:39 . 2011-03-16 00:39 4068864 ----a-w- c:\windows\system32\mf.dll
2011-03-16 00:39 . 2011-03-16 00:39 3181568 ----a-w- c:\windows\SysWow64\mf.dll
2011-03-16 00:39 . 2011-03-16 00:39 283648 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2011-03-16 00:39 . 2011-03-16 00:39 257024 ----a-w- c:\windows\system32\mfreadwrite.dll
2011-03-16 00:39 . 2011-03-16 00:39 229888 ----a-w- c:\windows\system32\XpsRasterService.dll
2011-03-16 00:39 . 2011-03-16 00:39 218624 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2011-03-16 00:39 . 2011-03-16 00:39 206848 ----a-w- c:\windows\system32\mfps.dll
2011-03-16 00:39 . 2011-03-16 00:39 196608 ----a-w- c:\windows\SysWow64\mfreadwrite.dll
2011-03-16 00:39 . 2011-03-16 00:39 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2011-03-16 00:39 . 2011-03-16 00:39 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-03-16 00:39 . 2011-03-16 00:39 1495040 ----a-w- c:\windows\SysWow64\ExplorerFrame.dll
2011-03-16 00:39 . 2011-03-16 00:39 135168 ----a-w- c:\windows\SysWow64\XpsRasterService.dll
2011-03-16 00:39 . 2011-03-16 00:39 1170944 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2011-03-16 00:39 . 2011-03-16 00:39 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2011-05-29_04.04.04 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-05-29 08:13 . 2011-05-29 08:13 9560 c:\windows\system32\NetworkList\Icons\{62C251C5-0528-4975-A6D7-B6E04E092F36}_48.bin
+ 2011-05-29 08:13 . 2011-05-29 08:13 4280 c:\windows\system32\NetworkList\Icons\{62C251C5-0528-4975-A6D7-B6E04E092F36}_32.bin
+ 2011-05-29 08:13 . 2011-05-29 08:13 2456 c:\windows\system32\NetworkList\Icons\{62C251C5-0528-4975-A6D7-B6E04E092F36}_24.bin
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files (x86)\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"ISUSPM"="c:\program files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2008-10-24 206112]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [BU]
"BitTorrent"="c:\program files (x86)\BitTorrent\BitTorrent.exe" [2011-05-27 400760]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ATICustomerCare"="c:\program files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe" [2011-01-27 311296]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-26 98304]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-03-28 281768]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"TaskTray"="" [BU]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-12-21 443728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"HideFastUserSwitching"= 1 (0x1)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"HideSCABattery"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files (x86)\SUPERAntiSpyware\SASSEH.DLL" [2011-01-27 77824]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 22:21 548352 ----a-w- c:\program files (x86)\SUPERAntiSpyware\SASWINLO.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R1 SASDIFSV;SASDIFSV;c:\program files (x86)\SUPERAntiSpyware\SASDIFSV.SYS [2010-01-05 9968]
R1 SASKUTIL;SASKUTIL;c:\program files (x86)\SUPERAntiSpyware\SASKUTIL.sys [2010-01-05 74480]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 A_USBETHMP;USB PowerPacket Network Adapter;c:\windows\system32\Drivers\usbethmp.sys [x]
R3 Amazon Download Agent;Amazon Download Agent;c:\program files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe [2009-10-23 401920]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 dump_wmimmc;dump_wmimmc;c:\ijji\ENGLISH\Gunz\GameGuard\dump_wmimmc.sys [x]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\MAGIX\Common\Database\bin\fbserver.exe [x]
R3 ivusb;Initio Driver for USB Default Controller;c:\windows\system32\DRIVERS\ivusb.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 SASENUM;SASENUM;c:\program files (x86)\SUPERAntiSpyware\SASENUM.SYS [2010-01-05 7408]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]
R3 WLRAWMp50x64;WLRAWMp50x64 NDIS Protocol Driver;c:\windows\system32\Drivers\WLRAWMp50x64.sys [x]
R3 WLRAWSp50x64;WLRAWSp50x64 NDIS Protocol Driver;c:\windows\system32\Drivers\WLRAWSp50x64.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 HWiNFO32;HWiNFO32 Kernel Driver;c:\program files (x86)\HWiNFO32\HWiNFO64A.SYS [2010-09-30 28032]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-03-28 136360]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [2010-12-16 373640]
S2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files (x86)\LogMeIn\x64\RaInfo.sys [2010-05-31 15928]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2010-12-21 363344]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2010-11-27 398176]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-04-15 2280312]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 19:11 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2011-05-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3266427099-1654195687-2890988620-1001Core.job
- c:\users\Moshe\AppData\Local\Google\Update\GoogleUpdate.exe [2009-11-23 10:45]
.
2011-05-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3266427099-1654195687-2890988620-1001UA.job
- c:\users\Moshe\AppData\Local\Google\Update\GoogleUpdate.exe [2009-11-23 10:45]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NVRaidService"="c:\windows\system32\nvraidservice.exe" [2009-07-01 291872]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-01-12 172032]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
"LogMeIn GUI"="c:\program files (x86)\LogMeIn\x64\LogMeInSystray.exe" [2010-05-31 57928]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2010-07-22 2306448]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2010-10-28 1680976]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
FF - ProfilePath - c:\users\Moshe\AppData\Roaming\Mozilla\Firefox\Profiles\bmls2zrs.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - user.js: keyword.enabled - 1
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3266427099-1654195687-2890988620-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:3a,8d,38,65,cd,ba,ed,60,49,2a,2c,96,f3,f0,a1,c9,87,5f,a5,06,ac,68,2b,
d4,b5,9a,4c,2d,fc,61,b5,6c,51,6d,e6,fd,c2,51,24,4f,cc,49,1f,7b,68,8a,77,6b,\
"??"=hex:55,49,5f,38,8c,63,1b,2b,7c,7a,62,ef,a5,dd,dd,db
.
[HKEY_USERS\S-1-5-21-3266427099-1654195687-2890988620-1001\Software\SecuROM\License information*]
"datasecu"=hex:02,e8,37,32,cb,ec,d6,d1,af,57,63,70,81,eb,49,17,f1,90,59,99,ab,
c0,42,fa,e4,66,7f,80,51,a7,46,17,35,a4,f0,a2,42,e4,f4,ac,a7,2e,6e,97,04,c3,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus\1]
@="131473"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2011-05-29 01:23:54
ComboFix-quarantined-files.txt 2011-05-29 08:23
ComboFix2.txt 2011-05-29 04:08
ComboFix3.txt 2011-05-20 01:57
ComboFix4.txt 2011-05-18 10:52
.
Pre-Run: 34,027,393,024 bytes free
Post-Run: 33,935,360,000 bytes free
.
- - End Of File - - 7FBDA94F6E0DF9C130FB5671B6D61843
MarkA
Regular Member
 
Posts: 27
Joined: May 13th, 2011, 9:07 pm

Re: Some Applications wont open, and some websites wont load

Unread postby Alander » May 29th, 2011, 11:33 am

Hi MarkA,
Step 1.
I notice there are infected files in your backups, But I did not nuke them as they might contain important documents.
Please Extract the important files (Not installers that are infected) and delete them, if the the backups are not important, please delete them totally
They are
D:\MOSHE-PC\Backup Set 2010-01-18 231827\Backup Files 2010-01-18 231827\Backup files 8.zip
D:\MOSHE-PC\Backup Set 2010-02-14 004634\Backup Files 2010-02-14 004634\Backup files 9.zip

Step 2.
Panda ActiveScan
Vista - W7 users:
Close your browser, right-click on the IE icon on the Start Menu or Quick Launch and select "Run as Administrator".

Please go to Panda ActiveScan © Panda Security... to perform a free online scan.
You must use Internet Explorer as the scan requires ActiveX.
  1. Click on the Scan your PC now button.
    A new window will open.
  2. Make sure the "Full scan" scan type is CHECKED.
  3. Press the "Scan Now" button.
  4. You will be prompted to install an ActiveX module. Please allow it.
    If your browser blocks pop-ups, you may see a bar at the top of the window asking you to click, to allow ... please allow it.
    Panda Active scan will update itself... this may also be a pop-up...please allow also.
  5. Once the program is updated, it will begin to scan your computer. This will take a long time, so be patient, let it run.
  6. Once done, click on Export to:... save it to your Desktop.
  7. A file named "ActiveScan.txt" will be created on your desktop.
  8. Please copy and paste the contents of the ActiveScan.txt file in your next reply.

