Bsod
-
Bsod
Thanks for the quick reply Jephree hope this will be of some use
Logfile of HijackThis v1.99.1
Scan saved at 01:29:45, on 16/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Comodo\Firewall\cmdagent.exe
C:\WINDOWS\System32\SnoopFreeSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wwSecure.exe
C:\Program Files\Keybreeze\Keybreeze.exe
C:\Program Files\Comodo\Firewall\CPF.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\AnalogX\NetStat Live\nsl.exe
C:\WINDOWS\SnoopFreeUI.exe
C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
C:\PROGRA~1\HDTUNE~1\HDTune.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Program Files\Hawking\HWU8DD\HWU8DD.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Pumatech\Intellisync Lite for NEC 616\Intellisync For NEC.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
C:\Program Files\WallpaperToy\Wallpapertoy.Exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\PrevxCSI\prevxcsi.exe
C:\Program Files\Hijackthis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Foxit Toolbar - {73c7d5b0-7b03-444a-84c7-ce1ba03b5573} - C:\Program Files\Foxit\tbFox0.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Foxit Toolbar - {73c7d5b0-7b03-444a-84c7-ce1ba03b5573} - C:\Program Files\Foxit\tbFox0.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Foxit Toolbar - {73c7d5b0-7b03-444a-84c7-ce1ba03b5573} - C:\Program Files\Foxit\tbFox0.dll
O4 - HKLM\..\Run: [Keybreeze] C:\Program Files\Keybreeze\Keybreeze.exe
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\Comodo\Firewall\CPF.exe" /background
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NetStat Live] C:\Program Files\AnalogX\NetStat Live\nsl.exe
O4 - HKLM\..\Run: [SnoopFreeUI] SnoopFreeUI.exe
O4 - HKLM\..\Run: [EEventManager] C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
O4 - HKLM\..\Run: [HD Tune] C:\PROGRA~1\HDTUNE~1\HDTune.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [PrevxCSI] "C:\Program Files\PrevxCSI\prevxcsi.exe" -boot
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [wireless hub] C:\Program Files\Hawking\HWU8DD\HWU8DD.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Startup: Wallpaper Changer.lnk = C:\Program Files\WallpaperToy\Wallpapertoy.Exe
O4 - Global Startup: Intellisync Lite for NEC 616.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://utilities.pcpitstop.com/da/PCPitStop.CAB
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1193396350109
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/micr...?1195486451203
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6...ws-i586-jc.cab
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) - http://ax.emsisoft.com/asquared.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Comodo Application Agent (CmdAgent) - COMODO - C:\Program Files\Comodo\Firewall\cmdagent.exe
O23 - Service: EPGService - Hauppauge Computer Works - C:\PROGRA~1\WinTV\EPG Services\System\EPGService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: HauppaugeTVServer - Hauppauge Computer Works - C:\PROGRA~1\WinTV\HCWTVS~1.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XIIc\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XIIc\RpcSandraSrv.exe
O23 - Service: Snoop Free Service (SnoopFreeSvc) - Unknown owner - C:\WINDOWS\System32\SnoopFreeSvc.exe
O23 - Service: Washer AutoComplete (wwSecSvc) - Webroot Software, Inc. - C:\WINDOWS\system32\wwSecure.exe
-
Welcome,
BSOD's are very hard to find the problem, possibly not a malware issue.
Did you do a scan with super antispyware?
If you have previously downloaded ComboFix,please delete that version now.
Now download http://download.bleepingcomputer.com/sUBs/ComboFix.exe and save to your desktop:
Note:
It is IMPORTANT that it is saved directly to your desktop
Close any open browsers.
Disconnect from the Internet.
Double click on combofix.exe and follow the prompts.
When it's finished it will produce a log.
Post the entire contents of C:\ComboFix.txt into your next reply.
Note:
Do not mouseclick combofix's window while it's running.
That may cause the program to freeze/hang.
Do NOT post the ComboFix-quarantined-files.txt unless I ask.
*Note*
In case your Antivirus or any other realtime scanner is displaying an alert after you downloaded Combofix or while you use Combofix,please disable your scanner and redownload Combofix again.
Some scanners may see some combofix related components as suspicious and block or delete them while there's nothing wrong with them.
-
ComboFix 07-12-18.1 - RON 2007-12-18 17:10:00.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.379 [GMT 0:00]
Running from: C:\Documents and Settings\RON\Desktop\ComboFix.exe
* Created a new restore point
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\RON\Application Data\inst.exe
.
((((((((((((((((((((((((( Files Created from 2007-11-18 to 2007-12-18 )))))))))))))))))))))))))))))))
.
