Jump to content

Build Theme!
  •  
  • Unreplied Topics
  • Downloads
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93085 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

Self-replicating email message in Outlook Express [Closed]

Started by Linda Murphy , Jan 03 2012 01:15 PM

  • This topic is locked This topic is locked
2 replies to this topic

#1 Linda Murphy

Linda Murphy

    Authentic Member

  • Authentic Member
  • PipPip
  • 137 posts

Posted 03 January 2012 - 01:15 PM

I originally started the following thread on a different part of WhatTheTech, but now I realize there's actual malware here, so I'm posting the issue here. I hope that's okay to do. http://forums.whatth...amp;hl=symantec

The problem is that an inbound email message in Outlook Express has duplicated itself in the folder its in.

This is on my father's computer. He has a friend name Ben, and all incoming emails from Ben have been going into a folder named Ben. The original email was sent on November 30th. At some point after Nov 30th, someone helped him to stop further emails from Ben from being downloaded from Optonline into Outlook Express; I don't know what date that was.

My father deleted nearly all the old messages from the BEN folder. I don't know if the message replicated itself when he opened it or when he attempted to delete it, or possibly it replicates when either is done.

He renamed the BEN folder using Outlook to "bad ben", and created a new BEN folder. That folder is empty because email from Ben are still being held on the OptOnline server.

There's now around two dozen copies of this email in the 'bad ben' folder. And one other email from Ben dated December 7th. I wasn't sure if it was safe to try to delete the emails, or safe to try to delete the whole folder - or if that would make things worse.

His AV program was Symantec, but unfortunately, it expired and never asked him to renew the license! So he's been up and running for quite a while without any antivirus protection. Oops!

As far as I know he doesn't have a back up of his computer which I could use to restore to a point before Nov 30th...

So that's what the issue is.

Please note that November 30th was more than 30 days ago, which is the default file age for the OTL program scan.

Here's the OTL output. The "Extras.txt" file was empty.

OTL logfile created on: 1/3/2012 1:58:16 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1021.98 Mb Total Physical Memory | 538.93 Mb Available Physical Memory | 52.73% Memory free
2.40 Gb Paging File | 2.06 Gb Available in Paging File | 85.79% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74.50 Gb Total Space | 42.43 Gb Free Space | 56.96% Space Free | Partition Type: NTFS

Computer Name: JMURPHY | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Administrator\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (CANON INC.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
PRC - C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe (Nuance Communications, Inc.)
PRC - C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe (OLYMPUS IMAGING CORP.)
PRC - C:\Program Files\Common Files\Sonic Shared\CineTray.exe (Sonic Solutions)
PRC - C:\WINDOWS\system32\DLA\DLACTRLW.EXE (Sonic Solutions)
PRC - C:\WINDOWS\system32\bgsvcgen.exe (B.H.A Corporation)
PRC - C:\WINDOWS\system32\HPZipm12.exe (HP)
PRC - C:\Program Files\SMSC\SetIcon.exe (Standard Microsystems Corp.)
PRC - C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Rtvscan.exe (Symantec Corporation)
PRC - C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\DefWatch.exe (Symantec Corporation)
PRC - C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\VPTray.exe (Symantec Corporation)


========== Modules (No Company Name) ==========

MOD - C:\WINDOWS\system32\NavLogon.dll ()


========== Win32 Services (SafeList) ==========

SRV - (bgsvcgen) -- C:\WINDOWS\system32\bgsvcgen.exe (B.H.A Corporation)
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\HPZipm12.exe (HP)
SRV - (Norton AntiVirus Server) -- C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Rtvscan.exe (Symantec Corporation)
SRV - (DefWatch) -- C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\DefWatch.exe (Symantec Corporation)


========== Driver Services (SafeList) ==========

DRV - (NAVEX15) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20101018.002\NAVEX15.SYS (Symantec Corporation)
DRV - (NAVENG) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20101018.002\NAVENG.SYS (Symantec Corporation)
DRV - (SymEvent) -- C:\Program Files\Symantec\SYMEVENT.SYS (Symantec Corporation)
DRV - (DLAUDFAM) -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS (Sonic Solutions)
DRV - (DLAUDF_M) -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS (Sonic Solutions)
DRV - (DLAIFS_M) -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS (Sonic Solutions)
DRV - (DLABOIOM) -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS (Sonic Solutions)
DRV - (DLAOPIOM) -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS (Sonic Solutions)
DRV - (DLAPoolM) -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS (Sonic Solutions)
DRV - (DLADResN) -- C:\WINDOWS\system32\DLA\DLADResN.SYS (Sonic Solutions)
DRV - (DLACDBHM) -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS (Sonic Solutions)
DRV - (DLARTL_N) -- C:\WINDOWS\system32\drivers\DLARTL_N.SYS (Sonic Solutions)
DRV - (cdrbsdrv) -- C:\WINDOWS\System32\drivers\cdrbsdrv.sys (B.H.A Corporation)
DRV - (senfilt) -- C:\WINDOWS\system32\drivers\senfilt.sys (Creative Technology Ltd.)
DRV - (IntelC53) -- C:\WINDOWS\system32\drivers\IntelC53.sys (Intel Corporation)
DRV - (IntelC52) -- C:\WINDOWS\system32\drivers\IntelC52.sys (Intel Corporation)
DRV - (IntelC51) -- C:\WINDOWS\system32\drivers\IntelC51.sys (Intel Corporation)
DRV - (mohfilt) -- C:\WINDOWS\system32\drivers\mohfilt.sys (Intel Corporation)
DRV - (NAVAPEL) -- C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Navapel.sys (Symantec Corporation)
DRV - (NAVAP) -- C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Navap.sys (Symantec Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://news.google.c...a...ic=b&ict=ln
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)



O1 HOSTS File: ([2001/08/23 07:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\DLA\DLASHX_W.DLL (Sonic Solutions)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [DLA] C:\WINDOWS\system32\DLA\DLACTRLW.EXE (Sonic Solutions)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe (OLYMPUS IMAGING CORP.)
O4 - HKLM..\Run: [OpwareSE4] C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [SetIcon] \Program Files\SMSC\SetIcon.exe ()
O4 - HKLM..\Run: [vptray] C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\VPTray.exe (Symantec Corporation)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe (OLYMPUS IMAGING CORP.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Sonic CinePlayer Quick Launch.lnk = C:\Program Files\Common Files\Sonic Shared\CineTray.exe (Sonic Solutions)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} https://support.micr...veX/MSDcode.cab (Microsoft Data Collection Control)
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://www2.snapfish...fishActivia.cab (Snapfish Activia)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1206043724747 (WUWebControl Class)
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} https://h20436.www2....re/HPDEXAXO.cab (HP Download Manager)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 167.206.254.1 167.206.254.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AA656080-0C9C-4FC2-8202-0BE15ACB041B}: DhcpNameServer = 167.206.254.1 167.206.254.2
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\NavLogon: DllName - (C:\WINDOWS\system32\NavLogon.dll) - C:\WINDOWS\system32\NavLogon.dll ()
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/03/20 11:02:49 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.MJPG - C:\WINDOWS\System32\Pvmjpg21.dll (Pegasus Imaging Corporation)
Drivers32: wave1 - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/01/03 13:53:06 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2011/12/08 14:35:52 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

File not found -- C:\WINDOWS\Zone.Identifier
File not found -- C:\WINDOWS\System32\zipfldr.dll
File not found -- C:\WINDOWS\Zapotec.bmp
File not found -- C:\WINDOWS\System32\xpsp4res.dll
File not found -- C:\WINDOWS\System32\xpsp3res.dll
File not found -- C:\WINDOWS\System32\xpsp2res.dll
File not found -- C:\WINDOWS\System32\xpsp1res.dll
File not found -- C:\WINDOWS\System32\xpsp1hfm.exe
File not found -- C:\WINDOWS\System32\xpob2res.dll
File not found -- C:\WINDOWS\System32\xolehlp.dll
File not found -- C:\WINDOWS\System32\xmlprovi.dll
File not found -- C:\WINDOWS\System32\xmlprov.dll
File not found -- C:\WINDOWS\System32\xmllite.dll
File not found -- C:\WINDOWS\System32\xenroll.dll
File not found -- C:\WINDOWS\System32\xcopy.exe
File not found -- C:\WINDOWS\System32\xactsrv.dll
File not found -- C:\WINDOWS\System32\wzcsvc.dll
File not found -- C:\WINDOWS\System32\wzcsapi.dll
File not found -- C:\WINDOWS\System32\wzcdlg.dll
File not found -- C:\WINDOWS\System32\wuweb.dll
File not found -- C:\WINDOWS\System32\wups2.dll
File not found -- C:\WINDOWS\System32\wups.dll
File not found -- C:\WINDOWS\System32\wupdmgr.exe
File not found -- C:\WINDOWS\System32\WUDFx.dll
File not found -- C:\WINDOWS\System32\WudfSvc.dll
File not found -- C:\WINDOWS\System32\WudfPlatform.dll
File not found -- C:\WINDOWS\System32\WudfHost.exe
File not found -- C:\WINDOWS\System32\WUDFCoinstaller.dll
File not found -- C:\WINDOWS\System32\wucltui.dll.mui
File not found -- C:\WINDOWS\System32\wucltui.dll
File not found -- C:\WINDOWS\System32\wuauserv.dll
File not found -- C:\WINDOWS\System32\wuaueng1.dll
File not found -- C:\WINDOWS\System32\wuaueng.dll.mui
File not found -- C:\WINDOWS\System32\wuaueng.dll
File not found -- C:\WINDOWS\System32\wuaucpl.cpl.mui
File not found -- C:\WINDOWS\System32\wuaucpl.cpl
File not found -- C:\WINDOWS\System32\wuauclt1.exe
File not found -- C:\WINDOWS\System32\wuauclt.exe
File not found -- C:\WINDOWS\System32\wuapi.dll.mui
File not found -- C:\WINDOWS\System32\wuapi.dll
File not found -- C:\WINDOWS\System32\wtsapi32.dll
File not found -- C:\WINDOWS\System32\wstrenderer.ax
File not found -- C:\WINDOWS\System32\wstpager.ax
File not found -- C:\WINDOWS\System32\wstdecod.dll
File not found -- C:\WINDOWS\System32\wsock32.dll
File not found -- C:\WINDOWS\System32\wsnmp32.dll
File not found -- C:\WINDOWS\System32\wshtcpip.dll
File not found -- C:\WINDOWS\System32\wshrm.dll
File not found -- C:\WINDOWS\System32\wshom.ocx
File not found -- C:\WINDOWS\System32\wshnetbs.dll
File not found -- C:\WINDOWS\System32\wshisn.dll
File not found -- C:\WINDOWS\System32\wship6.dll
File not found -- C:\WINDOWS\System32\wshext.dll
File not found -- C:\WINDOWS\System32\wshcon.dll
File not found -- C:\WINDOWS\System32\wshbth.dll
File not found -- C:\WINDOWS\System32\wshatm.dll
File not found -- C:\WINDOWS\System32\wsecedit.dll
File not found -- C:\WINDOWS\System32\wscui.cpl
File not found -- C:\WINDOWS\System32\wscsvc.dll
File not found -- C:\WINDOWS\System32\wscript.exe
File not found -- C:\WINDOWS\System32\wscntfy.exe
File not found -- C:\WINDOWS\System32\ws2help.dll
File not found -- C:\WINDOWS\System32\ws2_32.dll
File not found -- C:\WINDOWS\System32\write.exe
File not found -- C:\WINDOWS\System32\wpnpinst.exe
File not found -- C:\WINDOWS\System32\wpdsp.dll
File not found -- C:\WINDOWS\System32\WPDShServiceObj.dll
File not found -- C:\WINDOWS\System32\wpdshextres.dll
File not found -- C:\WINDOWS\System32\wpdshextautoplay.exe
File not found -- C:\WINDOWS\System32\WpdShext.dll
File not found -- C:\WINDOWS\System32\wpdmtpus.dll
File not found -- C:\WINDOWS\System32\wpdmtp.dll
File not found -- C:\WINDOWS\System32\wpdconns.dll
File not found -- C:\WINDOWS\System32\wpd_ci.dll
File not found -- C:\WINDOWS\System32\wpabaln.exe
File not found -- C:\WINDOWS\System32\wpa.dbl
File not found -- C:\WINDOWS\System32\wowfaxui.dll
File not found -- C:\WINDOWS\System32\wowfax.dll
File not found -- C:\WINDOWS\System32\wowexec.exe
File not found -- C:\WINDOWS\System32\wowdeb.exe
File not found -- C:\WINDOWS\System32\wow32.dll
File not found -- C:\WINDOWS\System32\WMVXENCD.dll
File not found -- C:\WINDOWS\System32\WMVSENCD.dll
File not found -- C:\WINDOWS\System32\WMVSDECD.dll
File not found -- C:\WINDOWS\System32\WMVENCOD.dll
File not found -- C:\WINDOWS\System32\wmvds32.ax
File not found -- C:\WINDOWS\System32\wmvdmoe2.dll
File not found -- C:\WINDOWS\System32\wmvdmoe.dll
File not found -- C:\WINDOWS\System32\wmvdmod.dll
File not found -- C:\WINDOWS\System32\WMVDECOD.dll
File not found -- C:\WINDOWS\System32\WMVCore.dll
File not found -- C:\WINDOWS\System32\WMVADVE.DLL
File not found -- C:\WINDOWS\System32\WMVADVD.dll
File not found -- C:\WINDOWS\System32\wmv8ds32.ax
File not found -- C:\WINDOWS\System32\wmv8dmod.dll
File not found -- C:\WINDOWS\WMSysPrx.prx
File not found -- C:\WINDOWS\WMSysPr9.prx
File not found -- C:\WINDOWS\System\WMSUI.DLL
File not found -- C:\WINDOWS\System32\wmstream.dll
File not found -- C:\WINDOWS\System32\WMSPDMOE.dll
File not found -- C:\WINDOWS\System32\wmspdmod.dll
File not found -- C:\WINDOWS\System32\wmsdmoe2.dll
File not found -- C:\WINDOWS\System32\wmsdmoe.dll
File not found -- C:\WINDOWS\System32\wmsdmod.dll
File not found -- C:\WINDOWS\System32\wmpui.dll
File not found -- C:\WINDOWS\System32\wmpstub.exe
File not found -- C:\WINDOWS\System32\wmpsrcwp.dll
File not found -- C:\WINDOWS\System32\wmpshell.dll
File not found -- C:\WINDOWS\System32\wmpscheme.xml
File not found -- C:\WINDOWS\System32\wmpps.dll
File not found -- C:\WINDOWS\System32\wmpmde.dll
File not found -- C:\WINDOWS\System32\wmploc.dll
File not found -- C:\WINDOWS\System32\wmphoto.dll
File not found -- C:\WINDOWS\System32\wmpencen.dll
File not found -- C:\WINDOWS\System32\wmpeffects.dll
File not found -- C:\WINDOWS\System32\wmpdxm.dll
File not found -- C:\WINDOWS\System32\wmpcore.dll
File not found -- C:\WINDOWS\System32\wmpcd.dll
File not found -- C:\WINDOWS\System32\wmpasf.dll
