I found trojans on my computer and already cleaned them up. But I'd like to make sure that they are all gone. Please help. Thanks much in advance.
MalwareBytes’ Anti-Malware log
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 5150
Windows 5.1.2600 Service Pack 2
Internet Explorer 7.0.5730.13
11/22/2010 8:09:52 AM
mbam-log-2010-11-22 (08-09-52).txt
Scan type: Full scan (C:\|D:\|)
Objects scanned: 264610
Time elapsed: 58 minute(s), 14 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER One.log
GMER 1.0.15.15530 - http://www.gmer.net
Rootkit quick scan 2010-11-22 01:21:42
Windows 5.1.2600 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 HTS54108 rev.MB4I
Running: m8j1hew6.exe; Driver: C:\DOCUME~1\user\LOCALS~1\Temp\pxldrfod.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs VET-FILT.SYS
Device \Driver\Tcpip \Device\Ip vsdatant.sys (TrueVector Device Driver/Zone Labs LLC)
Device \Driver\Tcpip \Device\Tcp vsdatant.sys (TrueVector Device Driver/Zone Labs LLC)
AttachedDevice \Driver\Tcpip \Device\Tcp fssfltr_tdi.sys (Family Safety Filter Driver (TDI)/Microsoft Corporation)
AttachedDevice \Driver\Tcpip \Device\Tcp Lbd.sys (Boot Driver/Lavasoft AB)
Device \Driver\Tcpip \Device\Udp vsdatant.sys (TrueVector Device Driver/Zone Labs LLC)
Device \Driver\Tcpip \Device\RawIp vsdatant.sys (TrueVector Device Driver/Zone Labs LLC)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 mouclass.sys (Mouse Class Driver/Microsoft Corporation)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
---- EOF - GMER 1.0.15 ----
GMER Two.log
GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2010-11-22 04:36:57
Windows 5.1.2600 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 HTS54108 rev.MB4I
Running: m8j1hew6.exe; Driver: C:\DOCUME~1\user\LOCALS~1\Temp\pxldrfod.sys
---- System - GMER 1.0.15 ----
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwClose [0xA051E88E]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwCreateFile [0xA051E0EC]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwCreateKey [0xA051DDCE]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwCreateSection [0xA051F938]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwDeleteKey [0xA051DED8]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwDeleteValueKey [0xA051DFC2]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwLoadDriver [0xA051EBBC]
SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Zone Labs LLC) ZwLoadKey [0xA05A5210]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwOpenFile [0xA051E3F4]
SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Zone Labs LLC) ZwReplaceKey [0xA05A5380]
SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Zone Labs LLC) ZwRestoreKey [0xA05A54C0]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwSetInformationFile [0xA051E526]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwSetValueKey [0xA051DBFC]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwTerminateProcess [0xA051EB04]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwWriteFile [0xA051E70C]
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs VET-FILT.SYS
Device \Driver\Tcpip \Device\Ip vsdatant.sys (TrueVector Device Driver/Zone Labs LLC)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 mouclass.sys (Mouse Class Driver/Microsoft Corporation)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
Device \Driver\Tcpip \Device\Tcp vsdatant.sys (TrueVector Device Driver/Zone Labs LLC)
AttachedDevice \Driver\Tcpip \Device\Tcp fssfltr_tdi.sys (Family Safety Filter Driver (TDI)/Microsoft Corporation)
AttachedDevice \Driver\Tcpip \Device\Tcp Lbd.sys (Boot Driver/Lavasoft AB)
Device \Driver\Tcpip \Device\Udp vsdatant.sys (TrueVector Device Driver/Zone Labs LLC)
Device \Driver\Tcpip \Device\RawIp vsdatant.sys (TrueVector Device Driver/Zone Labs LLC)
Device \Driver\Tcpip \Device\IPMULTICAST vsdatant.sys (TrueVector Device Driver/Zone Labs LLC)
---- Registry - GMER 1.0.15 ----
Reg HKLM\SOFTWARE\Classes\CLSID\{156E5059-1974-1C21-234A49AFACAB4059}\{B90FCDFF-5527-F999-5BDD8AB8903FEB58}\{85FE2661-9FF6-1F38-3936C76FCE54F605}
Reg HKLM\SOFTWARE\Classes\CLSID\{156E5059-1974-1C21-234A49AFACAB4059}\{B90FCDFF-5527-F999-5BDD8AB8903FEB58}\{85FE2661-9FF6-1F38-3936C76FCE54F605}@S6KI1YERXJTIP3T5RVDI41UR2G1 0x01 0x00 0x01 0x00 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeoฎ video 5.10 Compression Filter
Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeoฎ video 5.10 Compression Filter@FriendlyName Indeo? video 5.10 Compression Filter
Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeoฎ video 5.10 Compression Filter@CLSID {1F73E9B1-8C3A-11D0-A3BE-00A0C9244436}
Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeoฎ video 5.10 Compression Filter@FilterData 0x02 0x00 0x00 0x00 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeoฎ video 5.10 Compression Filter@EncoderType 1
Reg HKLM\SOFTWARE\Classes\CLSID\{44DDD7DB-C851-F5D8-43BBD1CB976AABCC}\{47326943-CE6C-E3D1-74FCCAE0772B4FAB}\{FA8F0E33-B888-6EFF-6240990870DDF055}
Reg HKLM\SOFTWARE\Classes\CLSID\{44DDD7DB-C851-F5D8-43BBD1CB976AABCC}\{47326943-CE6C-E3D1-74FCCAE0772B4FAB}\{FA8F0E33-B888-6EFF-6240990870DDF055}@S6KI1YERXJTIP3T5RVDI41UR2G1 0x01 0x00 0x01 0x00 ...
---- Files - GMER 1.0.15 ----
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Cambodia\Siem Reap\Siem Reap-Hotel bookings-Nov09\Expedia-Kazna hotel bookings-Nov09\Expedia-Kazna hotel bookings-Nov16-09\Expedia-Kazna hotel-confirmation Nov 16-09_files\ExpediaConfirmationController_data\s.htm 39 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 1-09\Expedia-Citrus_Hotel-KL-Booking_Confirm_files\ExpediaConfirmationController_data\s.htm 39 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\action.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\activity.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\activity_002.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\activity_003.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\ADVID542.gif 44 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\ADVID547.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\atm2.gif 42 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\atm2_002.gif 42 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\roitrack.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\ti.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\Tracker.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\v4.gif 49 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\activityi_data\xsordnmORDERID.gif 49 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Citrus Hotel-KL-Hotel Bookings-Nov09\Citrus Hotel-KL-Hotel Booking-Nov 2-09\Expedia-Citrus_Hotel-KL-Booking-Nov2_Confirm_files\ExpediaConfirmationController_data\s.htm 39 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\ExpediaConfirmationController_data\s.htm 39 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\action.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\activity.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\activity_002.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\activity_003.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\ADVID542.gif 44 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\ADVID547.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\atm2.gif 42 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\atm2_002.gif 42 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\roitrack.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\ti.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\Tracker.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\v4.gif 49 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 5-09\Expedia-Hotel Sentral-KL-Booking-Nov5_Confirm_files\activityi_data\xsordnmORDERID.gif 49 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\action.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\activity.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\activity_002.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\activity_003.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\ADVID542.gif 44 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\ADVID547.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\atm2.gif 42 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\atm2_002.gif 42 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\roitrack.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\ti.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\Tracker.gif 43 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\v4.gif 49 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\activityi_data\xsordnmORDERID.gif 49 bytes
File C:\Documents and Settings\user\My Documents\Travel-lenovo\Malaysia\Malaysia-Hotel Bookings-Nov 09\KL-Hotel bookings\Hotel Sentral-KL-Hotel Bookings-Nov09\Hotel Sentral-KL-Hotel Booking-Nov 6-09\Expedia-Hotel Sentral-KL-Booking-Nov6_Confirm_files\ExpediaConfirmationController_data\s.htm 39 bytes
---- EOF - GMER 1.0.15 ----
DDS ScanLog
DDS.txt
DDS (Ver_10-11-10.01) - NTFSx86
Run by user at 9:13:22.23 on Mon 11/22/2010
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_21
Microsoft Windows XP Professional 5.1.2600.2.874.1.1033.18.2550.2054 [GMT 7:00]
AV: Lavasoft Ad-Watch Live! Anti-Virus *On-access scanning disabled* (Updated) {A1C4F2E0-7FDE-4917-AFAE-013EFC3EDE33}
AV: ZoneAlarm Antivirus *On-access scanning disabled* (Outdated) {5D467B10-818C-4CAB-9FF7-6893B5B8F3CF}
FW: ZoneAlarm Firewall *disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
============== Running Processes ===============
C:\Program Files\Emsisoft Anti-Malware\a2service.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
c:\program files\a-squared free\a2service.exe
C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\PROGRA~1\Lenovo\PkgMgr\HOTKEY\TPHKMGR.exe
C:\WINDOWS\system32\TpShocks.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\TPHDEXLG.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Lenovo\PkgMgr\HOTKEY\TPONSCR.exe
C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe
C:\Program Files\Lenovo\PkgMgr\HOTKEY_1\TpScrex.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\WINDOWS\system32\TpKmpSVC.exe
C:\Program Files\ThinkPad\UltraNav Wizard\UNavTray.EXE
C:\PROGRA~1\BEARSH~1\MediaBar\DataMngr\DataMngrUI.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\WFXSVC.EXE
C:\Program Files\WinFax\WFXMOD32.EXE
C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
C:\Documents and Settings\user\Desktop\dds.scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.mail.com/
uSearch Bar = hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60076
uInternet Settings,ProxyOverride = *.local
mSearchAssistant = hxxp://www.crawler.com/search/ie.aspx?tb_id=60076
mCustomizeSearch = hxxp://dnl.crawler.com/support/sa_customize.aspx?TbId=60076
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: MediaBar: {0974ba1e-64ec-11de-b2a5-e43756d89593} - c:\program files\bearshare applications\mediabar\toolbar\BearshareMediabarDx.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: UrlHelper Class: {74322bf9-df26-493f-b0da-6d2fc5e6429e} - c:\program files\bearshare applications\mediabar\datamngr\IEBHO.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: AcroIEToolbarHelper Class: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: MediaBar: {0974ba1e-64ec-11de-b2a5-e43756d89593} - c:\program files\bearshare applications\mediabar\toolbar\BearshareMediabarDx.dll
TB: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [RealPlayer] "c:\program files\real\realplayer\realplay.exe" /RunUPGToolCommandReBoot
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [NBJ] "c:\program files\ahead\nero backitup\NBJ.exe"
uRun: [SpywareTerminatorUpdate] "c:\program files\spyware terminator\SpywareTerminatorUpdate.exe"
uRun: [tcactive] c:\program files\the cleaner\tcap.exe
mRun: [SoundMAXPnP] c:\program files\analog devices\core\smax4pnp.exe
mRun: [SoundMAX] c:\program files\analog devices\soundmax\Smax4.exe /tray
mRun: [AwaySch] c:\program files\lenovo\awaytask\AwaySch.EXE
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [TPHOTKEY] c:\progra~1\lenovo\pkgmgr\hotkey\TPHKMGR.exe
mRun: [TpShocks] TpShocks.exe
mRun: [TPKMAPHELPER] c:\program files\thinkpad\utilities\TpKmapAp.exe -helper
mRun: [TP4EX] tp4ex.exe
mRun: [SynTPLpr] c:\program files\synaptics\syntp\SynTPLpr.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [PWRMGRTR] rundll32 c:\progra~1\thinkpad\utilit~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor
mRun: [BLOG] rundll32 c:\progra~1\thinkpad\utilit~1\BatLogEx.DLL,StartBattLog
mRun: [LPManager] c:\progra~1\thinkv~1\prdctr\LPMGR.exe
mRun: [ACTray] c:\program files\thinkpad\connectutilities\ACTray.exe
mRun: [ACWLIcon] c:\program files\thinkpad\connectutilities\ACWLIcon.exe
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [OpwareSE2] "c:\program files\scansoft\omnipagese2.0\OpwareSE2.exe"
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb03.exe
mRun: [SpywareTerminator] "c:\program files\spyware terminator\SpywareTerminatorShield.exe"
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [DataMngr] c:\progra~1\bearsh~1\mediabar\datamngr\DataMngrUI.exe
mRun: [Easy-PrintToolBox] c:\program files\canon\easy-printtoolbox\BJPSMAIN.EXE /logon
mRun: [Zone Labs Client] "c:\program files\zone labs\zonealarm\zlclient.exe"
mRun: [AT-Watch]
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
dRun: [MsnMsgr] "c:\program files\msn messenger\MsnMsgr.Exe" /background
dRunOnce: [RunNarrator] Narrator.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\acroba~1.lnk - c:\program files\adobe\acrobat 6.0\distillr\acrotray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\thinkpad\bluetooth software\btsendto_ie_ctx.htm
IE: {D1A4DEBD-C2EE-449f-B9FB-E8409F9A0BC5} - c:\program files\lenovo\pkgmgr\PkgMgr.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
LSP: c:\windows\system32\zonelabs\vetredir.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: AwayNotify - c:\program files\lenovo\awaytask\AwayNotify.dll
Notify: igfxcui - igfxdev.dll
Notify: tpfnf2 - notifyf2.dll
Notify: tphotkey - tphklock.dll
AppInit_DLLs: c:\progra~1\bearsh~1\mediabar\datamngr\datamngr.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: WinFax PRO IShellExecuteHook: {a213b520-c6c2-11d0-af9d-008029e1027e} - c:\program files\winfax\WfxSeh32.Dll
LSA: Authentication Packages = msv1_0 nwprovau
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\user\applic~1\mozilla\firefox\profiles\jwwlgksq.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.mail.yahoo.com
FF - prefs.js: keyword.URL - hxxp://search.bearshare.com/web?src=ffb&q=
FF - plugin: c:\documents and settings\user\application data\mozilla\plugins\np-mswmp.dll
FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified
============= SERVICES / DRIVERS ===============
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010-10-6 64288]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2007-8-12 142592]
R1 VET-FILT;VET File System Filter;c:\windows\system32\drivers\vet-filt.sys [2010-9-21 21605]
R1 VET-REC;VET File System Recognizer;c:\windows\system32\drivers\vet-rec.sys [2010-9-21 15668]
R1 VETFDDNT;VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\vetfddnt.sys [2010-9-21 114856]
R1 VETMONNT;VET File and Macro Monitor;c:\windows\system32\drivers\vetmonnt.sys [2010-9-21 896472]
R1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2010-9-21 280344]
R2 a2AntiMalware;Emsisoft Anti-Malware 5.0 - Service;c:\program files\emsisoft anti-malware\a2service.exe [2010-11-9 2806000]
R2 a2free;a-squared Free Service;c:\program files\a-squared free\a2service.exe [2007-7-12 1872320]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2009-9-20 54752]
S2 ATE_PROCMON;ATE_PROCMON;\??\c:\program files\anti trojan elite\atepmon.sys --> c:\program files\anti trojan elite\ATEPMon.sys [?]
S2 CAISafe;CA ISafe;c:\windows\system32\zonelabs\isafe.exe [2010-9-21 184320]
S2 gupdate;บริการอัปเดตของ Google (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-6-5 135664]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2010-8-12 1375992]
S2 moohelp;The Cleaner 2011 Helper Service;c:\program files\the cleaner\mhelper.exe [2010-9-28 813056]
S2 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32\zonelabs\vsmon.exe -service [?]
S3 a2acc;a2acc;c:\program files\emsisoft anti-malware\a2accx86.sys [2010-11-9 72808]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2009-8-5 704864]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;c:\program files\lavasoft\ad-aware\kernexplorer.sys [2010-8-12 15264]
=============== Created Last 30 ================
2010-11-09 10:55:11 -------- d-----w- c:\program files\Emsisoft Anti-Malware
2010-11-08 09:51:23 -------- d-----w- c:\docume~1\user\applic~1\Malwarebytes
2010-11-08 09:50:57 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-11-08 09:50:55 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-11-08 09:50:55 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-11-08 09:50:55 -------- d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2010-11-06 13:47:58 -------- d-----w- c:\program files\GridinSoft Trojan Killer
2010-10-30 13:08:43 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-10-30 10:32:49 -------- d-----w- c:\program files\iPod
==================== Find3M ====================
2010-09-21 06:14:15 1353016 ----a-w- c:\windows\system32\vete.dll
2010-09-08 04:17:46 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-09-08 04:17:46 69632 ----a-w- c:\windows\system32\QuickTime.qts
2009-07-10 07:22:52 1206048 ----a-w- c:\program files\paintnt.exe
1997-05-16 01:52:16 32528 ----a-w- c:\program files\OLEPRO32.DLL
1997-05-16 01:52:10 271632 ----a-w- c:\program files\MSVCRT.DLL
1997-05-16 01:52:08 939792 ----a-w- c:\program files\MFC42U.DLL
1997-05-16 01:52:04 941840 ----a-w- c:\program files\MFC42.DLL
1997-05-16 01:52:00 330512 ----a-w- c:\program files\MSPAINT.EXE
============= FINISH: 9:14:13.51 ===============
DDS ScanLog
Attach.txt
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_10-11-10.01)
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 9/8/2006 7:18:02 AM
System Uptime: 11/22/2010 9:07:38 AM (0 hours ago)
Motherboard: LENOVO | | 9457AE2
Processor: Intel(R) Core(TM)2 CPU T5500 @ 1.66GHz | None | 1662/167mhz
Processor: Intel(R) Core(TM)2 CPU T5500 @ 1.66GHz | None | 1662/167mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 44 GiB total, 4.553 GiB free.
D: is FIXED (NTFS) - 31 GiB total, 22.013 GiB free.
E: is CDROM ()
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP367: 9/13/2010 9:56:10 AM - Spyware Terminator - restore point
RP368: 9/20/2010 2:27:27 PM - Spyware Terminator - restore point
RP369: 9/21/2010 1:26:00 PM - Removed Kaspersky Anti-Virus 2011.
RP370: 9/23/2010 1:39:05 PM - System Checkpoint
RP371: 9/24/2010 7:14:40 PM - Installed Java(TM) 6 Update 21
RP372: 9/27/2010 10:01:02 AM - Spyware Terminator - restore point
RP373: 9/28/2010 11:35:31 AM - System Checkpoint
RP374: 10/11/2010 3:25:11 PM - System Checkpoint
RP375: 10/12/2010 3:28:20 PM - System Checkpoint
RP376: 10/15/2010 8:41:33 PM - System Checkpoint
RP377: 10/18/2010 1:53:30 PM - System Checkpoint
RP378: 10/19/2010 9:08:23 PM - System Checkpoint
RP379: 10/30/2010 6:58:14 PM - Installed iTunes
RP380: 10/30/2010 8:05:53 PM - Removed iTunes
RP381: 10/30/2010 8:08:18 PM - Removed Java(TM) 6 Update 2
RP382: 10/30/2010 8:10:00 PM - Removed Java(TM) 6 Update 3
RP383: 10/30/2010 8:10:58 PM - Removed Java(TM) 6 Update 7
RP384: 10/30/2010 8:16:17 PM - Installed iTunes
RP385: 11/1/2010 8:28:34 AM - System Checkpoint
RP386: 11/1/2010 11:32:00 AM - Spyware Terminator - restore point
RP387: 11/3/2010 7:36:34 AM - System Checkpoint
RP388: 11/6/2010 8:46:28 PM - Spyware Terminator - restore point
RP389: 11/9/2010 10:29:49 PM - System Checkpoint
RP390: 11/11/2010 12:30:23 AM - System Checkpoint
RP391: 11/15/2010 8:41:19 PM - Spyware Terminator - restore point
RP392: 11/18/2010 11:06:38 PM - System Checkpoint
RP393: 11/19/2010 11:17:27 PM - System Checkpoint
RP394: 11/21/2010 11:17:03 AM - System Checkpoint
==== Installed Programs ======================
Access Help
ACDSee 9 Photo Manager
Ad-Aware
Ad-Aware Email Scanner for Outlook
Adobe Acrobat 6.0 Standard
Adobe Flash Player 10 Plugin
Adobe Flash Player ActiveX
Adobe Photoshop CS
Adobe Reader 7.1.0
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Atmel TPM Driver Installer 3.0.3.15
Bonjour
Canon Utilities Easy-PhotoPrint
Canon Utilities Easy-PrintToolBox
CCleaner (remove only)
Concord WinFax Plugin v3.0
Emsisoft Anti-Malware 5.0
Garmin MapInstall
Garmin MapSource
Garmin POI Loader
Garmin Training Center 3.2.3
Garmin USB Drivers
GmapTool 0.4.6
Google Chrome
Google Update Helper
Help Center
HijackThis 1.99.1
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
Hotfix for Windows XP (KB954708)
hp deskjet 845c series (Remove only)
IBM ThinkPad Power Management Driver
Idiom WorldServer Desktop Workbench
Intel(R) Graphics Media Accelerator Driver
Intel(R) PROSet/Wireless Software
Ipswitch WS_FTP Pro Uninstall
iTunes
j2 Messenger 4.2
Java Auto Updater
Java(TM) 6 Update 21
Java(TM) SE Runtime Environment 6 Update 1
jetAudio Plus VX
Lernout & Hauspie TruVoice American English TTS Engine
LiveReg (Symantec Corporation)
LiveUpdate 1.6 (Symantec Corporation)
M3 v2.00
Malwarebytes' Anti-Malware
MapSource
mCore
mDriver
MediaBar
Message Center
Microsoft .NET Framework (English)
Microsoft .NET Framework (English) v1.0.3705
Microsoft .NET Framework 1.1
Microsoft .NET Framework 2.0
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Outlook Connector
Microsoft Office Professional Edition 2003
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft User-Mode Driver Framework Feature Pack 1.0
mMHouse
MobileMe Control Panel
Mozilla Firefox (3.6.12)
mPfMgr
mProSafe
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 6.0 Parser (KB933579)
mWlsSafe
mXML
Nero 6 Ultra Edition
OmniPage SE 2.0
OpenOffice.org Installer 1.0
Paint.NET v3.36
PowerDVD
Productivity Center Supplement for ThinkPad
QuickTime
RealPlayer
Safari
Security Update for Microsoft .NET Framework 2.0 (KB928365)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921503)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923694)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925454)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928090)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929123)
Security Update for Windows XP (KB929969)
Security Update for Windows XP (KB930178)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931768)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168)
Security Update for Windows XP (KB933566)
Security Update for Windows XP (KB933729)
Security Update for Windows XP (KB935839)
Security Update for Windows XP (KB935840)
Security Update for Windows XP (KB936021)
Security Update for Windows XP (KB937143)
Security Update for Windows XP (KB937894)
Security Update for Windows XP (KB938127)
Security Update for Windows XP (KB938829)
Security Update for Windows XP (KB939653)
Security Update for Windows XP (KB941202)
Security Update for Windows XP (KB941568)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB941644)
Security Update for Windows XP (KB942615)
Security Update for Windows XP (KB943460)
Security Update for Windows XP (KB943485)
Security Update for Windows XP (KB944653)
Segoe UI
SiSoftware Sandra Professional 2005 (Win64/32/CE)
Skype? 3.2
SkyTeam Travel Timetable
Software Installer
Software Update for Web Folders
SoundMAX
Spybot - Search & Destroy
Spyware Terminator
SpywareBlaster 4.4
Symantec WinFax PRO
System Migration Assistant
ThaiSoftware Dictionary V4.0
The American Heritage Talking Dictionary
The Cleaner 2011
ThinkPad Bluetooth with Enhanced Data Rate Software
ThinkPad Configuration
ThinkPad FullScreen Magnifier
ThinkPad Hotkey Features Setup
ThinkPad Keyboard Customizer Utility
ThinkPad Power Manager
ThinkPad Presentation Director
ThinkPad UltraNav Driver
ThinkPad UltraNav Wizard
ThinkVantage Access Connections
ThinkVantage Active Protection System
ThinkVantage Away Manager
ThinkVantage Productivity Center
TrackPoint Accessibility Features
Tracks4Australia 1.20
TRADOS 6.5 Freelance
TRADOS MultiTerm Workstation
Trojan Killer 2.0
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB911280)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB927891)
Update for Windows XP (KB929338)
Update for Windows XP (KB930916)
Update for Windows XP (KB931836)
Update for Windows XP (KB932823-v3)
Update for Windows XP (KB933360)
Update for Windows XP (KB936357)
Update for Windows XP (KB938828)
Update for Windows XP (KB942763)
Update for Windows XP (KB942840)
Update for Windows XP (KB946627)
v1.61
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
Winamp (remove only)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0)
Windows Genuine Advantage Notifications (KB905474)
Windows Imaging Component
Windows Internet Explorer 7
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer
Windows Media Format 11 runtime
Windows Media Player 11
WinRAR archiver
WinZip
Yahoo! Install Manager
Yahoo! Toolbar
ZoneAlarm with Antivirus
==== Event Viewer Messages From Past Week ========
11/19/2010 8:56:14 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the IMAPI CD-Burning COM Service service to connect.
11/19/2010 8:56:14 AM, error: Service Control Manager [7000] - The IMAPI CD-Burning COM Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/18/2010 4:07:41 PM, error: Service Control Manager [7003] - The IPS Core Service service depends on the following nonexistent service: PROCDD
==== End Of File ===========================
