Jump to content

Anti-Virus not Show up,Malwarebytes' Anti-Malware Destroyed


Guest name cool
 Share

Recommended Posts

Guest name cool

Really strange problems, initially disappeared Anti Virus from the 'Startup! A few days later, my PC has become unable to shutdown / restart.

When I try to turn off my computer can not happen anything.

I believe that the cause of these problems, some of these programs, which are not detected by Malwarebytes' Anti-Malware., until after the installation. :)

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 11:39:54 PM, on 2/15/2011

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABSVC.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe

C:\Program Files\Real\RealPlayer\update\realsched.exe

C:\Program Files\Ant.com\IE add-on\AntUpdaterService.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\PROGRA~1\WI9130~1\Datamngr\DATAMN~1.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe

C:\Program Files\Hotspot Shield\bin\openvpnas.exe

C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe

C:\Program Files\Hotspot Shield\bin\hsswd.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\NETGATE\Data Backup\DataBackupSrv.exe

C:\Program Files\Norton PC Checkup\Engine\2.0.6.11\ccSvcHst.exe

C:\Program Files\Macrium\Reflect\ReflectService.exe

C:\Program Files\Active PC Optimizer\ActivePCOptimizerService.exe

C:\Program Files\Norton PC Checkup\Engine\2.0.6.11\ccSvcHst.exe

C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe

C:\Program Files\Trustier\TrustierUpdateService.exe

C:\PROGRA~1\Fun4IM\Bandoo.exe

C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe

C:\WINDOWS\system32\wscntfy.exe

C:\PROGRA~1\Fun4IM\BndCore.exe

C:\Program Files\Hotspot Shield\bin\openvpntray.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: Searchqu Toolbar - {7FF99715-3016-4381-84CE-E4E4C9673020} - C:\PROGRA~1\WI9130~1\ToolBar\SearchquDx.dll

O2 - BHO: Bandoo IE Plugin - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C:\Program Files\Fun4IM\Plugins\IE\ieplugin.dll

O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\HssIE\HssIE.dll

O3 - Toolbar: Searchqu Toolbar - {7FF99715-3016-4381-84CE-E4E4C9673020} - C:\PROGRA~1\WI9130~1\ToolBar\SearchquDx.dll

O4 - HKLM\..\Run: [avp] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~1\WI9130~1\Datamngr\DATAMN~1.EXE

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions present

O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll

O17 - HKLM\System\CCS\Services\Tcpip\..\{07E75F71-9405-4538-B1FC-3912B4BB4CD9}: NameServer = 10.75.64.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{07E75F71-9405-4538-B1FC-3912B4BB4CD9}: NameServer = 10.75.64.1

O20 - AppInit_DLLs: c:\progra~1\wi9130~1\datamngr\datamngr.dll c:\progra~1\fun4im\bndhook.dll

O23 - Service: Ant Toolbar updater service (AntUpdaterService) - Ant.com - C:\Program Files\Ant.com\IE add-on\AntUpdaterService.exe

O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe

O23 - Service: Fun4IM Coordinator - Bandoo Media Inc. - C:\PROGRA~1\Fun4IM\Bandoo.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe

O23 - Service: Hotspot Shield Routing Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe

O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE

O23 - Service: Hotspot Shield Monitoring Service (HssWd) - Unknown owner - C:\Program Files\Hotspot Shield\bin\hsswd.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: NETGATE Data Backup Service (NGDatBckpSrv) - NETGATE Technologies s.r.o. - C:\Program Files\NETGATE\Data Backup\DataBackupSrv.exe

O23 - Service: Common Client Job Manager Service (PCCUJobMgr) - Symantec Corporation - C:\Program Files\Norton PC Checkup\Engine\2.0.6.11\ccSvcHst.exe

O23 - Service: Macrium Reflect Image Mounting Service (ReflectService) - Unknown owner - C:\Program Files\Macrium\Reflect\ReflectService.exe

O23 - Service: ActivePCOptimizer Service (RegMumService) - Weskysoft Inc. - C:\Program Files\Active PC Optimizer\ActivePCOptimizerService.exe

O23 - Service: Super Ad Blocker Service (SABSVC) - SuperAdBlocker.com - C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABSVC.EXE

O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe

O23 - Service: Tippers Update Service (UPDATE_SERVICE_ID) - Unknown owner - C:\Program Files\Trustier\TrustierUpdateService.exe

--

End of file - 6041 bytes

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-12-12.02)

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume1

Install Date: 10/20/2010 7:35:23 PM

System Uptime: 2/15/2011 11:29:56 PM (0 hours ago)

Motherboard: Hewlett-Packard | | 30D5

Processor: Intel® Celeron® M CPU 440 @ 1.86GHz | U10 | 1862/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 33 GiB total, 23.434 GiB free.

D: is FIXED (NTFS) - 41 GiB total, 32.899 GiB free.

E: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP41: 2/9/2011 12:20:12 AM - System Checkpoint

RP42: 2/9/2011 7:12:22 AM - Advanced Registry Optimizer 2010 - Before Installation

RP43: 2/9/2011 7:12:54 AM - ADVANCED REGISTRY OPTIMIZER 2010- FIRST RUN

RP44: 2/9/2011 7:15:10 AM - Advanced Registry Optimizer 2010 Wed, Feb 09, 11 07:15

RP45: 2/9/2011 7:15:34 AM - Advanced Registry Optimizer 2010 - Before Optimize

RP46: 2/9/2011 7:25:41 AM - Installed MultiCycle AV for Windows Demo

RP47: 2/9/2011 7:54:48 AM - Installed PC Registry Cleaner

RP48: 2/9/2011 7:56:35 AM - Installed Pc Optimizer 360 setup

RP49: 2/9/2011 8:21:18 AM - Installed AV Mix Master 3

RP50: 2/9/2011 8:24:41 AM - Installed WOT for Internet Explorer

RP51: 2/9/2011 8:26:12 AM - Installed UpdateStar

RP52: 2/11/2011 1:36:12 AM - System Checkpoint

RP53: 2/12/2011 5:37:03 PM - Software Distribution Service 3.0

RP54: 2/12/2011 7:42:12 PM - Removed SlimCleaner

RP55: 2/12/2011 7:42:21 PM - Installed SlimCleaner

RP56: 2/14/2011 5:11:12 PM - Removed HiYo.

RP57: 2/15/2011 4:31:50 PM - Installed Java 6 Update 23

==== Installed Programs ======================

???? ??? Windows Live

???? ??????? ?? Windows Live

???? ??????? Windows Live Upload Tool

???? Windows Live

????? ????? ?????? ??? Windows Live

1-Click PC Fix v4

1 Click Fixer PLUS

360 Amigo System Speedup Free

A1 Website Analyzer

AAA Logo 3.10 Free Trial

ACDSee Photo Manager 12

ACleaner

Active PC Optimizer 1.0

Adobe Flash Player 10 ActiveX

Advanced Registry Optimizer

Aiseesoft Registry Optimizer

AJC Grep v1.4.1

AllMyNotes Organizer

ALLSubtitleSearcher 1.2

ALOT Toolbar

ALTools Update

ALZip

AnonySurf 1.9

Ant.com IE add-on

APFill Ink&Toner Coverage Calculator version 5.4.5609

Arovax Shield 2.1.103

Ask Toolbar

Babylon

Belarc Advisor 8.1

Broadcom 802.11 Wireless LAN Adapter

BugBopper

CA VMN Anti-Spyware (remove only)

Capture&Send

CCleaner

Conexant HD Audio

Cozi

Deskman 9.4

DocLock

Easy Spyware Scanner 1.0

Enhanced Uninstaller v2.0

Final Uninstaller

flowBubbles screensaver 3.23

Free Registry Fix 5.6

Fun4IM

GOM Player

Google Update Helper

HDAUDIO Soft Data Fax Modem with SmartCP

HijackThis 2.0.2

Hitman Pro 3.5

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows XP (KB954550-v5)

Hotspot Shield 1.57

HP Product Detection

Image Resizer Powertoy for Windows XP

iMesh

Intel® Graphics Media Accelerator Driver

Intel® PRO Network Connections Drivers

IrfanView (remove only)

iTopsoft Anti-Spyware v2.0.0.4

Java Auto Updater

Java 6 Update 23

Junk Mail filter update

Kaspersky Internet Security 2011

Macrium Reflect - Free Edition

Malwarebytes' Anti-Malware

Masterra PostSmile 7.0

MemTurbo 4

Messenger Plus! 5

MessengerDiscovery 2.5.95

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 SP1

Microsoft Application Error Reporting

Microsoft Choice Guard

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft User-Mode Driver Framework Feature Pack 1.0

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729

Mozilla Firefox (3.6.12)

MSVCRT

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MWSnap 3

My Faster PC

MyShoppingGenie

NewFreeScreensaver nfsSpy2

Norton PC Checkup

PC Cleaner v2.0

PC Error Eliminator

PC Power Suite

PC Registry Cleaner v3.0

PC SpeedScan Pro

PCCOP

PCSafe Adware Filter

Photo Collage Screensaver

Playsushi

Printer Spooler Fix Wizard

Privacy Keeper 7.0.1

RealNetworks - Microsoft Visual C++ 2008 Runtime

RealPlayer

RealUpgrade 1.1

RegDefense

Registry Fix 3.0.2

Registry Healer 4.5.0 uninstall

Registry Optimizer 2007

Registry Optimizer Free

RegUtility v4.0

runtime

ScanSpyware 3.9.2.0

Security Task Manager 1.7i

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

Security Update for Windows Internet Explorer 8 (KB2360131)

Security Update for Windows Internet Explorer 8 (KB2416400)

Security Update for Windows Internet Explorer 8 (KB2482017)

Security Update for Windows Internet Explorer 8 (KB971961)

Security Update for Windows Internet Explorer 8 (KB981332)

Security Update for Windows Internet Explorer 8 (KB982381)

Security Update for Windows Media Player (KB973540)

Security Update for Windows Media Player (KB975558)

Security Update for Windows Media Player (KB978695)

Security Update for Windows Media Player (KB979402)

Security Update for Windows XP (KB2393802)

Security Update for Windows XP (KB2476687)

Security Update for Windows XP (KB2478960)

Security Update for Windows XP (KB2478971)

Security Update for Windows XP (KB2479628)

Security Update for Windows XP (KB2483185)

Security Update for Windows XP (KB2485376)

Security Update for Windows XP (KB956803)

Security Update for Windows XP (KB956844)

Security Update for Windows XP (KB958644)

Security Update for Windows XP (KB959426)

Security Update for Windows XP (KB960225)

Security Update for Windows XP (KB960803)

Security Update for Windows XP (KB960859)

Security Update for Windows XP (KB961501)

Security Update for Windows XP (KB969059)

Security Update for Windows XP (KB970238)

Security Update for Windows XP (KB971468)

Security Update for Windows XP (KB971657)

Security Update for Windows XP (KB972270)

Security Update for Windows XP (KB973507)

Security Update for Windows XP (KB973869)

Security Update for Windows XP (KB974112)

Security Update for Windows XP (KB974318)

Security Update for Windows XP (KB974392)

Security Update for Windows XP (KB974571)

Security Update for Windows XP (KB975025)

Security Update for Windows XP (KB975467)

Security Update for Windows XP (KB975560)

Security Update for Windows XP (KB975561)

Security Update for Windows XP (KB975562)

Security Update for Windows XP (KB975713)

Security Update for Windows XP (KB977914)

Security Update for Windows XP (KB978037)

Security Update for Windows XP (KB978338)

Security Update for Windows XP (KB978542)

Security Update for Windows XP (KB978601)

Security Update for Windows XP (KB978706)

Security Update for Windows XP (KB979309)

Security Update for Windows XP (KB979482)

Security Update for Windows XP (KB979559)

Security Update for Windows XP (KB979683)

Security Update for Windows XP (KB980218)

Security Update for Windows XP (KB980232)

Segoe UI

SlimCleaner

Smart Cleaner

Snagit 10

SpyShelter Personal Free 4.56

Spytech SpyAgent

Spyware Remover Doctor 1.0

Spyware Vaccine 4.0

Super Ad Blocker

SUPERAntiSpyware

Task Shield

Total PC Care

TuneUp Utilities 2011

TuneUp Utilities Language Pack (en-US)

UltraSnap PRO 3.0

Universal Shredder 2.2.0

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Windows Internet Explorer 8 (KB976662)

Update for Windows XP (KB967715)

Update for Windows XP (KB968389)

Update for Windows XP (KB973687)

Update for Windows XP (KB973815)

VMN Anti-Spyware

Web Pictures Downloader 2.0

WebFldrs XP

Windows Genuine Advantage Notifications (KB905474)

Windows Genuine Advantage Validation Tool (KB892130)

Windows Internet Explorer 8

Windows Live Communications Platform

Windows Live Essentials

Windows Live Messenger

Windows Live Writer

Windows Media Format 11 runtime

Windows Media Player 11

Windows Searchqu Toolbar

Windows XP Service Pack 3

WinSafe XP

WinShredder

WiperWizard

XnView 1.97.8

Your Free Registry Cleaner 3.9

==== Event Viewer Messages From Past Week ========

2/9/2011 8:19:20 AM, information: Windows File Protection [64001] - File replacement was attempted on the protected system file c:\windows\system32\ctl3d32.dll. This file was restored to the original version to maintain system stability. The file version of the bad file is 2.31.0.0, the version of the system file is 2.31.0.0.

2/9/2011 12:19:44 AM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000034' while processing the file '_filelst.cfg' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.

2/8/2011 12:39:32 AM, error: SideBySide [59] - Resolve Partial Assembly failed for Microsoft.VC80.MFCLOC. Reference error message: The referenced assembly is not installed on your system. .

2/8/2011 12:39:32 AM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\AllMyNotes Organizer\MFC80U.DLL. Reference error message: The operation completed successfully. .

2/8/2011 12:39:32 AM, error: SideBySide [32] - Dependent Assembly Microsoft.VC80.MFCLOC could not be found and Last Error was The referenced assembly is not installed on your system.

2/8/2011 11:27:29 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

2/8/2011 11:21:00 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD dtd Fips intelppm IPSec kl2 KLIF MRxSmb NetBIOS NetBT RasAcd Rdbss SABKUTIL SASDIFSV SASKUTIL SpyShelter Tcpip

2/8/2011 11:21:00 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.

2/8/2011 11:21:00 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/8/2011 11:21:00 PM, error: Service Control Manager [7001] - The Hotspot Shield Service service depends on the DHCP Client service which failed to start because of the following error: The dependency service or group failed to start.

2/8/2011 11:21:00 PM, error: Service Control Manager [7001] - The fssfltr service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/8/2011 11:21:00 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/8/2011 11:21:00 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.

2/8/2011 11:21:00 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}

2/15/2011 11:23:34 PM, error: Service Control Manager [7031] - The Fun4IM Coordinator service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

2/13/2011 9:21:18 AM, error: Dhcp [1002] - The IP address lease 10.86.72.11 for the Network Card with network address 00FF07E75F71 has been denied by the DHCP server 10.62.71.254 (The DHCP Server sent a DHCPNACK message).

2/13/2011 9:00:33 AM, error: Dhcp [1002] - The IP address lease 10.70.8.14 for the Network Card with network address 00FF07E75F71 has been denied by the DHCP server 10.86.79.254 (The DHCP Server sent a DHCPNACK message).

2/13/2011 8:28:43 AM, error: Dhcp [1002] - The IP address lease 10.70.72.54 for the Network Card with network address 00FF07E75F71 has been denied by the DHCP server 10.70.15.254 (The DHCP Server sent a DHCPNACK message).

2/13/2011 3:26:23 PM, error: Service Control Manager [7000] - The Hotspot Shield Tray Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

2/13/2011 3:26:17 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the service.

2/13/2011 3:25:46 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the HssTrayService service.

2/13/2011 3:24:59 PM, error: Dhcp [1002] - The IP address lease 10.88.80.31 for the Network Card with network address 00FF07E75F71 has been denied by the DHCP server 10.88.135.254 (The DHCP Server sent a DHCPNACK message).

2/13/2011 3:24:54 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the TuneUp.UtilitiesSvc service.

2/13/2011 12:20:06 PM, error: Tcpip [4199] - The system detected an address conflict for IP address 192.168.1.64 with the system having network hardware address 70:1A:04:42:AF:30. Network operations on this system may be disrupted as a result.

2/13/2011 1:22:18 PM, error: Dhcp [1002] - The IP address lease 10.62.64.6 for the Network Card with network address 00FF07E75F71 has been denied by the DHCP server 10.88.87.254 (The DHCP Server sent a DHCPNACK message).

2/12/2011 7:54:29 PM, error: PSched [14107] - QoS [Adapter {D58D764D-F4EB-404D-9DDB-71913487C3FB}]: The Packet Scheduler could not initialize the virtual miniport with NDIS.

2/12/2011 7:54:29 PM, error: PSched [14107] - QoS [Adapter {2FA42387-CEB0-4BA7-B015-DBC954DDF511}]: The Packet Scheduler could not initialize the virtual miniport with NDIS.

2/12/2011 7:35:02 PM, error: Service Control Manager [7006] - The ScRegSetValueExW call failed for Type with the following error: Access is denied.

2/12/2011 7:34:46 PM, error: Service Control Manager [7034] - The Hotspot Shield Routing Service service terminated unexpectedly. It has done this 1 time(s).

2/12/2011 7:09:31 PM, error: Service Control Manager [7034] - The Tippers Update Service service terminated unexpectedly. It has done this 1 time(s).

2/12/2011 7:09:31 PM, error: Service Control Manager [7034] - The NETGATE Data Backup Service service terminated unexpectedly. It has done this 1 time(s).

2/12/2011 7:09:31 PM, error: Service Control Manager [7034] - The Macrium Reflect Image Mounting Service service terminated unexpectedly. It has done this 1 time(s).

2/12/2011 7:09:31 PM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).

2/12/2011 7:09:31 PM, error: Service Control Manager [7034] - The Hotspot Shield Monitoring Service service terminated unexpectedly. It has done this 1 time(s).

2/12/2011 7:09:31 PM, error: Service Control Manager [7034] - The ActivePCOptimizer Service service terminated unexpectedly. It has done this 1 time(s).

2/12/2011 7:09:31 PM, error: Service Control Manager [7031] - The Hotspot Shield Routing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

2/12/2011 7:09:31 PM, error: Service Control Manager [7031] - The Deskman service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

2/12/2011 7:09:31 PM, error: Service Control Manager [7031] - The Common Client Job Manager Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.

2/12/2011 7:09:30 PM, error: Service Control Manager [7034] - The Super Ad Blocker Service service terminated unexpectedly. It has done this 1 time(s).

2/12/2011 7:09:30 PM, error: Service Control Manager [7034] - The Ant Toolbar updater service service terminated unexpectedly. It has done this 1 time(s).

2/12/2011 7:09:30 PM, error: Service Control Manager [7031] - The Hotspot Shield Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

2/12/2011 6:15:14 PM, error: Service Control Manager [7034] - The PCSafe Service service terminated unexpectedly. It has done this 1 time(s).

2/12/2011 11:41:44 AM, error: Service Control Manager [7034] - The TuneUp Utilities Service service terminated unexpectedly. It has done this 4 time(s).

2/12/2011 1:13:35 AM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the PCCUJobMgr service.

2/11/2011 8:50:48 PM, error: SideBySide [59] - Resolve Partial Assembly failed for Microsoft.VC90.DebugCRT. Reference error message: The referenced assembly is not installed on your system. .

2/11/2011 8:50:48 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\Real\RealPlayer\plugins\rmxrend.dll. Reference error message: The operation completed successfully. .

2/11/2011 8:50:48 PM, error: SideBySide [32] - Dependent Assembly Microsoft.VC90.DebugCRT could not be found and Last Error was The referenced assembly is not installed on your system.

2/10/2011 12:24:34 PM, error: Dhcp [1002] - The IP address lease 192.168.1.64 for the Network Card with network address 001A73D3A0B4 has been denied by the DHCP server 192.168.1.254 (The DHCP Server sent a DHCPNACK message).

2/10/2011 11:34:24 AM, error: Service Control Manager [7034] - The TuneUp Utilities Service service terminated unexpectedly. It has done this 3 time(s).

2/10/2011 11:27:08 AM, error: Service Control Manager [7034] - The TuneUp Utilities Service service terminated unexpectedly. It has done this 2 time(s).

2/10/2011 1:24:18 AM, error: Service Control Manager [7034] - The TuneUp Utilities Service service terminated unexpectedly. It has done this 1 time(s).

2/10/2011 1:12:07 AM, error: Service Control Manager [7000] - The SABProcEnum service failed to start due to the following error: The system cannot find the file specified.

2/10/2011 1:12:01 AM, error: Service Control Manager [7000] - The SABDIFSV service failed to start due to the following error: Cannot create a file when that file already exists.

2/10/2011 1:11:59 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Kaspersky Anti-Virus Service service to connect.

2/10/2011 1:11:59 AM, error: Service Control Manager [7000] - The Kaspersky Anti-Virus Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

2/10/2011 1:11:13 AM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.

==== End Of File ===========================

DDS (Ver_10-12-12.02) - NTFSx86

Run by BTC User at 23:42:08.96 on Tue 02/15/2011

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_23

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.503.161 [GMT 3:00]

AV: Kaspersky Internet Security *Disabled/Outdated* {2C4D4BC6-0793-4956-A9F9-E252435469C0}

FW: Kaspersky Internet Security *Disabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABSVC.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe

C:\Program Files\Real\RealPlayer\update\realsched.exe

C:\Program Files\Ant.com\IE add-on\AntUpdaterService.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\PROGRA~1\WI9130~1\Datamngr\DATAMN~1.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe

C:\Program Files\Hotspot Shield\bin\openvpnas.exe

C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe

C:\Program Files\Hotspot Shield\bin\hsswd.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\NETGATE\Data Backup\DataBackupSrv.exe

C:\Program Files\Norton PC Checkup\Engine\2.0.6.11\ccSvcHst.exe

C:\Program Files\Macrium\Reflect\ReflectService.exe

C:\Program Files\Active PC Optimizer\ActivePCOptimizerService.exe

C:\Program Files\Norton PC Checkup\Engine\2.0.6.11\ccSvcHst.exe

C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe

C:\Program Files\Trustier\TrustierUpdateService.exe

C:\PROGRA~1\Fun4IM\Bandoo.exe

C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe

C:\WINDOWS\system32\wscntfy.exe

C:\PROGRA~1\Fun4IM\BndCore.exe

C:\Program Files\Hotspot Shield\bin\openvpntray.exe

C:\Documents and Settings\BTC User\Desktop\vhfffffh\dds.com

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/

BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll

BHO: Searchqu Toolbar: {7ff99715-3016-4381-84ce-e4e4c9673020} - c:\progra~1\wi9130~1\toolbar\SearchquDx.dll

BHO: BandooIEPlugin Class: {eb5cee80-030a-4ed8-8e20-454e9c68380f} - c:\program files\fun4im\plugins\ie\ieplugin.dll

BHO: Hotspot Shield Class: {f9e4a054-e9b1-4bc3-83a3-76a1ae736170} - c:\program files\hotspot shield\hssie\HssIE.dll

TB: Searchqu Toolbar: {7ff99715-3016-4381-84ce-e4e4c9673020} - c:\progra~1\wi9130~1\toolbar\SearchquDx.dll

TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File

TB: Ant.com Download Toolbar: {2e924f4f-67f0-4bd8-9560-49f468e843d2} - c:\program files\ant.com\ie add-on\AntToolbar.dll

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background

mRun: [avp] "c:\program files\kaspersky lab\kaspersky internet security 2011\avp.exe"

mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [DATAMNGR] c:\progra~1\wi9130~1\datamngr\DATAMN~1.EXE

mPolicies-explorer: <NO NAME> =

mPolicies-explorer: NoStartMenuMyMusic = 0 (0x0)

mPolicies-explorer: NoSMMyPictures = 0 (0x0)

mPolicies-explorer: NoWindowsUpdate = 0 (0x0)

mPolicies-explorer: NoViewOnDrive = 0 (0x0)

mPolicies-system: <NO NAME> =

mPolicies-system: HideFastUserSwitching = 0 (0x0)

IE: Add to Anti-Banner - c:\program files\kaspersky lab\kaspersky internet security 2011\ie_banner_deny.htm

IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab

TCP: {07E75F71-9405-4538-B1FC-3912B4BB4CD9} = 10.75.64.1

Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - c:\program files\belarc\advisor\system\BAVoilaX.dll

Notify: igfxcui - igfxdev.dll

Notify: klogon - c:\windows\system32\klogon.dll

AppInit_DLLs: c:\progra~1\wi9130~1\datamngr\datamngr.dll c:\progra~1\fun4im\bndhook.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL

SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000d7} - c:\program files\superadblocker.com\super ad blocker\SABSEHB.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\btcuse~1\applic~1\mozilla\firefox\profiles\3tmzhj1l.default\

FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=IEFM1&q=

FF - prefs.js: browser.search.selectedEngine - Web Search

FF - prefs.js: browser.startup.homepage - hxxp://www.searchqu.com/403

FF - prefs.js: keyword.URL - hxxp://www.searchqu.com/web?src=ffb&systemid=403&q=

FF - prefs.js: network.proxy.type - 0

FF - component: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\ext\components\nprpffbrowserrecordext.dll

FF - component: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\ext\components\nprpffbrowserrecordlegacyext.dll

FF - component: c:\documents and settings\btc user\application data\mozilla\firefox\profiles\3tmzhj1l.default\extensions\textlinks@playsushi.com\components\PlaySushiFF.dll

FF - component: c:\program files\mozilla firefox\extensions\afurladvisor@anchorfree.com\components\afurladvisor.dll

FF - component: c:\program files\mozilla firefox\extensions\kavantibanner@kaspersky.ru\components\abhelperxpcom.dll

FF - component: c:\program files\mozilla firefox\extensions\linkfilter@kaspersky.ru\components\kavlinkfilter.dll

FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll

FF - plugin: c:\documents and settings\btc user\application data\mozilla\plugins\np-mswmp.dll

FF - plugin: c:\program files\couponalert_2pei\installr\1.bin\NP2pEISb.dll

FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\program files\mozilla firefox\plugins\NPAskSBr.dll

FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

FF - Ext: afurladvisor: afurladvisor@anchorfree.com - c:\program files\mozilla firefox\extensions\afurladvisor@anchorfree.com

FF - Ext: Anti-Banner: KavAntiBanner@Kaspersky.ru - c:\program files\mozilla firefox\extensions\KavAntiBanner@Kaspersky.ru

FF - Ext: Kaspersky URL Advisor: linkfilter@kaspersky.ru - c:\program files\mozilla firefox\extensions\linkfilter@kaspersky.ru

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: PlaySushi TextLinks : textlinks@playsushi.com - %profile%\extensions\textlinks@playsushi.com

FF - Ext: IMMUNET ASK TOOLBAR: toolbar@ask.com - %profile%\extensions\toolbar@ask.com

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}

FF - Ext: GigaSize Toolbar: {89DE49C7-E350-4C8E-885B-A41F859B93C4} - %profile%\extensions\{89DE49C7-E350-4C8E-885B-A41F859B93C4}

FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension

FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\Ext

============= SERVICES / DRIVERS ===============

R0 KL1;kl1;c:\windows\system32\drivers\kl1.sys [2010-6-9 132184]

R0 pssnap;Paramount Software Snapshot Filter;c:\windows\system32\drivers\pssnap.sys [2011-1-17 16024]

R1 dtd;dtd;c:\program files\arovax shield\dtd.sys [2007-4-24 42112]

R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [2010-6-9 11352]

R1 KLIF;Kaspersky Lab Driver;c:\windows\system32\drivers\klif.sys [2010-12-7 475736]

R1 SABKUTIL;SABKUTIL;c:\program files\superadblocker.com\super ad blocker\SABKUTIL.SYS [2007-2-20 32256]

R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]

R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656]

R1 SpyShelter;SpyShelter;c:\program files\spyshelter personal free\SpyShelter.sys [2011-2-7 179136]

R2 AntUpdaterService;Ant Toolbar updater service;c:\program files\ant.com\ie add-on\AntUpdaterService.exe [2010-12-22 515096]

R2 AVP;Kaspersky Anti-Virus Service;c:\program files\kaspersky lab\kaspersky internet security 2011\avp.exe [2010-11-2 365336]

R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2010-11-9 54760]

R2 Fun4IM Coordinator;Fun4IM Coordinator;c:\progra~1\fun4im\Bandoo.exe [2011-2-15 1942416]

R2 HssWd;Hotspot Shield Monitoring Service;c:\program files\hotspot shield\bin\hsswd.exe -product hss --> c:\program files\hotspot shield\bin\hsswd.exe -product HSS [?]