Step 3.
Scan with DDS Again
Please disable any anti-malware program that will block scripts from running before running DDS.

  • Double-Click on dds.scr and a command window will appear. This is normal.
  • Shortly after two logs will appear:
    • DDS.txt
    • Attach.txt
  • A window will open instructing you save & post the logs
  • Save the logs to a convenient place such as your desktop
  • Copy the contents of both logs & post in your next reply

Step 4.
Please include in your next reply:
  1. Any problem executing the instructions?
  2. ActiveScan.txt from step 2
  3. DDS and Attach.txt from step 3
  4. How is the computer behaving?
with each log file with in a seperate post so that the logs wont be cut off due to the length
Thanks
User avatar
Alander
Regular Member
 
Posts: 1599
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: Some Applications wont open, and some websites wont load

Unread postby MarkA » May 31st, 2011, 5:55 am

doing this now
MarkA
Regular Member
 
Posts: 27
Joined: May 13th, 2011, 9:07 pm

Re: Some Applications wont open, and some websites wont load

Unread postby MarkA » May 31st, 2011, 6:02 am

Step 1: Deleted both files.

Step 2: Issue:

"Characteristics: minimum requirements"
"We have detected that your PC is using a version of Microsoft Internet Explorer or Firefox, or another browser, that is not compatible with ActiveScan 2.0."
"Download Panda Antivirus Pro 2012 FREE to scan your PC and make sure it is virus free:"

Internet Explorer 9
Version 9.0.8112.16421
Update Versions: RTM (KB982861)
Cipher Strength: 256-bit

I tried the 64 bit version as well same result :
"Characteristics: minimum requirements"
"We have detected that your PC is using a version of Microsoft Internet Explorer or Firefox, or another browser, that is not compatible with ActiveScan 2.0."
"Download Panda Antivirus Pro 2012 FREE to scan your PC and make sure it is virus free:"
MarkA
Regular Member
 
Posts: 27
Joined: May 13th, 2011, 9:07 pm

Re: Some Applications wont open, and some websites wont load

Unread postby Alander » May 31st, 2011, 1:42 pm

Hi MarkA, Apparently, Panda has some compatibility issues with new browsers like Internet Explorer 9, dont worry about it, lets use eset again.
Can you tell me how is your computer running now? Does your application now runs fine and does the websites u mentioned load??
Step 1.
ESET NOD32 Online Scan
Vista - W7 users: You will need to to right-click on the IE or FF icons on the Start Menu or Quick Launch Bar on the Taskbar and select "Run as Administrator" from the context menu.
Note: If using Mozilla Firefox you will need to download "esetsmartinstaller_enu.exe" when prompted... then double click on it to install.
Please temporarily disable your Anti-virus real-time protection. If active, it could impact the online scan.
Please go to ESET Online Scanner - © ESET All Rights Reserved... to run an online scan.
** Make sure you are using an account that has Administrative privileges **
    Press the "ESET Online Scanner" button.
  1. Check the box next to "YES, I accept the Terms of Use."
  2. Click "Start"... a window will open... it may appear nothing is happening... please be patient.
  3. Click Yes... at the run ActiveX prompt. Click Install... at the install ActiveX prompt.
    Once installed, the scanner will be initialized.
  4. Click "Start". Make sure that the options:
    • Remove found threats is UNCHECKED
    • Leave the "default" settings under Advanced as they are, if not set , please check:
      • Scan for potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth Technology
  5. Click "Start"... ESET scanner will begin to download the virus signatures database.
    When the signatures have been downloaded, the scan will start automatically.
  6. Wait for the scan to finish... it may take a while... please be patient. When the scan is finished...
  7. Use Notepad to open the log file located at C:\Program Files\ESET\ESET Online Scanner\log.txt
  8. Copy and paste the contents of log.txt in your next reply.
Remember to enable your Anti-virus protection... before continuing!

Step 2.
Scan with DDS Again
Please disable any anti-malware program that will block scripts from running before running DDS.

  • Double-Click on dds.scr and a command window will appear. This is normal.
  • Shortly after two logs will appear:
    • DDS.txt
    • Attach.txt
  • A window will open instructing you save & post the logs
  • Save the logs to a convenient place such as your desktop
  • Copy the contents of both logs & post in your next reply

Step 3.
Please include in your next reply:
  1. Any problem executing the instructions?
  2. log.txt from step 1
  3. DDS and Attach.txt from step 2
  4. How is the computer behaving?
with each log file with in a seperate post so that the logs wont be cut off due to the length
Thanks
User avatar
Alander
Regular Member
 
Posts: 1599
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: Some Applications wont open, and some websites wont load

Unread postby MarkA » May 31st, 2011, 5:51 pm

Websites do load. And applications do not crash anymore.
MarkA
Regular Member
 
Posts: 27
Joined: May 13th, 2011, 9:07 pm

Re: Some Applications wont open, and some websites wont load

Unread postby MarkA » June 2nd, 2011, 3:14 am

A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\OCSetupHlp.dll Win32/OpenCandy application
A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\Launcher.exe Win32/RegistryBooster application
A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rbmonitor.exe Win32/RegistryBooster application
A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rbnotifier.exe Win32/RegistryBooster application
A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rb_move_serial.exe Win32/RegistryBooster application
A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\registrybooster.exe Win32/RegistryBooster application
A:\Completed Downloads\Microsoft Office 2010\Office 2010 ToolKit.exe a variant of Win32/Injector.DHB trojan
C:\Qoobox\Quarantine\A\Blonder\Program Files\DictionaryBoss\bar\1.bin\v4datact.dll.vir a variant of Win32/Toolbar.MyWebSearch.A application
C:\Qoobox\Quarantine\A\Blonder\Program Files\DictionaryBoss\bar\1.bin\v4html.dll.vir probably a variant of Win32/Toolbar.MyWebSearch.F application
C:\Qoobox\Quarantine\A\Blonder\Program Files\DictionaryBoss\bar\1.bin\v4htmlmu.dll.vir probably a variant of Win32/Toolbar.MyWebSearch.B application
C:\Qoobox\Quarantine\A\Blonder\Program Files\DictionaryBoss\bar\1.bin\v4Plugin.dll.vir a variant of Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\FunWebProducts\Installr\1.bin\F3EZSETP.DLL.vir a variant of Win32/Toolbar.MyWebSearch.M application
C:\Qoobox\Quarantine\A\Blonder\Program Files\FunWebProducts\Installr\1.bin\F3PLUGIN.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\FunWebProducts\Installr\1.bin\NPFUNWEB.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3CJPEG.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3DTACTL.DLL.vir Win32/Adware.FunWeb application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3HISTSW.DLL.vir Win32/Adware.FunWeb application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3HKSTUB.DLL.vir Win32/Toolbar.MyWebSearch.G application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3HTMLMU.DLL.vir Win32/Toolbar.MyWebSearch.B application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3HTTPCT.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3IMSTUB.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3POPSWT.DLL.vir Win32/Adware.FunWeb application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3REGHK.DLL.vir Win32/Toolbar.MyWebSearch.G application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3REPROX.DLL.vir Win32/Toolbar.MyWebSearch.D application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3RESTUB.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3SCHMON.EXE.vir Win32/Adware.FunWeb application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\F3WPHOOK.DLL.vir Win32/FunWeb application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\M3AUXSTB.DLL.vir Win32/Toolbar.MyWebSearch.H application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\M3DLGHK.DLL.vir a variant of Win32/Toolbar.MyWebSearch.I application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\M3HTML.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\M3IMPIPE.EXE.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\M3MSG.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\M3OUTLCN.DLL.vir Win32/Toolbar.MyWebSearch.J application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL.vir a variant of Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\M3SKPLAY.EXE.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\M3SLSRCH.EXE.vir Win32/Toolbar.MyWebSearch.J application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE.vir Win32/Toolbar.MyWebSearch.I application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\MWSMLBTN.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\MWSOEPLG.DLL.vir Win32/Toolbar.MyWebSearch.J application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\MWSOESTB.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\MWSSVC.EXE.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\MWSUABTN.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\MyWebSearch\bar\1.bin\NPMYWEBS.DLL.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\Uniblue\RegistryBooster\Launcher.exe.vir Win32/RegistryBooster application
C:\Qoobox\Quarantine\A\Blonder\Program Files\Uniblue\RegistryBooster\rbmonitor.exe.vir Win32/RegistryBooster application
C:\Qoobox\Quarantine\A\Blonder\Program Files\Uniblue\RegistryBooster\rbnotifier.exe.vir Win32/RegistryBooster application
C:\Qoobox\Quarantine\A\Blonder\Program Files\Uniblue\RegistryBooster\rb_move_serial.exe.vir Win32/RegistryBooster application
C:\Qoobox\Quarantine\A\Blonder\Program Files\Uniblue\RegistryBooster\registrybooster.exe.vir Win32/RegistryBooster application
C:\Qoobox\Quarantine\A\Blonder\Program Files\Windows Live\Messenger\msimg32.dll.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\Windows Live\Messenger\riched20.dll.vir Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\A\Blonder\Program Files\Winferno\PC Confidential\PCConfidential.exe.vir Win32/Adware.PCConfidential application
C:\Qoobox\Quarantine\C\Program Files (x86)\ShopperReports3\bin\3.1.69.0\CmndFF.dll.vir a variant of Win32/Adware.Toolbar.Shopper.AC application
C:\Qoobox\Quarantine\C\Users\Moshe\Desktop\Deamon (DAEMON) Tools Pro 4.30.305 32&64bit Latest\DTPro4300305.exe.vir NSIS/TrojanDownloader.Agent.NCA trojan
C:\Qoobox\Quarantine\D\downloads 4-14-10\videora-ipod-503-setup.exe.vir Win32/OpenCandy application
C:\Qoobox\Quarantine\D\Installs\Driver_Genius_9_Professional_US_Full.EXE.vir probably a variant of Win32/Agent.BJSCQS trojan
C:\Qoobox\Quarantine\Q\Downloads Backup\Miro_Installer.exe.vir Win32/Toolbar.Zugo application
C:\Qoobox\Quarantine\Q\Downloads Backup\videora-ipod-503-setup.exe.vir Win32/OpenCandy application
D:\New stuff\SmitfraudFix.exe multiple threats
D:\PowerISO 4.3 + Keygen [h33t] [dopeboy]\Keygen.exe a variant of Win32/Keygen.AF application
MarkA
Regular Member
 
Posts: 27
Joined: May 13th, 2011, 9:07 pm

Re: Some Applications wont open, and some websites wont load

Unread postby MarkA » June 2nd, 2011, 3:14 am

.
DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by Moshe at 0:10:48.20 on Thu 06/02/2011
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_24
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.4095.920 [GMT -7:00]
.
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\TeamViewer\Version6\TeamViewer.exe
C:\Windows\System32\nvraidservice.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Program Files (x86)\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\TeamViewer\Version6\tv_w32.exe
C:\Program Files (x86)\TeamViewer\Version6\tv_x64.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
C:\Windows\system32\StikyNot.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\splwow64.exe
C:\Users\Moshe\Downloads\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
uRun: [Sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun
uRun: [ISUSPM] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
uRun: [RESTART_STICKY_NOTES] C:\Windows\system32\StikyNot.exe
mRun: [ATICustomerCare] "C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [TaskTray]
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
uPolicies-explorer: HideSCABattery = 1 (0x1)
uPolicies-explorer: NoInstrumentation = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
mPolicies-system: HideFastUserSwitching = 1 (0x1)
mPolicies-system: EnableLinkedConnections = 1 (0x1)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
mRun-x64: [NVRaidService] C:\Windows\system32\nvraidservice.exe
mRun-x64: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
mRun-x64: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
mRun-x64: [LogMeIn GUI] "C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe"
mRun-x64: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
mRun-x64: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Moshe\AppData\Roaming\Mozilla\Firefox\Profiles\bmls2zrs.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npijjiFFPlugin1.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Program Files (x86)\Veetle\Player\npvlc.dll
FF - plugin: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll
FF - plugin: C:\Program Files (x86)\WEBZEN\WebzenGameStarter\NPGameWebStarter.dll
FF - plugin: C:\Users\Moshe\AppData\Local\Google\Update\1.3.21.53\npGoogleUpdate3.dll
FF - plugin: C:\Users\Moshe\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
---- FIREFOX POLICIES ----
FF - user.js: keyword.enabled - 1
.
============= SERVICES / DRIVERS ===============
.
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2009-12-28 52856]
R1 HWiNFO32;HWiNFO32 Kernel Driver;C:\Program Files (x86)\HWiNFO32\HWiNFO64A.SYS [2011-1-5 28032]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2011-2-5 203776]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2011-5-17 136360]
R2 AntiVirService;Avira AntiVir Guard;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2011-5-17 269480]
R2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2011-5-17 83120]
R2 cpuz135;cpuz135;C:\Windows\System32\drivers\cpuz135_x64.sys [2011-1-17 21992]
R2 LMIGuardianSvc;LMIGuardianSvc;C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [2010-9-27 373640]
R2 LMIInfo;LogMeIn Kernel Information Provider;C:\Program Files (x86)\LogMeIn\x64\rainfo.sys [2010-5-31 15928]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;C:\Windows\System32\drivers\LMIRfsDriver.sys [2010-11-17 72216]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2010-1-10 363344]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-3-25 490280]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2010-11-27 398176]
R2 StarWindServiceAE;StarWind AE Service;C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-5-28 275968]
R2 TeamViewer6;TeamViewer 6;C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-4-15 2280312]
R3 amdkmdag;amdkmdag;C:\Windows\System32\drivers\atikmdag.sys [2011-1-26 9085952]
R3 amdkmdap;amdkmdap;C:\Windows\System32\drivers\atikmpag.sys [2011-1-26 299520]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2010-1-10 24152]
R3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S1 SASDIFSV;SASDIFSV;C:\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys [2010-1-5 9968]
S1 SASKUTIL;SASKUTIL;C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS [2010-1-5 74480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 A_USBETHMP;USB PowerPacket Network Adapter;C:\Windows\System32\drivers\usbethmp.sys [2009-7-9 32280]
S3 Amazon Download Agent;Amazon Download Agent;C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe [2011-2-28 401920]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2011-2-5 116752]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;"C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe" --> C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [?]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;"C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe" --> C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [?]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe --> C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe [?]
S3 ivusb;Initio Driver for USB Default Controller;C:\Windows\System32\drivers\ivusb.sys [2010-3-10 29720]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-3-25 30969208]
S3 npggsvc;nProtect GameGuard Service;C:\Windows\system32\GameMon.des -service --> C:\Windows\system32\GameMon.des -service [?]
S3 SASENUM;SASENUM;C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS [2010-1-5 7408]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2009-8-28 49152]
.
=============== File Associations ===============
.
.txt=
.
=============== Created Last 30 ================
.
2011-05-30 01:55:48 -------- d-sh--w- C:\$RECYCLE.BIN
2011-05-29 03:48:14 -------- d-----w- C:\cfsky
2011-05-27 10:38:31 -------- d-----w- C:\Program Files (x86)\ESET
2011-05-27 00:49:01 -------- d-----w- C:\Users\Moshe\AppData\Local\Apple
2011-05-24 05:29:27 -------- d-----w- C:\Users\Moshe\AppData\Local\Adobe
2011-05-24 04:04:47 53248 ----a-r- C:\Users\Moshe\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2011-05-24 04:04:31 -------- d-----w- C:\Users\Moshe\AppData\Local\Logishrd
2011-05-24 04:02:18 -------- d-----w- C:\Program Files\Microsoft IntelliType Pro
2011-05-24 04:00:59 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2011-05-24 04:00:59 200836 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2011-05-24 03:57:26 -------- d-----w- C:\Program Files (x86)\Driver-Soft
2011-05-23 04:33:30 -------- d-----w- C:\PROGRA~3\LightScribe
2011-05-22 06:54:10 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-19 03:18:42 -------- d-----w- C:\Users\Moshe\.ranktracker
2011-05-19 03:17:36 -------- d-----w- C:\Program Files (x86)\SEO PowerSuite
2011-05-18 10:42:47 98816 ----a-w- C:\Windows\sed.exe
2011-05-18 10:42:47 89088 ----a-w- C:\Windows\MBR.exe
2011-05-18 10:42:47 256512 ----a-w- C:\Windows\PEV.exe
2011-05-18 10:42:47 161792 ----a-w- C:\Windows\SWREG.exe
2011-05-17 10:48:06 83120 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
2011-05-17 10:48:06 -------- d-----w- C:\Program Files (x86)\Avira
2011-05-17 10:35:25 -------- d-----w- C:\Program Files (x86)\VS Revo Group
2011-05-16 00:24:26 703488 ----a-w- C:\Windows\System32\xvidcore.dll
2011-05-16 00:24:26 255488 ----a-w- C:\Windows\System32\xvidvfw.dll
2011-05-16 00:24:26 173056 ----a-w- C:\Windows\System32\xvid.ax
2011-05-16 00:23:11 -------- d-----w- C:\Program Files (x86)\QuestScan
2011-05-16 00:23:11 -------- d-----w- C:\PROGRA~3\QuestScan
2011-05-15 09:55:49 -------- d-----w- C:\Users\Moshe\AppData\Local\Nero_AG
2011-05-15 09:55:23 -------- d-----w- C:\Users\Moshe\AppData\Local\Nero
2011-05-13 11:31:47 -------- d-----w- C:\Users\Moshe\AppData\Roaming\TrueCrypt
2011-05-13 11:31:06 230352 ----a-w- C:\Windows\System32\drivers\truecrypt.sys
2011-05-13 11:30:40 -------- d-----w- C:\Program Files\TrueCrypt
2011-05-13 03:27:35 -------- d-----w- C:\Program Files (x86)\Yzshadow
2011-05-13 03:27:32 -------- d-----w- C:\Program Files (x86)\RocketDock
2011-05-12 22:33:49 2851328 ----a-w- C:\Windows\System32\themeui.dll.backup
2011-05-12 22:33:48 44544 ----a-w- C:\Windows\System32\themeservice.dll.backup
2011-05-12 22:33:47 332288 ----a-w- C:\Windows\System32\uxtheme.dll.backup
2011-05-12 22:33:44 2755072 ----a-w- C:\Windows\SysWow64\themeui.dll.backup
2011-05-12 22:33:44 245760 ----a-w- C:\Windows\SysWow64\uxtheme.dll.backup
2011-05-12 22:33:33 8636 ----a-w- C:\Windows\SysWow64\modifype.exe
2011-05-12 22:33:33 111104 ----a-w- C:\Windows\SysWow64\Uharc.exe
2011-05-06 00:44:12 -------- dc----w- C:\Users\Moshe\AppData\Local\MigWiz
2011-05-04 09:54:15 -------- d-----w- C:\Users\Moshe\AppData\Roaming\PCF-VLC
2011-05-04 09:48:01 -------- d-----w- C:\Program Files (x86)\GetMiro Toolbar
2011-05-04 09:47:58 -------- d-----w- C:\Users\Moshe\AppData\Roaming\Participatory Culture Foundation
2011-05-04 09:46:06 -------- d-----w- C:\Program Files (x86)\Participatory Culture Foundation
2011-05-03 10:22:15 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys
2011-05-03 10:19:39 9548 ----a-w- C:\Windows\System32\drivers\nvphy.bin
2011-05-03 10:19:39 729600 ----a-w- C:\Windows\System32\cohelper.dll
2011-05-03 08:30:14 -------- d-----w- C:\Program Files (x86)\AMD APP
2011-05-03 08:30:10 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
.
==================== Find3M ====================
.
2011-05-22 07:00:53 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-05-12 22:33:49 2851328 ----a-w- C:\Windows\System32\themeui.dll
2011-05-12 22:33:48 44544 ----a-w- C:\Windows\System32\themeservice.dll
2011-05-12 22:33:47 332288 ----a-w- C:\Windows\System32\uxtheme.dll
2011-05-12 22:33:44 2755072 ----a-w- C:\Windows\SysWow64\themeui.dll
2011-05-12 22:33:44 245760 ----a-w- C:\Windows\SysWow64\uxtheme.dll
2011-04-11 09:19:20 178800 ----a-w- C:\Windows\SysWow64\CmdLineExt_x64.dll
2011-04-10 01:55:44 15453336 ----a-w- C:\Windows\SysWow64\xlive.dll
2011-04-10 01:55:42 13642904 ----a-w- C:\Windows\SysWow64\xlivefnt.dll
2011-04-06 23:26:58 96544 ----a-w- C:\Windows\System32\dnssd.dll
2011-04-06 23:26:58 237856 ----a-w- C:\Windows\System32\dnssdX.dll
2011-04-06 23:26:58 119584 ----a-w- C:\Windows\System32\dns-sd.exe
2011-04-06 23:20:16 91424 ----a-w- C:\Windows\SysWow64\dnssd.dll
2011-04-06 23:20:16 197920 ----a-w- C:\Windows\SysWow64\dnssdX.dll
2011-04-06 23:20:16 107808 ----a-w- C:\Windows\SysWow64\dns-sd.exe
2011-03-21 13:58:03 152064 ----a-w- C:\Windows\SysWow64\xvid.ax
2011-03-19 15:06:01 240640 ----a-w- C:\Windows\SysWow64\xvidvfw.dll
2011-03-19 15:04:28 650752 ----a-w- C:\Windows\SysWow64\xvidcore.dll
2011-03-16 00:39:24 982912 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
.
============= FINISH: 0:11:42.47 ===============
MarkA
Regular Member
 