File not found -- C:\WINDOWS\System32\wmp.ocx
File not found -- C:\WINDOWS\System32\wmp.dll
File not found -- C:\WINDOWS\System32\WMNetmgr.dll
File not found -- C:\WINDOWS\System32\wmiscmgr.dll
File not found -- C:\WINDOWS\System32\wmiprop.dll
File not found -- C:\WINDOWS\System32\wmimgmt.msc
File not found -- C:\WINDOWS\System32\wmidx.ocx
File not found -- C:\WINDOWS\System32\wmidx.dll
File not found -- C:\WINDOWS\System32\wmi.dll
File not found -- C:\WINDOWS\System32\wmerror.dll
File not found -- C:\WINDOWS\System32\wmerrenu.dll
File not found -- C:\WINDOWS\System32\wmdrmsdk.dll
File not found -- C:\WINDOWS\System32\wmdrmnet.dll
File not found -- C:\WINDOWS\System32\wmdrmdev.dll
File not found -- C:\WINDOWS\System32\wmdmps.dll
File not found -- C:\WINDOWS\System32\wmdmlog.dll
File not found -- C:\WINDOWS\System32\wmasf.dll
File not found -- C:\WINDOWS\System32\WMADMOE.dll
File not found -- C:\WINDOWS\System32\WMADMOD.dll
File not found -- C:\WINDOWS\System32\wlnotify.dll
File not found -- C:\WINDOWS\System32\wldap32.dll
File not found -- C:\WINDOWS\System32\wlanapi.dll
File not found -- C:\WINDOWS\System32\wkssvc.dll
File not found -- C:\WINDOWS\System32\winver.exe
File not found -- C:\WINDOWS\System32\wintrust.dll
File not found -- C:\WINDOWS\System32\winstrm.dll
File not found -- C:\WINDOWS\System32\winsta.dll
File not found -- C:\WINDOWS\System32\winsrv.dll
File not found -- C:\WINDOWS\System32\winspool.exe
File not found -- C:\WINDOWS\System32\winspool.drv
File not found -- C:\WINDOWS\System\winspool.drv
File not found -- C:\WINDOWS\System32\winsock.dll
File not found -- C:\WINDOWS\System32\winshfhc.dll
File not found -- C:\WINDOWS\System32\winscard.dll
File not found -- C:\WINDOWS\System32\winrnr.dll
File not found -- C:\WINDOWS\System32\winoldap.mod
File not found -- C:\WINDOWS\System32\winntbbu.dll
File not found -- C:\WINDOWS\winnt256.bmp
File not found -- C:\WINDOWS\winnt.bmp
File not found -- C:\WINDOWS\System32\winnls.dll
File not found -- C:\WINDOWS\System32\winmsd.exe
File not found -- C:\WINDOWS\System32\winmm.dll
File not found -- C:\WINDOWS\System32\winmine.exe
File not found -- C:\WINDOWS\System32\winlogon.exe
File not found -- C:\WINDOWS\System32\winipsec.dll
File not found -- C:\WINDOWS\wininit.ini
File not found -- C:\WINDOWS\System32\wininet.dll
File not found -- C:\WINDOWS\System32\winhttp.dll
File not found -- C:\WINDOWS\winhlp32.exe
File not found -- C:\WINDOWS\System32\winhlp32.exe
File not found -- C:\WINDOWS\winhelp.exe
File not found -- C:\WINDOWS\System32\WinFXDocObj.exe
File not found -- C:\WINDOWS\System32\winfax.dll
File not found -- C:\WINDOWS\System32\windowscodecsext.dll
File not found -- C:\WINDOWS\System32\windowscodecs.dll
File not found -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
File not found -- C:\WINDOWS\System32\winchat.exe
File not found -- C:\WINDOWS\System32\winbrand.dll
File not found -- C:\WINDOWS\System32\win32spl.dll
File not found -- C:\WINDOWS\System32\win32k.sys
File not found -- C:\WINDOWS\System32\win.com
File not found -- C:\WINDOWS\System32\wifeman.dll
File not found -- C:\WINDOWS\System32\wiavusd.dll
File not found -- C:\WINDOWS\System32\wiavideo.dll
File not found -- C:\WINDOWS\System32\wiashext.dll
File not found -- C:\WINDOWS\System32\wiasf.ax
File not found -- C:\WINDOWS\System32\wiaservc.dll
File not found -- C:\WINDOWS\System32\wiascr.dll
File not found -- C:\WINDOWS\System32\wiadss.dll
File not found -- C:\WINDOWS\System32\wiadefui.dll
File not found -- C:\WINDOWS\System32\wiaacmgr.exe
File not found -- C:\WINDOWS\System32\WgaTray.exe
File not found -- C:\WINDOWS\System32\WgaLogon.dll
File not found -- C:\WINDOWS\System32\wfwnet.drv
File not found -- C:\WINDOWS\System\WFWNET.DRV
File not found -- C:\WINDOWS\System32\wextract.exe
File not found -- C:\WINDOWS\System32\webvw.dll
File not found -- C:\WINDOWS\System32\webhits.dll
File not found -- C:\WINDOWS\System32\webfldrs.msi
File not found -- C:\WINDOWS\System32\webclnt.dll
File not found -- C:\WINDOWS\System32\webcheck.dll
File not found -- C:\WINDOWS\System32\wdmaud.drv
File not found -- C:\WINDOWS\System32\wdl.trm
File not found -- C:\WINDOWS\System32\wdigest.dll
File not found -- C:\WINDOWS\System32\wdfmgr.exe
File not found -- C:\WINDOWS\System32\wdfapi.dll
File not found -- C:\WINDOWS\System32\wbdbase.sve
File not found -- C:\WINDOWS\System32\wbdbase.nld
File not found -- C:\WINDOWS\System32\wbdbase.ita
File not found -- C:\WINDOWS\System32\wbdbase.fra
File not found -- C:\WINDOWS\System32\wbdbase.esn
File not found -- C:\WINDOWS\System32\wbdbase.enu
File not found -- C:\WINDOWS\System32\wbdbase.deu
File not found -- C:\WINDOWS\System32\wbcache.sve
File not found -- C:\WINDOWS\System32\wbcache.nld
File not found -- C:\WINDOWS\System32\wbcache.ita
File not found -- C:\WINDOWS\System32\wbcache.fra
File not found -- C:\WINDOWS\System32\wbcache.esn
File not found -- C:\WINDOWS\System32\wbcache.enu
File not found -- C:\WINDOWS\System32\wavemsp.dll
File not found -- C:\WINDOWS\System32\watchdog.sys
File not found -- C:\WINDOWS\System32\w3ssl.dll
File not found -- C:\WINDOWS\System32\w32topl.dll
File not found -- C:\WINDOWS\System32\w32tm.exe
File not found -- C:\WINDOWS\System32\w32time.dll
File not found -- C:\WINDOWS\System32\vxdmdcdlg.dll
File not found -- C:\WINDOWS\System32\VXBLOCK.dll
File not found -- C:\WINDOWS\System32\vwipxspx.dll
File not found -- C:\WINDOWS\System32\vssvc.exe
File not found -- C:\WINDOWS\System32\vssapi.dll
File not found -- C:\WINDOWS\System32\vssadmin.exe
File not found -- C:\WINDOWS\System32\vss_ps.dll
File not found -- C:\WINDOWS\System32\VSFLEX3.OCX
File not found -- C:\WINDOWS\VPC32.INI
File not found -- C:\WINDOWS\vmmreg32.dll
File not found -- C:\WINDOWS\System32\vjoy.dll
File not found -- C:\WINDOWS\System32\View Channels.scf
File not found -- C:\WINDOWS\System32\vidcap.ax
File not found -- C:\WINDOWS\System32\vga64k.dll
File not found -- C:\WINDOWS\System32\vga256.dll