R2 NGDatBckpSrv;NETGATE Data Backup Service;c:\program files\netgate\data backup\DataBackupSrv.exe [2011-2-9 342664]

R2 PCCUJobMgr;Common Client Job Manager Service;c:\program files\norton pc checkup\engine\2.0.6.11\ccSvcHst.exe [2011-2-7 126392]

R2 ReflectService;Macrium Reflect Image Mounting Service;c:\program files\macrium\reflect\ReflectService.exe [2011-1-17 220824]

R2 RegMumService;ActivePCOptimizer Service;c:\program files\active pc optimizer\ActivePCOptimizerService.exe [2011-1-29 1553344]

R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2011\TuneUpUtilitiesService32.exe [2010-12-14 1517376]

R2 UPDATE_SERVICE_ID;Tippers Update Service;c:\program files\trustier\TrustierUpdateService.exe [2010-11-2 180064]

R3 dwlkbf;DwlKbf;c:\windows\system32\drivers\dwlkbf.sys [2011-1-17 3712]

R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2010-5-7 32856]

R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2009-11-2 19472]

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2011\TuneUpUtilitiesDriver32.sys [2010-10-7 10064]

S1 SABDIFSV;SABDIFSV;c:\program files\superadblocker.com\super ad blocker\sabdifsv.sys [2005-9-21 5632]

S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-2-14 136176]

S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [2011-2-9 23456]

S3 PSMounter;Macrium Reflect Image Explorer Service;c:\windows\system32\drivers\psmounter.sys [2011-1-17 45208]

S4 AvanquestDiskOptimizer;AvanquestDiskOptimizer;c:\program files\fix-it disk optimizer\AvanquestDefragSrv.exe [2011-2-9 285184]

S4 Deskman;Deskman;c:\program files\deskman\deskman.exe [2011-2-12 3131640]

S4 Norton PC Checkup Application Launcher;Norton PC Checkup Application Launcher;c:\program files\norton pc checkup\engine\2.0.6.11\SymcPCCULaunchSvc.exe [2011-2-7 115056]

S4 PCPS Defrag;PCPS Defrag;c:\program files\pc power suite\PCPSDefragService32.exe [2011-2-7 397088]

S4 TPCDiskOptimizer;TPCDiskOptimizer;c:\program files\total pc care\TPCDefragSrv.exe [2011-1-27 238816]

=============== Created Last 30 ================

2011-02-15 19:08:41 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Bandoo

2011-02-15 19:06:59 -------- d-----w- c:\docume~1\alluse~1\applic~1\Bandoo

2011-02-15 19:06:48 -------- d-----w- c:\docume~1\btcuse~1\applic~1\searchqutb

2011-02-15 19:06:41 -------- d-----w- c:\docume~1\alluse~1\applic~1\Fun4IM

2011-02-15 19:06:38 -------- d-----w- c:\program files\Windows Searchqu Toolbar

2011-02-15 19:06:37 -------- d-----w- c:\program files\Fun4IM

2011-02-15 13:32:23 472808 ----a-w- c:\program files\mozilla firefox\plugins\npdeployJava1.dll

2011-02-14 15:24:40 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Temp

2011-02-14 15:24:28 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Google

2011-02-14 14:17:05 -------- d-----w- c:\docume~1\alluse~1\applic~1\Messenger Plus!

2011-02-14 14:16:48 -------- d-----w- c:\program files\Yuna Software

2011-02-14 14:08:12 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Axialis

2011-02-14 14:08:08 2188272 ----a-w- c:\windows\system32\nfsSpy2.scr

2011-02-14 14:08:08 -------- d-----w- c:\program files\NewFreeScreensavers

2011-02-12 19:33:43 11776 ----a-w- c:\program files\mozilla firefox\plugins\nprjplug.dll

2011-02-12 19:33:30 -------- d-----w- c:\program files\common files\xing shared

2011-02-12 19:33:18 150712 ----a-w- c:\program files\mozilla firefox\plugins\nppl3260.dll

2011-02-12 19:33:04 100864 ----a-w- c:\program files\mozilla firefox\plugins\nprpjplug.dll

2011-02-12 19:32:58 499712 ----a-w- c:\windows\system32\msvcp71.dll

2011-02-12 16:53:56 506880 ----a-w- c:\program files\mozilla firefox\extensions\afurladvisor@anchorfree.com\components\afurladvisor.dll

2011-02-12 16:53:53 -------- d-----w- c:\program files\Hotspot Shield

2011-02-12 16:41:53 -------- d-----w- c:\program files\Downloaded Installers

2011-02-12 16:05:44 -------- d-----w- c:\program files\Deskman

2011-02-12 16:05:44 -------- d-----w- c:\docume~1\alluse~1\applic~1\Deskman9

2011-02-12 14:51:58 -------- d-----w- c:\docume~1\alluse~1\applic~1\Ant.com

2011-02-12 14:38:28 -------- d-----w- c:\program files\MSXML 4.0

2011-02-12 14:13:02 -------- d--h--w- c:\windows\$hf_mig$

2011-02-12 08:43:49 2329600 ----a-w- c:\windows\system32\TUKernel.exe

2011-02-11 19:46:52 -------- d-----w- C:\New Folder

2011-02-09 06:31:54 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Windows Live Writer

2011-02-09 06:31:41 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Windows Live Writer

2011-02-09 05:28:31 -------- d-----w- c:\program files\Wise Registry Cleaner

2011-02-09 05:27:41 -------- d-----w- c:\program files\Trustier

2011-02-09 05:27:41 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\blast

2011-02-09 05:27:10 -------- d-----w- c:\docume~1\alluse~1\applic~1\Hagel Technologies

2011-02-09 05:27:09 -------- d-----w- c:\program files\TweakMASTER

2011-02-09 05:26:14 -------- d-----w- c:\docume~1\btcuse~1\applic~1\UpdateStar

2011-02-09 05:25:52 -------- d-----w- c:\program files\Wallpaper Show

2011-02-09 05:25:37 -------- d-----w- c:\program files\Business Logic Corporation

2011-02-09 05:24:42 -------- d-----w- c:\program files\WOT

2011-02-09 05:22:35 -------- d-----w- c:\docume~1\alluse~1\applic~1\SpeedBit

2011-02-09 05:22:20 -------- d-----w- c:\docume~1\btcuse~1\applic~1\SpeedBit

2011-02-09 05:22:04 24683 ----a-w- c:\program files\mozilla firefox\plugins\NPAskSBr.dll

2011-02-09 05:22:01 -------- d-----w- c:\program files\AskSBar

2011-02-09 05:22:00 -------- d-----w- c:\program files\SpeedOptimizer

2011-02-09 05:21:20 -------- d-----w- c:\program files\AV Soft

2011-02-09 05:18:15 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Smart PC Solutions

2011-02-09 05:18:09 -------- d-----w- c:\program files\Smart PC Solutions

2011-02-09 05:16:42 -------- d-----w- c:\program files\EMCO

2011-02-09 05:16:15 -------- d-----w- c:\docume~1\alluse~1\applic~1\RFA_Backups

2011-02-09 05:16:10 -------- d-----w- c:\program files\RFA

2011-02-09 05:13:58 -------- d-----w- C:\SoftJock

2011-02-09 05:12:40 815104 ----a-w- c:\windows\system32\xvidcore.dll

2011-02-09 05:12:40 77824 ----a-w- c:\windows\system32\xvid.ax

2011-02-09 05:12:40 180224 ----a-w- c:\windows\system32\xvidvfw.dll

2011-02-09 05:12:40 -------- d-----w- c:\program files\Xvid

2011-02-09 05:12:38 -------- d-----w- c:\program files\FDRLab

2011-02-09 05:09:47 -------- d-----w- c:\docume~1\alluse~1\applic~1\RegCure

2011-02-09 05:09:22 -------- d-----w- c:\docume~1\alluse~1\applic~1\RegInOut

2011-02-09 05:09:20 -------- d-----w- c:\windows\RegInOut

2011-02-09 05:09:11 -------- d-----w- c:\program files\RegInOut

2011-02-09 05:07:41 -------- d-----w- c:\program files\eSupport.com

2011-02-09 05:06:37 -------- d-----w- c:\program files\WinASO

2011-02-09 05:06:18 711168 ----a-w- c:\windows\is-4HCFK.exe

2011-02-09 05:06:17 94208 ----a-w- c:\windows\system32\vbalIml6.ocx

2011-02-09 05:06:17 65536 ----a-w- c:\windows\system32\vbalProgBar6.ocx

2011-02-09 05:06:17 61440 ----a-w- c:\windows\system32\mkcHyperlink.ocx

2011-02-09 05:06:17 262144 ----a-w- c:\windows\system32\vbaListView6.ocx

2011-02-09 05:06:17 200704 ----a-w- c:\windows\system32\vbalExpBar6.ocx

2011-02-09 05:06:16 -------- d-----w- c:\program files\Registry Smoker

2011-02-09 05:05:41 -------- d-----w- c:\program files\RegTweaker

2011-02-09 05:05:20 -------- d-----w- c:\docume~1\btcuse~1\applic~1\PC Speed Maximizer

2011-02-09 05:05:17 -------- d-----w- c:\program files\PC Speed Maximizer

2011-02-09 05:04:06 -------- d-----w- c:\docume~1\btcuse~1\applic~1\PC Updater

2011-02-09 05:04:03 -------- d-----w- c:\program files\PC Updater

2011-02-09 05:03:25 114176 ----a-w- c:\windows\system32\PCWizard.cpl

2011-02-09 05:03:24 -------- d-----w- c:\program files\CPUID

2011-02-09 05:02:50 -------- d-----w- c:\docume~1\btcuse~1\applic~1\PE Explorer

2011-02-09 05:02:47 -------- d-----w- c:\program files\PE Explorer

2011-02-09 05:02:20 -------- d-----w- c:\program files\PrivacyEraser Computing

2011-02-09 05:01:52 -------- d-----w- c:\program files\RegAce

2011-02-09 05:00:52 -------- d-----w- c:\docume~1\alluse~1\applic~1\RegAce

2011-02-09 05:00:48 -------- d-----w- c:\windows\RegAce

2011-02-09 05:00:48 -------- d-----w- c:\program files\gigasizetb

2011-02-09 05:00:48 -------- d-----w- c:\docume~1\btcuse~1\applic~1\gigasizetb

2011-02-09 05:00:37 -------- d-----w- c:\program files\RegAce System Suite

2011-02-09 05:00:16 -------- d-----w- c:\docume~1\btcuse~1\applic~1\PC Doc Pro

2011-02-09 04:57:24 -------- d-----w- C:\Temp

2011-02-09 04:57:02 -------- d-----w- c:\program files\PC Optimizer Trial

2011-02-09 04:56:36 -------- d-----w- c:\program files\Pc Optimizer 360

2011-02-09 04:55:51 -------- d-----w- c:\docume~1\alluse~1\applic~1\PC Optimizer Pro

2011-02-09 04:55:42 -------- d-----w- c:\program files\PC Optimizer Pro

2011-02-09 04:54:50 -------- d-----w- c:\program files\PC Registry Cleaner

2011-02-09 04:52:29 -------- d-----w- c:\program files\Softdiv MP3 to WAV Converter

2011-02-09 04:51:20 -------- d-----w- c:\program files\NoVirusThanks

2011-02-09 04:50:41 -------- d-----w- c:\program files\Kernel Recovery for Access Demo

2011-02-09 04:50:21 1852416 ----a-w- c:\windows\system32\wisoutlit.dll

2011-02-09 04:50:21 143360 ----a-w- c:\windows\system32\brjButtons.ocx

2011-02-09 04:50:21 -------- d-----w- c:\program files\wisco

2011-02-09 04:49:41 -------- d-----w- c:\docume~1\alluse~1\applic~1\FrontLine Registry Cleaner

2011-02-09 04:49:38 -------- d-----w- c:\program files\Frontline Registry Cleaner

2011-02-09 04:48:59 -------- d-----w- c:\program files\IE Password Recovery Master

2011-02-09 04:48:24 -------- d-----w- c:\program files\PC Integrity Scanner

2011-02-09 04:46:18 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Avanquest

2011-02-09 04:46:18 -------- d-----w- c:\docume~1\alluse~1\applic~1\Avanquest

2011-02-09 04:46:08 -------- d-----w- c:\program files\Fix-It Disk Optimizer

2011-02-09 04:44:26 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\FreeFixer

2011-02-09 04:44:26 -------- d-----w- c:\docume~1\btcuse~1\applic~1\FreeFixer

2011-02-09 04:44:19 -------- d-----w- c:\program files\FreeFixer

2011-02-09 04:42:58 737280 ----a-w- c:\windows\iun6002.exe

2011-02-09 04:42:57 -------- d-----w- C:\PC-Checkup

2011-02-09 04:41:37 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Electronic Arts

2011-02-09 04:41:24 -------- d-----w- c:\docume~1\alluse~1\applic~1\Electronic Arts

2011-02-09 04:40:24 -------- d-----w- c:\program files\Easy Duplicate Finder

2011-02-09 04:40:24 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Easy Duplicate Finder

2011-02-09 04:40:24 -------- d-----w- c:\docume~1\alluse~1\applic~1\Easy Duplicate Finder

2011-02-09 04:38:38 -------- d-----w- c:\docume~1\alluse~1\applic~1\FAQware

2011-02-09 04:38:37 -------- d-----w- c:\program files\FaultWire Manager

2011-02-09 04:34:43 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Innovative Solutions

2011-02-09 04:34:43 -------- d-----w- c:\docume~1\alluse~1\applic~1\Innovative Solutions

2011-02-09 04:34:37 -------- d-----w- c:\program files\Innovative Solutions

2011-02-09 04:32:48 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Blitware

2011-02-09 04:32:45 -------- d-----w- c:\program files\Driver Robot

2011-02-09 04:29:49 -------- d-----w- c:\program files\DriverGuide DriverScan

2011-02-09 04:27:50 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys

2011-02-09 04:27:50 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\eSupport.com

2011-02-09 04:26:42 -------- d-----w- c:\program files\Moleskinsoft Disk Cleaner 2.4

2011-02-09 04:25:45 40960 ----a-r- c:\docume~1\btcuse~1\applic~1\microsoft\installer\{d652c372-e0a1-456f-80b6-aa3a5183a02c}\NewShortcut1_3F3FBB4316564CE6A509D75C203BC969_2.exe

2011-02-09 04:25:41 -------- d-----w- c:\program files\Phoenix Flow Systems

2011-02-09 04:24:58 83144 ----a-w- c:\windows\system32\picclp32.ocx

2011-02-09 04:24:58 -------- d-----w- c:\program files\Evidence-Blaster

2011-02-09 04:23:23 -------- d-----w- c:\docume~1\btcuse~1\applic~1\NETGATE Data Backup

2011-02-09 04:23:21 -------- d-----w- c:\program files\NETGATE

2011-02-09 04:21:54 -------- d-----w- c:\program files\Crawler

2011-02-09 04:21:15 -------- d-----w- c:\program files\Box24

2011-02-09 04:18:48 -------- d-----w- c:\docume~1\btcuse~1\applic~1\AV Bros Puzzle Pro 3.0 DEMO

2011-02-09 04:18:48 -------- d-----w- C:\AV Bros Puzzle Pro 3.0 DEMO

2011-02-09 04:17:54 -------- d-----w- c:\docume~1\alluse~1\applic~1\MFAData

2011-02-09 04:17:04 -------- d-----w- c:\program files\AutoHideIP

2011-02-09 04:12:46 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Sammsoft

2011-02-09 04:12:31 -------- d-----w- c:\program files\MemTurbo 4

2011-02-09 04:12:24 -------- d-----w- c:\program files\Advanced Registry Optimizer

2011-02-09 04:11:33 -------- d-----w- c:\docume~1\alluse~1\applic~1\APFill

2011-02-09 04:11:26 -------- d-----w- c:\docume~1\btcuse~1\applic~1\APFill

2011-02-09 04:11:19 -------- d-----w- c:\program files\ApFill

2011-02-09 04:10:58 -------- d-----w- c:\docume~1\btcuse~1\applic~1\AntiToolbar

2011-02-09 04:10:08 63 ----a-w- c:\windows\system\SysAnom.dll

2011-02-09 04:10:08 1060864 ----a-w- c:\windows\system32\mfc71.dll

2011-02-09 04:10:07 -------- d-----w- c:\program files\AnonySurf

2011-02-09 04:09:32 -------- d-----w- c:\program files\ALLPlayer

2011-02-09 04:08:33 -------- d-----w- c:\program files\AJC Software

2011-02-09 04:06:32 3840 ----a-w- c:\windows\system32\drivers\BANTExt.sys

2011-02-09 04:06:32 -------- d-----w- c:\program files\Belarc

2011-02-09 04:05:47 -------- d-----w- c:\program files\ACleaner

2011-02-09 04:03:22 -------- d-----w- c:\program files\1-Click PC Fix v4

2011-02-09 04:01:52 -------- d-----w- c:\program files\Secure PC Solutions

2011-02-08 21:36:05 -------- d-----w- c:\docume~1\alluse~1\applic~1\Tarma Installer

2011-02-08 21:18:23 -------- d-----w- c:\windows\system32\wbem\Logs

2011-02-07 23:42:43 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\ACD Systems

2011-02-07 23:42:42 -------- d-----w- c:\docume~1\btcuse~1\applic~1\ACD Systems

2011-02-07 23:40:23 -------- d-----w- c:\docume~1\alluse~1\applic~1\ACD Systems

2011-02-07 23:39:56 -------- d-----w- c:\program files\common files\ACD Systems

2011-02-07 23:39:56 -------- d-----w- c:\program files\ACD Systems

2011-02-07 23:37:37 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Downloaded Installations

2011-02-07 22:43:16 -------- d-----w- c:\program files\RegDefense

2011-02-07 22:42:08 81920 ----a-w- c:\windows\eSellerateControl350.dll

2011-02-07 22:42:08 356352 ----a-w- c:\windows\eSellerateEngine.dll

2011-02-07 22:42:08 -------- d-----w- c:\program files\Printer Spooler Fix Wizard

2011-02-07 22:41:38 -------- d-----w- c:\program files\Privacy Keeper

2011-02-07 22:38:25 -------- d-----w- c:\program files\PCRegistryCleaner

2011-02-07 22:37:49 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Max Secure Software

2011-02-07 22:29:27 -------- d-----w- c:\program files\MWSnap

2011-02-07 22:27:18 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Oberon Media

2011-02-07 22:25:52 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Promosoft Corporation

2011-02-07 22:25:47 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\MyNetUniverse_Inc

2011-02-07 22:25:25 -------- d-----w- c:\program files\Promosoft Corporation

2011-02-07 22:24:27 -------- d-----w- c:\docume~1\btcuse~1\applic~1\MsgCnf

2011-02-07 22:24:10 -------- d-----w- c:\windows\MyShoppingGenie

2011-02-07 22:24:10 -------- d-----w- c:\program files\MyShoppingGenie

2011-02-07 22:21:33 -------- d-----w- c:\program files\DocLock

2011-02-07 22:20:24 -------- d-----w- c:\program files\Baidu

2011-02-07 22:19:29 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Bug Doctor

2011-02-07 22:17:35 -------- d-----w- c:\program files\Arovax Shield

2011-02-07 22:15:16 -------- d-----w- c:\docume~1\btcuse~1\applic~1\RegistryOptimizerFree

2011-02-07 22:15:16 -------- d-----w- c:\docume~1\alluse~1\applic~1\RegistryOptimizerFree

2011-02-07 22:15:01 -------- d-----w- c:\program files\RegistryOptimizerFree

2011-02-07 22:14:23 -------- d-----w- c:\program files\RegUtility

2011-02-07 22:12:00 -------- d-----w- c:\docume~1\alluse~1\applic~1\RH_Backups

2011-02-07 22:11:42 -------- d-----w- c:\program files\RegHealer

2011-02-07 22:10:50 -------- d-----w- c:\program files\PlaySushi

2011-02-07 22:06:14 -------- d-----w- c:\program files\Task Shield

2011-02-07 22:06:03 -------- d-----w- c:\program files\Smart Cleaner

2011-02-07 22:03:28 18432 ----a-w- c:\windows\system32\winwatch.DLL

2011-02-07 22:03:28 155648 ----a-w- c:\windows\system32\addurl41.DLL

2011-02-07 22:03:25 -------- d-----w- c:\program files\Spyware Vaccine

2011-02-07 22:01:23 -------- d--h--w- c:\docume~1\alluse~1\applic~1\sacache

2011-02-07 22:00:26 -------- d-----w- c:\docume~1\alluse~1\applic~1\AgentSS

2011-02-07 21:28:12 40960 ----a-w- c:\windows\system32\mxpvct23.dat

2011-02-07 21:28:12 36864 ----a-w- c:\windows\system32\symiasob.exe

2011-02-07 21:28:12 100688 ----a-w- c:\windows\system32\accSvcHst.exe

2011-02-07 21:28:11 -------- d-sh--r- c:\program files\SP10222010

2011-02-07 21:24:48 -------- d-----w- c:\docume~1\btcuse~1\applic~1\SuperAdBlocker.com

2011-02-07 21:23:40 -------- d-----w- c:\windows\system32\URTTemp

2011-02-07 21:23:39 -------- d-----w- c:\program files\SuperAdBlocker.com

2011-02-07 21:23:05 -------- d-----w- c:\program files\common files\Wise Installation Wizard

2011-02-07 21:12:27 -------- d-----w- c:\program files\Your Free Registry Cleaner

2011-02-07 21:11:45 40960 ----a-r- c:\docume~1\btcuse~1\applic~1\microsoft\installer\{a5f83c06-8ff0-46ee-b539-e5cb436ed9b7}\NewShortcut1_A5F83C068FF046EEB539E5CB436ED9B7_1.exe

2011-02-07 21:11:35 -------- d-----w- c:\program files\PCSecurityShield

2011-02-07 21:10:40 -------- d-----w- c:\windows\WinSafe XP

2011-02-07 21:10:40 -------- d-----w- c:\windows\WinSafe

2011-02-07 21:08:49 -------- d-----w- c:\program files\PcPrivacySoftware.com

2011-02-07 21:07:14 -------- d-----w- c:\docume~1\alluse~1\applic~1\SecTaskMan

2011-02-07 21:07:06 -------- d-----w- c:\program files\Security Task Manager

2011-02-07 21:05:34 -------- d-----w- c:\docume~1\btcuse~1\applic~1\iolo

2011-02-07 21:05:34 -------- d-----w- c:\docume~1\alluse~1\applic~1\iolo

2011-02-07 21:03:04 -------- d-----w- c:\docume~1\btcuse~1\applic~1\SupportSoft

2011-02-07 21:02:46 -------- d-----w- c:\program files\common files\supportsoft

2011-02-07 21:00:39 -------- d-----w- c:\program files\Registry Optimizer 2007

2011-02-07 20:57:58 -------- d-----w- c:\program files\Aiseesoft Studio

2011-02-07 20:54:37 -------- d-sh--w- c:\program files\TS

2011-02-07 20:54:37 -------- d-sh--w- c:\docume~1\alluse~1\applic~1\TS

2011-02-07 20:17:12 -------- d-----w- c:\docume~1\btcuse~1\applic~1\MessengerDiscovery 2

2011-02-07 20:15:52 -------- d-----w- c:\docume~1\alluse~1\applic~1\MessengerDiscovery 2

2011-02-07 20:15:51 -------- d-----w- c:\program files\MessengerDiscovery 2

2011-02-07 20:12:45 54784 ----a-w- c:\windows\system32\inject_logon_dll.dll

2011-02-07 20:12:45 1740800 ----a-w- c:\windows\system32\Osklauncher.exe

2011-02-07 20:12:45 -------- d-----w- c:\program files\SpyShelter Personal Free

2011-02-07 20:12:45 -------- d-----w- c:\docume~1\btcuse~1\applic~1\SpyShelter

2011-02-07 20:10:27 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\ant.com

2011-02-07 20:09:35 -------- d-----w- c:\program files\Ant.com

2011-02-07 20:07:13 8704 ----a-w- c:\windows\system32\ssbtsr.exe

2011-02-07 20:07:13 -------- d-----w- c:\docume~1\btcuse~1\applic~1\ScanSpyware

2011-02-07 20:07:12 -------- d-----w- c:\program files\ScanSpyware

2011-02-07 20:06:26 90112 ----a-w- c:\windows\unvise32.exe

2011-02-07 20:06:20 -------- d-----w- c:\program files\PC Error Eliminator

2011-02-07 20:04:14 -------- d-----w- c:\docume~1\btcuse~1\applic~1\PCPowerSuite

2011-02-07 20:04:03 -------- d-----w- c:\program files\PC Power Suite

2011-02-07 20:02:44 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\PCCOP

2011-02-07 20:02:18 -------- d-----w- c:\program files\PCCOP

2011-02-07 20:00:57 -------- d-----w- c:\windows\KVLog

2011-02-07 19:59:44 299008 ----a-w- c:\windows\system32\EEGenFn1.dll

2011-02-07 19:59:43 40712 ----a-w- c:\windows\system32\eetransx.exe

2011-02-07 19:59:43 25864 ----a-w- c:\windows\system32\EEInstMngr.exe

2011-02-07 19:59:27 115920 ----a-w- c:\windows\system32\MSINET.ocx

2011-02-07 19:59:27 114696 ----a-w- c:\windows\system32\Fablock6.ocx

2011-02-07 19:59:26 28672 ----a-w- c:\windows\system32\MSGHOO32.OCX

2011-02-07 19:59:26 209608 ----a-w- c:\windows\system32\TabCtl32.ocx

2011-02-07 19:59:16 368912 ----a-w- c:\windows\system32\vbar332.dll

2011-02-07 19:58:24 -------- d-----w- c:\program files\Hitman Pro 3.5

2011-02-07 19:53:29 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Tific

2011-02-07 19:53:29 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Tific

2011-02-07 19:52:57 -------- d-----w- c:\windows\system32\drivers\nortonpccheckup\0200060.00B

2011-02-07 19:52:57 -------- d-----w- c:\windows\system32\drivers\NortonPCCheckup

2011-02-07 19:52:56 -------- d-----w- c:\program files\Norton PC Checkup

2011-02-07 19:52:55 -------- d-----w- c:\docume~1\alluse~1\applic~1\Norton

2011-02-07 19:52:47 -------- d-----w- c:\program files\NortonInstaller

2011-02-07 19:49:35 -------- d-----w- c:\program files\Cozi Express

2011-02-07 19:49:35 -------- d-----w- c:\docume~1\alluse~1\applic~1\Cozi

2011-02-07 19:46:11 -------- d-----w- c:\program files\Photo Collage Screensaver

2011-02-07 19:41:31 475136 ----a-w- c:\windows\system32\AscConTest.dll

2011-02-07 19:41:31 36864 ----a-w- c:\windows\system32\ascbalon.dll

2011-02-07 19:41:31 307200 ----a-w- c:\windows\system32\AscSQLite.dll

2011-02-07 19:41:31 20480 ----a-w- c:\windows\system32\SysRestore.dll

2011-02-07 19:41:31 -------- d-----w- c:\program files\Ascentive

2011-02-07 19:36:54 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Microsys

2011-02-07 19:36:38 -------- d-----w- c:\program files\Microsys

2011-02-07 19:34:18 -------- d-----w- c:\program files\iTopsoft Anti-Spyware

2011-02-07 19:33:49 67584 ----a-w- c:\windows\system32\CHAMELEON.OCX

2011-02-07 19:33:49 31232 ----a-w- c:\windows\system32\FLEXIFRAME.OCX

2011-02-07 19:33:49 25088 ----a-w- c:\windows\system32\msxml3a.dll

2011-02-07 19:33:49 229376 ----a-w- c:\windows\system32\INOVA_TABS.OCX

2011-02-07 19:33:49 208896 ----a-w- c:\windows\system32\VBALNCSM6.DLL

2011-02-07 19:33:49 14848 ----a-w- c:\windows\system32\TimerControl.ocx

2011-02-07 19:33:49 145408 ----a-w- c:\windows\system32\EYEDROPPER.OCX

2011-02-07 19:33:49 -------- d-----w- c:\program files\Universal Shredder

2011-02-07 19:33:49 -------- d-----w- c:\program files\common files\wsm

2011-02-07 19:32:03 -------- d-----w- c:\program files\Easy Spyware Scanner

2011-02-07 19:30:06 -------- d-----w- C:\ProgramData

2011-02-07 19:30:06 -------- d-----w- c:\program files\Angle Interactive

2011-02-07 19:25:52 -------- d-----w- c:\program files\TrustSoft AntiSpyware

2011-02-07 19:24:06 -------- d-----w- c:\program files\Spyware Remover Doctor

2011-02-07 19:22:58 -------- d-----w- c:\windows\system32\DefenseWall HIPS

2011-02-07 19:22:49 -------- d-----w- c:\program files\DefenseWall

2011-02-07 19:16:41 -------- d-----w- c:\program files\AllMyNotes Organizer

2011-02-07 19:13:55 -------- d-----w- c:\windows\bubblesback

2011-02-07 19:13:54 691481 ----a-w- c:\windows\unins000.exe

2011-02-07 19:13:54 1183744 ----a-w- c:\windows\flowBubbles.scr

2011-02-07 19:04:03 -------- d-----w- C:\?????

2011-02-06 12:49:21 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Photo Collage Screensaver

2011-02-06 12:46:14 -------- d-----w- c:\program files\alot

2011-02-06 12:32:51 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Slimware Utilities Inc

2011-02-06 12:32:32 -------- d-----w- c:\program files\SlimCleaner

2011-02-06 12:29:04 -------- d-----w- c:\docume~1\btcuse~1\applic~1\ConsumerSoft

2011-02-06 12:28:58 -------- d-----w- c:\program files\ConsumerSoft

2011-02-06 12:23:56 -------- d-----w- c:\docume~1\alluse~1\applic~1\AntiSpyInfo

2011-02-06 12:23:51 -------- d-----w- c:\program files\Anti-Spy.Info

2011-02-06 12:18:15 -------- d-----w- c:\docume~1\btcuse~1\applic~1\adwarefilter

2011-02-06 12:15:36 -------- d-----w- c:\program files\AdwareFilter

2011-01-29 20:10:46 -------- d-----w- c:\docume~1\alluse~1\applic~1\Keronsoft

2011-01-29 20:10:30 -------- d-----w- c:\program files\Keronsoft

2011-01-29 20:09:17 -------- d-----w- c:\docume~1\btcuse~1\applic~1\PC Cleaner

2011-01-29 20:09:06 -------- d-----w- c:\program files\PC Cleaner

2011-01-29 20:04:51 -------- d-----w- c:\program files\Active PC Optimizer

2011-01-28 13:24:54 -------- d-----w- c:\program files\GRETECH

2011-01-28 13:21:08 -------- d-----w- c:\program files\common files\scanner

2011-01-28 13:21:07 -------- d-----w- c:\program files\CA VMN Anti-Spyware

2011-01-28 13:21:04 -------- d-----w- c:\docume~1\btcuse~1\applic~1\EmailNotifier

2011-01-28 13:21:04 -------- d-----w- c:\docume~1\alluse~1\applic~1\EmailNotifier

2011-01-28 13:21:03 -------- d-----w- c:\program files\vmntoolbar

2011-01-28 13:21:03 -------- d-----w- c:\docume~1\btcuse~1\applic~1\vmntoolbar

2011-01-28 13:11:56 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Babylon

2011-01-28 13:11:45 142336 ----a-w- c:\program files\mozilla firefox\BabyFox.dll

2011-01-28 13:11:34 -------- d-----w- c:\program files\Babylon

2011-01-28 13:01:07 -------- d-----w- c:\program files\Internet TV

2011-01-28 12:57:15 57152 ----a-w- c:\windows\system32\drivers\toolkitdisk.sys

2011-01-27 06:58:00 -------- d-----w- c:\docume~1\alluse~1\applic~1\PCOptimax

2011-01-27 06:50:06 -------- d-----w- c:\docume~1\btcuse~1\applic~1\PCOptimax

2011-01-27 06:49:43 16096 ----a-w- c:\windows\system32\roboot.exe

2011-01-27 06:49:30 -------- d-----w- c:\program files\Total PC Care

2011-01-21 14:44:37 439296 -c----w- c:\windows\system32\dllcache\shimgvw.dll

2011-01-20 02:10:34 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2011-01-20 02:10:31 20952 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-01-20 02:10:31 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2011-01-19 13:57:52 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\AskToolbar

2011-01-19 13:51:07 -------- d-----w- c:\documents and settings\all users\Immunet

2011-01-19 13:51:07 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Immunet

2011-01-19 13:50:47 -------- d-----w- c:\program files\Ask.com

2011-01-19 07:59:17 -------- d-----w- c:\program files\CouponAlert_2pEI

2011-01-19 02:11:43 -------- d-----w- c:\docume~1\alluse~1\applic~1\ZeoBIT

2011-01-18 15:16:53 -------- d-----w- c:\docume~1\btcuse~1\applic~1\UpdateStar Drivers

2011-01-18 12:33:36 -------- d-----w- c:\program files\AAALOGO2010

2011-01-17 20:53:28 -------- d-----w- c:\docume~1\alluse~1\applic~1\Babylon

2011-01-17 20:53:22 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Babylon

2011-01-17 20:42:50 45208 ----a-w- c:\windows\system32\drivers\psmounter.sys

2011-01-17 20:42:50 16024 ----a-w- c:\windows\system32\drivers\pssnap.sys

2011-01-17 20:42:50 12952 ----a-w- c:\windows\system32\drivers\PSVolAcc.sys

2011-01-17 04:08:26 3712 ----a-w- c:\windows\system32\drivers\dwlkbf.sys

2011-01-17 02:44:52 -------- d-----w- c:\docume~1\alluse~1\applic~1\Macrium

2011-01-17 02:43:40 -------- d-----w- c:\program files\Macrium

==================== Find3M ====================

2011-02-12 19:32:58 348160 ----a-w- c:\windows\system32\msvcr71.dll

2011-02-07 19:46:11 534477 ----a-w- c:\windows\system32\Photo-Collage.scr

2011-01-21 14:44:37 439296 ----a-w- c:\windows\system32\shimgvw.dll

2011-01-07 14:09:02 290048 ----a-w- c:\windows\system32\atmfd.dll

2010-12-31 13:10:33 1854976 ----a-w- c:\windows\system32\win32k.sys

2010-12-29 11:51:02 843568 ----a-w- c:\windows\system32\CoziScreensaver.scr

2010-12-24 12:03:49 602464 ----a-w- C:\YontooClientSetup.exe

2010-12-22 12:34:28 301568 ----a-w- c:\windows\system32\kerberos.dll

2010-12-20 23:59:20 916480 ----a-w- c:\windows\system32\wininet.dll

2010-12-20 23:59:19 43520 ----a-w- c:\windows\system32\licmgr10.dll

2010-12-20 23:59:19 1469440 ------w- c:\windows\system32\inetcpl.cpl

2010-12-20 17:26:00 730112 ----a-w- c:\windows\system32\lsasrv.dll

2010-12-20 12:55:26 385024 ----a-w- c:\windows\system32\html.iec

2010-12-14 13:43:44 31552 ----a-w- c:\windows\system32\TURegOpt.exe

2010-12-14 13:39:10 29504 ----a-w- c:\windows\system32\uxtuneup.dll

2010-12-09 15:15:09 718336 ----a-w- c:\windows\system32\ntdll.dll

2010-12-09 14:30:22 33280 ----a-w- c:\windows\system32\csrsrv.dll

2010-12-09 13:38:47 2192768 ----a-w- c:\windows\system32\ntoskrnl.exe

2010-12-09 13:07:05 2069376 ----a-w- c:\windows\system32\ntkrnlpa.exe

2010-11-24 02:22:28 809079 ----a-w- C:\FPsetup.exe

2010-11-18 18:12:44 81920 ----a-w- c:\windows\system32\isign32.dll

============= FINISH: 23:43:13.03 ===============

Link to post
Share on other sites

Hi!

Your problem is due to two things - infection and modified Windows Registry.

I think a more serious problem is that the modified registry. You have a lot, really a lot of registry cleanrs could and even I think are seriously damaged Windows Registry. Let's take a look at the list of installed registry cleaners:

1-Click PC Fix v4

1 Click Fixer PLUS

360 Amigo System Speedup Free

Active PC Optimizer 1.0

Acleaner

Advanced Registry Optimizer

Aiseesoft Registry Optimizer

Free Registry Fix 5.6

My Faster PC

PC Cleaner v2.0

PC Error Eliminator

PC Power Suite

PC Registry Cleaner v3.0

PC SpeedScan Pro

RegDefense

Registry Fix 3.0.2

Registry Healer 4.5.0 uninstall

Registry Optimizer 2007

Registry Optimizer Free

RegUtility v4.0

SlimCleaner

Smart Cleaner

Your Free Registry Cleaner 3.9

Even once you get them started, it's more than enough to make a bunch of havoc. I saw some traces of malware too.

The combination of both problems is not good but if you want I could try to do whatever I can to fix things, at least some.

It's your choise!

Link to post
Share on other sites

Guest name cool

HI,

I've ('remove some of the programs but there is a serious problem' when I remove these programs through the Add / Remove, some have been removed, but there are programs that run from the desktop ', but are not present in the list of Windows programs.

And also there are programs could not Malwarebytes 'Anti-Malware detected or even detect registry entries. Most "and the software' it turned out to be Rogue applications, causing many of infection.

Link to post
Share on other sites

Step 1

Please, uninstall the following applications:

  1. ALOT Toolbar
  2. Ant.com IE add-on
  3. 1-Click PC Fix v4
  4. 1 Click Fixer PLUS
  5. 360 Amigo System Speedup Free
  6. Active PC Optimizer 1.0
  7. Acleaner
  8. Advanced Registry Optimizer
  9. Aiseesoft Registry Optimizer
  10. Free Registry Fix 5.6
  11. My Faster PC
  12. PC Cleaner v2.0
  13. PC Error Eliminator
  14. PC Power Suite
  15. PC Registry Cleaner v3.0
  16. PC SpeedScan Pro
  17. RegDefense
  18. Registry Fix 3.0.2
  19. Registry Healer 4.5.0 uninstall
  20. Registry Optimizer 2007
  21. Registry Optimizer Free
  22. RegUtility v4.0
  23. SlimCleaner
  24. Smart Cleaner
  25. Your Free Registry Cleaner 3.9

You can read, how to do this here:

Step 2

I see the Ask Toolbar in your log.

I strongly recommend you remove Ask Toolbar from your computer because:

  • It promotes its toolbars on sites targeted at kids.
  • It promotes its toolbars through ads that appear to be part of other companies' sites.
  • It promotes its toolbars through other companies' spyware.
  • It is Installed without any disclosure whatsoever and without any consent from the user whatsoever.
    [gBd-It Solicits installations via "deceptive door openers" that do not accurately describe the offer; failing to affirmatively show a license agreement; linking to a EULA via an off-screen link.
  • It makes confusing changes to user's browsers -- increasing Ask's revenues while taking users to pages they didn't intend to visit.

You can read more about Ask.com here

To remove it:

Click Start-->-Control Panel-->Programs and Features

Click on the program name AskBarDis to highlight it

From the menu at the top, select Uninstall or Remove.

Please reboot the computer.

Finally, post a new fresh DDS log file with Attach.txt

Link to post
Share on other sites

  • Launch Malwarebytes' Anti-Malware
  • Go to Update" tab and select Check for Updates.
  • Go to Scanner tab and select Perform Quick Scan, then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
    sAKgBd-The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.

Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.

In your next reply, please post the following logs:

  1. Malwarebytes' Anti-Malware log
  2. a new fresh DDS log only

Link to post
Share on other sites

Guest name cool

Malwarebytes' Anti-Malware 1.50.1.1100

www.malwarebytes.org

Database version: 5882

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

2/26/2011 3:41:10 PM

mbam-log-2011-02-26 (15-41-10).txt

Scan type: Quick scan

Objects scanned: 147882

Time elapsed: 13 minute(s), 27 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 2

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 2

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_CURRENT_USER\SOFTWARE\WhiteSmoke (PUP.Whitesmoke) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\WhiteSmoke (PUP.Whitesmoke) -> Quarantined and deleted successfully.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

c:\documents and settings\BTC User\Desktop\setupgamevance.exe (PUP.GamesVance) -> Quarantined and deleted successfully.

c:\RECYCLER\s-1-5-21-1645522239-789336058-839522115-1003\Dc1.exe (PUP.WhiteSmoke) -> Quarantined and deleted successfully.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-12-12.02)

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume1

Install Date: 10/20/2010 7:35:23 PM

System Uptime: 2/26/2011 3:42:18 PM (0 hours ago)

Motherboard: Hewlett-Packard | | 30D5

Processor: Intel® Celeron® M CPU 440 @ 1.86GHz | U10 | 1862/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 33 GiB total, 23.399 GiB free.

D: is FIXED (NTFS) - 41 GiB total, 32.847 GiB free.

E: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP41: 2/9/2011 12:20:12 AM - System Checkpoint

RP42: 2/9/2011 7:12:22 AM - Advanced Registry Optimizer 2010 - Before Installation

RP43: 2/9/2011 7:12:54 AM - ADVANCED REGISTRY OPTIMIZER 2010- FIRST RUN

RP44: 2/9/2011 7:15:10 AM - Advanced Registry Optimizer 2010 Wed, Feb 09, 11 07:15

RP45: 2/9/2011 7:15:34 AM - Advanced Registry Optimizer 2010 - Before Optimize

RP46: 2/9/2011 7:25:41 AM - Installed MultiCycle AV for Windows Demo

RP47: 2/9/2011 7:54:48 AM - Installed PC Registry Cleaner

RP48: 2/9/2011 7:56:35 AM - Installed Pc Optimizer 360 setup

RP49: 2/9/2011 8:21:18 AM - Installed AV Mix Master 3

RP50: 2/9/2011 8:24:41 AM - Installed WOT for Internet Explorer

RP51: 2/9/2011 8:26:12 AM - Installed UpdateStar

RP52: 2/11/2011 1:36:12 AM - System Checkpoint

RP53: 2/12/2011 5:37:03 PM - Software Distribution Service 3.0

RP54: 2/12/2011 7:42:12 PM - Removed SlimCleaner

RP55: 2/12/2011 7:42:21 PM - Installed SlimCleaner

RP56: 2/14/2011 5:11:12 PM - Removed HiYo.

RP57: 2/15/2011 4:31:50 PM - Installed Java 6 Update 23

RP58: 2/17/2011 2:13:28 AM - ComboFix created restore point

RP59: 2/17/2011 1:29:21 PM - Removed Ant.com IE add-on

RP60: 2/17/2011 1:32:10 PM - Removed Cozi

RP61: 2/17/2011 1:34:02 PM - Removed Ask Toolbar.

RP62: 2/17/2011 1:35:29 PM - Removed WinShredder

RP63: 2/17/2011 1:37:50 PM - Removed Super Ad Blocker

RP64: 2/17/2011 1:45:52 PM - Removed PC SpeedScan Pro

RP65: 2/17/2011 1:53:21 PM - Removed SlimCleaner

RP66: 2/19/2011 5:52:12 PM - System Checkpoint

RP67: 2/19/2011 7:54:29 PM - Installed Java 6 Update 24

RP68: 2/21/2011 11:00:22 AM - System Checkpoint

RP69: 2/22/2011 2:09:27 PM - System Checkpoint

RP70: 2/24/2011 11:56:41 PM - Removed Kaspersky Internet Security 2011.

RP71: 2/26/2011 12:35:06 AM - System Checkpoint

==== Installed Programs ======================

???? ??? Windows Live

???? ??????? ?? Windows Live

???? ??????? Windows Live Upload Tool

???? Windows Live

????? ????? ?????? ??? Windows Live

ACDSee Photo Manager 12

Adobe Flash Player 10 ActiveX

ALTools Update

ALZip

Ask Toolbar

Broadcom 802.11 Wireless LAN Adapter

Capture&Send

CCleaner

Conduit Engine

Conexant HD Audio

Deskman 9.4

DivX Setup

Final Uninstaller

GOM Player

Google Update Helper

HDAUDIO Soft Data Fax Modem with SmartCP

HijackThis 2.0.2

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows XP (KB954550-v5)

Hotspot Shield 1.57

HP Product Detection

Image Resizer Powertoy for Windows XP

iMesh

Intel® Graphics Media Accelerator Driver

Intel® PRO Network Connections Drivers

IrfanView (remove only)

Java Auto Updater

Java 6 Update 24

Junk Mail filter update

Macrium Reflect - Free Edition

Malwarebytes' Anti-Malware

Masterra PostSmile 7.0

Messenger Plus! 5

MessengerDiscovery 2.5.95

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 SP1

Microsoft Application Error Reporting

Microsoft Choice Guard

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729

Mozilla Firefox (3.6.13)

MSVCRT

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

PageRage 1.10.01

PageRage Toolbar

PC Guard for Win32 V5.06 DEMO

Plus! Image

RealNetworks - Microsoft Visual C++ 2008 Runtime

RealPlayer

RealUpgrade 1.1

runtime

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

Security Update for Windows Internet Explorer 8 (KB2360131)

Security Update for Windows Internet Explorer 8 (KB2416400)

Security Update for Windows Internet Explorer 8 (KB2482017)

Security Update for Windows Internet Explorer 8 (KB971961)

Security Update for Windows Internet Explorer 8 (KB981332)

Security Update for Windows Internet Explorer 8 (KB982381)

Security Update for Windows Media Player (KB973540)

Security Update for Windows Media Player (KB975558)

Security Update for Windows Media Player (KB978695)

Security Update for Windows Media Player (KB979402)

Security Update for Windows XP (KB956803)

Security Update for Windows XP (KB956844)

Security Update for Windows XP (KB958644)

Security Update for Windows XP (KB959426)

Security Update for Windows XP (KB960225)

Security Update for Windows XP (KB960803)

Security Update for Windows XP (KB960859)

Security Update for Windows XP (KB961501)

Security Update for Windows XP (KB969059)

Security Update for Windows XP (KB970238)

Security Update for Windows XP (KB971468)

Security Update for Windows XP (KB971657)

Security Update for Windows XP (KB972270)

Security Update for Windows XP (KB973507)

Security Update for Windows XP (KB973869)

Security Update for Windows XP (KB974112)

Security Update for Windows XP (KB974318)

Security Update for Windows XP (KB974392)

Security Update for Windows XP (KB974571)

Security Update for Windows XP (KB975025)

Security Update for Windows XP (KB975467)

Security Update for Windows XP (KB975560)

Security Update for Windows XP (KB975561)

Security Update for Windows XP (KB975562)

Security Update for Windows XP (KB975713)

Security Update for Windows XP (KB977914)

Security Update for Windows XP (KB978037)

Security Update for Windows XP (KB978338)

Security Update for Windows XP (KB978542)

Security Update for Windows XP (KB978601)

Security Update for Windows XP (KB978706)

Security Update for Windows XP (KB979309)

Security Update for Windows XP (KB979482)

Security Update for Windows XP (KB979559)

Security Update for Windows XP (KB979683)

Security Update for Windows XP (KB980218)

Security Update for Windows XP (KB980232)

Segoe UI

Snagit 10

Spytech SpyAgent

SUPERAntiSpyware

TuneUp Utilities 2011

TuneUp Utilities Language Pack (en-US)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Windows Internet Explorer 8 (KB976662)

Update for Windows XP (KB967715)

Update for Windows XP (KB968389)

Update for Windows XP (KB973687)

Update for Windows XP (KB973815)

VC80CRTRedist - 8.0.50727.4053

WebFldrs XP

Windows Genuine Advantage Notifications (KB905474)

Windows Genuine Advantage Validation Tool (KB892130)

Windows Internet Explorer 8

Windows Live Communications Platform

Windows Live Essentials

Windows Live Messenger

Windows Live Writer

Windows Media Format 11 runtime

Windows Media Player 11

==== Event Viewer Messages From Past Week ========

2/26/2011 8:20:43 AM, error: Dhcp [1002] - The IP address lease 10.89.40.25 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.77.127.254 (The DHCP Server sent a DHCPNACK message).

2/26/2011 12:21:48 PM, error: Dhcp [1002] - The IP address lease 10.77.120.18 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.54.63.254 (The DHCP Server sent a DHCPNACK message).

2/26/2011 1:44:18 PM, error: Dhcp [1002] - The IP address lease 10.47.96.90 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.74.127.254 (The DHCP Server sent a DHCPNACK message).

2/26/2011 1:28:23 PM, error: Dhcp [1002] - The IP address lease 10.54.56.4 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.47.103.254 (The DHCP Server sent a DHCPNACK message).

2/25/2011 12:49:29 AM, error: Service Control Manager [7034] - The TuneUp Utilities Service service terminated unexpectedly. It has done this 1 time(s).

2/25/2011 12:49:29 AM, error: Service Control Manager [7034] - The Tippers Update Service service terminated unexpectedly. It has done this 1 time(s).

2/25/2011 12:49:29 AM, error: Service Control Manager [7034] - The Macrium Reflect Image Mounting Service service terminated unexpectedly. It has done this 1 time(s).

2/25/2011 12:49:29 AM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).

2/25/2011 12:49:29 AM, error: Service Control Manager [7031] - The Hotspot Shield Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

2/25/2011 12:49:29 AM, error: Service Control Manager [7031] - The Hotspot Shield Routing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

2/25/2011 12:43:52 PM, error: Dhcp [1002] - The IP address lease 10.88.120.25 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.75.135.254 (The DHCP Server sent a DHCPNACK message).

2/25/2011 12:36:44 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss SABKUTIL SASDIFSV SASKUTIL Tcpip

2/25/2011 12:36:44 AM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2011 12:36:44 AM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2011 12:36:44 AM, error: Service Control Manager [7001] - The Hotspot Shield Service service depends on the DHCP Client service which failed to start because of the following error: The dependency service or group failed to start.

2/25/2011 12:36:44 AM, error: Service Control Manager [7001] - The fssfltr service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2011 12:36:44 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2011 12:36:44 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.

2/25/2011 12:36:11 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}

2/25/2011 12:36:09 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

2/25/2011 1:46:52 PM, error: Dhcp [1002] - The IP address lease 10.75.128.45 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.89.47.254 (The DHCP Server sent a DHCPNACK message).

2/24/2011 9:43:12 PM, error: Dhcp [1002] - The IP address lease 10.62.64.111 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.88.127.254 (The DHCP Server sent a DHCPNACK message).

2/24/2011 9:43:03 PM, error: Dhcp [1002] - The IP address lease 10.62.48.107 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.62.71.254 (The DHCP Server sent a DHCPNACK message).

2/24/2011 9:01:03 AM, error: Dhcp [1002] - The IP address lease 10.42.72.59 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.87.15.254 (The DHCP Server sent a DHCPNACK message).

2/24/2011 7:36:24 PM, error: Dhcp [1002] - The IP address lease 10.65.64.10 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.62.55.254 (The DHCP Server sent a DHCPNACK message).

2/24/2011 3:51:34 PM, error: Dhcp [1002] - The IP address lease 10.87.8.14 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.65.71.254 (The DHCP Server sent a DHCPNACK message).

2/23/2011 9:36:32 AM, error: Dhcp [1002] - The IP address lease 10.79.24.8 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.64.95.254 (The DHCP Server sent a DHCPNACK message).

2/23/2011 7:09:16 AM, error: Dhcp [1002] - The IP address lease 10.79.112.61 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.79.31.254 (The DHCP Server sent a DHCPNACK message).

2/23/2011 11:44:45 PM, error: Dhcp [1002] - The IP address lease 10.70.24.35 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.42.79.254 (The DHCP Server sent a DHCPNACK message).

2/23/2011 11:35:05 PM, error: Dhcp [1002] - The IP address lease 10.75.48.27 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.70.31.254 (The DHCP Server sent a DHCPNACK message).

2/23/2011 10:52:55 PM, error: Dhcp [1002] - The IP address lease 10.79.32.98 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.75.55.254 (The DHCP Server sent a DHCPNACK message).

2/23/2011 10:39:40 PM, error: Dhcp [1002] - The IP address lease 10.68.16.18 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.79.39.254 (The DHCP Server sent a DHCPNACK message).

2/23/2011 10:18:50 PM, error: Dhcp [1002] - The IP address lease 10.64.88.7 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.68.23.254 (The DHCP Server sent a DHCPNACK message).

2/22/2011 9:54:01 AM, error: Dhcp [1002] - The IP address lease 10.79.72.16 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.74.135.254 (The DHCP Server sent a DHCPNACK message).

2/22/2011 8:31:26 AM, error: Dhcp [1002] - The IP address lease 10.62.96.107 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.79.79.254 (The DHCP Server sent a DHCPNACK message).

2/22/2011 4:22:03 PM, error: Dhcp [1002] - The IP address lease 10.78.56.58 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.69.87.254 (The DHCP Server sent a DHCPNACK message).

2/22/2011 4:06:13 PM, error: Dhcp [1002] - The IP address lease 10.78.112.71 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.78.63.254 (The DHCP Server sent a DHCPNACK message).

2/22/2011 3:56:18 PM, error: Dhcp [1002] - The IP address lease 10.81.32.14 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.78.119.254 (The DHCP Server sent a DHCPNACK message).

2/22/2011 2:28:29 PM, error: Service Control Manager [7000] - The SASDIFSV service failed to start due to the following error: Cannot create a file when that file already exists.

2/22/2011 12:07:06 PM, error: Dhcp [1002] - The IP address lease 10.74.128.6 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.81.39.254 (The DHCP Server sent a DHCPNACK message).

2/21/2011 8:27:16 AM, error: Dhcp [1002] - The IP address lease 10.79.8.41 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.77.111.254 (The DHCP Server sent a DHCPNACK message).

2/21/2011 8:08:50 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SABKUTIL

2/21/2011 8:05:41 AM, error: Dhcp [1002] - The IP address lease 10.65.72.49 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.79.15.254 (The DHCP Server sent a DHCPNACK message).

2/21/2011 8:00:42 AM, error: PSched [14107] - QoS [Adapter {2FA42387-CEB0-4BA7-B015-DBC954DDF511}]: The Packet Scheduler could not initialize the virtual miniport with NDIS.

2/21/2011 8:00:40 AM, error: PSched [14107] - QoS [Adapter NDISWANIP]: The Packet Scheduler could not initialize the virtual miniport with NDIS.

2/21/2011 4:59:36 PM, error: Dhcp [1002] - The IP address lease 10.62.64.31 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.62.103.254 (The DHCP Server sent a DHCPNACK message).

2/21/2011 12:59:21 PM, error: Dhcp [1002] - The IP address lease 10.73.88.13 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.62.71.254 (The DHCP Server sent a DHCPNACK message).

2/21/2011 12:25:41 PM, error: Dhcp [1002] - The IP address lease 10.77.104.19 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.73.95.254 (The DHCP Server sent a DHCPNACK message).

2/20/2011 9:35:55 PM, error: Dhcp [1002] - The IP address lease 10.70.8.37 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.65.79.254 (The DHCP Server sent a DHCPNACK message).

2/20/2011 9:09:25 PM, error: Dhcp [1002] - The IP address lease 10.80.56.6 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.70.15.254 (The DHCP Server sent a DHCPNACK message).

2/20/2011 9:09:10 PM, error: Dhcp [1002] - The IP address lease 10.78.96.31 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.80.63.254 (The DHCP Server sent a DHCPNACK message).

2/20/2011 8:38:05 PM, error: Dhcp [1002] - The IP address lease 10.69.88.61 for the Network Card with network address 00FF3AF73366 has been denied by the DHCP server 10.78.103.254 (The DHCP Server sent a DHCPNACK message).

2/20/2011 7:48:00 PM, error: Service Control Manager [7006] - The ScRegSetValueExW call failed for Type with the following error: Access is denied.

2/20/2011 7:40:41 PM, error: Service Control Manager [7034] - The Hotspot Shield Monitoring Service service terminated unexpectedly. It has done this 1 time(s).

2/20/2011 7:40:22 PM, error: Service Control Manager [7034] - The Hotspot Shield Routing Service service terminated unexpectedly. It has done this 1 time(s).

2/20/2011 3:32:24 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the TuneUp.UtilitiesSvc service.

2/19/2011 10:36:13 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Kaspersky Anti-Virus Service service to connect.

2/19/2011 10:36:13 PM, error: Service Control Manager [7000] - The Kaspersky Anti-Virus Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

2/19/2011 10:35:46 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.

2/19/2011 1:39:02 PM, error: SideBySide [59] - Resolve Partial Assembly failed for Microsoft.VC80.ATL. Reference error message: The referenced assembly is not installed on your system. .

2/19/2011 1:39:02 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\DivX\DivX Transcode Engine\mtw178.ddc. Reference error message: The operation completed successfully. .

2/19/2011 1:39:02 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\DivX\DivX Transcode Engine\gzHF330.ddc. Reference error message: The operation completed successfully. .

2/19/2011 1:39:02 PM, error: SideBySide [32] - Dependent Assembly Microsoft.VC80.ATL could not be found and Last Error was The referenced assembly is not installed on your system.

==== End Of File ===========================

DDS (Ver_10-12-12.02) - NTFSx86

Run by BTC User at 15:50:37.06 on Sat 02/26/2011

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_24

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.503.148 [GMT 3:00]

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Hotspot Shield\bin\openvpnas.exe

C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe

C:\Program Files\Hotspot Shield\bin\hsswd.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\Macrium\Reflect\ReflectService.exe

C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe

C:\Program Files\Trustier\TrustierUpdateService.exe

C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe

C:\WINDOWS\system32\wscntfy.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Hotspot Shield\bin\openvpntray.exe

C:\Program Files\internet explorer\iexplore.exe

C:\Program Files\internet explorer\iexplore.exe

C:\Documents and Settings\BTC User\Desktop\vhfffffh\dds.com

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/

TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background

mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray

mPolicies-explorer: <NO NAME> =

mPolicies-explorer: NoStartMenuMyMusic = 0 (0x0)

mPolicies-explorer: NoSMMyPictures = 0 (0x0)

mPolicies-system: <NO NAME> =

mPolicies-system: HideFastUserSwitching = 0 (0x0)

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

Notify: igfxcui - igfxdev.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\btcuse~1\applic~1\mozilla\firefox\profiles\3tmzhj1l.default\

FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=IEFM1&q=

FF - prefs.js: browser.search.selectedEngine - Foxtab Web Search

FF - prefs.js: browser.startup.homepage - hxxp://search.foxtab.com/?s=0&chnl=irn&cd=2XzutCtN2Y1L1QzutDtDtC0AyBtA0DtA0AtD0ByEtN0C0CzutN0D0TzutBtDtCtCtDtBtCyC&cr=911339592

FF - prefs.js: keyword.URL - hxxp://www.searchqu.com/web?src=ffb&systemid=403&q=

FF - prefs.js: network.proxy.type - 0

FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll

FF - plugin: c:\documents and settings\btc user\application data\mozilla\plugins\np-mswmp.dll

FF - plugin: c:\program files\couponalert_2pei\installr\1.bin\NP2pEISb.dll

FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll

FF - plugin: c:\program files\google\update\1.2.183.23\npGoogleOneClick8.dll

FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\program files\mozilla firefox\plugins\NPAskSBr.dll

FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

FF - Ext: afurladvisor: afurladvisor@anchorfree.com - c:\program files\mozilla firefox\extensions\afurladvisor@anchorfree.com

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}

FF - Ext: GigaSize Toolbar: {89DE49C7-E350-4C8E-885B-A41F859B93C4} - %profile%\extensions\{89DE49C7-E350-4C8E-885B-A41F859B93C4}

FF - Ext: FoxTab: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a} - %profile%\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}

FF - Ext: Ask Toolbar: toolbar@ask.com - %profile%\extensions\toolbar@ask.com

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension

FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\Ext

FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\divx\divx plus web player\firefox\html5video

FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - c:\program files\divx\divx plus web player\firefox\wpa

FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff

============= SERVICES / DRIVERS ===============

R0 pssnap;Paramount Software Snapshot Filter;c:\windows\system32\drivers\pssnap.sys [2011-1-17 16024]

R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]

R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656]

R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2010-11-9 54760]

R2 HssWd;Hotspot Shield Monitoring Service;c:\program files\hotspot shield\bin\hsswd.exe -product hss --> c:\program files\hotspot shield\bin\hsswd.exe -product HSS [?]

R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-2-20 363344]

R2 ReflectService;Macrium Reflect Image Mounting Service;c:\program files\macrium\reflect\ReflectService.exe [2011-1-17 220824]

R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2011\TuneUpUtilitiesService32.exe [2010-12-14 1517376]

R2 UPDATE_SERVICE_ID;Tippers Update Service;c:\program files\trustier\TrustierUpdateService.exe [2010-11-2 180064]

R3 dwlkbf;DwlKbf;c:\windows\system32\drivers\dwlkbf.sys [2011-1-17 3712]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-2-20 20952]

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2011\TuneUpUtilitiesDriver32.sys [2010-10-7 10064]

S1 SABKUTIL;SABKUTIL;\??\c:\program files\superadblocker.com\super ad blocker\sabkutil.sys --> c:\program files\superadblocker.com\super ad blocker\SABKUTIL.sys [?]

S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-2-14 136176]

S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [2011-2-9 23456]

S3 PSMounter;Macrium Reflect Image Explorer Service;c:\windows\system32\drivers\psmounter.sys [2011-1-17 45208]

S4 Deskman;Deskman;c:\program files\deskman\deskman.exe [2011-2-17 3131640]

=============== Created Last 30 ================

2011-02-26 11:26:51 2345656 ----a-w- C:\kavremover.exe

2011-02-22 14:19:11 -------- d-----w- c:\program files\Conduit

2011-02-22 14:19:10 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\PageRage

2011-02-22 14:19:08 -------- d-----w- c:\program files\ConduitEngine

2011-02-22 14:19:08 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\ConduitEngine

2011-02-22 14:19:07 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Conduit

2011-02-22 14:18:42 -------- d-----w- c:\program files\PageRage

2011-02-21 20:49:24 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\AskToolbar

2011-02-21 20:49:10 -------- d-----w- c:\program files\Ask.com

2011-02-21 20:34:33 -------- d-----w- c:\docume~1\alluse~1\applic~1\hssff

2011-02-21 08:50:00 -------- d-----w- c:\docume~1\alluse~1\applic~1\WCLD8Kw

2011-02-21 08:49:57 -------- d-----w- c:\program files\PC Guard for Win32 V5 DEMO

2011-02-20 18:38:23 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2011-02-20 18:38:19 20952 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-02-20 16:47:35 506880 ----a-w- c:\program files\mozilla firefox\extensions\afurladvisor@anchorfree.com\components\afurladvisor.dll

2011-02-20 16:47:32 -------- d-----w- c:\program files\Hotspot Shield

2011-02-19 10:38:46 -------- d-----w- c:\program files\common files\DivX Shared

2011-02-19 10:30:41 -------- d-----w- c:\program files\DivX

2011-02-19 10:29:02 -------- d-----w- c:\docume~1\alluse~1\applic~1\DivX

2011-02-19 01:31:46 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Malwarebytes

2011-02-19 01:31:43 -------- d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes

2011-02-19 01:31:39 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2011-02-17 19:32:19 -------- d-----w- c:\program files\Deskman

2011-02-17 19:32:19 -------- d-----w- c:\docume~1\alluse~1\applic~1\Deskman9

2011-02-16 16:15:35 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\FlickrNet

2011-02-16 16:14:07 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Plusimage

2011-02-16 16:13:53 -------- d-----w- c:\program files\Plus! Image

2011-02-16 13:37:12 -------- d-----w- c:\docume~1\alluse~1\applic~1\Spotmau

2011-02-16 13:37:00 -------- d-----w- c:\docume~1\btcuse~1\applic~1\spotmau

2011-02-16 13:36:59 -------- d-----w- c:\docume~1\alluse~1\applic~1\pc health check

2011-02-16 13:36:54 -------- d-----w- c:\docume~1\alluse~1\applic~1\TuneUp360

2011-02-16 13:36:47 -------- d-----w- c:\program files\TuneUp360

2011-02-16 11:54:20 -------- d-----w- c:\program files\Quick Web Player

2011-02-15 13:32:23 472808 ----a-w- c:\program files\mozilla firefox\plugins\npdeployJava1.dll

2011-02-14 15:24:40 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Temp

2011-02-14 15:24:28 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Google

2011-02-14 14:17:05 -------- d-----w- c:\docume~1\alluse~1\applic~1\Messenger Plus!

2011-02-14 14:16:48 -------- d-----w- c:\program files\Yuna Software

2011-02-14 14:08:12 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Axialis

2011-02-12 19:33:43 11776 ----a-w- c:\program files\mozilla firefox\plugins\nprjplug.dll

2011-02-12 19:33:30 -------- d-----w- c:\program files\common files\xing shared

2011-02-12 19:33:18 150712 ----a-w- c:\program files\mozilla firefox\plugins\nppl3260.dll

2011-02-12 19:33:04 100864 ----a-w- c:\program files\mozilla firefox\plugins\nprpjplug.dll

2011-02-12 19:32:58 499712 ----a-w- c:\windows\system32\msvcp71.dll

2011-02-12 14:51:58 -------- d-----w- c:\docume~1\alluse~1\applic~1\Ant.com

2011-02-12 14:38:28 -------- d-----w- c:\program files\MSXML 4.0

2011-02-12 14:13:02 -------- d--h--w- c:\windows\$hf_mig$

2011-02-12 08:43:49 2329600 ----a-w- c:\windows\system32\TUKernel.exe

2011-02-11 19:46:52 -------- d-----w- C:\New Folder

2011-02-09 06:31:54 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Windows Live Writer

2011-02-09 06:31:41 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Windows Live Writer

2011-02-09 05:28:31 -------- d-----w- c:\program files\Wise Registry Cleaner

2011-02-09 05:27:41 -------- d-----w- c:\program files\Trustier

2011-02-09 05:27:41 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\blast

2011-02-09 05:27:10 -------- d-----w- c:\docume~1\alluse~1\applic~1\Hagel Technologies

2011-02-09 05:26:14 -------- d-----w- c:\docume~1\btcuse~1\applic~1\UpdateStar

2011-02-09 05:25:52 -------- d-----w- c:\program files\Wallpaper Show

2011-02-09 05:24:42 -------- d-----w- c:\program files\WOT

2011-02-09 05:22:35 -------- d-----w- c:\docume~1\alluse~1\applic~1\SpeedBit

2011-02-09 05:22:20 -------- d-----w- c:\docume~1\btcuse~1\applic~1\SpeedBit

2011-02-09 05:22:04 24683 ----a-w- c:\program files\mozilla firefox\plugins\NPAskSBr.dll

2011-02-09 05:22:01 -------- d-----w- c:\program files\AskSBar

2011-02-09 05:22:00 -------- d-----w- c:\program files\SpeedOptimizer

2011-02-09 05:21:20 -------- d-----w- c:\program files\AV Soft

2011-02-09 05:18:15 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Smart PC Solutions

2011-02-09 05:16:42 -------- d-----w- c:\program files\EMCO

2011-02-09 05:16:15 -------- d-----w- c:\docume~1\alluse~1\applic~1\RFA_Backups

2011-02-09 05:13:58 -------- d-----w- C:\SoftJock

2011-02-09 05:12:40 815104 ----a-w- c:\windows\system32\xvidcore.dll

2011-02-09 05:12:40 77824 ----a-w- c:\windows\system32\xvid.ax

2011-02-09 05:12:40 180224 ----a-w- c:\windows\system32\xvidvfw.dll

2011-02-09 05:12:40 -------- d-----w- c:\program files\Xvid

2011-02-09 05:12:38 -------- d-----w- c:\program files\FDRLab

2011-02-09 05:09:47 -------- d-----w- c:\docume~1\alluse~1\applic~1\RegCure

2011-02-09 05:09:22 -------- d-----w- c:\docume~1\alluse~1\applic~1\RegInOut

2011-02-09 05:09:20 -------- d-----w- c:\windows\RegInOut

2011-02-09 05:09:11 -------- d-----w- c:\program files\RegInOut

2011-02-09 05:06:18 711168 ----a-w- c:\windows\is-4HCFK.exe

2011-02-09 05:06:17 94208 ----a-w- c:\windows\system32\vbalIml6.ocx

2011-02-09 05:06:17 65536 ----a-w- c:\windows\system32\vbalProgBar6.ocx

2011-02-09 05:06:17 61440 ----a-w- c:\windows\system32\mkcHyperlink.ocx

2011-02-09 05:06:17 262144 ----a-w- c:\windows\system32\vbaListView6.ocx

2011-02-09 05:06:17 200704 ----a-w- c:\windows\system32\vbalExpBar6.ocx

2011-02-09 05:04:06 -------- d-----w- c:\docume~1\btcuse~1\applic~1\PC Updater

2011-02-09 05:04:03 -------- d-----w- c:\program files\PC Updater

2011-02-09 05:02:50 -------- d-----w- c:\docume~1\btcuse~1\applic~1\PE Explorer

2011-02-09 05:02:20 -------- d-----w- c:\program files\PrivacyEraser Computing

2011-02-09 05:01:52 -------- d-----w- c:\program files\RegAce

2011-02-09 05:00:52 -------- d-----w- c:\docume~1\alluse~1\applic~1\RegAce

2011-02-09 05:00:48 -------- d-----w- c:\windows\RegAce

2011-02-09 05:00:48 -------- d-----w- c:\program files\gigasizetb

2011-02-09 05:00:48 -------- d-----w- c:\docume~1\btcuse~1\applic~1\gigasizetb

2011-02-09 05:00:37 -------- d-----w- c:\program files\RegAce System Suite

2011-02-09 05:00:16 -------- d-----w- c:\docume~1\btcuse~1\applic~1\PC Doc Pro

2011-02-09 04:57:02 -------- d-----w- c:\program files\PC Optimizer Trial

2011-02-09 04:56:36 -------- d-----w- c:\program files\Pc Optimizer 360

2011-02-09 04:55:51 -------- d-----w- c:\docume~1\alluse~1\applic~1\PC Optimizer Pro

2011-02-09 04:54:50 -------- d-----w- c:\program files\PC Registry Cleaner

2011-02-09 04:52:29 -------- d-----w- c:\program files\Softdiv MP3 to WAV Converter

