FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME

2 posters

WiredWX Christian Hobby Weather Tools :: GeekPolice tech support archive :: Technical Support

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 12th May 2012, 10:31 pm

Ok. let's try this scan and then try to run ComboFix again. If it won't run, please run it in Safe mode.

Please download TDSSKiller from here and save it to your Desktop.

Doubleclick TDSSKiller.exe to run the tool
Click the Start Scan button (If prompted with a "hidden service warning" do go ahead and delete it.)
After the scan has finished, click the Close button
Click the Report button and copy/paste the contents of it into your next reply
Note:It will also create a log in the C:\ directory.

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 13th May 2012, 11:25 am

here is the log for TDSS, & combofix finally ran in safe mode its log is too long so i have posted a new combofix log

12:23:19.0578 3268 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
12:23:19.0687 3268 ============================================================
12:23:19.0687 3268 Current date / time: 2012/05/13 12:23:19.0687
12:23:19.0687 3268 SystemInfo:
12:23:19.0687 3268
12:23:19.0687 3268 OS Version: 5.1.2600 ServicePack: 3.0
12:23:19.0687 3268 Product type: Workstation
12:23:19.0687 3268 ComputerName: HOME-CA08B8A03F
12:23:19.0687 3268 UserName: Veron
12:23:19.0687 3268 Windows directory: C:\WINDOWS
12:23:19.0687 3268 System windows directory: C:\WINDOWS
12:23:19.0687 3268 Processor architecture: Intel x86
12:23:19.0687 3268 Number of processors: 1
12:23:19.0687 3268 Page size: 0x1000
12:23:19.0687 3268 Boot type: Normal boot
12:23:19.0687 3268 ============================================================
12:23:21.0578 3268 Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:23:21.0578 3268 Drive \Device\Harddisk1\DR3 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:23:25.0375 3268 ============================================================
12:23:25.0375 3268 \Device\Harddisk0\DR0:
12:23:25.0375 3268 MBR partitions:
12:23:25.0375 3268 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x129ED876
12:23:25.0375 3268 \Device\Harddisk1\DR3:
12:23:25.0390 3268 MBR partitions:
12:23:25.0390 3268 ============================================================
12:23:25.0406 3268 C: <-> \Device\Harddisk0\DR0\Partition0
12:23:25.0406 3268 ============================================================
12:23:25.0406 3268 Initialize success
12:23:25.0406 3268 ============================================================
12:23:45.0937 2384 ============================================================
12:23:45.0937 2384 Scan started
12:23:45.0937 2384 Mode: Manual;
12:23:45.0937 2384 ============================================================
12:23:46.0671 2384 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Documents and Settings\Veron\Desktop\SASCORE.EXE
12:23:46.0671 2384 !SASCORE - ok
12:23:46.0812 2384 Abiosdsk - ok
12:23:46.0828 2384 abp480n5 - ok
12:23:46.0906 2384 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:23:46.0921 2384 ACPI - ok
12:23:46.0953 2384 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
12:23:47.0000 2384 ACPIEC - ok
12:23:47.0000 2384 adpu160m - ok
12:23:47.0125 2384 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
12:23:47.0140 2384 aec - ok
12:23:47.0171 2384 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
12:23:47.0171 2384 AFD - ok
12:23:47.0171 2384 Aha154x - ok
12:23:47.0187 2384 aic78u2 - ok
12:23:47.0187 2384 aic78xx - ok
12:23:47.0250 2384 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
12:23:47.0250 2384 Alerter - ok
12:23:47.0281 2384 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
12:23:47.0281 2384 ALG - ok
12:23:47.0281 2384 AliIde - ok
12:23:47.0296 2384 amsint - ok
12:23:47.0328 2384 androidusb (dd8d9c597af7cd2f6b70a3d6a4a1acea) C:\WINDOWS\system32\Drivers\ssadadb.sys
12:23:47.0328 2384 androidusb - ok
12:23:47.0390 2384 Apple Mobile Device (20f6f19fe9e753f2780dc2fa083ad597) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:23:47.0390 2384 Apple Mobile Device - ok
12:23:47.0406 2384 AppMgmt - ok
12:23:47.0406 2384 asc - ok
12:23:47.0421 2384 asc3350p - ok
12:23:47.0421 2384 asc3550 - ok
12:23:47.0515 2384 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
12:23:47.0593 2384 aspnet_state - ok
12:23:47.0609 2384 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:23:47.0609 2384 AsyncMac - ok
12:23:47.0656 2384 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
12:23:47.0656 2384 atapi - ok
12:23:47.0656 2384 Atdisk - ok
12:23:47.0703 2384 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:23:47.0703 2384 Atmarpc - ok
12:23:47.0718 2384 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
12:23:47.0718 2384 AudioSrv - ok
12:23:47.0734 2384 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
12:23:47.0734 2384 audstub - ok
12:23:47.0765 2384 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
12:23:47.0781 2384 Beep - ok
12:23:47.0828 2384 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
12:23:47.0953 2384 BITS - ok
12:23:48.0031 2384 Bonjour Service (1c87705ccb2f60172b0fc86b5d82f00d) C:\Program Files\Bonjour\mDNSResponder.exe
12:23:48.0031 2384 Bonjour Service - ok
12:23:48.0078 2384 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
12:23:48.0078 2384 Browser - ok
12:23:48.0093 2384 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
12:23:48.0093 2384 BthEnum - ok
12:23:48.0125 2384 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
12:23:48.0140 2384 BthPan - ok
12:23:48.0171 2384 BTHPORT (662bfd909447dd9cc15b1a1c366583b4) C:\WINDOWS\system32\Drivers\BTHport.sys
12:23:48.0187 2384 BTHPORT - ok
12:23:48.0218 2384 BthServ (f4c43c66471b87996d95db7a3a664a37) C:\WINDOWS\System32\bthserv.dll
12:23:48.0234 2384 BthServ - ok
12:23:48.0250 2384 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
12:23:48.0250 2384 BTHUSB - ok
12:23:48.0437 2384 catchme - ok
12:23:48.0468 2384 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
12:23:48.0468 2384 cbidf2k - ok
12:23:48.0515 2384 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
12:23:48.0515 2384 CCDECODE - ok
12:23:48.0531 2384 cd20xrnt - ok
12:23:48.0562 2384 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
12:23:48.0562 2384 Cdaudio - ok
12:23:48.0593 2384 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
12:23:48.0593 2384 Cdfs - ok
12:23:48.0609 2384 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:23:48.0609 2384 Cdrom - ok
12:23:48.0640 2384 cercsr6 (84853b3fd012251690570e9e7e43343f) C:\WINDOWS\system32\drivers\cercsr6.sys
12:23:48.0640 2384 cercsr6 - ok
12:23:48.0656 2384 Changer - ok
12:23:48.0687 2384 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
12:23:48.0687 2384 CiSvc - ok
12:23:48.0718 2384 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
12:23:48.0734 2384 ClipSrv - ok
12:23:48.0812 2384 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:23:48.0890 2384 clr_optimization_v2.0.50727_32 - ok
12:23:49.0062 2384 cmdAgent (d95bc532839d710bf6eb3f5e32314b3e) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
12:23:49.0078 2384 cmdAgent - ok
12:23:49.0234 2384 cmdGuard (be1e51b694cadc4043e428a914ee544e) C:\WINDOWS\system32\DRIVERS\cmdguard.sys
12:23:49.0234 2384 cmdGuard - ok
12:23:49.0250 2384 cmdHlp (f0a78783a95b788856eec1c36d0a1e59) C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
12:23:49.0250 2384 cmdHlp - ok
12:23:49.0265 2384 CmdIde - ok
12:23:49.0265 2384 COMSysApp - ok
12:23:49.0281 2384 Cpqarray - ok
12:23:49.0312 2384 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
12:23:49.0312 2384 CryptSvc - ok
12:23:49.0328 2384 dac2w2k - ok
12:23:49.0328 2384 dac960nt - ok
12:23:49.0390 2384 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
12:23:49.0406 2384 DcomLaunch - ok
12:23:49.0421 2384 dgderdrv (d0d4f3ca1d3a4400e1f40f36a800cd12) C:\WINDOWS\system32\drivers\dgderdrv.sys
12:23:49.0437 2384 dgderdrv - ok
12:23:49.0453 2384 dgdersvc (1f7baca7d1dd1b3d73b4c3934148fad3) C:\WINDOWS\system32\dgdersvc.exe
12:23:49.0453 2384 dgdersvc - ok
12:23:49.0500 2384 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
12:23:49.0500 2384 Dhcp - ok
12:23:49.0531 2384 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
12:23:49.0531 2384 Disk - ok
12:23:49.0546 2384 dmadmin - ok
12:23:49.0609 2384 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
12:23:49.0625 2384 dmboot - ok
12:23:49.0656 2384 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
12:23:49.0671 2384 dmio - ok
12:23:49.0703 2384 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
12:23:49.0703 2384 dmload - ok
12:23:49.0750 2384 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
12:23:49.0750 2384 dmserver - ok
12:23:49.0781 2384 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
12:23:49.0781 2384 DMusic - ok
12:23:49.0812 2384 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
12:23:49.0812 2384 Dnscache - ok
12:23:49.0843 2384 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
12:23:49.0843 2384 Dot3svc - ok
12:23:49.0859 2384 dpti2o - ok
12:23:49.0890 2384 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
12:23:49.0890 2384 drmkaud - ok
12:23:49.0921 2384 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
12:23:49.0921 2384 E100B - ok
12:23:49.0953 2384 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
12:23:49.0968 2384 EapHost - ok
12:23:50.0000 2384 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
12:23:50.0000 2384 ERSvc - ok
12:23:50.0015 2384 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
12:23:50.0031 2384 Eventlog - ok
12:23:50.0062 2384 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
12:23:50.0062 2384 EventSystem - ok
12:23:50.0093 2384 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
12:23:50.0093 2384 Fastfat - ok
12:23:50.0125 2384 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:23:50.0140 2384 FastUserSwitchingCompatibility - ok
12:23:50.0171 2384 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
12:23:50.0171 2384 Fdc - ok
12:23:50.0203 2384 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
12:23:50.0218 2384 Fips - ok
12:23:50.0234 2384 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
12:23:50.0234 2384 Flpydisk - ok
12:23:50.0296 2384 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
12:23:50.0296 2384 FltMgr - ok
12:23:50.0406 2384 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:23:50.0406 2384 FontCache3.0.0.0 - ok
12:23:50.0437 2384 FsUsbExDisk (b07663a810e861eebfd0eac7e82ca62d) C:\WINDOWS\system32\FsUsbExDisk.SYS
12:23:50.0437 2384 FsUsbExDisk - ok
12:23:50.0484 2384 FsUsbExService (f96c429788350db4ba6771c3034dfd88) C:\WINDOWS\system32\FsUsbExService.Exe
12:23:50.0484 2384 FsUsbExService - ok
12:23:50.0515 2384 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:23:50.0515 2384 Fs_Rec - ok
12:23:50.0546 2384 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:23:50.0546 2384 Ftdisk - ok
12:23:50.0578 2384 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
12:23:50.0578 2384 GEARAspiWDM - ok
12:23:50.0609 2384 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:23:50.0609 2384 Gpc - ok
12:23:50.0640 2384 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
12:23:50.0640 2384 HDAudBus - ok
12:23:50.0687 2384 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:23:50.0687 2384 helpsvc - ok
12:23:50.0703 2384 HidServ - ok
12:23:50.0703 2384 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:23:50.0703 2384 hidusb - ok
12:23:50.0750 2384 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
12:23:50.0750 2384 hkmsvc - ok
12:23:50.0765 2384 hpn - ok
12:23:50.0796 2384 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
12:23:50.0796 2384 HTTP - ok
12:23:50.0828 2384 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
12:23:50.0828 2384 HTTPFilter - ok
12:23:50.0843 2384 i2omgmt - ok
12:23:50.0843 2384 i2omp - ok
12:23:50.0875 2384 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\drivers\i8042prt.sys
12:23:50.0875 2384 i8042prt - ok
12:23:50.0984 2384 ialm (240d0f5d7caafd87bd8d801a97bbe041) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
12:23:51.0000 2384 ialm - ok
12:23:51.0156 2384 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:23:51.0171 2384 idsvc - ok
12:23:51.0281 2384 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
12:23:51.0281 2384 Imapi - ok
12:23:51.0312 2384 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
12:23:51.0312 2384 ImapiService - ok
12:23:51.0328 2384 ini910u - ok
12:23:51.0375 2384 Inspect (d22ac37cbe6cf295416ef84245b804a8) C:\WINDOWS\system32\DRIVERS\inspect.sys
12:23:51.0375 2384 Inspect - ok
12:23:51.0390 2384 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
12:23:51.0390 2384 IntelIde - ok
12:23:51.0421 2384 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:23:51.0421 2384 intelppm - ok
12:23:51.0453 2384 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
12:23:51.0453 2384 Ip6Fw - ok
12:23:51.0484 2384 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:23:51.0484 2384 IpFilterDriver - ok
12:23:51.0500 2384 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:23:51.0500 2384 IpInIp - ok
12:23:51.0531 2384 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:23:51.0531 2384 IpNat - ok
12:23:51.0640 2384 iPod Service (3a6d4d8abacf64292d060c9e06d2050d) C:\Program Files\iPod\bin\iPodService.exe
12:23:51.0656 2384 iPod Service - ok
12:23:51.0687 2384 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:23:51.0687 2384 IPSec - ok
12:23:51.0703 2384 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
12:23:51.0703 2384 IRENUM - ok
12:23:51.0718 2384 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:23:51.0718 2384 isapnp - ok
12:23:51.0781 2384 JavaQuickStarterService (a38441ed570f190cc041a7be49488fa7) C:\Program Files\Java\jre6\bin\jqs.exe
12:23:51.0796 2384 JavaQuickStarterService - ok
12:23:51.0812 2384 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:23:51.0812 2384 Kbdclass - ok
12:23:51.0828 2384 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
12:23:51.0828 2384 kbdhid - ok
12:23:51.0859 2384 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
12:23:51.0859 2384 kmixer - ok
12:23:51.0890 2384 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
12:23:51.0890 2384 KSecDD - ok
12:23:51.0921 2384 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
12:23:51.0921 2384 lanmanserver - ok
12:23:51.0968 2384 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
12:23:51.0984 2384 lanmanworkstation - ok
12:23:51.0984 2384 lbrtfdc - ok
12:23:52.0015 2384 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
12:23:52.0031 2384 LmHosts - ok
12:23:52.0062 2384 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
12:23:52.0062 2384 Messenger - ok
12:23:52.0093 2384 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
12:23:52.0093 2384 mnmdd - ok
12:23:52.0125 2384 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
12:23:52.0125 2384 mnmsrvc - ok
12:23:52.0156 2384 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
12:23:52.0156 2384 Modem - ok
12:23:52.0187 2384 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:23:52.0187 2384 Mouclass - ok
12:23:52.0234 2384 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
12:23:52.0234 2384 mouhid - ok
12:23:52.0265 2384 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
12:23:52.0265 2384 MountMgr - ok
12:23:52.0281 2384 mraid35x - ok
12:23:52.0296 2384 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:23:52.0296 2384 MRxDAV - ok
12:23:52.0359 2384 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:23:52.0359 2384 MRxSmb - ok
12:23:52.0390 2384 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
12:23:52.0390 2384 MSDTC - ok
12:23:52.0421 2384 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
12:23:52.0421 2384 Msfs - ok
12:23:52.0437 2384 MSIServer - ok
12:23:52.0437 2384 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:23:52.0437 2384 MSKSSRV - ok
12:23:52.0468 2384 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:23:52.0468 2384 MSPCLOCK - ok
12:23:52.0484 2384 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
12:23:52.0484 2384 MSPQM - ok
12:23:52.0515 2384 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:23:52.0515 2384 mssmbios - ok
12:23:52.0531 2384 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
12:23:52.0531 2384 MSTEE - ok
12:23:52.0546 2384 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
12:23:52.0546 2384 Mup - ok
12:23:52.0593 2384 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
12:23:52.0593 2384 NABTSFEC - ok
12:23:52.0671 2384 NanoServiceMain (a830e59f98827943686e90bf79fc96fa) C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
12:23:52.0671 2384 NanoServiceMain - ok
12:23:52.0734 2384 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
12:23:52.0734 2384 napagent - ok
12:23:52.0781 2384 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
12:23:52.0781 2384 NDIS - ok
12:23:52.0812 2384 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
12:23:52.0812 2384 NdisIP - ok
12:23:52.0843 2384 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:23:52.0843 2384 NdisTapi - ok
12:23:52.0859 2384 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:23:52.0859 2384 Ndisuio - ok
12:23:52.0890 2384 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:23:52.0890 2384 NdisWan - ok
12:23:52.0906 2384 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
12:23:52.0906 2384 NDProxy - ok
12:23:52.0937 2384 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
12:23:52.0937 2384 NetBIOS - ok
12:23:52.0968 2384 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
12:23:52.0968 2384 NetBT - ok
12:23:53.0015 2384 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
12:23:53.0015 2384 NetDDE - ok
12:23:53.0031 2384 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
12:23:53.0031 2384 NetDDEdsdm - ok
12:23:53.0062 2384 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:23:53.0062 2384 Netlogon - ok
12:23:53.0109 2384 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
12:23:53.0125 2384 Netman - ok
12:23:53.0187 2384 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:23:53.0203 2384 NetTcpPortSharing - ok
12:23:53.0234 2384 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
12:23:53.0250 2384 Nla - ok
12:23:53.0265 2384 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
12:23:53.0265 2384 Npfs - ok
12:23:53.0312 2384 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
12:23:53.0312 2384 Ntfs - ok
12:23:53.0328 2384 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:23:53.0328 2384 NtLmSsp - ok
12:23:53.0390 2384 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
12:23:53.0406 2384 NtmsSvc - ok
12:23:53.0421 2384 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
12:23:53.0421 2384 Null - ok
12:23:53.0453 2384 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:23:53.0468 2384 NwlnkFlt - ok
12:23:53.0468 2384 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:23:53.0484 2384 NwlnkFwd - ok
12:23:53.0500 2384 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
12:23:53.0515 2384 Parport - ok
12:23:53.0515 2384 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
12:23:53.0515 2384 PartMgr - ok
12:23:53.0531 2384 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
12:23:53.0546 2384 ParVdm - ok
12:23:53.0546 2384 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
12:23:53.0546 2384 PCI - ok
12:23:53.0562 2384 PCIDump - ok
12:23:53.0578 2384 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
12:23:53.0578 2384 PCIIde - ok
12:23:53.0625 2384 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
12:23:53.0625 2384 Pcmcia - ok
12:23:53.0640 2384 PDCOMP - ok
12:23:53.0640 2384 PDFRAME - ok
12:23:53.0656 2384 PDRELI - ok
12:23:53.0671 2384 PDRFRAME - ok
12:23:53.0671 2384 perc2 - ok
12:23:53.0687 2384 perc2hib - ok
12:23:53.0750 2384 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
12:23:53.0750 2384 PlugPlay - ok
12:23:53.0750 2384 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:23:53.0765 2384 PolicyAgent - ok
12:23:53.0796 2384 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:23:53.0796 2384 PptpMiniport - ok
12:23:53.0796 2384 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:23:53.0796 2384 ProtectedStorage - ok
12:23:53.0812 2384 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
12:23:53.0812 2384 PSched - ok
12:23:53.0859 2384 PSINAflt (9abf1d1da5afaaaa41fcbd940aa2e844) C:\WINDOWS\system32\DRIVERS\PSINAflt.sys
12:23:53.0859 2384 PSINAflt - ok
12:23:53.0890 2384 PSINFile (5bab5fb4cb1963f643a1a8b4d816cf8f) C:\WINDOWS\system32\DRIVERS\PSINFile.sys
12:23:53.0890 2384 PSINFile - ok
12:23:53.0921 2384 PSINKNC (0518f472a69249e18612e29278bd58ec) C:\WINDOWS\system32\DRIVERS\psinknc.sys
12:23:53.0921 2384 PSINKNC - ok
12:23:53.0937 2384 PSINProc (87b2fe6d7b427947541360f48c302054) C:\WINDOWS\system32\DRIVERS\PSINProc.sys
12:23:53.0937 2384 PSINProc - ok
12:23:53.0968 2384 PSINProt (f4804beb5ff6741019b56a02ead4d3b7) C:\WINDOWS\system32\DRIVERS\PSINProt.sys
12:23:53.0968 2384 PSINProt - ok
12:23:54.0000 2384 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:23:54.0000 2384 Ptilink - ok
12:23:54.0031 2384 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
12:23:54.0031 2384 PxHelp20 - ok
12:23:54.0031 2384 ql1080 - ok
12:23:54.0046 2384 Ql10wnt - ok
12:23:54.0062 2384 ql12160 - ok
12:23:54.0062 2384 ql1240 - ok
12:23:54.0078 2384 ql1280 - ok
12:23:54.0078 2384 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:23:54.0078 2384 RasAcd - ok
12:23:54.0109 2384 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
12:23:54.0109 2384 RasAuto - ok
12:23:54.0140 2384 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:23:54.0140 2384 Rasl2tp - ok
12:23:54.0187 2384 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
12:23:54.0187 2384 RasMan - ok
12:23:54.0203 2384 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:23:54.0218 2384 RasPppoe - ok
12:23:54.0218 2384 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
12:23:54.0234 2384 Raspti - ok
12:23:54.0250 2384 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:23:54.0265 2384 Rdbss - ok
12:23:54.0265 2384 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:23:54.0265 2384 RDPCDD - ok
12:23:54.0312 2384 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
12:23:54.0328 2384 RDPWD - ok
12:23:54.0359 2384 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
12:23:54.0359 2384 RDSessMgr - ok
12:23:54.0406 2384 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
12:23:54.0406 2384 redbook - ok
12:23:54.0437 2384 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
12:23:54.0437 2384 RemoteAccess - ok
12:23:54.0484 2384 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
12:23:54.0484 2384 RFCOMM - ok
12:23:54.0500 2384 RkPavproc1 - ok
12:23:54.0515 2384 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
12:23:54.0531 2384 RpcLocator - ok
12:23:54.0578 2384 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
12:23:54.0578 2384 RpcSs - ok
12:23:54.0609 2384 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
12:23:54.0625 2384 RSVP - ok
12:23:54.0640 2384 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
12:23:54.0640 2384 SamSs - ok
12:23:54.0734 2384 SASDIFSV (39763504067962108505bff25f024345) C:\Documents and Settings\Veron\Desktop\SASDIFSV.SYS
12:23:54.0734 2384 SASDIFSV - ok
12:23:54.0765 2384 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Documents and Settings\Veron\Desktop\SASKUTIL.SYS
12:23:54.0765 2384 SASKUTIL - ok
12:23:54.0781 2384 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
12:23:54.0781 2384 SCardSvr - ok
12:23:54.0812 2384 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
12:23:54.0812 2384 Schedule - ok
12:23:54.0906 2384 SeaPort (271077b91d7ad1b616f8afdfe8e3f981) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
12:23:54.0921 2384 SeaPort - ok
12:23:54.0984 2384 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:23:54.0984 2384 Secdrv - ok
12:23:55.0046 2384 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
12:23:55.0046 2384 seclogon - ok
12:23:55.0078 2384 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
12:23:55.0078 2384 SENS - ok
12:23:55.0125 2384 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
12:23:55.0125 2384 Serial - ok
12:23:55.0156 2384 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
12:23:55.0156 2384 Sfloppy - ok
12:23:55.0218 2384 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
12:23:55.0218 2384 SharedAccess - ok
12:23:55.0265 2384 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:23:55.0265 2384 ShellHWDetection - ok
12:23:55.0265 2384 Simbad - ok
12:23:55.0312 2384 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
12:23:55.0312 2384 SLIP - ok
12:23:55.0593 2384 SNP2UVC (e1f5f9fbf8a2cfed174e4ec38a358b93) C:\WINDOWS\system32\DRIVERS\snp2uvc.sys
12:23:55.0640 2384 SNP2UVC - ok
12:23:55.0734 2384 Sparrow - ok
12:23:55.0750 2384 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
12:23:55.0750 2384 splitter - ok
12:23:55.0781 2384 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
12:23:55.0796 2384 Spooler - ok
12:23:55.0828 2384 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
12:23:55.0828 2384 sr - ok
12:23:55.0859 2384 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
12:23:55.0875 2384 srservice - ok
12:23:55.0906 2384 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
12:23:55.0921 2384 Srv - ok
12:23:55.0968 2384 ssadbus (406776fe3c2b66796bac1a7afb9ac8a1) C:\WINDOWS\system32\DRIVERS\ssadbus.sys
12:23:55.0968 2384 ssadbus - ok
12:23:56.0000 2384 ssadmdfl (b19532d015a5d295e2aa34bb521202cf) C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
12:23:56.0000 2384 ssadmdfl - ok
12:23:56.0031 2384 ssadmdm (2aebf9108e6f435458b9499c27394da4) C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
12:23:56.0031 2384 ssadmdm - ok
12:23:56.0062 2384 ssadserd (28f893c9b4e98dee5ae3c24db56b1b11) C:\WINDOWS\system32\DRIVERS\ssadserd.sys
12:23:56.0062 2384 ssadserd - ok
12:23:56.0109 2384 sscebus (b2063ce662af3ab20045121a5b716df6) C:\WINDOWS\system32\DRIVERS\sscebus.sys
12:23:56.0125 2384 sscebus - ok
12:23:56.0125 2384 sscemdfl (66799dc0afe3dcaf8368cae17394a762) C:\WINDOWS\system32\DRIVERS\sscemdfl.sys
12:23:56.0125 2384 sscemdfl - ok
12:23:56.0140 2384 sscemdm (cbf03ffc08f8db547bab2f79aa663d16) C:\WINDOWS\system32\DRIVERS\sscemdm.sys
12:23:56.0156 2384 sscemdm - ok
12:23:56.0203 2384 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
12:23:56.0203 2384 SSDPSRV - ok
12:23:56.0265 2384 ss_bbus (3f0164fbc0bd1adbd02df9759181451a) C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
12:23:56.0265 2384 ss_bbus - ok
12:23:56.0296 2384 ss_bmdfl (b89d62206034e5fe573c80a24dd55675) C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
12:23:56.0296 2384 ss_bmdfl - ok
12:23:56.0328 2384 ss_bmdm (1ed0fcea586fe2a416ee15196e5631dd) C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
12:23:56.0328 2384 ss_bmdm - ok
12:23:56.0359 2384 ss_bserd (994d2e5378cc337ec7dd73c1e04fcaa4) C:\WINDOWS\system32\DRIVERS\ss_bserd.sys
12:23:56.0359 2384 ss_bserd - ok
12:23:56.0468 2384 STHDA (26eb7acf476a3461b85f5bce9a677a4a) C:\WINDOWS\system32\drivers\sthda.sys
12:23:56.0468 2384 STHDA - ok
12:23:56.0531 2384 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
12:23:56.0546 2384 stisvc - ok
12:23:56.0593 2384 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
12:23:56.0593 2384 streamip - ok
12:23:56.0640 2384 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
12:23:56.0640 2384 swenum - ok
12:23:56.0671 2384 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
12:23:56.0671 2384 swmidi - ok
12:23:56.0687 2384 SwPrv - ok
12:23:56.0703 2384 symc810 - ok
12:23:56.0703 2384 symc8xx - ok
12:23:56.0718 2384 sym_hi - ok
12:23:56.0718 2384 sym_u3 - ok
12:23:56.0750 2384 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
12:23:56.0765 2384 sysaudio - ok
12:23:56.0796 2384 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
12:23:56.0796 2384 SysmonLog - ok
12:23:56.0843 2384 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
12:23:56.0843 2384 TapiSrv - ok
12:23:56.0890 2384 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:23:56.0906 2384 Tcpip - ok
12:23:56.0937 2384 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
12:23:56.0937 2384 TDPIPE - ok
12:23:56.0984 2384 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
12:23:56.0984 2384 TDTCP - ok
12:23:57.0031 2384 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
12:23:57.0031 2384 TermDD - ok
12:23:57.0078 2384 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
12:23:57.0078 2384 TermService - ok
12:23:57.0109 2384 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
12:23:57.0125 2384 Themes - ok
12:23:57.0125 2384 TosIde - ok
12:23:57.0156 2384 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
12:23:57.0171 2384 TrkWks - ok
12:23:57.0218 2384 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
12:23:57.0218 2384 Udfs - ok
12:23:57.0234 2384 ultra - ok
12:23:57.0281 2384 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
12:23:57.0296 2384 Update - ok
12:23:57.0328 2384 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
12:23:57.0343 2384 upnphost - ok
12:23:57.0359 2384 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
12:23:57.0375 2384 UPS - ok
12:23:57.0421 2384 USBAAPL (5c2bdc152bbab34f36473deaf7713f22) C:\WINDOWS\system32\Drivers\usbaapl.sys
12:23:57.0421 2384 USBAAPL - ok
12:23:57.0468 2384 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
12:23:57.0468 2384 usbaudio - ok
12:23:57.0500 2384 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:23:57.0500 2384 usbccgp - ok
12:23:57.0531 2384 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:23:57.0546 2384 usbehci - ok
12:23:57.0562 2384 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:23:57.0562 2384 usbhub - ok
12:23:57.0609 2384 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
12:23:57.0609 2384 usbprint - ok
12:23:57.0640 2384 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:23:57.0640 2384 usbscan - ok
12:23:57.0671 2384 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:23:57.0671 2384 USBSTOR - ok
12:23:57.0703 2384 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:23:57.0703 2384 usbuhci - ok
12:23:57.0750 2384 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
12:23:57.0750 2384 usbvideo - ok
12:23:57.0796 2384 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
12:23:57.0796 2384 VgaSave - ok
12:23:57.0796 2384 ViaIde - ok
12:23:57.0828 2384 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
12:23:57.0828 2384 VolSnap - ok
12:23:57.0890 2384 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
12:23:57.0890 2384 VSS - ok
12:23:57.0937 2384 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
12:23:57.0937 2384 W32Time - ok
12:23:57.0984 2384 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:23:57.0984 2384 Wanarp - ok
12:23:58.0046 2384 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
12:23:58.0062 2384 Wdf01000 - ok
12:23:58.0078 2384 WDICA - ok
12:23:58.0125 2384 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
12:23:58.0125 2384 wdmaud - ok
12:23:58.0156 2384 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
12:23:58.0156 2384 WebClient - ok
12:23:58.0218 2384 WinDefend (f45dd1e1365d857dd08bc23563370d0e) C:\Program Files\Windows Defender\MsMpEng.exe
12:23:58.0218 2384 WinDefend - ok
12:23:58.0328 2384 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
12:23:58.0328 2384 winmgmt - ok
12:23:58.0375 2384 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\mspmsnsv.dll
12:23:58.0375 2384 WmdmPmSN - ok
12:23:58.0421 2384 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
12:23:58.0421 2384 WmiApSrv - ok
12:23:58.0546 2384 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
12:23:58.0562 2384 WMPNetworkSvc - ok
12:23:58.0625 2384 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
12:23:58.0640 2384 WpdUsb - ok
12:23:58.0671 2384 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
12:23:58.0687 2384 WS2IFSL - ok
12:23:58.0718 2384 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
12:23:58.0734 2384 wscsvc - ok
12:23:58.0765 2384 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
12:23:58.0765 2384 WSTCODEC - ok
12:23:58.0812 2384 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
12:23:58.0812 2384 wuauserv - ok
12:23:58.0843 2384 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
12:23:58.0859 2384 WudfPf - ok
12:23:58.0859 2384 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
12:23:58.0875 2384 WudfRd - ok
12:23:58.0906 2384 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
12:23:58.0906 2384 WudfSvc - ok
12:23:58.0984 2384 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
12:23:59.0000 2384 WZCSVC - ok
12:23:59.0031 2384 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
12:23:59.0046 2384 xmlprov - ok
12:23:59.0078 2384 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
12:23:59.0281 2384 \Device\Harddisk0\DR0 - ok
12:23:59.0296 2384 MBR (0x1B8) (2852254352eac3b4f1a878ff2733facc) \Device\Harddisk1\DR3
12:24:06.0890 2384 \Device\Harddisk1\DR3 - ok
12:24:06.0906 2384 Boot (0x1200) (a7e96cb85d7519c9979bf10d33b36757) \Device\Harddisk0\DR0\Partition0
12:24:06.0921 2384 \Device\Harddisk0\DR0\Partition0 - ok
12:24:06.0921 2384 ============================================================
12:24:06.0921 2384 Scan finished
12:24:06.0921 2384 ============================================================
12:24:06.0937 3228 Detected object count: 0
12:24:06.0937 3228 Actual detected object count: 0

Last edited by veronica8910 on 13th May 2012, 5:26 pm; edited 1 time in total

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 13th May 2012, 5:25 pm

combofix-log

ComboFix 12-05-13.03 - Administrator 05/13/2012 18:07:45.6.1 - x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.2294.1988 [GMT 1:00]
Running from: c:\documents and settings\Administrator\Desktop\PCHelpForum.exe
AV: Panda Cloud Antivirus *Enabled/Updated* {5AD27692-540A-464E-B625-78275FA38393}
AV: Virgin Media Security Anti-Virus *Enabled/Outdated* {5B5A3BD7-8573-4672-AEA8-C9BB713B6755}
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
FW: COMODO Firewall *Enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
FW: Virgin Media Security Firewall *Enabled* {80593BF4-D969-4EC5-ADAE-A22F2DFC7A22}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\TEMP
c:\windows\system32\advapi32(2).dll
c:\windows\system32\ctfmon(2).exe
c:\windows\system32\dllcache\dlimport.exe
c:\windows\system32\kernel32(2).dll
c:\windows\system32\muzapp.exe
c:\windows\system32\services(2).exe
c:\windows\system32\system
.
.
((((((((((((((((((((((((( Files Created from 2012-04-13 to 2012-05-13 )))))))))))))))))))))))))))))))
.
.
2012-05-13 17:02 . 2012-05-13 17:02 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Opera
2012-05-12 19:03 . 2012-05-12 19:03 56200 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{72C53F69-8621-4C86-B797-972A0B2D1E70}\offreg.dll
2012-05-11 19:01 . 2012-04-18 02:06 6734704 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{72C53F69-8621-4C86-B797-972A0B2D1E70}\mpengine.dll
2012-05-10 20:21 . 2012-05-10 20:21 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2012-05-10 18:07 . 2012-05-10 18:07 -------- d-----w- c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2012-05-10 17:44 . 2012-05-10 17:44 -------- d-----w- c:\program files\Common Files\Java
2012-05-10 17:44 . 2012-05-10 17:43 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-05-10 17:44 . 2012-05-10 17:43 476960 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-05-10 12:31 . 2012-05-10 12:31 -------- d-----w- c:\windows\system32\wbem\Repository
2012-05-10 12:22 . 2012-05-10 12:22 -------- d-----w- c:\program files\BitTorrent
2012-05-10 12:21 . 2012-05-10 12:21 -------- d-----w- c:\program files\PKR
2012-05-10 12:21 . 2012-05-10 12:21 -------- d-----r- c:\program files\Skype
2012-05-10 12:21 . 2012-05-10 12:21 -------- d-----w- c:\program files\Common Files\Skype
2012-05-10 12:20 . 2012-05-10 12:20 -------- d-----w- c:\program files\Common Files\xing shared
2012-05-10 12:19 . 2012-05-10 12:19 -------- d-----w- c:\program files\DVD Flick
2012-05-10 11:43 . 2012-05-10 12:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype
2012-05-10 11:43 . 2012-05-10 12:19 -------- d-----w- c:\program files\QuickTime
2012-05-10 11:22 . 2012-05-10 11:22 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache
2012-05-07 15:19 . 2012-05-07 15:19 -------- d-----w- c:\program files\MetaGeek
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-10 17:43 . 2010-08-25 02:58 472864 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-18 02:06 . 2009-07-18 20:19 6734704 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-04-04 14:56 . 2009-08-01 20:29 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-23 09:18 . 2009-11-05 17:41 237072 ------w- c:\windows\system32\MpSigStub.exe
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys
[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys
[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys
[-] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys
.
[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\asyncmac.sys
[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\asyncmac.sys
[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys
.
[-] 2004-08-04 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys
[-] 2004-08-04 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\cache\beep.sys
[-] 2004-08-04 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys
.
[-] 2008-04-13 . 463C1EC80CD17420A542B7F36A36F128 . 24576 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kbdclass.sys
[-] 2008-04-13 . 463C1EC80CD17420A542B7F36A36F128 . 24576 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\kbdclass.sys
[-] 2008-04-13 . 463C1EC80CD17420A542B7F36A36F128 . 24576 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys
.
[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ndis.sys
[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\ndis.sys
[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys
.
[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntfs.sys
[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\ntfs.sys
[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys
.
[-] 2004-08-04 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys
[-] 2004-08-04 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\cache\null.sys
[-] 2004-08-04 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys
.
[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\cache\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[-] 2008-04-13 19:20 . 74E3807D4D0B922A177B7BF3CA4FC41C . 361344 . . [------] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys
.
[-] 2008-04-14 . A06CE3399D16DB864F55FAEB1F1927A9 . 77824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\browser.dll
[-] 2008-04-14 . A06CE3399D16DB864F55FAEB1F1927A9 . 77824 . . [5.1.2600.5512] . . c:\windows\system32\browser.dll
.
[-] 2008-04-14 . BF2466B3E18E970D8A976FB95FC1CA85 . 13312 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lsass.exe
[-] 2008-04-14 . BF2466B3E18E970D8A976FB95FC1CA85 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe
[-] 2008-04-14 . BF2466B3E18E970D8A976FB95FC1CA85 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\lsass.exe
.
[-] 2008-04-14 . 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE . 198144 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netman.dll
[-] 2008-04-14 . 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll
.
[-] 2008-04-14 00:11 . 1280A158C722FA95A80FB7AEBE78FA7D . 792064 . . [2001.12.4414.700] . . c:\windows\ServicePackFiles\i386\comres.dll
[-] 2008-04-14 00:11 . 1280A158C722FA95A80FB7AEBE78FA7D . 792064 . . [2001.12.4414.700] . . c:\windows\system32\comres.dll
[-] 2008-04-14 00:11 . 1280A158C722FA95A80FB7AEBE78FA7D . 792064 . . [2001.12.4414.700] . . c:\windows\system32\dllcache\cache\comres.dll
.
[-] 2008-04-14 . 574738F61FCA2935F5265DC4E5691314 . 409088 . . [6.7.2600.5512] . . c:\windows\ServicePackFiles\i386\qmgr.dll
[-] 2008-04-14 . 574738F61FCA2935F5265DC4E5691314 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll
[-] 2008-04-14 . 574738F61FCA2935F5265DC4E5691314 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\bits\qmgr.dll
[-] 2008-04-14 . 574738F61FCA2935F5265DC4E5691314 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\dllcache\cache\qmgr.dll
.
[-] 2009-02-09 . 6B27A5C03DFB94B4245739065431322C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\rpcss.dll
[-] 2009-02-09 . 6B27A5C03DFB94B4245739065431322C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\rpcss.dll
[-] 2009-02-09 . 6B27A5C03DFB94B4245739065431322C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\cache\rpcss.dll
[-] 2009-02-09 . 9222562D44021B988B9F9F62207FB6F2 . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\rpcss.dll
[-] 2008-04-14 . 2589FE6015A316C0F5D5112B4DA7B509 . 399360 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\rpcss.dll
[-] 2008-04-14 . 2589FE6015A316C0F5D5112B4DA7B509 . 399360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rpcss.dll
.
[-] 2009-02-06 . 65DF52F5B8B6E9BBD183505225C37315 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\services.exe
[-] 2009-02-06 . 65DF52F5B8B6E9BBD183505225C37315 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\services.exe
[-] 2009-02-06 . 65DF52F5B8B6E9BBD183505225C37315 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\cache\services.exe
[-] 2009-02-06 . 020CEAAEDC8EB655B6506B8C70D53BB6 . 110592 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe
[-] 2008-04-14 . 0E776ED5F7CC9F94299E70461B7B8185 . 108544 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\services.exe
[-] 2008-04-14 . 0E776ED5F7CC9F94299E70461B7B8185 . 108544 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\services.exe
.
[-] 2010-08-17 . 258DD5D4283FD9F9A7166BE9AE45CE73 . 58880 . . [5.1.2600.6024] . . c:\windows\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[-] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\spoolsv.exe
[-] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\dllcache\spoolsv.exe
[-] 2008-04-14 . D8E14A61ACC1D4A6CD0D38AEBAC7FA3B . 57856 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB2347290$\spoolsv.exe
[-] 2008-04-14 . D8E14A61ACC1D4A6CD0D38AEBAC7FA3B . 57856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\spoolsv.exe
[-] 2008-04-14 . D8E14A61ACC1D4A6CD0D38AEBAC7FA3B . 57856 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\spoolsv.exe
.
[-] 2008-04-14 . ED0EF0A136DEC83DF69F04118870003E . 507904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\winlogon.exe
[-] 2008-04-14 . ED0EF0A136DEC83DF69F04118870003E . 507904 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe
[-] 2008-04-14 . ED0EF0A136DEC83DF69F04118870003E . 507904 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\winlogon.exe
.
[-] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ipsec.sys
[-] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
.
[-] 2010-08-23 . 93AFB83FBC1F9443CAC722FCA63D73BF . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll
[-] 2010-08-23 . 93AFB83FBC1F9443CAC722FCA63D73BF . 617472 . . [5.82] . . c:\windows\system32\dllcache\comctl32.dll
[-] 2010-08-23 . 736B12B725AEB2B07F0241A9F680CB10 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
[-] 2008-04-14 . BD38D1EBE24A46BD3EDA059560AFBA12 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
[-] 2008-04-14 . 06F247492BC786CE5C24A23E178C711A . 617472 . . [5.82] . . c:\windows\$NtUninstallKB2296011$\comctl32.dll
[-] 2008-04-14 . 06F247492BC786CE5C24A23E178C711A . 617472 . . [5.82] . . c:\windows\ServicePackFiles\i386\comctl32.dll
[-] 2008-04-14 . 06F247492BC786CE5C24A23E178C711A . 617472 . . [5.82] . . c:\windows\system32\dllcache\cache\comctl32.dll
[-] 2004-08-04 . AEF3D788DBF40C7C4D204EA45EB0C505 . 921088 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll
[-] 2004-08-04 . 5AF68A5E44734A082442668E9C787743 . 1050624 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
.
[-] 2008-04-14 . 3D4E199942E29207970E04315D02AD3B . 62464 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\cryptsvc.dll
[-] 2008-04-14 . 3D4E199942E29207970E04315D02AD3B . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll
.
[-] 2008-07-07 20:26 . D4991D98F2DB73C60D042F1AEF79EFAE . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll
[-] 2008-07-07 20:26 . D4991D98F2DB73C60D042F1AEF79EFAE . 253952 . . [2001.12.4414.706] . . c:\windows\system32\dllcache\es.dll
[-] 2008-07-07 20:23 . F17F6226BDC0CD5F0BEF0DAF84D29BEC . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll
[-] 2008-04-14 00:11 . 19A799805B24990867B00C120D300C3A . 246272 . . [2001.12.4414.701] . . c:\windows\$NtUninstallKB950974$\es.dll
[-] 2008-04-14 00:11 . 19A799805B24990867B00C120D300C3A . 246272 . . [2001.12.4414.701] . . c:\windows\ServicePackFiles\i386\es.dll
.
[-] 2008-04-14 . 0DA85218E92526972A821587E6A8BF8F . 110080 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\imm32.dll
[-] 2008-04-14 . 0DA85218E92526972A821587E6A8BF8F . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll
[-] 2008-04-14 . 0DA85218E92526972A821587E6A8BF8F . 110080 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\imm32.dll
.
[-] 2009-03-21 . B921FB870C9AC0D509B2CCABBBBE95F3 . 989696 . . [5.1.2600.5781] . . c:\windows\system32\kernel32.dll
[-] 2009-03-21 . B921FB870C9AC0D509B2CCABBBBE95F3 . 989696 . . [5.1.2600.5781] . . c:\windows\system32\dllcache\kernel32.dll
[-] 2009-03-21 . B921FB870C9AC0D509B2CCABBBBE95F3 . 989696 . . [5.1.2600.5781] . . c:\windows\system32\dllcache\cache\kernel32.dll
[-] 2009-03-21 . DA11D9D6ECBDF0F93436A4B7C13F7BEC . 991744 . . [5.1.2600.5781] . . c:\windows\$hf_mig$\KB959426\SP3QFE\kernel32.dll
[-] 2008-04-14 . C24B983D211C34DA8FCC1AC38477971D . 989696 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB959426$\kernel32.dll
[-] 2008-04-14 . C24B983D211C34DA8FCC1AC38477971D . 989696 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kernel32.dll
.
[-] 2008-04-14 . 2DC5A8019E2387987905F77C664E4BE2 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\linkinfo.dll
[-] 2008-04-14 . 2DC5A8019E2387987905F77C664E4BE2 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll
.
[-] 2008-04-14 . 012DF358CEBAA23ACB26D82077820817 . 22016 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lpk.dll
[-] 2008-04-14 . 012DF358CEBAA23ACB26D82077820817 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll
[-] 2008-04-14 . 012DF358CEBAA23ACB26D82077820817 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\lpk.dll
.
[-] 2012-03-01 . DADE53318D8E5335EE2E1745F1C3FC4D . 5978624 . . [8.00.6001.19222] . . c:\windows\SoftwareDistribution\Download\10e15349103fd74db71a357203602738\SP3GDR\mshtml.dll
[-] 2012-03-01 . 5DBB0C997AD276BCE9D30CD609BDBF67 . 5980672 . . [8.00.6001.23318] . . c:\windows\SoftwareDistribution\Download\10e15349103fd74db71a357203602738\SP3QFE\mshtml.dll
[-] 2011-11-04 . DD8D655E1881B70A5259A23A6018A6C2 . 5978112 . . [8.00.6001.19170] . . c:\windows\system32\mshtml.dll
[-] 2011-11-04 . DD8D655E1881B70A5259A23A6018A6C2 . 5978112 . . [8.00.6001.19170] . . c:\windows\system32\dllcache\mshtml.dll
[-] 2011-11-04 . 699421E2E1313C18671A703953CAE14B . 5978624 . . [8.00.6001.23266] . . c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\mshtml.dll
[-] 2011-10-03 . 4963CB503600FC3BCBDBFBA51FBA1FAC . 5971456 . . [8.00.6001.19154] . . c:\windows\ie8updates\KB2618444-IE8\mshtml.dll
[-] 2011-10-03 . 1240A6B7B470BED0AA6C9FEC7AB0EA26 . 5972992 . . [8.00.6001.23250] . . c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\mshtml.dll
[-] 2011-07-25 . 23B3C8E9F3F280180573569253CE98AB . 5969920 . . [8.00.6001.19120] . . c:\windows\ie8updates\KB2586448-IE8\mshtml.dll
[-] 2011-07-25 . BCE7CCEBAD6C8955D2B4C3B246BD0E57 . 5971456 . . [8.00.6001.23216] . . c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\mshtml.dll
[-] 2011-05-30 . 22BA5235EA846EDA87F68A1DCC2BFCF9 . 5964800 . . [8.00.6001.19088] . . c:\windows\ie8updates\KB2559049-IE8\mshtml.dll
[-] 2011-05-30 . 22BA5235EA846EDA87F68A1DCC2BFCF9 . 5964800 . . [8.00.6001.19088] . . c:\windows\SoftwareDistribution\Download\730e51ab61fc82e473594dd494abebf2\SP3GDR\mshtml.dll
[-] 2011-05-30 . D0B1DB576941CB0B6669B8752FFAC79A . 5967360 . . [8.00.6001.23181] . . c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\mshtml.dll
[-] 2011-05-30 . D0B1DB576941CB0B6669B8752FFAC79A . 5967360 . . [8.00.6001.23181] . . c:\windows\SoftwareDistribution\Download\730e51ab61fc82e473594dd494abebf2\SP3QFE\mshtml.dll
[-] 2011-04-25 . 4C57EAF103103F4BCD084A9A353573B0 . 3608576 . . [7.00.6000.17098] . . c:\windows\ie8\mshtml.dll
[-] 2011-04-25 . 7E9C4CD54CC21D3F0F7AC8A562FF7101 . 3610624 . . [7.00.6000.21300] . . c:\windows\$hf_mig$\KB2530548-IE7\SP3QFE\mshtml.dll
[-] 2011-02-17 . C9158D1A97BC96CA728F721237DEE9AA . 3607040 . . [7.00.6000.17097] . . c:\windows\ie7updates\KB2530548-IE7\mshtml.dll
[-] 2011-02-17 . F1CBB65EFAFAFA19B06D902DE9E02DEA . 3609600 . . [7.00.6000.21299] . . c:\windows\$hf_mig$\KB2497640-IE7\SP3QFE\mshtml.dll
[-] 2010-12-20 . 48017FB21F1F1DD7E7281B80E162FA43 . 3609088 . . [7.00.6000.21297] . . c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\mshtml.dll
[-] 2010-12-20 . 48017FB21F1F1DD7E7281B80E162FA43 . 3609088 . . [7.00.6000.21297] . . c:\windows\SoftwareDistribution\Download\79810b38397180784856d3f418ff8477\sp3qfe\mshtml.dll
[-] 2010-12-20 . 6FBDFAB3DF839EB93248519681F3C2C9 . 3606528 . . [7.00.6000.17095] . . c:\windows\ie7updates\KB2497640-IE7\mshtml.dll
[-] 2010-12-20 . 6FBDFAB3DF839EB93248519681F3C2C9 . 3606528 . . [7.00.6000.17095] . . c:\windows\SoftwareDistribution\Download\79810b38397180784856d3f418ff8477\sp3gdr\mshtml.dll
[-] 2010-11-06 . 2F2DA920F5B9582D40B9761D2AB45696 . 3604480 . . [7.00.6000.17093] . . c:\windows\ie7updates\KB2482017-IE7\mshtml.dll
[-] 2010-11-06 . 1B62916D85DFC66158B1FD0CAC16BA05 . 3607040 . . [7.00.6000.21295] . . c:\windows\$hf_mig$\KB2416400-IE7\SP3QFE\mshtml.dll
[-] 2010-09-09 . 2D4ADA592FA9CBBC6D25A4A6293CD719 . 3601920 . . [7.00.6000.17092] . . c:\windows\ie7updates\KB2416400-IE7\mshtml.dll
[-] 2010-09-09 . 151A139487B733CD1B967ED2B14C290E . 3605504 . . [7.00.6000.21294] . . c:\windows\$hf_mig$\KB2360131-IE7\SP3QFE\mshtml.dll
[-] 2010-06-24 . 0FB7E2774BD643C181D673426AF3F62A . 3603968 . . [7.00.6000.21283] . . c:\windows\$hf_mig$\KB2183461-IE7\SP3QFE\mshtml.dll
[-] 2010-06-24 . E716E9EBCFFFFE45264CE6A1FC135B4B . 3600896 . . [7.00.6000.17080] . . c:\windows\ie7updates\KB2360131-IE7\mshtml.dll
[-] 2010-05-06 . C7B7A88CC7D7ABA5C395145BF92F46F7 . 5950976 . . [8.00.6001.18928] . . c:\windows\ie8updates\KB2530548-IE8\mshtml.dll
[-] 2010-05-06 . C7B7A88CC7D7ABA5C395145BF92F46F7 . 5950976 . . [8.00.6001.18928] . . c:\windows\SoftwareDistribution\Download\e9e3bc7b49018c1f53cc0d1bd73cad37\SP3GDR\mshtml.dll
[-] 2010-05-06 . 9BE28F749A7FE7F8F177C6AA2E9DA609 . 5953024 . . [8.00.6001.23019] . . c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\mshtml.dll
[-] 2010-05-06 . 9BE28F749A7FE7F8F177C6AA2E9DA609 . 5953024 . . [8.00.6001.23019] . . c:\windows\SoftwareDistribution\Download\e9e3bc7b49018c1f53cc0d1bd73cad37\SP3QFE\mshtml.dll
[-] 2010-05-04 . F247F7AC6713066D4C71721BDC73FC2E . 3600384 . . [7.00.6000.17063] . . c:\windows\ie7updates\KB2183461-IE7\mshtml.dll
[-] 2010-05-04 . C466BDCDFAE6F6EFD618F34BA90B1923 . 3603456 . . [7.00.6000.21264] . . c:\windows\$hf_mig$\KB982381-IE7\SP3QFE\mshtml.dll
[-] 2009-10-29 . 89A9658515A18E673034369E043FAB01 . 3598336 . . [7.00.6000.16945] . . c:\windows\ie7updates\KB982381-IE7\mshtml.dll
[-] 2009-10-29 . 8B48737260C273C9B0DACA84EA1CCDBD . 3602432 . . [7.00.6000.21148] . . c:\windows\$hf_mig$\KB976325-IE7\SP3QFE\mshtml.dll
[-] 2009-10-21 . 36145D2D908FB8A24772F04842366918 . 3598336 . . [7.00.6000.16939] . . c:\windows\ie7updates\KB976325-IE7\mshtml.dll
[-] 2009-10-21 . E6453EE08B283419171889786D057A75 . 3602432 . . [7.00.6000.21142] . . c:\windows\$hf_mig$\KB976749-IE7\SP3QFE\mshtml.dll
[-] 2009-08-29 . E52A845DCE011D56B12B8F3F4606F956 . 3598336 . . [7.00.6000.16915] . . c:\windows\ie7updates\KB976749-IE7\mshtml.dll
[-] 2009-08-29 . EDAD55105DDD067AE3906011F297267C . 3600384 . . [7.00.6000.21115] . . c:\windows\$hf_mig$\KB974455-IE7\SP3QFE\mshtml.dll
[-] 2009-07-19 . 758C8BEDAB7CE5F9070C85E2E57CBD80 . 3597824 . . [7.00.6000.16890] . . c:\windows\ie7updates\KB974455-IE7\mshtml.dll
[-] 2009-07-19 . 758C8BEDAB7CE5F9070C85E2E57CBD80 . 3597824 . . [7.00.6000.16890] . . c:\windows\system32\dllcache\cache\mshtml.dll
[-] 2009-07-19 . F6098CC1B1C3858D53F20F3CB5774F3B . 3600384 . . [7.00.6000.21089] . . c:\windows\$hf_mig$\KB972260-IE7\SP3QFE\mshtml.dll
[-] 2009-04-29 . C6FD770D518FB024245A0EE217D72BC1 . 3598336 . . [7.00.6000.21045] . . c:\windows\$hf_mig$\KB969897-IE7\SP3QFE\mshtml.dll
[-] 2009-04-29 . C6FD770D518FB024245A0EE217D72BC1 . 3598336 . . [7.00.6000.21045] . . c:\windows\SoftwareDistribution\Download\803badc49670f68514bc104c4297fe82\SP3QFE\mshtml.dll
[-] 2009-04-29 04:56 . 7E9CCF2D2DF820B2861B3A842DD53D61 . 3596288 . . [------] . . c:\windows\ie7updates\KB972260-IE7\mshtml.dll
[-] 2009-04-29 . 2B4315EC9E3124408A2A5074C4B97700 . 3596288 . . [7.00.6000.16850] . . c:\windows\SoftwareDistribution\Download\803badc49670f68514bc104c4297fe82\SP3GDR\mshtml.dll
[-] 2009-04-29 . ABD8093E43E53AEA5898D2214B92E9BA . 3068928 . . [6.00.2900.5803] . . c:\windows\ie7\mshtml.dll
[-] 2009-04-29 . 06CF679E3D24C3DF270556456A0F1EDA . 3069440 . . [6.00.2900.5803] . . c:\windows\$hf_mig$\KB969897\SP3QFE\mshtml.dll
[-] 2009-03-08 . D469A0EBA2EF5C6BEE8065B7E3196E5E . 5937152 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB982381-IE8\mshtml.dll
[-] 2008-04-14 . A706E122B398FE1AB85CB9B75D044223 . 3066880 . . [6.00.2900.5512] . . c:\windows\$NtUninstallKB969897$\mshtml.dll
[-] 2008-04-14 . A706E122B398FE1AB85CB9B75D044223 . 3066880 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\mshtml.dll
[-] 2007-08-13 . C6EC2493346ED8888A549F59210A8ED3 . 3578368 . . [7.00.5730.13] . . c:\windows\ie7updates\KB969897-IE7\mshtml.dll
.
[-] 2008-04-14 . D7075E95AA599EE77B7A89D39296BD3D . 343040 . . [7.0.2600.5512] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.5512_x-ww_3fd60d63\msvcrt.dll
[-] 2008-04-14 . 355EDBB4D412B01F1740C17E3F50FA00 . 343040 . . [7.0.2600.5512] . . c:\windows\ServicePackFiles\i386\msvcrt.dll
[-] 2008-04-14 . 355EDBB4D412B01F1740C17E3F50FA00 . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll
[-] 2004-08-04 . 4200BE3808F6406DBE45A7B88DAE5035 . 322560 . . [7.0.2600.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.0.0_x-ww_2726e76a\msvcrt.dll
[-] 2004-08-04 . 98EC447E00229AFD88D5161A25D065DA . 343040 . . [7.0.2600.2180] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.2180_x-ww_b2505ed9\msvcrt.dll
.
[-] 2008-06-20 . 832E4DD8964AB7ACC880B2837CB1ED20 . 245248 . . [5.1.2600.5625] . . c:\windows\$NtUninstallKB2509553$\mswsock.dll
[-] 2008-06-20 . FCEE5FCB99F7C724593365C706D28388 . 245248 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\mswsock.dll
[-] 2008-06-20 . FCEE5FCB99F7C724593365C706D28388 . 245248 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll
[-] 2008-06-20 . 943337D786A56729263071623BBB9DE5 . 245248 . . [5.1.2600.5625] . . c:\windows\system32\mswsock.dll
[-] 2008-06-20 . 943337D786A56729263071623BBB9DE5 . 245248 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\mswsock.dll
[-] 2008-04-14 . B4138E99236F0F57D4CF49BAE98A0746 . 245248 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\mswsock.dll
[-] 2008-04-14 . B4138E99236F0F57D4CF49BAE98A0746 . 245248 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\mswsock.dll
.
[-] 2008-04-14 . 1B7F071C51B77C272875C3A23E1E4550 . 407040 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netlogon.dll
[-] 2008-04-14 . 1B7F071C51B77C272875C3A23E1E4550 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll
[-] 2008-04-14 . 1B7F071C51B77C272875C3A23E1E4550 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\netlogon.dll
.
[-] 2008-04-14 . 50A166237A0FA771261275A405646CC0 . 17408 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\powrprof.dll
[-] 2008-04-14 . 50A166237A0FA771261275A405646CC0 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll
[-] 2008-04-14 . 50A166237A0FA771261275A405646CC0 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\dllcache\cache\powrprof.dll
.
[-] 2008-04-14 . A86BB5E61BF3E39B62AB4C7E7085A084 . 181248 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\scecli.dll
[-] 2008-04-14 . A86BB5E61BF3E39B62AB4C7E7085A084 . 181248 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll
.
[-] 2008-04-14 . 96E1C926F22EE1BFBAE82901A35F6BF3 . 5120 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfc.dll
[-] 2008-04-14 . 96E1C926F22EE1BFBAE82901A35F6BF3 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll
[-] 2008-04-14 . 96E1C926F22EE1BFBAE82901A35F6BF3 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\sfc.dll
.
[-] 2008-04-14 . 27C6D03BCDB8CFEB96B716F3D8BE3E18 . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\svchost.exe
[-] 2008-04-14 . 27C6D03BCDB8CFEB96B716F3D8BE3E18 . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe
[-] 2008-04-14 . 27C6D03BCDB8CFEB96B716F3D8BE3E18 . 14336 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\svchost.exe
.
[-] 2008-04-14 . 3CB78C17BB664637787C9A1C98F79C38 . 249856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tapisrv.dll
[-] 2008-04-14 . 3CB78C17BB664637787C9A1C98F79C38 . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll
.
[-] 2008-04-14 . B26B135FF1B9F60C9388B4A7D16F600B . 578560 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\user32.dll
[-] 2008-04-14 . B26B135FF1B9F60C9388B4A7D16F600B . 578560 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll
[-] 2008-04-14 . B26B135FF1B9F60C9388B4A7D16F600B . 578560 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\user32.dll
.
[-] 2008-04-14 . A93AEE1928A9D7CE3E16D24EC7380F89 . 26112 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\userinit.exe
[-] 2008-04-14 . A93AEE1928A9D7CE3E16D24EC7380F89 . 26112 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe
[-] 2008-04-14 . A93AEE1928A9D7CE3E16D24EC7380F89 . 26112 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\userinit.exe
.
[-] 2012-03-01 . 009E7B4C284F080608D7286484015EE5 . 916992 . . [8.00.6001.19222] . . c:\windows\SoftwareDistribution\Download\10e15349103fd74db71a357203602738\SP3GDR\wininet.dll
[-] 2012-03-01 . 4EC67FAB39F37626AD6D9895FC094ABF . 919552 . . [8.00.6001.23318] . . c:\windows\SoftwareDistribution\Download\10e15349103fd74db71a357203602738\SP3QFE\wininet.dll
[-] 2011-11-04 . 552263502EA8C24D301A0C43FF90B3ED . 916992 . . [8.00.6001.19165] . . c:\windows\system32\wininet.dll
[-] 2011-11-04 . 552263502EA8C24D301A0C43FF90B3ED . 916992 . . [8.00.6001.19165] . . c:\windows\system32\dllcache\wininet.dll
[-] 2011-11-04 . 4E4716CAF514717814D07113AD0425B6 . 919552 . . [8.00.6001.23261] . . c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\wininet.dll
[-] 2011-08-22 . 1A377838B4B468E37C3EEB5BAA24F925 . 916480 . . [8.00.6001.19131] . . c:\windows\ie8updates\KB2618444-IE8\wininet.dll
[-] 2011-08-22 . 19630AEBBFAEB06984CAB91848270AAF . 919552 . . [8.00.6001.23227] . . c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\wininet.dll
[-] 2011-06-23 . AF4EDDC6C0446FCE5681B5DED52B8F0E . 916480 . . [8.00.6001.19098] . . c:\windows\ie8updates\KB2586448-IE8\wininet.dll
[-] 2011-06-23 . 509CF67AE762A38E23A5455A0053853C . 919552 . . [8.00.6001.23192] . . c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\wininet.dll
[-] 2011-04-25 . CC951C2212A200475A587A440E0AA804 . 916480 . . [8.00.6001.19072] . . c:\windows\ie8updates\KB2559049-IE8\wininet.dll
[-] 2011-04-25 . CC951C2212A200475A587A440E0AA804 . 916480 . . [8.00.6001.19072] . . c:\windows\SoftwareDistribution\Download\730e51ab61fc82e473594dd494abebf2\SP3GDR\wininet.dll
[-] 2011-04-25 . 7F4F1697001B9E9A7924D219DC215903 . 919552 . . [8.00.6001.23165] . . c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\wininet.dll
[-] 2011-04-25 . 7F4F1697001B9E9A7924D219DC215903 . 919552 . . [8.00.6001.23165] . . c:\windows\SoftwareDistribution\Download\730e51ab61fc82e473594dd494abebf2\SP3QFE\wininet.dll
[-] 2011-04-25 15:51 . 6AF4B52834380B4450F90437387936E2 . 832512 . . [------] . . c:\windows\ie8\wininet.dll
[-] 2011-04-25 . 72942C4583A65E93FB21CA4F5D0A54C7 . 841216 . . [7.00.6000.21300] . . c:\windows\$hf_mig$\KB2530548-IE7\SP3QFE\wininet.dll
[-] 2011-02-17 . 2F7A5408260CD0D3D2E916F811E166F5 . 832512 . . [7.00.6000.17096] . . c:\windows\ie7updates\KB2530548-IE7\wininet.dll
[-] 2011-02-17 . 25FF5FFE129621CD879F9DB3B308D42C . 841216 . . [7.00.6000.21298] . . c:\windows\$hf_mig$\KB2497640-IE7\SP3QFE\wininet.dll
[-] 2010-12-20 . 9C444BC487BBC30773C67F17F1108ABB . 841216 . . [7.00.6000.21297] . . c:\windows\$hf_mig$\KB2482017-IE7\SP3QFE\wininet.dll
[-] 2010-12-20 . 9C444BC487BBC30773C67F17F1108ABB . 841216 . . [7.00.6000.21297] . . c:\windows\SoftwareDistribution\Download\79810b38397180784856d3f418ff8477\sp3qfe\wininet.dll
[-] 2010-12-20 . 69AC2C73642C3FADED461CA1A069FCF7 . 832512 . . [7.00.6000.17095] . . c:\windows\ie7updates\KB2497640-IE7\wininet.dll
[-] 2010-12-20 . 69AC2C73642C3FADED461CA1A069FCF7 . 832512 . . [7.00.6000.17095] . . c:\windows\SoftwareDistribution\Download\79810b38397180784856d3f418ff8477\sp3gdr\wininet.dll
[-] 2010-11-06 . 67CD1C036ECC93B1B45B07A4AFDA1D96 . 832512 . . [7.00.6000.17093] . . c:\windows\ie7updates\KB2482017-IE7\wininet.dll
[-] 2010-11-06 . F4310169BC5EE25617301E8E78FE5C84 . 841216 . . [7.00.6000.21295] . . c:\windows\$hf_mig$\KB2416400-IE7\SP3QFE\wininet.dll
[-] 2010-09-09 . 22B3D4A94B1E3CFCD4A6378069F5E585 . 832512 . . [7.00.6000.17091] . . c:\windows\ie7updates\KB2416400-IE7\wininet.dll
[-] 2010-09-09 . 032F0278A8E39AA3F72FD795F5A83A23 . 841216 . . [7.00.6000.21293] . . c:\windows\$hf_mig$\KB2360131-IE7\SP3QFE\wininet.dll
[-] 2010-06-24 . 2E5F7848F3FEECC1F3915A64C0AD0FA8 . 841216 . . [7.00.6000.21283] . . c:\windows\$hf_mig$\KB2183461-IE7\SP3QFE\wininet.dll
[-] 2010-06-24 . 473A87B1DD8941FFE9315CFE6A13B354 . 832512 . . [7.00.6000.17080] . . c:\windows\ie7updates\KB2360131-IE7\wininet.dll
[-] 2010-05-06 . 2D9C7B010409372C34F725DA5CCED083 . 916480 . . [8.00.6001.18923] . . c:\windows\ie8updates\KB2530548-IE8\wininet.dll
[-] 2010-05-06 . 2D9C7B010409372C34F725DA5CCED083 . 916480 . . [8.00.6001.18923] . . c:\windows\SoftwareDistribution\Download\e9e3bc7b49018c1f53cc0d1bd73cad37\SP3GDR\wininet.dll
[-] 2010-05-06 . C1490F68B44AF8B781F52F12F564625D . 919040 . . [8.00.6001.23014] . . c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\wininet.dll
[-] 2010-05-06 . C1490F68B44AF8B781F52F12F564625D . 919040 . . [8.00.6001.23014] . . c:\windows\SoftwareDistribution\Download\e9e3bc7b49018c1f53cc0d1bd73cad37\SP3QFE\wininet.dll
[-] 2010-05-04 . 83306356DE710DA87ED91A6AF6233214 . 832512 . . [7.00.6000.17055] . . c:\windows\ie7updates\KB2183461-IE7\wininet.dll
[-] 2010-05-04 . 506B3DCB9C26070072E3047C6910F844 . 841216 . . [7.00.6000.21256] . . c:\windows\$hf_mig$\KB982381-IE7\SP3QFE\wininet.dll
[-] 2009-10-29 . 7C599DEC022BEF6E3C9F4DB4FC164E8B . 832512 . . [7.00.6000.16945] . . c:\windows\ie7updates\KB982381-IE7\wininet.dll
[-] 2009-10-29 . CA5CB4F174592090FBECFEAD9B51BB90 . 841216 . . [7.00.6000.21148] . . c:\windows\$hf_mig$\KB976325-IE7\SP3QFE\wininet.dll
[-] 2009-08-29 . DB111200015F08DDDB8857E11C6A80E3 . 832512 . . [7.00.6000.16915] . . c:\windows\ie7updates\KB976325-IE7\wininet.dll
[-] 2009-08-29 . A5885AF9BFBD942B828E6020AD326517 . 840704 . . [7.00.6000.21115] . . c:\windows\$hf_mig$\KB974455-IE7\SP3QFE\wininet.dll
[-] 2009-06-29 . 4C6B4138165A4C53FE8A5B1D809526C3 . 828928 . . [7.00.6000.21073] . . c:\windows\$hf_mig$\KB972260-IE7\SP3QFE\wininet.dll
[-] 2009-06-29 . A39B7BA7AB9B1CC2A0009F59772DB83C . 827392 . . [7.00.6000.16876] . . c:\windows\ie7updates\KB974455-IE7\wininet.dll
[-] 2009-06-29 . A39B7BA7AB9B1CC2A0009F59772DB83C . 827392 . . [7.00.6000.16876] . . c:\windows\system32\dllcache\cache\wininet.dll
[-] 2009-04-29 . 8E2D471157B0DF329D8D0EA5D83B0DDB . 827392 . . [7.00.6000.16850] . . c:\windows\ie7updates\KB972260-IE7\wininet.dll
[-] 2009-04-29 . 8E2D471157B0DF329D8D0EA5D83B0DDB . 827392 . . [7.00.6000.16850] . . c:\windows\SoftwareDistribution\Download\803badc49670f68514bc104c4297fe82\SP3GDR\wininet.dll
[-] 2009-04-29 . 62CCA075F44015147B8971DAFFBCFF76 . 828928 . . [7.00.6000.21045] . . c:\windows\$hf_mig$\KB969897-IE7\SP3QFE\wininet.dll
[-] 2009-04-29 . 62CCA075F44015147B8971DAFFBCFF76 . 828928 . . [7.00.6000.21045] . . c:\windows\SoftwareDistribution\Download\803badc49670f68514bc104c4297fe82\SP3QFE\wininet.dll
[-] 2009-04-29 . 6002073519FA478BF89977369CDFD156 . 666624 . . [6.00.2900.5803] . . c:\windows\ie7\wininet.dll
[-] 2009-04-29 . 04BCB4F87B35502568F6CF33433543A5 . 668160 . . [6.00.2900.5803] . . c:\windows\$hf_mig$\KB969897\SP3QFE\wininet.dll
[-] 2009-03-08 . 6CE32F7778061CCC5814D5E0F282D369 . 914944 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB982381-IE8\wininet.dll
[-] 2008-04-14 . 7A4F775ABB2F1C97DEF3E73AFA2FAEDD . 666112 . . [6.00.2900.5512] . . c:\windows\$NtUninstallKB969897$\wininet.dll
[-] 2008-04-14 . 7A4F775ABB2F1C97DEF3E73AFA2FAEDD . 666112 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\wininet.dll
[-] 2007-08-13 . A4A0FC92358F39538A6494C42EF99FE9 . 818688 . . [7.00.5730.13] . . c:\windows\ie7updates\KB969897-IE7\wininet.dll
.
[-] 2008-04-14 . 2CCC474EB85CEAA3E1FA1726580A3E5A . 82432 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2_32.dll
[-] 2008-04-14 . 2CCC474EB85CEAA3E1FA1726580A3E5A . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll
[-] 2008-04-14 . 2CCC474EB85CEAA3E1FA1726580A3E5A . 82432 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\ws2_32.dll
.
[-] 2008-04-14 . 9789E95E1D88EEB4B922BF3EA7779C28 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2help.dll
[-] 2008-04-14 . 9789E95E1D88EEB4B922BF3EA7779C28 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\ws2help.dll
.
[-] 2008-04-14 . 12896823FB95BFB3DC9B46BCAEDC9923 . 1033728 . . [6.00.2900.5512] . . c:\windows\explorer.exe
[-] 2008-04-14 . 12896823FB95BFB3DC9B46BCAEDC9923 . 1033728 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\explorer.exe
[-] 2008-04-14 . 12896823FB95BFB3DC9B46BCAEDC9923 . 1033728 . . [6.00.2900.5512] . . c:\windows\system32\dllcache\cache\explorer.exe
.
[-] 2008-04-14 . 058710B720282CA82B909912D3EF28DB . 146432 . . [5.1.2600.5512] . . c:\windows\regedit.exe
[-] 2008-04-14 . 058710B720282CA82B909912D3EF28DB . 146432 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regedit.exe
.
[-] 2011-11-01 . 6BAD1BED9872E62049E487FB91AE2F3A . 1288704 . . [5.1.2600.6168] . . c:\windows\system32\ole32.dll
[-] 2011-11-01 . 6BAD1BED9872E62049E487FB91AE2F3A . 1288704 . . [5.1.2600.6168] . . c:\windows\system32\dllcache\ole32.dll
[-] 2011-11-01 . 7D9DDE1AB4B00DDB173F5A16E9206517 . 1289216 . . [5.1.2600.6168] . . c:\windows\$hf_mig$\KB2624667\SP3QFE\ole32.dll
[-] 2010-07-16 . 7A6A7900B5E322763430BA6FD9A31224 . 1288192 . . [5.1.2600.6010] . . c:\windows\$NtUninstallKB2624667$\ole32.dll
[-] 2010-07-16 . 8D51FB47062F2A1A9EFECCEF338A4C46 . 1289216 . . [5.1.2600.6010] . . c:\windows\$hf_mig$\KB979687\SP3QFE\ole32.dll
[-] 2008-04-14 . ECCE74BC6168375016450A86A164D976 . 1287168 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB979687$\ole32.dll
[-] 2008-04-14 . ECCE74BC6168375016450A86A164D976 . 1287168 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ole32.dll
.
[-] 2010-04-16 . 9E03DC5AB51CFD0190541CE2038D819D . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\usp10.dll
[-] 2010-04-16 . 9E03DC5AB51CFD0190541CE2038D819D . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\dllcache\usp10.dll
[-] 2010-04-16 . F8894BCC961D461674002B4BAE7AECC1 . 406016 . . [1.0420.2600.5969] . . c:\windows\$hf_mig$\KB981322\SP3QFE\usp10.dll
[-] 2008-04-14 . 7D7D8501F3CB45D0408CDEFA08CDAEFF . 406016 . . [1.0420.2600.5512] . . c:\windows\$NtUninstallKB981322$\usp10.dll
[-] 2008-04-14 . 7D7D8501F3CB45D0408CDEFA08CDAEFF . 406016 . . [1.0420.2600.5512] . . c:\windows\ServicePackFiles\i386\usp10.dll
.
[-] 2008-04-14 . 9B9F1C38D559047B8AC0DBA2D5FEBDE9 . 4096 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\ksuser.dll
[-] 2008-04-14 . 9B9F1C38D559047B8AC0DBA2D5FEBDE9 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ksuser.dll
[-] 2008-04-14 . 9B9F1C38D559047B8AC0DBA2D5FEBDE9 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ReinstallBackups\0021\DriverFiles\i386\ksuser.dll
[-] 2004-08-03 . CBCD254547689BFF80C9F547B20911E9 . 4096 . . [5.3.2600.2180] . . c:\windows\system32\ReinstallBackups\0014\DriverFiles\i386\ksuser.dll
.
[-] 2008-04-14 . 5F1D5F88303D4A4DBC8E5F97BA967CC3 . 15360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ctfmon.exe
[-] 2008-04-14 . 5F1D5F88303D4A4DBC8E5F97BA967CC3 . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
[-] 2008-04-14 . 5F1D5F88303D4A4DBC8E5F97BA967CC3 . 15360 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\ctfmon.exe
.
[-] 2009-07-27 . 99BC0B50F511924348BE19C7C7313BBF . 135168 . . [6.00.2900.5853] . . c:\windows\system32\shsvcs.dll
[-] 2009-07-27 . 99BC0B50F511924348BE19C7C7313BBF . 135168 . . [6.00.2900.5853] . . c:\windows\system32\dllcache\shsvcs.dll
[-] 2009-07-27 . 888CD7B39C37E13A2419BECFAAF0A28C . 135168 . . [6.00.2900.5853] . . c:\windows\$hf_mig$\KB971029\SP3QFE\shsvcs.dll
[-] 2008-04-14 . 1926899BF9FFE2602B63074971700412 . 135168 . . [6.00.2900.5512] . . c:\windows\$NtUninstallKB971029$\shsvcs.dll
[-] 2008-04-14 . 1926899BF9FFE2602B63074971700412 . 135168 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\shsvcs.dll
.
[-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
[-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
[-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\srsvc.dll
.
[-] 2008-04-14 . F92E1076C42FCD6DB3D72D8CFE9816D5 . 13824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wscntfy.exe
[-] 2008-04-14 . F92E1076C42FCD6DB3D72D8CFE9816D5 . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe
[-] 2008-04-14 . F92E1076C42FCD6DB3D72D8CFE9816D5 . 13824 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\wscntfy.exe
.
[-] 2008-04-14 . 295D21F14C335B53CB8154E5B1F892B9 . 129024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\xmlprov.dll
[-] 2008-04-14 . 295D21F14C335B53CB8154E5B1F892B9 . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll
.
[-] 2008-04-14 . 6D4FEB43EE538FC5428CC7F0565AA656 . 56320 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\eventlog.dll
[-] 2008-04-14 . 6D4FEB43EE538FC5428CC7F0565AA656 . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll
.
[-] 2008-04-14 . 9DD07AF82244867CA36681EA2D29CE79 . 1614848 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll
[-] 2008-04-14 . 9DD07AF82244867CA36681EA2D29CE79 . 1614848 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
[-] 2008-04-14 . 9DD07AF82244867CA36681EA2D29CE79 . 1614848 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\sfcfiles.dll
.
[-] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ipsec.sys
[-] 2008-04-13 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
.
[-] 2008-04-14 . 5B19B557B0C188210A56A6B699D90B8F . 59904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regsvc.dll
[-] 2008-04-14 . 5B19B557B0C188210A56A6B699D90B8F . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll
.
[-] 2008-04-14 . 0A9A7365A1CA4319AA7C1D6CD8E4EAFA . 192512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\schedsvc.dll
[-] 2008-04-14 . 0A9A7365A1CA4319AA7C1D6CD8E4EAFA . 192512 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll
.
[-] 2008-04-14 . 0A5679B3714EDAB99E357057EE88FCA6 . 71680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll
[-] 2008-04-14 . 0A5679B3714EDAB99E357057EE88FCA6 . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll
.
[-] 2008-04-14 . FF3477C03BE7201C294C35F684B3479F . 295424 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\termsrv.dll
[-] 2008-04-14 . FF3477C03BE7201C294C35F684B3479F . 295424 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll
[-] 2008-04-14 . FF3477C03BE7201C294C35F684B3479F . 295424 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\termsrv.dll
.
[-] 2008-04-14 . 3CB32D3B8CBE79899D63280BB7A83CD9 . 344064 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\hnetcfg.dll
[-] 2008-04-14 . 3CB32D3B8CBE79899D63280BB7A83CD9 . 344064 . . [5.1.2600.5512] . . c:\windows\system32\hnetcfg.dll
.
[-] 2004-08-04 . 9859C0F6936E723E4892D7141B1327D5 . 11648 . . [5.1.2600.0] . . c:\windows\system32\dllcache\cache\acpiec.sys
[-] 2004-08-04 . 9859C0F6936E723E4892D7141B1327D5 . 11648 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys
.
[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\ServicePackFiles\i386\aec.sys
[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\dllcache\cache\aec.sys
[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys
.
[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\agp440.sys
[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\agp440.sys
.
[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ip6fw.sys
[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\ip6fw.sys
[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys
.
[-] 2010-09-18 07:18 . 842900DEDBC8E3E8DBCCCB298FD88F65 . 953856 . . [4.1.6151] . . c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc40u.dll
[-] 2010-09-18 06:53 . E76A5C202E68AF5A322D16B5A78F48B9 . 953856 . . [4.1.6151] . . c:\windows\system32\mfc40u.dll
[-] 2010-09-18 06:53 . E76A5C202E68AF5A322D16B5A78F48B9 . 953856 . . [4.1.6151] . . c:\windows\system32\dllcache\mfc40u.dll
[-] 2008-04-14 00:11 . CDDD4416B2B4C7295FE3FDB6DDE57E4E . 927504 . . [4.1.0.61] . . c:\windows\$NtUninstallKB2387149$\mfc40u.dll
[-] 2008-04-14 00:11 . CDDD4416B2B4C7295FE3FDB6DDE57E4E . 927504 . . [4.1.0.61] . . c:\windows\ServicePackFiles\i386\mfc40u.dll
[-] 2008-04-14 00:11 . CDDD4416B2B4C7295FE3FDB6DDE57E4E . 927504 . . [4.1.0.61] . . c:\windows\system32\dllcache\cache\mfc40u.dll
.
[-] 2008-04-14 . 986B1FF5814366D71E0AC5755C88F2D3 . 33792 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msgsvc.dll
[-] 2008-04-14 . 986B1FF5814366D71E0AC5755C88F2D3 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll
[-] 2008-04-14 . 986B1FF5814366D71E0AC5755C88F2D3 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\msgsvc.dll
.
[-] 2008-04-14 00:12 . C7E39EA41233E9F5B86C8DA3A9F1E4A8 . 52224 . . [9.0.1.56] . . c:\windows\$NtUninstallWMFDist11$\mspmsnsv.dll
[-] 2006-10-18 20:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll
[-] 2006-10-18 20:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\dllcache\mspmsnsv.dll
.
[-] 2011-10-25 . DB19FFF0C805664CB95062C027B11FE9 . 2069376 . . [5.1.2600.6165] . . c:\windows\$hf_mig$\KB2633171\SP3QFE\ntkrnlpa.exe
[-] 2011-10-25 . CE1A2FEDBD001ECDC5AD1975AFAD040A . 2069376 . . [5.1.2600.6165] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe
[-] 2011-10-25 . CE1A2FEDBD001ECDC5AD1975AFAD040A . 2069376 . . [5.1.2600.6165] . . c:\windows\system32\ntkrnlpa.exe
[-] 2011-10-25 . CE1A2FEDBD001ECDC5AD1975AFAD040A . 2069376 . . [5.1.2600.6165] . . c:\windows\system32\dllcache\ntkrnlpa.exe
[-] 2010-12-09 . F67CD97282E0ABFAF91A9A1359B16F2D . 2069376 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlpa.exe
[-] 2010-12-09 . F67CD97282E0ABFAF91A9A1359B16F2D . 2069376 . . [5.1.2600.6055] . . c:\windows\SoftwareDistribution\Download\f35839bf00bc83543dbda7acaf1e2a3b\SP3QFE\ntkrnlpa.exe
[-] 2010-12-09 . 84FF488E249DBD2050EB39EA81C6F5C2 . 2069376 . . [5.1.2600.6055] . . c:\windows\$NtUninstallKB2633171$\ntkrnlpa.exe
[-] 2010-12-09 . 84FF488E249DBD2050EB39EA81C6F5C2 . 2069376 . . [5.1.2600.6055] . . c:\windows\SoftwareDistribution\Download\f35839bf00bc83543dbda7acaf1e2a3b\SP3GDR\ntkrnlpa.exe
[-] 2010-04-28 . 756362706DE8BC92F11E197C98A73844 . 2066944 . . [5.1.2600.5973] . . c:\windows\$hf_mig$\KB981852\SP3QFE\ntkrnlpa.exe
[-] 2010-04-27 . DC57ABED7BDE1487E658968B4423BED7 . 2066816 . . [5.1.2600.5973] . . c:\windows\$NtUninstallKB2393802$\ntkrnlpa.exe
[-] 2010-02-16 . A046C627EC20456E2959B7BD628E1FD0 . 2066816 . . [5.1.2600.5938] . . c:\windows\$NtUninstallKB981852$\ntkrnlpa.exe
[-] 2010-02-16 . DED8B5A89B085284634502E9D75AC78C . 2066944 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3QFE\ntkrnlpa.exe
[-] 2009-08-04 . 363B2BBEE0AEDC9E5433616D0AD0236A . 2066176 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntkrnlpa.exe
[-] 2009-08-04 . 7437BA6F538E89381A2E3643AED296C7 . 2066048 . . [5.1.2600.5857] . . c:\windows\$NtUninstallKB979683$\ntkrnlpa.exe
[-] 2009-02-07 . 5BA7F2141BC6DB06100D0E5A732C617A . 2066048 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB971486$\ntkrnlpa.exe
[-] 2009-02-07 . 5BA7F2141BC6DB06100D0E5A732C617A . 2066048 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\cache\ntkrnlpa.exe
[-] 2009-02-06 . 607352B9CB3D708C67F6039097801B5A . 2066176 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe
[-] 2008-04-13 . 109F8E3E3C82E337BB71B6BC9B895D61 . 2065792 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntkrnlpa.exe
[-] 2008-04-13 . 109F8E3E3C82E337BB71B6BC9B895D61 . 2065792 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntkrnlpa.exe
.
[-] 2008-04-14 00:12 . 156F64A3345BD23C600655FB4D10BC08 . 435200 . . [5.1.2400.5512] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll
[-] 2008-04-14 00:12 . 156F64A3345BD23C600655FB4D10BC08 . 435200 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll
[-] 2008-04-14 00:12 . 156F64A3345BD23C600655FB4D10BC08 . 435200 . . [5.1.2400.5512] . . c:\windows\system32\dllcache\cache\ntmssvc.dll
.
[-] 2008-04-14 . 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 . 185856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\upnphost.dll
[-] 2008-04-14 . 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 . 185856 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll
.
[-] 2008-04-14 . 4D83ED8BDDEC431FC8AD907B47CFB6E3 . 367616 . . [5.3.2600.5512] . . c:\windows\ServicePackFiles\i386\dsound.dll
[-] 2008-04-14 . 4D83ED8BDDEC431FC8AD907B47CFB6E3 . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dsound.dll
.
[-] 2008-04-14 . 0607CBC6FA20114CB491EFE4B2F9EFAD . 1689088 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\d3d9.dll
[-] 2008-04-14 . 0607CBC6FA20114CB491EFE4B2F9EFAD . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\d3d9.dll
.
[-] 2008-04-14 . A340CD71EB535A3DD751B5F28723E50C . 279552 . . [5.03.2600.5512] . . c:\windows\ServicePackFiles\i386\ddraw.dll
[-] 2008-04-14 . A340CD71EB535A3DD751B5F28723E50C . 279552 . . [5.03.2600.5512] . . c:\windows\system32\ddraw.dll
.
[-] 2008-04-14 00:12 . 5652F6CE1D9E9D8068B9D29BC21B5409 . 84992 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\olepro32.dll
[-] 2008-04-14 00:12 . 5652F6CE1D9E9D8068B9D29BC21B5409 . 84992 . . [5.1.2600.5512] . . c:\windows\system32\olepro32.dll
.
[-] 2008-04-14 . DBE2B62353660ECCA0D75EA307A717E9 . 39936 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\perfctrs.dll
[-] 2008-04-14 . DBE2B62353660ECCA0D75EA307A717E9 . 39936 . . [5.1.2600.5512] . . c:\windows\system32\perfctrs.dll
.
[-] 2008-04-14 . C7CE131408739B0B3A318BE2D0032719 . 18944 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\version.dll
[-] 2008-04-14 . C7CE131408739B0B3A318BE2D0032719 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\version.dll
.
[-] 2011-10-25 . F512C662874D7545E5BD8005E6800A44 . 2192768 . . [5.1.2600.6165] . . c:\windows\$hf_mig$\KB2633171\SP3QFE\ntoskrnl.exe
[-] 2011-10-25 . 892CDDFF7EF96951B9B0B50974070E47 . 2192768 . . [5.1.2600.6165] . . c:\windows\Driver Cache\i386\ntoskrnl.exe
[-] 2011-10-25 . 892CDDFF7EF96951B9B0B50974070E47 . 2192768 . . [5.1.2600.6165] . . c:\windows\system32\ntoskrnl.exe
[-] 2011-10-25 . 892CDDFF7EF96951B9B0B50974070E47 . 2192768 . . [5.1.2600.6165] . . c:\windows\system32\dllcache\ntoskrnl.exe
[-] 2010-12-09 . A531BBD3DE13121C1380ED7DC99082DB . 2192768 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntoskrnl.exe
[-] 2010-12-09 . A531BBD3DE13121C1380ED7DC99082DB . 2192768 . . [5.1.2600.6055] . . c:\windows\SoftwareDistribution\Download\f35839bf00bc83543dbda7acaf1e2a3b\SP3QFE\ntoskrnl.exe
[-] 2010-12-09 . 64C1ADF6DF629F340C5A439FE0EF8ED1 . 2192768 . . [5.1.2600.6055] . . c:\windows\$NtUninstallKB2633171$\ntoskrnl.exe
[-] 2010-12-09 . 64C1ADF6DF629F340C5A439FE0EF8ED1 . 2192768 . . [5.1.2600.6055] . . c:\windows\SoftwareDistribution\Download\f35839bf00bc83543dbda7acaf1e2a3b\SP3GDR\ntoskrnl.exe
[-] 2010-04-28 . 472059774023F80EB7227EAF9A7ACDA1 . 2189952 . . [5.1.2600.5973] . . c:\windows\$NtUninstallKB2393802$\ntoskrnl.exe
[-] 2010-04-27 . A2ABBEC40CDB57454645D06B7EBD22F5 . 2190080 . . [5.1.2600.5973] . . c:\windows\$hf_mig$\KB981852\SP3QFE\ntoskrnl.exe
[-] 2010-02-17 . D41C3CBAD0E1C0728D1CDFD541F60CFA . 2189952 . . [5.1.2600.5938] . . c:\windows\$NtUninstallKB981852$\ntoskrnl.exe
[-] 2010-02-16 . E1F653A542449D54FA2D27463D99B6B6 . 2190080 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3QFE\ntoskrnl.exe
[-] 2009-08-04 . 8415D9C7C050E7022AED8ABF281BE4A6 . 2189184 . . [5.1.2600.5857] . . c:\windows\$NtUninstallKB979683$\ntoskrnl.exe
[-] 2009-08-04 . FDE779EA1A564EBFE16F4E0F82B61BAD . 2189312 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntoskrnl.exe
[-] 2009-02-07 . EFE8EACE83EAAD5849A7A548FB75B584 . 2189184 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe
[-] 2009-02-06 . 7A95B10A73737EBF24139AAA63F5212B . 2189056 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB971486$\ntoskrnl.exe
[-] 2009-02-06 . 7A95B10A73737EBF24139AAA63F5212B . 2189056 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\cache\ntoskrnl.exe
[-] 2008-04-13 . 0C89243C7C3EE199B96FCC16990E0679 . 2188928 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntoskrnl.exe
[-] 2008-04-13 . 0C89243C7C3EE199B96FCC16990E0679 . 2188928 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntoskrnl.exe
.
[-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll
[-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
[-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\cache\srsvc.dll
.
[-] 2008-04-14 . 54AF4B1D5459500EF0937F6D33B1914F . 175104 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\w32time.dll
[-] 2008-04-14 . 54AF4B1D5459500EF0937F6D33B1914F . 175104 . . [5.1.2600.5512] . . c:\windows\system32\w32time.dll
.
[-] 2008-04-14 . 8BAD69CBAC032D4BBACFCE0306174C30 . 333824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wiaservc.dll
[-] 2008-04-14 . 8BAD69CBAC032D4BBACFCE0306174C30 . 333824 . . [5.1.2600.5512] . . c:\windows\system32\wiaservc.dll
.
[-] 2008-04-14 . 5C12660A97822F6E61576943B49AAAD6 . 18944 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\midimap.dll
[-] 2008-04-14 . 5C12660A97822F6E61576943B49AAAD6 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\midimap.dll
.
[-] 2008-04-14 . 6F9BEF24C578D5D6740E080BEDD6A448 . 7680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rasadhlp.dll
[-] 2008-04-14 . 6F9BEF24C578D5D6740E080BEDD6A448 . 7680 . . [5.1.2600.5512] . . c:\windows\system32\rasadhlp.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
2011-05-09 08:49 176936 ----a-w- c:\program files\BitTorrentBar\prxtbBitT.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{88c7f2aa-f93f-432c-8f0e-b7d85967a527}"= "c:\program files\BitTorrentBar\prxtbBitT.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-07-19 94208]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-07-19 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-07-19 114688]
"snp2uvc"="c:\windows\vsnp2uvc.exe" [2009-06-22 662016]
"DivX Download Manager"="c:\program files\DivX\DivX Plus Web Player\DDmService.exe" [2010-12-08 63360]
"PSUNMain"="c:\program files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe" [2011-04-28 439616]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2011-10-20 2497352]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-29 421888]
"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2012-01-02 296056]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http://www.avg.com/ww.special-uninstallation-feedback-lsf?lic=OUxTRlJFRS1WUFVaNy1HMkNNWC1SWFBXQS1QM05aSC05RDIwQy0zN1RT&inst=NzctNjYyODIyNTYwLUJBKzEtS1YzKzYtRlA5Mis2LVRCOSsyLUZMKzktWE8zNisxLUY5TTEwQSsyLVhPOSsxLUY5TTIrMS1ERFQrMC1UVUcrMw&prod=55&ver=10.0.1388" [?]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\guard32.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Privoxy.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Privoxy.lnk
backup=c:\windows\pss\Privoxy.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2011-07-19 17:29 421736 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
2010-07-28 11:56 3365176 ----a-w- c:\program files\Samsung\Kies\KiesTrayAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ------w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Documents and Settings\\Veron\\Local Settings\\temp\\CProgram FilesOpera\\OperaUpgrader.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\BitTorrent\\BitTorrent.exe"=
.
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [5/2/2011 8:36 PM 31704]
R2 !SASCORE;SAS Core Service;"c:\documents and settings\Veron\Desktop\SASCORE.EXE" --> c:\documents and settings\Veron\Desktop\SASCORE.EXE [?]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [11/3/2006 7:19 PM 13592]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdGuard.sys [5/2/2011 8:36 PM 492768]
S1 PSINKNC;PSINKNC;c:\windows\system32\drivers\PSINKNC.sys [4/28/2011 1:57 PM 129992]
S1 SASDIFSV;SASDIFSV;\??\c:\documents and settings\Veron\Desktop\SASDIFSV.SYS --> c:\documents and settings\Veron\Desktop\SASDIFSV.SYS [?]
S1 SASKUTIL;SASKUTIL;\??\c:\documents and settings\Veron\Desktop\SASKUTIL.SYS --> c:\documents and settings\Veron\Desktop\SASKUTIL.SYS [?]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [7/26/2010 2:17 PM 95568]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [8/29/2010 1:16 PM 217088]
S2 NanoServiceMain;Panda Cloud Antivirus Service;c:\program files\Panda Security\Panda Cloud Antivirus\PSANHost.exe [4/28/2011 1:58 PM 140608]
S2 PSINAflt;PSINAflt;c:\windows\system32\drivers\PSINAflt.sys [8/1/2011 12:23 PM 143752]
S2 PSINFile;PSINFile;c:\windows\system32\drivers\PSINFile.sys [4/28/2011 1:57 PM 97096]
S2 PSINProc;PSINProc;c:\windows\system32\drivers\PSINProc.sys [4/28/2011 1:57 PM 111688]
S2 PSINProt;PSINProt;c:\windows\system32\drivers\PSINProt.sys [4/28/2011 1:57 PM 112456]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\drivers\ssadadb.sys [8/29/2010 1:17 PM 30312]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [7/26/2010 2:17 PM 18136]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [8/29/2010 1:16 PM 36640]
S3 RkPavproc1;RkPavproc1;\??\c:\windows\system32\drivers\RkPavproc1.sys --> c:\windows\system32\drivers\RkPavproc1.sys [?]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [8/29/2010 1:17 PM 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [8/29/2010 1:17 PM 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [8/29/2010 1:17 PM 123648]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\drivers\ss_bserd.sys [8/29/2010 1:17 PM 100224]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [8/29/2010 1:17 PM 96488]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [8/29/2010 1:17 PM 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [8/29/2010 1:17 PM 121576]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [8/29/2010 1:17 PM 98152]
S3 sscebus;SAMSUNG USB Composite Device V2 driver (WDM);c:\windows\system32\drivers\sscebus.sys [8/29/2010 1:17 PM 98560]
S3 sscemdfl;SAMSUNG Mobile Modem V2 Filter;c:\windows\system32\drivers\sscemdfl.sys [8/29/2010 1:17 PM 14848]
S3 sscemdm;SAMSUNG Mobile Modem V2 Drivers;c:\windows\system32\drivers\sscemdm.sys [8/29/2010 1:17 PM 123648]
.
Contents of the 'Scheduled Tasks' folder
.
2012-03-22 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 16:57]
.
2012-05-13 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 18:20]
.
2012-05-13 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1409082233-73586283-725345543-1004.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-11-29 16:02]
.
2012-04-16 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1409082233-73586283-725345543-1004.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-11-29 16:02]
.
.
------- Supplementary Scan -------
.
uInternet Connection Wizard,ShellNext = hxxp://www.javacoolsoftware.com/sb-link/firefox.html
TCP: DhcpNameServer = 192.168.0.1
.
- - - - ORPHANS REMOVED - - - -
.
ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\documents and settings\Veron\Desktop\SASSEH.DLL
Notify-!SASWinLogon - c:\documents and settings\Veron\Desktop\SASWINLO.DLL
SafeBoot-ServicepointService
MSConfigStartUp-Messenger (Yahoo!) - c:\progra~1\Yahoo!\Messenger\YahooMessenger.exe
AddRemove-Uninstall_is1 - c:\program files\Common Files\DVDVideoSoft\unins000.exe
AddRemove-{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} - c:\documents and settings\Veron\Desktop\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-05-13 18:13
Windows 5.1.2600 Service Pack 3 NTFS
.
detected NTDLL code modification:
ZwClose
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(600)
c:\documents and settings\Veron\Desktop\SASWINLO.DLL
c:\windows\system32\WININET.dll
.
Completion time: 2012-05-13 18:16:10
ComboFix-quarantined-files.txt 2012-05-13 17:16
.
Pre-Run: 103,058,890,752 bytes free
Post-Run: 103,185,625,088 bytes free
.
- - End Of File - - C8D9053DF64860107901EAAA07C0EE5A

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 13th May 2012, 6:40 pm

I noticed that you're running two firewalls which is a no-no. Which one do you want to get rid of:AVG Firewall or COMODO Firewall ?

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 13th May 2012, 10:04 pm

did you wow thats strange as i deleted that months ago also but this was before i had revo uninstaller.. well i would like to keep comodo firewall i prefer that one the best thank you .. only thing is revo cant find it to uninstall so what do you suggest i do?

thank you

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 13th May 2012, 10:34 pm

only thing is revo cant find it to uninstall so what do you suggest i do?

Programs should alsway be uninstalled otherwise, they are lots of leftovers. This should get rid of them. Just post the top part of the ComboFix log that shows the removals. No need to post the whole log.

Re-running ComboFix to remove infections:

Close any open browsers.
Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
Open notepad and copy/paste the text in the quotebox below into it:

KillAll::

SecCenter::
{5B5A3BD7-8573-4672-AEA8-C9BB713B6755}
{80593BF4-D969-4EC5-ADAE-A22F2DFC7A22}
Save this as CFScript.txt, in the same location as ComboFix.exe
Referring to the picture above, drag CFScript into ComboFix.exe
When finished, it shall produce a log for you at C:\ComboFix.txt
Please post the contents of the log in your next reply.

***********************************************
P2P - I see you have P2P software installed on your machine. We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It is certainly contributing to your current situation.
BitTorrent
Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

I would strongly recommend that you uninstall them, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.
*****************************************************
Download Security Check by screen317 from one of the following links and save it to your desktop.

Link 1
Link 2

* Double-click Security Check.bat
* Follow the on-screen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Post the contents of that document in your next reply.

Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 14th May 2012, 4:41 pm

heres the top part of comboFix log the removals

ComboFix 12-05-11.03 - Veron 14/05/2012 17:01:05.8.1 - x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.2294.1982 [GMT 1:00]
Running from: c:\documents and settings\Veron\Desktop\PCHelpForum.exe
Command switches used :: c:\documents and settings\Veron\Desktop\CFScript.txt
AV: Panda Cloud Antivirus *Enabled/Updated* {5AD27692-540A-464E-B625-78275FA38393}
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
FW: COMODO Firewall *Enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
c:\documents and settings\Veron\Application Data\PriceGong\Data\1.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\a.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\b.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\c.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\d.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\e.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\f.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\g.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\h.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\i.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\j.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\k.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\l.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\m.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\mru.xml
c:\documents and settings\Veron\Application Data\PriceGong\Data\n.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\o.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\p.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\q.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\r.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\s.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\t.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\u.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\v.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\w.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\wlu.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\x.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\y.txt
c:\documents and settings\Veron\Application Data\PriceGong\Data\z.txt

i have not yet removed bitcomet or p2p but i will take your advice and completely remove them after this post

and here is the log from Securitycheck.bat

esults of screen317's Security Check version 0.99.32
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:
Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Enabled!
COMODO Internet Security
Panda Cloud Antivirus
```````````````````````````````
Anti-malware/Other Utilities Check:
SpywareBlaster 4.2
Windows Defender
SpywareBlaster 4.2 Out of Date!
HijackThis 2.0.2
Java(TM) 6 Update 32
Adobe Flash Player 11.1.102.55
Adobe Reader X (10.1.3)
````````````````````````````````
Process Check:
objlist.exe by Laurent
Windows Defender MSMpEng.exe
Windows Defender MsMpEng.exe
``````````End of Log````````````

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 14th May 2012, 7:28 pm

You should update SpywareBlaster.

SysProt Antirootkit

Download
SysProt Antirootkit from the link below (you will find it at the bottom
of the page under attachments, or you can get it from one of the
mirrors).

http://sites.google.com/site/sysprotantirootkit/

Unzip it into a folder on your desktop.

Double click Sysprot.exe to start the program.
Click on the Log tab.
In the Write to log box select the following items.
- Process << Selected
- Kernel Modules << Selected
- SSDT << Selected
- Kernel Hooks << Selected
- IRP Hooks << NOT Selected
- Ports << NOT Selected
- Hidden Files << Selected
At the bottom of the page
- Hidden Objects Only << Selected
Click on the Create Log button on the bottom right.
After a few seconds a new window should appear.
Select Scan Root Drive. Click on the Start button.
When it is complete a new window will appear to indicate that the scan is finished.
The log will be saved automatically in the same folder Sysprot.exe was extracted to. Open the text file and copy/paste the log here.

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 14th May 2012, 8:44 pm

i tried to update spware blaster but it says protection database update unsuccessful.. The server may be unavailable, or there may be a conflict with the firewall installed on your pc . the update infoemation file may have gotten corrupted during dowload please try again soon ... so i went to firewall settings/exceptions and added spyware blaster to the exceptions tab.. still couldnt update the programme i ran the sysProt and managed to get the log

SysProt AntiRootkit v1.0.1.0
by swatkat

******************************************************************************************
******************************************************************************************

Process:
Name: [System Idle Process]
PID: 0
Hidden: No
Window Visible: No

Name: SYSTEM
PID: 4
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\smss.exe
PID: 712
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\csrss.exe
PID: 760
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\winlogon.exe
PID: 788
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\services.exe
PID: 832
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\lsass.exe
PID: 844
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\svchost.exe
PID: 1048
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\svchost.exe
PID: 1116
Hidden: No
Window Visible: No

Name: C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PID: 1212
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\svchost.exe
PID: 1248
Hidden: No
Window Visible: No

Name: C:\Program Files\Windows Defender\MsMpEng.exe
PID: 1260
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\svchost.exe
PID: 1360
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\svchost.exe
PID: 1464
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\svchost.exe
PID: 1572
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\spoolsv.exe
PID: 1684
Hidden: No
Window Visible: No

Name: C:\WINDOWS\explorer.exe
PID: 1980
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\svchost.exe
PID: 2040
Hidden: No
Window Visible: No

Name: C:\Documents and Settings\Veron\Desktop\SASCore.exe
PID: 156
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PID: 180
Hidden: No
Window Visible: No

Name: C:\Program Files\Bonjour\mDNSResponder.exe
PID: 280
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\rundll32.exe
PID: 512
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\svchost.exe
PID: 528
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\hkcmd.exe
PID: 540
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\igfxpers.exe
PID: 548
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\dgdersvc.exe
PID: 576
Hidden: No
Window Visible: No

Name: C:\WINDOWS\vsnp2uvc.exe
PID: 700
Hidden: No
Window Visible: No

Name: C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
PID: 752
Hidden: No
Window Visible: No

Name: C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe
PID: 1340
Hidden: No
Window Visible: No

Name: C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
PID: 1444
Hidden: No
Window Visible: No

Name: C:\Program Files\Real\RealPlayer\Update\realsched.exe
PID: 1468
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\FsUsbExService.Exe
PID: 1556
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\Java\Java Update\jusched.exe
PID: 1032
Hidden: No
Window Visible: No

Name: C:\Program Files\Java\jre6\bin\jqs.exe
PID: 1836
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\ctfmon.exe
PID: 1852
Hidden: No
Window Visible: No

Name: C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
PID: 1916
Hidden: No
Window Visible: No

Name: C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PID: 644
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\svchost.exe
PID: 1200
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\wuauclt.exe
PID: 2184
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\alg.exe
PID: 3560
Hidden: No
Window Visible: No

Name: C:\WINDOWS\system32\wuauclt.exe
PID: 2208
Hidden: No
Window Visible: No

Name: C:\Documents and Settings\Veron\Desktop\SysProt\SysProt\SysProt.exe
PID: 2268
Hidden: No
Window Visible: Yes

******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: \??\C:\Documents and Settings\Veron\Desktop\SysProt\SysProt\SysProtDrv.sys
Service Name: SysProtDrv.sys
Module Base: A5693000
Module End: A569E000
Hidden: No

Module Name: \WINDOWS\system32\ntkrnlpa.exe
Service Name: ---
Module Base: 804D7000
Module End: 806D0380
Hidden: No

Module Name: \WINDOWS\system32\hal.dll
Service Name: ---
Module Base: 806D1000
Module End: 806F1300
Hidden: No

Module Name: \WINDOWS\system32\KDCOM.DLL
Service Name: ---
Module Base: BA5A8000
Module End: BA5AA000
Hidden: No

Module Name: \WINDOWS\system32\BOOTVID.dll
Service Name: ---
Module Base: BA4B8000
Module End: BA4BB000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\ACPI.sys
Service Name: ACPI
Module Base: B9F79000
Module End: B9FA7000
Hidden: No

Module Name: \WINDOWS\system32\DRIVERS\WMILIB.SYS
Service Name: ---
Module Base: BA5AA000
Module End: BA5AC000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\pci.sys
Service Name: PCI
Module Base: B9F68000
Module End: B9F79000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\isapnp.sys
Service Name: isapnp
Module Base: BA0A8000
Module End: BA0B2000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\pciide.sys
Service Name: PCIIde
Module Base: BA670000
Module End: BA671000
Hidden: No

Module Name: \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
Service Name: ---
Module Base: BA328000
Module End: BA32F000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\intelide.sys
Service Name: IntelIde
Module Base: BA5AC000
Module End: BA5AE000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\MountMgr.sys
Service Name: MountMgr
Module Base: BA0B8000
Module End: BA0C3000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\ftdisk.sys
Service Name: Disk
Module Base: B9F49000
Module End: B9F68000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\PartMgr.sys
Service Name: PartMgr
Module Base: BA330000
Module End: BA335000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\VolSnap.sys
Service Name: VolSnap
Module Base: BA0C8000
Module End: BA0D5000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\atapi.sys
Service Name: atapi
Module Base: B9F31000
Module End: B9F49000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\cercsr6.sys
Service Name: cercsr6
Module Base: BA338000
Module End: BA340000
Hidden: No

Module Name: \WINDOWS\System32\Drivers\SCSIPORT.SYS
Service Name: ScsiPort
Module Base: B9F19000
Module End: B9F31000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\disk.sys
Service Name: ---
Module Base: BA0D8000
Module End: BA0E1000
Hidden: No

Module Name: \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
Service Name: ---
Module Base: BA0E8000
Module End: BA0F5000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\fltmgr.sys
Service Name: FltMgr
Module Base: B9EF9000
Module End: B9F19000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\sr.sys
Service Name: sr
Module Base: B9EE7000
Module End: B9EF9000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\PxHelp20.sys
Service Name: PxHelp20
Module Base: BA0F8000
Module End: BA102000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\KSecDD.sys
Service Name: KSecDD
Module Base: B9ED0000
Module End: B9EE7000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\WudfPf.sys
Service Name: WudfPf
Module Base: B9EBD000
Module End: B9ED0000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\Ntfs.sys
Service Name: Ntfs
Module Base: B9E30000
Module End: B9EBD000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\inspect.sys
Service Name: Inspect
Module Base: B9E1A000
Module End: B9E30000
Hidden: No

Module Name: \WINDOWS\System32\DRIVERS\NDIS.SYS
Service Name: NDIS
Module Base: B9DED000
Module End: B9E1A000
Hidden: No

Module Name: \WINDOWS\System32\DRIVERS\TDI.SYS
Service Name: ---
Module Base: BA340000
Module End: BA345000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\Mup.sys
Service Name: Mup
Module Base: B9DD3000
Module End: B9DED000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\intelppm.sys
Service Name: intelppm
Module Base: BA178000
Module End: BA181000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
Service Name: ialm
Module Base: B9798000
Module End: B9899000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\VIDEOPRT.SYS
Service Name: ---
Module Base: B9784000
Module End: B9798000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
Service Name: HDAudBus
Module Base: B975C000
Module End: B9784000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\usbuhci.sys
Service Name: usbuhci
Module Base: BA458000
Module End: BA45E000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\USBPORT.SYS
Service Name: ---
Module Base: B9738000
Module End: B975C000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\usbehci.sys
Service Name: usbehci
Module Base: BA460000
Module End: BA468000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\e100b325.sys
Service Name: E100B
Module Base: B9712000
Module End: B9738000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\imapi.sys
Service Name: Imapi
Module Base: BA188000
Module End: BA193000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\cdrom.sys
Service Name: Cdrom
Module Base: BA198000
Module End: BA1A8000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\redbook.sys
Service Name: redbook
Module Base: BA1A8000
Module End: BA1B7000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\ks.sys
Service Name: ---
Module Base: B96EF000
Module End: B9712000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
Service Name: GEARAspiWDM
Module Base: BA468000
Module End: BA46E000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\audstub.sys
Service Name: audstub
Module Base: BA73D000
Module End: BA73E000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
Service Name: Rasl2tp
Module Base: BA1B8000
Module End: BA1C5000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\ndistapi.sys
Service Name: NdisTapi
Module Base: B9D92000
Module End: B9D95000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\ndiswan.sys
Service Name: NdisWan
Module Base: B96D8000
Module End: B96EF000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\raspppoe.sys
Service Name: RasPppoe
Module Base: BA1C8000
Module End: BA1D3000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\raspptp.sys
Service Name: PptpMiniport
Module Base: BA1D8000
Module End: BA1E4000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\psched.sys
Service Name: PSched
Module Base: B96C7000
Module End: B96D8000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\msgpc.sys
Service Name: Gpc
Module Base: BA1E8000
Module End: BA1F1000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\ptilink.sys
Service Name: Ptilink
Module Base: BA470000
Module End: BA475000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\raspti.sys
Service Name: Raspti
Module Base: BA478000
Module End: BA47D000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\termdd.sys
Service Name: TermDD
Module Base: BA1F8000
Module End: BA202000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Service Name: Kbdclass
Module Base: BA480000
Module End: BA486000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\mouclass.sys
Service Name: Mouclass
Module Base: BA488000
Module End: BA48E000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\swenum.sys
Service Name: swenum
Module Base: BA5E4000
Module End: BA5E6000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\update.sys
Service Name: Update
Module Base: B9669000
Module End: B96C7000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\mssmbios.sys
Service Name: mssmbios
Module Base: B9D86000
Module End: B9D8A000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\NDProxy.SYS
Service Name: NDProxy
Module Base: BA258000
Module End: BA262000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\usbhub.sys
Service Name: usbhub
Module Base: BA278000
Module End: BA287000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\USBD.SYS
Service Name: ---
Module Base: BA5EE000
Module End: BA5F0000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\sthda.sys
Service Name: STHDA
Module Base: A94B7000
Module End: A95A9000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\portcls.sys
Service Name: ---
Module Base: A9493000
Module End: A94B7000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\drmk.sys
Service Name: ---
Module Base: BA288000
Module End: BA297000
Hidden: No

Module Name: C:\WINDOWS\System32\DRIVERS\cmdguard.sys
Service Name: cmdGuard
Module Base: A941D000
Module End: A9493000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\Fs_Rec.SYS
Service Name: Fs_Rec
Module Base: BA5F8000
Module End: BA5FA000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\Null.SYS
Service Name: Null
Module Base: BA771000
Module End: BA772000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\Beep.SYS
Service Name: Beep
Module Base: BA5FA000
Module End: BA5FC000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\HIDPARSE.SYS
Service Name: ---
Module Base: BA498000
Module End: BA49F000
Hidden: No

Module Name: C:\WINDOWS\System32\drivers\vga.sys
Service Name: VgaSave
Module Base: BA4A0000
Module End: BA4A6000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\mnmdd.SYS
Service Name: mnmdd
Module Base: BA5FC000
Module End: BA5FE000
Hidden: No

Module Name: C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
Service Name: RDPCDD
Module Base: BA5FE000
Module End: BA600000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\Msfs.SYS
Service Name: Msfs
Module Base: BA4A8000
Module End: BA4AD000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\Npfs.SYS
Service Name: Npfs
Module Base: BA4B0000
Module End: BA4B8000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\rasacd.sys
Service Name: RasAcd
Module Base: BA558000
Module End: BA55B000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\ipsec.sys
Service Name: IPSec
Module Base: A7E63000
Module End: A7E76000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\tcpip.sys
Service Name: Tcpip
Module Base: A7E0A000
Module End: A7E63000
Hidden: No

Module Name: C:\WINDOWS\System32\DRIVERS\cmdhlp.sys
Service Name: cmdHlp
Module Base: BA358000
Module End: BA35E000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\netbt.sys
Service Name: NetBT
Module Base: A7DE2000
Module End: A7E0A000
Hidden: No

Module Name: C:\WINDOWS\System32\drivers\ws2ifsl.sys
Service Name: WS2IFSL
Module Base: BA568000
Module End: BA56B000
Hidden: No

Module Name: C:\WINDOWS\System32\drivers\afd.sys
Service Name: AFD
Module Base: A7DC0000
Module End: A7DE2000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\netbios.sys
Service Name: NetBIOS
Module Base: BA2B8000
Module End: BA2C1000
Hidden: No

Module Name: \??\C:\Documents and Settings\Veron\Desktop\SASKUTIL.SYS
Service Name: SASKUTIL
Module Base: A7D9E000
Module End: A7DC0000
Hidden: No

Module Name: \??\C:\Documents and Settings\Veron\Desktop\SASDIFSV.SYS
Service Name: SASDIFSV
Module Base: BA360000
Module End: BA366000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\rdbss.sys
Service Name: Rdbss
Module Base: A7D73000
Module End: A7D9E000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\psinknc.sys
Service Name: PSINKNC
Module Base: A7D2C000
Module End: A7D4B000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
Service Name: MRxSmb
Module Base: A7C44000
Module End: A7CB4000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\Fips.SYS
Service Name: Fips
Module Base: BA2C8000
Module End: BA2D3000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\ipnat.sys
Service Name: IpNat
Module Base: A7C1E000
Module End: A7C44000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\wanarp.sys
Service Name: Wanarp
Module Base: BA2D8000
Module End: BA2E1000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
Service Name: USBSTOR
Module Base: BA378000
Module End: BA37F000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\hidusb.sys
Service Name: hidusb
Module Base: A7D28000
Module End: A7D2B000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS
Service Name: ---
Module Base: BA2E8000
Module End: BA2F1000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\kbdhid.sys
Service Name: kbdhid
Module Base: A7D20000
Module End: A7D24000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\mouhid.sys
Service Name: mouhid
Module Base: A7D1C000
Module End: A7D1F000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\Fastfat.SYS
Service Name: Fastfat
Module Base: A6368000
Module End: A638C000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\Cdfs.SYS
Service Name: Cdfs
Module Base: BA148000
Module End: BA158000
Hidden: No

Module Name: \SystemRoot\System32\Drivers\dump_atapi.sys
Service Name: ---
Module Base: A6350000
Module End: A6368000
Hidden: Yes

Module Name: \SystemRoot\System32\Drivers\dump_WMILIB.SYS
Service Name: ---
Module Base: BA638000
Module End: BA63A000
Hidden: Yes

Module Name: C:\WINDOWS\System32\drivers\Dxapi.sys
Service Name: ---
Module Base: A63AC000
Module End: A63AF000
Hidden: No

Module Name: C:\WINDOWS\System32\watchdog.sys
Service Name: ---
Module Base: BA420000
Module End: BA425000
Hidden: No

Module Name: C:\WINDOWS\System32\drivers\dxgthk.sys
Service Name: ---
Module Base: BA7C4000
Module End: BA7C5000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\PSINAflt.sys
Service Name: PSINAflt
Module Base: A6216000
Module End: A6238000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\PSINProt.sys
Service Name: PSINProt
Module Base: A61FC000
Module End: A6216000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\PSINFile.sys
Service Name: PSINFile
Module Base: A61BD000
Module End: A61D4000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\PSINProc.sys
Service Name: PSINProc
Module Base: A61A3000
Module End: A61BD000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\ndisuio.sys
Service Name: Ndisuio
Module Base: A60D7000
Module End: A60DB000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\wdmaud.sys
Service Name: wdmaud
Module Base: A5E6E000
Module End: A5E83000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\sysaudio.sys
Service Name: sysaudio
Module Base: A6193000
Module End: A61A2000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\mrxdav.sys
Service Name: MRxDAV
Module Base: A5C5B000
Module End: A5C88000
Hidden: No

Module Name: C:\WINDOWS\system32\DRIVERS\srv.sys
Service Name: Srv
Module Base: A5933000
Module End: A598B000
Hidden: No

Module Name: C:\WINDOWS\System32\Drivers\HTTP.sys
Service Name: HTTP
Module Base: A53CA000
Module End: A540B000
Hidden: No

Module Name: \??\C:\WINDOWS\system32\FsUsbExDisk.SYS
Service Name: FsUsbExDisk
Module Base: A55BB000
Module End: A55C4000
Hidden: No

Module Name: C:\WINDOWS\System32\drivers\dgderdrv.sys
Service Name: dgderdrv
Module Base: A5543000
Module End: A5546000
Hidden: No

Module Name: C:\WINDOWS\system32\drivers\kmixer.sys
Service Name: kmixer
Module Base: A50F7000
Module End: A5122000
Hidden: No

******************************************************************************************
******************************************************************************************
SSDT:
Function Name: ZwAdjustPrivilegesToken
Address: A942779A
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwConnectPort
Address: A9426D46
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwCreateFile
Address: A9427400
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwCreateKey
Address: A9427FA4
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwCreateSection
Address: A9429ABC
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwCreateSymbolicLinkObject
Address: A9429E3A
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwCreateThread
Address: A9426732
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwDeleteKey
Address: A9427986
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwDeleteValueKey
Address: A9427B7A
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwDuplicateObject
Address: A9426538
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwEnumerateKey
Address: A94286C6
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwEnumerateValueKey
Address: A942891C
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwLoadDriver
Address: A94294EE
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwMakeTemporaryObject
Address: A942700E
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwOpenFile
Address: A94275DC
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwOpenKey
Address: A9427F94
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwOpenProcess
Address: A9426166
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwOpenSection
Address: A94272A8
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwOpenThread
Address: A942636A
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwQueryKey
Address: A9428B2A
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwQueryMultipleValueKey
Address: A9428F7E
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwQueryValueKey
Address: A9428D3C
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwRenameKey
Address: A94284DE
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwSetSecurityObject
Address: A9427DB6
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwSetSystemInformation
Address: A94297DA
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwSetValueKey
Address: A9428266
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwShutdownSystem
Address: A9426F78
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwSystemDebugControl
Address: A9427194
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

Function Name: ZwTerminateProcess
Address: A61A9416
Driver Base: A61A3000
Driver End: A61BD000
Driver Name: \SystemRoot\system32\DRIVERS\PSINProc.sys

Function Name: ZwTerminateThread
Address: A9426936
Driver Base: A941D000
Driver End: A9493000
Driver Name: \SystemRoot\System32\DRIVERS\cmdguard.sys

******************************************************************************************
******************************************************************************************
No Kernel Hooks found

******************************************************************************************
******************************************************************************************
Hidden files/folders:
Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\_____________________________________________________________________________________________________________________________________________________________hostiles.txt.36.zip.to
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\______________________________________________________________________________________________________________________________________________________________hostiles.txt.36.zip.t
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\_______________________________________________________________________________________________________________________________________________________________hostiles.txt.36.zip.
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\________________________________________________________________________________________________________________________________________________________________hostiles.txt.36.zip
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\_________________________________________________________________________________________________________________________________________________________________hostiles.txt.36.zi
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\__________________________________________________________________________________________________________________________________________________________________hostiles.txt.36.z
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________hostiles.txt.36.
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\____________________________________________________________________________________________________________________________________________________________________hostiles.txt.36
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\_____________________________________________________________________________________________________________________________________________________________________hostiles.txt.3
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\______________________________________________________________________________________________________________________________________________________________________hostiles.txt.
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\_______________________________________________________________________________________________________________________________________________________________________hostiles.txt
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\________________________________________________________________________________________________________________________________________________________________________hostiles.tx
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\_________________________________________________________________________________________________________________________________________________________________________hostiles.t
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\__________________________________________________________________________________________________________________________________________________________________________hostiles.
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________hostiles
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\____________________________________________________________________________________________________________________________________________________________________________hostile
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\_____________________________________________________________________________________________________________________________________________________________________________hostil
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\______________________________________________________________________________________________________________________________________________________________________________hosti
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\_______________________________________________________________________________________________________________________________________________________________________________host
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\________________________________________________________________________________________________________________________________________________________________________________hos
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\_________________________________________________________________________________________________________________________________________________________________________________ho
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\__________________________________________________________________________________________________________________________________________________________________________________h
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Application Data\FrostWire\azureus\torrents\___________________________________________________________________________________________________________________________________________________________________________________
Status: Hidden

Object: C:\Documents and Settings\Veron\Recent\Tagged - ?H?????NO BUY,’s Profile.lnk
Status: Hidden

Object: C:\Qoobox\BackEnv\AppData.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Cache.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Cookies.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Desktop.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Favorites.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\History.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\LocalAppData.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\LocalSettings.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Music.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\NetHood.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Personal.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Pictures.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\PrintHood.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Profiles.Folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Profiles.Folder.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Programs.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Recent.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SendTo.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SetPath.bat
Status: Access denied

Object: C:\Qoobox\BackEnv\StartMenu.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\StartUp.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SysPath.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Templates.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\VikPev00
Status: Access denied

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 14th May 2012, 10:19 pm

Please try uninstalling and re-installing SpywareBlaster.

Are you still having problems with your MS updates?

I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
•Click the FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetOnline

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetOnline

button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

Click on to download the ESET Smart Installer. Save it to your desktop.
Double click on the icon on your desktop.

•Check

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetAcceptTerms

•Click the FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetStart

button.
•Accept any security warnings from your browser.
•Check FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetScanArchives

•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetListThreats

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetListThreats

•Push

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetExport

, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetBack

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetBack

button.
•Push FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 EsetFinish

A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 15th May 2012, 12:57 am

Ive uninstalled and reinstalled spyware blaster and successfully updated the programme also. i am still unable to completely install all of my MS windows updates

and here is the san log for ESET

C:\Documents and Settings\Veron\Application Data\Sun\Java\Deployment\cache\6.0\55\5eeac777-69275a93 a variant of Java/Exploit.CVE-2012-0507.AH trojan deleted - quarantined
C:\Documents and Settings\Veron\Desktop\Emeli_Sande_-_Our_Version_Of_Events_2012_Full_Album.exe Win32/Adware.1ClickDownload application deleted - quarantined
C:\Documents and Settings\Veron\Local Settings\Application Data\Mozilla\Firefox\Profiles\1g0immaq.default\Cache(3)\B\4B\B5D00d01 JS/Kryptik.AX trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{60466CB1-1A7C-4469-962C-B8FFEEEC2629}\RP623\A0952592.exe Win32/Adware.1ClickDownload application deleted - quarantined
E:\System Volume Information\_restore{60466CB1-1A7C-4469-962C-B8FFEEEC2629}\RP567\A0917458.exe Win32/InstallMate application cleaned by deleting - quarantined
E:\System Volume Information\_restore{60466CB1-1A7C-4469-962C-B8FFEEEC2629}\RP567\A0917459.exe Win32/InstallMate application cleaned by deleting - quarantined

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 15th May 2012, 1:22 am

This tool is to try to fix the update problem.

•Please download Dial-A-Fix from one of the following mirrors:

Primary mirror
Secondary mirror

•Extract the zip file to your desktop.

•Double click Dial-a-Fix.exe to start the program. Dial-A-Fix might give you a lot errors, just ignore them and Click
FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 OK

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 OK

to continue.

•Press the green double checkmark box (Looks like this:
FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 Checkmark

UNcheck Empty Temp Folders, as well as Adjust Time/Date in the prep section. The prep section should then look like this:

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 Ncheck

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 Ncheck

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 Window

•Click on Go

•Wait for Dial-A-Fix to finish (All the checks marks will be all gone)

•Close Dial-A-Fix

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 15th May 2012, 3:16 am

ok i ran dia-a-fix but it would only complete the scan in safe mode, also i managed to install all ms windows updates after i ran the sacn here is the log for dial-a-fix

04:13:11 | Dial-a-fix was unable to determine your version of Internet Explorer
Notes about this log:
1) "->" denotes an external command being executed, and "-> (number)" indicates
the return code from the previous command
2) Not all external command return codes are accurate, or useful
3) Sometimes commands return 0 (no error) even when they fail or crash
4) If an error occurs while registering an object, please send an email to:
dial-a-fix@DjLizard.net and include a copy of this log

DAF version: v0.60.0.24

--- System info ---
OS: Microsoft Windows XP Service Pack 3
IE version: 8.0.6001.18702
MPC: 76477-OEM
CPU: Intel(R) Pentium(R) 4 CPU 3.00GHz (~2990MHz)
CPU: CPU is 64-bit or has 64-bit extensions
BIOS: 05/04/2006
Memory (approx): 2047MB
Uptime: 0 hour(s)
Current directory: C:\Documents and Settings\Veron\Desktop\Dial-a-fix-v0.60.0.24\Dial-a-fix-v0.60.0.24
---

15/05/2012 04:13:11 -- Dial-a-fix : [v0.60.0.24] - [Safe Mode+networking] -- started
04:13:11 | Policy scan started
04:13:11 | Policy scan ended - no restrictive policies were found
--- Windows Update ---
--- Registration: Windows Update/Automatic Update DLLs ---
04:13:18 | Unregistered: C:\WINDOWS\system32\msxml.dll
04:13:18 | Registered: C:\WINDOWS\system32\msxml.dll
04:13:18 | Unregistered: C:\WINDOWS\system32\msxml2.dll
04:13:18 | Registered: C:\WINDOWS\system32\msxml2.dll
04:13:20 | Unregistered: C:\WINDOWS\system32\msxml3.dll
04:13:21 | Registered: C:\WINDOWS\system32\msxml3.dll
04:13:21 | Unregistered: C:\WINDOWS\system32\qmgr.dll
04:13:21 | Registered: C:\WINDOWS\system32\qmgr.dll
04:13:21 | Unregistered: C:\WINDOWS\system32\qmgrprxy.dll
04:13:21 | Registered: C:\WINDOWS\system32\qmgrprxy.dll
04:13:21 | Unregistered: C:\WINDOWS\system32\muweb.dll
04:13:21 | Registered: C:\WINDOWS\system32\muweb.dll
04:13:21 | Unregistered: C:\WINDOWS\system32\winhttp.dll
04:13:21 | Registered: C:\WINDOWS\system32\winhttp.dll
04:13:21 | Registered: C:\WINDOWS\system32\wuapi.dll
04:13:21 | Unregistered: C:\WINDOWS\system32\wuaueng.dll
04:13:22 | Registered: C:\WINDOWS\system32\wuaueng.dll
04:13:22 | Unregistered: C:\WINDOWS\system32\wuaueng1.dll
04:13:22 | Registered: C:\WINDOWS\system32\wuaueng1.dll
04:13:22 | Unregistered: C:\WINDOWS\system32\wucltui.dll
04:13:22 | Registered: C:\WINDOWS\system32\wucltui.dll
04:13:22 | Unregistered: C:\WINDOWS\system32\wups.dll
04:13:22 | Registered: C:\WINDOWS\system32\wups.dll
04:13:22 | Unregistered: C:\WINDOWS\system32\wups2.dll
04:13:22 | Registered: C:\WINDOWS\system32\wups2.dll
04:13:22 | Unregistered: C:\WINDOWS\system32\wuweb.dll
04:13:22 | Registered: C:\WINDOWS\system32\wuweb.dll
04:13:22 | Registered: C:\WINDOWS\system32\ole32.dll
--- SSL/HTTPS/Cryptography ---
04:13:25 | Executed 'cmd.exe /c rmdir /q /s C:\WINDOWS\system32\Catroot2'
--- Registration: SSL/HTTPS/Cryptography ---
04:13:26 | Unregistered: C:\WINDOWS\system32\cryptdlg.dll
04:13:26 | Registered: C:\WINDOWS\system32\cryptdlg.dll
04:13:26 | Unregistered: C:\WINDOWS\system32\cryptui.dll
04:13:26 | Registered: C:\WINDOWS\system32\cryptui.dll
04:13:26 | Unregistered: C:\WINDOWS\system32\cryptext.dll
04:13:26 | Registered: C:\WINDOWS\system32\cryptext.dll
04:13:26 | Unregistered: C:\WINDOWS\system32\dssenh.dll
04:13:26 | Registered: C:\WINDOWS\system32\dssenh.dll
04:13:26 | Unregistered: C:\WINDOWS\system32\gpkcsp.dll
04:13:26 | Registered: C:\WINDOWS\system32\gpkcsp.dll
04:13:26 | Unregistered: C:\WINDOWS\system32\initpki.dll
04:13:43 | Registered: C:\WINDOWS\system32\initpki.dll
04:13:43 | Unregistered: C:\WINDOWS\system32\licdll.dll
04:13:43 | Registered: C:\WINDOWS\system32\licdll.dll
04:13:43 | Unregistered: C:\WINDOWS\system32\mssign32.dll
04:13:43 | Registered: C:\WINDOWS\system32\mssign32.dll
04:13:43 | Unregistered: C:\WINDOWS\system32\mssip32.dll
04:13:43 | Registered: C:\WINDOWS\system32\mssip32.dll
04:13:44 | Unregistered: C:\WINDOWS\system32\scardssp.dll
04:13:44 | Registered: C:\WINDOWS\system32\scardssp.dll
04:13:44 | Unregistered: C:\WINDOWS\system32\sccbase.dll
04:13:44 | Registered: C:\WINDOWS\system32\sccbase.dll
04:13:44 | Unregistered: C:\WINDOWS\system32\scecli.dll
04:13:44 | Registered: C:\WINDOWS\system32\scecli.dll
04:13:44 | Unregistered: C:\WINDOWS\system32\softpub.dll
04:13:44 | Registered: C:\WINDOWS\system32\softpub.dll
04:13:44 | Unregistered: C:\WINDOWS\system32\slbcsp.dll
04:13:44 | Registered: C:\WINDOWS\system32\slbcsp.dll
04:13:44 | Unregistered: C:\WINDOWS\system32\regwizc.dll
04:13:44 | Registered: C:\WINDOWS\system32\regwizc.dll
04:13:44 | Unregistered: C:\WINDOWS\system32\rsaenh.dll
04:13:44 | Registered: C:\WINDOWS\system32\rsaenh.dll
04:13:44 | Unregistered: C:\WINDOWS\system32\winhttp.dll
04:13:44 | Registered: C:\WINDOWS\system32\winhttp.dll
04:13:44 | Unregistered: C:\WINDOWS\system32\wintrust.dll
04:13:44 | Registered: C:\WINDOWS\system32\wintrust.dll
--- Registration: ActiveX controls/codecs ---
04:13:45 | Registered: C:\WINDOWS\system32\acelpdec.ax
04:13:45 | Registered: C:\WINDOWS\system32\actxprxy.dll
04:13:45 | Registered: C:\WINDOWS\system32\asctrls.ocx
04:13:45 | Registered: C:\WINDOWS\system32\daxctle.ocx
04:13:45 | Registered: C:\WINDOWS\system32\hhctrl.ocx
04:13:45 | Registered: C:\WINDOWS\system32\l3codecx.ax
04:13:45 | Registered: C:\WINDOWS\system32\licmgr10.dll
04:13:45 | Registered: C:\WINDOWS\system32\mpg4ds32.ax
04:13:48 | Registered: C:\WINDOWS\system32\msdxm.ocx
04:13:48 | Registered: C:\WINDOWS\system32\proctexe.ocx
04:13:48 | Registered: C:\WINDOWS\system32\tdc.ocx
04:13:48 | Registered: C:\WINDOWS\system32\wshom.ocx
--- Registration: Control Panel applets ---
04:13:48 | DllInstalled: C:\WINDOWS\system32\inetcpl.cpl
04:13:48 | DllInstalled: C:\WINDOWS\system32\appwiz.cpl
04:13:48 | Registered: C:\WINDOWS\system32\appwiz.cpl
04:13:48 | DllInstalled: C:\WINDOWS\system32\nusrmgr.cpl
04:13:49 | Registered: C:\WINDOWS\system32\nusrmgr.cpl
--- Registration: Direct[X|Draw|Show|Media] ---
04:13:49 | Registered: C:\WINDOWS\system32\quartz.dll
04:13:49 | Registered: C:\WINDOWS\system32\danim.dll
04:13:49 | Registered: C:\WINDOWS\system32\dmscript.dll
04:13:49 | Registered: C:\WINDOWS\system32\dmstyle.dll
04:13:49 | Registered: C:\WINDOWS\system32\dxmasf.dll
04:13:49 | Registered: C:\WINDOWS\system32\dxtmsft.dll
04:13:49 | Registered: C:\WINDOWS\system32\dxtrans.dll
04:13:49 | Registered: C:\WINDOWS\system32\sbe.dll
--- Registration: Programming cores/runtimes ---
04:13:49 | Registered: C:\WINDOWS\system32\atl.dll
04:13:49 | Registered: C:\WINDOWS\system32\corpol.dll
04:13:49 | Registered: C:\WINDOWS\system32\jscript.dll
04:13:49 | Registered: C:\WINDOWS\system32\dispex.dll
04:13:49 | Registered: C:\WINDOWS\system32\scrrun.dll
04:13:49 | Registered: C:\WINDOWS\system32\scrobj.dll
04:13:49 | Registered: C:\WINDOWS\system32\vbscript.dll
04:13:49 | Registered: C:\WINDOWS\system32\wshext.dll
--- Registration: Explorer/IE/OE/shell/WMP ---
04:13:49 | Registered: C:\WINDOWS\system32\activeds.dll
04:13:49 | Registered: C:\WINDOWS\system32\audiodev.dll
04:13:50 | DllInstalled: C:\WINDOWS\system32\browseui.dll
04:13:50 | Registered: C:\WINDOWS\system32\browseui.dll
04:13:50 | Registered: C:\WINDOWS\system32\browsewm.dll
04:13:50 | Registered: C:\WINDOWS\system32\cabview.dll
04:13:50 | Registered: C:\WINDOWS\system32\cdfview.dll
04:13:50 | Registered: C:\WINDOWS\system32\clbcatex.dll
04:13:50 | Registered: C:\WINDOWS\system32\clbcatq.dll
04:13:50 | Registered: C:\WINDOWS\system32\comcat.dll
04:13:50 | Registered: C:\WINDOWS\system32\cscui.dll
04:13:50 | Registered: C:\WINDOWS\system32\credui.dll
04:13:50 | Registered: C:\WINDOWS\system32\datime.dll
04:13:50 | Registered: C:\WINDOWS\system32\devmgr.dll
04:13:50 | Registered: C:\WINDOWS\system32\dfsshlex.dll
04:13:50 | Registered: C:\WINDOWS\system32\dmdlgs.dll
04:13:50 | Registered: C:\WINDOWS\system32\dmdskmgr.dll
04:13:50 | Registered: C:\WINDOWS\system32\dmloader.dll
04:13:51 | Registered: C:\WINDOWS\system32\dmocx.dll
04:13:51 | Registered: C:\WINDOWS\system32\dmview.ocx
04:13:51 | DllInstalled: C:\WINDOWS\system32\dsuiext.dll
04:13:51 | Registered: C:\WINDOWS\system32\dsuiext.dll
04:13:51 | DllInstalled: C:\WINDOWS\system32\dsquery.dll
04:13:51 | Registered: C:\WINDOWS\system32\dsquery.dll
04:13:51 | Registered: C:\WINDOWS\system32\dskquoui.dll
04:13:51 | Registered: C:\WINDOWS\system32\els.dll
04:13:51 | Registered: C:\WINDOWS\system32\es.dll
04:13:51 | Registered: C:\WINDOWS\system32\fontext.dll
04:13:51 | Registered: C:\WINDOWS\system32\hlink.dll
04:13:51 | Registered: C:\WINDOWS\system32\hnetcfg.dll
04:13:51 | Registered: C:\WINDOWS\system32\iedkcs32.dll
04:13:51 | Registered: C:\WINDOWS\system32\iepeers.dll
04:13:51 | Error 127: C:\WINDOWS\system32\iesetup.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
04:13:53 | Error 127: C:\WINDOWS\system32\iesetup.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18702
04:13:54 | Registered: C:\WINDOWS\system32\ils.dll
04:13:54 | Error 127: C:\WINDOWS\system32\imgutil.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
04:13:55 | Registered: C:\WINDOWS\system32\inetcfg.dll
04:13:55 | Registered: C:\WINDOWS\system32\inetcomm.dll
04:13:55 | Error 127: C:\WINDOWS\system32\inseng.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
04:13:56 | Error 127: C:\WINDOWS\system32\inseng.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18702
04:13:57 | Registered: C:\WINDOWS\system32\laprxy.dll
04:13:57 | Registered: C:\WINDOWS\system32\lmrt.dll
04:13:57 | Registered: C:\WINDOWS\system32\mlang.dll
04:13:57 | Registered: C:\WINDOWS\system32\mmcndmgr.dll
04:13:57 | Registered: C:\WINDOWS\system32\mmcshext.dll
04:13:57 | Registered: C:\WINDOWS\system32\mscoree.dll
04:13:57 | Error 127: C:\WINDOWS\system32\mshtml.dll is not registerable or the file is corrupted. Version: 8.00.6001.19170
04:13:58 | Error 127: C:\WINDOWS\system32\mshtml.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.19170
04:13:59 | Registered: C:\WINDOWS\system32\mshtmled.dll
04:13:59 | Registered: C:\WINDOWS\system32\msieftp.dll
04:13:59 | Registered: C:\WINDOWS\system32\msoeacct.dll
04:13:59 | Registered: C:\WINDOWS\system32\msr2c.dll
04:13:59 | Error 127: C:\WINDOWS\system32\msrating.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
04:14:00 | DllInstalled: C:\WINDOWS\system32\mydocs.dll
04:14:00 | Registered: C:\WINDOWS\system32\mydocs.dll
04:14:00 | Registered: C:\WINDOWS\system32\mstime.dll
04:14:00 | Registered: C:\WINDOWS\system32\netcfgx.dll
04:14:00 | DllInstalled: C:\WINDOWS\system32\netplwiz.dll
04:14:00 | Registered: C:\WINDOWS\system32\netplwiz.dll
04:14:00 | Registered: C:\WINDOWS\system32\netman.dll
04:14:00 | Registered: C:\WINDOWS\system32\netshell.dll
04:14:00 | Registered: C:\WINDOWS\system32\ntmsevt.dll
04:14:00 | Registered: C:\WINDOWS\system32\ntmsmgr.dll
04:14:00 | DllInstalled: C:\WINDOWS\system32\ntmssvc.dll
04:14:00 | Registered: C:\WINDOWS\system32\ntmssvc.dll
04:14:00 | Error 127: C:\WINDOWS\system32\occache.dll is not registerable or the file is corrupted. Version: 8.00.6001.19165
04:14:01 | Error 127: C:\WINDOWS\system32\occache.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.19165
04:14:02 | Registered: C:\WINDOWS\system32\ole32.dll
04:14:02 | Registered: C:\WINDOWS\system32\oleaut32.dll
04:14:02 | Registered: C:\WINDOWS\system32\oleacc.dll
04:14:02 | Registered: C:\WINDOWS\system32\olepro32.dll
04:14:02 | DllInstalled: C:\WINDOWS\system32\photowiz.dll
04:14:02 | Registered: C:\WINDOWS\system32\photowiz.dll
04:14:02 | Error 127: C:\WINDOWS\system32\pngfilt.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
04:14:03 | Registered: C:\WINDOWS\system32\remotepg.dll
04:14:03 | Registered: C:\WINDOWS\system32\rpcrt4.dll
04:14:03 | Registered: C:\WINDOWS\system32\rshx32.dll
04:14:03 | Registered: C:\WINDOWS\system32\sendmail.dll
04:14:03 | Registered: C:\WINDOWS\system32\slayerxp.dll
04:14:03 | DllInstalled: C:\WINDOWS\system32\shdocvw.dll
04:14:03 | Registered: C:\WINDOWS\system32\shdocvw.dll
04:14:03 | Registered: C:\WINDOWS\system32\shell32.dll
04:14:05 | DllInstalled: C:\WINDOWS\system32\shell32.dll
04:14:05 | Registered: C:\WINDOWS\system32\shmedia.dll
04:14:05 | DllInstalled: C:\WINDOWS\system32\shimgvw.dll
04:14:05 | Registered: C:\WINDOWS\system32\shimgvw.dll
04:14:05 | DllInstalled: C:\WINDOWS\system32\shsvcs.dll
04:14:05 | Registered: C:\WINDOWS\system32\shsvcs.dll
04:14:05 | Registered: C:\WINDOWS\system32\srclient.dll
04:14:05 | Unregistered: C:\WINDOWS\system32\stobject.dll
04:14:05 | Registered: C:\WINDOWS\system32\stobject.dll
04:14:05 | DllInstalled: C:\WINDOWS\system32\themeui.dll
04:14:05 | Registered: C:\WINDOWS\system32\themeui.dll
04:14:05 | Registered: C:\WINDOWS\system32\twext.dll
04:14:05 | DllInstalled: C:\WINDOWS\system32\urlmon.dll
04:14:05 | Registered: C:\WINDOWS\system32\urlmon.dll
04:14:05 | Registered: C:\WINDOWS\system32\userenv.dll
04:14:05 | Error 127: C:\WINDOWS\system32\webcheck.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
04:14:06 | Error 127: C:\WINDOWS\system32\webcheck.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18702
04:14:07 | Registered: C:\WINDOWS\system32\webvw.dll
04:14:07 | Registered: C:\WINDOWS\system32\winhttp.dll
04:14:07 | DllInstalled: C:\WINDOWS\system32\wininet.dll
04:14:07 | Registered: C:\WINDOWS\system32\zipfldr.dll
04:14:07 | Registered: C:\Program Files\Common Files\system\Ole DB\msdadc.dll
04:14:07 | Registered: C:\Program Files\Common Files\system\Ole DB\msdaenum.dll
04:14:07 | Registered: C:\Program Files\Common Files\system\Ole DB\msdaer.dll
04:14:07 | Registered: C:\Program Files\Common Files\system\Ole DB\msdaipp.dll
04:14:07 | Registered: C:\Program Files\Common Files\system\Ole DB\msdaora.dll
04:14:07 | Registered: C:\Program Files\Common Files\system\Ole DB\msdaosp.dll
04:14:08 | Registered: C:\Program Files\Common Files\system\Ole DB\msdaps.dll
04:14:08 | Registered: C:\Program Files\Common Files\system\Ole DB\msdasc.dll
04:14:08 | Registered: C:\Program Files\Common Files\system\Ole DB\msdasql.dll
04:14:08 | Registered: C:\Program Files\Common Files\system\Ole DB\msdatt.dll
04:14:08 | Registered: C:\Program Files\Common Files\system\Ole DB\msdaurl.dll
04:14:08 | Registered: C:\Program Files\Common Files\system\Ole DB\msxactps.dll
04:14:08 | Registered: C:\Program Files\Common Files\system\Ole DB\oledb32.dll
04:14:08 | Registered: C:\Program Files\Common Files\system\Ole DB\oledb32r.dll
04:14:08 | Registered: C:\Program Files\Common Files\system\Ole DB\sqloledb.dll
04:14:08 | Registered: C:\Program Files\Common Files\system\Ole DB\sqlxmlx.dll

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 15th May 2012, 6:41 pm

That looks good. If there are no other issues, we can do some cleanup.

To turn off Windows XP System Restore:

NOTE: These instructions assume that you are using the default Windows XP Start Menu and have not changed to the Classic Start menu. To re-enable the default menu, right-click Start, click Properties, click Start menu (not Classic) and then click OK.

1. Click Start.
2. Right-click the My Computer icon, and then click Properties.
3. Click the System Restore tab.
4. Check "Turn off System Restore" or "Turn off System Restore on all drives"
5. Click Apply.
6. When turning off System Restore, the existing restore points will be deleted. Click Yes to do this.
7. Click OK.
8. Restart the computer and follow the instructions in the next section to turn on System Restore.

To turn on Windows XP System Restore:

1. Click Start.
2. Right-click My Computer, and then click Properties.
3. Click the System Restore tab.
4. Uncheck "Turn off System Restore" or "Turn off System Restore on all drives."
5. Click Apply, and then click OK.
***************************************************
Clean out your temporary internet files and temp files.

Download TFC by OldTimer to your desktop.

Double-click TFC.exe to run it.

Note: If you are running on Vista, right-click on the file and choose Run As Administrator

TFC will close all programs when run, so make sure you have saved all your work before you begin.

* Click the Start button to begin the cleaning process.
* Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
* Please let TFC run uninterrupted until it is finished.

Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.
*************************************************
To remove all of the tools we used and the files and folders they created do the following:
Double click OTL.exe.

Click the CleanUp button.
Select Yes when the "Begin cleanup Process?" prompt appears.
If you are prompted to Reboot during the cleanup, select Yes.
The tool will delete itself once it finishes.

Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.
**************************************************
Use the Secunia Software Inspector to check for out of date software.

•Click Start Now

•Check the box next to Enable thorough system inspection.

•Click Start

•Allow the scan to finish and scroll down to see if any updates are needed.
•Update anything listed.
.
----------

Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing!

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 15th May 2012, 8:39 pm

ive turned off the system restore restarted again then turned it back on, i've also cleaned out my temporary files as advised.. ive done the OTL clean up and added WOT - Web of Trust. to my add ons also and downloaded spybot search and destroy.. and i updated it then imunized it ...ran a scan and fixed the problems. & ive done an online scan with SECUNIA here is a copy of that scan

Detection Statistics:
0 Programs Detected in Total
0 Insecure Versions Detected
0 Updated Versions Detected

Running For:
0 minutes, 0 seconds

Errors with the scan:
0 Errors Detected, scan result should be correct

There might be problems loading the Java Applet in your browser.

i have also tried to check for critical updates using internet explorer but i get this message

Install the ActiveX control required to view the website
The website will not display correctly on your computer without this control. To install it:

1. Right-click the Internet Explorer Information Bar. It's located just below the address bar.
2. In the right-click menu, click Install ActiveX Control.
3. In the Security Warning dialog box, click Install.

however....the only "Internet Explorer Information Bar" that is coming up on the top of my computer is one that says "Internet Explorer is currently running with add-ons disabled. Click here to manage, disable, or remove your add-ons"....(i tried to right click this one and manage the add-ons so maybe it would go away?...but there are NO disabled add-ons...they are all enabled

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 16th May 2012, 12:50 am

Could you please give me a screenprint of that?

How to post screenshots or images

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 16th May 2012, 2:03 am

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME - Page 1 Screenshotos

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 16th May 2012, 7:41 pm

Is there a "Active X Control" in your add-ons?

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 16th May 2012, 9:50 pm

No there is No Active X Control in my add-ons

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 17th May 2012, 12:39 am

Please try this.

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 17th May 2012, 1:11 am

i followed all these steps that were advised in the article

Open "Internet Explorer" by double-clicking its icon on your desktop. Click the "Tools" drop-down menu in the upper right of "Internet Explorer," then click "Internet Options" in the drop-down menu.

Click the "Security" tab at the top of the "Internet Options" pop-up menu.

Scroll down to the "ActiveX" section of the security options, then click Enable next to the "Run ActiveX Controls and Plugins," and "Script ActiveX Marked Safe for Scripting" options.

they were already enabled Whoa!

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 17th May 2012, 1:45 am

Let's try this tool from MS. It's supposed to be able to repair all kinds of things.

Please download and run MS Fix-it from here.

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 17th May 2012, 2:55 am

ok i downloaded the windows audio playback troubleshooter

ran the programme selected the option detect and apply the fixes for me recommended

detecting problems....

had to set the audio to default

i then launched internet explorer browser and active X still wont load up theres no option for it & no changes have been made Sad tearing

thanks

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 18th May 2012, 10:26 pm

Have you tried resetting Internet Explorer's settings?
Tools > Internet Options > Advanced tab > press the Reset button

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 18th May 2012, 10:44 pm

I just tried to reset internet explorer. I followed the steps. then restarted the browser and on the start menu it still says internet explorer no add-ons. i open up internet explorer and it's still giving me the same message. no changes yet

thanks

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 18th May 2012, 11:33 pm

I'm grasping at straws now. I've never seen this before. Let's try something else.

Download the Fix IE Utility to your desktop.

Before running the utility, make sure that all your Internet Explorer windows are closed!

* Extract the contents of the .zip file to your desktop.
* Double click the Fix IE Utility button to run the tool.
* Click Run Utility
* Click OK when you see 'Re-registered all files'
* Open Internet Explorer and see how it works.

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 18th May 2012, 11:59 pm

ok I done that ran the Fix ie utility .. Now when i got to microsoft website I can view the page and check for updates

But its still seems to be running internet explorer with no add-ons so i have no option to click active X its just not there. Strange its not appearring.

do you think I should remove internet explorer and try a new download for it starting fresh .. also i dont have internet explorer on my desktop only saved in my start menu its saved there as Internet explorer (No Add-ons) & its the only way to use internet explorer Sad tearing

thanks,

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 19th May 2012, 1:12 am

do you think I should remove internet explorer and try a new download for it starting fresh .. also i dont have internet explorer on my desktop only saved in my start menu its saved there as Internet explorer (No Add-ons) & its the only way to use internet explorer

That was going to be my next suggestion. As for you not having a shorcut for IE on your desktop, I don't feel that has anything to do with it. You can also start EI from Start, All Programs, Accessories, System Tools.

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 19th May 2012, 1:58 am

I removed internet explorer altogether then installed it again. finally its loading the page there is no add -ons messages appearing now so thats something good, but.... now when i go to the microsoft windows updates I am getting this message instead

You may be unable to access the Windows Update website from Windows XP, Windows 2000 or Windows Server 2003

This issue can occur if your version of Windows is no longer compatible with the Windows Update website.

How to obtain the latest Service Pack
To resolve this issue, install the latest Service pack (SP).

Note: To see what Service Pack version is currently installed, click Start, right-click My Computer, and click Properties. The Service Pack version is listed under System in the General tab.

•Windows XP: The latest Service pack is Service Pack 3 (SP3)
•Windows 2000: The latest Service pack is Service Pack 4 (SP4)
•Windows 2003: The latest Service pack is Service Pack 2 (SP2)

i did this and I am running (SP3)

help... please

Re: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 19th May 2012, 7:31 pm

I really don't know what's happening with that computer. Your best bet now would be to contact MicroSoft and see if they can help.

FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 12th May 2012, 10:31 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 13th May 2012, 11:25 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 13th May 2012, 5:25 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 13th May 2012, 6:40 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 13th May 2012, 10:04 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 13th May 2012, 10:34 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 14th May 2012, 4:41 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 14th May 2012, 7:28 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 14th May 2012, 8:44 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 14th May 2012, 10:19 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 15th May 2012, 12:57 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 15th May 2012, 1:22 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 15th May 2012, 3:16 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 15th May 2012, 6:41 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 15th May 2012, 8:39 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 16th May 2012, 12:50 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 16th May 2012, 2:03 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 16th May 2012, 7:41 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 16th May 2012, 9:50 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 17th May 2012, 12:39 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 17th May 2012, 1:11 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 17th May 2012, 1:45 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 17th May 2012, 2:55 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 18th May 2012, 10:26 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 18th May 2012, 10:44 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 18th May 2012, 11:33 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 18th May 2012, 11:59 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 19th May 2012, 1:12 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 19th May 2012, 1:58 am

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME 19th May 2012, 7:31 pm

descriptionRe: FAILED SECURITY UPDATES & CAN'T RUN ANTI VIRUS PROGRAMME