UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_09-12-01.01)
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 2/2/2005 11:19:03 AM
System Uptime: 12/7/2009 5:44:17 AM (14 hours ago)
Motherboard: | | 775S61
Processor: Intel(R) Pentium(R) 4 CPU 3.20GHz | Socket 775 | 3195/200mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 76 GiB total, 27.67 GiB free.
D: is CDROM ()
F: is FIXED (NTFS) - 149 GiB total, 7.982 GiB free.
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP1565: 9/9/2009 7:12:48 PM - System Checkpoint
RP1566: 9/11/2009 7:38:51 AM - System Checkpoint
RP1567: 9/12/2009 8:21:52 AM - System Checkpoint
RP1568: 9/13/2009 11:05:06 AM - System Checkpoint
RP1569: 9/15/2009 5:10:01 AM - Software Distribution Service 3.0
RP1570: 9/16/2009 7:04:17 AM - System Checkpoint
RP1571: 9/16/2009 10:52:19 PM - Software Distribution Service 3.0
RP1572: 9/17/2009 11:08:06 PM - System Checkpoint
RP1573: 9/19/2009 8:46:48 AM - System Checkpoint
RP1574: 9/20/2009 9:23:36 AM - System Checkpoint
RP1575: 9/22/2009 7:26:11 AM - System Checkpoint
RP1576: 9/23/2009 8:34:02 PM - System Checkpoint
RP1577: 9/25/2009 6:00:56 AM - System Checkpoint
RP1578: 9/26/2009 6:38:23 AM - System Checkpoint
RP1579: 9/27/2009 8:38:29 AM - System Checkpoint
RP1580: 9/28/2009 5:03:27 PM - System Checkpoint
RP1581: 9/29/2009 5:24:53 PM - System Checkpoint
RP1582: 10/1/2009 7:05:47 AM - System Checkpoint
RP1583: 10/2/2009 7:06:24 AM - System Checkpoint
RP1584: 10/3/2009 8:10:50 AM - System Checkpoint
RP1585: 10/4/2009 8:54:52 AM - System Checkpoint
RP1586: 10/5/2009 9:19:55 AM - System Checkpoint
RP1587: 10/6/2009 9:31:32 AM - System Checkpoint
RP1588: 10/7/2009 10:31:02 AM - System Checkpoint
RP1589: 10/8/2009 8:59:00 PM - System Checkpoint
RP1590: 10/10/2009 6:20:17 AM - System Checkpoint
RP1591: 10/11/2009 6:27:23 AM - System Checkpoint
RP1592: 10/12/2009 9:38:20 AM - System Checkpoint
RP1593: 10/13/2009 9:46:16 AM - System Checkpoint
RP1594: 10/14/2009 5:27:18 PM - System Checkpoint
RP1595: 10/15/2009 6:41:00 AM - Software Distribution Service 3.0
RP1596: 10/15/2009 9:24:10 PM - Software Distribution Service 3.0
RP1597: 10/17/2009 8:34:46 AM - System Checkpoint
RP1598: 10/18/2009 8:40:50 AM - System Checkpoint
RP1599: 10/19/2009 9:20:49 AM - System Checkpoint
RP1600: 10/20/2009 9:34:52 AM - System Checkpoint
RP1601: 10/21/2009 9:40:52 AM - System Checkpoint
RP1602: 10/22/2009 9:51:32 AM - System Checkpoint
RP1603: 10/23/2009 10:46:26 AM - System Checkpoint
RP1604: 10/24/2009 4:06:58 PM - System Checkpoint
RP1605: 10/25/2009 4:49:21 PM - System Checkpoint
RP1606: 10/26/2009 5:49:13 PM - System Checkpoint
RP1607: 10/27/2009 8:26:51 PM - System Checkpoint
RP1608: 10/29/2009 6:13:17 AM - System Checkpoint
RP1609: 10/30/2009 7:43:29 AM - System Checkpoint
RP1610: 10/31/2009 8:51:52 AM - System Checkpoint
RP1611: 11/1/2009 9:25:50 AM - System Checkpoint
RP1612: 11/2/2009 4:17:04 PM - System Checkpoint
RP1613: 11/3/2009 6:12:38 PM - System Checkpoint
RP1614: 11/4/2009 10:17:25 PM - System Checkpoint
RP1615: 11/5/2009 10:01:53 PM - Software Distribution Service 3.0
RP1616: 11/6/2009 10:05:25 PM - System Checkpoint
RP1617: 11/8/2009 6:56:26 AM - System Checkpoint
RP1618: 11/9/2009 7:40:25 AM - System Checkpoint
RP1619: 11/10/2009 8:20:08 AM - System Checkpoint
RP1620: 11/12/2009 6:28:17 AM - System Checkpoint
RP1621: 11/13/2009 6:48:37 AM - System Checkpoint
RP1622: 11/14/2009 9:50:58 PM - System Checkpoint
RP1623: 11/16/2009 6:15:33 AM - System Checkpoint
RP1624: 11/17/2009 8:31:31 AM - System Checkpoint
RP1625: 11/18/2009 9:23:00 AM - System Checkpoint
RP1626: 11/19/2009 9:42:41 AM - System Checkpoint
RP1627: 11/19/2009 10:12:40 AM - Software Distribution Service 3.0
RP1628: 11/20/2009 1:29:27 PM - System Checkpoint
RP1629: 11/21/2009 1:30:05 PM - System Checkpoint
RP1630: 11/22/2009 4:50:09 PM - System Checkpoint
RP1631: 11/23/2009 5:04:02 PM - System Checkpoint
RP1632: 11/24/2009 7:52:26 PM - System Checkpoint
RP1633: 11/25/2009 8:30:56 PM - System Checkpoint
RP1634: 11/25/2009 9:44:16 PM - Software Distribution Service 3.0
RP1635: 11/26/2009 10:27:13 PM - System Checkpoint
RP1636: 11/27/2009 10:48:41 PM - System Checkpoint
RP1637: 11/29/2009 7:37:56 AM - System Checkpoint
RP1638: 11/30/2009 8:16:31 AM - System Checkpoint
RP1639: 12/1/2009 8:54:55 AM - System Checkpoint
RP1640: 12/2/2009 10:23:46 PM - System Checkpoint
RP1641: 12/4/2009 2:16:37 AM - Removed AVG 7.5
RP1642: 12/5/2009 11:05:54 AM - System Checkpoint
RP1643: 12/6/2009 1:57:41 PM - System Checkpoint
RP1644: 12/7/2009 2:46:29 PM - System Checkpoint
==== Installed Programs ======================
Actiontec USB/Ethernet Home DSL Modem
Actiontec USB/Ethernet Home DSL Monitor
Adobe Flash Player 10 ActiveX
Adobe Photoshop 7.0
Adobe Reader 6.0.1
Alien Skin Eye Candy 5 Nature
AOL Uninstaller (Choose which Products to Remove)
AOL You've Got Pictures Screensaver
Apple Mobile Device Support
Apple Software Update
ASUS MyCinema Series
ATI - Software Uninstall Utility
ATI Catalyst Control Center
ATI Display Driver
Bonjour
C-Media 3D Audio
Canon Utilities PhotoStitch 3.1
Canon Utilities RemoteCapture 1.1
Canon Utilities ZoomBrowser EX
CCV Patch 501a
Copier 2.0
Digital Photo Navigator 1.5
DVD Solution
FirstClass
Client
GoldWave v5.10
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
InterActual Player
iPod for Windows 2005-02-22
iPod for Windows 2006-01-10
iTunes
J2SE Runtime Environment 5.0 Update 3
JumpStart Kindergarten Reading v1.0
Kodak EasyShare software
Learn2 Player (Uninstall Only)
Lexmark Z600 Series
Macromedia Dreamweaver MX
Macromedia Extension Manager
Macromedia Fireworks MX
Macromedia Shockwave Player
Malwarebytes' Anti-Malware
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft VC9 runtime libraries
MiraScan V3.30
Mr. Potato Head Uninstaller
MSN
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Multimedia Launcher
Nero OEM
Norton Internet Security
Out of the Park 10
Paint Shop Pro 7
PowerCinema
PowerCinema MakeDisc Module
PowerCinema NE for Everio
PowerDirector Express
PowerDVD
PowerProducer
QuickShot 6-button Joypad Driver Rev. Beta 1
QuickTime
RealPlayer Basic
ScanButton 2.0
Security Update for CAPICOM (KB931906)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Segoe UI
SmartFTP Client
SmartFTP Client 2.0
SmartFTP Client 2.0 Setup Files (remove only)
Sony Picture Utility
Sony USB Driver
The Sims 2
The Sims 2 Glamour Life Stuff
The Sims Unleashed
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB971180)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Viewpoint Manager (Remove Only)
Viewpoint Media Player
Vision SDK Samples 1.0
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live OneCare safety scanner
Windows Live Sign-in Assistant
Windows Live Upload Tool
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3
WinRAR archiver
==== Event Viewer Messages From Past Week ========
12/6/2009 7:32:10 AM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the NIS service.
12/1/2009 5:21:49 AM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
12/1/2009 5:13:28 AM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 30 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
12/1/2009 5:00:00 AM, error: Service Control Manager [7022] - The CyberLink Background Capture Service (CBCS) service hung on starting.
12/1/2009 5:00:00 AM, error: Service Control Manager [7001] - The CyberLink Task Scheduler (CTS) service depends on the CyberLink Background Capture Service (CBCS) service which failed to start because of the following error: After starting, the service hung in a start-pending state.
11/30/2009 9:47:44 AM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 120 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
11/30/2009 8:47:44 AM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 60 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
11/30/2009 3:47:44 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 480 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
11/30/2009 11:47:44 AM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 240 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
==== End Of File ===========================
DDS (Ver_09-12-01.01) - NTFSx86
Run by Owner at 19:54:19.26 on Mon 12/07/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.511.117 [GMT -5:00]
AV: Norton Internet Security *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
============== Running Processes ===============
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\CyberLink\PCM4Everio\EverioService.exe
C:\Program Files\CyberLink\PowerCinema\PCMService.exe
C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
C:\Program Files\Common Files\AOL\1212356039\ee\AOLSoftware.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ScanButton 2.0\ScanButton.exe
svchost.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\WINDOWS\system32\drivers\dcfssvc.exe
C:\WINDOWS\runservice.exe
C:\Program Files\Norton Internet Security\Engine\17.1.0.19\ccSvcHst.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Norton Internet Security\Engine\17.1.0.19\ccSvcHst.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Owner\Desktop\dds.pif
============== Pseudo HJT Report ===============
uStart Page =
hxxp://www.sympatico.ca/uSearch Bar =
hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr7/*http://www.yahoo.com/ext/search/search.htmlmSearch Bar =
hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr7/*http://www.yahoo.com/ext/search/search.htmluSearchURL,(Default) =
hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr7/*http://www.yahoo.comBHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\norton internet security\engine\17.1.0.19\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton internet security\engine\17.1.0.19\IPSBHO.DLL
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\norton internet security\engine\17.1.0.19\coIEPlg.dll
TB: {4982D40A-C53B-4615-B15B-B5B5E98D167C} - No File
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} -
TB: {DC59A0D4-0ED6-4A73-B356-1B977F2A7725} - No File
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
uRun: [NBJ] "c:\program files\ahead\nero backitup\NBJ.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [SiSUSBRG] c:\windows\SiSUSBrg.exe
mRun: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [
]
mRun: [RealTray] c:\program files\real\realplayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
mRun: [AOLDialer] c:\program files\common files\aol\acs\AOLDial.exe
mRun: [EverioService] "c:\program files\cyberlink\pcm4everio\EverioService.exe"
mRun: [PCMService] "c:\program files\cyberlink\powercinema\PCMService.exe"
mRun: [RemoteControl] c:\program files\asus\asus remote\RemoteControlAppl.exe
mRun: [HostManager] c:\program files\common files\aol\1212356039\ee\AOLSoftware.exe
mRun: [ATICCC] "c:\program files\ati technologies\ati.ace\cli.exe" runtime -Delay
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\scanbu~1.lnk - c:\program files\scanbutton 2.0\ScanButton.exe
IE: &AOL Toolbar search
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {00B71CFB-6864-4346-A978-C0A14556272C} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
DPF: {20048BB3-DB68-11CF-9CAF-00AA006CB425} - hxxp://download.007guard.com/msnnames/msnnames.cab
DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} - hxxp://musicmix.messenger.msn.com/Medialogic.CAB
DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} - hxxp://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
DPF: {48DD0448-9209-4F81-9F6D-D83562940134} - hxxp://lads.myspace.com/upload/MySpaceUploader1006.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader3.cab
DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5483.cab
DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1107362650003
DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} - hxxp://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - hxxp://launch.gamespyarcade.com/software/launch/alaunch.cab
DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} - hxxp://download.zonelabs.com/bin/promotions/spywaredetector/ICSScanner37240.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - hxxp://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
DPF: {A243F6C2-34D2-4549-BCCD-A7BEF759B236} - hxxp://img.funtigo.com/images/uploader/ssiPictureUploader.cab
DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - hxxp://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - hxxp://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install3.5/installer.exe
DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader4_5.cab
DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} - hxxp://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
Notify: AtiExtEvent - Ati2evxx.dll
============= SERVICES / DRIVERS ===============
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nis\1101000.013\SymDS.sys [2009-12-4 328752]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nis\1101000.013\SymEFA.sys [2009-12-4 171056]
R1 BHDrvx86;BHDrvx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_17.0.0.136\definitions\bashdefs\20091104.001\BHDrvx86.sys [2009-11-4 524848]
R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\nis\1101000.013\cchpx86.sys [2009-12-4 501888]
R1 EPPSCSIx;EPPSCSIx;c:\windows\system32\drivers\Eppscsi.sys [2005-8-20 49628]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nis\1101000.013\Ironx86.sys [2009-12-4 114736]
R3 3xHybrid;ASUSTek SAA713x PCI Card;c:\windows\system32\drivers\3xHybrid.sys [2008-2-13 2831232]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-12-4 102448]
R3 IDSxpx86;IDSxpx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_17.0.0.136\definitions\ipsdefs\20091111.001\IDSXpx86.sys [2009-12-4 329592]
R3 NAVENG;NAVENG;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_17.0.0.136\definitions\virusdefs\20091207.002\NAVENG.SYS [2009-12-7 84912]
R3 NAVEX15;NAVEX15;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_17.0.0.136\definitions\virusdefs\20091207.002\NAVEX15.SYS [2009-12-7 1323568]
S0 mximeyig;mximeyig;c:\windows\system32\drivers\chdcfvwn.sys --> c:\windows\system32\drivers\chdcfvwn.sys [?]
S2 ALAEASBG;ALAEASBG;\??\c:\windows\system32\alaeasbg.oft --> c:\windows\system32\alaeasbg.oft [?]
S3 vaxscsi;vaxscsi;c:\windows\system32\drivers\vaxscsi.sys [2006-8-29 223128]
S3 VVBETHERNET;Actiontec USB Ethernet Home DSL;c:\windows\system32\drivers\VVBETH.SYS [2005-2-5 34560]
S3 vvbususb;Virata USB VvBus driver;c:\windows\system32\drivers\VVBUSUSB.SYS [2005-2-5 50236]
=============== Created Last 30 ================
2009-12-06 12:41:54 0 d-----w- c:\program files\Trend Micro
2009-12-04 20:22:32 60808 ----a-w- c:\windows\system32\S32EVNT1.DLL
2009-12-04 20:22:31 124976 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS
2009-12-04 20:22:30 0 d-----w- c:\program files\Symantec
2009-12-04 20:21:30 0 d-----w- c:\windows\system32\drivers\NIS
2009-12-04 20:21:27 0 d-----w- c:\program files\Norton Internet Security
2009-12-04 20:21:25 0 d-----w- c:\docume~1\alluse~1\applic~1\Norton
2009-12-04 20:19:58 0 d-----w- c:\program files\NortonInstaller
2009-12-04 20:19:58 0 d-----w- c:\docume~1\alluse~1\applic~1\NortonInstaller
2009-12-04 06:59:19 0 d-----w- c:\docume~1\owner\applic~1\AVG8
2009-12-04 01:40:27 0 d-----w- c:\docume~1\owner\applic~1\Malwarebytes
2009-12-04 01:40:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-04 01:40:01 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-12-04 01:40:00 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-04 01:39:58 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
==================== Find3M ====================
2009-12-07 10:45:04 3905 --sha-w- c:\windows\system32\mmf.sys
2009-12-04 20:22:30 805 ----a-w- c:\windows\system32\drivers\SYMEVENT.INF
2009-12-04 20:22:30 7443 ----a-w- c:\windows\system32\drivers\SYMEVENT.CAT
2009-09-11 14:18:39 136192 ----a-w- c:\windows\system32\msv1_0.dll
2004-03-11 18:27:22 40960 ----a-w- c:\program files\Uninstall_CDS.exe
2001-11-23 04:08:20 712704 ----a-r- c:\windows\inf\other\AUDIO3D.DLL
1999-06-25 14:55:30 149504 ----a-w- c:\program files\UNWISE.EXE
1996-05-20 14:40:00 118916 ----a-w- c:\program files\BARBW___.TTF
2007-04-23 20:59:53 1373679 --sh--w- c:\windows\system32\abadd.ini2
2008-09-01 02:12:13 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008083120080901\index.dat
2007-04-19 18:56:30 15076128 --sha-w- c:\windows\system32\drivers\fidbox.dat
2007-04-19 18:56:30 242720 --sha-w- c:\windows\system32\drivers\fidbox2.dat
============= FINISH: 19:55:58.39 ===============