2011-02-09 04:50:21 1852416 ----a-w- c:\windows\system32\wisoutlit.dll

2011-02-09 04:50:21 143360 ----a-w- c:\windows\system32\brjButtons.ocx

2011-02-09 04:50:21 -------- d-----w- c:\program files\wisco

2011-02-09 04:49:41 -------- d-----w- c:\docume~1\alluse~1\applic~1\FrontLine Registry Cleaner

2011-02-09 04:49:38 -------- d-----w- c:\program files\Frontline Registry Cleaner

2011-02-09 04:48:59 -------- d-----w- c:\program files\IE Password Recovery Master

2011-02-09 04:46:18 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Avanquest

2011-02-09 04:46:18 -------- d-----w- c:\docume~1\alluse~1\applic~1\Avanquest

2011-02-09 04:44:26 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\FreeFixer

2011-02-09 04:44:26 -------- d-----w- c:\docume~1\btcuse~1\applic~1\FreeFixer

2011-02-09 04:44:19 -------- d-----w- c:\program files\FreeFixer

2011-02-09 04:42:58 737280 ----a-w- c:\windows\iun6002.exe

2011-02-09 04:42:57 -------- d-----w- C:\PC-Checkup

2011-02-09 04:41:37 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Electronic Arts

2011-02-09 04:38:38 -------- d-----w- c:\docume~1\alluse~1\applic~1\FAQware

2011-02-09 04:38:37 -------- d-----w- c:\program files\FaultWire Manager

2011-02-09 04:34:43 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Innovative Solutions

2011-02-09 04:34:43 -------- d-----w- c:\docume~1\alluse~1\applic~1\Innovative Solutions

2011-02-09 04:29:49 -------- d-----w- c:\program files\DriverGuide DriverScan

2011-02-09 04:27:50 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys

2011-02-09 04:27:50 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\eSupport.com

2011-02-09 04:26:42 -------- d-----w- c:\program files\Moleskinsoft Disk Cleaner 2.4

2011-02-09 04:25:45 40960 ----a-r- c:\docume~1\btcuse~1\applic~1\microsoft\installer\{d652c372-e0a1-456f-80b6-aa3a5183a02c}\NewShortcut1_3F3FBB4316564CE6A509D75C203BC969_2.exe

2011-02-09 04:25:41 -------- d-----w- c:\program files\Phoenix Flow Systems

2011-02-09 04:24:58 83144 ----a-w- c:\windows\system32\picclp32.ocx

2011-02-09 04:24:58 -------- d-----w- c:\program files\Evidence-Blaster

2011-02-09 04:21:54 -------- d-----w- c:\program files\Crawler

2011-02-09 04:21:15 -------- d-----w- c:\program files\Box24

2011-02-09 04:17:54 -------- d-----w- c:\docume~1\alluse~1\applic~1\MFAData

2011-02-09 04:11:33 -------- d-----w- c:\docume~1\alluse~1\applic~1\APFill

2011-02-09 04:11:26 -------- d-----w- c:\docume~1\btcuse~1\applic~1\APFill

2011-02-09 04:10:58 -------- d-----w- c:\docume~1\btcuse~1\applic~1\AntiToolbar

2011-02-09 04:10:08 1060864 ----a-w- c:\windows\system32\mfc71.dll

2011-02-09 04:09:32 -------- d-----w- c:\program files\ALLPlayer

2011-02-09 04:05:47 -------- d-----w- c:\program files\ACleaner

2011-02-09 04:03:22 -------- d-----w- c:\program files\1-Click PC Fix v4

2011-02-09 04:01:52 -------- d-----w- c:\program files\Secure PC Solutions

2011-02-08 21:36:05 -------- d-----w- c:\docume~1\alluse~1\applic~1\Tarma Installer

2011-02-08 21:18:23 -------- d-----w- c:\windows\system32\wbem\Logs

2011-02-07 23:42:43 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\ACD Systems

2011-02-07 23:42:42 -------- d-----w- c:\docume~1\btcuse~1\applic~1\ACD Systems

2011-02-07 23:40:23 -------- d-----w- c:\docume~1\alluse~1\applic~1\ACD Systems

2011-02-07 23:39:56 -------- d-----w- c:\program files\common files\ACD Systems

2011-02-07 23:39:56 -------- d-----w- c:\program files\ACD Systems

2011-02-07 23:37:37 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Downloaded Installations

2011-02-07 22:43:16 -------- d-----w- c:\program files\RegDefense

2011-02-07 22:38:25 -------- d-----w- c:\program files\PCRegistryCleaner

2011-02-07 22:37:49 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Max Secure Software

2011-02-07 22:29:27 -------- d-----w- c:\program files\MWSnap

2011-02-07 22:27:18 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Oberon Media

2011-02-07 22:25:52 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Promosoft Corporation

2011-02-07 22:25:47 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\MyNetUniverse_Inc

2011-02-07 22:24:27 -------- d-----w- c:\docume~1\btcuse~1\applic~1\MsgCnf

2011-02-07 22:24:10 -------- d-----w- c:\windows\MyShoppingGenie

2011-02-07 22:20:24 -------- d-----w- c:\program files\Baidu

2011-02-07 22:19:29 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Bug Doctor

2011-02-07 22:15:16 -------- d-----w- c:\docume~1\btcuse~1\applic~1\RegistryOptimizerFree

2011-02-07 22:15:16 -------- d-----w- c:\docume~1\alluse~1\applic~1\RegistryOptimizerFree

2011-02-07 22:12:00 -------- d-----w- c:\docume~1\alluse~1\applic~1\RH_Backups

2011-02-07 22:06:03 -------- d-----w- c:\program files\Smart Cleaner

2011-02-07 22:03:28 18432 ----a-w- c:\windows\system32\winwatch.DLL

2011-02-07 22:03:28 155648 ----a-w- c:\windows\system32\addurl41.DLL

2011-02-07 22:01:23 -------- d--h--w- c:\docume~1\alluse~1\applic~1\sacache

2011-02-07 22:00:26 -------- d-----w- c:\docume~1\alluse~1\applic~1\AgentSS

2011-02-07 21:28:12 40960 ----a-w- c:\windows\system32\mxpvct23.dat

2011-02-07 21:28:12 36864 ----a-w- c:\windows\system32\symiasob.exe

2011-02-07 21:28:12 100688 ----a-w- c:\windows\system32\accSvcHst.exe

2011-02-07 21:28:11 -------- d-sh--r- c:\program files\SP10222010

2011-02-07 21:24:48 -------- d-----w- c:\docume~1\btcuse~1\applic~1\SuperAdBlocker.com

2011-02-07 21:23:40 -------- d-----w- c:\windows\system32\URTTemp

2011-02-07 21:23:39 -------- d-----w- c:\program files\SuperAdBlocker.com

2011-02-07 21:23:05 -------- d-----w- c:\program files\common files\Wise Installation Wizard

2011-02-07 21:10:40 -------- d-----w- c:\windows\WinSafe XP

2011-02-07 21:07:14 -------- d-----w- c:\docume~1\alluse~1\applic~1\SecTaskMan

2011-02-07 21:05:34 -------- d-----w- c:\docume~1\btcuse~1\applic~1\iolo

2011-02-07 21:05:34 -------- d-----w- c:\docume~1\alluse~1\applic~1\iolo

2011-02-07 21:03:04 -------- d-----w- c:\docume~1\btcuse~1\applic~1\SupportSoft

2011-02-07 21:02:46 -------- d-----w- c:\program files\common files\supportsoft

2011-02-07 20:54:37 -------- d-sh--w- c:\program files\TS

2011-02-07 20:54:37 -------- d-sh--w- c:\docume~1\alluse~1\applic~1\TS

2011-02-07 20:17:12 -------- d-----w- c:\docume~1\btcuse~1\applic~1\MessengerDiscovery 2

2011-02-07 20:15:52 -------- d-----w- c:\docume~1\alluse~1\applic~1\MessengerDiscovery 2

2011-02-07 20:15:51 -------- d-----w- c:\program files\MessengerDiscovery 2

2011-02-07 20:10:27 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\ant.com

2011-02-07 20:07:13 -------- d-----w- c:\docume~1\btcuse~1\applic~1\ScanSpyware

2011-02-07 20:06:26 90112 ----a-w- c:\windows\unvise32.exe

2011-02-07 20:00:57 -------- d-----w- c:\windows\KVLog

2011-02-07 19:59:44 299008 ----a-w- c:\windows\system32\EEGenFn1.dll

2011-02-07 19:59:43 40712 ----a-w- c:\windows\system32\eetransx.exe

2011-02-07 19:59:43 25864 ----a-w- c:\windows\system32\EEInstMngr.exe

2011-02-07 19:59:27 115920 ----a-w- c:\windows\system32\MSINET.ocx

2011-02-07 19:59:27 114696 ----a-w- c:\windows\system32\Fablock6.ocx

2011-02-07 19:59:26 28672 ----a-w- c:\windows\system32\MSGHOO32.OCX

2011-02-07 19:59:16 368912 ----a-w- c:\windows\system32\vbar332.dll

2011-02-07 19:58:24 -------- d-----w- c:\program files\Hitman Pro 3.5

2011-02-07 19:53:29 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Tific

2011-02-07 19:53:29 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Tific

2011-02-07 19:52:55 -------- d-----w- c:\docume~1\alluse~1\applic~1\Norton

2011-02-07 19:41:31 -------- d-----w- c:\program files\Ascentive

2011-02-07 19:36:54 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Microsys

2011-02-07 19:36:38 -------- d-----w- c:\program files\Microsys

2011-02-07 19:33:49 25088 ----a-w- c:\windows\system32\msxml3a.dll

2011-02-07 19:30:06 -------- d-----w- C:\ProgramData

2011-02-07 19:30:06 -------- d-----w- c:\program files\Angle Interactive

2011-02-07 19:25:52 -------- d-----w- c:\program files\TrustSoft AntiSpyware

2011-02-07 19:22:58 -------- d-----w- c:\windows\system32\DefenseWall HIPS

2011-02-07 19:22:49 -------- d-----w- c:\program files\DefenseWall

2011-02-07 19:16:41 -------- d-----w- c:\program files\AllMyNotes Organizer

2011-02-07 19:04:03 -------- d-----w- C:\?????

2011-02-06 12:49:21 -------- d-----w- c:\docume~1\btcuse~1\applic~1\Photo Collage Screensaver

2011-02-06 12:32:51 -------- d-----w- c:\docume~1\btcuse~1\locals~1\applic~1\Slimware Utilities Inc

2011-02-06 12:32:32 -------- d-----w- c:\program files\SlimCleaner

2011-02-06 12:29:04 -------- d-----w- c:\docume~1\btcuse~1\applic~1\ConsumerSoft

2011-02-06 12:28:58 -------- d-----w- c:\program files\ConsumerSoft

2011-02-06 12:23:56 -------- d-----w- c:\docume~1\alluse~1\applic~1\AntiSpyInfo

2011-01-29 20:10:46 -------- d-----w- c:\docume~1\alluse~1\applic~1\Keronsoft

2011-01-29 20:04:51 -------- d-----w- c:\program files\Active PC Optimizer

2011-01-28 13:24:54 -------- d-----w- c:\program files\GRETECH

2011-01-28 13:21:08 -------- d-----w- c:\program files\common files\scanner

2011-01-28 13:21:04 -------- d-----w- c:\docume~1\btcuse~1\applic~1\EmailNotifier

2011-01-28 13:21:04 -------- d-----w- c:\docume~1\alluse~1\applic~1\EmailNotifier

2011-01-28 13:21:03 -------- d-----w- c:\docume~1\btcuse~1\applic~1\vmntoolbar

2011-01-28 13:11:34 -------- d-----w- c:\program files\Babylon

2011-01-28 13:01:07 -------- d-----w- c:\program files\Internet TV

2011-01-28 12:57:15 57152 ----a-w- c:\windows\system32\drivers\toolkitdisk.sys

==================== Find3M ====================

2011-02-12 19:32:58 348160 ----a-w- c:\windows\system32\msvcr71.dll

2011-02-02 18:40:23 472808 ----a-w- c:\windows\system32\deployJava1.dll

2011-02-02 16:19:39 73728 ----a-w- c:\windows\system32\javacpl.cpl

2011-01-21 14:44:37 439296 ----a-w- c:\windows\system32\shimgvw.dll

2011-01-07 14:09:02 290048 ----a-w- c:\windows\system32\atmfd.dll

2010-12-31 13:10:33 1854976 ----a-w- c:\windows\system32\win32k.sys

2010-12-24 12:03:49 602464 ----a-w- C:\YontooClientSetup.exe

2010-12-22 12:34:28 301568 ----a-w- c:\windows\system32\kerberos.dll

2010-12-20 23:59:20 916480 ----a-w- c:\windows\system32\wininet.dll

2010-12-20 23:59:19 43520 ----a-w- c:\windows\system32\licmgr10.dll

2010-12-20 23:59:19 1469440 ------w- c:\windows\system32\inetcpl.cpl

2010-12-20 17:26:00 730112 ----a-w- c:\windows\system32\lsasrv.dll

2010-12-20 12:55:26 385024 ----a-w- c:\windows\system32\html.iec

2010-12-14 13:43:44 31552 ----a-w- c:\windows\system32\TURegOpt.exe

2010-12-14 13:39:10 29504 ----a-w- c:\windows\system32\uxtuneup.dll

2010-12-09 15:15:09 718336 ----a-w- c:\windows\system32\ntdll.dll

2010-12-09 14:30:22 33280 ----a-w- c:\windows\system32\csrsrv.dll

2010-12-09 13:38:47 2192768 ----a-w- c:\windows\system32\ntoskrnl.exe

2010-12-09 13:07:05 2069376 ----a-w- c:\windows\system32\ntkrnlpa.exe

============= FINISH: 15:51:24.71 ===============

Link to post
Share on other sites

Thanks! :lol:

  • Download OTL to your desktop. Otherwise, try OTL.com or OTL.scr .
  • Double click on the icon to run it. Make sure all other windows are closed to let it run uninterrupted.
  • -When the window appears, underneath Output at the top change it to Minimal Output.
  • Under the Standard Registry box change it to All.
  • Check the boxes beside LOP Check and Purity Check.
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply.

Once OTL has completed its first scan it will save notepad copies of the scans in the folder that OTL was started from. Unless set to produce an Extras log it will only produce OTL.txt in subsequent scans.

A copy of an OTL fix log is saved in a text file at

  • :\_OTL\Moved Files
    • in most cases this will be C:\_OTL\Moved Files

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.