Tom_q2356,

The looky-loo's are attracted by my great legs.

The wsock32.dll file appears to be the genuine Microsoft article.

I'm a little concerned about you not having any kernel32.dll file as it handles memory management, input/output operations and interrupts.

winsock.dll performs the same functions as wsock32.dll except it handles the chores for 16 bit applications.

The fact that you are not apparently having any issues caused by the unavailability of these files, makes me hesitant to try to "fix" them. I suppose that it could be that you aren't having network connection issues because you aren't running any legacy programs.

I suggest that you give your machine a good workout for a day or two and then let me know if any issue arises. Truthfully, at that point I may have to pass you over to the knowledgeable members of the Tech Team for support, but either way, there will still be a little housekeeping that we will need to do here.

Hi TomK,

Haha, you are absolutely a very humerous person to talk to.

Regarding kernel32.dll, I remember someone here long ago told me that it was temporarily removed by Avast or something like that. And then it will return to the system itself from Avast, I don't know how that works, but that was kind of what I can remember. Like I said these three ".dll" things were my computer's old problems, there was a very long time I had to let avast scan, delete and reboot, and then more scan delete and reboot just to keep my computer running good, and the whole thing was pretty frustrated.

So I think a good workout for a day or two won't make any big difference because of my experience in the past. Having said that, I am now ready for the next step. House keeping. and then you tell me what to do later... Thanks so very much for your great legs.

Tom_q

Hold on please,

I just run into a new problem. Well, I tried to copy and paste your last response into my dailydairy and then I tried to delete some extra stuff and all of a sudden I got this message "list index out of bounds (-1)." Now because of that message I cannot read other pages of my dairy anymore. Please help. Thanks.

Tom_q

Tom_q2356,

It probably won't work but have you tried rebooting?

What program is your diary in?

It is Idailydiary 3.52. I did the reboot and it still won't go away. I made a research on this and also found people who have problem with this "line index out of bound (-1)". It is the first time in 10 years I've ever gotten this kind of error message.

Tom_q2356,

Apparently this was a common error with this program that was supposedly solved back in may of 2006 with version 3.2

I haven't found how it was solved yet. I'll keep looking.

Ok, finally another scan with a careful look, details:

Virus found by Avast:

File name:
C:\WINDOWS\MEMORY.DMP

Malware name:
Win32: Tiny-If [Trj]

Malware type:
Trojan Horse

VPS version:
090924-0, 09/23/2009

Tom_q2356,

That file should have been created by your system when you had a crash at some point.

Please go to http://virusscan.jotti.org , click on Browse, and upload the following file for analysis:

C:\WINDOWS\MEMORY.DMP <===this file

Then click Submit. Allow the file to be scanned, and then please copy and paste the results here for me to see.

Unfortunately, TomK, the scan took forever and still I did not see any sign of uploading. It was simply hanging, says "uploading, please wait..." and just nothing happens even after 20 or 30 minutes. ???

Tom_q2356,

you can use this scanner instead:

We will use Virustotal Please submit these files for analysis

To submit a file to virustotal, please click on this link

Http://www.virustotal.com

copy and paste the following into the upload a file box

C:\WINDOWS\MEMORY.DMP


scroll down a bit and click "send file", wait for the results and post them in your next reply.

Strange. I have to use a different browser to open this website. and it looks like it is going to take a very long time. Also over an hour now, I do not see anything moving and I am still waiting... Is it really going to take that long? About how long?

This post has been edited by Tom_q2356: Sep 26 2009, 03:00 AM

TomK,

Okay, it was taking too much time and I don't think either one works. Anything else please? Thanks

Tom_q2356,

Please post me a new set of DDS logs.

DDS (Ver_09-06-26.01) - NTFSx86
Run by Others at 23:41:51.30 on Sun 09/27/2009
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_14
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1023.598 [GMT 8:00]

AV: avast! antivirus 4.8.1351 [VPS 090927-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ZoneAlarm Pro Firewall *disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Stardock\SDMCP.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\reliz\akeys.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\BILLPS~1\WINPAT~1\WinPatrol.exe
C:\Program Files\CursorXP\CursorXP.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe
C:\Program Files\Startup Faster 2004\sfAgent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\SpywareGuard\sgbhp.exe
C:\Documents and Settings\Others\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.yahoo.com
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
mWinlogon: UIHost=c:\windows\system32\logonuiX.exe
BHO: IE7Pro BHO: {00011268-e188-40df-a514-835fcd78b1bf} - c:\program files\iepro\iepro.dll
BHO: HelperObject Class: {00c6482d-c502-44c8-8409-fce54ad9c208} - c:\program files\techsmith\snagit 8\SnagItBHO.dll
BHO: bho2gr Class: {31ff080d-12a3-439a-a2ef-4ba95a3148e8} - c:\program files\getright\xx2gr.dll
BHO: SpywareGuardDLBLOCK.CBrowserHelper: {4a368e80-174f-4872-96b5-0b27ddd11db2} - c:\program files\spywareguard\dlprotect.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: RoboForm: {724d43a9-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
BHO: PopKiller Class: {9a23b8a4-c6c9-4a68-8fa6-5f905dc8ff80} - c:\program files\sysshield tools\internet eraser\pkext.dll
BHO: ICBC Anti-Phishing class: {bb4491a2-d11a-4c6b-91c0-b53246a3122b} - c:\program

files\icbcebanktools\icbcantiphishing\Icbc_AntiPhishing.dll
BHO: WOT Helper: {c920e44a-7f78-4e64-bdd7-a57026e7feb7} - c:\program files\wot\WOT.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6

\lib\deploy\jqs\ie\jqs_plugin.dll
TB: IncrediBar: {d8073790-84c7-4602-bf77-c6acbf1612e4} - c:\program files\incredibar\bin\IBTBar.dll
TB: &RoboForm: {724d43a0-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
TB: 1-Click Answers: {7754c418-f62e-44aa-b169-e719e718bcfd} - c:\progra~1\1-clic~1\ietoolbar\AnswersToolbarU.dll
TB: SnagIt: {8ff5e183-abde-46eb-b09e-d2aab95cabe3} - c:\program files\techsmith\snagit 8\SnagItIEAddin.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn5\yt.dll
TB: AbsoluteShield: {ee9dd090-902d-4623-9360-fb7d8666202b} - c:\program files\sysshield tools\internet eraser\AbsoluteBar.dll
TB: WOT: {71576546-354d-41c9-aae8-31f2ec22bf0d} - c:\program files\wot\WOT.dll
TB: {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - No File
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
EB: {4528BBE0-4E08-11D5-AD55-00010333D0AD} - No File
mRun: [StartupFaster] "c:\program files\startup faster 2004\StrpFstCfg.exe" -run SFAURUN SFCURUN SFAUSTARTUP SFCUSTARTUP
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\others\startm~1\programs\startup\startu~1\amfdai~1.lnk - c:\program files\pim\amf.exe
StartupFolder: c:\documents and settings\others\start menu\programs\startup\startupfaster\StartupFaster.ini
StartupFolder: c:\docume~1\others\startm~1\programs\startup\startu~1\webshots.lnk - c:\program files\webshots\Launcher.exe
StartupFolder: c:\docume~1\others\startm~1\programs\startup\startu~1\x1syst~1.lnk - c:\program files\x1\X1Systray.exe
StartupFolder: c:\docume~1\others\startm~1\programs\startup\startu~1\x1.lnk - c:\program files\x1\X1.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\startu~1\digita~1.lnk - c:\program files\digital line

detect\DLG.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\startu~1\hpdigi~1.lnk - c:\program files\hp\digital

imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\startu~1\hpzrcv01.lnk - c:\program files\hp\temp\{387d9916-

bd27-480f-8cf0-3228832bbaa2}\setup\hpzstub.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\startu~1\hpzsetup.lnk - c:\program files\hp\temp\{387d9916-

bd27-480f-8cf0-3228832bbaa2}\hpzstub.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\startu~1\netgea~1.lnk - c:\program files\netgear\wg111v3

\WG111v3.exe
StartupFolder: c:\documents and settings\all users\start menu\programs\startup\startupfaster\StartupFaster.ini
uPolicies-explorer: NoInstrumentation = 0 (0x0)
uPolicies-explorer: NoHelp = 0 (0x0)
uPolicies-explorer: NoCommonGroups = 0 (0x0)
uPolicies-explorer: NoStartMenuEjectPC = 0 (0x0)
uPolicies-explorer: NoSimpleStartMenu = 0 (0x0)
uPolicies-explorer: NoStartMenuSubFolders = 0 (0x0)
uPolicies-explorer: NoDisconnect = 0 (0x0)
uPolicies-explorer: NoNtSecurity = 0 (0x0)
uPolicies-explorer: GreyMSIAds = 0 (0x0)
uPolicies-explorer: ForceMaxRecentDocs = 0 (0x0)
uPolicies-explorer: NoSMBalloonTip = 0 (0x0)
uPolicies-explorer: NoSMBalloonTips = 0 (0x0)
uPolicies-explorer: NoTaskGrouping = 0 (0x0)
uPolicies-explorer: NoWebServices = 0 (0x0)
uPolicies-explorer: NoFileUrl = 0 (0x0)
uPolicies-explorer: NoExpandedNewMenu = 0 (0x0)
uPolicies-explorer: SpecifyDefaultButtons = 0 (0x0)
uPolicies-explorer: NoRecentDocsNetHood = 0 (0x0)
uPolicies-explorer: PromptRunasInstallNetPath = 1 (0x1)
uPolicies-explorer: NoResolveTrack = 0 (0x0)
uPolicies-explorer: NoDevMgrUpdate = 0 (0x0)
uPolicies-explorer: NoThumbnailCache = 0 (0x0)
uPolicies-explorer: ForceCopyAclwithFile = 0 (0x0)
uPolicies-explorer: StartRunNoHOMEPATH = 0 (0x0)
mPolicies-explorer: NoResolveTrack = 0 (0x0)
mPolicies-explorer: NoFileAssociate = 0 (0x0)
dPolicies-explorer: NoThemesTab = 0 (0x0)
dPolicies-explorer: NoChangeAnimation = 0 (0x0)
dPolicies-explorer: RestrictCpl = 0 (0x0)
dPolicies-explorer: DisallowCpl = 0 (0x0)
dPolicies-explorer: RestrictRun = 0 (0x0)
dPolicies-explorer: DisallowRun = 0 (0x0)
dPolicies-explorer: NoRecycleFiles = 0 (0x0)
dPolicies-explorer: ForceRecycleBinSize = 0 (0x0)
dPolicies-explorer: NoCustomizeWebView = 0 (0x0)
dPolicies-explorer: NoFileAssociate = 0 (0x0)
dPolicies-explorer: NoDFSTab = 0 (0x0)
dPolicies-explorer: NoInstrumentation = 0 (0x0)
dPolicies-explorer: NoCustomizeThisFolder = 0 (0x0)
dPolicies-explorer: NoWebView = 0 (0x0)
dPolicies-explorer: DontShowSuperHidden = 0 (0x0)
dPolicies-explorer: NoOnlinePrintsWizard = 0 (0x0)
dPolicies-explorer: NoPublishingWizard = 0 (0x0)
dPolicies-explorer: NoSMConfigurePrograms = 0 (0x0)
dPolicies-explorer: NoSMMyPictures = 0 (0x0)
dPolicies-explorer: NoStartMenuMyMusic = 0 (0x0)
dPolicies-explorer: NoHelp = 0 (0x0)
dPolicies-explorer: NoCommonGroups = 0 (0x0)
dPolicies-explorer: NoStartMenuEjectPC = 0 (0x0)
dPolicies-explorer: NoSimpleStartMenu = 0 (0x0)
dPolicies-explorer: NoStartMenuSubFolders = 0 (0x0)
dPolicies-explorer: NoDisconnect = 0 (0x0)
dPolicies-explorer: NoNtSecurity = 0 (0x0)
dPolicies-explorer: GreyMSIAds = 0 (0x0)
dPolicies-explorer: ForceMaxRecentDocs = 0 (0x0)
dPolicies-explorer: NoSMBalloonTip = 0 (0x0)
dPolicies-explorer: NoSMBalloonTips = 0 (0x0)
dPolicies-explorer: HideClock = 0 (0x0)
dPolicies-explorer: NoTaskGrouping = 0 (0x0)
dPolicies-explorer: NoWebServices = 0 (0x0)
dPolicies-explorer: NoFileUrl = 0 (0x0)
dPolicies-explorer: NoExpandedNewMenu = 0 (0x0)
dPolicies-explorer: SpecifyDefaultButtons = 0 (0x0)
dPolicies-explorer: NoRecentDocsNetHood = 0 (0x0)
dPolicies-explorer: PromptRunasInstallNetPath = 1 (0x1)
dPolicies-explorer: NoResolveTrack = 0 (0x0)
dPolicies-explorer: NoDevMgrUpdate = 0 (0x0)
dPolicies-explorer: NoThumbnailCache = 0 (0x0)
dPolicies-explorer: ForceCopyAclwithFile = 0 (0x0)
dPolicies-explorer: StartRunNoHOMEPATH = 0 (0x0)
dPolicies-system: NoVisualStyleChoice = 0 (0x0)
dPolicies-system: NoColorChoice = 0 (0x0)
dPolicies-system: NoSizeChoice = 0 (0x0)
dPolicies-system: HideLogonScripts = 0 (0x0)
IE: c:\program files\tencent\qq\SendMMS.htm
IE: &Add animation to IncrediMail Style Box - c:\progra~1\incred~2\bin\resources\WebMenuImg.htm
IE: &Winamp Toolbar Search - c:\documents and settings\all users\application data\winamp toolbar\ietoolbar\resources\en-

us\local\search.html
IE: &Yahoo! Search - file:///c:\program files\yahoo!\Common/ycsrch.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Answers... - file:c:\program files\1-click answers\html\atiemenu.htm
IE: Customize Menu - file://c:\program files\siber systems\ai roboform\RoboFormComCustomizeIEMenu.html
IE: Download with GetRight - c:\program files\getright\GRdownload.htm
IE: Fill Forms - file://c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: Logoff - file://c:\program files\siber systems\ai roboform\RoboFormComLogoff.html
IE: Open with GetRight Browser - c:\program files\getright\GRbrowse.htm
IE: RoboForm Toolbar - file://c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: Save Forms - file://c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: Translate this web page with Babylon - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/Action.htm
IE: Yahoo! &Dictionary - file:///c:\program files\yahoo!\Common/ycdict.htm
IE: Yahoo! &Maps - file:///c:\program files\yahoo!\Common/ycmap.htm
IE: Yahoo! &SMS - file:///c:\program files\yahoo!\Common/ycsms.htm
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: {95B3F550-91C4-4627-BCC4-521288C52977} - c:\program files\pplive\PPLive.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - res://c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/ActionTU.htm
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - {B119EB0C-C021-46CF-85B0-34A760E0D5FE} - c:\program files\iepro\iepro.dll
IE: {023FA804-DCE1-4817-94ED-6BA4200F9AF2} - {023FA804-DCE1-4817-94ED-6BA4200F9AF2} - c:\program

files\incredibar\bin\IBTBar.dll
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - c:\program files\yahoo!

\common\yiesrvc.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital

imaging\smart web printing\hpswp_BHO.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
Trusted Zone: bankofamerica.com\www
Trusted Zone: com.cn\mybank.icbc
Trusted Zone: com.cn\www.icbc
Trusted Zone: hotmail.com\www
Trusted Zone: live.com\login
Trusted Zone: microsoft.com\v4.Windowsupdate
Trusted Zone: microsoft.com\Windowsupdate
Trusted Zone: msn.com\www
Trusted Zone: yahoo.com\www
DPF: DirectAnimation Java Classes
DPF: Microsoft XML Parser for Java
DPF: Yahoo! MahJong Solitaire - hxxp://download.games.yahoo.com/games/clients/y/mjst4_x.cab
DPF: Yahoo! Pool 2 - hxxp://download.games.yahoo.com/games/clients/y/pote_x.cab
DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} - hxxp://support.dell.com/systemprofiler/SysPro.CAB
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/templates/ieawsdc.cab
DPF: {0D99625B-0619-4420-BB61-82DEE1B91D3A} - hxxps://ebank.gdb.com.cn/perbank/js/CertKitAx.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/9/b/d/9bdc68ef-6a9f-4505-8fb8-

d0d2d160e512/LegitCheckControl.cab
DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} - hxxp://download.ewido.net/ewidoOnlineScan.cab
DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} - hxxp://us.chat1.yimg.com/us.yimg.com/i/chat/applet/v45/yacscom.cab
DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {33564D57-9980-0010-8000-00AA00389B71} - hxxp://codecs.microsoft.com/codecs/i386/wmv9dmo.cab
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - hxxp://office.microsoft.com/officeupdate/content/opuc3.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://Tom_q2356.spaces.live.com//PhotoUpload/MsnPUpld.cab
DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.safety.live.com/resource/download/scanner/wlscbase8460.cab
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -

hxxp://us.games2.yimg.com/download.games.yahoo.com/games/play/client/exentctl_0_0_0_1.ocx
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} -

hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1222675051475
DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} - hxxp://chat.yahoo.com/cab/yacsui.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} -

hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8714912E-380D-11D5-B8AA-00D0B78F3D48} - hxxp://chat.yahoo.com/cab/yuplapp.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} - hxxps://mybank.icbc.com.cn/icbc/newperbank/AxSafeControls.cab
DPF: {924C1588-90C3-4910-B6CA-D57A1C0418FE} - hxxp://download.yahoo.com/dl/bookmarks/ybconvfav030408.cab
DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} - hxxp://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?

38192.0495138889
DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - hxxp://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - hxxp://us.dl1.yimg.com/download.yahoo.com/dl/installs/suite/yautocomplete.cab
DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} - hxxp://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {D81CA86B-EF63-42AF-BEE3-4502D9A03C2D} - hxxp://wwws.musicmatch.com/graphics/WebPlayer/MMLRadio.cab
DPF: {DE22A7AB-A739-4C58-AD52-21F9CD6306B7} - hxxp://download.microsoft.com/download/7/E/6/7E6A8567-DFE4-4624-87C3-

163549BE2704/clearadj.cab
DPF: {E504EE6E-47C6-11D5-B8AB-00D0B78F3D48} - hxxp://chat.yahoo.com/cab/yvwrctl.cab
DPF: {E856B973-45FD-4559-8F82-EAB539144667} - hxxp://pccheckup.dellfix.com/rel/35/install/gtdownde.cab
DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} - hxxp://chat.msn.com/bin/msnchat45.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - c:\program files\wot\WOT.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: MCPClient - c:\program files\common files\stardock\mcpstub.dll
SEH: SpywareGuard.Handler: {81559c35-8464-49f7-bb0e-07a383bef910} - c:\program files\spywareguard\spywareguard.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\others\applic~1\mozilla\firefox\profiles\8g1iwoqs.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - component: c:\program files\siber systems\ai roboform\firefox\components\rfproxy_31.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npPandoWebInst.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npyaxmpb.dll
FF - plugin: c:\program files\opera\program\plugins\npdrmv2.dll
FF - plugin: c:\program files\opera\program\plugins\nppl3260.dll
FF - plugin: c:\program files\opera\program\plugins\nprjplug.dll
FF - plugin: c:\program files\opera\program\plugins\nprpjplug.dll
FF - plugin: c:\program files\viewpoint\viewpoint media player\npViewpoint.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} -

c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-

0014-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 250
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.urlbar.hideGoButton - false

============= SERVICES / DRIVERS ===============

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-9-14 64160]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-4-5 114768]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2009-7-28 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-7-28 72944]
R1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2006-3-3 353672]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-4-5 20560]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast4\ashServ.exe [2005-1-21 138680]
R2 CMB8100;CMB8100;c:\windows\system32\drivers\CertClient.dat [2008-9-14 3038]
R2 CMBProtector;CMBProtector;c:\windows\system32\drivers\CMBProtector.dat [2008-9-14 3584]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-7-3 1029456]
R2 lf;lf;c:\program files\everstrike\lock folder xp 3.2\UniShieldXP.sys [2003-7-3 45952]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2008-4-24 269648]
R2 MOTOVISION;MotoVision For E680/680i, A780/760/768 Virtual Camera;c:\windows\system32\drivers\motovision.sys [2009-1-6

31145]
R2 Vcs;Vcs support;c:\windows\system32\drivers\Vcs.sys [2005-2-11 6852]
R3 AgilentUSBCam;E-Video DC-350 USB Camera;c:\windows\system32\drivers\Atusbcam.sys [2001-4-26 117984]
R3 DirectDrv;DirectDrv;c:\windows\system32\drivers\MotoVisionDP.sys [2009-1-6 11941]
R3 LMPC2;LMPC2;c:\windows\system32\drivers\lmpc2.sys [2007-10-25 4224]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2008-5-11 19160]
S2 ICBC Daemon Service;ICBC Daemon Service;c:\program files\icbcebanktools\icbcantiphishing\IcbcDaemon.exe [2009-7-8 397192]
S2 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32

\zonelabs\vsmon.exe -service [?]
S3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast4\ashMaiSv.exe [2005-1-21 254040]
S3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast4\ashWebSv.exe [2005-2-26 352920]
S3 BRGSp50;BRGSp50 NDIS Protocol Driver;c:\windows\system32\drivers\brgsp50.sys --> c:\windows\system32\drivers\BRGSp50.sys

[?]
S3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\drivers\motfilt.sys [2008-9-6 6016]
S3 DCamUSBUVT;ICM532A;c:\windows\system32\drivers\usbuvt.sys [2004-3-9 95232]
S3 DfSdkS;Defragmentation-Service;c:\program files\ashampoo\ashampoo winoptimizer 6\DfSdkS.exe [2009-8-10 410976]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2009-6-21 18688]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2009-6-21 8320]
S3 MotDev;Motorola Inc. USB Device;c:\windows\system32\drivers\motodrv.sys [2009-6-21 42112]
S3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\drivers\Motousbnet.sys [2009-6-21 23296]
S3 motport;Motorola USB Diagnostic Port;c:\windows\system32\drivers\motport.sys [2009-1-6 23680]
S3 NTSPPPOE;Efficient Networks Enternet P.P.P.o.E LAN Miniport Driver;c:\windows\system32\drivers\ntspppoe.sys [2003-4-13

161512]
S3 RAWESR;RAWESR;\??\c:\progra~1\effici~1\entern~1\app\rawesr.sys --> c:\progra~1\effici~1\entern~1\app\RAWESR.SYS [?]
S3 RTL8187B;NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter Vista Driver;c:\windows\system32\drivers\wg111v3.sys [2007-4-23

224896]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2009-7-28 7408]
S3 ZD1211BU(TP-LINK);TL-WN322G/WN322G+ Wireless USB Adapter Driver(TP-LINK);c:\windows\system32\drivers\ZD1211BU.sys [2008-

12-6 500736]
S4 bckg32;Zone Backgammon Client;c:\windows\system32\rundll32.exe bckg32.dll,yduq --> c:\windows\system32\rundll32.exe

bckg32.dll,yduq [?]
S4 getPlus® Helper;getPlus® Helper;c:\program files\nos\bin\getPlus_HelperSvc.exe [2009-6-6 33176]

=============== Created Last 30 ================

2009-09-21 06:28 <DIR> --d----- C:\_OTM
2009-09-20 21:09 <DIR> a-dshr-- C:\cmdcons
2009-09-20 21:02 229,888 a------- c:\windows\PEV.exe
2009-09-20 21:02 161,792 a------- c:\windows\SWREG.exe
2009-09-20 21:02 98,816 a------- c:\windows\sed.exe
2009-09-20 21:02 <DIR> --d----- C:\ComboFix
2009-09-18 05:52 2,146,304 a------- c:\windows\system32\GPhotos.scr
2009-09-14 00:33 64,160 a------- c:\windows\system32\drivers\Lbd.sys
2009-09-14 00:29 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{EF63305C-BAD7-4144-9208-D65528260864}
2009-09-14 00:29 <DIR> --d----- c:\program files\Lavasoft
2009-09-13 13:18 693,760 a------- c:\windows\is-V9TVU.exe
2009-09-13 13:18 10,498 a------- c:\windows\is-V9TVU.msg
2009-09-13 13:18 460 a------- c:\windows\is-V9TVU.lst
2009-09-12 16:01 2,688 a------- c:\windows\system32\settings.aaw
2009-09-12 16:01 720 a------- c:\windows\system32\history.aaw
2009-09-11 13:43 <DIR> --d----- c:\docume~1\alluse~1\applic~1\WEBREG
2009-09-11 13:23 <DIR> --d----- c:\program files\common files\HP
2009-09-11 13:21 <DIR> --d----- c:\program files\HP
2009-09-11 13:15 157,446 a------- c:\windows\hphins27.dat
2009-09-11 13:15 787 -------- c:\windows\hphmdl27.dat
2009-09-11 13:14 271,704 a----r-- c:\windows\system32\hpzids01.dll
2009-09-11 13:13 117,760 a------- c:\windows\system32\hpzll5mu.dll
2009-09-10 07:01 <DIR> --d----- c:\program files\SUPERAntiSpyware
2009-09-08 22:14 153,088 -c------ c:\windows\system32\dllcache\triedit.dll
2009-09-07 21:39 <DIR> --d----- c:\program files\Microsoft CAPICOM 2.1.0.2
2009-09-04 21:10 <DIR> --d----- c:\program files\RMVB Converter

==================== Find3M ====================

2009-09-27 13:11 4,212 a---h--- c:\windows\system32\zllictbl.dat
2009-09-10 14:54 38,224 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 14:53 19,160 a------- c:\windows\system32\drivers\mbam.sys
2009-08-24 05:00 922,112 -------- c:\windows\system32\imapi2fs.dll
2009-08-24 05:00 426,496 -------- c:\windows\system32\imapi2.dll
2009-08-05 17:01 204,800 a------- c:\windows\system32\mswebdvd.dll
2009-08-03 22:43 687,104 a------- c:\windows\is-C4T0L.exe
2009-07-18 03:01 58,880 a------- c:\windows\system32\atl.dll
2009-07-17 11:10 232,200 a------- c:\windows\system32\PDBoot.exe
2009-07-15 14:43 410,984 a------- c:\windows\system32\deploytk.dll
2009-07-13 23:43 286,208 a------- c:\windows\system32\wmpdxm.dll
2009-07-04 01:09 915,456 -------- c:\windows\system32\wininet.dll
2009-06-22 11:58 79,328 a------- c:\documents and settings\others\mqdmserd.sys
2009-06-22 11:58 5,936 a------- c:\documents and settings\others\mqdmwhnt.sys
2009-06-22 11:58 92,064 a------- c:\documents and settings\others\mqdmmdm.sys
2009-06-22 11:58 9,232 a------- c:\documents and settings\others\mqdmmdfl.sys
2009-06-22 11:58 4,048 a------- c:\documents and settings\others\mqdmcr.sys
2009-06-22 11:58 66,656 a------- c:\documents and settings\others\mqdmbus.sys
2009-06-22 11:58 6,208 a------- c:\documents and settings\others\mqdmcmnt.sys
2009-06-22 11:58 25,600 a------- c:\documents and settings\others\usbsermptxp.sys
2009-06-22 11:58 22,768 a------- c:\documents and settings\others\usbsermpt.sys
2007-04-23 14:21 269,824 a------- c:\windows\inf\wg111v3\vista64\wg111v3.sys
2007-04-23 14:11 224,896 a------- c:\windows\inf\wg111v3\wg111v3.sys
2006-12-15 11:30 315,392 a------- c:\windows\inf\wg111v3\InstallDriver.exe
2006-12-15 11:30 212,992 a------- c:\windows\inf\wg111v3\CopyWHQLDriver.exe
2006-12-15 11:30 98,304 a------- c:\windows\inf\wg111v3\UScanM.exe
2006-12-15 11:30 66,048 a------- c:\windows\inf\wg111v3\EAPPkt.sys
2006-12-15 11:30 28,672 a------- c:\windows\inf\wg111v3\SetDrv.exe
2006-12-15 11:30 20,480 a------- c:\windows\inf\wg111v3\RTWUPath.exe
2006-12-15 11:30 19,968 a------- c:\windows\inf\wg111v3\RTWREFU.EXE
2005-02-03 11:33 10,856 a--sh--- c:\windows\system32\KGyGaAvL.sys

============= FINISH: 23:43:29.36 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-06-26.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 7/24/2004 3:39:12 PM
System Uptime: 9/27/2009 8:58:50 PM (3 hours ago)

Motherboard: Dell Computer Corporation | | 09U806
Processor: Intel® Pentium® 4 CPU 2.40GHz | U49 |

2392/533mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 28 GiB total, 2.718 GiB free.
D: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP1129: 9/20/2009 9:03:25 PM - ComboFix created restore point
RP1130: 9/27/2009 10:42:14 AM - Installed Windows XP -- Software

Updates KB952011.
RP1131: 9/27/2009 11:26:13 AM - Removed Opera 9.64
RP1132: 9/27/2009 11:26:38 AM - Installed Opera 10.00.

==== Installed Programs ======================


???????????
ÕÐÐÐרҵ°æ
жÔØ¿áÎÒÒôÀÖºÐ
1-Click Answers
AbsoluteShield File Shredder
AbsoluteShield Internet Eraser Pro
AccessDirect
ACDSee Pro
Ace Utilities 2.4.1
Acrobat.com
Active Security Monitor 1.0.0.315
Active WebCam
Ad-Aware
Additional Background Pack 1
Additional Clipart Pack 1
Additional Clipart Pack BW
AddWeb 7 Pro
Adobe AIR
Adobe Atmosphere Player for Acrobat and Adobe Reader
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Photoshop Album 2.0 Starter Edition
Adobe Photoshop CS
Adobe Reader 9.1.3
Adobe Reader Chinese Simplified Fonts
Ahead InCD
Ahead InCD EasyWrite Reader
Ahead Nero Burning ROM
Ahead Nero BurnRights
Ahead NeroMIX
Ahead NeroVision Express
AI RoboForm (All Users)
AMF Daily Planner and PIM
Aquatica 3
Aquatica 3D
Aquatica Scenery Maker
Ashampoo UnInstaller Platinum 2
Ashampoo WinOptimizer 6.30
Ask Toolbar
ATI Control Panel
ATI Display Driver
AutoUpdate
AV Voice Changer Software 3.0
Avant Browser (remove only)
avast! Antivirus
Babylon
BACS
BadCopy Pro
Biz-Plan
BootSkin
Broadcom Advanced Control Suite
BufferChm
Business Card Designer Plus 7.3.0.0
Camfrog Server 3.2 (remove only)
Camfrog Video Chat 5.3
Choice Guard
CoffeeCup HTML Editor
Conexant D480 MDC V.92 Modem
Critical Update for Windows Media Player 11 (KB959772)
CursorXP
CustomerResearchQFolder
Customizer XP
CuteFTP 6 Professional
CyberBuddy
D4300
D4300_Help
dBpoweramp Music Converter
Dell Digital Jukebox Driver
Dell Home Systems Services Agreement
Dell Picture Studio - Dell Image Expert
Dell Solution Center
Dell Support
DesktopX Professional
DeviceDiscovery
DeviceManagementQFolder
Digital Line Detect
Diskeeper Professional Premier Edition
DivX
DivX Player
DJ_SF_03_D4300_ProductContext
DJ_SF_03_D4300_Software
DJ_SF_03_D4300_Software_Min
Dream Aquarium
DVDSentry
Easy Video Joiner 5.21
ePrompter
EPSON Printer Software
eSupportQFolder
Fetion 2008
FileSpecs extension for Ad-aware 6
Flight Simulator Screensaver 0.9
Free Internet TV v3.5
FreshDiagnose
FTP Voyager 11.0
FunPhotor 6.0
getPlus® for Adobe
GetRight Pro
Good Sync version 4.6.10
GPBaseService
Help and Support Customization
HexDump extension for Ad-aware 6
Highway Pursuit
HijackThis 2.0.2
Holding Pattern Screen Saver
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB954708)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
HP Customer Participation Program 10.0
HP Deskjet D4300 Printer Driver Software 10.0 Rel .3
HP Imaging Device Functions 10.0
HP Photosmart Essential 2.5
HP Smart Web Printing
HP Solution Center 10.0
HP Update
HPProductAssistant
HPSSupply
ICBC NetBank Client Controls
ICM532
IconPackager
ICQ6
iDailyDiary 3.52
IE7Pro
imageN 1.4b
IncrediBar
IncrediMail Xe
Intellisync® for Yahoo!
Internet PrintWhere 2.6
InterVideo WinDVD
ISO Recorder
iTunes
Java™ 6 Update 14
Junk Mail filter update
Konvertor
Label Designer Plus DELUXE 7.3.0.0
Lernout & Hauspie TruVoice American English TTS Engine
LimeWire PRO 5.2.8
Lock Folder XP v3.2
LogonStudio
LSP Explorer Pluginfor Ad-aware 6
Malwarebytes' Anti-Malware
MarketResearch
Messenger Control Plugin for Ad-aware
Microsoft .NET Framework (English)
Microsoft .NET Framework (English) v1.0.3705
Microsoft .NET Framework 1.0 Hotfix (KB928367)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft ActiveX Control Pad
Microsoft Application Error Reporting
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft National Language Support Downlevel APIs
Microsoft Office 2000 SR-1 Premium
Microsoft Office PowerPoint Viewer 2003
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Modem Helper
Mozilla Firefox (3.0.14)
MSN Music Assistant
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
myBabylon_English Toolbar
NETGEAR WG111v3 wireless USB 2.0 adapter
NJStar Communicator
ObjectDock Plus
Opera 10.00
Pando
PerfectDisk 10 Professional
phoenix.zip
Picasa 3
Post-it® Software Notes
Powertoys For Windows XP
PPLive 1.9
PSSWCORE
QuickTime
RealPlayer
Registry Mechanic 8.0
RelevantKnowledge
RMVB Converter 1.8
Security Update for CAPICOM (KB931906)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953155)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Segoe UI
SereneScreen Marine Aquarium 2
ShenProfessional 3.0
Shop for HP Supplies
SimAQUARIUM2 Free
Skype™ 4.1
SlimBrowser (remove only)
SmartWebPrintingOC
SnagIt 8
SolidConverterPDF
SolutionCenter
Sony Sound Forge 7.0
SpeedFan (remove only)
Spelling Dictionaries Support For Adobe Reader 9
Spybot - Search & Destroy
SpywareBlaster 4.2
SpywareGuard v2.2
Startup Faster! 2004
Status
SUPERAntiSpyware Professional
Switch Off
Synacast Plug-in 1.1.0.7
Synaptics Pointing Device Driver
System Scheduler 3.31
TablePCRT
Teleport Pro
TimeLeft FREEWARE edition
Timershot Powertoy for Windows XP
Toolbox
Trash Killer 2
TrayApp
TreeSize Professional 3.3.3
Trillian
Tweak-XP
TypingMaster Pro
TypingMaster TypingTest
TZ Connection Booster 2.6
Unix Utilities for Yahoo! Widgets
UnloadSupport
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB969497)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973815)
VC 9.0 Runtime
Video Fixer 3.21
VideoToolkit01
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
Vital Desktop (remove only)
Volutive 1
vTuner Plus
Water Screen Saver 1.1
Weather Watcher
Weather Watcher Live
WebFldrs XP
WebReg
Webshots Desktop
Winamp
Winamp Toolbar for Internet Explorer
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-

Ray
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Safety scanner
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
WinISO 5.3
WinMPG Video Convert 3.1
WinPatrol
WinRAR archiver
WinZip
WinZip Self-Extractor
Wisdom-soft ScreenHunter 4.0 Free
WordPerfect Office 2002
WOT for Internet Explorer
X1
Yahoo! Address AutoComplete
Yahoo! Anti-Spy
Yahoo! Browser Services
Yahoo! Central
Yahoo! Install Manager
Yahoo! Mail Quick Select Tool (PhotoMail)
Yahoo! Photos Easy Upload Tool 1v7
Yahoo! Toolbar
Yahoo! Widgets
ZoneAlarm Pro

==== Event Viewer Messages From Past Week ========

9/24/2009 2:37:28 PM, error: Service Control Manager [7009] -

Timeout (30000 milliseconds) waiting for the Windows CardSpace

service to connect.
9/24/2009 2:37:28 PM, error: Service Control Manager [7000] - The

Windows CardSpace service failed to start due to the following

error: The service did not respond to the start or control

request in a timely fashion.
9/22/2009 5:55:37 AM, error: bcm4sbxp [4] - Broadcom 440x 10/100

Integrated Controller: The network link is down. Check to make

sure the network cable is properly connected.
9/22/2009 5:45:43 AM, error: Service Control Manager [7034] - The

ICBC Daemon Service service terminated unexpectedly. It has done

this 1 time(s).
9/22/2009 5:37:36 AM, error: Service Control Manager [7011] -

Timeout (30000 milliseconds) waiting for a transaction response

from the Dnscache service.
9/22/2009 12:35:12 PM, error: DCOM [10005] - DCOM got error "%

1058" attempting to start the service SENS with arguments "" in

order to run the server: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}
9/22/2009 11:52:46 AM, error: Service Control Manager [7022] -

The HP CUE DeviceDiscovery Service service hung on starting.
9/22/2009 11:50:30 AM, error: Service Control Manager [7001] -

The InteractiveLogon service depends on the Terminal Services

service which failed to start because of the following error: The

service cannot be started, either because it is disabled or

because it has no enabled devices associated with it.
9/22/2009 11:50:30 AM, error: Service Control Manager [7000] -

The Parallel port driver service failed to start due to the

following error: The service cannot be started, either because it

is disabled or because it has no enabled devices associated with

it.
9/21/2009 8:59:00 PM, error: Service Control Manager [7031] - The

Lavasoft Ad-Aware Service service terminated unexpectedly. It has

done this 2 time(s). The following corrective action will be

taken in 5000 milliseconds: Restart the service.
9/21/2009 8:58:38 PM, error: Service Control Manager [7034] - The

MBAMService service terminated unexpectedly. It has done this 1

time(s).
9/21/2009 8:58:23 PM, error: Service Control Manager [7034] - The

Diskeeper service terminated unexpectedly. It has done this 1

time(s).
9/21/2009 8:58:15 PM, error: Service Control Manager [7031] - The

Lavasoft Ad-Aware Service service terminated unexpectedly. It has

done this 1 time(s). The following corrective action will be

taken in 5000 milliseconds: Restart the service.
9/21/2009 4:53:24 AM, error: W32Time [34] - The time service has

detected that the system time needs to be changed by +64749

seconds. The time service will not change the system time by more

than +54000 seconds. Verify that your time and time zone are

correct, and that the time source time.windows.com

(ntp.m|0x1|75.95.235.43:123->207.46.197.32:123) is working

properly.
9/21/2009 4:03:41 PM, error: Service Control Manager [7009] -

Timeout (30000 milliseconds) waiting for the Lavasoft Ad-Aware

Service service to connect.
9/21/2009 4:03:41 PM, error: Service Control Manager [7000] - The

Lavasoft Ad-Aware Service service failed to start due to the

following error: The service did not respond to the start or

control request in a timely fashion.
9/21/2009 4:03:36 PM, error: Service Control Manager [7034] - The

Java Quick Starter service terminated unexpectedly. It has done

this 1 time(s).
9/21/2009 4:03:36 PM, error: Service Control Manager [7034] - The

InCD File System Service service terminated unexpectedly. It has

done this 1 time(s).
9/21/2009 4:03:36 PM, error: Service Control Manager [7034] - The

EPSON Printer Status Agent2 service terminated unexpectedly. It

has done this 1 time(s).
9/21/2009 4:03:36 PM, error: Service Control Manager [7034] - The

Ati HotKey Poller service terminated unexpectedly. It has done

this 1 time(s).
9/21/2009 11:06:59 PM, error: Service Control Manager [7001] -

The Universal Plug and Play Device Host service depends on the

SSDP Discovery Service service which failed to start because of

the following error: The service cannot be started, either

because it is disabled or because it has no enabled devices

associated with it.
9/21/2009 11:06:58 PM, error: DCOM [10005] - DCOM got error "%

1068" attempting to start the service upnphost with arguments ""

in order to run the server: {204810B9-73B2-11D4-BF42-00B0D0118B56}
9/21/2009 1:42:22 PM, error: Service Control Manager [7034] - The

PDEngine service terminated unexpectedly. It has done this 1

time(s).
9/21/2009 1:42:22 PM, error: Service Control Manager [7034] - The

PDAgent service terminated unexpectedly. It has done this 1 time

(s).
9/20/2009 9:19:27 PM, error: Service Control Manager [7009] -

Timeout (30000 milliseconds) waiting for the PEVSystemStart

service to connect.

==== End Of File ===========================