Jump to content

WinPatrol detection


Recommended Posts

I just installed WinPatrol Plus on my computer and in studying the program, I found a strange file under Services with not other information about it. It gives the path, but I cannot find it in the location. I did an info search on WinPatrol site and also Google but there is not information on it. Here is the file: Path: C:\WINDOWS\ccffccdfee.exe /s The title is a long stretch of numbers and letters.

I am wondering if this sounds suspicious to anyone and whether I should do further investigation.

Thank you for the help.

Link to post
Share on other sites

I ran the scan and there was nothing detected. Below is the log:

Malwarebytes' Anti-Malware 1.44

Database version: 3828

Windows 5.1.2600 Service Pack 3

Internet Explorer 7.0.5730.13

3/8/2010 9:29:52 PM

mbam-log-2010-03-08 (21-29-51).txt

Scan type: Quick Scan

Objects scanned: 120049

Time elapsed: 6 minute(s), 29 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

Link to post
Share on other sites

  • Root Admin

Can you please verify if this file is there and if so zip it up and upload it here: http://forums.malwarebytes.org/index.php?showforum=55

Make sure you reference the link for this post when you upload it.

Reconfigure Windows XP to show hidden files:

To enable the viewing of Hidden files follow these steps:

* Close all programs so that you are at your desktop.

* Double-click on the My Computer icon.

* Select the Tools menu and click Folder Options.

* After the new window appears select the View tab.

* Put a checkmark in the checkbox labeled Display the contents of system folders.

* Under the Hidden files and folders section select the radio button labeled Show hidden files and folders.

* Remove the checkmark from the checkbox labeled Hide file extensions for known file types.

* Remove the checkmark from the checkbox labeled Hide protected operating system files.

* Press the Apply button and then the OK button and exit My Computer.

* Now your computer is configured to show all hidden files.

Link to post
Share on other sites

Ron,

I changed my settings as instructed and I have searched for the file and cannot find it on the computer. Below is the HijackPatrolLog with the service and file listed (I have made it red for easy identification):

Log created by WinPatrol PLUS version 17.0.2010.0:17.0.2010.0

Scan saved at 7:54:57 PM, on 3/08/2010

Platform: Windows XP SP3 Service Pack 3 (Build 2600)

MSIE: Internet Explorer (7.00.6000.16981)

Boot mode: Normal

Running processes:

C:\WINDOWS\system32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\PROGRAM FILES\Avira\ANTIVIR DESKTOP\sched.exe

C:\PROGRAM FILES\Avira\ANTIVIR DESKTOP\avguard.exe

C:\PROGRAM FILES\MALWAREBYTES' ANTI-MALWARE\MBAMSERVICE.EXE

C:\WINDOWS\system32\PURANDEFRAGS.EXE

C:\WINDOWS\wanmpsvc.exe

C:\WINDOWS\system32\WLTRYSVC.EXE

C:\WINDOWS\system32\BCMWLTRY.EXE

C:\PROGRAM FILES\Avira\ANTIVIR DESKTOP\avwebgrd.exe

C:\WINDOWS\explorer.exe

C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\atiptaxx.exe

C:\WINDOWS\system32\WLTRAY.EXE

C:\PROGRAM FILES\Apoint\Apoint.exe

C:\PROGRAM FILES\Apoint\ApntEx.exe

C:\PROGRAM FILES\Apoint\hidfind.exe

C:\PROGRAM FILES\MALWAREBYTES' ANTI-MALWARE\mbamgui.exe

C:\PROGRAM FILES\PURAN DEFRAG\PuranADT.exe

C:\PROGRAM FILES\ANTI IDLE\AntiIdle.exe

C:\PROGRAM FILES\BILLP STUDIOS\WINPATROL\WINPATROL.EXE

C:\PROGRAM FILES\BILLP STUDIOS\WINPATROL\WINPATROLEX.EXE

C:\PROGRAM FILES\AOL 8.0\waol.exe

C:\PROGRAM FILES\AOL 8.0\shellmon.exe

C:\PROGRAM FILES\MOZILLA FIREFOX\firefox.exe

C:\Program Files\FREE DOWNLOAD MANAGER\fdm.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://my.yahoo.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll

O4 - HKLM\..\Run: [ATIPTA]C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [broadcom Wireless Manager UI]C:\WINDOWS\system32\WLTRAY.EXE

O4 - HKLM\..\Run: [Apoint]C:\Program Files\Apoint\Apoint.exe

O4 - HKLM\..\Run: [avgnt]C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min

O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v3]C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis3a.exe /source=HKLM

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware]C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /starttray

O4 - HKLM\..\Run: [PuranADT]C:\Program Files\Puran Defrag\PuranADT.exe

O4 - HKLM\..\Run: [WinPatrol PLUS]C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot

O4 - HKCU\..\Run: [AntiIdle]C:\Program Files\Anti Idle\AntiIdle.exe

O4 - Global Startup: AOL 8.0.lnk=C:\Program Files\AOL 8.0\aol.exe

O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm

O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm

O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm

O8 - Extra context menu item: Download web site with Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm

O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O14 - IERESET.INF: START_PAGE_URL = http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome

O14 - IERESET.INF: SEARCH_PAGE_URL = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch

O14 - IERESET.INF:HKCU, Start Page = %START_PAGE_URL%

O14 - IERESET.INF:HKLM, Default_Page_URL = %START_PAGE_URL%

O14 - IERESET.INF:HKLM, Default_Search_URL = %SEARCH_PAGE_URL%

O14 - IERESET.INF:HKLM, Search Page = %SEARCH_PAGE_URL%

O14 - IERESET.INF:HKCU, Search Page = %SEARCH_PAGE_URL%

O15 - Trusted Zone: aol.com

O16 - DPF: Microsoft XML Parser for Java (xmldso) - file://C:\WINDOWS\Java\classes\xmldso.cab

O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://download.microsoft.com/download/e/4.../OGAControl.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1217852965921

O16 - DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} (Office Update Installation Engine) - http://office.microsoft.com/officeupdate/content/opuc4.cab

O23 - Service: Avira Firewall - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe

O23 - Service: Avira AntiVir Scheduler - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Avira AntiVir WebGuard - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\ati2evxx.exe

O23 - Service: 51071191c4bf85310c0a212d75753776 - - C:\WINDOWS\ccffccdfee.exe /s

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: PuranDefrag - Puran Software - C:\WINDOWS\system32\PuranDefragS.exe

O23 - Service: WAN Miniport (ATW) Service - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

O23 - Service: Dell Wireless WLAN Tray Service - - C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe

--- Additional WinPatrol Info ---

Browser: Unable to find default browser.

MSIE: Internet Explorer (7.00.6000.16981)

America Online version 8.00.000 running

\HijackPatrol.logFirefox 3.6 installed in C:\Program Files\Mozilla Firefox.

24 IE Cookies in Folder: C:\Documents and Settings\user\Cookies\

0 Mozilla Cookies in Folder: C:\Documents and Settings\user\Application Data\Mozilla\FireFox\Profiles\j8y8ians.default

WP00 - HKLM\CS1: BootExecute = autocheck autochk *

WP00 - HKLM\CCS: BootExecute = autocheck autochk *

WP00 - HKLM\CS2: BootExecute = autocheck autochk *

WP02 - HKLM\CCS: Command = C:\WINDOWS\system32\cmd.exe

WP03 - Windows Automatic Update = 2:Notify me but don't automatically download or install them.

WP08 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix: Default = http://

WP08 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes: www = http://

WP31 - Scheduled Tasks: [NTREGOPT.job]C:\Program Files\ERUNT\NTREGOPT.EXE Never

WP31 - Scheduled Tasks: [Malwarebytes' Scheduled Update for user.job]C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe 03/04/2010 10:00 PM

WP31 - Scheduled Tasks: [Malwarebytes' Scan for user.job]C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe Never

WP31 - Scheduled Tasks: [Malwarebytes' Anti-Malware.job]C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe 12/06/2009 1:22 PM

WP31 - Scheduled Tasks: [ERUNT AUTOBACK.job]C:\Program Files\ERUNT\AUTOBACK.EXE 03/06/2010 10:00 PM

WP16 - ActiveX: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} [Office Genuine Advantage Validation Tool] C:\WINDOWS\system32\OGACHECKCONTROL.DLL

WP16 - ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} [Web Browser Applet Control] C:\WINDOWS\system32\msjava.dll 5.00.3805

WP16 - ActiveX: {17492023-C23A-453E-A040-C7C580BBF700} [Windows Genuine Advantage Validation Tool] C:\WINDOWS\system32\LEGITCHECKCONTROL.DLL 1.7.0069.2

WP16 - ActiveX: {19916E01-B44E-4E31-94A4-4696DF46157B} [informationCardSigninHelper Class] C:\WINDOWS\system32\icardie.dll 7.00.6000.16981

WP16 - ActiveX: {238F6F83-B8B4-11CF-8771-00A024541EE3} [Citrix ICA Client] C:\Program Files\Citrix\icaweb32\wfica.ocx 9.200