Posts: 27
Joined: May 13th, 2011, 9:07 pm

Re: Some Applications wont open, and some websites wont load

Unread postby MarkA » June 2nd, 2011, 3:16 am

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 11/8/2009 3:38:14 AM
System Uptime: 5/28/2011 9:00:20 PM (99 hours ago)
.
Motherboard: EVGA | | 122-CK-NF68
Processor: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz | Socket 775 | 2400/266mhz
.
==== Disk Partitions =========================
.
A: is FIXED (NTFS) - 932 GiB total, 90.418 GiB free.
C: is FIXED (NTFS) - 140 GiB total, 30.112 GiB free.
D: is FIXED (NTFS) - 298 GiB total, 22.833 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is CDROM ()
H: is CDROM ()
I: is CDROM ()
J: is CDROM ()
K: is FIXED (NTFS) - 932 GiB total, 115.633 GiB free.
M: is Removable
N: is Removable
O: is Removable
P: is FIXED (NTFS) - 932 GiB total, 72.46 GiB free.
Q: is FIXED (NTFS) - 466 GiB total, 373.545 GiB free.
T: is FIXED (NTFS) - 932 GiB total, 238.014 GiB free.
Z: is FIXED (NTFS) - 1397 GiB total, 1361.314 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP321: 5/19/2011 6:41:36 PM - Revo Uninstaller's restore point - IspAssistant-Mp3Tube
RP322: 5/21/2011 11:59:39 PM - Removed Java(TM) 6 Update 24
RP323: 5/22/2011 12:00:41 AM - Installed Java(TM) 6 Update 24
RP324: 5/23/2011 9:02:50 PM - Before installing new drivers - 5/23/2011 9:02:49 PM
RP325: 5/28/2011 8:48:25 PM - ComboFix created restore point
.
==== Installed Programs ======================
.
.
AA2Deploy
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Media Player
Adobe Reader 9.4.4
Adobe Shockwave Player 11.5
Amazon Games & Software Downloader
Apple Application Support
Apple Software Update
ATI Catalyst Registration
Audacity 1.2.6
Auslogics Disk Defrag
Avid EDL Manager
Avid FilmScribe
Avid Log Exchange
Avira AntiVir Personal - Free Antivirus
AviSynth 2.5
AVS Update Manager 1.0
AVS Video Converter 6
AVS Video Editor 4
AVS Video Recorder 2.4
AVS YouTube Uploader version 2.1
AVS4YOU Software Navigator 1.3
BlackBerry Desktop Software 5.0.1
BlackBerry® Media Sync
CamStudio
Camtasia Studio 7
Canon MP560 series User Registration
Canon Utilities CameraWindow
Canon Utilities CameraWindow DC
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
Canon Utilities Easy-PhotoPrint EX
Canon Utilities My Printer
Canon Utilities MyCamera
Canon Utilities MyCamera DC
Canon Utilities PhotoStitch
Canon Utilities RemoteCapture Task for ZoomBrowser EX
Canon Utilities Solution Menu
Canon Utilities ZoomBrowser EX
Canon ZoomBrowser EX Memory Card Utility
Cartoonly
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
ccc-core-static
CCC Help English
Creative ALchemy
Creative Audio Control Panel
Creative Software AutoUpdate
Creative Sound Blaster Properties x64 Edition
Curse Client
Driver Genius Professional Edition
Dropbox
Emergency 2012
eReg
ERUNT 1.1j
ESET Online Scanner v3
Fraps (remove only)
GameGuard
GameSpy Arcade
Google Chrome
Grand Theft Auto IV
High-Definition Video Playback 10
HijackThis 2.0.2
HWiNFO32 Version 3.65
Intel(R) Processor ID Utility
Java Auto Updater
Java(TM) 6 Update 24
LAME v3.98.2 for Audacity
League of Legends
LightScribe System Software
LogMeIn
Magic ISO Maker v5.5 (build 0276)
Malwarebytes' Anti-Malware
Microsoft Choice Guard
Microsoft Games for Windows - LIVE Redistributable
Microsoft Games for Windows Marketplace
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Microsoft Primary Interoperability Assemblies 2005
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
Microsoft WSE 3.0 Runtime
Microsoft XML Parser
mIRC
Miro
Mozilla Firefox 4.0.1 (x86 en-US)
MSVCRT
MSXML 4.0 SP2 Parser and SDK
MSXML 4.0 SP3 Parser
MSXML4 Parser
Nero 10 Menu TemplatePack Basic
Nero 10 Movie ThemePack Basic
Nero 8
Nero BackItUp 10
Nero BackItUp 10 Help (CHM)
Nero Burning ROM 10
Nero BurningROM 10 Help (CHM)
Nero BurnRights 10
Nero BurnRights 10 Help (CHM)
Nero Control Center 10
Nero ControlCenter 10 Help (CHM)
Nero Core Components 10
Nero CoverDesigner 10
Nero CoverDesigner 10 Help (CHM)
Nero DiscSpeed 10
Nero DiscSpeed 10 Help (CHM)
Nero Dolby Files 10
Nero Express 10
Nero Express 10 Help (CHM)
Nero InfoTool 10
Nero InfoTool 10 Help (CHM)
Nero MediaHub 10
Nero MediaHub 10 Help (CHM)
Nero Multimedia Suite 10
Nero Recode 10
Nero Recode 10 Help (CHM)
Nero RescueAgent 10
Nero RescueAgent 10 Help (CHM)
Nero SoundTrax 10
Nero SoundTrax 10 Help (CHM)
Nero StartSmart 10
Nero StartSmart 10 Help (CHM)
Nero Update
Nero Vision 10
Nero Vision 10 Help (CHM)
Nero WaveEditor 10
Nero WaveEditor 10 Help (CHM)
neroxml
NVIDIA PhysX
Pando Media Booster
PMB
Pocket Tanks v1.3
PowerISO
PunkBuster Services
QuickTime
Rank Tracker
Realtek HDMI Audio Driver for ATI
Revo Uninstaller 1.92
RIFT
Roxio Media Manager
Sentinel Protection Installer 7.3.2
ServeToMe 3.5.2.0
Spybot - Search & Destroy
Steam
STK02N 2.0
SUPERAntiSpyware Professional
TeamViewer 6
The Lord of the Rings FREE Trial
TrueCrypt
Unity Web Player
VCRedistSetup
Veetle TV 0.9.18
Visual C++ 8.0 Runtime Setup Package (x64)
Visual Studio 2008 x64 Redistributables
VLC media player 1.0.3
VLC Setup Helper 3.04
Webzen Game Starter
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live OneCare safety scanner
Windows Live Upload Tool
Windows Media Encoder 9 Series
WinRAR archiver
Xfire (remove only)
Xvid Video Codec
Yahoo! Detect
.
==== Event Viewer Messages From Past Week ========
.
5/31/2011 10:06:00 PM, Error: Service Control Manager [7000] - The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error: A device attached to the system is not functioning.
5/29/2011 1:21:25 AM, Error: Service Control Manager [7030] - The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
5/28/2011 9:03:33 PM, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
5/28/2011 9:01:30 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SASDIFSV SASKUTIL
5/28/2011 9:01:08 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Roxio Upnp Server 9 service to connect.
5/28/2011 9:00:54 PM, Error: Application Popup [1060] - \??\C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
5/28/2011 9:00:54 PM, Error: Application Popup [1060] - \??\C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
5/28/2011 8:58:32 PM, Error: Application Popup [1060] - \??\C:\cfsky\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
5/27/2011 2:23:52 AM, Error: VDS Basic Provider [1] - Unexpected failure. Error code: 490@01010004
.
==== End Of File ===========================
MarkA
Regular Member
 
Posts: 27
Joined: May 13th, 2011, 9:07 pm

Re: Some Applications wont open, and some websites wont load

Unread postby Alander » June 2nd, 2011, 2:29 pm

ATF Cleaner
Please download ATF Cleaner ... by Atribune. Alternate download site: here.
It does not require any installation and uses minimal system resources.
It is set up to clean IE, FireFox and Opera, detecting the browsers you have and grays out the other(s).

  1. Double-click ATF-Cleaner.exe to run the program.
  2. Under Main choose: Select All
    Recommend UNCHECKING COOKIES if you rely on system remembered passwords.
  3. Click the Empty Selected button.
      If you use Firefox browser
    • Click Firefox at the top and choose: Select All EXCEPT FIREFOX SAVED PASSWORDS
    • Click the Empty Selected button.
      NOTE: If you would like to keep your saved passwords, please click No at the prompt.
      If you use Opera browser
    • Click Opera at the top and choose: Select All EXCEPT COOKIES AND SAVED PASSWORDS
    • Click the Empty Selected button.
      NOTE: If you would like to keep your cookies and saved passwords, please click No at the prompt.
  4. Reply OK to the total bytes removed...box, then click Exit on the Main menu to close the program.

ComboFix - CFScript
WARNING !
This script is for THIS user and computer ONLY!
Using this tool incorrectly could damage your Operating System... preventing it from starting again!


You will not have Internet access when you execute ComboFix. All open windows will need to be closed!

  1. Please open Notepad and copy/paste all the text below... into the window:
    Folder::
    A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp

    File::
    A:\Blonder\Documents and Settings\Eynat\Local Settings\Temp\OCSetupHlp.dll
    A:\Completed Downloads\Microsoft Office 2010\Office 2010 ToolKit.exe
    D:\PowerISO 4.3 + Keygen [h33t] [dopeboy]\Keygen.exe
  2. Save it to your desktop as CFScript.txt
  3. Please disable any Antivirus or Firewall you have active, as shown in this topic. Please close all open application windows.
  4. Drag the CFScript.txt (icon) into the ComboFix.exe icon... as seen in the image below:

    Image

    This will cause ComboFix to run again.
    Do Not use your keyboard or mouse click anywhere in the ComboFix window, as this may cause the program to stall or crash.
    Do Not touch your computer when ComboFix is running!

    When finished... Notepad will open ... ComboFix will produce a log file called "ComboFix.txt".
  5. Please copy/paste the contents of ComboFix.txt... in your next reply.

** Enable your Antivirus and Firewall, before connecting to the Internet again! **
User avatar
Alander
Regular Member
 
Posts: 1599
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: Some Applications wont open, and some websites wont load

