Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Malware Problems

Started by Jigalow , Dec 22 2006 08:22 PM

  • Please log in to reply

#1
Jigalow
Posted 22 December 2006 - 08:22 PM

Jigalow

    Member

  • Member
  • PipPip
  • 21 posts
Hello everyone,
I got a few problems with my PC that I was hoping someone could help me with. I'll tell you what's going on and post my PC info afterwards. Ok, When I start my computer and log into windows, I get a message that says, "An exception has occured, mchtmled.dll" So I click ok cause thats all I can do. After being on for a while my computer starts running at 100% usage and slowing down tremendously. But, I found a way to speed it back up. This doesn't work everytime but most of the time I can open my task manager and end the explorer.exe task then start it back. this usually helps but not everytime.
I have F-Secure security suite from Charter and I run a scan and it always comes back with this one malware that it can't delete. I want to say its look2me but I'm not 100% that's what it says. Anyhow, it tells me that I need to log in as administrator and try to remove it that way. the only problem is My account is the Admin account. I've tried to log in under safe mode and do it that way and still to no avail.
My computer was preowned when I bought it. Therefore I got no disks with it or anything. the store clerk where I got it told me that it still had all the previous owners information and all on it and they didn't know how to get it off. So in other words, I got it cheap! I have also done a bit of upgrading to it also. ok, enough of the chit chat, Here's all the info that I can think to give you at this time. Sorry for the long post too. This is alot of info here.

DXDIAG INFO

------------------
System Information
------------------
Time of this report: 12/22/2006, 19:28:23
Machine name: USER-7AY5UIRPBQ
Operating System: Windows XP Home Edition (5.1, Build 2600) Service Pack 2 (2600.xpsp_sp2_gdr.050301-1519)
Language: English (Regional Setting: English)
System Manufacturer: Dell Computer Corporation
System Model: Dimension 2400
BIOS: Phoenix ROM BIOS PLUS Version 1.10 A05
Processor: Intel® Celeron® CPU 2.40GHz
Memory: 510MB RAM
Page File: 341MB used, 522MB available
Windows Dir: C:\WINDOWS
DirectX Version: DirectX 9.0c (4.09.0000.0904)
DX Setup Parameters: Not found
DxDiag Version: 5.03.2600.2180 32bit Unicode

------------
DxDiag Notes
------------
DirectX Files Tab: No problems found.
Display Tab 1: The file nv4_disp.dll is not digitally signed, which means that it has not been tested by Microsoft's Windows Hardware Quality Labs (WHQL). You may be able to get a WHQL logo'd driver from the hardware manufacturer.
Sound Tab 1: No problems found.
Music Tab: No problems found.
Input Tab: No problems found.
Network Tab: The registry information for the DirectPlay application 'Monster Truck Madness 2' is missing or damaged. You should reinstall that application.

--------------------
DirectX Debug Levels
--------------------
Direct3D: 0/4 (n/a)
DirectDraw: 0/4 (retail)
DirectInput: 0/5 (n/a)
DirectMusic: 0/5 (n/a)
DirectPlay: 0/9 (retail)
DirectSound: 0/5 (retail)
DirectShow: 0/6 (retail)

---------------
Display Devices
---------------
Card name: NVIDIA GeForce4 MX 4000
Manufacturer: NVIDIA
Chip type: GeForce4 MX 4000
DAC type: Integrated RAMDAC
Device Key: Enum\PCI\VEN_10DE&DEV_0185&SUBSYS_00000000&REV_C1
Display Memory: 128.0 MB
Current Mode: 1024 x 768 (32 bit) (72Hz)
Monitor: Plug and Play Monitor
Monitor Max Res: 1600,1200
Driver Name: nv4_disp.dll
Driver Version: 6.14.0010.8421 (English)
DDI Version: 9 (or higher)
Driver Attributes: Final Retail
Driver Date/Size: 4/5/2006 13:39:20, 3968512 bytes
WHQL Logo'd: No
WHQL Date Stamp: None
VDD: n/a
Mini VDD: nv4_mini.sys
Mini VDD Date: 4/5/2006 13:39:20, 3650368 bytes
Device Identifier: {D7B71E3E-42C5-11CF-5543-0A2060C2CB35}
Vendor ID: 0x10DE
Device ID: 0x0185
SubSys ID: 0x00000000
Revision ID: 0x00C1
Revision ID: 0x00C1
Video Accel: ModeMPEG2_A ModeMPEG2_B ModeMPEG2_C ModeMPEG2_D
Deinterlace Caps: {212DC723-3235-44A4-BD29-E1652BBCC71C}: Format(In/Out)=(YUY2,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_MedianFiltering
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YUY2,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch
{212DC723-3235-44A4-BD29-E1652BBCC71C}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_MedianFiltering
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch
Registry: OK
DDraw Status: Enabled
D3D Status: Enabled
AGP Status: Enabled
DDraw Test Result: Not run
D3D7 Test Result: Not run
D3D8 Test Result: Not run
D3D9 Test Result: Not run

-------------
Sound Devices
-------------
Description: SoundMAX Digital Audio
Default Sound Playback: Yes
Default Voice Playback: Yes
Hardware ID: PCI\VEN_8086&DEV_24C5&SUBSYS_01601028&REV_01
Manufacturer ID: 65535
Product ID: 65535
Type: WDM
Driver Name: smwdm.sys
Driver Version: 5.12.0001.5246 (English)
Driver Attributes: Final Retail
WHQL Logo'd: Yes
Date and Size: 1/27/2005 14:31:06, 260352 bytes
Other Files:
Driver Provider: Analog Devices
HW Accel Level: Full
Cap Flags: 0xF5F
Min/Max Sample Rate: 100, 192000
Static/Strm HW Mix Bufs: 33, 32
Static/Strm HW 3D Bufs: 33, 32
HW Memory: 0
Voice Management: Yes
EAX™ 2.0 Listen/Src: Yes, Yes
I3DL2™ Listen/Src: Yes, Yes
Sensaura™ ZoomFX™: Yes
Registry: OK
Sound Test Result: Not run

---------------------
Sound Capture Devices
---------------------
Description: SoundMAX Digital Audio
Default Sound Capture: Yes
Default Voice Capture: Yes
Driver Name: smwdm.sys
Driver Version: 5.12.0001.5246 (English)
Driver Attributes: Final Retail
Date and Size: 1/27/2005 14:31:06, 260352 bytes
Cap Flags: 0x41
Format Flags: 0xCCC

-----------
DirectMusic
-----------
DLS Path: C:\WINDOWS\SYSTEM32\drivers\GM.DLS
DLS Version: 1.00.0016.0002
Acceleration: n/a
Ports: Microsoft Synthesizer, Software (Not Kernel Mode), Output, DLS, Internal, Default Port
SoundMAX Digital Audio, Software (Kernel Mode), Output, DLS, Internal
Microsoft MIDI Mapper [Emulated], Hardware (Not Kernel Mode), Output, No DLS, Internal
Microsoft GS Wavetable SW Synth [Emulated], Hardware (Not Kernel Mode), Output, No DLS, Internal
Registry: OK
Test Result: Not run

-------------------
DirectInput Devices
-------------------
Device Name: Mouse
Attached: 1
Controller ID: n/a
Vendor/Product ID: n/a
FF Driver: n/a

Device Name: Keyboard
Attached: 1
Controller ID: n/a
Vendor/Product ID: n/a
FF Driver: n/a

Device Name: 2300 Series
Attached: 1
Controller ID: 0x0
Vendor/Product ID: 0x043D, 0x00BB
FF Driver: n/a

Poll w/ Interrupt: No
Registry: OK

-----------
USB Devices
-----------
+ USB Root Hub
| Vendor/Product ID: 0x8086, 0x24C7
| Matching Device ID: usb\root_hub
| Service: usbhub
| Driver: usbhub.sys, 8/4/2004 00:08:42, 57600 bytes
| Driver: usbd.sys, 6/25/2002 15:48:51, 4736 bytes

----------------
Gameport Devices
----------------

------------
PS/2 Devices
------------
+ Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
| Matching Device ID: *pnp0303
| Service: i8042prt
| Driver: i8042prt.sys, 8/4/2004 00:14:36, 52736 bytes
| Driver: kbdclass.sys, 8/3/2004 23:58:32, 24576 bytes
|
+ Terminal Server Keyboard Driver
| Matching Device ID: root\rdp_kbd
| Upper Filters: kbdclass
| Service: TermDD
| Driver: termdd.sys, 8/4/2004 02:01:07, 40840 bytes
| Driver: kbdclass.sys, 8/3/2004 23:58:32, 24576 bytes
|
+ PS/2 Compatible Mouse
| Matching Device ID: *pnp0f13
| Service: i8042prt
| Driver: i8042prt.sys, 8/4/2004 00:14:36, 52736 bytes
| Driver: mouclass.sys, 8/3/2004 23:58:32, 23040 bytes
|
+ Terminal Server Mouse Driver
| Matching Device ID: root\rdp_mou
| Upper Filters: mouclass
| Service: TermDD
| Driver: termdd.sys, 8/4/2004 02:01:07, 40840 bytes
| Driver: mouclass.sys, 8/3/2004 23:58:32, 23040 bytes

----------------------------
DirectPlay Service Providers
----------------------------
DirectPlay8 Modem Service Provider - Registry: OK, File: dpnet.dll (5.03.2600.2180)
DirectPlay8 Serial Service Provider - Registry: OK, File: dpnet.dll (5.03.2600.2180)
DirectPlay8 IPX Service Provider - Registry: OK, File: dpnet.dll (5.03.2600.2180)
DirectPlay8 TCP/IP Service Provider - Registry: OK, File: dpnet.dll (5.03.2600.2180)
Internet TCP/IP Connection For DirectPlay - Registry: OK, File: dpwsockx.dll (5.03.2600.2180)
IPX Connection For DirectPlay - Registry: OK, File: dpwsockx.dll (5.03.2600.2180)
Modem Connection For DirectPlay - Registry: OK, File: dpmodemx.dll (5.03.2600.2180)
Serial Connection For DirectPlay - Registry: OK, File: dpmodemx.dll (5.03.2600.2180)

DirectPlay Voice Wizard Tests: Full Duplex: Passed, Half Duplex: Passed, Mic: Passed
DirectPlay Test Result: Not run
Registry: OK

-------------------
DirectPlay Adapters
-------------------
DirectPlay8 Modem Service Provider: Intel® 537EP V9x DF PCI Modem
DirectPlay8 Serial Service Provider: COM1
DirectPlay8 Serial Service Provider: COM3
DirectPlay8 TCP/IP Service Provider: Local Area Connection - IPv6 - fe80::20d:56ff:fe68:5c8c
DirectPlay8 TCP/IP Service Provider: Teredo Tunneling Pseudo-Interface - IPv6 - fe80::ffff:ffff:fffd
DirectPlay8 TCP/IP Service Provider: 6to4 Tunneling Pseudo-Interface - IPv6 - 2002:44b9:9659::44b9:9659
DirectPlay8 TCP/IP Service Provider: Automatic Tunneling Pseudo-Interface - IPv6 - fe80::5efe:
DirectPlay8 TCP/IP Service Provider: Local Area Connection - IPv4 -