File not found -- C:\WINDOWS\System32\vga.drv
File not found -- C:\WINDOWS\System\VGA.DRV
File not found -- C:\WINDOWS\System32\vga.dll
File not found -- C:\WINDOWS\System32\vfpodbc.dll
File not found -- C:\WINDOWS\System32\version.dll
File not found -- C:\WINDOWS\System32\verifier.exe
File not found -- C:\WINDOWS\System32\verifier.dll
File not found -- C:\WINDOWS\System32\verclsid.exe
File not found -- C:\WINDOWS\System32\ver.dll
File not found -- C:\WINDOWS\System\VER.DLL
File not found -- C:\WINDOWS\System32\VEN2232.OLB
File not found -- C:\WINDOWS\System32\vdmredir.dll
File not found -- C:\WINDOWS\System32\vdmdbg.dll
File not found -- C:\WINDOWS\System32\VCT3216.DLL
File not found -- C:\WINDOWS\System32\VCT3216.ACM
File not found -- C:\WINDOWS\System32\vcdex.dll
File not found -- C:\WINDOWS\System32\vbscript.dll
File not found -- C:\WINDOWS\System32\vbisurf.ax
File not found -- C:\WINDOWS\System32\vbicodec.ax
File not found -- C:\WINDOWS\System32\VBAME.DLL
File not found -- C:\WINDOWS\System32\vbajet32.dll
File not found -- C:\WINDOWS\System32\VBAEND32.OLB
File not found -- C:\WINDOWS\System32\VBAEN32.OLB
File not found -- C:\WINDOWS\System\VB4EN16.DLL
File not found -- C:\WINDOWS\System\VB40016.DLL
File not found -- C:\WINDOWS\System\VAEN21.OLB
File not found -- C:\WINDOWS\System\VAEN2.DLL
File not found -- C:\WINDOWS\System32\v7vga.rom
File not found -- C:\WINDOWS\System32\uxtheme.dll
File not found -- C:\WINDOWS\System32\uwdf.exe
File not found -- C:\WINDOWS\System32\utilman.exe
File not found -- C:\WINDOWS\System32\utildll.dll
File not found -- C:\WINDOWS\System32\usrvpa.dll
File not found -- C:\WINDOWS\System32\usrvoica.dll
File not found -- C:\WINDOWS\System32\usrv80a.dll
File not found -- C:\WINDOWS\System32\usrv42a.dll
File not found -- C:\WINDOWS\System32\usrsvpia.dll
File not found -- C:\WINDOWS\System32\usrshuta.exe
File not found -- C:\WINDOWS\System32\usrsdpia.dll
File not found -- C:\WINDOWS\System32\usrrtosa.dll
File not found -- C:\WINDOWS\System32\usrprbda.exe
File not found -- C:\WINDOWS\System32\usrmlnka.exe
File not found -- C:\WINDOWS\System32\usrlogon.cmd
File not found -- C:\WINDOWS\System32\usrlbva.dll
File not found -- C:\WINDOWS\System32\usrfaxa.dll
File not found -- C:\WINDOWS\System32\usrdtea.dll
File not found -- C:\WINDOWS\System32\usrdpa.dll
File not found -- C:\WINDOWS\System32\usrcoina.dll
File not found -- C:\WINDOWS\System32\usrcntra.dll
File not found -- C:\WINDOWS\System32\usp10.dll
File not found -- C:\WINDOWS\System32\userinit.exe
File not found -- C:\WINDOWS\System32\userenv.dll
File not found -- C:\WINDOWS\System32\user32.dll
File not found -- C:\WINDOWS\System32\user.exe
File not found -- C:\WINDOWS\System32\usbui.dll
File not found -- C:\WINDOWS\System32\usbmon.dll
File not found -- C:\WINDOWS\System32\urlmon.dll
File not found -- C:\WINDOWS\System32\url.dll
File not found -- C:\WINDOWS\System32\ureg.dll
File not found -- C:\WINDOWS\System32\ups.exe
File not found -- C:\WINDOWS\System32\upnpui.dll
File not found -- C:\WINDOWS\System32\upnphost.dll
File not found -- C:\WINDOWS\System32\upnpcont.exe
File not found -- C:\WINDOWS\System32\upnp.dll
File not found -- C:\WINDOWS\unvise32qt.exe
File not found -- C:\WINDOWS\System32\untfs.dll
File not found -- C:\WINDOWS\UNRecode.exe
File not found -- C:\WINDOWS\UNRecode.cfg
File not found -- C:\WINDOWS\UNNeroVision.exe
File not found -- C:\WINDOWS\UNNeroVision.cfg
File not found -- C:\WINDOWS\UNNeroShowTime.exe
File not found -- C:\WINDOWS\UNNeroShowTime.cfg
File not found -- C:\WINDOWS\UNNeroMediaHome.exe
File not found -- C:\WINDOWS\UNNeroMediaHome.cfg
File not found -- C:\WINDOWS\UNNeroBackItUp.exe
File not found -- C:\WINDOWS\UNNeroBackItUp.cfg
File not found -- C:\WINDOWS\System32\unlodctr.exe
File not found -- C:\WINDOWS\System32\uniplat.dll
File not found -- C:\WINDOWS\System32\unimdmat.dll
File not found -- C:\WINDOWS\System32\unimdm.tsp
File not found -- C:\WINDOWS\System32\umpnpmgr.dll
File not found -- C:\WINDOWS\System32\UMLoader.dll
File not found -- C:\WINDOWS\System32\umdmxfrm.dll
File not found -- C:\WINDOWS\System32\umandlg.dll
File not found -- C:\WINDOWS\System32\ulib.dll
File not found -- C:\WINDOWS\System32\uiautomationcore.dll
File not found -- C:\WINDOWS\System32\ufat.dll
File not found -- C:\WINDOWS\System32\udhisapi.dll
File not found -- C:\WINDOWS\System32\tzchange.exe
File not found -- C:\WINDOWS\System32\typeperf.exe
File not found -- C:\WINDOWS\System32\typelib.dll
File not found -- C:\WINDOWS\System32\txflog.dll
File not found -- C:\WINDOWS\twunk_32.exe
File not found -- C:\WINDOWS\Twunk_32.dll
File not found -- C:\WINDOWS\twunk_16.exe
File not found -- C:\WINDOWS\Twunk_16.dll
File not found -- C:\WINDOWS\System32\TwnLib4.dll
File not found -- C:\WINDOWS\System32\twext.dll
File not found -- C:\WINDOWS\twain_32.dll
File not found -- C:\WINDOWS\twain.dll
File not found -- C:\WINDOWS\System32\tssoft32.acm
File not found -- C:\WINDOWS\System32\tsshutdn.exe
File not found -- C:\WINDOWS\System32\tspkg.dll
File not found -- C:\WINDOWS\System32\tslabels.h
File not found -- C:\WINDOWS\System32\tskill.exe
File not found -- C:\WINDOWS\System32\tsgqec.dll
File not found -- C:\WINDOWS\System32\tsdiscon.exe
File not found -- C:\WINDOWS\System32\tsddd.dll
File not found -- C:\WINDOWS\System32\tscupgrd.exe
File not found -- C:\WINDOWS\System32\tscon.exe
File not found -- C:\WINDOWS\System32\tscfgwmi.dll
File not found -- C:\WINDOWS\System32\tsbyuv.dll
File not found -- C:\WINDOWS\System32\tsappcmp.dll
File not found -- C:\WINDOWS\System32\trkwks.dll
File not found -- C:\WINDOWS\System32\tree.com
File not found -- C:\WINDOWS\System32\traffic.dll
File not found -- C:\WINDOWS\System32\tracert6.exe
File not found -- C:\WINDOWS\System32\tracert.exe
File not found -- C:\WINDOWS\System32\tracerpt.exe
File not found -- C:\WINDOWS\System32\tourstart.exe
File not found -- C:\WINDOWS\System32\toolhelp.dll
File not found -- C:\WINDOWS\System32\tlntsvrp.dll
File not found -- C:\WINDOWS\System32\tlntsvr.exe
File not found -- C:\WINDOWS\System32\tlntsess.exe
File not found -- C:\WINDOWS\System32\tlntadmn.exe
File not found -- C:\WINDOWS\System32\TLBINF32.DLL
File not found -- C:\WINDOWS\System32\timer.drv
File not found -- C:\WINDOWS\System\TIMER.DRV
File not found -- C:\WINDOWS\System32\timedate.cpl
File not found -- C:\WINDOWS\System32\ticrf.rat
File not found -- C:\WINDOWS\System\THREED16.OCX
File not found -- C:\WINDOWS\System32\themeui.dll
File not found -- C:\WINDOWS\System32\tftp.exe
File not found -- C:\WINDOWS\System32\termsrv.dll
File not found -- C:\WINDOWS\System32\termmgr.dll
File not found -- C:\WINDOWS\System32\termcap
File not found -- C:\WINDOWS\System32\telnet.exe
File not found -- C:\WINDOWS\System32\telephon.cpl
File not found -- C:\WINDOWS\System32\tdc.ocx
File not found -- C:\WINDOWS\System32\tcpsvcs.exe
File not found -- C:\WINDOWS\System32\tcpmonui.dll
File not found -- C:\WINDOWS\System32\tcpmon.dll
File not found -- C:\WINDOWS\System32\tcpmib.dll
File not found -- C:\WINDOWS\System32\tcmsetup.exe
File not found -- C:\Documents and Settings\Administrator\My Documents\Tax Forms 2010.pdf
File not found -- C:\WINDOWS\System32\taskmgr.exe
File not found -- C:\WINDOWS\TASKMAN.EXE
File not found -- C:\WINDOWS\System32\taskman.exe
File not found -- C:\WINDOWS\System32\tasklist.exe
File not found -- C:\WINDOWS\System32\taskkill.exe
File not found -- C:\WINDOWS\System32\tapiui.dll
File not found -- C:\WINDOWS\System32\tapisrv.dll
File not found -- C:\WINDOWS\System32\tapiperf.dll
File not found -- C:\WINDOWS\System32\tapi32.dll
File not found -- C:\WINDOWS\System32\tapi3.dll
File not found -- C:\WINDOWS\System32\tapi.dll
File not found -- C:\WINDOWS\System\TAPI.DLL
File not found -- C:\WINDOWS\System32\t2embed.dll
File not found -- C:\WINDOWS\System32\systray.exe
File not found -- C:\WINDOWS\System32\systeminfo.exe
File not found -- C:\WINDOWS\System32\system.drv
File not found -- C:\WINDOWS\System\SYSTEM.DRV
File not found -- C:\WINDOWS\System32\syssetup.dll
File not found -- C:\WINDOWS\System32\sysprtj.sep
File not found -- C:\WINDOWS\System32\sysprint.sep
File not found -- C:\WINDOWS\System32\sysocmgr.exe
File not found -- C:\WINDOWS\System32\sysmon.ocx
File not found -- C:\WINDOWS\System32\syskey.exe
File not found -- C:\WINDOWS\System32\sysinv.dll
File not found -- C:\WINDOWS\System32\sysedit.exe
File not found -- C:\WINDOWS\System32\sysdm.cpl
File not found -- C:\WINDOWS\System32\syncui.dll
File not found -- C:\WINDOWS\System32\synceng.dll
File not found -- C:\WINDOWS\System32\syncapp.exe
File not found -- C:\WINDOWS\System32\SYMEVNT.386
File not found -- C:\WINDOWS\System32\sxs.dll
File not found -- C:\WINDOWS\System32\swprv.dll
File not found -- C:\WINDOWS\SwapDrvrSP3.ini
File not found -- C:\WINDOWS\SwapDrvrSP2.ini
File not found -- C:\WINDOWS\SwapDrvr.exe
File not found -- C:\WINDOWS\System32\svcpack.dll
File not found -- C:\WINDOWS\System32\svchost.exe
File not found -- C:\WINDOWS\System32\subst.exe
File not found -- C:\WINDOWS\System32\strmfilt.dll
File not found -- C:\WINDOWS\System32\strmdll.dll
File not found -- C:\WINDOWS\System32\streamci.dll
File not found -- C:\WINDOWS\System32\storprop.dll
File not found -- C:\WINDOWS\System32\storage.dll
File not found -- C:\WINDOWS\System32\stobject.dll
File not found -- C:\WINDOWS\System32\stimon.exe
File not found -- C:\WINDOWS\System32\sti_ci.dll
File not found -- C:\WINDOWS\System32\sti.dll
File not found -- C:\WINDOWS\System32\stdole32.tlb
File not found -- C:\WINDOWS\System32\stdole2.tlb
File not found -- C:\WINDOWS\System32\STDOLE.TLB
File not found -- C:\WINDOWS\System\stdole.tlb
File not found -- C:\WINDOWS\System32\stclient.dll
File not found -- C:\WINDOWS\System32\sstext3d.scr
File not found -- C:\WINDOWS\System32\ssstars.scr
File not found -- C:\WINDOWS\System32\sspipes.scr
File not found -- C:\WINDOWS\System32\ssmyst.scr
File not found -- C:\WINDOWS\System32\ssmypics.scr
File not found -- C:\WINDOWS\System32\ssmarque.scr
File not found -- C:\WINDOWS\System32\ssflwbox.scr
File not found -- C:\WINDOWS\System32\ssdpsrv.dll
File not found -- C:\WINDOWS\System32\ssdpapi.dll
File not found -- C:\WINDOWS\System32\ssbezier.scr
File not found -- C:\WINDOWS\System32\ss3dfo.scr
File not found -- C:\WINDOWS\System32\srvsvc.dll
File not found -- C:\WINDOWS\System32\srsvc.dll
File not found -- C:\WINDOWS\System32\srrstr.dll
File not found -- C:\WINDOWS\System32\srclient.dll
File not found -- C:\WINDOWS\System32\sqlwoa.dll
File not found -- C:\WINDOWS\System32\sqlwid.dll
File not found -- C:\WINDOWS\System32\sqlunirl.dll
File not found -- C:\WINDOWS\System32\sqlsrv32.rll
File not found -- C:\WINDOWS\System32\sqlsrv32.dll
File not found -- C:\WINDOWS\System32\sqlsodbc.chm
File not found -- C:\WINDOWS\System32\spxcoins.dll
File not found -- C:\WINDOWS\System32\spupdwxp.exe
File not found -- C:\WINDOWS\System32\spupdsvc.exe
File not found -- C:\WINDOWS\System32\sprio800.dll
File not found -- C:\WINDOWS\System32\sprio600.dll
File not found -- C:\WINDOWS\System32\sprestrt.exe
File not found -- C:\WINDOWS\System32\spoolsv.exe
File not found -- C:\WINDOWS\System32\spoolss.dll
File not found -- C:\WINDOWS\System32\spnpinst.exe
File not found -- C:\WINDOWS\System32\spnike.dll
File not found -- C:\WINDOWS\System32\spmsg.dll
File not found -- C:\WINDOWS\System32\spiisupd.exe
File not found -- C:\WINDOWS\System32\spider.exe
File not found -- C:\WINDOWS\System32\spdwnwxp.exe
File not found -- C:\WINDOWS\System32\sound.drv
File not found -- C:\WINDOWS\System\SOUND.DRV
File not found -- C:\WINDOWS\System32\sort.exe
File not found -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Sonic CinePlayer Quick Launch.lnk
File not found -- C:\WINDOWS\System32\sol.exe
File not found -- C:\WINDOWS\System32\softpub.dll
File not found -- C:\WINDOWS\Soap Bubbles.bmp
File not found -- C:\WINDOWS\System32\snmpsnap.dll
File not found -- C:\WINDOWS\System32\snmpapi.dll
File not found -- C:\WINDOWS\System32\sndvol32.exe
File not found -- C:\WINDOWS\System32\sndrec32.exe
File not found -- C:\WINDOWS\System32\smtpapi.dll
File not found -- C:\WINDOWS\System32\smss.exe
File not found -- C:\WINDOWS\System32\smlogsvc.exe
File not found -- C:\WINDOWS\System32\smlogcfg.dll
File not found -- C:\WINDOWS\System32\smbinst.exe
File not found -- C:\WINDOWS\System32\slserv.exe
File not found -- C:\WINDOWS\System32\slrundll.exe
File not found -- C:\WINDOWS\slrundll.exe
File not found -- C:\WINDOWS\System32\slgen.dll
File not found -- C:\WINDOWS\System32\slextspk.dll
File not found -- C:\WINDOWS\System32\slcoinst.dll
File not found -- C:\WINDOWS\System32\slbrccsp.dll
File not found -- C:\WINDOWS\System32\slbiop.dll
File not found -- C:\WINDOWS\System32\slbcsp.dll
File not found -- C:\WINDOWS\System32\slayerxp.dll
File not found -- C:\WINDOWS\System32\sl_anet.acm
File not found -- C:\WINDOWS\System32\skeys.exe
File not found -- C:\WINDOWS\System32\skdll.dll
File not found -- C:\WINDOWS\System32\sisbkup.dll
File not found -- C:\WINDOWS\System32\simpdata.tlb
File not found -- C:\WINDOWS\System32\sigverif.exe
File not found -- C:\WINDOWS\System32\sigtab.dll
File not found -- C:\WINDOWS\System32\shutdown.exe
File not found -- C:\WINDOWS\System32\shsvcs.dll
File not found -- C:\WINDOWS\System32\shscrap.dll
File not found -- C:\Documents and Settings\Administrator\Desktop\Shrunk.zip
File not found -- C:\WINDOWS\System32\shrpubw.exe
File not found -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
File not found -- C:\WINDOWS\System32\shmgrate.exe
File not found -- C:\WINDOWS\System32\shmedia.dll
File not found -- C:\WINDOWS\System32\shlwapi.dll
File not found -- C:\WINDOWS\System32\shimgvw.dll
File not found -- C:\WINDOWS\System32\shimeng.dll
File not found -- C:\WINDOWS\System32\shgina.dll
File not found -- C:\WINDOWS\System32\shfolder.dll
File not found -- C:\WINDOWS\System32\shellstyle.dll
File not found -- C:\WINDOWS\System32\shell32.dll
File not found -- C:\WINDOWS\System32\shell.dll
File not found -- C:\WINDOWS\System\SHELL.DLL
File not found -- C:\WINDOWS\System32\shdocvw.dll
File not found -- C:\WINDOWS\System32\shdoclc.dll
File not found -- C:\WINDOWS\System32\shadow.exe
File not found -- C:\WINDOWS\System32\sfmapi.dll
File not found -- C:\WINDOWS\System32\sfcfiles.dll
File not found -- C:\WINDOWS\System32\sfc_os.dll
File not found -- C:\WINDOWS\System32\sfc.exe
File not found -- C:\WINDOWS\System32\sfc.dll
File not found -- C:\WINDOWS\System32\setupn.exe
File not found -- C:\WINDOWS\System32\setupdll.dll
File not found -- C:\WINDOWS\System32\setupapi.dll
File not found -- C:\WINDOWS\setup.iss
File not found -- C:\WINDOWS\System\setup.inf
File not found -- C:\WINDOWS\System32\setup.exe
File not found -- C:\WINDOWS\System32\setup.bmp
File not found -- C:\WINDOWS\System32\sethc.exe
File not found -- C:\WINDOWS\System32\sessmgr.exe
File not found -- C:\WINDOWS\System32\serwvdrv.dll
File not found -- C:\WINDOWS\System32\services.msc
File not found -- C:\WINDOWS\System32\services.exe
File not found -- C:\WINDOWS\System32\servdeps.dll
File not found -- C:\WINDOWS\System32\serialui.dll
File not found -- C:\WINDOWS\System32\senscfg.dll
File not found -- C:\WINDOWS\System32\sensapi.dll
File not found -- C:\WINDOWS\System32\sens.dll
File not found -- C:\WINDOWS\System32\sendmail.dll
File not found -- C:\WINDOWS\System32\sendcmsg.dll
File not found -- C:\WINDOWS\System32\security.dll
File not found -- C:\WINDOWS\System32\secur32.dll
File not found -- C:\WINDOWS\System32\secupd.sig
File not found -- C:\WINDOWS\System32\secupd.dat
File not found -- C:\WINDOWS\System32\secpol.msc
File not found -- C:\WINDOWS\System32\seclogon.dll
File not found -- C:\WINDOWS\Santa Fe Stucco.bmp
File not found -- C:\WINDOWS\River Sumida.bmp
File not found -- C:\WINDOWS\System\RICHED.DLL
File not found -- C:\WINDOWS\Rhododendron.bmp
File not found -- C:\WINDOWS\REGLOCS.OLD
File not found -- C:\WINDOWS\regedit.exe
File not found -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\QuickTime Player.lnk
File not found -- C:\WINDOWS\QTFont.qfn
File not found -- C:\WINDOWS\QTFont.for
File not found -- C:\WINDOWS\Prairie Wind.bmp
File not found -- C:\WINDOWS\PhotoSnapViewer.INI
File not found -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
File not found -- C:\WINDOWS\System\OLESVR.DLL
File not found -- C:\WINDOWS\System\OLEMSG.DLL
File not found -- C:\WINDOWS\System\OLECLI.DLL
File not found -- C:\WINDOWS\ODBCINST.INI
File not found -- C:\WINDOWS\ODBC.INI
File not found -- C:\WINDOWS\System\OC25.DLL
File not found -- C:\WINDOWS\NSREX.INI
File not found -- C:\WINDOWS\notepad.exe
File not found -- C:\WINDOWS\NeroDigital.ini
File not found -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk
File not found -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk
File not found -- C:\Documents and Settings\Administrator\Desktop\My Documents.lnk
File not found -- C:\Documents and Settings\Administrator\Desktop\My Computer.lnk
File not found -- C:\WINDOWS\System\MSVIDEO.DLL
File not found -- C:\WINDOWS\System\MSRICHED.VBX
File not found -- C:\WINDOWS\System\MOUSE.DRV
File not found -- C:\WINDOWS\System\MMTASK.TSK
File not found -- C:\WINDOWS\System\mmsystem.dll
File not found -- C:\WINDOWS\System\MLCTRL.DLL
File not found -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
File not found -- C:\WINDOWS\mdm.ini
File not found -- C:\WINDOWS\System\MCIWAVE.DRV
File not found -- C:\WINDOWS\System\MCISEQ.DRV
File not found -- C:\WINDOWS\System\MCIAVI.DRV
File not found -- C:\WINDOWS\MAXLINK.INI
File not found -- C:\WINDOWS\System\MAPIFVBX.TLB
File not found -- C:\WINDOWS\System\MAPIFORM.VBX
File not found -- C:\WINDOWS\System\LZEXPAND.DLL
File not found -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Outlook.lnk
File not found -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
File not found -- C:\WINDOWS\KillReg.exe
File not found -- C:\WINDOWS\System\KEYBOARD.DRV
File not found -- C:\Documents and Settings\Administrator\My Documents\ITALY#2.gi
File not found -- C:\Documents and Settings\Administrator\My Documents\ITALY#1.gi
File not found -- C:\WINDOWS\IsUninst.exe
File not found -- C:\WINDOWS\imsins.BAK
File not found -- C:\WINDOWS\iis6.BAK
File not found -- C:\WINDOWS\hpomdl07.dat
File not found -- C:\WINDOWS\hpoins05.dat
File not found -- C:\WINDOWS\hh.exe
File not found -- C:\WINDOWS\Greenstone.bmp
File not found -- C:\WINDOWS\Gone Fishing.bmp
File not found -- C:\WINDOWS\FeatherTexture.bmp
File not found -- C:\WINDOWS\explorer.scf
File not found -- C:\WINDOWS\explorer.exe
File not found -- C:\WINDOWS\DLA.EXE
File not found -- C:\Documents and Settings\Administrator\default.pls
File not found -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
File not found -- C:\WINDOWS\System\CTL3DV2.DLL
File not found -- C:\WINDOWS\System\crlds3d.dll
File not found -- C:\WINDOWS\System\COMMDLG.DLL
File not found -- C:\WINDOWS\System\COMDLG16.OCX
File not found -- C:\WINDOWS\Coffee Bean.bmp
File not found -- C:\WINDOWS\clock.avi
File not found -- C:\WINDOWS\bootstat.dat
File not found -- C:\WINDOWS\Blue Lace 16.bmp
File not found -- C:\Documents and Settings\Administrator\Desktop\Birthdays+Anniversaries-Pg2.jpg
File not found -- C:\Documents and Settings\Administrator\Desktop\avira_free_antivirus_en.exe
File not found -- C:\WINDOWS\System\AVIFILE.DLL
File not found -- C:\WINDOWS\System\AVICAP.DLL
File not found -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
File not found -- C:\WINDOWS\_default.pif
[2011/12/13 21:44:00 | 000,118,152 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/12/26 08:32:24 | 082,885,256 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\avira_free_antivirus_en.exe
[2011/12/26 08:25:12 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010/01/19 19:36:25 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010/01/13 18:03:00 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009/11/08 17:18:03 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/01/03 14:37:20 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\pmsbfn32.dll
[2009/01/03 14:33:36 | 000,000,412 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2009/01/03 14:26:11 | 000,000,000 | ---- | C] () -- C:\WINDOWS\VPC32.INI
[2008/04/01 19:44:51 | 000,102,262 | ---- | C] () -- C:\WINDOWS\hpoins05.dat
[2008/04/01 19:44:51 | 000,017,505 | ---- | C] () -- C:\WINDOWS\hpomdl07.dat
[2008/03/21 13:28:00 | 000,000,222 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2008/03/21 11:50:47 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008/03/21 11:50:47 | 000,000,063 | ---- | C] () -- C:\WINDOWS\mdm.ini
[2008/03/21 11:50:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NSREX.INI
[2008/03/20 16:44:29 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008/03/20 15:49:42 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\e100bmsg.dll
[2008/03/20 11:04:35 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008/03/20 11:00:28 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008/03/20 05:53:23 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008/03/20 05:52:33 | 000,118,152 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2005/12/29 16:46:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/07/09 18:49:08 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
[2005/06/06 00:59:34 | 000,000,232 | ---- | C] () -- C:\WINDOWS\SwapDrvrSP3.ini
[2005/06/06 00:59:16 | 000,000,233 | ---- | C] () -- C:\WINDOWS\SwapDrvrSP2.ini
[2004/12/22 11:07:24 | 000,001,096 | ---- | C] () -- C:\WINDOWS\System32\Generic.ini
[2003/05/21 00:19:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\NavLogon.dll
[2001/08/23 07:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001/08/23 07:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001/08/23 07:00:00 | 000,311,604 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001/08/23 07:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001/08/23 07:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001/08/23 07:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001/08/23 07:00:00 | 000,039,992 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001/08/23 07:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001/08/23 07:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001/08/23 07:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2001/08/23 07:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2010/10/31 14:18:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Canon
[2011/10/29 17:17:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Canon Easy-WebPrint EX
[2008/03/21 13:40:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Leadertech
[2009/06/05 15:24:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\NewSoft
[2008/04/01 20:22:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\OLYMPUS
[2009/01/03 14:33:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ScanSoft
[2008/10/25 15:32:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Snapfish
[2009/01/03 14:29:30 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/01/03 14:33:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.* >
[2008/03/20 11:02:49 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2008/03/20 17:13:49 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2008/03/20 11:02:49 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2008/03/20 11:02:49 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2008/03/20 11:02:49 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008/03/20 17:09:57 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008/08/27 16:13:29 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2012/01/03 11:55:55 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys
[2008/03/21 14:04:29 | 000,024,428 | -H-- | M] () -- C:\_NavCClt.Log

< %systemroot%\Fonts\*.com >

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >
File not found -- C:\WINDOWS\Fonts\desktop.ini

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\Fonts\*.exe >

< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
File not found -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD8Z.DLL
File not found -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPDA7.DLL
File not found -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPP8Z.DLL
File not found -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPPA7.DLL

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.jpg >

< %systemroot%\*.png >

< %systemroot%\*.scr >

< %systemroot%\*._sy >

< %APPDATA%\Adobe\Update\*.* >

< %ALLUSERSPROFILE%\Favorites\*.* >

< %APPDATA%\Microsoft\*.* >

< %PROGRAMFILES%\*.* >

< %APPDATA%\Update\*.* >

< %systemroot%\*. /mp /s >

< %systemroot%\System32\config\*.sav >
[2008/03/20 05:51:40 | 000,090,112 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
File not found -- C:\WINDOWS\System32\config\software.sav
File not found -- C:\WINDOWS\System32\config\system.sav

< %PROGRAMFILES%\bak. /s >

< %systemroot%\system32\bak. /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >
File not found -- C:\Documents and Settings\All Users\Start Menu\desktop.ini

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %systemroot%\*.config >

< %systemroot%\system32\*.db >

< %PROGRAMFILES%\Internet Explorer\*.dat >

< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2008/08/27 16:29:21 | 000,000,177 | -HS- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\desktop.ini
[2008/03/20 11:08:59 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf

< %USERPROFILE%\Desktop\*.exe >
[2011/12/26 08:32:30 | 082,885,256 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\avira_free_antivirus_en.exe
[2012/01/03 13:53:07 | 000,584,192 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\OTL.exe

< %PROGRAMFILES%\Common Files\*.* >

< %systemroot%\*.src >

< %systemroot%\install\*.* >

< %systemroot%\system32\DLL\*.* >

< %systemroot%\system32\HelpFiles\*.* >

< %systemroot%\system32\rundll\*.* >

< %systemroot%\winn32\*.* >

< %systemroot%\Java\*.* >

< %systemroot%\system32\test\*.* >

< %systemroot%\system32\Rundll32\*.* >

< %systemroot%\AppPatch\Custom\*.* >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-12-13 22:49:47

< End of report >
-Linda

    Advertisements

Register to Remove

#2 LDTate

LDTate

    Grand Poobah

  • Root Admin
  • 57,211 posts

Posted 09 January 2012 - 06:55 PM

Please download Malwarebytes' Anti-Malware to your desktop.
  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad and if required the program will ask you to reboot to remove locked files.

Post the scan results using Copy/Paste

The forum is run by volunteers who donate their time and expertise.

Want to help others? Join the ClassRoom and learn how.

Logs will be closed if you haven't replied within 3 days

 

If you would like to paypal.gif for the help you received.
 

Proud graduate of TC/WTT Classroom

 

#3 LDTate

LDTate

    Grand Poobah

  • Root Admin
  • 57,211 posts

Posted 21 January 2012 - 05:07 AM

Due to inactivity this topic will be closed.
If you need help please start a new thread.

New members follow the instructions here http://forums.whatth...ed_t106388.html and start a new topic

The forum is run by volunteers who donate their time and expertise.

Want to help others? Join the ClassRoom and learn how.

Logs will be closed if you haven't replied within 3 days

 

If you would like to paypal.gif for the help you received.
 

Proud graduate of TC/WTT Classroom

 

Related Topics

Back to Virus, Spyware & Malware Removal · Next Unread Topic →

1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users

  1. What the Tech
  2. Spyware / Malware / Virus Removal
  3. Virus, Spyware & Malware Removal
  4. Privacy Policy
  5. Terms of Use ·