WP16 - ActiveX: {2933BF90-7B36-11D2-B20E-00C04F983E60} [xml DOM Document] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {2933BF94-7B36-11D2-B20E-00C04F983E60} [XSL Template] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {3050F819-98B5-11CF-BB82-00AA00BDCE0B} [HtmlDlgSafeHelper Class] C:\WINDOWS\system32\mshtmled.dll 7.00.6000.16981

WP16 - ActiveX: {333C7BC4-460F-11D0-BC04-0080C7055A83} [Tabular Data Control] C:\WINDOWS\system32\tdc.ocx 7.00.5730.13

WP16 - ActiveX: {373984C9-B845-449B-91E7-45AC83036ADE} [xml Schema Cache] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {4453D895-F2A1-4A38-A285-1EF9BD3F6D5D} [Microsoft Office Control] C:\Program Files\Microsoft Office\OFFICE11\AUTHZAX.DLL 11.0.8164

WP16 - ActiveX: {4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18266

WP16 - ActiveX: {6414512B-B978-451D-A0D8-FCFDF33E833C} [WUWebControl Class] C:\WINDOWS\system32\wuweb.dll 7.4.7600.226

WP16 - ActiveX: {64AB4BB7-111E-11D1-8F79-00C04FC2FBE1} [Microsoft Shell UI Helper] C:\WINDOWS\system32\ieframe.dll 7.00.6000.16981

WP16 - ActiveX: {6BF52A52-394A-11D3-B153-00C04F79FAA6} [Windows Media Player] C:\WINDOWS\system32\wmp.dll 9.00.00.4507

WP16 - ActiveX: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} [MUWebControl Class] C:\WINDOWS\system32\muweb.dll 7.4.7600.226

WP16 - ActiveX: {72267F6A-A6F9-11D0-BC94-00C04FB67863} [Active Desktop Mover] C:\WINDOWS\system32\shell32.dll 6.00.2900.5622

WP16 - ActiveX: {7390f3d8-0439-4c05-91e3-cf5cb290c3d0} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18266

WP16 - ActiveX: {8856F961-340A-11D0-A96B-00C04FD705A2} [Microsoft Web Browser] C:\WINDOWS\system32\ieframe.dll 7.00.6000.16981

WP16 - ActiveX: {88D96A05-F192-11D4-A65F-0040963251E5} [xml DOM Document 6.0] C:\WINDOWS\system32\msxml6.dll 6.20.1103.0

WP16 - ActiveX: {88D96A06-F192-11D4-A65F-0040963251E5} [Free Threaded XML DOM Document 6.0] C:\WINDOWS\system32\msxml6.dll 6.20.1103.0

WP16 - ActiveX: {88D96A07-F192-11D4-A65F-0040963251E5} [xml Schema Cache 6.0] C:\WINDOWS\system32\msxml6.dll 6.20.1103.0

WP16 - ActiveX: {88D96A08-F192-11D4-A65F-0040963251E5} [XSL Template 6.0] C:\WINDOWS\system32\msxml6.dll 6.20.1103.0

WP16 - ActiveX: {88D96A0A-F192-11D4-A65F-0040963251E5} [xml HTTP 6.0] C:\WINDOWS\system32\msxml6.dll 6.20.1103.0

WP16 - ActiveX: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} [Office Update Installation Engine] C:\WINDOWS\opuc.dll 12.0.5575.1000

WP16 - ActiveX: {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} [RealPlayer G2 Control] C:\WINDOWS\system32\rmoc3260.dll 6.0.8.1023

WP16 - ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} [shockwave Flash Object] C:\WINDOWS\system32\Macromed\Flash\Flash6.ocx 6,0,88,0

WP16 - ActiveX: {ED8C108E-4349-11D2-91A4-00C04F7969E8} [xml HTTP Request] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {EE09B103-97E0-11CF-978F-00A02463E06F} [scripting.Dictionary] C:\WINDOWS\system32\scrrun.dll 5.7.0.18066

WP16 - ActiveX: {F5078F32-C551-11D3-89B9-0000F81FE221} [xml DOM Document 3.0] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {F5078F33-C551-11D3-89B9-0000F81FE221} [Free Threaded XML DOM Document 3.0] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {F5078F34-C551-11D3-89B9-0000F81FE221} [xml Schema Cache 3.0] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {F5078F35-C551-11D3-89B9-0000F81FE221} [xml HTTP 3.0] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {F5078F36-C551-11D3-89B9-0000F81FE221} [XSL Template 3.0] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {F5078F39-C551-11D3-89B9-0000F81FE221} [xml Data Source Object 3.0] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {F6D90F11-9C73-11D3-B32E-00C04F990BB4} [xml DOM Document] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {F6D90F12-9C73-11D3-B32E-00C04F990BB4} [Free Threaded XML DOM Document] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {F6D90F14-9C73-11D3-B32E-00C04F990BB4} [xml Data Source Object ] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {F6D90F16-9C73-11D3-B32E-00C04F990BB4} [xml HTTP] C:\WINDOWS\system32\msxml3.dll 8.100.1051.0

WP16 - ActiveX: {00024522-0000-0000-C000-000000000046} [RefEdit.Ctrl] C:\Program Files\Microsoft Office\OFFICE11\REFEDIT.DLL 12.0.6202.3013

WP16 - ActiveX: {0002E569-0000-0000-C000-000000000046} [Microsoft Office Spreadsheet 11.0] C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL 11.0.8304

WP16 - ActiveX: {0002E56B-0000-0000-C000-000000000046} [Microsoft Office Data Source Control 11.0] C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL 11.0.8304

WP16 - ActiveX: {05589fa1-c356-11ce-bf01-00aa0055595a} [ActiveMovieControl Object] C:\WINDOWS\system32\wmpdxm.dll 9.00.00.4507

WP16 - ActiveX: {08B0e5c0-4FCB-11CF-AAA5-00401C608501} [Web Browser Applet Control] C:\WINDOWS\system32\msjava.dll 5.00.3805

WP16 - ActiveX: {1D2B4F40-1F10-11D1-9E88-00C04FDCAB92} [ThumbCtl Class] C:\WINDOWS\system32\webvw.dll 6.00.2900.5512

WP16 - ActiveX: {22D6F312-B0F6-11D0-94AB-0080C74C7E95} [Windows Media Player] C:\WINDOWS\system32\wmpdxm.dll 9.00.00.4507

WP16 - ActiveX: {238f6f83-b8b4-11cf-8771-00a024541ee3} [Citrix ICA Client] C:\Program Files\Citrix\icaweb32\wfica.ocx 9.200

WP16 - ActiveX: {ECD0ECC6-DCA4-4013-A915-12355AB70999} [MSWebDVD Class] C:\WINDOWS\system32\mswebdvd.dll 6.05.2600.5857

WP16 - ActiveX: {52A2AAAE-085D-4187-97EA-8C30DB990436} [HHCtrl Object] C:\WINDOWS\system32\hhctrl.ocx 5.2.3790.4110

WP16 - ActiveX: {54CE37E0-9834-41ae-9896-4DAB69DC022B} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18266

WP16 - ActiveX: {6A6F4B83-45C5-4ca9-BDD9-0D81C12295E4} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18266

WP16 - ActiveX: {8856F961-340A-11D0-A96B-00C04FD705A2} [Microsoft Web Browser] C:\WINDOWS\system32\ieframe.dll 7.00.6000.16981

WP16 - ActiveX: {8BD21D50-EC42-11CE-9E0D-00AA006002F3} [Microsoft Forms 2.0 OptionButton] C:\WINDOWS\system32\FM20.DLL 12.0.6510.5004

WP16 - ActiveX: {A3F2A195-0D11-463b-96BB-D2FF1B7490A1} [MSDVDAdm Class] C:\WINDOWS\system32\mswebdvd.dll 6.05.2600.5857

WP16 - ActiveX: {971127BB-259F-48c2-BD75-5F97A3331551} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18266

WP16 - ActiveX: {AE24FDAE-03C6-11D1-8B76-0080C744F389} [Microsoft Scriptlet Component] C:\WINDOWS\system32\mshtml.dll 7.00.6000.16981

WP16 - ActiveX: {CFCDAA03-8BE4-11cf-B84B-0020AFBBCCFA} [RealPlayer G2 Control] C:\WINDOWS\system32\rmoc3260.dll 6.0.8.1023

WP16 - ActiveX: {E5DF9D10-3B52-11D1-83E8-00A0C90DC849} [WebViewFolderIcon Class] C:\WINDOWS\system32\webvw.dll 6.00.2900.5512

WP32 - Hidden File: C:\boot.ini

WP32 - Hidden File: C:\IO.SYS

WP32 - Hidden File: C:\MSDOS.SYS

WP32 - Hidden File: C:\NTDETECT.COM

WP32 - Hidden File: C:\ntldr

WP32 - Hidden File: C:\pagefile.sys

WP32 - Hidden File: C:\WINDOWS\WindowsShell.Manifest

WP32 - Hidden File: C:\WINDOWS\winnt.bmp

WP32 - Hidden File: C:\WINDOWS\winnt256.bmp

WP32 - Hidden File: C:\WINDOWS\system32\cdplayer.exe.manifest

WP32 - Hidden File: C:\WINDOWS\system32\config\default.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\default.tmp.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\SAM.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\SAM.tmp.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\SECURITY.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\SECURITY.tmp.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\software.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\software.tmp.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\system.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\system.tmp.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\TempKey.LOG

WP32 - Hidden File: C:\WINDOWS\system32\config\userdiff.LOG

WP32 - Hidden File: C:\WINDOWS\system32\logonui.exe.manifest

WP32 - Hidden File: C:\WINDOWS\system32\ncpa.cpl.manifest

WP32 - Hidden File: C:\WINDOWS\system32\nwc.cpl.manifest

WP32 - Hidden File: C:\WINDOWS\system32\Restore\filelist.xml

WP32 - Hidden File: C:\WINDOWS\system32\sapi.cpl.manifest

WP32 - Hidden File: C:\WINDOWS\system32\WindowsLogon.manifest

WP32 - Hidden File: C:\WINDOWS\system32\wuaucpl.cpl.manifest

WP33 - File Type .AVI: [Video file]C:\Program Files\MPC HomeCinema\mpc-hc.exe %1

WP33 - File Type .BAT: [MS-DOS Batch File]%1 %*

WP33 - File Type .CAB: [WinRAR archive]C:\Program Files\WinRAR\WinRAR.exe %1

WP33 - File Type .CAT: [security Catalog]rundll32.exe cryptext.dll,CryptExtOpenCAT %1

WP33 - File Type .CHM: [Compiled HTML Help file]C:\WINDOWS\hh.exe %1

WP33 - File Type .COM: [MS-DOS Application]%1 %*

WP33 - File Type .CMD: [Windows NT Command Script]%1 %*

WP33 - File Type .DOC: [Microsoft Word Document]C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE /n /dde

WP33 - File Type .EML: [internet E-Mail Message]C:\Program Files\Outlook Express\msimn.exe /eml:%1

WP33 - File Type .EXE: [Application]%1 %*

WP33 - File Type .INF: [setup Information]C:\WINDOWS\System32\NOTEPAD.EXE %1

WP33 - File Type .JS: [JScript Script File]C:\WINDOWS\System32\WScript.exe %1 %*

WP33 - File Type .LOG: [Text Document]C:\WINDOWS\system32\NOTEPAD.EXE %1

WP33 - File Type .MSI: [Windows Installer Package]C:\WINDOWS\System32\msiexec.exe /i %1 %*

WP33 - File Type .MID: [MIDI file]C:\Program Files\MPC HomeCinema\mpc-hc.exe %1

WP33 - File Type .MP3: [MP3 Format Sound]C:\Program Files\MPC HomeCinema\mpc-hc.exe %1

WP33 - File Type .PIF: [shortcut to MS-DOS Program]%1 %*

WP33 - File Type .RAM: [RealPlayer File]C:\Program Files\Real\RealPlayer\RealPlay.exe /m audio/x-pn-realaudio %1

WP33 - File Type .REG: [Registration Entries]regedit.exe %1

WP33 - File Type .RTF: [Rich Text Format]C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE /n /dde

WP33 - File Type .RTF: [Rich Text Document]C:\Program Files\Windows NT\Accessories\WORDPAD.EXE %1

WP33 - File Type .SCR: [screen Saver]%1 /S

WP33 - File Type .TXT: [Text Document]C:\WINDOWS\system32\NOTEPAD.EXE %1

WP33 - File Type .URL: [internet Shortcut]rundll32.exe ieframe.dll,OpenURL %l

WP33 - File Type .VBS: [VBScript Script File]C:\WINDOWS\System32\WScript.exe %1 %*

WP33 - File Type .VBE: [VBScript Encoded Script File]C:\WINDOWS\System32\WScript.exe %1 %*

WP33 - File Type .WSF: [Windows Script File]C:\WINDOWS\System32\WScript.exe %1 %*

WP33 - File Type .WSH: [Windows Script Host Settings File]C:\WINDOWS\System32\WScript.exe %1 %*

WP33 - File Type .XLS: [Microsoft Excel Worksheet]C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE /e

Memory currently in use: 54%

Physical Memory Free: 471,984 KB

Paging File Free: 1,441,752 KB

Virtual Memory Free: 2,055,684 KB

--

End of file

Link to post
Share on other sites

Maybe ccffccdfee.exe was part of AOL's software at one time.

I would update to IE8 as it is much safer than IE7 and it is used in all of Windows in Windows Explorer:

http://en.wikipedia.org/wiki/Windows_Explorer

As an example put C: in IE's address line and Windows Explorer will open to the hard drive showing all its contents.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.