-----------------------
DirectPlay Voice Codecs
-----------------------
Voxware VR12 1.4kbit/s
Voxware SC06 6.4kbit/s
Voxware SC03 3.2kbit/s
MS-PCM 64 kbit/s
MS-ADPCM 32.8 kbit/s
Microsoft GSM 6.10 13 kbit/s
TrueSpeech™ 8.6 kbit/s

-------------------------
DirectPlay Lobbyable Apps
-------------------------
Monster Truck Madness 2 (DX7) - Registry: Error, ExeFile: monster.exe (<File Missing>)

------------------------
Disk & DVD/CD-ROM Drives
------------------------
Drive: C:
Free Space: 11.5 GB
Total Space: 34.9 GB
File System: NTFS
Model: WDC WD400EB-75CPF0

Drive: D:
Model: LITE-ON COMBO SOHC-5236V
Driver: c:\windows\system32\drivers\cdrom.sys, 5.01.2600.2180 (English), 8/3/2004 23:59:52, 49536 bytes

Drive: F:
Model: LITE-ON DVDRW SHW-160P6S
Driver: c:\windows\system32\drivers\cdrom.sys, 5.01.2600.2180 (English), 8/3/2004 23:59:52, 49536 bytes

Drive: E:
Model: SCSIVAX DVD/CD-ROM SCSI CdRom Device
Driver: c:\windows\system32\drivers\cdrom.sys, 5.01.2600.2180 (English), 8/3/2004 23:59:52, 49536 bytes

Drive: G:
Model: Generic STEALTH DVD SCSI CdRom Device
Driver: c:\windows\system32\drivers\cdrom.sys, 5.01.2600.2180 (English), 8/3/2004 23:59:52, 49536 bytes

--------------
System Devices
--------------
Name: Video Controller
Device ID: PCI\VEN_8086&DEV_2562&SUBSYS_01601028&REV_01\3&172E68DD&0&10
Driver: n/a

Name: Intel® 82845G/GL/GE/PE/GV Processor to I/O Controller - 2560
Device ID: PCI\VEN_8086&DEV_2560&SUBSYS_00000000&REV_01\3&172E68DD&0&00
Driver: n/a

Name: Intel® 82801DB/DBM USB 2.0 Enhanced Host Controller - 24CD
Device ID: PCI\VEN_8086&DEV_24CD&SUBSYS_01601028&REV_01\3&172E68DD&0&EF
Driver: n/a

Name: Intel® 82801DB Ultra ATA Storage Controller - 24CB
Device ID: PCI\VEN_8086&DEV_24CB&SUBSYS_01601028&REV_01\3&172E68DD&0&F9
Driver: C:\WINDOWS\system32\DRIVERS\pciide.sys, 5.01.2600.0000 (English), 8/17/2001 12:51:52, 3328 bytes
Driver: C:\WINDOWS\system32\DRIVERS\pciidex.sys, 5.01.2600.2180 (English), 8/3/2004 23:59:41, 25088 bytes
Driver: C:\WINDOWS\system32\DRIVERS\atapi.sys, 5.01.2600.2180 (English), 8/3/2004 23:59:42, 95360 bytes

Name: Intel® 82801DB/DBM USB Universal Host Controller - 24C7
Device ID: PCI\VEN_8086&DEV_24C7&SUBSYS_01601028&REV_01\3&172E68DD&0&EA
Driver: C:\WINDOWS\system32\drivers\usbuhci.sys, 5.01.2600.2180 (English), 8/4/2004 00:08:37, 20480 bytes
Driver: C:\WINDOWS\system32\drivers\usbport.sys, 5.01.2600.2180 (English), 8/4/2004 00:08:42, 142976 bytes
Driver: C:\WINDOWS\system32\usbui.dll, 5.01.2600.2180 (English), 8/4/2004 01:56:46, 74240 bytes
Driver: C:\WINDOWS\system32\drivers\usbhub.sys, 5.01.2600.2180 (English), 8/4/2004 00:08:42, 57600 bytes

Name: SoundMAX Integrated Digital Audio
Device ID: PCI\VEN_8086&DEV_24C5&SUBSYS_01601028&REV_01\3&172E68DD&0&FD
Driver: C:\WINDOWS\system32\ksuser.dll, 5.03.2600.2180 (English), 8/4/2004 01:56:42, 4096 bytes
Driver: C:\WINDOWS\system32\ksproxy.ax, 5.03.2600.2180 (English), 8/4/2004 01:56:57, 130048 bytes
Driver: C:\WINDOWS\system32\drivers\ks.sys, 5.03.2600.2180 (English), 8/4/2004 00:15:21, 140928 bytes
Driver: C:\WINDOWS\system32\drivers\drmk.sys, 5.01.2600.2180 (English), 8/4/2004 00:07:58, 60288 bytes
Driver: C:\WINDOWS\system32\drivers\portcls.sys, 5.01.2600.2180 (English), 8/4/2004 00:15:49, 145792 bytes
Driver: C:\WINDOWS\system32\drivers\stream.sys, 5.03.2600.2180 (English), 8/4/2004 00:08:02, 48640 bytes
Driver: C:\WINDOWS\system32\wdmaud.drv, 5.01.2600.2180 (English), 8/4/2004 01:56:57, 23552 bytes
Driver: C:\WINDOWS\system32\drivers\smwdm.sys, 5.12.0001.5246 (English), 1/27/2005 14:31:06, 260352 bytes
Driver: C:\WINDOWS\system32\drivers\senfilt.sys, 5.10.0000.3614 (English), 9/17/2004 08:02:54, 732928 bytes
Driver: C:\Program Files\Analog Devices\Core\smwdmif.dll, 5.02.0003.0000 (English), 1/27/2005 14:51:30, 286720 bytes
Driver: C:\Program Files\Analog Devices\Core\smax4pnp.exe, 5.02.0000.0005 (English), 10/14/2004 13:42:54, 1404928 bytes
Driver: C:\WINDOWS\system\crlds3d.dll, 4.12.0001.2002 (English), 9/19/2001 11:47:14, 765952 bytes
Driver: C:\WINDOWS\system32\PostProc.dll, 5.02.0000.0007 (English), 10/5/2004 15:10:58, 23040 bytes
Driver: C:\WINDOWS\system32\Edcrypt.dll, 1.00.0000.0008 (English), 9/23/2004 06:55:34, 311296 bytes

Name: Intel® 82801DB/DBM USB Universal Host Controller - 24C4
Device ID: PCI\VEN_8086&DEV_24C4&SUBSYS_01601028&REV_01\3&172E68DD&0&E9
Driver: C:\WINDOWS\system32\drivers\usbuhci.sys, 5.01.2600.2180 (English), 8/4/2004 00:08:37, 20480 bytes
Driver: C:\WINDOWS\system32\drivers\usbport.sys, 5.01.2600.2180 (English), 8/4/2004 00:08:42, 142976 bytes
Driver: C:\WINDOWS\system32\usbui.dll, 5.01.2600.2180 (English), 8/4/2004 01:56:46, 74240 bytes
Driver: C:\WINDOWS\system32\drivers\usbhub.sys, 5.01.2600.2180 (English), 8/4/2004 00:08:42, 57600 bytes

Name: Intel® 82801DB/DBM SMBus Controller - 24C3
Device ID: PCI\VEN_8086&DEV_24C3&SUBSYS_01601028&REV_01\3&172E68DD&0&FB
Driver: n/a

Name: Intel® 82801DB/DBM USB Universal Host Controller - 24C2
Device ID: PCI\VEN_8086&DEV_24C2&SUBSYS_01601028&REV_01\3&172E68DD&0&E8
Driver: C:\WINDOWS\system32\drivers\usbuhci.sys, 5.01.2600.2180 (English), 8/4/2004 00:08:37, 20480 bytes
Driver: C:\WINDOWS\system32\drivers\usbport.sys, 5.01.2600.2180 (English), 8/4/2004 00:08:42, 142976 bytes
Driver: C:\WINDOWS\system32\usbui.dll, 5.01.2600.2180 (English), 8/4/2004 01:56:46, 74240 bytes
Driver: C:\WINDOWS\system32\drivers\usbhub.sys, 5.01.2600.2180 (English), 8/4/2004 00:08:42, 57600 bytes

Name: Intel® 82801DB LPC Interface Controller - 24C0
Device ID: PCI\VEN_8086&DEV_24C0&SUBSYS_00000000&REV_01\3&172E68DD&0&F8
Driver: C:\WINDOWS\system32\DRIVERS\isapnp.sys, 5.01.2600.0000 (English), 8/17/2001 12:58:02, 35840 bytes

Name: Intel® 82801DB PCI Bridge - 244E
Device ID: PCI\VEN_8086&DEV_244E&SUBSYS_00000000&REV_81\3&172E68DD&0&F0
Driver: C:\WINDOWS\system32\DRIVERS\pci.sys, 5.01.2600.2180 (English), 8/4/2004 00:07:46, 68224 bytes

Name: Intel® 537EP V9x DF PCI Modem
Device ID: PCI\VEN_8086&DEV_1080&SUBSYS_10001028&REV_04\4&3B1CAF2B&0&28F0
Driver: C:\WINDOWS\system32\DRIVERS\IntelC51.sys, 2.15.0036.0000 (English), 3/5/2004 21:14:42, 1233525 bytes
Driver: C:\WINDOWS\system32\DRIVERS\IntelC52.sys, 4.58.0005.0000 (English), 3/5/2004 21:15:34, 647929 bytes
Driver: C:\WINDOWS\system32\DRIVERS\IntelC53.sys, 2.15.0036.0002 (English), 6/15/2004 21:52:40, 61157 bytes
Driver: C:\WINDOWS\system32\DRIVERS\mohfilt.sys, 7.11.0000.0000 (English), 3/5/2004 21:13:38, 37048 bytes
Driver: C:\WINDOWS\system32\intelmoh.dll, 1.00.0000.0000 (English), 3/5/2004 21:13:26, 172032 bytes
Driver: C:\WINDOWS\system32\mhwt.dll, 1.00.0000.0000 (English), 3/5/2004 21:13:12, 53248 bytes
Driver: C:\WINDOWS\system32\IntelCci.dll, 5.00.0000.0000 (English), 3/5/2004 21:12:56, 34293 bytes

Name: Broadcom 440x 10/100 Integrated Controller
Device ID: PCI\VEN_14E4&DEV_4401&SUBSYS_81271028&REV_01\4&3B1CAF2B&0&48F0
Driver: C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys, 3.63.0000.0000 (English), 6/30/2003 17:11:52, 43136 bytes