2007-12-17 16:20 . 2007-12-17 16:20 <DIR> d-------- C:\Program Files\Uniblue
2007-12-17 01:55 . 2007-12-17 07:31 <DIR> d-------- C:\Documents and Settings\RON\Application Data\Azureus
2007-12-17 01:55 . 2007-12-17 01:55 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Azureus
2007-12-17 01:54 . 2007-12-17 02:00 <DIR> d-------- C:\Program Files\Azureus
2007-12-16 16:40 . 2007-12-16 16:40 <DIR> d-------- C:\Program Files\Lavasoft
2007-12-16 16:40 . 2007-12-16 16:40 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2007-12-16 04:36 . 2007-12-16 04:38 1,393 --a------ C:\WINDOWS\imsins.BAK
2007-12-16 04:23 . 2007-12-16 04:23 <DIR> d-------- C:\Program Files\MSXML 4.0
2007-12-16 03:59 . 2007-12-16 03:59 <DIR> d-------- C:\Program Files\Belarc
2007-12-16 03:59 . 2005-04-07 16:18 3,840 --a------ C:\WINDOWS\system32\drivers\BANTExt.sys
2007-12-16 00:54 . 2007-12-16 00:54 <DIR> d-------- C:\Program Files\PrevxCSI
2007-12-16 00:54 . 2007-12-18 00:00 10,624 --a------ C:\WINDOWS\system32\drivers\pxark.sys
2007-12-16 00:50 . 2007-12-18 00:00 <DIR> d-------- C:\Documents and Settings\RON\Application Data\PrevxCSI
2007-12-16 00:50 . 2007-12-16 00:50 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Prevx
2007-12-14 18:24 . 2007-12-16 02:48 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SecTaskMan
2007-12-14 18:18 . 2007-12-16 02:44 <DIR> d-------- C:\Program Files\Security Task Manager
2007-12-13 15:11 . 2007-12-13 15:11 <DIR> d-------- C:\Program Files\RadioXpi
2007-12-13 15:11 . 2007-12-13 15:11 1,155 --a------ C:\WINDOWS\mozver.dat
2007-12-13 13:14 . 2007-12-13 13:14 <DIR> d-------- C:\Documents and Settings\RON\Application Data\IrfanView
2007-12-08 15:10 . 2007-12-08 15:17 <DIR> d-------- C:\Documents and Settings\RON\Application Data\VersionTracker Pro
2007-12-08 15:06 . 2007-12-08 15:06 <DIR> d-------- C:\Program Files\TechTracker
2007-12-08 11:37 . 2007-12-08 11:37 <DIR> d-------- C:\symbols
2007-12-08 11:24 . 2007-12-08 11:36 <DIR> d-------- C:\Program Files\Debugging Tools for Windows
2007-12-07 15:40 . 2007-12-07 15:40 <DIR> d-------- C:\Documents and Settings\RON\Application Data\Ashampoo
2007-12-07 15:30 . 2007-12-07 15:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\ashampoo
2007-12-07 14:28 . 2007-12-07 15:52 <DIR> d-------- C:\Program Files\Total Video Converter
2007-12-07 14:12 . 2007-12-07 14:15 <DIR> d-------- C:\Documents and Settings\RON\Application Data\CopyToDvd
2007-12-07 14:07 . 2007-12-07 15:13 <DIR> d-------- C:\Documents and Settings\RON\Application Data\Vso
2007-12-07 14:07 . 2007-12-07 14:07 47,360 --a------ C:\WINDOWS\system32\drivers\pcouffin.sys
2007-12-07 14:07 . 2007-12-07 15:13 47,360 --a------ C:\Documents and Settings\RON\Application Data\pcouffin.sys
2007-12-07 13:46 . 2007-12-07 13:46 74,240 --a------ C:\WINDOWS\system32\3D Wormhole.scr
2007-12-01 09:23 . 2007-12-01 09:23 <DIR> d-------- C:\Documents and Settings\RON\Application Data\AltrixSoft
2007-11-30 01:03 . 2007-11-30 01:03 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2007-11-30 01:02 . 2007-12-18 15:52 <DIR> d-------- C:\Program Files\SUPERAntiSpyware
2007-11-30 01:02 . 2007-11-30 01:02 <DIR> d-------- C:\Documents and Settings\RON\Application Data\SUPERAntiSpyware.com
2007-11-30 01:01 . 2007-12-16 16:39 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-11-27 08:23 . 2007-12-01 06:33 <DIR> d-------- C:\Program Files\CLOX
2007-11-27 06:02 . 2007-11-27 06:10 <DIR> d-------- C:\Program Files\RegistryFix
2007-11-26 18:56 . 2007-11-26 18:56 <DIR> d-------- C:\Program Files\HD Tune
2007-11-26 18:36 . 2007-12-01 06:19 249,856 --------- C:\WINDOWS\Setup1.exe
2007-11-26 18:36 . 2007-12-01 06:19 73,216 --a------ C:\WINDOWS\ST6UNST.EXE
2007-11-26 05:24 . 2007-11-26 05:24 <DIR> d-------- C:\Program Files\Innovative Solutions
2007-11-26 04:21 . 2007-11-26 04:21 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
2007-11-26 03:57 . 2007-01-18 13:38 23,600 --a------ C:\WINDOWS\system32\drivers\TVICHW32.SYS
2007-11-26 03:09 . 2007-11-26 03:09 <DIR> d-------- C:\Program Files\Lavalys
2007-11-26 02:53 . 2007-11-26 03:07 <DIR> d-------- C:\Program Files\Software by Design
2007-11-26 02:53 . 2005-06-19 05:00 90,112 --------- C:\WINDOWS\SDUnInst.exe
2007-11-26 02:41 . 2007-12-07 15:13 <DIR> d-------- C:\Program Files\vso
2007-11-26 02:33 . 2007-11-26 02:33 <DIR> d-------- C:\Program Files\CdCoverCreator
2007-11-25 07:09 . 2007-12-07 13:13 <DIR> d-------- C:\Program Files\Foxit
2007-11-25 07:08 . 2007-11-25 07:08 <DIR> d-------- C:\Program Files\Foxit Software
2007-11-24 16:01 . 2007-11-24 16:01 0 --a------ C:\WINDOWS\nsreg.dat
2007-11-23 21:19 . 2007-11-23 21:19 <DIR> d-------- C:\Documents and Settings\RON\Application Data\EPSON
2007-11-23 21:09 . 2007-11-23 21:09 27 --a------ C:\WINDOWS\CDE P34903590EF.ini
2007-11-23 20:59 . 2005-04-14 00:00 282,624 --a------ C:\WINDOWS\system32\esint52.dll
2007-11-23 20:59 . 2005-04-14 00:00 180,224 --a------ C:\WINDOWS\system32\eswia52.dll
2007-11-23 20:59 . 2005-04-14 00:00 64,000 --a------ C:\WINDOWS\system32\esfw52.bin
2007-11-23 20:59 . 2004-08-03 22:58 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
2007-11-23 20:59 . 2004-08-03 22:58 15,104 --a--c--- C:\WINDOWS\system32\dllcache\usbscan.sys
2007-11-23 20:59 . 2005-02-08 00:00 5,632 -ra------ C:\WINDOWS\system32\escdev.dll
2007-11-23 17:13 . 2007-11-23 17:13 <DIR> d-------- C:\Program Files\Sienzo
2007-11-23 17:10 . 2007-11-23 20:49 <DIR> d-------- C:\Program Files\Guitar Speed Trainer
2007-11-23 17:10 . 2007-11-23 20:50 <DIR> d-------- C:\Program Files\Guitar Scales Method
2007-11-23 17:05 . 2007-11-23 17:05 <DIR> d-------- C:\Program Files\D'Accord Music Software
2007-11-23 05:52 . 2007-11-23 05:52 221,184 --a------ C:\WINDOWS\SnoopFreeUI.exe
2007-11-23 05:52 . 2007-11-23 05:52 90,112 --a------ C:\WINDOWS\system32\SnoopFreeSvc.exe
2007-11-23 05:52 . 2007-11-23 05:52 45,056 --a------ C:\WINDOWS\SnoopFreeDll.dll
2007-11-23 05:52 . 2007-11-23 05:52 9,472 --a------ C:\WINDOWS\system32\drivers\SnopFree.sys
2007-11-23 05:38 . 2007-11-23 05:38 <DIR> d-------- C:\Program Files\ZSoft
2007-11-23 05:21 . 2007-12-17 07:19 7,680 --ahs---- C:\WINDOWS\Thumbs.db
2007-11-22 15:24 . 2007-11-23 08:44 <DIR> d-------- C:\Program Files\FLAC
2007-11-21 18:25 . 2007-11-21 18:25 <DIR> d-------- C:\WINDOWS\system32\EXP
2007-11-21 18:22 . 2007-11-24 15:00 <DIR> d-------- C:\Program Files\Audacity
2007-11-21 17:17 . 2007-12-13 17:51 3,145,782 --ah----- C:\WINDOWS\system32\toyhide.bmp
2007-11-21 17:15 . 2007-11-21 17:15 <DIR> d-------- C:\Program Files\WallpaperToy
2007-11-21 17:15 . 2007-11-21 17:12 187,072 --a------ C:\WINDOWS\walltoyUninst.exe
2007-11-21 16:42 . 2007-11-21 16:42 <DIR> d-------- C:\Program Files\YourWare Solutions
2007-11-21 16:37 . 2007-11-24 16:04 <DIR> d-------- C:\Program Files\EULAlyzer
2007-11-21 01:14 . 2007-11-21 01:14 <DIR> d-------- C:\Documents and Settings\RON\Application Data\GlarySoft
2007-11-21 00:53 . 2007-11-21 00:53 <DIR> d-------- C:\Program Files\Glary Utilities
2007-11-20 23:42 . 2007-11-21 01:32 <DIR> d-------- C:\Program Files\Startup Optimizer
2007-11-20 21:55 . 2004-08-04 12:00 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2007-11-20 19:53 . 2007-11-20 20:26 <DIR> d-------- C:\Program Files\NT Registry Optimizer
2007-11-19 22:48 . 2007-11-19 22:48 <DIR> d-------- C:\NVIDIA
2007-11-19 19:48 . 2007-11-26 11:46 <DIR> d-------- C:\Documents and Settings\RON\DoctorWeb
2007-11-19 18:06 . 2007-11-19 18:51 <DIR> d-------- C:\Documents and Settings\RON\.housecall6.6
2007-11-19 18:02 . 2007-11-19 18:02 <DIR> d-------- C:\WINDOWS\Sun
2007-11-19 18:02 . 2007-11-19 18:02 <DIR> d-------- C:\Program Files\Java
2007-11-19 18:02 . 2007-09-24 23:31 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl
2007-11-19 18:00 . 2007-11-19 18:00 <DIR> d-------- C:\Program Files\Common Files\Java
2007-11-19 16:38 . 2004-06-24 01:20 309,760 --a------ C:\WINDOWS\system32\EAL32.DLL
2007-11-19 16:38 . 2004-03-12 01:30 82,944 --a------ C:\WINDOWS\system32\EAL.EXE
2007-11-19 16:38 . 2004-11-25 05:07 79,679 --a------ C:\WINDOWS\system32\E_FLMAIA.DLL
2007-11-19 16:38 . 2003-05-21 02:27 64,000 --a------ C:\WINDOWS\system32\E_FBCBAIA.DLL
2007-11-19 16:38 . 2000-06-07 01:01 34,304 --a------ C:\WINDOWS\system32\E_FBCHAIA.DLL
2007-11-19 16:38 . 2004-06-24 01:20 58 --a------ C:\WINDOWS\system32\EAL32.INI
2007-11-19 16:37 . 2007-11-20 22:52 <DIR> d-------- C:\epson
2007-11-19 16:22 . 2007-11-19 16:22 <DIR> d-------- C:\Program Files\Common Files\IviSDK
2007-11-19 16:22 . 2003-03-18 16:28 2,179,072 --a------ C:\WINDOWS\system32\mfc71d.dll
2007-11-19 16:22 . 2003-03-18 15:04 765,952 --a------ C:\WINDOWS\system32\msvcp71d.dll
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2007-12-18 16:52 --------- d-----w C:\Documents and Settings\RON\Application Data\foobar2000
2007-12-18 15:36 --------- d-----w C:\Documents and Settings\RON\Application Data\Keybreeze Data
2007-12-18 15:36 --------- d-----w C:\Documents and Settings\All Users\Application Data\avg7
2007-12-17 17:57 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2007-12-17 17:25 --------- d-----w C:\Program Files\IrfanView
2007-12-17 16:35 --------- d-----w C:\Documents and Settings\RON\Application Data\AVG7
2007-12-17 16:20 --------- d-----w C:\Documents and Settings\RON\Application Data\Uniblue
2007-12-08 14:49 --------- d-----w C:\Program Files\Opera
2007-12-07 15:30 --------- d-----w C:\Program Files\Ashampoo
2007-11-26 06:59 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-11-24 15:57 --------- d-----w C:\Program Files\Spamihilator
2007-11-24 15:56 --------- d-----w C:\Documents and Settings\RON\Application Data\SlimBrowser
2007-11-24 15:17 --------- d-----w C:\Program Files\PCPitstop
2007-11-24 15:04 --------- d-----w C:\Program Files\Maxthon2
2007-11-24 15:03 --------- d-----w C:\Program Files\Common Files\Logitech
2007-11-23 21:16 --------- d-----w C:\Program Files\Common Files\InstallShield
2007-11-23 21:13 --------- d-----w C:\Program Files\EPSON
2007-11-23 05:34 --------- d-----w C:\Program Files\AnalogX
2007-11-21 01:55 --------- d-----w C:\Program Files\PC Doc Pro
2007-11-21 01:48 --------- d-----w C:\Program Files\Diskeeper Corporation
2007-11-21 01:07 --------- d-----w C:\Program Files\ZoneLog
2007-11-16 19:06 --------- d-----w C:\Program Files\iDisk
2007-11-16 18:24 --------- d-----w C:\Documents and Settings\RON\Application Data\Comodo
2007-11-16 18:24 --------- d-----w C:\Documents and Settings\All Users\Application Data\Comodo
2007-11-16 18:21 --------- d-----w C:\Program Files\Comodo
2007-11-16 16:15 --------- d-----w C:\Documents and Settings\RON\Application Data\FastStone
2007-11-16 16:00 --------- d-----w C:\Program Files\ToniArts
2007-11-16 15:50 --------- d-----w C:\Program Files\AnswersThatWork
2007-11-16 00:19 --------- d-----w C:\Program Files\RegCure
2007-11-15 19:50 --------- d-----w C:\Documents and Settings\RON\Application Data\U3
2007-11-15 15:44 --------- d-----w C:\Documents and Settings\RON\Application Data\SiteAdvisor
2007-11-15 15:44 --------- d-----w C:\Documents and Settings\All Users\Application Data\SiteAdvisor
2007-11-15 15:44 --------- d-----w C:\Documents and Settings\All Users\Application Data\McAfee
2007-11-15 15:00 --------- d-----w C:\Documents and Settings\All Users\Application Data\U3
2007-11-15 03:58 --------- d-----w C:\Documents and Settings\RON\Application Data\Avant Profiles
2007-11-15 03:58 --------- d-----w C:\Documents and Settings\All Users\Application Data\RoboForm
2007-11-15 03:56 --------- d-----w C:\Program Files\Siber Systems
2007-11-15 03:54 --------- d-----w C:\Program Files\Avant Browser
2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-11-13 04:19 720,896 ----a-w C:\WINDOWS\iun6002ev.exe
2007-11-10 16:18 --------- d-----w C:\Program Files\Microsoft Games
2007-11-10 16:16 --------- d-----w C:\Program Files\ubi.com
2007-11-10 15:49 --------- d-----w C:\Program Files\Ubi Soft
2007-11-10 15:48 --------- d-----w C:\Program Files\directx
2007-11-10 11:18 --------- d-----w C:\Program Files\Google
2007-11-10 10:44 --------- d-----w C:\Documents and Settings\RON\Application Data\Smart Recorder
2007-11-09 15:40 --------- d-----w C:\Documents and Settings\RON\Application Data\Creative
2007-11-09 14:38 --------- d-----w C:\Program Files\Creative
2007-11-08 17:45 --------- d-----w C:\Program Files\foobar2000
2007-11-08 16:30 --------- d-----w C:\Documents and Settings\All Users\Application Data\FLEXnet
2007-11-08 13:31 --------- d-----w C:\Program Files\Common Files\Adobe
2007-11-08 13:31 --------- d-----w C:\Program Files\Bonjour
2007-11-08 13:21 --------- d-----w C:\Program Files\Common Files\Macrovision Shared
2007-11-06 18:45 --------- d-----w C:\Documents and Settings\RON\Application Data\Ahead
2007-11-06 17:24 --------- d-----w C:\Program Files\Active Data Recovery Services
2007-11-06 17:16 --------- d-----w C:\Program Files\Common Files\Ahead
2007-11-06 17:12 --------- d-----w C:\Program Files\Nero
2007-11-06 15:48 --------- d-----w C:\Program Files\EssentialPIM
2007-11-06 15:48 --------- d-----w C:\Documents and Settings\RON\Application Data\EssentialPIM
2007-11-05 17:19 --------- d-----w C:\Program Files\SiSoftware
2007-10-29 22:43 1,287,680 ----a-w C:\WINDOWS\system32\quartz.dll
2007-10-28 17:06 --------- d-----w C:\Program Files\XP Repair Pro 2007
2007-10-28 08:45 --------- d-----w C:\Documents and Settings\RON\Application Data\Leadertech
2007-10-27 17:39 230,912 ----a-w C:\WINDOWS\system32\wmasf.dll
2007-10-27 04:21 --------- d-----w C:\Program Files\Common Files\eSellerate
2007-10-27 03:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-10-26 14:05 --------- d-----w C:\Program Files\CCleaner
2007-10-26 13:20 --------- d-----w C:\Documents and Settings\All Users\Application Data\Grisoft
2007-10-26 13:11 --------- d-----w C:\Program Files\Common Files\Webroot Shared
2007-10-26 13:09 --------- d-----w C:\Program Files\Webroot
2007-10-26 13:03 --------- d-----w C:\Documents and Settings\RON\Application Data\Webroot
2007-10-26 12:12 --------- d-----w C:\Program Files\Pumatech
2007-10-26 11:39 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll
2007-10-26 11:39 348,160 ----a-w C:\WINDOWS\system32\msvcr71.dll
2007-10-26 11:39 --------- d-----w C:\Documents and Settings\LocalService\Application Data\AVG7
2007-10-26 11:22 --------- d-----w C:\Documents and Settings\All Users\Application Data\MailFrontier
2007-10-26 10:36 --------- d-----w C:\Program Files\Keybreeze
2007-10-26 10:35 64,650 ----a-w C:\WINDOWS\BricoPackUninst.cmd
2007-10-26 10:35 6,110 ----a-w C:\WINDOWS\BricoPackFoldersDelete.cmd
2007-10-26 10:35 218,624 ----a-w C:\WINDOWS\system32\uxtheme.dll
2007-10-26 10:16 --------- d-----w C:\Program Files\Hawking
2007-10-26 10:05 --------- d-----w C:\Program Files\AusLogics Disk Defrag
2007-10-26 09:57 --------- d-----w C:\Program Files\Microsoft.NET
2007-10-26 09:57 --------- d-----w C:\Program Files\Microsoft ActiveSync
2007-10-26 09:57 --------- d-----w C:\Program Files\Common Files\L&H
2007-10-26 09:56 --------- d-----w C:\Program Files\Microsoft Works
2007-10-26 09:43 --------- d-----w C:\Program Files\microsoft frontpage
2007-10-04 17:14 81,920 ----a-w C:\WINDOWS\system32\nvwddi.dll
2007-10-04 17:14 81,920 ----a-w C:\WINDOWS\system32\nvmctray.dll
2007-10-04 17:14 8,491,008 ----a-w C:\WINDOWS\system32\nvcpl.dll
2007-10-04 17:14 753,664 ----a-w C:\WINDOWS\system32\nvcplui.exe
2007-10-04 17:14 6,750,208 ----a-w C:\WINDOWS\system32\nvoglnt.dll
2007-10-04 17:14 6,344,704 ----a-w C:\WINDOWS\system32\nvdisps.dll
2007-10-04 17:14 5,783,424 ----a-w C:\WINDOWS\system32\nv4_disp.dll
2007-10-04 17:14 466,944 ----a-w C:\WINDOWS\system32\nvshell.dll
2007-10-04 17:14 45,056 ----a-w C:\WINDOWS\system32\nvmccsrs.dll
2007-10-04 17:14 442,368 ----a-w C:\WINDOWS\system32\nvappbar.exe
2007-10-04 17:14 425,984 ----a-w C:\WINDOWS\system32\keystone.exe
2007-10-04 17:14 364,544 ----a-w C:\WINDOWS\system32\nvapi.dll
2007-10-04 17:14 36,864 ----a-w C:\WINDOWS\system32\nvcodins.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{73c7d5b0-7b03-444a-84c7-ce1ba03b5573}]
2007-12-14 14:48 1502232 --a------ C:\Program Files\Foxit\tbFox0.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D}
{73C7D5B0-7B03-444A-84C7-CE1BA03B5573}
[HKEY_CLASSES_ROOT\clsid\{73c7d5b0-7b03-444a-84c7-ce1ba03b5573}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{73C7D5B0-7B03-444A-84C7-CE1BA03B5573}"= C:\Program Files\Foxit\tbFox0.dll [2007-12-14 14:48 1502232]
[HKEY_CLASSES_ROOT\clsid\{73c7d5b0-7b03-444a-84c7-ce1ba03b5573}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"RocketDock"="C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe" [2007-03-18 22:05]
"wireless hub"="C:\Program Files\Hawking\HWU8DD\HWU8DD.exe" [2005-09-09 09:55]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 12:00]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"Keybreeze"="C:\Program Files\Keybreeze\Keybreeze.exe" [2007-10-01 04:44]
"COMODO Firewall Pro"="C:\Program Files\Comodo\Firewall\CPF.exe" [2007-11-16 18:21]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2007-10-26 11:39]
"NetStat Live"="C:\Program Files\AnalogX\NetStat Live\nsl.exe" [2007-10-22 12:10]
"SnoopFreeUI"="SnoopFreeUI.exe" [2007-11-23 05:52 C:\WINDOWS\SnoopFreeUI.exe]
"EEventManager"="C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe" [2005-04-08 14:09]
"HD Tune"="C:\PROGRA~1\HDTUNE~1\HDTune.exe" [2007-09-03 00:37]
"PrevxCSI"="C:\Program Files\PrevxCSI\prevxcsi.exe" [2007-12-16 00:50]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Run]
"AVG7_Run"="C:\PROGRA~1\Grisoft\AVG7\avgw.exe" [2007-10-26 11:39]
C:\Documents and Settings\RON\Start Menu\Programs\Startup\
TransBar.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe [2005-06-01 19:41:18]
UberIcon.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe [2006-05-21 07:43:08]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^RON^Start Menu^Programs^Startup^RocketDock.lnk]
backup=C:\WINDOWS\pss\RocketDock.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^RON^Start Menu^Programs^Startup^UberIcon.lnk]
backup=C:\WINDOWS\pss\UberIcon.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^RON^Start Menu^Programs^Startup^Y'z Shadow.lnk]
backup=C:\WINDOWS\pss\Y'z Shadow.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ARSA]
C:\Program Files\AnswersThatWork\A Really Small App\A_Really_Small_App.exe -startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2004-08-04 12:00 15360 --a------ C:\WINDOWS\system32\ctfmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Red Swoosh]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteCenter]
2004-06-25 10:21 147456 --a------ C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoboForm]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RocketDock]
2007-03-18 22:05 630784 --a------ C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XPRepairPro2007]
C:\Program Files\XP Repair Pro 2007\XPRepairPro.exe /r
R3 HCW88BDA;Hauppauge WinTV 88x DVB Tuner/Demod;C:\WINDOWS\system32\drivers\hcw88bda.sys [2006-11-21 04:03]
R3 hcw88rc5;Hauppauge WinTV 88x IR Decoder;C:\WINDOWS\system32\Drivers\hcw88rc5.sys [2007-01-24 14:25]
R3 HCW88TSE;Hauppauge WinTV 88x MPEG/TS Capture;C:\WINDOWS\system32\drivers\hcw88tse.sys [2007-01-24 14:25]
R3 hcw88vid;Hauppauge WinTV 88x Video;C:\WINDOWS\system32\drivers\hcw88vid.sys [2007-01-24 14:25]
R3 sbusb;Sound Blaster USB Audio Driver;C:\WINDOWS\system32\DRIVERS\sbusb.sys [2004-07-27 09:31]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver;C:\WINDOWS\system32\drivers\WmBEnum.sys [2007-09-13 20:40]
R3 WmFilter;Logitech Gaming HID Filter Driver;C:\WINDOWS\system32\drivers\WmFilter.sys [2007-09-13 20:41]
R3 WmXlCore;Logitech Translation Layer Driver;C:\WINDOWS\system32\drivers\WmXlCore.sys [2007-09-13 20:41]
S3 EPGService;EPGService;C:\PROGRA~1\WinTV\EPG Services\System\EPGService.exe [2006-11-28 17:17]
S3 HauppaugeTVServer;HauppaugeTVServer;C:\PROGRA~1\Wi nTV\HCWTVS~1.EXE [2006-12-01 14:41]
S3 pxark;pxark;C:\WINDOWS\system32\drivers\pxark.sys [2007-12-18 00:00]
S3 ulusba;NEC 616 Command Port Driver;C:\WINDOWS\system32\DRIVERS\ulusba.sys [2003-06-22 16:00]
S3 ulusbc;NEC 616 CONTROL Driver;C:\WINDOWS\system32\DRIVERS\ulusbc.sys [2003-06-22 16:00]
S3 ulusbe;NEC 616 ENUMERATION Driver;C:\WINDOWS\system32\DRIVERS\ulusbe.sys [2003-06-22 16:00]
S3 ulusbm;NEC 616 Modem Driver;C:\WINDOWS\system32\DRIVERS\ulusbm.sys [2003-06-22 16:00]
S3 ulusbo;NEC 616 OBEX Port Driver;C:\WINDOWS\system32\DRIVERS\ulusbo.sys [2003-07-23 16:00]
S3 WmVirHid;Logitech Virtual Hid Device Driver;C:\WINDOWS\system32\drivers\WmVirHid.sys [2007-09-13 20:41]
S3 ZD1211U(Hawking);Hawking Hi-Gain Wireless-G USB Dish Adapter(Hawking);C:\WINDOWS\system32\DRIVERS\zd121 1u.sys [2005-08-16 13:50]
*Newly Created Service* - CATCHME
*Newly Created Service* - PROCEXP90
.
Contents of the 'Scheduled Tasks' folder
"2007-11-16 00:14:44 C:\WINDOWS\Tasks\RegCure.job"
- C:\Program Files\RegCure\RegCure.exe
.
************************************************** ************************
catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-18 17:12:30
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
************************************************** ************************
.
Completion time: 2007-12-18 17:13:35
-
Open Hijackthis.
Click the "Open the Misc Tools" section Button.
Click the "Open Uninstall Manager" Button.
Click the "Save list..." Button.
Save it to your desktop. Copy and paste the contents into your reply.
Go here to learn how to show hidden files/folders:
http://www.xtra.co.nz/help/0,,4155-1916458,00.html#5
Re-hide after we are done
Go to next site:
http://www.virustotal.com/en/indexf.html
On top you'll find 'Browse'
Click the browse button and browse to next file:
C:\WINDOWS\CDE P34903590EF.ini
Click open.
Then click the 'Send' button next to it.
This will scan the file. Please be patient.
Once scanned, copy and paste the results as well in your next reply.
If that one is to busy here is another option:
http://virusscan.jotti.org
And
http://www.kaspersky.com/scanforvirus.html
Do the same for this one please:
C:\WINDOWS\system32\toyhide.bmp
Thanks.
-
Thanks Neal here are the logs, just hope i have done all this correctly.....
uninstall log=
A Really Small App 2.0
Ad-Aware 2007
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color - Photoshop Specific
Adobe Color Common Settings
Adobe Color EU Extra Settings
Adobe Color JA Extra Settings
Adobe Color NA Recommended Settings
Adobe Default Language CS3
Adobe Device Central CS3
Adobe ExtendScript Toolkit 2
Adobe ExtendScript Toolkit 2
Adobe Flash Player Plugin
Adobe Fonts All
Adobe Help Viewer CS3
Adobe Linguistics CS3
Adobe PDF Library Files
Adobe Photoshop CS3
Adobe Photoshop CS3
Adobe Reader 8.1.1
Adobe Setup
Adobe Setup
Adobe Stock Photos CS3
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS3
Ashampoo Burning Studio 6
AVG 7.5
AVG Anti-Rootkit Free
Azureus Vuze
Belarc Advisor 7.2
CCleaner (remove only)
CdCoverCreator v.2.4
COMODO Firewall Pro
Creative MediaSource
Creative System Information
Debugging Tools for Windows
DriverMax 3.0
EPSON Attach To Email
EPSON Copy Utility 3
EPSON Event Manager
EPSON File Manager
EPSON Image Clip Palette
EPSON Printer Software
EPSON Scan
EPSON Scan Assistant
EPSON Web-To-Page
Error Messages for Windows
EULAlyzer v1.2
EVEREST Home Edition v2.20
FLAC 1.1.4b (remove only)
foobar2000 v0.9.4.4
Foxit Reader
Foxit Toolbar
Glary Utilities 2.3.3
Google Earth
Hauppauge English Help Files and Resources
Hauppauge WinTV DVB-T EPG Service
Hauppauge WinTV Infrared Remote
Hauppauge WinTV Scheduler
Hauppauge WinTV TV Services
Hauppauge WinTV2000
HD Tune 2.54
HijackThis 1.99.1
Intellisync Lite for NEC 616
InterVideo FilterSDK for Hauppauge
IrfanView (remove only)
Java(TM) 6 Update 3
Keybreeze
LADSPA_plugins-win-0.4.15
Microsoft .NET Framework 2.0
Microsoft Fighter Ace II
Microsoft Flight Simulator 2002
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2005 Redistributable
Mozilla Firefox (2.0.0.9)
MSXML 4.0 SP2 (KB936181)
Nero 7 Ultra Edition
NVIDIA Drivers
Online Manuals for WinTV (English)
Opera 9.22
Opera 9.24
Pack Vista Inspirat 2 1.0
PC Pitstop Optimize 1.5
PDF Settings
Perf3490P_3590P User's Guide
Prevx CSI Plus
RegCure 1.0.0.43
RegistryFix v6.3
Security Task Manager 1.7d
Security Update for Microsoft .NET Framework 2.0 (KB928365)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB937894)
Security Update for Windows XP (KB941568)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB944653)
SiSoftware Sandra Lite XIIc
SnoopFree Privacy Shield
Sound Blaster Live! 24-Bit External
Spybot - Search & Destroy
SUPERAntiSpyware Free Edition
The Ultimate Troubleshooter
Total Video Converter 3.02
U3Launcher
Uniblue RegistryBooster 2
Update for Windows XP (KB942763)
VersionTracker Pro for Windows
Wallpaper Changer for Windows XP
Window Washer
Windows Internet Explorer 7
WinRAR archiver
XP Repair Pro 2007
ZoneLog 1.19
ZSoft Uninstaller 2.4.1
virustotal logs
File CDE_P34903590EF.ini received on 12.19.2007 17:10:37 (CET)
Current status: finished
Result: 0/32 (0%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.12.20.10 2007.12.19 -
AntiVir 7.6.0.45 2007.12.19 -
Authentium 4.93.8 2007.12.19 -
Avast 4.7.1098.0 2007.12.18 -
AVG 7.5.0.503 2007.12.19 -
BitDefender 7.2 2007.12.19 -
CAT-QuickHeal 9.00 2007.12.19 -
ClamAV 0.91.2 2007.12.19 -
DrWeb 4.44.0.09170 2007.12.19 -
eSafe 7.0.15.0 2007.12.19 -
eTrust-Vet 31.3.5387 2007.12.19 -
Ewido 4.0 2007.12.19 -
FileAdvisor 1 2007.12.19 -
Fortinet 3.14.0.0 2007.12.19 -
F-Prot 4.4.2.54 2007.12.18 -
F-Secure 6.70.13030.0 2007.12.19 -
Ikarus T3.1.1.15 2007.12.19 -
Kaspersky 7.0.0.125 2007.12.19 -
McAfee 5189 2007.12.19 -
Microsoft 1.3109 2007.12.19 -
NOD32v2 2734 2007.12.19 -
Norman 5.80.02 2007.12.19 -
Panda 9.0.0.4 2007.12.18 -
Prevx1 V2 2007.12.19 -
Rising 20.23.22.00 2007.12.19 -
Sophos 4.24.0 2007.12.19 -
Sunbelt 2.2.907.0 2007.12.19 -
Symantec 10 2007.12.19 -
TheHacker 6.2.9.164 2007.12.18 -
VBA32 3.12.2.5 2007.12.19 -
VirusBuster 4.3.26:9 2007.12.19 -
Webwasher-Gateway 6.6.2 2007.12.19 -
Additional information
File size: 27 bytes
MD5: 0811f42f4988de430213178a138140b2
SHA1: 6494530153512e278b23b23fd95f6d678edc89bb
PEiD: -
File toyhide.bmp received on 12.19.2007 17:26:14 (CET)
Current status: finished
Result: 0/32 (0%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.12.20.10 2007.12.19 -
AntiVir 7.6.0.45 2007.12.19 -
Authentium 4.93.8 2007.12.19 -
Avast 4.7.1098.0 2007.12.18 -
AVG 7.5.0.503 2007.12.19 -
BitDefender 7.2 2007.12.19 -
CAT-QuickHeal 9.00 2007.12.19 -
ClamAV 0.91.2 2007.12.19 -
DrWeb 4.44.0.09170 2007.12.19 -
eSafe 7.0.15.0 2007.12.19 -
eTrust-Vet 31.3.5387 2007.12.19 -
Ewido 4.0 2007.12.19 -
FileAdvisor 1 2007.12.19 -
Fortinet 3.14.0.0 2007.12.19 -
F-Prot 4.4.2.54 2007.12.18 -
F-Secure 6.70.13030.0 2007.12.19 -
Ikarus T3.1.1.15 2007.12.19 -
Kaspersky 7.0.0.125 2007.12.19 -
McAfee 5189 2007.12.19 -
Microsoft 1.3109 2007.12.19 -
NOD32v2 2734 2007.12.19 -
Norman 5.80.02 2007.12.19 -
Panda 9.0.0.4 2007.12.18 -
Prevx1 V2 2007.12.19 -
Rising 20.23.22.00 2007.12.19 -
Sophos 4.24.0 2007.12.19 -
Sunbelt 2.2.907.0 2007.12.19 -
Symantec 10 2007.12.19 -
TheHacker 6.2.9.164 2007.12.18 -
VBA32 3.12.2.5 2007.12.19 -
VirusBuster 4.3.26:9 2007.12.19 -
Webwasher-Gateway 6.6.2 2007.12.19 -
Additional information
File size: 3145782 bytes
MD5: 8f53c3638cba49dbcce5fb78a8af39fc
SHA1: a855eb91e7abadc15f6b6bf2b3c5e5275c3b0938
PEiD: -
Thanks
-
If you are still having BSOD's then you proabably need to look in a different direction, like a hardware problem. Combofix did not come up with much of anything.
Good luck
-
Cheers for having a look anyway Neal, I think the problem has something to do with a ZDPSp50 NDIS Protocol Driver, cant seem to find any one to help with its update or removal. Cheers anyway. Just have to keep looking.
-
Good luck and hope you get it sorted soon