Unread postby MarkA » June 3rd, 2011, 4:07 pm

ComboFix 11-06-03.04 - Moshe 06/03/2011 12:18:43.5.4 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.4095.2254 [GMT -7:00]
Running from: c:\users\Moshe\Desktop\cfsky.exe
Command switches used :: c:\users\Moshe\Desktop\CFScript.txt
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
FILE ::
"a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\OCSetupHlp.dll"
"a:\completed downloads\Microsoft Office 2010\Office 2010 ToolKit.exe"
"d:\poweriso 4.3 + keygen [h33t] [dopeboy]\Keygen.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA}
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\MSIRUN\mIDEFunc.dll\mEXEFunc.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\MSIRUN\VldDrvIDEPlug.dll\VldDrvEXEPlug.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\14674720\A524F6BD\Microsoft.VC90.CRT.manifest
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\14674720\A524F6BD\msvcp90.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\14674720\A524F6BD\msvcr90.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\24A335FF\F45C8718\settings.ini
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\12D7F711\it.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\147FC130\br.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\191FD45A\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\20D9F0DC\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\2E0DE6A5\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\32DF9203\xt.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\3BAC9DAF\ru.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\3F11D5BE\dk.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\41EB15E7\comtypes.txt
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\41EB15E7\cwebpage.dll.html
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\41EB15E7\decorator.py.txt
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\41EB15E7\ordereddict.py.txt
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\41EB15E7\py2exe.txt
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\41EB15E7\python-changes.txt
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\41EB15E7\python.txt
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\41EB15E7\simplejson.txt
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\41EB15E7\wmi.txt
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\47BF4054\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\51025DE4\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\54083BF\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\57FA2E68\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\5B07C260\en.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\6CF41BAE\es.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\6F5A5C6B\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\7D7A217B\xs.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\7DBEB094\nl.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\7EB94EA0\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\82C7B32\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\8779DFBB\no.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\975F7F3D\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\983F7B0E\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\98C1490\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\9E32A01C\gr.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\9E452C1\tr.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\A143BDAB\fi.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\A46AE25F\pt.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\AB0797AD\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\AB37FAEC\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\BEF5101E\de.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\C1E0D6F7\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\C96FC1ED\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\D0E87741\pl.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DB6D4AF1\jp.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\cache.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\cwebpage.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\intermediate_views.dat
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\Launcher.exe
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\library.dat
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rb_move_serial.exe
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rbmonitor.exe
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\rbnotifier.exe
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\registrybooster.exe
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\repair_transform.xsl
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\DBD9B16A\views.dat
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\F4C879D5\se.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\F6D2C254\fr.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\FC168624\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\D038292B\FF98BDE1\messages.mo
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\mIDEFunc.dll\mEXEFunc.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\OFFLINE\mMSI.dll\mMSIExec.dll
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\data\rbia.msi
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\mia.lib
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\rbia.exe
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\rbia.msi
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\mia2907.tmp\rbia.res
a:\blonder\Documents and Settings\Eynat\Local Settings\Temp\OCSetupHlp.dll
a:\completed downloads\Microsoft Office 2010\Office 2010 ToolKit.exe
c:\windows\security\Database\tmp.edb
d:\poweriso 4.3 + keygen [h33t] [dopeboy]\Keygen.exe
.
.
((((((((((((((((((((((((( Files Created from 2011-05-03 to 2011-06-03 )))))))))))))))))))))))))))))))
.
.
2011-06-03 19:27 . 2011-06-03 19:27 -------- d-----w- c:\users\GAmes\AppData\Local\temp
2011-06-03 19:27 . 2011-06-03 19:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-29 03:48 . 2011-05-29 04:16 -------- d-----w- C:\cfsky
2011-05-27 10:38 . 2011-05-27 10:38 -------- d-----w- c:\program files (x86)\ESET
2011-05-24 04:04 . 2011-05-24 04:04 53248 ----a-r- c:\users\Moshe\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2011-05-24 04:04 . 2011-05-24 04:04 -------- d-----w- c:\users\Moshe\AppData\Local\Logishrd
2011-05-24 04:04 . 2011-05-24 04:04 -------- d-----w- c:\program files\Logitech
2011-05-24 04:02 . 2011-05-24 04:02 -------- d-----w- c:\program files\Microsoft IntelliType Pro
2011-05-24 04:00 . 2011-05-24 04:00 331908 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2011-05-24 04:00 . 2011-05-24 04:00 200836 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2011-05-24 03:57 . 2011-05-24 03:57 -------- d-----w- c:\program files (x86)\Driver-Soft
2011-05-23 04:33 . 2011-05-23 04:33 -------- d-----w- c:\programdata\LightScribe
2011-05-22 06:54 . 2011-05-22 06:54 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-19 03:18 . 2011-05-19 03:24 -------- d-----w- c:\users\Moshe\.ranktracker
2011-05-19 03:17 . 2011-05-19 03:18 -------- d-----w- c:\program files (x86)\SEO PowerSuite
2011-05-17 10:48 . 2011-05-17 10:48 -------- d-----w- c:\program files (x86)\Avira
2011-05-17 10:48 . 2011-04-02 00:07 83120 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-05-17 10:48 . 2011-04-02 00:07 116568 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-05-17 10:35 . 2011-05-17 10:35 -------- d-----w- c:\program files (x86)\VS Revo Group
2011-05-16 00:24 . 2011-03-21 13:57 173056 ----a-w- c:\windows\system32\xvid.ax
2011-05-16 00:24 . 2011-03-19 15:06 255488 ----a-w- c:\windows\system32\xvidvfw.dll
2011-05-16 00:24 . 2011-03-19 15:05 703488 ----a-w- c:\windows\system32\xvidcore.dll
2011-05-16 00:23 . 2011-05-16 00:23 -------- d-----w- c:\programdata\QuestScan
2011-05-16 00:23 . 2011-05-16 00:23 -------- d-----w- c:\program files (x86)\QuestScan
2011-05-15 09:55 . 2011-06-01 05:06 -------- d-----w- c:\users\Moshe\AppData\Local\Nero
2011-05-13 21:02 . 2011-05-13 21:02 -------- d-----w- c:\program files (x86)\Common Files\LightScribe
2011-05-13 11:31 . 2011-05-13 11:34 -------- d-----w- c:\users\Moshe\AppData\Roaming\TrueCrypt
2011-05-13 11:31 . 2011-05-13 11:31 230352 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2011-05-13 11:30 . 2011-05-13 11:31 -------- d-----w- c:\program files\TrueCrypt
2011-05-13 03:27 . 2011-05-13 03:41 -------- d-----w- c:\program files (x86)\Yzshadow
2011-05-13 03:27 . 2011-05-13 03:41 -------- d-----w- c:\program files (x86)\RocketDock
2011-05-12 22:33 . 2009-07-14 01:41 2851328 ----a-w- c:\windows\system32\themeui.dll.backup
2011-05-12 22:33 . 2009-07-14 01:41 44544 ----a-w- c:\windows\system32\themeservice.dll.backup
2011-05-12 22:33 . 2009-07-14 01:41 332288 ----a-w- c:\windows\system32\uxtheme.dll.backup
2011-05-12 22:33 . 2009-07-14 01:16 2755072 ----a-w- c:\windows\SysWow64\themeui.dll.backup
2011-05-12 22:33 . 2009-07-14 01:11 245760 ----a-w- c:\windows\SysWow64\uxtheme.dll.backup
2011-05-12 22:33 . 2006-12-04 00:15 111104 ----a-w- c:\windows\SysWow64\Uharc.exe
2011-05-12 22:33 . 2006-12-04 00:14 8636 ----a-w- c:\windows\SysWow64\modifype.exe
2011-05-06 00:44 . 2011-05-06 05:10 -------- dc----w- c:\users\Moshe\AppData\Local\MigWiz
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-05-24 04:04 . 2011-05-03 10:22 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2011-05-22 07:00 . 2010-09-14 07:09 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-05-12 22:33 . 2009-07-13 23:54 2851328 ----a-w- c:\windows\system32\themeui.dll
2011-05-12 22:33 . 2009-07-13 23:54 44544 ----a-w- c:\windows\system32\themeservice.dll
2011-05-12 22:33 . 2009-07-13 23:55 332288 ----a-w- c:\windows\system32\uxtheme.dll
2011-05-12 22:33 . 2009-07-13 23:39 2755072 ----a-w- c:\windows\SysWow64\themeui.dll
2011-05-12 22:33 . 2009-07-13 23:39 245760 ----a-w- c:\windows\SysWow64\uxtheme.dll
2011-04-11 09:58 . 2009-08-18 20:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2011-04-11 09:58 . 2009-08-18 19:24 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-04-11 09:19 . 2011-04-11 09:19 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2011-04-10 01:55 . 2011-04-10 01:55 15453336 ----a-w- c:\windows\SysWow64\xlive.dll
2011-04-10 01:55 . 2011-04-10 01:55 13642904 ----a-w- c:\windows\SysWow64\xlivefnt.dll
2011-04-06 23:26 . 2011-04-06 23:26 96544 ----a-w- c:\windows\system32\dnssd.dll
2011-04-06 23:26 . 2011-04-06 23:26 237856 ----a-w- c:\windows\system32\dnssdX.dll
2011-04-06 23:26 . 2011-04-06 23:26 119584 ----a-w- c:\windows\system32\dns-sd.exe
2011-04-06 23:20 . 2011-04-06 23:20 91424 ----a-w- c:\windows\SysWow64\dnssd.dll
2011-04-06 23:20 . 2011-04-06 23:20 197920 ----a-w- c:\windows\SysWow64\dnssdX.dll
2011-04-06 23:20 . 2011-04-06 23:20 107808 ----a-w- c:\windows\SysWow64\dns-sd.exe
2011-03-21 13:58 . 2011-01-26 08:14 152064 ----a-w- c:\windows\SysWow64\xvid.ax
2011-03-19 15:06 . 2011-01-26 08:14 240640 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2011-03-19 15:04 . 2011-01-26 08:14 650752 ----a-w- c:\windows\SysWow64\xvidcore.dll
2011-03-16 00:40 . 2011-03-16 00:40 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-03-16 00:40 . 2011-03-16 00:40 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-03-16 00:40 . 2011-03-16 00:40 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-03-16 00:40 . 2011-03-16 00:40 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-03-16 00:40 . 2011-03-16 00:40 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-03-16 00:40 . 2011-03-16 00:40 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-03-16 00:40 . 2011-03-16 00:40 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-03-16 00:40 . 2011-03-16 00:40 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-03-16 00:40 . 2011-03-16 00:40 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-03-16 00:40 . 2011-03-16 00:40 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-03-16 00:40 . 2011-03-16 00:40 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2011-03-16 00:40 . 2011-03-16 00:40 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-03-16 00:40 . 2011-03-16 00:40 1797632 ----a-w- c:\windows\SysWow64\jscript9.dll
2011-03-16 00:40 . 2011-03-16 00:40 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-03-16 00:40 . 2011-03-16 00:40 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-03-16 00:40 . 2011-03-16 00:40 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-03-16 00:40 . 2011-03-16 00:40 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-03-16 00:40 . 2011-03-16 00:40 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-03-16 00:40 . 2011-03-16 00:40 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-03-16 00:40 . 2011-03-16 00:40 1126912 ----a-w- c:\windows\SysWow64\wininet.dll
2011-03-16 00:40 . 2011-03-16 00:40 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-03-16 00:40 . 2011-03-16 00:40 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-03-16 00:40 . 2011-03-16 00:40 13086208 ----a-w- c:\windows\system32\ieframe.dll.stp
2011-03-16 00:40 . 2011-03-16 00:40 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-03-16 00:40 . 2011-03-16 00:40 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-03-16 00:40 . 2011-03-16 00:40 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-03-16 00:40 . 2011-03-16 00:40 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-03-16 00:40 . 2011-03-16 00:40 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-03-16 00:40 . 2011-03-16 00:40 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-03-16 00:40 . 2011-03-16 00:40 448512 ----a-w- c:\windows\system32\html.iec
2011-03-16 00:40 . 2011-03-16 00:40 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-03-16 00:40 . 2011-03-16 00:40 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-03-16 00:40 . 2011-03-16 00:40 2303488 ----a-w- c:\windows\system32\jscript9.dll
2011-03-16 00:40 . 2011-03-16 00:40 222208 ----a-w- c:\windows\system32\msls31.dll
2011-03-16 00:40 . 2011-03-16 00:40 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-03-16 00:40 . 2011-03-16 00:40 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-03-16 00:40 . 2011-03-16 00:40 160256 ----a-w- c:\windows\system32\wextract.exe
2011-03-16 00:40 . 2011-03-16 00:40 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-03-16 00:40 . 2011-03-16 00:40 1389056 ----a-w- c:\windows\system32\wininet.dll
2011-03-16 00:40 . 2011-03-16 00:40 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-03-16 00:40 . 2011-03-16 00:40 12288 ----a-w- c:\windows\system32\mshta.exe
2011-03-16 00:40 . 2011-03-16 00:40 114176 ----a-w- c:\windows\system32\admparse.dll
2011-03-16 00:40 . 2011-03-16 00:40 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-03-16 00:39 . 2011-03-16 00:39 982912 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2011-03-16 00:39 . 2011-03-16 00:39 662528 ----a-w- c:\windows\system32\XpsPrint.dll
2011-03-16 00:39 . 2011-03-16 00:39 470016 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-03-16 00:39 . 2011-03-16 00:39 320512 ----a-w- c:\windows\system32\d3d10_1core.dll
2011-03-16 00:39 . 2011-03-16 00:39 265088 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-03-16 00:39 . 2011-03-16 00:39 197120 ----a-w- c:\windows\system32\d3d10_1.dll
2011-03-16 00:39 . 2011-03-16 00:39 1888256 ----a-w- c:\windows\system32\WMVDECOD.DLL
2011-03-16 00:39 . 2011-03-16 00:39 1837568 ----a-w- c:\windows\system32\d3d10warp.dll
2011-03-16 00:39 . 2011-03-16 00:39 1619456 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2011-03-16 00:39 . 2011-03-16 00:39 144384 ----a-w- c:\windows\system32\cdd.dll
2011-03-16 00:39 . 2011-03-16 00:39 1133568 ----a-w- c:\windows\system32\FntCache.dll
2011-03-16 00:39 . 2011-03-16 00:39 1863680 ----a-w- c:\windows\system32\ExplorerFrame.dll.stp
2011-03-16 00:39 . 2011-03-16 00:39 1863680 ----a-w- c:\windows\system32\ExplorerFrame.dll
2011-03-16 00:39 . 2011-03-16 00:39 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-03-16 00:39 . 2011-03-16 00:39 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-03-16 00:39 . 2011-03-16 00:39 442880 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2011-03-16 00:39 . 2011-03-16 00:39 4068864 ----a-w- c:\windows\system32\mf.dll
2011-03-16 00:39 . 2011-03-16 00:39 3181568 ----a-w- c:\windows\SysWow64\mf.dll
2011-03-16 00:39 . 2011-03-16 00:39 283648 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2011-03-16 00:39 . 2011-03-16 00:39 257024 ----a-w- c:\windows\system32\mfreadwrite.dll
2011-03-16 00:39 . 2011-03-16 00:39 229888 ----a-w- c:\windows\system32\XpsRasterService.dll
2011-03-16 00:39 . 2011-03-16 00:39 218624 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2011-03-16 00:39 . 2011-03-16 00:39 206848 ----a-w- c:\windows\system32\mfps.dll
2011-03-16 00:39 . 2011-03-16 00:39 196608 ----a-w- c:\windows\SysWow64\mfreadwrite.dll
2011-03-16 00:39 . 2011-03-16 00:39 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2011-03-16 00:39 . 2011-03-16 00:39 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-03-16 00:39 . 2011-03-16 00:39 1495040 ----a-w- c:\windows\SysWow64\ExplorerFrame.dll
2011-03-16 00:39 . 2011-03-16 00:39 135168 ----a-w- c:\windows\SysWow64\XpsRasterService.dll
2011-03-16 00:39 . 2011-03-16 00:39 1170944 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2011-03-16 00:39 . 2011-03-16 00:39 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2011-05-29_04.04.04 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-14 05:10 . 2011-06-03 19:32 56282 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2009-11-08 11:41 . 2011-06-03 19:32 23214 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3266427099-1654195687-2890988620-1001_UserData.bin
- 2009-11-08 11:36 . 2011-05-27 09:22 49152 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-11-08 11:36 . 2011-05-31 16:52 49152 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-01-12 23:18 . 2011-05-27 09:22 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-01-12 23:18 . 2011-05-31 16:52 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-05-27 09:22 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2011-05-31 16:52 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-05-29 08:13 . 2011-05-29 08:13 9560 c:\windows\system32\NetworkList\Icons\{62C251C5-0528-4975-A6D7-B6E04E092F36}_48.bin
+ 2011-05-29 08:13 . 2011-05-29 08:13 4280 c:\windows\system32\NetworkList\Icons\{62C251C5-0528-4975-A6D7-B6E04E092F36}_32.bin
+ 2011-05-29 08:13 . 2011-05-29 08:13 2456 c:\windows\system32\NetworkList\Icons\{62C251C5-0528-4975-A6D7-B6E04E092F36}_24.bin
- 2011-05-29 04:01 . 2011-05-29 04:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-06-03 19:30 . 2011-06-03 19:30 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-05-29 04:01 . 2011-05-29 04:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-06-03 19:30 . 2011-06-03 19:30 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-11-08 12:00 . 2011-06-03 19:32 100228 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 02:36 . 2011-06-02 04:40 792014 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2011-05-27 09:24 792014 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2011-05-27 09:24 162876 c:\windows\system32\perfc009.dat
+ 2009-07-14 02:36 . 2011-06-02 04:40 162876 c:\windows\system32\perfc009.dat
- 2009-07-14 05:01 . 2011-05-29 03:59 544972 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2011-06-03 19:27 544972 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 02:34 . 2011-05-24 11:20 9961472 c:\windows\system32\SMI\Store\Machine\schema.dat
+ 2009-07-14 02:34 . 2011-05-29 12:16 9961472 c:\windows\system32\SMI\Store\Machine\schema.dat
+ 2010-04-30 09:17 . 2011-06-03 19:27 24735364 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3266427099-1654195687-2890988620-1001-12288.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files (x86)\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"ISUSPM"="c:\program files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2008-10-24 206112]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [BU]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ATICustomerCare"="c:\program files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe" [2011-01-27 311296]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-26 98304]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-03-28 281768]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"TaskTray"="" [BU]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-12-21 443728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"HideFastUserSwitching"= 1 (0x1)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"HideSCABattery"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files (x86)\SUPERAntiSpyware\SASSEH.DLL" [2011-01-27 77824]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 22:21 548352 ----a-w- c:\program files (x86)\SUPERAntiSpyware\SASWINLO.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R1 SASDIFSV;SASDIFSV;c:\program files (x86)\SUPERAntiSpyware\SASDIFSV.SYS [2010-01-05 9968]
R1 SASKUTIL;SASKUTIL;c:\program files (x86)\SUPERAntiSpyware\SASKUTIL.sys [2010-01-05 74480]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 A_USBETHMP;USB PowerPacket Network Adapter;c:\windows\system32\Drivers\usbethmp.sys [x]
R3 Amazon Download Agent;Amazon Download Agent;c:\program files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe [2009-10-23 401920]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 dump_wmimmc;dump_wmimmc;c:\ijji\ENGLISH\Gunz\GameGuard\dump_wmimmc.sys [x]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\MAGIX\Common\Database\bin\fbserver.exe [x]
R3 ivusb;Initio Driver for USB Default Controller;c:\windows\system32\DRIVERS\ivusb.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
R3 SASENUM;SASENUM;c:\program files (x86)\SUPERAntiSpyware\SASENUM.SYS [2010-01-05 7408]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]
R3 WLRAWMp50x64;WLRAWMp50x64 NDIS Protocol Driver;c:\windows\system32\Drivers\WLRAWMp50x64.sys [x]
R3 WLRAWSp50x64;WLRAWSp50x64 NDIS Protocol Driver;c:\windows\system32\Drivers\WLRAWSp50x64.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 HWiNFO32;HWiNFO32 Kernel Driver;c:\program files (x86)\HWiNFO32\HWiNFO64A.SYS [2010-09-30 28032]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-03-28 136360]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [2010-12-16 373640]
S2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files (x86)\LogMeIn\x64\RaInfo.sys [2010-05-31 15928]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2010-12-21 363344]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2010-11-27 398176]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-04-15 2280312]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 19:11 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2011-06-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3266427099-1654195687-2890988620-1001Core.job
- c:\users\Moshe\AppData\Local\Google\Update\GoogleUpdate.exe [2009-11-23 10:45]
.
2011-06-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3266427099-1654195687-2890988620-1001UA.job
- c:\users\Moshe\AppData\Local\Google\Update\GoogleUpdate.exe [2009-11-23 10:45]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Moshe\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NVRaidService"="c:\windows\system32\nvraidservice.exe" [2009-07-01 291872]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-01-12 172032]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
"LogMeIn GUI"="c:\program files (x86)\LogMeIn\x64\LogMeInSystray.exe" [2010-05-31 57928]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2010-07-22 2306448]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2010-10-28 1680976]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
FF - ProfilePath - c:\users\Moshe\AppData\Roaming\Mozilla\Firefox\Profiles\bmls2zrs.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - user.js: keyword.enabled - 1
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3266427099-1654195687-2890988620-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:3a,8d,38,65,cd,ba,ed,60,49,2a,2c,96,f3,f0,a1,c9,87,5f,a5,06,ac,68,2b,
d4,b5,9a,4c,2d,fc,61,b5,6c,51,6d,e6,fd,c2,51,24,4f,cc,49,1f,7b,68,8a,77,6b,\
"??"=hex:55,49,5f,38,8c,63,1b,2b,7c,7a,62,ef,a5,dd,dd,db
.
[HKEY_USERS\S-1-5-21-3266427099-1654195687-2890988620-1001\Software\SecuROM\License information*]
"datasecu"=hex:02,e8,37,32,cb,ec,d6,d1,af,57,63,70,81,eb,49,17,f1,90,59,99,ab,
c0,42,fa,e4,66,7f,80,51,a7,46,17,35,a4,f0,a2,42,e4,f4,ac,a7,2e,6e,97,04,c3,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus\1]
@="131473"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files (x86)\TeamViewer\Version6\TeamViewer.exe
.
**************************************************************************
.
Completion time: 2011-06-03 12:36:54 - machine was rebooted
ComboFix-quarantined-files.txt 2011-06-03 19:36
ComboFix2.txt 2011-05-29 08:23
ComboFix3.txt 2011-05-29 04:08
ComboFix4.txt 2011-05-20 01:57
ComboFix5.txt 2011-06-03 19:15
.
Pre-Run: 31,781,068,800 bytes free
Post-Run: 31,254,953,984 bytes free
.
- - End Of File - - 1E554DF90C15D2284F1BB6FE254F27C3
MarkA
Regular Member
 
Posts: 27
Joined: May 13th, 2011, 9:07 pm

Re: Some Applications wont open, and some websites wont load

Unread postby Alander » June 5th, 2011, 7:35 am

Hi your latest set of logs appear to be clean!

Time for some housekeeping
  • Click on Start >> Run...
  • Now type in ComboFix /Uninstall into the box and click OK.
  • Note the space between the X and the /Uninstall, it needs to be there.
    Image
The above procedure will reset your System Restore and clear out the backups and quarantines created during the course of this fix.
Next

OTC

Download OTC by Old Timer and save it to your Desktop. This tool will remove all the tools we used to clean your pc.

  • Right-click OTC.exe And select " Run as administrator " to run it.
  • Click the CleanUp! button
  • Select Yes when the Begin cleanup Process? Prompt appears
  • If you are prompted to Reboot during the cleanup, select Yes
  • The tool will delete itself once it finishes, if not delete it by yourself

Note: If you receive a warning from your firewall or other security programs regarding OTC attempting to contact the internet, please allow it to do so.


You can now delete any tools we used if they remain on your Desktop.

Now that you are clean, please follow these simple steps in order to keep your computer clean and secure:
Protection Programs
Don't forget to re-enable any protection programs we disabled during your fix.

Now we needed to deal with security vulnerabilities
Java(TM) 6 Update 24


Your Java is out of date.

It can be updated by the Java control panel
  • click on Start > Control Panel (Classic View) > Java (looks like a coffee cup) > Update Tab > Update Now.
  • An update should begin.
  • Just follow the prompts.


Here are some free programs I recommend that could help you improve your computer's security.

Install SiteAdvisor
SiteAdvisor is a toolbar for Microsoft Internet Explorer and Mozilla Firefox which alerts you if you're about to enter a potentially dangerous website.
You can find more information and download it from Here

Install WinPatrol
As a robust security monitor, WinPatrol will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge.
For more information, please visit HERE

MVPS Hosts

Install MVPS Hosts File From Here
The MVPS Hosts file replaces your current HOSTS file with one containing well know ad sites etc. Basically, this prevents your computer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer.
You can Find the Tutorial HERE

Update your Antivirus programs and other security products regularly to avoid new threats that could infect your system.
You can use one of these sites to check if any updates are needed for your pc.
Secunia Software Inspector
F-secure Health Check

Visit Microsoft often to get the latest updates for your computer
You can do that HERE

Read some information HERE On how to prevent Malware

Please read the article below which will give you a few suggestions for how to minimize your chances of getting another infection.
Computer Security - a short guide to staying safer online
Also please read this great article How to prevent Malware by miekiemoes.
I would be grateful if you could reply to this post so that I know you have read it and, if you've no other questions, the thread can be closed.

Practice Safe surfing!
User avatar
Alander
Regular Member
 
Posts: 1599
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: Some Applications wont open, and some websites wont load

Unread postby Alander » June 8th, 2011, 2:46 am

3 Day Response
hi
It has been 2 days since my last post to you.
  • Do you still need help with this problem?
  • Do you need more time?
  • Are you having problems understanding or following my instructions?
Just let me know what's going on otherwise...
After 24 hrs., if you have not replied to this thread... it will be closed!
User avatar
Alander
Regular Member
 
Posts: 1599
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: Some Applications wont open, and some websites wont load

Unread postby deltalima » June 9th, 2011, 3:45 am

As this issue appears to be resolved, this topic is now closed.

We are pleased we could help you resolve your computer's malware issues.

If you would like to make a comment or leave a compliment regarding the help you have received, please see Feedback for Our Helpers - Say "Thanks" Here.
User avatar
deltalima
Admin/Teacher
Admin/Teacher
 
Posts: 7614
Joined: February 28th, 2009, 4:38 pm
Location: UK
Advertisement
Register to Remove

Previous

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 36 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware