Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

RE: kernel data inpage error

Started by SAGAR SONAWANE , Nov 30 2010 12:56 AM

  • Please log in to reply

#1
SAGAR SONAWANE
Posted 30 November 2010 - 12:56 AM

SAGAR SONAWANE

    Member

  • Member
  • PipPip
  • 12 posts
hi friends actually my pc hangs after every few minutes and a blue screen error message appears generally the kernel inpage error...we had given our pc to our manufacturer and he did some repairing of registry...but even then the problem was not solved...then we again sent it to him and he told us that the pc needs to be formatted and that our windows xp cd have problem so he installed xp from a cd of his...he actually worked on our pc the whole day and told us that the eror msg is not coming...when we brought our pc to our home then again it shows the same error..so now he is telling us to change our ram...i dont knoe ehat to do...I think since i use some softwares like skype(latest version) my computer might not support it and therefore causing the error..should i change my pc and a take new one with i3 processor or should i change this pcs ram...what is thy opinion ppl???? plz do help me..
ypu can also see to my older post
http://www.geekstogo..._1#entry1922088

extras.txt-

OTL Extras logfile created on: 30/11/2010 12:10:15 PM - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\SHREE\My Documents\Downloads
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yyyy

1,014.00 Mb Total Physical Memory | 533.00 Mb Available Physical Memory | 53.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 87.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19.52 Gb Total Space | 11.90 Gb Free Space | 60.93% Space Free | Partition Type: FAT32
Drive D: | 24.40 Gb Total Space | 19.54 Gb Free Space | 80.07% Space Free | Partition Type: FAT32
Drive E: | 30.57 Gb Total Space | 18.02 Gb Free Space | 58.97% Space Free | Partition Type: FAT32

Computer Name: SHREE-036EDE4DD | User Name: SHREE | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- C:\Program Files\Net Protector 2010\ZVScan\EXECSCAN.EXE ()
.com [@ = comfile] -- C:\Program Files\Net Protector 2010\ZVScan\EXECSCAN.EXE ()
.exe [@ = exefile] -- C:\Program Files\Net Protector 2010\ZVScan\EXECSCAN.EXE ()
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
.pif [@ = piffile] -- C:\Program Files\Net Protector 2010\ZVScan\EXECSCAN.EXE ()
.scr [@ = scrfile] -- C:\Program Files\Net Protector 2010\ZVScan\EXECSCAN.EXE ()

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- C:\PROGRA~1\NETPRO~1\ZVSCAN\EXECSCAN.EXE "%1" %* ()
cmdfile [open] -- "%1" %*
comfile [open] -- C:\PROGRA~1\NETPRO~1\ZVSCAN\EXECSCAN.EXE "%1" %* ()
exefile [open] -- C:\PROGRA~1\NETPRO~1\ZVSCAN\EXECSCAN.EXE "%1" %* ()
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
piffile [open] -- C:\PROGRA~1\NETPRO~1\ZVSCAN\EXECSCAN.EXE "%1" %* ()
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- C:\PROGRA~1\NETPRO~1\ZVSCAN\EXECSCAN.EXE "%1" /S ()
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\Winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\Winamp.exe" "%1" (Nullsoft)
Directory [ZERO-V] -- C:\Program Files\Net Protector 2010\ZVScan\Runscan.exe %1 (Biz Secure Labs Pvt Ltd.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"UacDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)
"C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager -- File not found


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{786C5747-1033-0000-B58E-000000000001}" = Adobe Stock Photos 1.0
"{84B2CF01-194D-2284-B313-F2E0D78D1033}" = Nero 7 Demo
"{8C19F391-A225-4F32-8681-EDB8AFE6E436}" = ML-1200 Series
"{8EDBA74D-0686-4C99-BFDD-F894678E5B39}" = Adobe Common File Installer
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1033-7B44-A70000000000}" = Adobe Reader 7.0
"{B74D4E10-1033-0000-0000-000000000001}" = Adobe Bridge 1.0
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{D124C1D1-963E-485A-AF7C-52E5CAA2CEF6}" = Net Protector 2010
"{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"CBF192A85B624E32B8D19ADEEF2DCFC5BC3AA73A" = Windows Driver Package - Nokia Modem (03/05/2008 3.7)
"Google Chrome" = Google Chrome
"HDMI" = Intel® Graphics Media Accelerator Driver
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 3.4.0
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"MP3 To Ringtone Gold_is1" = MP3 To Ringtone Gold 3.16
"Samsung ML-2010 Series" = Samsung ML-2010 Series
"VLC media player" = VideoLAN VLC media player 0.8.4a
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Winamp" = Winamp (remove only)
"Yahoo! Messenger" = Yahoo! Messenger

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 28/11/2010 9:46:35 AM | Computer Name = SHREE-036EDE4DD | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 6.0.2900.2180, faulting
module mshtml.dll, version 6.0.2900.2180, fault address 0x001d39c9.

Error - 28/11/2010 10:56:06 AM | Computer Name = SHREE-036EDE4DD | Source = Application Hang | ID = 1002
Description = Hanging application YahooMessenger.exe, version 9.0.0.797, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

[ System Events ]
Error - 30/11/2010 2:42:01 AM | Computer Name = SHREE-036EDE4DD | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk0\D.

Error - 30/11/2010 2:42:03 AM | Computer Name = SHREE-036EDE4DD | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk0\D.

Error - 30/11/2010 2:42:04 AM | Computer Name = SHREE-036EDE4DD | Source = atapi | ID = 262149
Description = A parity error was detected on \Device\Ide\IdePort0.

Error - 30/11/2010 2:42:04 AM | Computer Name = SHREE-036EDE4DD | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk0\D.

Error - 30/11/2010 2:42:05 AM | Computer Name = SHREE-036EDE4DD | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk0\D.

Error - 30/11/2010 2:42:05 AM | Computer Name = SHREE-036EDE4DD | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk0\D.

Error - 30/11/2010 2:42:06 AM | Computer Name = SHREE-036EDE4DD | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk0\D.

Error - 30/11/2010 2:42:07 AM | Computer Name = SHREE-036EDE4DD | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk0\D.

Error - 30/11/2010 2:42:08 AM | Computer Name = SHREE-036EDE4DD | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk0\D.

Error - 30/11/2010 2:42:09 AM | Computer Name = SHREE-036EDE4DD | Source = atapi | ID = 262149
Description = A parity error was detected on \Device\Ide\IdePort0.


< End of report >













otl.txt-
OTL logfile created on: 30/11/2010 12:10:15 PM - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\SHREE\My Documents\Downloads
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yyyy

1,014.00 Mb Total Physical Memory | 533.00 Mb Available Physical Memory | 53.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 87.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19.52 Gb Total Space | 11.90 Gb Free Space | 60.93% Space Free | Partition Type: FAT32
Drive D: | 24.40 Gb Total Space | 19.54 Gb Free Space | 80.07% Space Free | Partition Type: FAT32
Drive E: | 30.57 Gb Total Space | 18.02 Gb Free Space | 58.97% Space Free | Partition Type: FAT32

Computer Name: SHREE-036EDE4DD | User Name: SHREE | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010/11/30 11:56:14 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SHREE\My Documents\Downloads\OTL.exe
PRC - [2010/11/26 18:50:14 | 000,208,896 | ---- | M] (Biz Secure Labs Pvt Ltd.) -- C:\Program Files\Net Protector 2010\ZVScan\ZVMonNt.exe
PRC - [2010/11/26 18:49:12 | 000,450,560 | ---- | M] (Biz Secure Labs Pvt. Ltd.) -- C:\Program Files\Net Protector 2010\Fastscan\PASSMACLEANER.EXE
PRC - [2010/08/04 14:42:24 | 000,045,056 | ---- | M] (Biz Secure Labs Pvt Ltd.) -- C:\Documents and Settings\SHREE\NPProt.exe
PRC - [2010/07/23 07:37:04 | 000,014,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2010/07/23 07:36:54 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/07/20 11:43:42 | 000,501,702 | ---- | M] (Biz Secure Labs. Pvt Ltd.) -- C:\Program Files\Net Protector 2010\Email Scan\EMAILSCN.EXE
PRC - [2010/07/16 19:26:34 | 000,073,728 | ---- | M] (Message Labs Pvt Ltd.) -- C:\Program Files\Net Protector 2010\ZVRegMon\ZVRegMon.exe
PRC - [2005/10/28 16:25:44 | 000,094,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2004/12/14 04:44:06 | 000,029,696 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
PRC - [2004/08/03 19:26:50 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2003/12/13 06:20:34 | 000,033,792 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe


========== Modules (SafeList) ==========

MOD - [2010/11/30 11:56:14 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SHREE\My Documents\Downloads\OTL.exe
MOD - [2004/08/03 19:27:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010/11/26 18:50:14 | 000,208,896 | ---- | M] (Biz Secure Labs Pvt Ltd.) [Auto | Running] -- C:\Program Files\Net Protector 2010\ZVScan\ZVMonNt.exe -- (ZeroVProtect)
SRV - [2010/08/04 14:42:24 | 000,045,056 | ---- | M] (Biz Secure Labs Pvt Ltd.) [Auto | Running] -- C:\Documents and Settings\SHREE\NPProt.exe -- (NPVProt)
SRV - [2010/07/16 19:26:34 | 000,073,728 | ---- | M] (Message Labs Pvt Ltd.) [Auto | Running] -- C:\Program Files\Net Protector 2010\ZVRegMon\ZVRegMon.exe -- (ZVRegMon)
SRV - [2008/04/07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDRm.sys -- (InCDRm)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDPass.sys -- (InCDPass)
DRV - File not found [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\InCDFs.sys -- (InCDFs)
DRV - File not found [Kernel | On_Demand | Stopped] -- G:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - [2010/05/10 18:01:48 | 000,018,176 | ---- | M] (Message Labs Pvt. Ltd.) [Kernel | Auto | Running] -- C:\Program Files\Net Protector 2010\ZVScan\ZVOnline.sys -- (ZVONLINE)
DRV - [2010/05/10 18:01:44 | 000,015,793 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\Program Files\Net Protector 2010\ZVScan\sfilter.sys -- (SFilter)
DRV - [2010/03/22 16:30:22 | 000,222,672 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007/11/29 10:39:52 | 000,008,064 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2007/11/29 10:39:42 | 000,016,896 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2007/11/29 10:39:42 | 000,008,064 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2007/11/29 10:39:40 | 000,019,328 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2007/10/12 14:03:24 | 005,776,928 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2007/10/02 14:02:14 | 004,613,120 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/09/17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2005/03/14 14:01:38 | 000,041,984 | ---- | M] (DeviceGuys, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2005/01/07 17:07:18 | 000,138,752 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004/08/03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6778
FF - prefs.js..network.proxy.type: 0

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/11/27 10:25:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/11/27 10:25:40 | 000,000,000 | ---D | M]

[2010/11/28 18:17:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SHREE\Application Data\Mozilla\Extensions
[2010/11/28 18:17:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SHREE\Application Data\Mozilla\Firefox\Profiles\jytgsvn8.default\extensions
[2010/11/27 10:25:40 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/11/28 20:29:52 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}

O1 HOSTS File: ([2001/08/23 12:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKLM..\Run: [Zero-V Virus Shield] C:\Program Files\Net Protector 2010\EMAIL SCAN\EMAILSCN.EXE (Biz Secure Labs. Pvt Ltd.)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\SHREE\Start Menu\Programs\Startup\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\NPLogon: DllName - NPlogon.dll - C:\WINDOWS\System32\NPLOGON.DLL (Message Labs Pvt Ltd)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O27 - HKLM IFEO\Adobe Online.com: Debugger - NPAV File not found
O27 - HKLM IFEO\Adobe update.com: Debugger - NPAV File not found
O27 - HKLM IFEO\ahnabc.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\antiviruspro_2010.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\asd26.tmp.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\ASR64_LDM.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\AutoDrive.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\ave.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\cmt.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\COMMGR.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\COOL_GAMESETUP.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\CSRCS.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\csrss.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\diskperfxp.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\DLLRUN32.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\EHTHUMBS.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\GNJA.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\HDAV.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\ISE32.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\juzjf.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\lbisov.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\lizkavd.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\LOAD[1].EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\ltzqai.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\MAKARONI.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\MGJWIN32.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\MMMPC.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\MRPKY.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\MSA.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\MSB.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\MSMXENG.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\MSVMIODE.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\MWAU.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\NISSAN.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\Passwords.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\photo_id.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\regsvr.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\RESTORER64_A.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\Rmhzb.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\runouce.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\SDRA64.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\seres.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\SMSS32.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\SPECIJALAC.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\spoclsv.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\SVCHOSTS.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\svcst.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\SVHOST.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\SYSDATE.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\SYSDIAG64.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\SYSMNGR32.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\systam.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\TXP1ATFORM.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\unwise_.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\USBDRIVE32.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\userini.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\VSBNTLO.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\vuout.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\WIN7.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\WINALERT.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\WINDLL.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\WINSYSAPP.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\WINSYSTEM.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\WMFCGR.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\WMISTIP.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\wmnig.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\wnzip32.exe: Debugger - NPAV File not found
O27 - HKLM IFEO\WUAUCLDT.EXE: Debugger - NPAV File not found
O27 - HKLM IFEO\zavupd32.exe: Debugger - NPAV File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/05/20 10:21:14 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2010/05/10 18:01:50 | 000,001,688 | ---- | M] () - C:\Autoexec.NT -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- C:\PROGRA~1\NETPRO~1\ZVSCAN\EXECSCAN.EXE "%1" %* ()
O35 - HKLM\..exefile [open] -- C:\PROGRA~1\NETPRO~1\ZVSCAN\EXECSCAN.EXE "%1" %* ()
O37 - HKLM\...com [@ = comfile] -- C:\PROGRA~1\NETPRO~1\ZVSCAN\EXECSCAN.EXE "%1" %* ()
O37 - HKLM\...exe [@ = exefile] -- C:\PROGRA~1\NETPRO~1\ZVSCAN\EXECSCAN.EXE "%1" %* ()

========== Files/Folders - Created Within 30 Days ==========

[2010/11/30 11:55:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SHREE\My Documents\Downloads
[2010/11/30 10:57:52 | 000,000,000 | -HSD | C] -- C:\FOUND.002
[2010/11/29 14:36:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2010/11/29 13:15:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SHREE\Application Data\PC Suite
[2010/11/29 13:15:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2010/11/29 13:15:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SHREE\Application Data\Nokia
[2010/11/29 13:14:30 | 000,021,632 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010/11/29 13:14:30 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010/11/29 13:14:19 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010/11/29 13:14:14 | 000,008,064 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\WINDOWS\System32\drivers\usbser_lowerfltj.sys
[2010/11/29 13:14:13 | 000,008,064 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\WINDOWS\System32\drivers\usbser_lowerflt.sys
[2010/11/29 13:13:41 | 000,019,328 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys
[2010/11/29 13:13:09 | 000,095,744 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcocls.dll
[2010/11/29 13:13:09 | 000,016,896 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys
[2010/11/29 13:12:34 | 000,048,128 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2010/11/29 13:10:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Installations
[2010/11/29 13:09:57 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2010/11/28 21:27:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SHREE\Application Data\skypePM
[2010/11/28 21:26:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SHREE\Application Data\Skype
[2010/11/28 20:35:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2010/11/28 20:30:15 | 020,810,120 | ---- | C] (Skype Technologies S.A.) -- C:\Documents and Settings\SHREE\Desktop\SkypeSetupFull.exe
[2010/11/28 20:30:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SHREE\Local Settings\Application Data\Temp
[2010/11/28 20:30:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2010/11/28 20:30:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SHREE\Local Settings\Application Data\Google
[2010/11/28 20:29:59 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010/11/28 20:29:16 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2010/11/28 20:29:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2010/11/28 19:17:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SHREE\Application Data\Macromedia
[2010/11/28 18:17:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SHREE\Local Settings\Application Data\Mozilla
[2010/11/28 18:17:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SHREE\Application Data\Mozilla
[2010/11/27 17:08:58 | 000,000,000 | -HSD | C] -- C:\FOUND.001
[2010/11/27 10:55:05 | 000,151,552 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\WINDOWS\System32\SSCoInst.exe
[2010/11/27 10:55:05 | 000,020,622 | ---- | C] (Samsung Electronics.) -- C:\WINDOWS\System32\SUGS2LMK.DLL
[2010/11/27 10:55:04 | 000,057,344 | ---- | C] (SEC) -- C:\WINDOWS\System32\SSCoInst.dll
[2010/11/27 10:55:03 | 000,208,896 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\WINDOWS\System32\SSRemove.exe
[2010/11/27 10:54:57 | 000,041,984 | ---- | C] (DeviceGuys, Inc.) -- C:\WINDOWS\System32\drivers\DGIVECP.SYS
[2010/11/27 10:54:52 | 000,000,000 | ---D | C] -- C:\Temp
[2010/11/27 10:42:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Samsung
[2010/11/27 10:28:55 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010/11/27 10:28:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Yahoo!
[2010/11/27 10:28:29 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010/11/27 10:25:37 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010/11/27 09:20:18 | 000,000,000 | -HSD | C] -- C:\FOUND.000
[2010/11/27 09:09:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2010/11/26 21:10:06 | 000,520,192 | ---- | C] (YAMAHA CORPORATION) -- C:\WINDOWS\System32\wscma2u.exe
[2010/11/26 21:10:03 | 000,000,000 | ---D | C] -- C:\Program Files\AnMing
[2010/11/26 19:48:16 | 000,000,000 | --SD | C] -- C:\Documents and Settings\SHREE\UserData
[2010/11/26 18:34:42 | 000,045,056 | ---- | C] (Message Labs Pvt Ltd) -- C:\WINDOWS\System32\NPLOGON.DLL.old
[2010/11/26 18:34:42 | 000,045,056 | ---- | C] (Message Labs Pvt Ltd) -- C:\WINDOWS\System32\NPLOGON.DLL
[2010/11/26 18:34:41 | 000,045,056 | ---- | C] (Biz Secure Labs Pvt Ltd.) -- C:\Documents and Settings\SHREE\NPProt.exe
[2010/11/26 18:30:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Net Protector
[2010/11/26 18:30:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\NPReg
[2010/11/26 18:30:26 | 000,135,171 | ---- | C] (MESSAGE LABS PVT. LTD.) -- C:\WINDOWS\UCE.ocx
[2010/11/26 18:30:23 | 000,000,000 | ---D | C] -- C:\zv
[2010/11/26 18:30:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\IFD
[2010/11/26 18:30:10 | 000,000,000 | ---D | C] -- C:\Program Files\Net Protector 2010
[2010/11/26 18:25:38 | 000,000,000 | -HSD | C] -- C:\Recycled
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/11/30 12:09:06 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/11/30 12:09:04 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/11/30 11:52:52 | 000,054,272 | ---- | M] () -- C:\Documents and Settings\SHREE\Desktop\Windows XP Blue Screen of Death STOP Codes.doc
[2010/11/29 14:35:02 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/11/29 13:19:48 | 000,000,155 | ---- | M] () -- C:\WINDOWS\winamp.ini
[2010/11/29 13:19:10 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
[2010/11/29 13:19:08 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2010/11/29 13:16:28 | 000,346,960 | ---- | M] () -- C:\amt1
[2010/11/29 13:16:22 | 000,000,405 | ---- | M] () -- C:\WINDOWS\MP3trt.ini
[2010/11/28 21:43:04 | 006,159,062 | ---- | M] () -- C:\Documents and Settings\SHREE\Desktop\36598_Dum Dum.mp3
[2010/11/28 21:27:16 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010/11/28 20:34:18 | 000,001,722 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2010/11/28 20:34:18 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\SHREE\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/11/28 20:30:16 | 020,810,120 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\SHREE\Desktop\SkypeSetupFull.exe
[2010/11/28 18:17:26 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2010/11/28 18:15:34 | 000,000,564 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Broadband Connection.lnk
[2010/11/28 17:18:00 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/11/27 11:08:46 | 000,004,608 | ---- | M] () -- C:\Documents and Settings\SHREE\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/11/27 10:29:26 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/11/27 10:28:44 | 000,000,739 | ---- | M] () -- C:\Documents and Settings\SHREE\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2010/11/27 10:28:44 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Yahoo! Messenger.lnk
[2010/11/27 10:25:42 | 000,001,529 | ---- | M] () -- C:\Documents and Settings\SHREE\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/11/27 10:25:42 | 000,001,511 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010/11/26 21:10:08 | 000,000,520 | ---- | M] () -- C:\Documents and Settings\SHREE\Desktop\MP3 To Ringtone Gold.lnk
[2010/11/26 18:56:54 | 000,045,056 | ---- | M] (Message Labs Pvt Ltd) -- C:\WINDOWS\System32\NPLOGON.DLL
[2010/11/26 18:56:52 | 000,003,460 | ---- | M] () -- C:\WINDOWS\System32\krnlobj.db
[2010/11/26 18:30:20 | 000,000,812 | ---- | M] () -- C:\Documents and Settings\SHREE\Application Data\Microsoft\Internet Explorer\Quick Launch\Net Protector 2010.lnk
[2010/11/26 18:30:20 | 000,000,794 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Net Protector 2011.lnk
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/11/30 11:52:50 | 000,054,272 | ---- | C] () -- C:\Documents and Settings\SHREE\Desktop\Windows XP Blue Screen of Death STOP Codes.doc
[2010/11/29 13:19:08 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
[2010/11/29 13:19:07 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2010/11/29 13:13:26 | 000,346,960 | ---- | C] () -- C:\amt1
[2010/11/28 21:42:28 | 006,159,062 | ---- | C] () -- C:\Documents and Settings\SHREE\Desktop\36598_Dum Dum.mp3
[2010/11/28 21:27:14 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010/11/28 20:34:16 | 000,001,722 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2010/11/28 20:34:16 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\SHREE\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/11/28 20:30:11 | 000,000,884 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/11/28 20:30:11 | 000,000,880 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/11/28 18:17:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010/11/28 18:15:32 | 000,000,564 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Broadband Connection.lnk
[2010/11/27 11:08:43 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\SHREE\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/11/27 10:55:05 | 000,000,604 | ---- | C] () -- C:\WINDOWS\System32\SUGS2LMK.SMT
[2010/11/27 10:55:03 | 000,008,478 | ---- | C] () -- C:\WINDOWS\System32\SP119.ICO
[2010/11/27 10:42:06 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\getpntid.exe
[2010/11/27 10:42:06 | 000,003,262 | ---- | C] () -- C:\WINDOWS\reinstall.ico
[2010/11/27 10:42:06 | 000,000,766 | ---- | C] () -- C:\WINDOWS\Uninstall.ico
[2010/11/27 10:28:42 | 000,000,739 | ---- | C] () -- C:\Documents and Settings\SHREE\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2010/11/27 10:28:42 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Yahoo! Messenger.lnk
[2010/11/27 10:25:40 | 000,001,529 | ---- | C] () -- C:\Documents and Settings\SHREE\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/11/27 10:25:40 | 000,001,511 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010/11/26 21:10:09 | 000,000,405 | ---- | C] () -- C:\WINDOWS\MP3trt.ini
[2010/11/26 21:10:06 | 000,000,520 | ---- | C] () -- C:\Documents and Settings\SHREE\Desktop\MP3 To Ringtone Gold.lnk
[2010/11/26 21:10:05 | 000,278,528 | ---- | C] () -- C:\WINDOWS\System32\ammpp.dll
[2010/11/26 21:10:05 | 000,193,536 | ---- | C] () -- C:\WINDOWS\System32\atomid.exe
[2010/11/26 21:10:05 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\a1.dll
[2010/11/26 21:10:05 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\anming.ocx
[2010/11/26 18:34:42 | 000,003,460 | ---- | C] () -- C:\WINDOWS\System32\krnlobj.db
[2010/11/26 18:30:41 | 000,002,577 | ---- | C] () -- C:\Config.NT
[2010/11/26 18:30:41 | 000,001,688 | ---- | C] () -- C:\Autoexec.NT
[2010/11/26 18:30:26 | 000,295,514 | ---- | C] () -- C:\WINDOWS\VB6.OLB
[2010/11/26 18:30:26 | 000,000,010 | ---- | C] () -- C:\WINDOWS\cbid32.dll
[2010/11/26 18:30:18 | 000,000,812 | ---- | C] () -- C:\Documents and Settings\SHREE\Application Data\Microsoft\Internet Explorer\Quick Launch\Net Protector 2010.lnk
[2010/11/26 18:30:18 | 000,000,794 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Net Protector 2011.lnk
[2010/11/26 18:26:44 | 000,080,416 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2010/11/26 18:24:37 | 001,174,000 | R--- | C] () -- C:\WINDOWS\System32\igmedkrn.dll
[2010/11/26 18:24:37 | 000,104,636 | R--- | C] () -- C:\WINDOWS\System32\igmedcompkrn.dll
[2010/05/20 10:53:18 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010/05/20 10:46:48 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010/05/20 10:45:07 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010/05/20 10:45:06 | 001,559,040 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010/05/20 10:45:06 | 000,282,624 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010/05/20 10:45:05 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2010/05/20 10:45:05 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010/05/20 10:44:37 | 000,000,155 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2010/05/20 10:29:45 | 000,147,456 | R--- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4864.dll
[2010/05/20 10:12:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\sensor.INI
[2010/05/10 18:01:26 | 000,000,833 | ---- | C] () -- C:\WINDOWS\EParse.ini
[2009/12/29 02:25:05 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/03 19:26:44 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004/07/17 06:06:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2010/11/26 18:30:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IFD
[2010/11/26 18:30:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Net Protector
[2010/11/29 13:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2010/11/29 13:15:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2010/11/29 13:15:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SHREE\Application Data\Nokia
[2010/11/29 13:15:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SHREE\Application Data\PC Suite

========== Purity Check ==========



< End of report >

Edited by SAGAR SONAWANE, 30 November 2010 - 01:01 AM.

  • 0

Advertisements

#2
emeraldnzl
Posted 09 December 2010 - 01:50 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello SAGAR SONAWANE,

Welcome to the Malware forum.

Please download Malwarebytes' Anti-Malware from Here

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy & Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP