ComboFix 09-07-14.08 - Ivan 18/07/2009 22:00.2.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.511.167 [GMT -4:00]
Running from: c:\documents and settings\Ivan\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Ivan\Desktop\CFScript.txt
AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FILE ::
"e:\documents and settings\Ivan\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\eRT.jar-7fa2058c-39daf171.zip"
"e:\documents and settings\Ivan\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\jvmimpro.jar-51fad18-58b62bbb.zip"
"e:\documents and settings\Ivan\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\nRT.jar-470d71e-50210cad.zip"
"f:\i386\Apps\APP15425\src\HPSummer2005.exe"
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
e:\documents and settings\Ivan\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\eRT.jar-7fa2058c-39daf171.zip
e:\documents and settings\Ivan\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\jvmimpro.jar-51fad18-58b62bbb.zip
e:\documents and settings\Ivan\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\nRT.jar-470d71e-50210cad.zip
f:\i386\Apps\APP15425\src\HPSummer2005.exe
.
((((((((((((((((((((((((( Files Created from 2009-06-19 to 2009-07-19 )))))))))))))))))))))))))))))))
.
2009-07-19 01:39 . 2009-07-06 16:25 327688 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgldx86.sys
2009-07-19 01:39 . 2009-07-06 16:25 2052376 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgcorex.dll
2009-07-19 01:39 . 2009-07-06 16:25 493336 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgtbapi.dll
2009-07-19 01:39 . 2009-07-06 16:25 2167576 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgresf.dll
2009-07-19 01:39 . 2009-07-06 16:25 3402008 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgui.exe
2009-07-19 01:39 . 2009-07-06 16:25 2301208 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avguiadv.dll
2009-07-19 01:39 . 2009-07-06 16:25 1204504 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgabout.dll
2009-07-19 01:39 . 2009-07-06 16:25 337176 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avglogx.dll
2009-07-19 01:39 . 2009-07-06 16:25 829208 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgcfgx.dll
2009-07-19 01:39 . 2009-07-06 16:25 353048 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgxch32.dll
2009-07-19 01:39 . 2009-07-06 16:25 3298072 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\setup.exe
2009-07-19 01:38 . 2009-07-06 16:20 1454360 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgupd.dll
2009-07-19 01:38 . 2009-07-06 16:20 1085208 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgupd.exe
2009-07-17 21:29 . 2009-07-17 21:29 -------- d-----w- c:\documents and settings\Ivan\Local Settings\Application Data\Temp
2009-07-15 16:16 . 2008-04-14 00:11 21504 ----a-w- c:\windows\system32\drivers\hidserv.dll
2009-07-15 16:03 . 2009-04-30 21:22 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2009-07-15 16:03 . 2009-04-30 21:22 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2009-07-15 15:39 . 2009-06-14 20:07 1004800 ----a-w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar\IEToolbar.dll
2009-07-14 22:25 . 2009-07-14 22:26 -------- d-----w- C:\rsit
2009-07-14 18:41 . 2001-03-06 04:20 40448 ----a-w- c:\windows\system32\drivers\DGIVECP.SYS
2009-07-14 18:41 . 2009-07-14 18:41 -------- d-----w- c:\program files\Samsung
2009-07-14 17:35 . 2009-07-14 17:35 -------- d-----w- c:\windows\Sun
2009-07-13 23:21 . 2009-07-13 17:36 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-07-13 23:21 . 2009-07-13 23:21 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-07-13 23:21 . 2009-07-13 17:36 19096 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-07-09 18:32 . 2009-07-09 18:32 -------- d--h--w- c:\windows\PIF
2009-07-09 17:25 . 2009-07-09 17:25 410984 ----a-w- c:\windows\system32\deploytk.dll
2009-07-09 17:25 . 2009-07-09 17:25 -------- d-----w- c:\program files\Java
2009-07-09 17:25 . 2009-07-09 17:25 152576 ----a-w- c:\documents and settings\Ivan\Application Data\Sun\Java\jre1.6.0_14\lzma.dll
2009-07-09 17:09 . 2001-08-17 17:56 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2009-07-09 17:09 . 2001-08-17 17:56 7552 ----a-w- c:\windows\system32\drivers\SONYPVU1.SYS
2009-07-08 16:38 . 2009-07-08 16:38 -------- d-----w- c:\program files\Trend Micro
2009-07-06 16:28 . 2009-07-06 16:28 -------- d-----w- c:\documents and settings\Ivan\Local Settings\Application Data\AVG Security Toolbar
2009-07-06 16:27 . 2009-07-06 16:25 832144 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\AVGToolbarInstall.exe
2009-07-06 16:27 . 2009-07-15 15:39 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar
2009-06-24 20:00 . 2009-06-24 20:00 -------- d-----w- c:\documents and settings\Ivan\Application Data\Malwarebytes
2009-06-24 20:00 . 2009-06-24 20:00 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-06-23 17:07 . 2009-06-24 19:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Lavasoft
2009-06-23 16:43 . 2009-06-23 16:43 -------- d-----w- c:\documents and settings\MAIN\Local Settings\Application Data\Mozilla
2009-06-23 03:53 . 2009-06-23 03:53 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Mozilla
2009-06-23 03:24 . 2009-06-23 03:24 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache
2009-06-22 21:47 . 2009-06-22 21:47 -------- d-sh--w- c:\documents and settings\MAIN\IECompatCache
2009-06-22 21:46 . 2009-06-22 21:46 -------- d-sh--w- c:\documents and settings\MAIN\PrivacIE
2009-06-22 21:46 . 2009-06-22 21:47 -------- d-----w- c:\documents and settings\MAIN\Application Data\AVGTOOLBAR
2009-06-22 21:45 . 2009-06-22 21:45 -------- d-----w- c:\documents and settings\MAIN\Local Settings\Application Data\Apple Computer
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-19 01:39 . 2009-04-03 17:34 335752 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2009-07-15 16:16 . 2009-07-15 16:16 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
2009-07-15 16:16 . 2009-07-15 16:16 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2009-07-14 18:41 . 2009-04-01 00:31 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-07-14 00:49 . 2009-04-04 01:22 -------- d-----w- c:\documents and settings\Ivan\Application Data\dvdcss
2009-07-06 16:25 . 2009-04-03 17:34 11952 ----a-w- c:\windows\system32\avgrsstx.dll
2009-07-06 16:25 . 2009-04-03 17:34 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2009-06-23 17:21 . 2009-04-03 22:33 -------- d-----w- c:\program files\Bonjour
2009-06-16 14:36 . 2004-08-04 12:00 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-06-16 14:36 . 2004-08-04 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-06-03 19:09 . 2004-08-04 12:00 1291264 ----a-w- c:\windows\system32\quartz.dll
2009-05-22 00:37 . 2009-05-21 23:51 -------- d-----w- c:\documents and settings\LocalService\Application Data\AVGTOOLBAR
2009-05-22 00:15 . 2009-04-08 13:09 -------- d-----w- c:\documents and settings\Ivan\Application Data\DivX
2009-05-13 05:15 . 2004-08-04 12:00 915456 ----a-w- c:\windows\system32\wininet.dll
2009-05-09 05:14 . 2009-05-09 05:14 1418120 ----a-w- c:\windows\system32\wdfcoinstaller01005.dll
2009-05-09 05:14 . 2009-05-09 05:14 14736 ----a-w- c:\windows\system32\drivers\nuidfltr.sys
2009-05-07 15:32 . 2004-08-04 12:00 345600 ----a-w- c:\windows\system32\localspl.dll
2009-05-02 15:00 . 2009-04-03 17:34 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2009-06-12 18:51 . 2009-04-08 03:12 134648 ----a-w- c:\program files\mozilla firefox\components\brwsrcmp.dll
2009-02-24 19:34 . 2009-02-24 19:34 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-02-24 19:34 . 2009-02-24 19:34 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-07-15_15.31.32 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-19 01:36 . 2009-07-19 01:36 16384 c:\windows\Temp\Perflib_Perfdata_710.dat
+ 2009-07-15 16:16 . 2008-04-14 00:11 21504 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\hidserv.dll
- 2004-08-04 12:00 . 2009-03-08 08:33 25600 c:\windows\system32\jsproxy.dll
+ 2004-08-04 12:00 . 2009-04-30 21:22 25600 c:\windows\system32\jsproxy.dll
+ 2006-11-02 11:22 . 2006-11-02 11:22 32224 c:\windows\system32\drivers\wdfldr.sys
+ 2007-08-13 22:54 . 2009-04-30 21:22 25600 c:\windows\system32\dllcache\jsproxy.dll
- 2007-08-13 22:54 . 2009-03-08 08:33 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-06-16 14:36 . 2009-06-16 14:36 81920 c:\windows\system32\dllcache\fontsub.dll
+ 2009-04-01 01:48 . 2009-07-15 16:17 90112 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\xlicons.exe
- 2009-04-01 01:48 . 2009-05-13 02:12 90112 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\xlicons.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 45056 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\wordicon.exe
- 2009-04-01 01:48 . 2009-05-13 02:12 45056 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\wordicon.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 22528 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\unbndico.exe
- 2009-04-01 01:48 . 2009-05-13 02:12 22528 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\unbndico.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 30720 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\pptico.exe
- 2009-04-01 01:48 . 2009-05-13 02:12 30720 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\pptico.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 16384 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\PEicons.exe
- 2009-04-01 01:48 . 2009-05-13 02:12 16384 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\PEicons.exe
- 2009-04-01 01:48 . 2009-05-13 02:12 34304 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\misc.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 34304 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\misc.exe
- 2009-04-01 01:48 . 2009-05-13 02:12 81920 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\fpicon.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 81920 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\fpicon.exe
+ 2009-07-15 16:16 . 2009-03-08 08:33 12288 c:\windows\ie8updates\KB969897-IE8\xpshims.dll
+ 2009-07-15 16:16 . 2009-03-08 08:33 25600 c:\windows\ie8updates\KB969897-IE8\jsproxy.dll
- 2009-04-01 01:48 . 2009-05-13 02:12 3584 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\opwicon.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 3584 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\opwicon.exe
- 2009-04-01 01:48 . 2009-05-13 02:12 8192 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\mspicons.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 8192 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\mspicons.exe
- 2009-04-01 01:48 . 2009-05-13 02:12 2560 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\cagicon.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 2560 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\cagicon.exe
+ 2004-08-04 12:00 . 2009-04-15 14:51 585216 c:\windows\system32\rpcrt4.dll
+ 2004-08-04 12:00 . 2009-04-30 21:22 385536 c:\windows\system32\iedkcs32.dll
+ 2004-08-04 12:00 . 2009-04-30 11:21 173056 c:\windows\system32\ie4uinit.exe
- 2004-08-04 12:00 . 2009-03-08 08:32 173056 c:\windows\system32\ie4uinit.exe
- 2009-03-31 18:58 . 2009-04-03 16:42 110992 c:\windows\system32\FNTCACHE.DAT
+ 2009-03-31 18:58 . 2009-07-15 20:23 110992 c:\windows\system32\FNTCACHE.DAT
+ 2006-11-02 11:22 . 2006-11-02 11:22 492000 c:\windows\system32\drivers\wdf01000.sys
+ 2009-04-01 01:59 . 2009-05-13 05:15 915456 c:\windows\system32\dllcache\wininet.dll
+ 2009-06-16 14:36 . 2009-06-16 14:36 119808 c:\windows\system32\dllcache\t2embed.dll
+ 2009-04-15 14:51 . 2009-04-15 14:51 585216 c:\windows\system32\dllcache\rpcrt4.dll
+ 2009-05-07 15:32 . 2009-05-07 15:32 345600 c:\windows\system32\dllcache\localspl.dll
+ 2007-08-13 22:39 . 2009-04-30 21:22 385536 c:\windows\system32\dllcache\iedkcs32.dll
+ 2007-08-13 22:39 . 2009-04-30 11:21 173056 c:\windows\system32\dllcache\ie4uinit.exe
- 2007-08-13 22:39 . 2009-03-08 08:32 173056 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-04-20 18:59 . 2009-04-20 18:59 219648 c:\windows\Installer\6c66c5.msp
- 2009-04-01 01:48 . 2009-05-13 02:12 114688 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\outicon.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 114688 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\outicon.exe
- 2009-04-01 01:48 . 2009-05-13 02:12 167936 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\accicons.exe
+ 2009-04-01 01:48 . 2009-07-15 16:17 167936 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\accicons.exe
+ 2009-07-15 16:16 . 2009-03-08 08:34 914944 c:\windows\ie8updates\KB969897-IE8\wininet.dll
+ 2009-07-15 16:16 . 2008-07-09 07:38 382840 c:\windows\ie8updates\KB969897-IE8\spuninst\updspapi.dll
+ 2009-07-15 16:16 . 2007-11-30 12:39 231288 c:\windows\ie8updates\KB969897-IE8\spuninst\spuninst.exe
+ 2009-07-15 16:16 . 2009-03-08 08:33 246784 c:\windows\ie8updates\KB969897-IE8\ieproxy.dll
+ 2009-07-15 16:16 . 2009-03-08 18:09 391536 c:\windows\ie8updates\KB969897-IE8\iedkcs32.dll
+ 2009-07-15 16:16 . 2009-03-08 08:32 173056 c:\windows\ie8updates\KB969897-IE8\ie4uinit.exe
+ 2004-08-04 12:00 . 2009-04-17 12:26 1847168 c:\windows\system32\win32k.sys
+ 2004-08-04 12:00 . 2009-04-30 21:22 1207808 c:\windows\system32\urlmon.dll
+ 2004-08-04 12:00 . 2009-05-13 05:15 5936128 c:\windows\system32\mshtml.dll
- 2007-08-13 22:34 . 2009-03-08 08:32 1985024 c:\windows\system32\iertutil.dll
+ 2007-08-13 22:34 . 2009-04-30 21:22 1985024 c:\windows\system32\iertutil.dll
+ 2009-02-09 11:13 . 2009-04-17 12:26 1847168 c:\windows\system32\dllcache\win32k.sys
+ 2009-04-01 01:59 . 2009-04-30 21:22 1207808 c:\windows\system32\dllcache\urlmon.dll
+ 2008-05-07 05:12 . 2009-06-03 19:09 1291264 c:\windows\system32\dllcache\quartz.dll
+ 2009-04-01 01:59 . 2009-05-13 05:15 5936128 c:\windows\system32\dllcache\mshtml.dll
- 2009-04-03 16:49 . 2009-03-08 08:32 1985024 c:\windows\system32\dllcache\iertutil.dll
+ 2009-04-03 16:49 . 2009-04-30 21:22 1985024 c:\windows\system32\dllcache\iertutil.dll
+ 2009-04-29 19:03 . 2009-04-29 19:03 8404992 c:\windows\Installer\6c66b0.msp
+ 2009-07-15 16:16 . 2009-03-08 08:34 1206784 c:\windows\ie8updates\KB969897-IE8\urlmon.dll
+ 2009-07-15 16:16 . 2009-03-08 08:41 5937152 c:\windows\ie8updates\KB969897-IE8\mshtml.dll
+ 2009-07-15 16:16 . 2009-03-08 08:32 1985024 c:\windows\ie8updates\KB969897-IE8\iertutil.dll
+ 2009-04-03 16:47 . 2009-07-07 12:10 24539592 c:\windows\system32\MRT.exe
+ 2007-08-13 22:54 . 2009-04-30 21:22 11064832 c:\windows\system32\ieframe.dll
+ 2009-04-03 16:49 . 2009-04-30 21:22 11064832 c:\windows\system32\dllcache\ieframe.dll
+ 2009-05-05 22:06 . 2009-05-05 22:06 17515008 c:\windows\Installer\6c66db.msp
+ 2009-07-15 16:16 . 2009-03-08 08:39 11063808 c:\windows\ie8updates\KB969897-IE8\ieframe.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll" [2009-06-14 1004800]
[HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2009-06-14 20:07 1004800 ----a-w- c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll" [2009-06-14 1004800]
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll" [2009-06-14 1004800]
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"WeatherEye"="c:\program files\TheWeatherNetwork\WeatherEye\WeatherEye.exe" [2009-01-16 4519832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"D-Link AirPlus G"="c:\program files\D-Link\AirPlus G\AirGCFG.exe" [2007-04-14 1556480]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-06-16 221184]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-06-16 81920]
"ANIWZCS2Service"="c:\program files\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2007-01-19 49152]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-07-06 1948440]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-03-13 342312]
"HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2003-12-22 241664]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb10.exe" [2006-01-14 172032]
"HP Software Update"="c:\program files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe" [2006-01-14 49152]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-09 148888]
"AGRSMMSG"="AGRSMMSG.exe" - c:\windows\AGRSMMSG.exe [2004-06-29 88363]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-07-06 16:25 11952 ----a-w- c:\windows\system32\avgrsstx.dll
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgnsx.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [03/04/2009 1:34 PM 335752]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [03/04/2009 1:34 PM 108552]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [03/04/2009 1:34 PM 298776]
S2 gupdate1c9b7fb7c544d86;Google Update Service (gupdate1c9b7fb7c544d86);c:\program files\Google\Update\GoogleUpdate.exe [07/04/2009 11:38 PM 133104]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder
2009-07-15 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 16:34]
2009-07-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-08 03:38]
2009-07-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-08 03:38]
2009-07-19 c:\windows\Tasks\User_Feed_Synchronization-{6A80E6E1-CD35-4AF1-B1BA-97A1D29FD298}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 08:31]
.
.
------- Supplementary Scan -------
.
uStart Page =
hxxp://www.google.ca/uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Ivan\Application Data\Mozilla\Firefox\Profiles\yun62npp.default\
FF - prefs.js: browser.startup.homepage -
hxxp://www.google.ca/FF - component: c:\program files\AVG\AVG8\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll
FF - component: c:\program files\AVG\AVG8\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: c:\program files\AVG\AVG8\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: c:\program files\AVG\AVG8\Toolbar\Firefox\avg@igeared\components\xpavgtbapi.dll
FF - plugin: c:\program files\Google\Update\1.2.183.7\npGoogleOneClick8.dll
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2009-07-18 22:04
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2009-07-19 22:05
ComboFix-quarantined-files.txt 2009-07-19 02:05
ComboFix2.txt 2009-07-15 15:32
Pre-Run: 151,051,612,160 bytes free
Post-Run: 151,104,552,960 bytes free
265 --- E O F --- 2009-07-15 16:17
DDS (Ver_09-06-26.01) - NTFSx86
Run by Ivan at 22:07:03.48 on 18/07/2009
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_14
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.511.180 [GMT -4:00]
AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TheWeatherNetwork\WeatherEye\WeatherEye.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Ivan\Desktop\dds.scr
============== Pseudo HJT Report ===============
uStart Page =
hxxp://www.google.ca/uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: H - No File
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [WeatherEye] c:\program files\theweathernetwork\weathereye\WeatherEye.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [D-Link AirPlus G] c:\program files\d-link\airplus g\AirGCFG.exe
mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [ANIWZCS2Service] c:\program files\ani\aniwzcs2 service\WZCSLDR2.exe
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [AGRSMMSG] AGRSMMSG.exe
mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe"
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb10.exe
mRun: [HP Software Update] "c:\program files\hewlett-packard\hp software update\HPWuSchd2.exe"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office10\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} -
hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cabDPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} -
hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cabDPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -
hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cabDPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} -
hxxp://fpdownload.macromedia.com/pub/sh ... wflash.cabHandler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: avgrsstarter - avgrsstx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\ivan\applic~1\mozilla\firefox\profiles\yun62npp.default\
FF - prefs.js: browser.startup.homepage -
hxxp://www.google.ca/FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\xpavgtbapi.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
============= SERVICES / DRIVERS ===============
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-4-3 335752]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2009-4-3 27784]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-4-3 108552]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-4-3 298776]
S2 gupdate1c9b7fb7c544d86;Google Update Service (gupdate1c9b7fb7c544d86);c:\program files\google\update\GoogleUpdate.exe [2009-4-7 133104]
=============== Created Last 30 ================
2009-07-18 21:59 <DIR> --ds---- C:\ComboFix
2009-07-15 12:16 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
2009-07-15 12:16 0 a---h--- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2009-07-15 12:16 21,504 a------- c:\windows\system32\drivers\hidserv.dll
2009-07-15 12:03 246,272 -c------ c:\windows\system32\dllcache\ieproxy.dll
2009-07-15 12:03 12,800 -c------ c:\windows\system32\dllcache\xpshims.dll
2009-07-15 11:31 <DIR> -cd----- c:\windows\system32\dllcache\cache
2009-07-15 11:27 <DIR> a-dshr-- C:\cmdcons
2009-07-15 11:18 219,648 a------- c:\windows\PEV.exe
2009-07-15 11:18 161,792 a------- c:\windows\SWREG.exe
2009-07-15 11:18 98,816 a------- c:\windows\sed.exe
2009-07-14 14:41 40,448 a------- c:\windows\system32\drivers\DGIVECP.SYS
2009-07-14 14:41 766 a------- c:\windows\Uninstall.ico
2009-07-14 14:41 <DIR> --d----- c:\program files\Samsung
2009-07-13 19:21 38,160 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-07-13 19:21 19,096 a------- c:\windows\system32\drivers\mbam.sys
2009-07-13 19:21 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-07-09 14:32 <DIR> --d-h--- c:\windows\PIF
2009-07-09 13:25 410,984 a------- c:\windows\system32\deploytk.dll
2009-07-09 13:25 73,728 a------- c:\windows\system32\javacpl.cpl
2009-07-09 13:09 7,552 ac------ c:\windows\system32\dllcache\sonypvu1.sys
2009-07-09 13:09 7,552 a------- c:\windows\system32\drivers\SONYPVU1.SYS
2009-07-08 12:38 <DIR> --d----- c:\program files\Trend Micro
2009-07-06 12:27 <DIR> --d----- c:\docume~1\alluse~1\applic~1\AVG Security Toolbar
2009-06-24 16:00 <DIR> --d----- c:\docume~1\ivan\applic~1\Malwarebytes
2009-06-24 16:00 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
==================== Find3M ====================
2009-07-18 21:39 335,752 a------- c:\windows\system32\drivers\avgldx86.sys
2009-07-06 12:25 11,952 a------- c:\windows\system32\avgrsstx.dll
2009-06-16 10:36 119,808 a------- c:\windows\system32\t2embed.dll
2009-06-16 10:36 81,920 a------- c:\windows\system32\fontsub.dll
2009-06-03 15:09 1,291,264 a------- c:\windows\system32\quartz.dll
2009-05-13 01:15 915,456 a------- c:\windows\system32\wininet.dll
2009-05-09 01:14 1,418,120 a------- c:\windows\system32\wdfcoinstaller01005.dll
2009-05-07 11:32 345,600 a------- c:\windows\system32\localspl.dll
============= FINISH: 22:07:11.82 ===============
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_09-06-26.01)
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume3
Install Date: 31/03/2009 8:22:41 PM
System Uptime: 18/07/2009 9:35:20 PM (1 hours ago)
Motherboard: ASUSTek Computer INC. | | Salmon
Processor: AMD Sempron(tm) Processor 3100+ | Socket 754 | 1808/200mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 149 GiB total, 140.751 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 143 GiB total, 37.06 GiB free.
F: is FIXED (FAT32) - 6 GiB total, 1.044 GiB free.
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP43: 20/04/2009 12:32:26 PM - System Checkpoint
RP44: 21/04/2009 5:56:18 PM - Software Distribution Service 3.0
RP45: 22/04/2009 11:17:35 AM - Software Distribution Service 3.0
RP46: 22/04/2009 11:28:06 PM - Software Distribution Service 3.0
RP47: 23/04/2009 10:41:41 AM - Installed HP Deskjet 3840
RP48: 23/04/2009 10:42:50 AM - Installed HP Software Update
RP49: 24/04/2009 11:33:18 AM - System Checkpoint
RP50: 24/04/2009 12:54:35 PM - Software Distribution Service 3.0
RP51: 26/04/2009 5:49:48 PM - System Checkpoint
RP52: 27/04/2009 6:29:48 PM - System Checkpoint
RP53: 29/04/2009 10:57:41 AM - System Checkpoint
RP54: 30/04/2009 2:04:33 PM - System Checkpoint
RP55: 01/05/2009 5:36:22 PM - System Checkpoint
RP56: 02/05/2009 11:00:06 AM - Avg8 Update
RP57: 02/05/2009 11:00:46 AM - Avg8 Update
RP58: 04/05/2009 4:46:56 PM - System Checkpoint
RP59: 05/05/2009 5:52:57 PM - System Checkpoint
RP60: 06/05/2009 6:15:49 PM - System Checkpoint
RP61: 08/05/2009 12:03:25 AM - System Checkpoint
RP62: 11/05/2009 6:46:01 PM - System Checkpoint
RP63: 12/05/2009 7:28:36 PM - Avg8 Update
RP64: 12/05/2009 10:10:28 PM - Software Distribution Service 3.0
RP65: 14/05/2009 11:10:38 AM - System Checkpoint
RP66: 18/05/2009 2:43:44 PM - System Checkpoint
RP67: 19/05/2009 8:15:27 PM - Avg8 Update
RP68: 19/05/2009 8:16:14 PM - Avg8 Update
RP69: 21/05/2009 7:56:21 PM - System Checkpoint
RP70: 24/05/2009 5:58:54 PM - System Checkpoint
RP71: 26/05/2009 6:46:24 PM - System Checkpoint
RP72: 29/05/2009 2:09:36 PM - System Checkpoint
RP73: 30/05/2009 2:49:46 PM - System Checkpoint
RP74: 01/06/2009 7:49:46 PM - System Checkpoint
RP75: 03/06/2009 8:06:19 PM - System Checkpoint
RP76: 04/06/2009 8:34:21 PM - System Checkpoint
RP77: 05/06/2009 9:00:54 PM - System Checkpoint
RP78: 07/06/2009 3:20:24 PM - System Checkpoint
RP79: 08/06/2009 5:41:31 PM - System Checkpoint
RP80: 09/06/2009 6:58:34 PM - System Checkpoint
RP81: 10/06/2009 9:36:28 PM - System Checkpoint
RP82: 12/06/2009 12:50:23 PM - System Checkpoint
RP83: 14/06/2009 10:36:01 AM - System Checkpoint
RP84: 15/06/2009 2:37:09 PM - System Checkpoint
RP85: 16/06/2009 7:01:05 PM - System Checkpoint
RP86: 17/06/2009 7:14:10 PM - System Checkpoint
RP87: 20/06/2009 11:27:54 AM - System Checkpoint
RP88: 21/06/2009 8:55:32 PM - System Checkpoint
RP89: 22/06/2009 9:31:05 PM - System Checkpoint
RP90: 23/06/2009 10:31:00 PM - System Checkpoint
RP91: 24/06/2009 2:36:06 PM - Installed Ad-Aware
RP92: 24/06/2009 3:39:08 PM - Removed Ad-Aware
RP93: 25/06/2009 8:11:53 PM - System Checkpoint
RP94: 28/06/2009 5:46:57 PM - System Checkpoint
RP95: 06/07/2009 12:20:12 PM - Avg8 Update
RP96: 06/07/2009 12:26:45 PM - Avg8 Update
RP97: 07/07/2009 12:56:33 PM - System Checkpoint
RP98: 08/07/2009 5:03:40 PM - System Checkpoint
RP99: 09/07/2009 1:25:35 PM - Installed Java(TM) 6 Update 14
RP100: 10/07/2009 1:34:20 PM - System Checkpoint
RP101: 11/07/2009 1:50:33 PM - System Checkpoint
RP102: 13/07/2009 5:50:09 PM - System Checkpoint
RP103: 15/07/2009 11:27:03 AM - ComboFix created restore point
RP104: 15/07/2009 12:14:02 PM - Software Distribution Service 3.0
RP105: 16/07/2009 6:53:52 PM - System Checkpoint
RP106: 18/07/2009 9:38:40 PM - Avg8 Update
RP107: 18/07/2009 9:39:29 PM - Avg8 Update
==== Installed Programs ======================
AAC Decoder
Acrobat.com
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.1.2
Agere Systems PCI Soft Modem
AirPlus G
ANIO Service
ANIWZCS2 Service
Apple Mobile Device Support
Apple Software Update
AutoUpdate
AVG 8.5
Bonjour
Critical Update for Windows Media Player 11 (KB959772)
DivX Codec
DivX Converter
DivX Player
DivX Plus DirectShow Filters
DivX Version Checker
DivX Web Player
Google Chrome
Google Update Helper
H.264 Decoder
HijackThis 2.0.2
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
HP Deskjet 3840
HP Software Update
iTunes
Java(TM) 6 Update 14
Malwarebytes' Anti-Malware
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft National Language Support Downlevel APIs
Microsoft Office XP Professional with FrontPage
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
MKV Splitter
Mozilla Firefox (3.0.11)
MSXML 4.0 SP2 (KB954430)
QuickTime
Realtek AC'97 Audio
Remote Control Panel
Security Update for CAPICOM (KB931906)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB973346)
Skype™ 4.0
Update for Windows Internet Explorer 8 (KB968220)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
VC80CRTRedist - 8.0.50727.762
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
VLC media player 0.9.9
WeatherEye
WebFldrs XP
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
==== Event Viewer Messages From Past Week ========
15/07/2009 11:28:28 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the PEVSystemStart service to connect.
15/07/2009 11:16:29 AM, error: Service Control Manager [7031] - The AVG Free8 WatchDog service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
14/07/2009 6:29:34 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume3'. It has stopped monitoring the volume.
13/07/2009 5:53:46 PM, error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\D.
13/07/2009 5:49:28 PM, error: atapi [9] - The device, \Device\Ide\IdePort3, did not respond within the timeout period.
11/07/2009 3:46:50 PM, error: WPDMTPDriver [15300] - MTP WPD Driver has failed to start. Error 0x80070005.
11/07/2009 11:54:01 PM, error: atapi [5] - A parity error was detected on \Device\Ide\IdePort3.
==== End Of File ===========================
Hasn't been redirecting lately. Thanks for all the help.