Name: NVIDIA GeForce4 MX 4000
Device ID: PCI\VEN_10DE&DEV_0185&SUBSYS_00000000&REV_C1\4&3B1CAF2B&0&30F0
Driver: C:\WINDOWS\system32\DRIVERS\nv4_mini.sys, 6.14.0010.8421 (English), 4/5/2006 13:39:20, 3650368 bytes
Driver: C:\WINDOWS\system32\nv4_disp.dll, 6.14.0010.8421 (English), 4/5/2006 13:39:20, 3968512 bytes
Driver: C:\WINDOWS\system32\nvsvc32.exe, 6.14.0010.8421 (English), 4/5/2006 13:39:24, 143436 bytes
Driver: C:\WINDOWS\system32\nvhwvid.dll, 6.14.0010.8421 (), 4/5/2006 13:39:22, 573440 bytes
Driver: C:\WINDOWS\system32\nvapi.dll, 6.14.0010.8421 (), 4/5/2006 13:39:20, 98304 bytes
Driver: C:\WINDOWS\system32\nvoglnt.dll, 6.14.0010.8421 (English), 4/5/2006 13:39:24, 5419008 bytes
Driver: C:\WINDOWS\system32\nvcpl.dll, 6.14.0010.8421 (English), 4/5/2006 13:39:22, 7561216 bytes
Driver: C:\WINDOWS\system32\nvmctray.dll, 6.14.0010.8421 (English), 4/5/2006 13:39:23, 86016 bytes
Driver: C:\WINDOWS\system32\nvwddi.dll, 6.14.0010.8421 (English), 4/5/2006 13:39:24, 81920 bytes
Driver: C:\WINDOWS\system32\nvnt4cpl.dll, 6.14.0010.11026 (English), 4/5/2006 13:39:23, 286720 bytes
Driver: C:\WINDOWS\system32\nvmccs.dll, 6.14.0010.8421 (English), 4/5/2006 13:39:23, 229376 bytes
Driver: C:\WINDOWS\help\nvcpl.hlp, 4/5/2006 13:39:22, 171072 bytes
Driver: C:\WINDOWS\help\nvwcplen.hlp, 4/5/2006 13:39:24, 55444 bytes
Driver: C:\WINDOWS\system32\nvcod.dll, 1.00.0000.0035 (English), 4/5/2006 13:39:21, 35840 bytes
Driver: C:\WINDOWS\system32\nvcodins.dll, 1.00.0000.0035 (English), 4/5/2006 13:39:21, 35840 bytes

Name: VAX347S SCSI Controller
Device ID: PCI\VAX347S\0000
Driver: n/a

------------------
DirectX Components
------------------
ddraw.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 266240 bytes
ddrawex.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 27136 bytes
dxapi.sys: 5.01.2600.0000 English Final Retail 6/25/2002 15:37:55 10496 bytes
d3d8.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:41 1179648 bytes
d3d8thk.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:41 8192 bytes
d3d9.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:41 1689088 bytes
d3dim.dll: 5.01.2600.0000 English Final Retail 6/25/2002 15:37:18 436224 bytes
d3dim700.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:41 825344 bytes
d3dramp.dll: 5.01.2600.0000 English Final Retail 6/25/2002 15:37:18 590336 bytes
d3drm.dll: 5.01.2600.0000 English Final Retail 6/25/2002 15:37:18 350208 bytes
d3dxof.dll: 5.01.2600.0000 English Final Retail 6/25/2002 15:37:18 47616 bytes
d3dpmesh.dll: 5.01.2600.0000 English Final Retail 6/25/2002 15:37:18 34816 bytes
dplay.dll: 5.00.2134.0001 English Final Retail 6/25/2002 15:37:31 33040 bytes
dplayx.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 229888 bytes
dpmodemx.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 23552 bytes
dpwsock.dll: 5.00.2134.0001 English Final Retail 6/25/2002 15:37:33 42768 bytes
dpwsockx.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 57344 bytes
dplaysvr.exe: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:48 30208 bytes
dpnsvr.exe: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:48 18432 bytes
dpnet.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 375296 bytes
dpnlobby.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:03 3584 bytes
dpnaddr.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:03 3584 bytes
dpvoice.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 212480 bytes
dpvsetup.exe: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:48 83456 bytes
dpvvox.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 116736 bytes
dpvacm.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 21504 bytes
dpnhpast.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 35328 bytes
dpnhupnp.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 60928 bytes
dpserial.dll: 5.00.2134.0001 English Final Retail 6/25/2002 15:37:32 53520 bytes
dinput.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 159232 bytes
dinput8.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 181760 bytes
dimap.dll: 5.01.2600.0000 English Final Retail 6/25/2002 15:37:26 44032 bytes
diactfrm.dll: 5.01.2600.0000 English Final Retail 6/25/2002 15:37:24 394240 bytes
joy.cpl: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:57 68608 bytes
gcdef.dll: 5.01.2600.0000 English Final Retail 6/25/2002 15:38:15 76800 bytes
pid.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:44 35328 bytes
dsound.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 367616 bytes
dsound3d.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 1294336 bytes
dswave.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 19456 bytes
dsdmo.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 181760 bytes
dsdmoprp.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 71680 bytes
dmusic.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 104448 bytes
dmband.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 28672 bytes
dmcompos.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 61440 bytes
dmime.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 181248 bytes
dmloader.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 35840 bytes
dmstyle.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 105984 bytes
dmsynth.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 103424 bytes
dmscript.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 82432 bytes
dx7vb.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 619008 bytes
dx8vb.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 1227264 bytes
dxdiagn.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 2113536 bytes
mfc40.dll: 4.01.0000.6140 English Final Retail 6/25/2002 15:40:43 924432 bytes
mfc42.dll: 6.02.4131.0000 English Final Retail 8/4/2004 01:56:42 1028096 bytes
wsock32.dll: 5.01.2600.2180 English Final Retail 8/4/2004 01:56:46 22528 bytes
amstream.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:41 70656 bytes
devenum.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:42 59904 bytes
dxmasf.dll: 6.04.0009.1133 English Final Retail 8/22/2006 04:05:26 498742 bytes
mciqtz32.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:42 35328 bytes
mpg2splt.ax: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:57 148992 bytes
msdmo.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:43 14336 bytes
encapi.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 20480 bytes
qasf.dll: 11.00.5358.4827 English Final Retail 5/9/2006 21:26:34 201728 bytes
qcap.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:44 192512 bytes
qdv.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:44 279040 bytes
qdvd.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:44 385024 bytes
qedit.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:44 562176 bytes
qedwipes.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:24 733696 bytes
quartz.dll: 6.05.2600.2749 English Final Retail 8/29/2005 21:54:26 1287168 bytes
strmdll.dll: 4.01.0000.3936 English Final Retail 8/21/2006 09:52:08 246814 bytes
iac25_32.ax: 2.00.0005.0054 English Final Retail 6/23/2000 14:06:08 192000 bytes
ir41_32.ax: 4.51.0016.0003 English Final Retail 8/4/2004 01:56:57 848384 bytes
ir41_qc.dll: 4.30.0062.0002 English Final Retail 8/4/2004 01:56:42 120320 bytes
ir41_qcx.dll: 4.30.0064.0001 English Final Retail 8/4/2004 01:56:42 338432 bytes
ir50_32.dll: 5.2819.0015.0056 English Final Retail 6/23/2000 10:36:48 745984 bytes
ir50_qc.dll: 5.00.0063.0048 English Final Retail 8/4/2004 01:56:42 200192 bytes
ir50_qcx.dll: 5.00.0064.0048 English Final Retail 8/4/2004 01:56:42 183808 bytes
ivfsrc.ax: 5.11.0015.0056 English Final Retail 6/22/2000 18:11:56 145408 bytes
mswebdvd.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:44 204288 bytes
ks.sys: 5.03.2600.2180 English Final Retail 8/4/2004 00:15:21 140928 bytes
ksproxy.ax: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:57 130048 bytes
ksuser.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:42 4096 bytes
stream.sys: 5.03.2600.2180 English Final Retail 8/4/2004 00:08:02 48640 bytes
mspclock.sys: 5.03.2600.2180 English Final Retail 8/3/2004 23:58:38 5376 bytes
mspqm.sys: 5.01.2600.2180 English Final Retail 8/3/2004 23:58:40 4992 bytes
mskssrv.sys: 5.03.2600.2180 English Final Retail 8/3/2004 23:58:41 7552 bytes
swenum.sys: 5.03.2600.2180 English Final Retail 8/3/2004 23:58:41 4352 bytes
mstee.sys: 5.03.2600.2180 English Final Retail 8/3/2004 23:58:38 5504 bytes
ipsink.ax: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:57 16384 bytes
mpeg2data.ax: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:57 118272 bytes
ndisip.sys: 5.03.2600.2180 English Final Retail 8/4/2004 00:10:12 10880 bytes
streamip.sys: 5.03.2600.2180 English Final Retail 8/4/2004 00:10:12 15360 bytes
msvidctl.dll: 6.05.2600.2180 English Final Retail 8/4/2004 01:56:43 1428480 bytes
slip.sys: 5.03.2600.2180 English Final Retail 8/4/2004 00:10:16 11136 bytes
nabtsfec.sys: 5.03.2600.2180 English Final Retail 8/4/2004 00:10:28 85376 bytes
ccdecode.sys: 5.03.2600.2180 English Final Retail 8/4/2004 00:10:16 17024 bytes
vbisurf.ax: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:57 30720 bytes
msyuv.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:44 17408 bytes
kstvtune.ax: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:57 61952 bytes
ksxbar.ax: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:57 43008 bytes
kswdmcap.ax: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:57 90624 bytes
vfwwdm32.dll: 5.01.2600.2180 English Final Retail 8/4/2004 01:56:46 53760 bytes
wstcodec.sys: 5.03.2600.2180 English Final Retail 8/4/2004 00:10:21 19328 bytes
wstdecod.dll: 5.03.2600.2180 English Final Retail 8/4/2004 01:56:46 50688 bytes

------------------
DirectShow Filters
------------------

WDM Streaming VBI Codecs:
NABTS/FEC VBI Codec,0x00200000,2,1,,5.03.2600.2180
CC Decoder,0x00200000,2,1,,5.03.2600.2180
WST Codec,0x00200000,1,1,,5.03.2600.2180

DirectShow Filters:
WMAudio Decoder DMO,0x00800800,1,1,,
WMAPro over S/PDIF DMO,0x00600800,1,1,,
WMA Voice Decoder DMO,0x00600800,1,1,,
WMVideo Advanced Decoder DMO,0x00800001,1,1,,
Mpeg4s Decoder DMO,0x00800001,1,1,,
WMV Screen decoder DMO,0x00800001,1,1,,
WMVideo Decoder DMO,0x00800001,1,1,,
Mpeg43 Decoder DMO,0x00800001,1,1,,
Mpeg4 Decoder DMO,0x00800001,1,1,,
DivX Decoder Filter,0x00800000,1,1,divxdec.ax,5.01.0001.1031
WMT MuxDeMux Filter,0x00200000,0,0,wmm2filt.dll,2.01.4026.0000
Full Screen Renderer,0x00200000,1,0,quartz.dll,6.05.2600.2749
CoreAVC Video Decoder,0x00600000,1,1,CoreAVC.ax,
Dirac Source,0x00600000,0,0,DiracSplitter.ax,
Matroska Source,0x00600000,0,0,MatroskaSplitter.ax,
Nero Scene Detector 2,0x00200000,2,0,NeSceneDetector.ax,
DV Muxer,0x00400000,0,0,qdv.dll,6.05.2600.2180
Nero Digital Audio Decoder,0x00600000,1,1,NeAudio.ax,
DV Scenes,0x00200000,1,1,NVDV.dll,3.00.0002.0000
Matroska Splitter,0x00600000,1,1,MatroskaSplitter.ax,
Color Space Converter,0x00400001,1,1,quartz.dll,6.05.2600.2749
WM ASF Reader,0x00400000,0,0,qasf.dll,11.00.5358.4827
Screen Capture filter,0x00200000,0,1,wmpsrcwp.dll,10.00.0000.3802
AVI Splitter,0x00600000,1,1,quartz.dll,6.05.2600.2749
WMT AudioAnalyzer,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
VGA 16 Color Ditherer,0x00400000,1,1,quartz.dll,6.05.2600.2749
RadLight Ogg Splitter,0x00800101,1,1,RLOgg.ax,
Indeo® Video 5.11 Compression Filter,0x00200000,1,1,IR50_32.DLL,5.2819.0015.0056
CyberLink AudioCD Filter (PDVD6),0x00600000,0,1,CLAudioCD.ax,5.00.0000.3114
RadLight Vorbis Decoder,0x00800001,1,1,RLVorbisDec.ax,
Windows Media Audio Decoder,0x00800001,1,1,msadds32.ax,8.00.0000.4487
RealVideo Decoder,0x00400000,1,1,RealMediaSplitter.ax,
AC3 Parser Filter,0x00600000,1,1,mpg2splt.ax,6.05.2600.2180
CyberLink Audio Decoder,0x00602000,1,1,CLAud.ax,6.00.0000.2001
WMT Format Conversion,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
StreamBufferSink,0x00200000,0,0,sbe.dll,
WMT Black Frame Generator,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
MJPEG Decompressor,0x00600000,1,1,quartz.dll,6.05.2600.2749
CyberLink Audio Effect (PDVD6),0x00200000,1,1,claudfx.ax,6.00.0000.1223
Indeo® Video 5.11 Decompression Filter,0x00640000,1,1,IR50_32.DLL,5.2819.0015.0056
WMT Screen Capture filter,0x00200000,0,1,wmm2filt.dll,2.01.4026.0000
Microsoft Screen Video Decompressor,0x00800000,1,1,msscds32.ax,8.00.0000.4487
MPEG-I Stream Splitter,0x00600000,1,2,quartz.dll,6.05.2600.2749
SAMI (CC) Parser,0x00400000,1,1,quartz.dll,6.05.2600.2749
MPEG Layer-3 Decoder,0x00810000,1,1,L3CODECX.AX,1.05.0000.0050
Nero Audio Stream Renderer,0x00200000,1,0,NeRender.ax,
MPEG-2 Splitter,0x005fffff,1,0,mpg2splt.ax,6.05.2600.2180
ACELP.net Sipro Lab Audio Decoder,0x00800001,1,1,acelpdec.ax,1.04.0000.0000
RadLight APE DirectShow Filter,0x00600000,0,1,RLAPEDec.ax,
Nero Digital AVC Audio Encoder,0x00200000,1,2,NeNDAud.ax,
Nero Digital AVC File Writer,0x00200000,1,0,NeNDMux.ax,
Nero Digital AVC Null Renderer,0x00200000,1,0,NeNDMux.ax,
Nero Digital AVC Muxer,0x00200000,2,1,NeNDMux.ax,
Nero Digital AVC Video Enc,0x00200000,1,2,,
ZJSoft RealMedia Splitter,0x00200000,1,1,RealMediaSplitter.ax,
ZJSoft RealMedia Source,0x00200000,0,0,RealMediaSplitter.ax,
ZJSoft RealVideo Decoder,0x00200000,1,1,RealMediaSplitter.ax,
ZJSoft RealAudio Decoder,0x00200000,1,1,RealMediaSplitter.ax,
Nero QuickTime™ Video Decoder,0x00400000,1,1,NeQTDec.ax,
Internal Script Command Renderer,0x00800001,1,0,quartz.dll,6.05.2600.2749
MPEG Audio Decoder,0x03680001,1,1,quartz.dll,6.05.2600.2749
File Source (Netshow URL),0x00400000,0,1,wmpasf.dll,10.00.0000.3802
Nero Format Converter,0x00200000,1,1,NeroFormatConv.ax,
WMT Import Filter,0x00200000,0,1,wmm2filt.dll,2.01.4026.0000
DV Splitter,0x00600000,1,2,qdv.dll,6.05.2600.2180
Bitmap Generate,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
Windows Media Video Decoder,0x00800000,1,1,wmvds32.ax,8.00.0000.4487
SuperDVD Video Encode Filter3.0,0x00200000,1,0,Video.dll,3.00.0000.0001
Video Mixing Renderer 9,0x00200000,1,0,quartz.dll,
Windows Media Video Decoder,0x00800000,1,1,wmv8ds32.ax,8.00.0000.4000
Nero Photo Source,0x00200000,0,1,NePhotoSource.ax,
CyberLink Demux (PDVD6),0x00400000,1,0,cldemuxer.ax,1.00.0000.2905
WMT VIH2 Fix,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
Dirac Splitter,0x00600000,1,1,DiracSplitter.ax,
Nero Video Analyzer,0x00200000,2,0,NeVideoAnalyzer.ax,
Record Queue,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
Nero ES Video Reader,0x00600000,0,1,NDParser.ax,
CyberLink Line21 Decoder (PDVD6),0x00200000,0,2,CLLine21.ax,4.00.0000.4520
DV Source Filter,0x00400000,0,1,NVDV.dll,3.00.0002.0000
Nero Audio CD Filter,0x00200000,0,1,NeAudCD.ax,
Windows Media Multiplexer,0x00600000,1,1,wmpasf.dll,10.00.0000.3802
ASX file Parser,0x00600000,1,1,wmpasf.dll,10.00.0000.3802
ASX v.2 file Parser,0x00600000,1,0,wmpasf.dll,10.00.0000.3802
NSC file Parser,0x00600000,1,1,wmpasf.dll,10.00.0000.3802
XviD MPEG-4 Video Decoder,0x00800000,1,1,xvid.ax,
ACM Wrapper,0x00600000,1,1,quartz.dll,6.05.2600.2749
CoreAAC Audio Decoder,0x00800000,1,1,CoreAAC.ax,
Windows Media source filter,0x00600000,0,2,wmpasf.dll,10.00.0000.3802
Video Renderer,0x00800001,1,0,quartz.dll,6.05.2600.2749
Frame Eater,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
Nero DVD Navigator,0x00600000,0,4,NeDVD.ax,
MPEG-2 Video Stream Analyzer,0x00200000,0,0,sbe.dll,
Line 21 Decoder,0x00600000,1,1,qdvd.dll,6.05.2600.2180
Video Port Manager,0x00600000,2,1,quartz.dll,6.05.2600.2749
WST Decoder,0x00600000,1,1,wstdecod.dll,5.03.2600.2180
Video Renderer,0x00400000,1,0,quartz.dll,6.05.2600.2749
RealMedia Source,0x00600000,0,0,RealMediaSplitter.ax,
Nero Audio Sample Renderer,0x00200000,1,0,NeRender.ax,
CyberLink Audio Spectrum Analyzer (PDVD6),0x00200000,1,1,CLAudSpa.ax,1.00.0000.0924
Nero Vcd Navigator,0x00600000,0,2,NeVcd.ax,
DivX Decoder Filter,0x00800000,1,1,divxdec.ax,5.01.0001.1031
Nero Audio Processor,0x00200000,1,1,NeAudioConv.ax,
WM ASF Writer,0x00400000,0,0,qasf.dll,11.00.5358.4827
WMT Sample Information Filter,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
Nero Mpeg2 Encoder,0x00200000,2,1,NeVCR.ax,
VBI Surface Allocator,0x00600000,1,1,vbisurf.ax,5.03.2600.2180
Microsoft MPEG-4 Video Decompressor,0x00800000,1,1,mpg4ds32.axu,8.00.0000.4477
Nero Video Stream Renderer,0x00200000,1,0,NeRender.ax,
File writer,0x00200000,1,0,qcap.dll,6.05.2600.2180
RadLight MPC DirectShow Filter,0x00600000,0,1,RLMPCDec.ax,
CyberLink Video/SP Decoder,0x00602000,2,3,CLVsd.ax,6.00.0003.1921
Nero PS Muxer,0x00200000,1,1,NePSMuxer.ax,
WMT Log Filter,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
WMT Virtual Renderer,0x00200000,1,0,wmm2filt.dll,2.01.4026.0000
RealAudio Decoder,0x00400000,1,1,RealMediaSplitter.ax,
DVD Navigator,0x00200000,0,2,qdvd.dll,6.05.2600.2180
CyberLink DVD Navigator (PDVD6),0x00600000,0,3,CLNavX.ax,6.00.0000.14141
CyberLink TimeStretch Filter (PDVD6),0x00200000,1,1,clauts.ax,1.00.0000.2212
Overlay Mixer2,0x00400000,1,1,qdvd.dll,6.05.2600.2180
Cyberlink SubTitle Importor (PDVD6),0x00200000,1,1,CLSubTitle.ax,1.00.0000.1604
RadLight Speex Decoder,0x00600000,1,1,RLSpeexDec.ax,
Nero Splitter,0x00600000,1,3,NeSplitter.ax,
AC3Filter,0x40000000,1,1,ac3filter.ax,
AVI Draw,0x00600064,9,1,quartz.dll,6.05.2600.2749
.RAM file Parser,0x00600000,1,0,wmpasf.dll,10.00.0000.3802
Nero File Source / Splitter,0x00600000,0,3,NeFSource.ax,
WMT DirectX Transform Wrapper,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
G.711 Codec,0x00200000,1,1,g711codc.ax,5.01.2600.0000
MPEG-2 Demultiplexer,0x00600000,1,1,mpg2splt.ax,6.05.2600.2180
DV Video Decoder,0x00800000,1,1,qdv.dll,6.05.2600.2180
Indeo® audio software,0x00500000,1,1,iac25_32.ax,2.00.0005.0054
Windows Media Update Filter,0x00400000,1,0,wmpasf.dll,10.00.0000.3802
SuperDVD Audio Encode Filter3.0,0x00100000,1,0,Audio.dll,3.00.0000.0001
ASF DIB Handler,0x00600000,1,1,wmpasf.dll,10.00.0000.3802
ASF ACM Handler,0x00600000,1,1,wmpasf.dll,10.00.0000.3802
ASF ICM Handler,0x00600000,1,1,wmpasf.dll,10.00.0000.3802
ASF URL Handler,0x00600000,1,1,wmpasf.dll,10.00.0000.3802
ASF JPEG Handler,0x00600000,1,1,wmpasf.dll,10.00.0000.3802
ASF DJPEG Handler,0x00600000,1,1,wmpasf.dll,10.00.0000.3802
ASF embedded stuff Handler,0x00600000,1,1,wmpasf.dll,10.00.0000.3802
9x8Resize,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
WIA Stream Snapshot Filter,0x00200000,1,1,wiasf.ax,1.00.0000.0000
Nero Video Processor,0x00200000,1,1,NeroVideoProc.ax,
Nero Video Decoder,0x00600000,2,2,NeVideo.ax,
Allocator Fix,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
SampleGrabber,0x00200000,1,1,qedit.dll,6.05.2600.2180
Null Renderer,0x00200000,1,0,qedit.dll,6.05.2600.2180
WMT Virtual Source,0x00200000,0,1,wmm2filt.dll,2.01.4026.0000
MPEG-2 Sections and Tables,0x005fffff,1,0,mpeg2data.ax,
IVF source filter,0x00600000,0,1,ivfsrc.ax,5.11.0015.0056
WMT Interlacer,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
StreamBufferSource,0x00200000,0,0,sbe.dll,
Smart Tee,0x00200000,1,2,qcap.dll,6.05.2600.2180
Overlay Mixer,0x00200000,0,0,qdvd.dll,6.05.2600.2180
Nero Scene Detector,0x00200000,1,0,NeSceneDetector.ax,
RealPlayer Audio Filter,0x00200000,1,1,rdsf3260.dll,6.00.0012.1226
AVI Decompressor,0x00600000,1,1,quartz.dll,6.05.2600.2749
Uncompressed Domain Shot Detection Filter,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
AVI/WAV File Source,0x00400000,0,2,quartz.dll,6.05.2600.2749
QuickTime Movie Parser,0x00600000,1,1,quartz.dll,6.05.2600.2749
Wave Parser,0x00400000,1,1,quartz.dll,6.05.2600.2749
MIDI Parser,0x00400000,1,1,quartz.dll,6.05.2600.2749
Multi-file Parser,0x00400000,1,1,quartz.dll,6.05.2600.2749
Lyric Parser,0x00400000,1,1,quartz.dll,6.05.2600.2749
File stream renderer,0x00400000,1,1,quartz.dll,6.05.2600.2749
XML Playlist,0x00400000,1,0,wmpasf.dll,10.00.0000.3802
Nero File Source,0x00200000,0,1,NeFileSrc.ax,
Nero QuickTime™ Audio Decoder,0x00400000,1,1,NeQTDec.ax,
Nero File Source (Async.),0x00400000,0,1,NeFileSourceAsync.ax,
Nero DVD Decoder,0x00600000,2,2,NeVideo.ax,
Nero Digital Parser,0x00600000,0,3,NDParser.ax,
RealMedia Splitter,0x00600000,1,1,RealMediaSplitter.ax,
AVI Mux,0x00200000,1,0,qcap.dll,6.05.2600.2180
CyberLink QuickTime Source Filter,0x00200000,0,2,QT.dll,1.00.0000.1016
Line 21 Decoder 2,0x00600002,1,1,quartz.dll,6.05.2600.2749
File Source (Async.),0x00400000,0,1,quartz.dll,6.05.2600.2749
File Source (URL),0x00400000,0,1,quartz.dll,6.05.2600.2749
WMT DV Extract,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
RadLight Theora Decoder,0x00600000,1,1,RLTheoraDec.ax,
Nero Frame Capture,0x00200000,1,1,NeCapture.ax,
WMplug,0x009001f4,1,1,,
WMT Switch Filter,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
WMT Volume,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
Nero Video Sample Renderer,0x00200000,1,0,NeRender.ax,
Stretch Video,0x00200000,1,1,wmm2filt.dll,2.01.4026.0000
Windows Media Pad VU Data Grabber,0x00600000,1,0,wmmfilt.dll,1.01.2427.0001
Dirac Video Decoder,0x00400000,1,1,DiracSplitter.ax,
Infinite Pin Tee Filter,0x00200000,1,1,qcap.dll,6.05.2600.2180
Nero DV Splitter,0x00200000,1,2,NeDVSplitter.ax,
QT Decompressor,0x00600000,1,1,quartz.dll,6.05.2600.2749
ShotBoundaryDet,0x00200000,1,1,wmmfilt.dll,1.01.2427.0001
MPEG Video Decoder,0x40000001,1,1,quartz.dll,6.05.2600.2749
Indeo® video 4.4 Decompression Filter,0x00640000,1,1,ir41_32.ax,4.51.0016.0003
Indeo® video 4.4 Compression Filter,0x00200000,1,1,ir41_32.ax,4.51.0016.0003

WDM Streaming Tee/Splitter Devices:
Tee/Sink-to-Sink Converter,0x00200000,1,1,,5.03.2600.2180

WDM Streaming Data Transforms:
Microsoft Kernel Acoustic Echo Canceller,0x00000000,0,0,,
Microsoft Kernel GS Wavetable Synthesizer,0x00200000,1,1,,5.03.2600.2180
Microsoft Kernel DLS Synthesizer,0x00200000,1,1,,5.03.2600.2180
Microsoft Kernel DRM Audio Descrambler,0x00200000,1,1,,5.03.2600.2180

Video Compressors:
WMVideo Encoder DMO,0x00600800,1,1,,
WMVideo8 Encoder DMO,0x00600800,1,1,,
MSScreen encoder DMO,0x00600800,1,1,,
WMVideo9 Encoder DMO,0x00600800,1,1,,
WMVideo9 Encoder DMO,0x00600800,1,1,,
MSScreen 9 encoder DMO,0x00600800,1,1,,
DV Video Encoder,0x00200000,0,0,qdv.dll,6.05.2600.2180
Indeo® video 5.10 Compression Filter,0x00100000,1,1,IR50_32.DLL,5.2819.0015.0056
Indeo® Video 5.11 Compression Filter,0x00100000,1,1,IR50_32.DLL,5.2819.0015.0056
MJPEG Compressor,0x00200000,0,0,quartz.dll,6.05.2600.2749
Nero Digital AVC Video Enc,0x00200000,1,2,NeNDVid.ax,
Cinepak Codec by Radius,0x00200000,1,1,qcap.dll,6.05.2600.2180
DivX Pro™ 5.1.1 Codec,0x00200000,1,1,qcap.dll,6.05.2600.2180
Helix I420 YUV Codec,0x00200000,1,1,qcap.dll,6.05.2600.2180
Intel Indeo® Video R3.2,0x00200000,1,1,qcap.dll,6.05.2600.2180
Intel Indeo® Video 4.5,0x00200000,1,1,qcap.dll,6.05.2600.2180
Ligos Indeo® Video 5.11,0x00200000,1,1,qcap.dll,6.05.2600.2180
Intel IYUV codec,0x00200000,1,1,qcap.dll,6.05.2600.2180
Microsoft H.261 Video Codec,0x00200000,1,1,qcap.dll,6.05.2600.2180
Microsoft H.263 Video Codec,0x00200000,1,1,qcap.dll,6.05.2600.2180
Microsoft RLE,0x00200000,1,1,qcap.dll,6.05.2600.2180
Microsoft Video 1,0x00200000,1,1,qcap.dll,6.05.2600.2180
Microsoft Windows Media Video 9,0x00200000,1,1,qcap.dll,6.05.2600.2180
Helix YV12 YUV Codec,0x00200000,1,1,qcap.dll,6.05.2600.2180

Audio Compressors:
WMA Voice Encoder DMO,0x00600800,1,1,,
WM Speech Encoder DMO,0x00600800,1,1,,
WMAudio Encoder DMO,0x00600800,1,1,,
IAC2,0x00200000,1,1,quartz.dll,6.05.2600.2749
Lernout & Hauspie CELP 4.8kbit/s,0x00200000,1,1,quartz.dll,6.05.2600.2749
Lernout & Hauspie SBC 8kbit/s,0x00200000,1,1,quartz.dll,6.05.2600.2749
Lernout & Hauspie SBC 12kbit/s,0x00200000,1,1,quartz.dll,6.05.2600.2749
Lernout & Hauspie SBC 16kbit/s,0x00200000,1,1,quartz.dll,6.05.2600.2749
Microsoft RT24 ,0x00200000,1,1,quartz.dll,6.05.2600.2749
IMA ADPCM,0x00200000,1,1,quartz.dll,6.05.2600.2749
PCM,0x00200000,1,1,quartz.dll,6.05.2600.2749
Microsoft ADPCM,0x00200000,1,1,quartz.dll,6.05.2600.2749
ACELP.net,0x00200000,1,1,quartz.dll,6.05.2600.2749
DSP Group TrueSpeech™,0x00200000,1,1,quartz.dll,6.05.2600.2749
Windows Media Audio V1,0x00200000,1,1,quartz.dll,6.05.2600.2749
Windows Media Audio V2,0x00200000,1,1,quartz.dll,6.05.2600.2749
GSM 6.10,0x00200000,1,1,quartz.dll,6.05.2600.2749
MSN Messenger Audio Codec,0x00200000,1,1,quartz.dll,6.05.2600.2749
Microsoft G.723.1,0x00200000,1,1,quartz.dll,6.05.2600.2749
CCITT A-Law,0x00200000,1,1,quartz.dll,6.05.2600.2749
CCITT u-Law,0x00200000,1,1,quartz.dll,6.05.2600.2749
MPEG Layer-3,0x00200000,1,1,quartz.dll,6.05.2600.2749

Audio Capture Sources:
SoundMAX Digital Audio,0x00200000,0,0,qcap.dll,6.05.2600.2180

Midi Renderers:
Default MidiOut Device,0x00800000,1,0,quartz.dll,6.05.2600.2749
Microsoft GS Wavetable SW Synth,0x00200000,1,0,quartz.dll,6.05.2600.2749

WDM Streaming Capture Devices:
SoundMAX Digital Audio,0x00000000,0,0,,
ICatch VI PC CAMERA,0x00200000,0,2,,5.03.2600.2180

WDM Streaming Rendering Devices:
SoundMAX Digital Audio,0x00000000,0,0,,

BDA Rendering Filters:
BDA IP Sink,0x00200000,1,1,,5.03.2600.2180

Video Capture Sources:
ICatch VI PC CAMERA,0x00200000,0,2,,5.03.2600.2180

BDA Transport Information Renderers:
MPEG-2 Sections and Tables,0x00600000,1,0,mpeg2data.ax,

WDM Streaming Mixer Devices:
Microsoft Kernel Wave Audio Mixer,0x00000000,0,0,,

BDA CP/CA Filters:
Decrypt/Tag,0x00600000,1,0,encdec.dll,
Encrypt/Tag,0x00200000,0,0,encdec.dll,
XDS Codec,0x00200000,0,0,encdec.dll,

WDM Streaming Communication Transforms:
Tee/Sink-to-Sink Converter,0x00200000,1,1,,5.03.2600.2180

Audio Renderers:
SoundMAX Digital Audio,0x00200000,1,0,quartz.dll,6.05.2600.2749
CyberLink Audio Renderer (PDVD6),0x00200000,1,0,cladr.ax,6.00.0000.1817
Default DirectSound Device,0x00800000,1,0,quartz.dll,6.05.2600.2749
Default WaveOut Device,0x00200000,1,0,quartz.dll,6.05.2600.2749
DirectSound: SoundMAX Digital Audio,0x00200000,1,0,quartz.dll,6.05.2600.2749

WDM Streaming System Devices:
SoundMAX Digital Audio,0x00200000,11,2,,5.03.2600.2180

BDA Receiver Component:
BDA Slip De-Framer,0x00600000,1,1,,5.03.2600.2180


-----------------------------------------------------------------------------------------------------------------------------


HijackThis LogFile


Logfile of HijackThis v1.99.1
Scan saved at 8:58:45 PM, on 12/22/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\CHARTE~1\backweb\3528733\Program\SERVIC~1.EXE
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fsgk32st.exe
C:\Program Files\Charter High-Speed Security Suite\backweb\3528733\program\fsbwsys.exe
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\FSGK32.EXE
C:\Program Files\Charter High-Speed Security Suite\Common\FSMA32.EXE
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fssm32.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Charter High-Speed Security Suite\Common\FSMB32.EXE
C:\Program Files\Charter High-Speed Security Suite\backweb\3528733\Program\fspex.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Lexmark 2300 Series\ezprint.exe
C:\Program Files\Charter High-Speed Security Suite\Common\FCH32.EXE
C:\Program Files\Charter High-Speed Security Suite\Common\FAMEH32.EXE
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fsqh.exe
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fsrw.exe
C:\Program Files\Charter High-Speed Security Suite\FSPC\fspc.exe
C:\Program Files\Charter High-Speed Security Suite\Common\FSM32.EXE
C:\Program Files\Charter High-Speed Security Suite\FSGUI\ispnews.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Charter High-Speed Security Suite\FWES\Program\fsdfwd.exe
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\lxcgcoms.exe
C:\PROGRA~1\CHARTE~1\ANTI-S~1\fsaw.exe
C:\Program Files\Charter High-Speed Security Suite\FSGUI\fsguidll.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Owner\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://dmfsniperclan.com/news.php
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: (no name) - _{EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: 205.238.40.52 www.winmx.com err.winmx.com
O1 - Hosts: 205.238.40.1 cache0.winmx.com test3201.winmx.com test3205.winmx.com
O1 - Hosts: 205.238.40.2 cache1.winmx.com test3202.winmx.com test3206.winmx.com
O1 - Hosts: 82.43.224.20 cache2.winmx.com test3203.winmx.com test3207.winmx.com
O1 - Hosts: 82.204.21.111 cache3.winmx.com test3204.winmx.com test3208.winmx.com
O1 - Hosts: 205.238.40.1 c3310.z1301.winmx.com c3310.z1302.winmx.com c3310.z1303.winmx.com c3310.z1304.winmx.com c3310.z1305.winmx.com c3310.z1306.winmx.com
O1 - Hosts: 205.238.40.1 c3311.z1301.winmx.com c3311.z1302.winmx.com c3311.z1303.winmx.com c3311.z1304.winmx.com c3311.z1305.winmx.com c3311.z1306.winmx.com
O1 - Hosts: 205.238.40.1 c3312.z1301.winmx.com c3312.z1302.winmx.com c3312.z1303.winmx.com c3312.z1304.winmx.com c3312.z1305.winmx.com c3312.z1306.winmx.com
O1 - Hosts: 205.238.40.2 c3313.z1301.winmx.com c3313.z1302.winmx.com c3313.z1303.winmx.com c3313.z1304.winmx.com c3313.z1305.winmx.com c3313.z1306.winmx.com
O1 - Hosts: 205.238.40.2 c3314.z1301.winmx.com c3314.z1302.winmx.com c3314.z1303.winmx.com c3314.z1304.winmx.com c3314.z1305.winmx.com c3314.z1306.winmx.com
O1 - Hosts: 205.238.40.2 c3315.z1301.winmx.com c3315.z1302.winmx.com c3315.z1303.winmx.com c3315.z1304.winmx.com c3315.z1305.winmx.com c3315.z1306.winmx.com
O1 - Hosts: 82.43.224.20 c3316.z1301.winmx.com c3316.z1302.winmx.com c3316.z1303.winmx.com c3316.z1304.winmx.com c3316.z1305.winmx.com c3316.z1306.winmx.com
O1 - Hosts: 82.43.224.20 c3317.z1301.winmx.com c3317.z1302.winmx.com c3317.z1303.winmx.com c3317.z1304.winmx.com c3317.z1305.winmx.com c3317.z1306.winmx.com
O1 - Hosts: 82.204.21.111 c3318.z1301.winmx.com c3318.z1302.winmx.com c3318.z1303.winmx.com c3318.z1304.winmx.com c3318.z1305.winmx.com c3318.z1306.winmx.com
O1 - Hosts: 82.204.21.111 c3319.z1301.winmx.com c3319.z1302.winmx.com c3319.z1303.winmx.com c3319.z1304.winmx.com c3319.z1305.winmx.com c3319.z1306.winmx.com
O1 - Hosts: 205.238.40.1 c3520.z1301.winmx.com c3520.z1302.winmx.com c3520.z1303.winmx.com c3520.z1304.winmx.com c3520.z1305.winmx.com c3520.z1306.winmx.com
O1 - Hosts: 205.238.40.1 c3521.z1301.winmx.com c3521.z1302.winmx.com c3521.z1303.winmx.com c3521.z1304.winmx.com c3521.z1305.winmx.com c3521.z1306.winmx.com
O1 - Hosts: 205.238.40.1 c3522.z1301.winmx.com c3522.z1302.winmx.com c3522.z1303.winmx.com c3522.z1304.winmx.com c3522.z1305.winmx.com c3522.z1306.winmx.com
O1 - Hosts: 205.238.40.2 c3523.z1301.winmx.com c3523.z1302.winmx.com c3523.z1303.winmx.com c3523.z1304.winmx.com c3523.z1305.winmx.com c3523.z1306.winmx.com
O1 - Hosts: 205.238.40.2 c3524.z1301.winmx.com c3524.z1302.winmx.com c3524.z1303.winmx.com c3524.z1304.winmx.com c3524.z1305.winmx.com c3524.z1306.winmx.com
O1 - Hosts: 205.238.40.2 c3525.z1301.winmx.com c3525.z1302.winmx.com c3525.z1303.winmx.com c3525.z1304.winmx.com c3525.z1305.winmx.com c3525.z1306.winmx.com
O1 - Hosts: 82.43.224.20 c3526.z1301.winmx.com c3526.z1302.winmx.com c3526.z1303.winmx.com c3526.z1304.winmx.com c3526.z1305.winmx.com c3526.z1306.winmx.com
O1 - Hosts: 82.43.224.20 c3527.z1301.winmx.com c3527.z1302.winmx.com c3527.z1303.winmx.com c3527.z1304.winmx.com c3527.z1305.winmx.com c3527.z1306.winmx.com
O1 - Hosts: 82.204.21.111 c3528.z1301.winmx.com c3528.z1302.winmx.com c3528.z1303.winmx.com c3528.z1304.winmx.com c3528.z1305.winmx.com c3528.z1306.winmx.com
O1 - Hosts: 82.204.21.111 c3529.z1301.winmx.com c3529.z1302.winmx.com c3529.z1303.winmx.com c3529.z1304.winmx.com c3529.z1305.winmx.com c3529.z1306.winmx.com
O3 - Toolbar: Systran40premi.IEPlugIn - {CFB25594-4D5F-11D6-AB7B-00B0D094B576} - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll
O3 - Toolbar: (no name) - {CBCC61FA-0221-4ccc-B409-CEE865CACA3A} - (no file)
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LXCGCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [lxcgmon.exe] "C:\Program Files\Lexmark 2300 Series\lxcgmon.exe"
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 2300 Series\ezprint.exe"
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Charter High-Speed Security Suite\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Charter High-Speed Security Suite\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\Charter High-Speed Security Suite\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\Charter High-Speed Security Suite\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [Profiler] C:\Program Files\Saitek\Software\Profiler.exe
O4 - HKLM\..\Run: [SaiSmart] C:\Program Files\Saitek\Software\SaiSmart.exe
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser Mouse\mouse32a.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: PowerReg Scheduler V3.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Charter High-Speed Security Suite.lnk = C:\Program Files\Charter High-Speed Security Suite\backweb\3528733\Program\fspex.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Block this popup - C:\Program Files\Charter High-Speed Security Suite\Anti-Spyware\blockpopups.htm
O9 - Extra button: Web Filter - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Charter High-Speed Security Suite\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Charter High-Speed Security Suite\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Web Filter - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Charter High-Speed Security Suite\FSPC\fspcmsie.dll
O9 - Extra button: IE Shield - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Charter High-Speed Security Suite\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: IE Shield... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Charter High-Speed Security Suite\Anti-Spyware\ieshield.dll
O9 - Extra button: (no name) - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - (no file)
O9 - Extra 'Tools' menuitem: Java - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - (no file)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'winsflt.dll' missing
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcaf...01/mcinsctl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1127223241327
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1149454112140
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1....loadManager.ocx
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.11) - http://gameadvisor.f...obal/msc311.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: Explorer - C:\WINDOWS\system32\j24o0ch3ef4.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Charter High-Speed Security Suite (BackWeb Plug-in - 3528733) - BackWeb Technologies Inc. - C:\PROGRA~1\CHARTE~1\backweb\3528733\Program\SERVIC~1.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fsgk32st.exe
O23 - Service: FSBWSYS - F-Secure Corp. - C:\Program Files\Charter High-Speed Security Suite\backweb\3528733\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Charter High-Speed Security Suite\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure HTTP Server (fshttps) - F-Secure Corporation - C:\Program Files\Charter High-Speed Security Suite\FSPC\fshttps\fshttps.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Charter High-Speed Security Suite\Common\FSMA32.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: lxcg_device - - C:\WINDOWS\system32\lxcgcoms.exe
O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe

Edited by Jigalow, 22 December 2006 - 08:59 PM.

  • 0

Advertisements

#2
loophole
Posted 22 December 2006 - 09:02 PM

loophole

    Malware Expert

  • Retired Staff
  • 9,798 posts
Hi :whistling:

Please download Look2Me-Destroyer.exe to your desktop.
  • Close all windows before continuing.
  • Double-click Look2Me-Destroyer.exe to run it.
  • Put a check next to Run this program as a task.
  • You will receive a message saying Look2Me-Destroyer will close and re-open in approximately 1 minute. Click OK
  • When Look2Me-Destroyer re-opens, click the Scan for L2M button, your desktop icons will disappear, this is normal.
  • Once it's done scanning, click the Remove L2M button.
  • You will receive a Done Scanning message, click OK.
  • When completed, you will receive this message: Done removing infected files! Look2Me-Destroyer will now shutdown your computer, click OK.
  • Your computer will then shutdown.
  • Turn your computer back on.
  • Please post the contents of Look2Me-Destroyer.txt (it can be found wherever you saved Look2Me-Destroyer.exe) and a new HiJackThis log.
If Look2Me-Destroyer does not reopen automatically, reboot and try again.
  • 0

#3
Jigalow
Posted 22 December 2006 - 09:17 PM

Jigalow

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
Look2Me-Destroyer V1.0.12

Scanning for infected files.....
Scan started at 12/22/2006 9:08:03 PM

Infected! C:\WINDOWS\system32\j24o0ch3ef4.dll
Infected! C:\WINDOWS\system32\aza80ghue6480.dll
Infected! C:\WINDOWS\system32\azaslgh7164.dll
Infected! C:\WINDOWS\system32\bbowser.dll
Infected! C:\WINDOWS\system32\c2002cdmgf0a2.dll
Infected! C:\WINDOWS\system32\dn4801hue.dll
Infected! C:\WINDOWS\system32\dn8m01l1e.dll
Infected! C:\WINDOWS\system32\dnj4011qe.dll
Infected! C:\WINDOWS\system32\e6202gfmg62a2.dll
Infected! C:\WINDOWS\system32\e8202ifmg82a2.dll
Infected! C:\WINDOWS\system32\e8jm0i11e8.dll
Infected! C:\WINDOWS\system32\en66l1js1.dll
Infected! C:\WINDOWS\system32\en6ml1j11.dll
Infected! C:\WINDOWS\system32\en88l1lu1.dll
Infected! C:\WINDOWS\system32\enl0l13m1.dll
Infected! C:\WINDOWS\system32\f02m0af1ed2.dll
Infected! C:\WINDOWS\system32\f82mlif1182.dll
Infected! C:\WINDOWS\system32\fentext.dll
Infected! C:\WINDOWS\system32\fprm0391e.dll
Infected! C:\WINDOWS\system32\g0400ahmed4a0.dll
Infected! C:\WINDOWS\system32\g8220ifoe82c0.dll
Infected! C:\WINDOWS\system32\gp0ml3d11.dll
Infected! C:\WINDOWS\system32\gppul3791.dll
Infected! C:\WINDOWS\system32\h0n0la5m1d.dll
Infected! C:\WINDOWS\system32\h84m0ih1e84.dll
Infected! C:\WINDOWS\system32\hp4023hmg.dll
Infected! C:\WINDOWS\system32\hr0005dme.dll
Infected! C:\WINDOWS\system32\hrj6051se.dll
Infected! C:\WINDOWS\system32\i2jq0c15ef.dll
Infected! C:\WINDOWS\system32\i8jq0i15e8.dll
Infected! C:\WINDOWS\system32\iisecsnp.dll
Infected! C:\WINDOWS\system32\ir6sl5j71.dll
Infected! C:\WINDOWS\system32\ir8sl5l71.dll
Infected! C:\WINDOWS\system32\irj2l51o1.dll
Infected! C:\WINDOWS\system32\irnsl5571.dll
Infected! C:\WINDOWS\system32\j02qlaf51d2.dll
Infected! C:\WINDOWS\system32\guard.tmp

Attempting to delete infected files...

Attempting to delete: C:\WINDOWS\system32\j24o0ch3ef4.dll
C:\WINDOWS\system32\j24o0ch3ef4.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\aza80ghue6480.dll
C:\WINDOWS\system32\aza80ghue6480.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\azaslgh7164.dll
C:\WINDOWS\system32\azaslgh7164.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\bbowser.dll
C:\WINDOWS\system32\bbowser.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\c2002cdmgf0a2.dll
C:\WINDOWS\system32\c2002cdmgf0a2.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\dn4801hue.dll
C:\WINDOWS\system32\dn4801hue.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\dn8m01l1e.dll
C:\WINDOWS\system32\dn8m01l1e.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\dnj4011qe.dll
C:\WINDOWS\system32\dnj4011qe.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\e6202gfmg62a2.dll
C:\WINDOWS\system32\e6202gfmg62a2.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\e8202ifmg82a2.dll
C:\WINDOWS\system32\e8202ifmg82a2.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\e8jm0i11e8.dll
C:\WINDOWS\system32\e8jm0i11e8.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\en66l1js1.dll
C:\WINDOWS\system32\en66l1js1.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\en6ml1j11.dll
C:\WINDOWS\system32\en6ml1j11.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\en88l1lu1.dll
C:\WINDOWS\system32\en88l1lu1.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\enl0l13m1.dll
C:\WINDOWS\system32\enl0l13m1.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\f02m0af1ed2.dll
C:\WINDOWS\system32\f02m0af1ed2.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\f82mlif1182.dll
C:\WINDOWS\system32\f82mlif1182.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\fentext.dll
C:\WINDOWS\system32\fentext.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\fprm0391e.dll
C:\WINDOWS\system32\fprm0391e.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\g0400ahmed4a0.dll
C:\WINDOWS\system32\g0400ahmed4a0.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\g8220ifoe82c0.dll
C:\WINDOWS\system32\g8220ifoe82c0.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\gp0ml3d11.dll
C:\WINDOWS\system32\gp0ml3d11.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\gppul3791.dll
C:\WINDOWS\system32\gppul3791.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\h0n0la5m1d.dll
C:\WINDOWS\system32\h0n0la5m1d.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\h84m0ih1e84.dll
C:\WINDOWS\system32\h84m0ih1e84.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\hp4023hmg.dll
C:\WINDOWS\system32\hp4023hmg.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\hr0005dme.dll
C:\WINDOWS\system32\hr0005dme.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\hrj6051se.dll
C:\WINDOWS\system32\hrj6051se.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\i2jq0c15ef.dll
C:\WINDOWS\system32\i2jq0c15ef.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\i8jq0i15e8.dll
C:\WINDOWS\system32\i8jq0i15e8.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\iisecsnp.dll
C:\WINDOWS\system32\iisecsnp.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\ir6sl5j71.dll
C:\WINDOWS\system32\ir6sl5j71.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\ir8sl5l71.dll
C:\WINDOWS\system32\ir8sl5l71.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\irj2l51o1.dll
C:\WINDOWS\system32\irj2l51o1.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\irnsl5571.dll
C:\WINDOWS\system32\irnsl5571.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\j02qlaf51d2.dll
C:\WINDOWS\system32\j02qlaf51d2.dll could not be deleted!

Attempting to delete: C:\WINDOWS\system32\guard.tmp
C:\WINDOWS\system32\guard.tmp could not be deleted!

Making registry repairs.

Removing: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Explorer

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{C666E3B5-649E-4EF7-AD1C-04D9CCA6B54C}"
HKCR\Clsid\{C666E3B5-649E-4EF7-AD1C-04D9CCA6B54C}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{64CDDE33-6E59-4B0B-BAB3-AC50764971A5}"
HKCR\Clsid\{64CDDE33-6E59-4B0B-BAB3-AC50764971A5}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{BBFBF4B5-A205-4DDE-AE20-E8FC0DCB013A}"
HKCR\Clsid\{BBFBF4B5-A205-4DDE-AE20-E8FC0DCB013A}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{8F1366AA-9BE6-4652-9F63-A16E3CC2F2AB}"
HKCR\Clsid\{8F1366AA-9BE6-4652-9F63-A16E3CC2F2AB}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{FF9B7D62-95B6-4CD9-9241-1BD1762BFFB2}"
HKCR\Clsid\{FF9B7D62-95B6-4CD9-9241-1BD1762BFFB2}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{DBEDD854-5A05-4955-98BB-6F21B2D2A09F}"
HKCR\Clsid\{DBEDD854-5A05-4955-98BB-6F21B2D2A09F}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{25CD960F-0288-4218-8D1E-6F97D147A71F}"
HKCR\Clsid\{25CD960F-0288-4218-8D1E-6F97D147A71F}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{C35AE59E-718D-4EA5-8A18-28FA75E02E2A}"
HKCR\Clsid\{C35AE59E-718D-4EA5-8A18-28FA75E02E2A}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{E0121E8B-1B74-4A04-BC92-AA4467BD083C}"
HKCR\Clsid\{E0121E8B-1B74-4A04-BC92-AA4467BD083C}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{3363EB1C-F1C0-48C1-9ABC-385461273D60}"
HKCR\Clsid\{3363EB1C-F1C0-48C1-9ABC-385461273D60}

Restoring Windows certificates.

Replaced hosts file with default windows hosts file


Restoring SeDebugPrivilege for Administrators - Succeeded
  • 0

#4
Jigalow
Posted 22 December 2006 - 09:19 PM

Jigalow

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
Logfile of HijackThis v1.99.1
Scan saved at 9:19:06 PM, on 12/22/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\CHARTE~1\backweb\3528733\Program\SERVIC~1.EXE
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fsgk32st.exe
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\FSGK32.EXE
C:\Program Files\Charter High-Speed Security Suite\backweb\3528733\program\fsbwsys.exe
C:\Program Files\Charter High-Speed Security Suite\Common\FSMA32.EXE
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fssm32.exe
C:\Program Files\Charter High-Speed Security Suite\Common\FSMB32.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Charter High-Speed Security Suite\backweb\3528733\Program\fspex.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Charter High-Speed Security Suite\Common\FCH32.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Lexmark 2300 Series\ezprint.exe
C:\Program Files\Charter High-Speed Security Suite\Common\FAMEH32.EXE
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fsqh.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fsrw.exe
C:\Program Files\Charter High-Speed Security Suite\FSPC\fspc.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Charter High-Speed Security Suite\Common\FSM32.EXE
C:\Program Files\Charter High-Speed Security Suite\FSGUI\ispnews.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fsav32.exe
C:\Program Files\Charter High-Speed Security Suite\FWES\Program\fsdfwd.exe
C:\WINDOWS\system32\lxcgcoms.exe
C:\PROGRA~1\CHARTE~1\ANTI-S~1\fsaw.exe
C:\Program Files\Charter High-Speed Security Suite\FSGUI\fsguidll.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Owner\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://dmfsniperclan.com/news.php
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: (no name) - _{EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O3 - Toolbar: Systran40premi.IEPlugIn - {CFB25594-4D5F-11D6-AB7B-00B0D094B576} - C:\Program Files\Systran\4_0\Premium\IEPlugIn.dll
O3 - Toolbar: (no name) - {CBCC61FA-0221-4ccc-B409-CEE865CACA3A} - (no file)
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LXCGCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [lxcgmon.exe] "C:\Program Files\Lexmark 2300 Series\lxcgmon.exe"
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 2300 Series\ezprint.exe"
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Charter High-Speed Security Suite\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Charter High-Speed Security Suite\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\Charter High-Speed Security Suite\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\Charter High-Speed Security Suite\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [Profiler] C:\Program Files\Saitek\Software\Profiler.exe
O4 - HKLM\..\Run: [SaiSmart] C:\Program Files\Saitek\Software\SaiSmart.exe
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser Mouse\mouse32a.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: PowerReg Scheduler V3.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Charter High-Speed Security Suite.lnk = C:\Program Files\Charter High-Speed Security Suite\backweb\3528733\Program\fspex.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Block this popup - C:\Program Files\Charter High-Speed Security Suite\Anti-Spyware\blockpopups.htm
O9 - Extra button: Web Filter - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Charter High-Speed Security Suite\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Charter High-Speed Security Suite\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Web Filter - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Charter High-Speed Security Suite\FSPC\fspcmsie.dll
O9 - Extra button: IE Shield - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Charter High-Speed Security Suite\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: IE Shield... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Charter High-Speed Security Suite\Anti-Spyware\ieshield.dll
O9 - Extra button: (no name) - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - (no file)
O9 - Extra 'Tools' menuitem: Java - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - (no file)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'winsflt.dll' missing
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcaf...01/mcinsctl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1127223241327
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1149454112140
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1....loadManager.ocx
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.11) - http://gameadvisor.f...obal/msc311.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Charter High-Speed Security Suite (BackWeb Plug-in - 3528733) - BackWeb Technologies Inc. - C:\PROGRA~1\CHARTE~1\backweb\3528733\Program\SERVIC~1.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Charter High-Speed Security Suite\Anti-Virus\fsgk32st.exe
O23 - Service: FSBWSYS - F-Secure Corp. - C:\Program Files\Charter High-Speed Security Suite\backweb\3528733\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Charter High-Speed Security Suite\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure HTTP Server (fshttps) - F-Secure Corporation - C:\Program Files\Charter High-Speed Security Suite\FSPC\fshttps\fshttps.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Charter High-Speed Security Suite\Common\FSMA32.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: lxcg_device - - C:\WINDOWS\system32\lxcgcoms.exe
O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Unknown owner - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe (file missing)
  • 0

#5
loophole
Posted 22 December 2006 - 09:20 PM

loophole

    Malware Expert

  • Retired Staff
  • 9,798 posts
Run it one more time for me please
  • 0

#6
Jigalow
Posted 22 December 2006 - 09:34 PM

Jigalow

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
Look2Me-Destroyer V1.0.12

Scanning for infected files.....
Scan started at 12/22/2006 9:22:08 PM

Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177918.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177919.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177920.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177921.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177922.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177923.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177924.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177925.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177926.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177927.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177928.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177929.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177930.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177931.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177932.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177933.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177934.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177935.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177936.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177937.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177938.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177939.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177940.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177941.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177942.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177943.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177944.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177945.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177946.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177947.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177948.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177949.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177950.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177951.dll
Infected! C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177952.dll
Infected! C:\WINDOWS\system32\j22q0cf5ef2.dll
Infected! C:\WINDOWS\system32\j24o0ch3ef4.dll
Infected! C:\WINDOWS\system32\j44o0eh3eh4.dll
Infected! C:\WINDOWS\system32\j86m0ij1e8o.dll
Infected! C:\WINDOWS\system32\jrl0253mg.dll
Infected! C:\WINDOWS\system32\jt0207doe.dll
Infected! C:\WINDOWS\system32\jt4407hqe.dll
Infected! C:\WINDOWS\system32\jt4607hse.dll
Infected! C:\WINDOWS\system32\jtr4079qe.dll
Infected! C:\WINDOWS\system32\k008ladu1d08.dll
Infected! C:\WINDOWS\system32\k662lgjo16oc.dll
Infected! C:\WINDOWS\system32\k8800ilme8qa0.dll
Infected! C:\WINDOWS\system32\kt44l7hq1.dll
Infected! C:\WINDOWS\system32\ktr8l79u1.dll
Infected! C:\WINDOWS\system32\ktrml7911.dll
Infected! C:\WINDOWS\system32\l04qlah51d4.dll
Infected! C:\WINDOWS\system32\l4j8le1u1h.dll
Infected! C:\WINDOWS\system32\l4l60e3seh.dll
Infected! C:\WINDOWS\system32\l6p2lg7o16.dll
Infected! C:\WINDOWS\system32\lhasrv.dll
Infected! C:\WINDOWS\system32\lv0q09d5e.dll
Infected! C:\WINDOWS\system32\lv0s09d7e.dll
Infected! C:\WINDOWS\system32\lv2409fqe.dll
Infected! C:\WINDOWS\system32\lv4m09h1e.dll
Infected! C:\WINDOWS\system32\lvr0099me.dll
Infected! C:\WINDOWS\system32\lvr4099qe.dll
Infected! C:\WINDOWS\system32\m0rmla911d.dll
Infected! C:\WINDOWS\system32\mchtmled.dll
Infected! C:\WINDOWS\system32\mgieftp.dll
Infected! C:\WINDOWS\system32\muicda.dll
Infected! C:\WINDOWS\system32\mv46l9hs1.dll
Infected! C:\WINDOWS\system32\mv80l9lm1.dll
Infected! C:\WINDOWS\system32\mvjml9111.dll
Infected! C:\WINDOWS\system32\mvn6l95s1.dll
Infected! C:\WINDOWS\system32\n08olal31dq.dll
Infected! C:\WINDOWS\system32\n64slgh7164.dll
Infected! C:\WINDOWS\system32\n8l8li3u18.dll
Infected! C:\WINDOWS\system32\o2pq0c75ef.dll
Infected! C:\WINDOWS\system32\o4ns0e57eh.dll
Infected! C:\WINDOWS\system32\o6480ghue6480.dll
Infected! C:\WINDOWS\system32\o6lu0g39e6.dll
Infected! C:\WINDOWS\system32\oceprn.dll
Infected! C:\WINDOWS\system32\ordbse32.dll
Infected! C:\WINDOWS\system32\p2n80c5uef.dll
Infected! C:\WINDOWS\system32\p64ulgh9164.dll
Infected! C:\WINDOWS\system32\p66s0gj7e6o.dll
Infected! C:\WINDOWS\system32\p66slgj716o.dll
Infected! C:\WINDOWS\system32\p68q0gl5e6q.dll
Infected! C:\WINDOWS\system32\r2p80c7uef.dll
Infected! C:\WINDOWS\system32\r88s0il7e8q.dll
Infected! C:\WINDOWS\system32\r88slil718q.dll
Infected! C:\WINDOWS\system32\s0rs0a97ed.dll
Infected! C:\WINDOWS\system32\t08u0al9edq.dll
Infected! C:\WINDOWS\system32\t2r80c9uef.dll
Infected! C:\WINDOWS\system32\t68u0gl9e6q.dll
Infected! C:\WINDOWS\system32\vnrsion.dll
Infected! C:\WINDOWS\system32\vuar332.dll
Infected! C:\WINDOWS\system32\wrdtrace.dll

Attempting to delete infected files...

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177918.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177918.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177919.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177919.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177920.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177920.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177921.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177921.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177922.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177922.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177923.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177923.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177924.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177924.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177925.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177925.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177926.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177926.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177927.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177927.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177928.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177928.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177929.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177929.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177930.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177930.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177931.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177931.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177932.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177932.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177933.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177933.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177934.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177934.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177935.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177935.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177936.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177936.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177937.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177937.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177938.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177938.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177939.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177939.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177940.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177940.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177941.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177941.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177942.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177942.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177943.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177943.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177944.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177944.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177945.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177945.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177946.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177946.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177947.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177947.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177948.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177948.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177949.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177949.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177950.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177950.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177951.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177951.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177952.dll
C:\System Volume Information\_restore{43FA9120-6A4A-4732-9136-B9C22AE89DC2}\RP400\A0177952.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\j22q0cf5ef2.dll
C:\WINDOWS\system32\j22q0cf5ef2.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\j24o0ch3ef4.dll
C:\WINDOWS\system32\j24o0ch3ef4.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\j44o0eh3eh4.dll
C:\WINDOWS\system32\j44o0eh3eh4.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\j86m0ij1e8o.dll
C:\WINDOWS\system32\j86m0ij1e8o.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\jrl0253mg.dll
C:\WINDOWS\system32\jrl0253mg.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\jt0207doe.dll
C:\WINDOWS\system32\jt0207doe.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\jt4407hqe.dll
C:\WINDOWS\system32\jt4407hqe.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\jt4607hse.dll
C:\WINDOWS\system32\jt4607hse.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\jtr4079qe.dll
C:\WINDOWS\system32\jtr4079qe.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\k008ladu1d08.dll
C:\WINDOWS\system32\k008ladu1d08.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\k662lgjo16oc.dll
C:\WINDOWS\system32\k662lgjo16oc.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\k8800ilme8qa0.dll
C:\WINDOWS\system32\k8800ilme8qa0.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\kt44l7hq1.dll
C:\WINDOWS\system32\kt44l7hq1.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\ktr8l79u1.dll
C:\WINDOWS\system32\ktr8l79u1.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\ktrml7911.dll
C:\WINDOWS\system32\ktrml7911.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\l04qlah51d4.dll
C:\WINDOWS\system32\l04qlah51d4.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\l4j8le1u1h.dll
C:\WINDOWS\system32\l4j8le1u1h.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\l4l60e3seh.dll
C:\WINDOWS\system32\l4l60e3seh.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\l6p2lg7o16.dll
C:\WINDOWS\system32\l6p2lg7o16.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\lhasrv.dll
C:\WINDOWS\system32\lhasrv.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\lv0q09d5e.dll
C:\WINDOWS\system32\lv0q09d5e.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\lv0s09d7e.dll
C:\WINDOWS\system32\lv0s09d7e.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\lv2409fqe.dll
C:\WINDOWS\system32\lv2409fqe.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\lv4m09h1e.dll
C:\WINDOWS\system32\lv4m09h1e.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\lvr0099me.dll
C:\WINDOWS\system32\lvr0099me.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\lvr4099qe.dll
C:\WINDOWS\system32\lvr4099qe.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\m0rmla911d.dll
C:\WINDOWS\system32\m0rmla911d.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mchtmled.dll
C:\WINDOWS\system32\mchtmled.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mgieftp.dll
C:\WINDOWS\system32\mgieftp.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\muicda.dll
C:\WINDOWS\system32\muicda.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mv46l9hs1.dll
C:\WINDOWS\system32\mv46l9hs1.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mv80l9lm1.dll
C:\WINDOWS\system32\mv80l9lm1.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mvjml9111.dll
C:\WINDOWS\system32\mvjml9111.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mvn6l95s1.dll
C:\WINDOWS\system32\mvn6l95s1.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\n08olal31dq.dll
C:\WINDOWS\system32\n08olal31dq.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\n64slgh7164.dll
C:\WINDOWS\system32\n64slgh7164.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\n8l8li3u18.dll
C:\WINDOWS\system32\n8l8li3u18.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\o2pq0c75ef.dll
C:\WINDOWS\system32\o2pq0c75ef.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\o4ns0e57eh.dll
C:\WINDOWS\system32\o4ns0e57eh.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\o6480ghue6480.dll
C:\WINDOWS\system32\o6480ghue6480.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\o6lu0g39e6.dll
C:\WINDOWS\system32\o6lu0g39e6.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\oceprn.dll
C:\WINDOWS\system32\oceprn.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\ordbse32.dll
C:\WINDOWS\system32\ordbse32.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\p2n80c5uef.dll
C:\WINDOWS\system32\p2n80c5uef.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\p64ulgh9164.dll
C:\WINDOWS\system32\p64ulgh9164.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\p66s0gj7e6o.dll
C:\WINDOWS\system32\p66s0gj7e6o.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\p66slgj716o.dll
C:\WINDOWS\system32\p66slgj716o.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\p68q0gl5e6q.dll
C:\WINDOWS\system32\p68q0gl5e6q.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\r2p80c7uef.dll
C:\WINDOWS\system32\r2p80c7uef.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\r88s0il7e8q.dll
C:\WINDOWS\system32\r88s0il7e8q.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\r88slil718q.dll
C:\WINDOWS\system32\r88slil718q.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\s0rs0a97ed.dll
C:\WINDOWS\system32\s0rs0a97ed.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\t08u0al9edq.dll
C:\WINDOWS\system32\t08u0al9edq.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\t2r80c9uef.dll
C:\WINDOWS\system32\t2r80c9uef.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\t68u0gl9e6q.dll
C:\WINDOWS\system32\t68u0gl9e6q.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\vnrsion.dll
C:\WINDOWS\system32\vnrsion.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\vuar332.dll
C:\WINDOWS\system32\vuar332.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\wrdtrace.dll
C:\WINDOWS\system32\wrdtrace.dll Deleted successfully!

Making registry repairs.


Restoring Windows certificates.

Replaced hosts file with default windows hosts file


Restoring SeDebugPrivilege for Administrators - Succeeded
  • 0

#7
loophole
Posted 22 December 2006 - 09:55 PM

loophole

    Malware Expert

  • Retired Staff
  • 9,798 posts
Thats more like it :whistling:

Scan with your anti-virus and see if it finds anything
  • 0

#8
Jigalow
Posted 23 December 2006 - 08:03 PM

Jigalow

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
Hi Loophole,
Sorry I didn't get back to you last night, I had to get some sleep before work this morning. anyhow I just wanted to say thank you for all your help and it looks like that took care of my problem. I still have a few other issues that I would like to discuss but, they are really not that serious or causing any problems so I will bring those to your attention a little later on when I have a little more time. just wanted to stop by and thank you for taking the time to help me. Much appreciated!

Thanks,
Jigalow
  • 0

#9
loophole
Posted 24 December 2006 - 08:01 AM

loophole

    Malware Expert

  • Retired Staff
  • 9,798 posts
Yor welcome, Its a busy time of year for most :whistling:

Just post back when your ready
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP