Jump to content

Bad error message


Recommended Posts

I downloaded your software as I kept getting tabs that were opening up on their own when browsing the internet. I ran a scan which detected over 600 objects and I clicked for action to be applied on these. However, when I start up my computer and whenever I try to run a program, I now get these "bad error" messages saying that the program is not a valid Windows image. The programs do run eventually but only after some considerable delay. Frankly, using my computer was easier when the tabs kept opening!

 

I should be very grateful if you could help.

 

Thank you.

 

Duncan

Link to post
Share on other sites

Hi,

 

I just read a post from somebody with a similar problem who was asked to download Farbar Recovery Scanner and paste a copy of the text report received. I have done this and have pasted the text report below.

 

Regards,

 

Duncan

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-02-2015
Ran by Compaq_Owner (administrator) on YOUR-447023AE6B on 13-02-2015 18:59:00
Running from C:\Documents and Settings\Compaq_Owner\My Documents\Downloads
Loaded Profiles: Compaq_Owner (Available profiles: Compaq_Owner)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(McAfee, Inc.) C:\PROGRA~1\McAfee\SITEAD~1\McSACore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\WINDOWS\system32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\McAfee Online Backup\MOBKbackup.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Hewlett-Packard Company) C:\WINDOWS\system\hpsysdrv.exe
(ATI Technologies, Inc.) C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
(Hewlett-Packard Company) C:\hp\KBD\kbd.exe
(Hewlett-Packard) C:\Program Files\Hp\HP Software Update\hpwuSchd2.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
(McAfee, Inc.) C:\Program Files\McAfee Online Backup\MOBKstat.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqste08.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Canon Inc.) C:\Program Files\Canon\CAL\CALMAIN.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\McAfee\MAT\McPvTray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [hpsysdrv] => c:\windows\system\hpsysdrv.exe [52736 1998-05-07] (Hewlett-Packard Company)
HKLM\...\Run: [ATIPTA] => C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064 2005-08-14] (ATI Technologies, Inc.)
HKLM\...\Run: [KBD] => C:\HP\KBD\KBD.EXE [61440 2005-02-02] (Hewlett-Packard Company)
HKLM\...\Run: [PS2] => C:\WINDOWS\system32\ps2.exe [90112 2004-10-25] (Hewlett-Packard Company)
HKLM\...\Run: [Reminder] => C:\Windows\Creator\Remind_XP.exe [663552 2004-12-14] (SoftThinks)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [TkBellExe] => C:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2015-02-08] (RealNetworks, Inc.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [517392 2014-04-25] (McAfee, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2015-01-27] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-12-03] (Adobe Systems Incorporated)
HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
Winlogon\Notify\GoToAssist: C:\Program Files\Citrix\GoToAssist\896\G2AWinLogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1545334669-2488130578-2668775081-1008\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-02-28] (Google Inc.)
HKU\S-1-5-21-1545334669-2488130578-2668775081-1008\...\RunOnce: [Adobe Speed Launcher] => 1423850878
HKU\S-1-5-21-1545334669-2488130578-2668775081-1008\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-1545334669-2488130578-2668775081-1008\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoControlPanel] 0
AppInit_DLLs: C:\PROGRA~1\SEARCH~1\SEARCH~1\bin\VC32LO~1.DLL => C:\PROGRA~1\SEARCH~1\SEARCH~1\bin\VC32LO~1.DLL File Not Found
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Online Backup Status.lnk
ShortcutTarget: McAfee Online Backup Status.lnk -> C:\Program Files\McAfee Online Backup\MOBKstat.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers: [MOBK] -> {3c3f3c1a-9153-7c05-f938-622e7003894d} => C:\Program Files\McAfee Online Backup\MOBKshell.dll (McAfee, Inc.)
ShellIconOverlayIdentifiers: [MOBK2] -> {e6ea1d7d-144e-b977-98c4-84c53c1a69d0} => C:\Program Files\McAfee Online Backup\MOBKshell.dll (McAfee, Inc.)
ShellIconOverlayIdentifiers: [MOBK3] -> {b4caf489-1eec-c617-49ad-8d7088598c06} => C:\Program Files\McAfee Online Backup\MOBKshell.dll (McAfee, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-1545334669-2488130578-2668775081-1008\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKU\S-1-5-21-1545334669-2488130578-2668775081-1008\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-gb/?ocid=iehp
HKU\S-1-5-21-1545334669-2488130578-2668775081-1008\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> DefaultScope {5AAAF713-3A24-4D9A-8E20-886A422EA44B} URL = https://uk.search.yahoo.com/search?fr=mcafee&type=B011GB0D20140110&p={SearchTerms}
SearchScopes: HKU\.DEFAULT -> {5AAAF713-3A24-4D9A-8E20-886A422EA44B} URL = https://uk.search.yahoo.com/search?fr=mcafee&type=B011GB0D20140110&p={SearchTerms}
SearchScopes: HKU\S-1-5-21-1545334669-2488130578-2668775081-1008 -> DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = 
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - No Name - {BA52B914-B692-46c4-B683-905236F6F655} -  No File
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKU\S-1-5-21-1545334669-2488130578-2668775081-1008 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKU\S-1-5-21-1545334669-2488130578-2668775081-1008 -> No Name - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} -  No File
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @mcafee.com/MVT -> C:\Program Files\McAfee\Supportability\MVT\NPMVTPlugin.dll (McAfee, Inc.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.4.19 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.4 -> C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.4.19 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1545334669-2488130578-2668775081-1008: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin1017325.dll (Amazon.com, Inc.)
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2010-03-06]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-03-18]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor [2015-02-02]
FF HKLM\...\Firefox\Extensions: [{1B12EF76-2B5E-4DA1-B587-4762D49BFE03}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015-02-08]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2015-02-02]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://isearch.omiga-plus.com/?type=hp&ts=1422875089&from=tugs&uid=HDS728080PLAT20_PFD215S7RKJSXNRKJSXNX
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-18]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-18]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx [2015-02-02]
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 CCALib8; C:\Program Files\Canon\CAL\CALMAIN.exe [96370 2007-01-31] (Canon Inc.) [File not signed]
S2 CltMngSvc; C:\Program Files\SearchProtect\Main\bin\CltMngSvc.exe [3557136 2015-02-02] () [File not signed]
S3 GoToAssist; C:\Program Files\Citrix\GoToAssist\896\g2aservice.exe [13720 2014-11-05] (Citrix Online, a division of Citrix Systems, Inc.)
S2 gupdate1c9aad7d5ebec0e; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-10-27] (Google Inc.)
R2 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
S4 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
S4 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2010-04-12] (Sun Microsystems, Inc.)
S4 LMIRescue_c88bae70-78cd-471d-9d5b-f0e9bfcb7967; C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\LogMeIn Rescue Applet\LMIR0001.tmp\LMI_Rescue_srv.exe [2570592 2014-06-11] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [132160 2015-02-12] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [145568 2014-04-25] (McAfee, Inc.)
U2 mcbootdelaystartsvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [472072 2014-10-08] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [655936 2014-08-20] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [169800 2014-06-20] (McAfee, Inc.)
R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [179600 2014-06-20] (McAfee, Inc.)
R2 MOBKbackup; C:\Program Files\McAfee Online Backup\MOBKbackup.exe [229688 2010-04-13] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [73728 2007-08-09] (HP) [File not signed]
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2014-08-12] ()
S2 avgwd; "C:\Program Files\AVG\AVG2015\avgwdsvc.exe" [X]
S2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [62832 2014-06-20] (McAfee, Inc.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [147912 2013-09-23] (McAfee, Inc.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [51120 2005-03-08] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2005-03-08] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21744 2005-03-08] (HP)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [114904 2015-02-13] (Malwarebytes Corporation)
R2 McPvDrv; C:\WINDOWS\system32\drivers\McPvDrv.sys [66296 2013-09-09] (McAfee, Inc.)
R3 mfeapfk; C:\WINDOWS\System32\drivers\mfeapfk.sys [135968 2014-06-20] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [238176 2014-06-20] (McAfee, Inc.)
S3 mfebopk; C:\WINDOWS\System32\drivers\mfebopk.sys [67816 2014-06-20] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [369248 2014-06-20] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [576048 2014-06-20] (McAfee, Inc.)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [350240 2014-08-20] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [81296 2014-08-20] (McAfee, Inc.)
S3 mfendisk; C:\WINDOWS\System32\DRIVERS\mfendisk.sys [87520 2014-06-20] (McAfee, Inc.)
R3 mfendiskmp; C:\WINDOWS\System32\DRIVERS\mfendisk.sys [87520 2014-06-20] (McAfee, Inc.)
R1 mfetdi2k; C:\WINDOWS\System32\drivers\mfetdi2k.sys [93624 2014-06-20] (McAfee, Inc.)
R1 MOBKFilter; C:\WINDOWS\System32\DRIVERS\MOBK.sys [54776 2010-04-13] (Mozy, Inc.)
R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [20640 2005-04-25] (Sonic Solutions) [File not signed]
R3 RTL8023xp; C:\WINDOWS\System32\DRIVERS\Rtlnicxp.sys [74496 2005-03-04] (Realtek Semiconductor Corporation                           )
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-04] (Realtek Semiconductor Corporation)
S3 cpuz134; \??\C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [X]
U0 mfewfpk; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-02-13 18:58 - 2015-02-13 18:59 - 00000000 ____D () C:\FRST
2015-02-13 17:14 - 2015-02-13 18:12 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-02-13 17:13 - 2015-02-13 17:13 - 00000785 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2015-02-13 17:13 - 2015-02-13 17:13 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-02-13 17:13 - 2015-02-13 17:13 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2015-02-13 17:13 - 2015-02-13 17:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2015-02-13 17:13 - 2014-11-21 06:14 - 00054360 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-02-13 17:13 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-02-08 18:23 - 2015-02-08 18:23 - 00000925 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Revo Uninstaller.lnk
2015-02-08 18:22 - 2015-02-08 18:22 - 00000000 ____D () C:\Program Files\VS Revo Group
2015-02-08 17:49 - 2015-02-08 17:49 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\RealNetworks
2015-02-08 13:56 - 2015-02-08 13:56 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Oracle
2015-02-08 13:55 - 2015-02-08 13:55 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Sun
2015-02-08 13:55 - 2015-02-08 13:55 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java
2015-02-08 13:55 - 2015-02-08 13:54 - 00096680 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-02-08 13:53 - 2015-02-08 13:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Oracle
2015-02-08 13:50 - 2015-02-08 13:50 - 00000937 _____ () C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk
2015-02-08 13:50 - 2015-02-08 13:50 - 00000000 ____D () C:\Program Files\RealNetworks
2015-02-08 13:50 - 2015-02-08 13:50 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\RealNetworks
2015-02-08 13:49 - 2015-02-08 13:50 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks
2015-02-08 13:49 - 2015-02-08 13:49 - 00272896 _____ (Progressive Networks) C:\WINDOWS\system32\pncrt.dll
2015-02-08 13:49 - 2015-02-08 13:49 - 00201872 _____ (RealNetworks, Inc.) C:\WINDOWS\system32\rmoc3260.dll
2015-02-08 13:49 - 2015-02-08 13:49 - 00006656 _____ (RealNetworks, Inc.) C:\WINDOWS\system32\pndx5016.dll
2015-02-08 13:49 - 2015-02-08 13:49 - 00005632 _____ (RealNetworks, Inc.) C:\WINDOWS\system32\pndx5032.dll
2015-02-08 13:49 - 2015-02-08 13:49 - 00000000 ____D () C:\Program Files\Common Files\xing shared
2015-02-08 13:48 - 2015-02-08 13:49 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Real
2015-02-08 13:45 - 2015-02-08 13:45 - 00001804 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader XI.lnk
2015-02-08 13:45 - 2015-02-08 13:45 - 00001742 _____ () C:\Documents and Settings\All Users\Desktop\Adobe Reader XI.lnk
2015-02-08 13:44 - 2015-02-08 13:44 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-02-05 18:24 - 2015-02-05 18:24 - 04437680 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2015-02-05 17:21 - 2015-02-13 18:00 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\SearchProtect
2015-02-05 17:20 - 2015-02-13 17:59 - 00000000 ____D () C:\Program Files\SearchProtect
2015-02-04 18:08 - 2015-02-04 18:08 - 00001550 _____ () C:\Documents and Settings\All Users\Desktop\iTunes.lnk
2015-02-04 18:08 - 2015-02-04 18:08 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
2015-02-04 18:07 - 2015-02-04 18:07 - 00000000 ____D () C:\Program Files\iPod
2015-02-04 18:06 - 2015-02-04 18:08 - 00000000 ____D () C:\Program Files\iTunes
2015-02-04 18:06 - 2015-02-04 18:08 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
2015-02-04 17:31 - 2015-02-13 18:31 - 00000346 _____ () C:\WINDOWS\Tasks\ReimageUpdater.job
2015-02-04 17:10 - 2015-02-04 17:31 - 00000165 _____ () C:\WINDOWS\Reimage.ini
2015-02-03 16:38 - 2015-02-13 18:00 - 00000000 ____D () C:\Program Files\globalUpdate
2015-02-03 16:38 - 2015-02-13 17:59 - 00000000 ____D () C:\Program Files\69721675-ab7b-4bf2-9c45-d2a5b3e4258a
2015-02-03 16:38 - 2015-02-03 16:38 - 00000000 ____D () C:\Program Files\Setup Support for SearchProtect
2015-02-03 16:38 - 2015-02-03 16:38 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\globalUpdate
2015-02-03 16:35 - 2015-02-13 18:01 - 00000000 ____D () C:\Program Files\Popcornew
2015-02-03 16:35 - 2015-02-03 16:40 - 00001666 _____ () C:\Documents and Settings\Compaq_Owner\${LOGFILE}
2015-02-03 16:24 - 2015-02-13 17:59 - 00000000 ____D () C:\Program Files\e812ce6f-2f9d-4c1f-b8a5-68a355457393
2015-02-03 16:17 - 2015-02-03 16:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\2b14e0730000284c
2015-02-03 16:10 - 2015-02-03 16:10 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Application Data\WebBar
2015-02-02 17:18 - 2015-02-03 19:18 - 00123200 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2015-02-02 16:24 - 2015-02-03 16:42 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\InstallSightSDK
2015-02-02 16:21 - 2015-02-13 18:02 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\WTools
2015-02-02 16:20 - 2015-02-13 18:01 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Store
2015-02-02 16:14 - 2015-02-08 18:46 - 00001821 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2015-02-02 16:14 - 2015-02-02 16:14 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
2015-02-02 15:36 - 2015-02-13 18:17 - 00001619 _____ () C:\Documents and Settings\All Users\Desktop\McAfee Total Protection.lnk
2015-02-02 15:33 - 2015-02-13 18:14 - 00000000 __RSD () C:\Documents and Settings\Compaq_Owner\My Documents\McAfee Vaults
2015-02-02 15:33 - 2015-02-02 15:33 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\McAfee File Lock
2015-02-02 15:33 - 2013-09-23 13:48 - 00147912 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\HipShieldK.sys
2015-02-02 15:33 - 2013-09-09 11:11 - 00066296 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\McPvDrv.sys
2015-02-02 15:30 - 2015-02-02 15:30 - 00000000 ____D () C:\Program Files\McAfee.com
2015-02-02 15:30 - 2014-06-20 11:05 - 00087520 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfendisk.sys
2015-02-02 15:22 - 2015-02-02 15:34 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2015-02-02 15:22 - 2014-06-20 11:13 - 00179600 _____ (McAfee, Inc.) C:\WINDOWS\system32\mfevtps.exe
2015-02-02 15:21 - 2015-02-03 16:22 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\McAfee
2015-02-02 11:20 - 2015-02-02 11:20 - 00048256 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-02-02 11:11 - 2015-02-13 18:00 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Protect
2015-02-02 11:08 - 2015-02-13 18:07 - 00001748 _____ () C:\WINDOWS\Tasks\UEKHSKS.job
2015-02-02 11:07 - 2015-02-13 18:07 - 00000282 _____ () C:\WINDOWS\Tasks\DriverScanner.job
2015-02-02 11:07 - 2015-02-13 18:00 - 00000000 ____D () C:\Program Files\Bench
2015-02-02 11:07 - 2015-02-02 11:50 - 00000000 ____D () C:\5284c7dc60192ea91b5012
2015-02-02 11:06 - 2015-02-13 18:07 - 00000274 _____ () C:\WINDOWS\Tasks\dsmonitor.job
2015-02-02 11:06 - 2015-02-02 11:06 - 00000000 ____D () C:\Documents and Settings\LocalService\Application Data\DTM
2015-02-02 11:04 - 2015-02-13 17:59 - 00000000 ____D () C:\Program Files\MyPC Backup
2015-02-02 11:04 - 2015-02-02 11:54 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\DesktopTemperature
2015-02-02 11:04 - 2015-02-02 11:04 - 00000000 ____D () C:\Program Files\Uniblue
2015-02-02 11:04 - 2015-02-02 11:04 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Uniblue
2015-02-02 11:02 - 2015-02-02 11:50 - 00000000 ____D () C:\Program Files\PepperZip
2015-02-02 11:02 - 2015-02-02 11:50 - 00000000 ____D () C:\Program Files\FastPlayer
2015-01-31 16:03 - 2015-02-02 11:51 - 00000000 ____D () C:\Program Files\iPod(2)
2015-01-31 16:02 - 2015-02-02 11:51 - 00000000 ____D () C:\Program Files\iTunes(2)
2015-01-31 16:02 - 2015-02-02 11:51 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB(2)
2015-01-25 16:12 - 2015-02-02 14:22 - 00000365 _____ () C:\Documents and Settings\Compaq_Owner\Application Data\UEKHSKS
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-02-13 19:02 - 2007-04-29 11:23 - 00000000 ___HD () C:\Documents and Settings\Compaq_Owner\Local Settings\Temp
2015-02-13 18:24 - 2012-11-25 17:13 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-02-13 18:19 - 2009-07-04 08:51 - 00000898 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-13 18:17 - 2014-11-05 12:03 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\McAfee
2015-02-13 18:09 - 2004-11-09 20:39 - 01153242 ____H () C:\WINDOWS\WindowsUpdate.log
2015-02-13 18:07 - 2009-07-04 08:51 - 00000894 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-13 18:07 - 2007-04-29 18:16 - 00000247 ____H () C:\WINDOWS\system\hpsysdrv.dat
2015-02-13 18:07 - 2004-11-09 20:39 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-13 18:07 - 2004-11-09 20:15 - 00000050 ____H () C:\WINDOWS\wiaservc.log
2015-02-13 17:59 - 2009-03-16 13:39 - 00000000 ____D () C:\Program Files\Amazon
2015-02-13 17:22 - 2004-11-09 20:39 - 00032446 ____H () C:\WINDOWS\SchedLgU.Txt
2015-02-13 16:43 - 2010-04-01 15:28 - 00000000 ____D () C:\Program Files\McAfee
2015-02-13 16:21 - 2006-02-08 19:25 - 00000206 _____ () C:\WINDOWS\WININIT.INI
2015-02-13 15:23 - 2004-11-09 20:25 - 05597119 ____H () C:\WINDOWS\setupapi.log
2015-02-12 14:57 - 2007-04-29 11:23 - 00000178 ___SH () C:\Documents and Settings\Compaq_Owner\ntuser.ini
2015-02-12 14:49 - 2004-11-09 20:23 - 00001158 ____H () C:\WINDOWS\system32\wpa.dbl
2015-02-08 18:46 - 2007-04-29 11:23 - 00000811 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Internet Explorer.lnk
2015-02-08 13:56 - 2006-02-08 19:09 - 00000000 ____D () C:\Program Files\Common Files\Java
2015-02-08 13:54 - 2010-03-06 17:56 - 00146432 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2015-02-08 13:52 - 2006-02-08 19:09 - 00000000 ____D () C:\Program Files\Java
2015-02-08 13:51 - 2007-04-29 11:23 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Real
2015-02-08 13:50 - 2006-02-08 19:23 - 00000000 ____D () C:\Program Files\Real
2015-02-08 13:49 - 2003-03-19 05:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp71.dll
2015-02-08 13:49 - 2003-02-21 11:42 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr71.dll
2015-02-08 13:48 - 2006-02-08 19:23 - 00000000 ____D () C:\Program Files\Common Files\Real
2015-02-08 13:44 - 2006-02-08 19:28 - 00000000 ____D () C:\Program Files\Adobe
2015-02-08 13:44 - 2006-02-08 19:28 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adobe
2015-02-05 18:24 - 2012-11-25 17:13 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-02-05 18:24 - 2012-11-25 17:13 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-02-04 18:07 - 2009-03-17 17:38 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-02-03 16:37 - 2007-04-29 11:23 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner
2015-02-02 16:25 - 2004-11-23 23:04 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-02-02 16:06 - 2006-02-08 19:42 - 00000000 ____D () C:\Program Files\Google
2015-02-02 14:58 - 2006-02-08 19:05 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\PC Help & Tools
2015-02-02 11:53 - 2006-02-08 18:57 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2015-02-02 11:53 - 2006-02-08 18:57 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-02-02 11:53 - 2004-11-23 23:25 - 00000000 ____D () C:\WINDOWS\Registration
 
==================== Files in the root of some directories =======
 
2009-04-11 17:05 - 2009-04-11 17:05 - 0060544 ____H () C:\Program Files\MC
2009-03-26 10:40 - 2009-03-26 10:40 - 0002178 ____H () C:\Documents and Settings\Compaq_Owner\Application Data\HPSU_48BitScanUpdate.log
2009-03-26 10:40 - 2009-03-26 10:40 - 0033977 ____H () C:\Documents and Settings\Compaq_Owner\Application Data\PatchUpdate_HP_CounterReport_Update_HPSU.log
2015-01-25 16:12 - 2015-02-02 14:22 - 0000365 _____ () C:\Documents and Settings\Compaq_Owner\Application Data\UEKHSKS
2009-03-26 10:33 - 2009-03-26 10:33 - 0062442 ____H () C:\Documents and Settings\Compaq_Owner\Application Data\Update_HP_RedboxHprblog_HPSU.log
2014-06-27 14:44 - 2014-06-27 14:44 - 0000000 _____ () C:\Documents and Settings\Compaq_Owner\Application Data\wklnhst.dat
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== End Of Log ============================
Link to post
Share on other sites

Sorry, and this is the Addition.txt.

 

Duncan

 

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1545334669-2488130578-2668775081-1008\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
DNS Servers: 192.168.0.1
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\startupfolder: C:^Documents and Settings^Compaq_Owner^Start Menu^Programs^Startup^IMVU.lnk => C:\WINDOWS\pss\IMVU.lnkStartup
MSCONFIG\startupreg: Alcmtr => ALCMTR.EXE
MSCONFIG\startupreg: ctfmon.exe => C:\WINDOWS\system32\ctfmon.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: IvijEqxi => regsvr32.exe "C:\Documents and Settings\All Users\Application Data\IvijEqxi.dat"
MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
MSCONFIG\startupreg: MediaFace Integration => C:\Program Files\Fellowes\MediaFACE 5.0\SetHook.exe
MSCONFIG\startupreg: PCDrProfiler => 
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\qttask.exe" -atboottime
MSCONFIG\startupreg: Recguard => C:\WINDOWS\SMINST\RECGUARD.EXE
MSCONFIG\startupreg: RTHDCPL => RTHDCPL.EXE
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1545334669-2488130578-2668775081-500 - Administrator - Enabled)
ASPNET (S-1-5-21-1545334669-2488130578-2668775081-1005 - Limited - Enabled)
Compaq_Owner (S-1-5-21-1545334669-2488130578-2668775081-1008 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Compaq_Owner
Guest (S-1-5-21-1545334669-2488130578-2668775081-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1545334669-2488130578-2668775081-1007 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-1545334669-2488130578-2668775081-1002 - Limited - Disabled)
SUPPORT_fddfa904 (S-1-5-21-1545334669-2488130578-2668775081-1006 - Limited - Disabled)
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (02/13/2015 05:58:54 PM) (Source: Application Error) (EventID: 1001) (User: )
Description: Fault bucket 858943070.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication.  The current setting has been marked as failed and the Wireless connection will be disconnected.
 
Error: (02/13/2015 05:20:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application mbamservice.exe, version 3.0.8.1, faulting module mbamcore.dll, version 1.1.20.0, fault address 0x000ed1f0.
Processing media-specific event for [mbamservice.exe!ws!]
 
Error: (02/12/2015 02:55:50 PM) (Source: Application Error) (EventID: 1001) (User: )
Description: Fault bucket -477533488.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication.  The current setting has been marked as failed and the Wireless connection will be disconnected.
 
Error: (02/12/2015 02:55:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application McSvHost.exe, version 3.8.703.0, faulting module unknown, version 0.0.0.0, fault address 0x006af687.
Processing media-specific event for [McSvHost.exe!ws!]
 
Error: (02/08/2015 06:32:31 PM) (Source: Application Error) (EventID: 1001) (User: )
Description: Fault bucket 833805854.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication.  The current setting has been marked as failed and the Wireless connection will be disconnected.
 
Error: (02/08/2015 06:32:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application uninstall.exe, version 0.0.0.0, faulting module uninstall.exe, version 0.0.0.0, fault address 0x0000771f.
Processing media-specific event for [uninstall.exe!ws!]
 
Error: (02/08/2015 06:27:16 PM) (Source: Application Error) (EventID: 1001) (User: )
Description: Fault bucket 833805854.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication.  The current setting has been marked as failed and the Wireless connection will be disconnected.
 
Error: (02/08/2015 06:26:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application uninstall.exe, version 0.0.0.0, faulting module uninstall.exe, version 0.0.0.0, fault address 0x0000771f.
Processing media-specific event for [uninstall.exe!ws!]
 
Error: (02/08/2015 06:00:05 PM) (Source: Application Hang) (EventID: 1001) (User: )
Description: Fault bucket 1180947459.
 
Error: (02/08/2015 05:59:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
 
 
System errors:
=============
Error: (02/13/2015 06:15:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Pml Driver HPZ12 service failed to start due to the following error: 
%%1053
 
Error: (02/13/2015 06:15:09 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 milliseconds) waiting for the Pml Driver HPZ12 service to connect.
 
Error: (02/13/2015 06:14:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Pml Driver HPZ12 service failed to start due to the following error: 
%%1053
 
Error: (02/13/2015 06:14:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 milliseconds) waiting for the Pml Driver HPZ12 service to connect.
 
Error: (02/13/2015 06:10:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The iPod Service service failed to start due to the following error: 
%%1053
 
Error: (02/13/2015 06:10:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 milliseconds) waiting for the iPod Service service to connect.
 
Error: (02/13/2015 06:10:42 PM) (Source: DCOM) (EventID: 10005) (User: YOUR-447023AE6B)
Description: DCOM got error "%%1053" attempting to start the service iPod Service with arguments ""
in order to run the server:
{063D34A4-BF84-4B8D-B699-E8CA06504DDE}
 
Error: (02/13/2015 06:09:36 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The McAfee Boot Delay Start Service service hung on starting.
 
Error: (02/13/2015 06:08:08 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (02/13/2015 06:08:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Search Protect Service service failed to start due to the following error: 
%%5
 
 
Microsoft Office Sessions:
=========================
Error: (02/13/2015 05:58:54 PM) (Source: Application Error) (EventID: 1001) (User: )
Description: 858943070
 
Error: (02/13/2015 05:20:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbamservice.exe3.0.8.1mbamcore.dll1.1.20.0000ed1f0
 
Error: (02/12/2015 02:55:50 PM) (Source: Application Error) (EventID: 1001) (User: )
Description: -477533488
 
Error: (02/12/2015 02:55:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: McSvHost.exe3.8.703.0unknown0.0.0.0006af687
 
Error: (02/08/2015 06:32:31 PM) (Source: Application Error) (EventID: 1001) (User: )
Description: 833805854
 
Error: (02/08/2015 06:32:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: uninstall.exe0.0.0.0uninstall.exe0.0.0.00000771f
 
Error: (02/08/2015 06:27:16 PM) (Source: Application Error) (EventID: 1001) (User: )
Description: 833805854
 
Error: (02/08/2015 06:26:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: uninstall.exe0.0.0.0uninstall.exe0.0.0.00000771f
 
Error: (02/08/2015 06:00:05 PM) (Source: Application Hang) (EventID: 1001) (User: )
Description: 1180947459
 
Error: (02/08/2015 05:59:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000
 
 
==================== Memory info =========================== 
 
Processor:  Intel® Pentium® 4 CPU 2.93GHz
Percentage of memory in use: 86%
Total physical RAM: 959.36 MB
Available physical RAM: 131.78 MB
Total Pagefile: 2313.11 MB
Available Pagefile: 1190.63 MB
Total Virtual: 2047.88 MB
Available Virtual: 1941.31 MB
 
==================== Drives ================================
 
Drive c: (PRESARIO) (Fixed) (Total:68.52 GB) (Free:46.02 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (PRESARIO_RP) (Fixed) (Total:5.99 GB) (Free:2.58 GB) FAT32 ==>[Drive with boot components (Windows XP)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 74.5 GB) (Disk ID: 1549F232)
Partition 1: (Not Active) - (Size=6 GB) - (Type=0C)
Partition 2: (Active) - (Size=68.5 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================
Link to post
Share on other sites

  • Root Admin

I'm sorry but this is not the correct forum for malware removal.

 

I would suggest following the advice from the topic here Available Assistance for Possibly Infected Computers and having one of the Experts assist you with looking into your issue.
 

Thank you

 

Ron

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.