1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

IE not accepting cookies

Discussion in 'Internet Explorer & Microsoft Edge' started by fleagore, 2008/12/13.

Thread Status:
Not open for further replies.
  1. 2008/12/13
    fleagore

    fleagore Inactive Thread Starter

    Joined:
    2008/12/13
    Messages:
    7
    Likes Received:
    0
    I m getting a selected browser is not accepting cooies promptwhen i try to log into my most visiited sites(ebay,amazon, iofer, etc)
    I read the post here and i went with the possible malware thread. I have tried all the settings to accept cookies and have also changed setting in my mcafee security suite. to no avail. hereis my log from random/random
    any helpis greatly appreciated.

    Logfile of random's system information tool 1.04 (written by random/random)
    Run by Administrator at 2008-12-13 21:32:58
    Microsoft Windows XP Professional Service Pack 3
    System drive C: has 22 GB (57%) free of 38 GB
    Total RAM: 1023 MB (60% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 9:33:38 PM, on 12/13/2008
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16762)
    Boot mode: Normal

    Running processes:
    C:\Windows\System32\smss.exe
    C:\Windows\system32\winlogon.exe
    C:\Windows\system32\services.exe
    C:\Windows\system32\lsass.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\system32\spoolsv.exe
    C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
    C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Windows\System32\Ati2evxx.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Windows\runservice.exe
    C:\Windows\system32\LxrSII1s.exe
    C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
    c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    C:\Program Files\McAfee\MPF\MPFSrv.exe
    C:\Windows\system32\HPZipm12.exe
    C:\Windows\System32\snmp.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    c:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\ctfmon.exe
    C:\Windows\system32\atiptaxx.exe
    C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Compaq\EAB\EabServr.exe
    C:\Windows\system32\ltmsg.exe
    C:\Program Files\Common Files\AOL\1159014010\ee\AOLSoftware.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
    C:\Program Files\QuickTime\QTTask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Corel\Corel Graphics 12\Programs\CorUpd.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\documents and settings\administrator\local settings\application data\wamaecm.exe
    C:\Program Files\RALINK\RT2500 Wireless LAN Card\Installer\WINXP\RaConfig2500.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    c:\program files\winamp toolbar\WinampTbServer.exe
    C:\Program Files\PayPal\PayPal Plug-In\RBroker.exe
    C:\Documents and Settings\Administrator\Desktop\RSIT.exe
    C:\Program Files\trend micro\Administrator.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/explore.html
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: Winamp Toolbar BHO - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O2 - BHO: OToolbarHelper Class - {EAD3A971-6A23-4246-8691-C9244E858967} - C:\Program Files\PayPal\PayPal Plug-In\PayPalHelper.dll
    O3 - Toolbar: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
    O3 - Toolbar: PayPal Plug-In - {DC0F2F93-27FA-4f84-ACAA-9416F90B9511} - C:\Program Files\PayPal\PayPal Plug-In\OToolbar.dll
    O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
    O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
    O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\Compaq\EAB\EabServr.exe /Start
    O4 - HKLM\..\Run: [LTWinModem1] ltmsg.exe 9
    O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
    O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1159014010\ee\AOLSoftware.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [CorelDRAW Graphics Suite 11b] C:\Program Files\Corel\Corel Graphics 12\Languages\EN\Programs\Registration.exe /title= "CorelDRAW Graphics Suite 12" /date=122008 serial=DR12WUS-0926960-CLD lang=EN
    O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
    O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe "
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe "
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe "
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [ctfmon.exe] C:\Windows\system32\ctfmon.exe
    O4 - HKCU\..\Run: [c:_program files_corel_cor3c] C:\Program Files\Corel\Corel Graphics 12\Programs\CorUpd.exe /Watch /r= "Software\Corel\CorelDRAW\12.0 "
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [wamaecm] "c:\documents and settings\administrator\local settings\application data\wamaecm.exe" wamaecm
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O4 - Global Startup: RaConfig2500.lnk = C:\Program Files\RALINK\RT2500 Wireless LAN Card\Installer\WINXP\RaConfig2500.exe
    O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
    O8 - Extra context menu item: &Winamp Toolbar Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
    O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file)
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\System32\Shdocvw.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkID=39204
    O16 - DPF: {459E93B6-150E-45D5-8D4B-45C66FC035FE} (get_atlcom Class) - http://apps.corel.com/nos_dl_manager_dev/plugin/IEGetPlugin.ocx
    O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - http://ipgweb.cce.hp.com/rdqaio2/downloads/sysinfo.cab
    O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
    O23 - Service: McAfee Application Installer Cleanup (0248711227139684) (0248711227139684mcinstcleanup) - Unknown owner - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\024871~1.EXE (file missing)
    O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
    O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\Windows\System32\Ati2evxx.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\Windows\runservice.exe
    O23 - Service: Lexar Secure II (LxrSII1s) - Unknown owner - C:\Windows\SYSTEM32\LxrSII1s.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\Windows\system32\HPZipm12.exe

    --
    End of file - 10824 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\AppleSoftwareUpdate.job
    C:\Windows\tasks\McDefragTask.job
    C:\Windows\tasks\McQcTask.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
    Winamp Toolbar BHO - C:\Program Files\Winamp Toolbar\winamptb.dll [2007-12-13 1185120]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-11-10 320920]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
    scriptproxy - C:\Program Files\McAfee\VirusScan\scriptsn.dll [2007-11-09 58688]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - c:\program files\google\googletoolbar3.dll [2007-01-19 2403392]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll [2008-10-12 737776]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-11-10 34816]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-11-10 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EAD3A971-6A23-4246-8691-C9244E858967}]
    OToolbarHelper Class - C:\Program Files\PayPal\PayPal Plug-In\PayPalHelper.dll [2007-12-03 81920]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {4982D40A-C53B-4615-B15B-B5B5E98D167C}
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar3.dll [2007-01-19 2403392]
    {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - Winamp Toolbar - C:\Program Files\Winamp Toolbar\winamptb.dll [2007-12-13 1185120]
    {DC0F2F93-27FA-4f84-ACAA-9416F90B9511} - PayPal Plug-In - C:\Program Files\PayPal\PayPal Plug-In\OToolbar.dll [2007-12-03 2703360]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "ATIModeChange "=C:\Windows\system32\Ati2mdxx.exe [2001-09-04 28672]
    "AtiPTA "=C:\Windows\system32\atiptaxx.exe [2002-02-14 315392]
    "SynTPLpr "=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2002-04-25 126976]
    "SynTPEnh "=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2002-04-25 540672]
    "eabconfg.cpl "=C:\Program Files\Compaq\EAB\EabServr.exe [2002-03-07 171665]
    "LTWinModem1 "=ltmsg.exe 9 []
    "AOLDialer "=C:\Program Files\Common Files\AOL\ACS\AOLDial.exe [2006-10-23 71216]
    "HostManager "=C:\Program Files\Common Files\AOL\1159014010\ee\AOLSoftware.exe [2006-09-25 50736]
    "TkBellExe "=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2006-09-23 185784]
    "CorelDRAW Graphics Suite 11b "=C:\Program Files\Corel\Corel Graphics 12\Languages\EN\Programs\Registration.exe [2003-11-25 729088]
    "CanonMyPrinter "=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2006-10-16 1197648]
    "mcagent_exe "=C:\Program Files\McAfee.com\Agent\mcagent.exe [2007-11-01 582992]
    "QuickTime Task "=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
    "iTunesHelper "=C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]
    "Adobe Reader Speed Launcher "=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
    "SunJavaUpdateSched "=C:\Program Files\Java\jre6\bin\jusched.exe [2008-11-10 136600]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "MSMSGS "=C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232]
    "ctfmon.exe "=C:\Windows\system32\ctfmon.exe [2008-04-13 15360]
    "c:_program files_corel_cor3c "=C:\Program Files\Corel\Corel Graphics 12\Programs\CorUpd.exe [2003-11-18 139264]
    "swg "=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-08-17 68856]
    "wamaecm "=c:\documents and settings\administrator\local settings\application data\wamaecm.exe [2008-11-26 294912]

    C:\Documents and Settings\All Users\Start Menu\Programs\Startup
    Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
    RaConfig2500.lnk - C:\Program Files\RALINK\RT2500 Wireless LAN Card\Installer\WINXP\RaConfig2500.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\Windows\system32\WgaLogon.dll [2008-09-05 241704]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\Windows\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
    "authentication packages "=msv1_0
    nwprovau

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername "=0
    "legalnoticecaption "=
    "legalnoticetext "=
    "shutdownwithoutlogon "=1
    "undockwithoutlogon "=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun "=145

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe "= "%windir%\system32\sessmgr.exe:*:enabled:mad:xpsp2res.dll,-22019 "
    "C:\Program Files\America Online 9.0\waol.exe "= "C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AMERIC~1.0 "
    "C:\Program Files\America Online 9.0a\waol.exe "= "C:\Program Files\America Online 9.0a\waol.exe:*:Enabled:AOL "
    "C:\Program Files\Common Files\AOL\1159014010\EE\AOLServiceHost.exe "= "C:\Program Files\Common Files\AOL\1159014010\EE\AOLServiceHost.exe:*:Enabled:AOL "
    "C:\Program Files\Common Files\AOL\Loader\aolload.exe "= "C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL "
    "C:\Program Files\Common Files\AOL\System Information\sinf.exe "= "C:\Program Files\Common Files\AOL\System Information\sinf.exe:*:Enabled:AOL "
    "C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe "= "C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe:*:Enabled:AOL "
    "C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe "= "C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe:*:Enabled:AOL "
    "C:\Program Files\Common Files\AolCoach\en_en\player\AOLNySEV.exe "= "C:\Program Files\Common Files\AolCoach\en_en\player\AOLNySEV.exe:*:Enabled:AOL "
    "C:\Program Files\Common Files\AOL\ACS\AOLDial.exe "= "C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL Connectivity Service Dialer "
    "C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe "= "C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL Connectivity Service "
    "C:\Program Files\Common Files\AOL\TopSpeed\3.0\aoltpsd3.exe "= "C:\Program Files\Common Files\AOL\TopSpeed\3.0\aoltpsd3.exe:*:Enabled:AOL TopSpeed "
    "%windir%\Network Diagnostic\xpnetdiag.exe "= "%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:mad:xpsp3res.dll,-20000 "
    "C:\Program Files\Bonjour\mDNSResponder.exe "= "C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour "
    "C:\Program Files\eMule\emule.exe "= "C:\Program Files\eMule\emule.exe:*:Enabled:eMule "
    "C:\Program Files\iTunes\iTunes.exe "= "C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes "
    "C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe "= "C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent "

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe "= "%windir%\system32\sessmgr.exe:*:enabled:mad:xpsp2res.dll,-22019 "
    "%windir%\Network Diagnostic\xpnetdiag.exe "= "%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:mad:xpsp3res.dll,-20000 "

    ======List of files/folders created in the last 3 months======

    2008-12-13 21:33:00 ----D---- C:\Program Files\trend micro
    2008-12-13 21:32:58 ----D---- C:\rsit
    2008-12-12 23:50:48 ----HDC---- C:\Windows\$NtUninstallKB955839$
    2008-12-12 23:47:17 ----HDC---- C:\Windows\$NtUninstallKB952069_WM9$
    2008-12-12 23:47:07 ----HDC---- C:\Windows\$NtUninstallKB954600$
    2008-12-12 23:46:49 ----HDC---- C:\Windows\$NtUninstallKB956802$
    2008-12-09 20:16:06 ----D---- C:\Program Files\CDisplay
    2008-12-09 20:08:39 ----D---- C:\Program Files\CBViewer
    2008-12-06 00:59:19 ----A---- C:\Windows\system32\cpwmon2k.dll
    2008-12-06 00:59:01 ----D---- C:\Program Files\Acro Software
    2008-12-06 00:58:20 ----D---- C:\Program Files\GPLGS
    2008-12-05 23:46:53 ----A---- C:\Windows\system32\javaws.exe
    2008-12-05 23:46:53 ----A---- C:\Windows\system32\javaw.exe
    2008-12-05 23:46:53 ----A---- C:\Windows\system32\java.exe
    2008-12-05 22:34:55 ----A---- C:\ROFTable.bak
    2008-12-05 22:34:55 ----A---- C:\ROFImagesTable.bak
    2008-12-05 22:34:55 ----A---- C:\pathnameTable.bak
    2008-12-05 22:34:55 ----A---- C:\managedFolderTable.bak
    2008-12-05 22:34:55 ----A---- C:\keywordTable.bak
    2008-12-05 22:34:55 ----A---- C:\keywordImagesTable.bak
    2008-12-05 22:34:55 ----A---- C:\imageTable.bak
    2008-12-05 22:34:55 ----A---- C:\EXIFTable.bak
    2008-12-05 22:34:55 ----A---- C:\albumTable.bak
    2008-12-05 22:34:55 ----A---- C:\albumImagesTable.bak
    2008-12-05 22:34:54 ----A---- C:\CB_Server_Errors.txt
    2008-12-05 22:34:54 ----A---- C:\administrativeInfo.bak
    2008-12-05 22:04:58 ----D---- C:\Windows\Microsoft.NET
    2008-12-05 22:04:58 ----D---- C:\Windows\assembly
    2008-12-05 22:04:54 ----D---- C:\Windows\system32\URTTemp
    2008-11-27 16:33:47 ----A---- C:\Windows\system32\deploytk.dll
    2008-11-12 03:03:55 ----HDC---- C:\Windows\$NtUninstallKB957097$
    2008-11-12 03:03:41 ----HDC---- C:\Windows\$NtUninstallKB954459$
    2008-11-12 03:03:15 ----HDC---- C:\Windows\$NtUninstallKB955069$
    2008-11-01 16:06:44 ----D---- C:\Documents and Settings\Administrator\Application Data\LimeWire
    2008-10-30 09:57:16 ----D---- C:\Program Files\WinRAR
    2008-10-24 02:02:03 ----HDC---- C:\Windows\$NtUninstallKB958644$
    2008-10-17 01:23:58 ----D---- C:\tlog
    2008-10-16 08:21:21 ----D---- C:\Program Files\iPod
    2008-10-16 08:21:14 ----D---- C:\Program Files\iTunes
    2008-10-16 08:21:14 ----D---- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
    2008-10-15 02:05:15 ----HDC---- C:\Windows\$NtUninstallKB956803$
    2008-10-15 02:05:03 ----HDC---- C:\Windows\$NtUninstallKB956391$
    2008-10-15 02:04:49 ----HDC---- C:\Windows\$NtUninstallKB957095$
    2008-10-15 02:03:44 ----HDC---- C:\Windows\$NtUninstallKB954211$
    2008-10-15 02:03:17 ----HDC---- C:\Windows\$NtUninstallKB956841$
    2008-10-08 09:17:16 ----D---- C:\Documents and Settings\Administrator\Application Data\Softplicity
    2008-10-08 09:16:46 ----D---- C:\Program Files\TotalAudioConverter
    2008-10-05 12:03:52 ----D---- C:\Documents and Settings\All Users\Application Data\SlySoft
    2008-10-04 09:48:14 ----D---- C:\Documents and Settings\Administrator\Application Data\AccurateRip
    2008-10-04 09:48:10 ----A---- C:\Windows\system32\SpoonUninstall.exe
    2008-10-04 09:48:02 ----D---- C:\Program Files\Illustrate
    2008-10-03 20:45:15 ----D---- C:\Program Files\jZip
    2008-09-30 16:43:34 ----A---- C:\Windows\system32\msxml4.dll
    2008-09-30 00:24:10 ----D---- C:\Program Files\Bonjour
    2008-09-28 05:13:40 ----A---- C:\WebmailPlugin.dll
    2008-09-19 08:39:15 ----HDC---- C:\Windows\$NtUninstallKB951978$
    2008-09-17 18:05:18 ----HDC---- C:\Windows\$NtUninstallKB952954$
    2008-09-17 18:05:03 ----HDC---- C:\Windows\$NtUninstallKB952287$
    2008-09-17 18:04:47 ----HDC---- C:\Windows\$NtUninstallKB951748$
    2008-09-17 18:04:33 ----HDC---- C:\Windows\$NtUninstallKB951698$
    2008-09-17 18:04:20 ----HDC---- C:\Windows\$NtUninstallKB951376-v2$
    2008-09-17 18:04:06 ----HDC---- C:\Windows\$NtUninstallKB951376$
    2008-09-17 18:03:49 ----HDC---- C:\Windows\$NtUninstallKB951066$
    2008-09-17 18:03:35 ----HDC---- C:\Windows\$NtUninstallKB950974$
    2008-09-17 18:03:21 ----HDC---- C:\Windows\$NtUninstallKB950762$
    2008-09-17 18:03:05 ----HDC---- C:\Windows\$NtUninstallKB946648$
    2008-09-17 18:02:51 ----HDC---- C:\Windows\$NtUninstallKB938464$
    2008-09-17 17:46:56 ----D---- C:\Windows\system32\scripting
    2008-09-17 17:46:46 ----D---- C:\Windows\l2schemas
    2008-09-17 17:46:42 ----D---- C:\Windows\system32\en
    2008-09-17 17:09:04 ----N---- C:\Windows\system32\wmphoto.dll
    2008-09-17 17:09:00 ----N---- C:\Windows\system32\wlanapi.dll
    2008-09-17 17:08:57 ----N---- C:\Windows\system32\windowscodecsext.dll
    2008-09-17 17:08:57 ----N---- C:\Windows\system32\windowscodecs.dll
    2008-09-17 17:08:36 ----N---- C:\Windows\system32\tspkg.dll
    2008-09-17 17:08:36 ----N---- C:\Windows\system32\tsgqec.dll
    2008-09-17 17:08:10 ----N---- C:\Windows\system32\setupn.exe
    2008-09-17 17:08:01 ----N---- C:\Windows\system32\rhttpaa.dll
    2008-09-17 17:07:58 ----N---- C:\Windows\system32\rasqec.dll
    2008-09-17 17:07:56 ----N---- C:\Windows\system32\qutil.dll
    2008-09-17 17:07:54 ----N---- C:\Windows\system32\qcliprov.dll
    2008-09-17 17:07:54 ----N---- C:\Windows\system32\qagentrt.dll
    2008-09-17 17:07:54 ----N---- C:\Windows\system32\qagent.dll
    2008-09-17 17:07:50 ----N---- C:\Windows\system32\photometadatahandler.dll
    2008-09-17 17:07:45 ----N---- C:\Windows\system32\onex.dll
    2008-09-17 17:07:26 ----N---- C:\Windows\system32\napstat.exe
    2008-09-17 17:07:26 ----N---- C:\Windows\system32\napmontr.dll
    2008-09-17 17:07:26 ----N---- C:\Windows\system32\napipsec.dll
    2008-09-17 17:07:23 ----N---- C:\Windows\system32\msxml6r.dll
    2008-09-17 17:07:23 ----N---- C:\Windows\system32\msxml6.dll
    2008-09-17 17:07:18 ----N---- C:\Windows\system32\msshavmsg.dll
    2008-09-17 17:07:18 ----N---- C:\Windows\system32\mssha.dll
    2008-09-17 17:06:44 ----N---- C:\Windows\system32\mmcperf.exe
    2008-09-17 17:06:43 ----N---- C:\Windows\system32\mmcfxcommon.dll
    2008-09-17 17:06:43 ----N---- C:\Windows\system32\mmcex.dll
    2008-09-17 17:06:43 ----N---- C:\Windows\system32\microsoft.managementconsole.dll
    2008-09-17 17:06:23 ----N---- C:\Windows\system32\l2gpstore.dll
    2008-09-17 17:06:21 ----N---- C:\Windows\system32\kmsvc.dll
    2008-09-17 17:06:19 ----N---- C:\Windows\system32\kbdpash.dll
    2008-09-17 17:06:19 ----N---- C:\Windows\system32\kbdnepr.dll
    2008-09-17 17:06:19 ----N---- C:\Windows\system32\kbdiultn.dll
    2008-09-17 17:06:18 ----N---- C:\Windows\system32\kbdbhc.dll
    2008-09-17 17:05:57 ----N---- C:\Windows\system32\smtpapi.dll
    2008-09-17 17:05:57 ----N---- C:\Windows\system32\rwnh.dll
    2008-09-17 17:05:28 ----A---- C:\Windows\005709_.tmp
    2008-09-17 17:05:25 ----N---- C:\Windows\system32\eapsvc.dll
    2008-09-17 17:05:25 ----N---- C:\Windows\system32\eapqec.dll
    2008-09-17 17:05:25 ----N---- C:\Windows\system32\eappprxy.dll
    2008-09-17 17:05:25 ----N---- C:\Windows\system32\eapphost.dll
    2008-09-17 17:05:25 ----N---- C:\Windows\system32\eappgnui.dll
    2008-09-17 17:05:25 ----N---- C:\Windows\system32\eappcfg.dll
    2008-09-17 17:05:24 ----N---- C:\Windows\system32\eapp3hst.dll
    2008-09-17 17:05:24 ----N---- C:\Windows\system32\eapolqec.dll
    2008-09-17 17:05:18 ----N---- C:\Windows\system32\dot3ui.dll
    2008-09-17 17:05:18 ----N---- C:\Windows\system32\dot3svc.dll
    2008-09-17 17:05:18 ----N---- C:\Windows\system32\dot3msm.dll
    2008-09-17 17:05:18 ----N---- C:\Windows\system32\dot3gpclnt.dll
    2008-09-17 17:05:18 ----N---- C:\Windows\system32\dot3dlg.dll
    2008-09-17 17:05:18 ----N---- C:\Windows\system32\dot3cfg.dll
    2008-09-17 17:05:18 ----N---- C:\Windows\system32\dot3api.dll
    2008-09-17 17:05:15 ----N---- C:\Windows\system32\dimsroam.dll
    2008-09-17 17:05:15 ----N---- C:\Windows\system32\dimsntfy.dll
    2008-09-17 17:05:15 ----N---- C:\Windows\system32\dhcpqec.dll
    2008-09-17 17:05:10 ----N---- C:\Windows\system32\credssp.dll
    2008-09-17 17:05:01 ----N---- C:\Windows\system32\bitsprx4.dll
    2008-09-17 17:05:00 ----N---- C:\Windows\system32\azroles.dll
    2008-09-17 17:04:43 ----N---- C:\Windows\system32\aaclient.dll
    2008-09-17 00:05:47 ----HDC---- C:\Windows\$NtUninstallKB938464_0$
    2008-09-17 00:04:37 ----HDC---- C:\Windows\$NtUninstallKB954154_WM11$

    ======List of files/folders modified in the last 3 months======

    2008-12-13 21:33:24 ----D---- C:\Windows\Temp
    2008-12-13 21:33:01 ----D---- C:\Windows\Prefetch
    2008-12-13 21:33:00 ----RD---- C:\Program Files
    2008-12-13 21:05:21 ----A---- C:\VETlog.txt
    2008-12-13 21:05:14 ----A---- C:\Windows\win.ini
    2008-12-13 19:58:35 ----D---- C:\Windows\system32
    2008-12-13 19:57:04 ----D---- C:\WINDOWS
    2008-12-13 19:48:22 ----HD---- C:\Windows\inf
    2008-12-13 19:48:20 ----D---- C:\Program Files\Internet Explorer
    2008-12-13 19:48:10 ----RSHD---- C:\Windows\system32\dllcache
    2008-12-13 19:46:44 ----A---- C:\Windows\SchedLgU.Txt
    2008-12-13 19:17:53 ----D---- C:\Windows\system32\CatRoot
    2008-12-13 19:17:40 ----D---- C:\Windows\system32\CatRoot2
    2008-12-13 18:55:03 ----D---- C:\Windows\system32\en-US
    2008-12-12 23:50:37 ----A---- C:\Windows\imsins.BAK
    2008-12-12 23:49:53 ----HD---- C:\Windows\$hf_mig$
    2008-12-09 18:24:37 ----A---- C:\Windows\system32\MRT.exe
    2008-12-07 13:27:37 ----AC---- C:\Windows\cdplayer.ini
    2008-12-05 23:47:27 ----SHD---- C:\Windows\Installer
    2008-12-05 23:47:16 ----HD---- C:\Config.Msi
    2008-12-05 23:46:43 ----D---- C:\Program Files\Java
    2008-12-05 23:18:13 ----D---- C:\Windows\system32\config
    2008-12-05 23:17:35 ----D---- C:\Windows\system32\wbem
    2008-12-05 23:17:34 ----D---- C:\Windows\Registration
    2008-12-05 22:34:38 ----SD---- C:\Documents and Settings\Administrator\Application Data\Microsoft
    2008-12-05 22:15:08 ----D---- C:\Program Files\Common Files\HP
    2008-12-05 22:10:30 ----D---- C:\Program Files\HP
    2008-12-01 17:18:49 ----AC---- C:\Windows\SCWRITER.INI
    2008-11-28 17:16:47 ----SD---- C:\Windows\Downloaded Program Files
    2008-11-27 01:58:12 ----D---- C:\Movie Magic Screenwriter
    2008-11-22 16:29:10 ----D---- C:\Program Files\AOL Toolbar
    2008-11-20 21:05:58 ----D---- C:\Windows\system32\drivers
    2008-11-20 21:00:23 ----D---- C:\mcafee_mcpr
    2008-11-20 20:12:13 ----D---- C:\Documents and Settings\All Users\Application Data\AOL
    2008-11-19 19:04:37 ----D---- C:\Program Files\McAfee
    2008-11-16 22:16:52 ----D---- C:\Windows\Help
    2008-11-12 09:59:46 ----D---- C:\Windows\WinSxS
    2008-11-12 09:59:22 ----D---- C:\Program Files\Common Files\Adobe
    2008-11-12 09:59:22 ----D---- C:\Program Files\Adobe
    2008-11-07 17:56:41 ----D---- C:\Documents and Settings\Administrator\Application Data\U3
    2008-11-07 00:26:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2008-10-25 15:24:41 ----D---- C:\Documents and Settings\Administrator\Application Data\Help
    2008-10-23 07:36:14 ----A---- C:\Windows\system32\gdi32.dll
    2008-10-23 05:06:59 ----N---- C:\Windows\system32\tzchange.exe
    2008-10-17 02:08:40 ----A---- C:\Windows\system32\mshtml.dll
    2008-10-16 15:38:40 ----A---- C:\Windows\system32\wininet.dll
    2008-10-16 15:38:39 ----A---- C:\Windows\system32\webcheck.dll
    2008-10-16 15:38:39 ----A---- C:\Windows\system32\urlmon.dll
    2008-10-16 15:38:39 ----A---- C:\Windows\system32\url.dll
    2008-10-16 15:38:39 ----A---- C:\Windows\system32\pngfilt.dll
    2008-10-16 15:38:39 ----A---- C:\Windows\system32\occache.dll
    2008-10-16 15:38:39 ----A---- C:\Windows\system32\mstime.dll
    2008-10-16 15:38:38 ----A---- C:\Windows\system32\msrating.dll
    2008-10-16 15:38:38 ----A---- C:\Windows\system32\mshtmled.dll
    2008-10-16 15:38:37 ----A---- C:\Windows\system32\msfeedsbs.dll
    2008-10-16 15:38:37 ----A---- C:\Windows\system32\msfeeds.dll
    2008-10-16 15:38:37 ----A---- C:\Windows\system32\jsproxy.dll
    2008-10-16 15:38:37 ----A---- C:\Windows\system32\iertutil.dll
    2008-10-16 15:38:37 ----A---- C:\Windows\system32\iernonce.dll
    2008-10-16 15:38:37 ----A---- C:\Windows\system32\ieframe.dll
    2008-10-16 15:38:35 ----A---- C:\Windows\system32\iedkcs32.dll
    2008-10-16 15:38:35 ----A---- C:\Windows\system32\ieapfltr.dll
    2008-10-16 15:38:35 ----A---- C:\Windows\system32\ieaksie.dll
    2008-10-16 15:38:35 ----A---- C:\Windows\system32\ieakeng.dll
    2008-10-16 15:38:35 ----A---- C:\Windows\system32\icardie.dll
    2008-10-16 15:38:35 ----A---- C:\Windows\system32\extmgr.dll
    2008-10-16 15:38:34 ----A---- C:\Windows\system32\dxtrans.dll
    2008-10-16 15:38:34 ----A---- C:\Windows\system32\dxtmsft.dll
    2008-10-16 15:38:34 ----A---- C:\Windows\system32\advpack.dll
    2008-10-16 14:13:40 ----A---- C:\Windows\system32\wuweb.dll
    2008-10-16 14:13:40 ----A---- C:\Windows\system32\wuaueng.dll
    2008-10-16 14:12:22 ----A---- C:\Windows\system32\wucltui.dll
    2008-10-16 14:12:20 ----A---- C:\Windows\system32\wuapi.dll
    2008-10-16 14:09:44 ----A---- C:\Windows\system32\wups2.dll
    2008-10-16 14:09:44 ----A---- C:\Windows\system32\wuauclt.exe
    2008-10-16 14:09:44 ----A---- C:\Windows\system32\cdm.dll
    2008-10-16 14:09:40 ----A---- C:\Windows\system32\wucltui.dll.mui
    2008-10-16 14:08:58 ----A---- C:\Windows\system32\wups.dll
    2008-10-16 14:07:44 ----A---- C:\Windows\system32\wuapi.dll.mui
    2008-10-16 14:07:14 ----A---- C:\Windows\system32\wuaueng.dll.mui
    2008-10-16 08:17:56 ----DC---- C:\Windows\system32\DRVSTORE
    2008-10-16 08:11:09 ----A---- C:\Windows\system32\ieudinit.exe
    2008-10-16 08:11:09 ----A---- C:\Windows\system32\ie4uinit.exe
    2008-10-15 11:34:24 ----A---- C:\Windows\system32\netapi32.dll
    2008-10-15 02:04:53 ----A---- C:\Windows\system32\ieakui.dll
    2008-10-12 16:08:10 ----D---- C:\Documents and Settings\Administrator\Application Data\Apple Computer
    2008-10-12 16:07:23 ----D---- C:\EMPIRE
    2008-10-04 01:01:39 ----D---- C:\Program Files\WinAce
    2008-10-04 00:59:43 ----D---- C:\Program Files\Mozilla Firefox
    2008-10-03 05:02:42 ----A---- C:\Windows\system32\strmdll.dll
    2008-09-30 00:28:54 ----SD---- C:\Windows\Tasks
    2008-09-30 00:28:50 ----D---- C:\Program Files\Apple Software Update
    2008-09-30 00:23:06 ----D---- C:\Program Files\QuickTime
    2008-09-30 00:21:46 ----D---- C:\Program Files\Common Files\Apple
    2008-09-18 23:55:49 ----AC---- C:\Windows\OEWABLog.txt
    2008-09-18 23:50:11 ----D---- C:\Windows\system32\Setup
    2008-09-18 23:50:11 ----D---- C:\Windows\ime
    2008-09-18 23:50:11 ----D---- C:\Windows\AppPatch
    2008-09-18 23:50:11 ----D---- C:\Program Files\Messenger
    2008-09-18 23:50:07 ----RSD---- C:\Windows\Fonts
    2008-09-17 18:34:52 ----D---- C:\Windows\security
    2008-09-17 17:48:11 ----D---- C:\Windows\system32\inetsrv
    2008-09-17 17:48:10 ----D---- C:\Windows\network diagnostic
    2008-09-17 17:47:01 ----D---- C:\Windows\system32\usmt
    2008-09-17 17:46:40 ----D---- C:\Windows\system32\bits
    2008-09-17 17:46:39 ----D---- C:\Windows\peernet
    2008-09-17 17:46:39 ----D---- C:\Program Files\Movie Maker
    2008-09-17 17:38:25 ----D---- C:\Windows\system32\Restore
    2008-09-17 17:38:25 ----D---- C:\Windows\system32\npp
    2008-09-17 17:38:22 ----D---- C:\Windows\msagent
    2008-09-17 17:38:19 ----D---- C:\Windows\srchasst
    2008-09-17 17:38:17 ----D---- C:\Program Files\NetMeeting
    2008-09-17 17:38:15 ----D---- C:\Windows\system32\Com
    2008-09-17 17:38:10 ----D---- C:\Program Files\Windows Media Player
    2008-09-17 17:38:09 ----D---- C:\Program Files\Windows NT
    2008-09-17 17:38:09 ----D---- C:\Program Files\Outlook Express
    2008-09-17 17:38:03 ----D---- C:\Program Files\Common Files\System
    2008-09-17 17:37:36 ----D---- C:\Windows\system32\oobe
    2008-09-17 17:37:32 ----D---- C:\Windows\system
    2008-09-17 17:31:17 ----D---- C:\Windows\system32\ReinstallBackups
    2008-09-17 17:30:46 ----HDC---- C:\Windows\$NtServicePackUninstall$
    2008-09-17 17:20:07 ----D---- C:\Windows\EHome
    2008-09-17 15:09:49 ----D---- C:\Windows\Debug

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 ClntMgmt.sys;ClntMgmt.sys; C:\Windows\System32\Drivers\ClntMgmt.sys [2002-01-16 54222]
    R1 EABFiltr;EABFiltr; \??\C:\Windows\System32\drivers\EABFiltr.sys []
    R1 intelppm;Intel Processor Driver; C:\Windows\System32\DRIVERS\intelppm.sys [2008-04-13 36352]
    R1 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2007-11-22 201320]
    R1 MPFP;MPFP; C:\Windows\System32\Drivers\Mpfp.sys [2007-07-13 113952]
    R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\Windows\System32\drivers\ws2ifsl.sys [2001-08-18 12032]
    R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.1.6.0; C:\Windows\System32\DRIVERS\AegisP.sys [2006-09-21 17119]
    R2 Cnxtdiag;Cnxtdiag; C:\Windows\System32\DRIVERS\cnxtdiag.sys [2001-10-04 17776]
    R2 Fallback;Fallback; C:\Windows\System32\DRIVERS\fallback.sys [2001-10-04 308403]
    R2 Fsks;Fsks; C:\Windows\System32\DRIVERS\fsksnt.sys [2001-10-04 124189]
    R2 irda;IrDA Protocol; C:\Windows\System32\DRIVERS\irda.sys [2008-04-13 88192]
    R2 K56;K56; C:\Windows\System32\DRIVERS\k56nt.sys [2001-10-04 427215]
    R2 LxrSII1d;Secure II Driver; \??\C:\Windows\system32\Drivers\LxrSII1d.sys []
    R2 MCSTRM;MCSTRM; C:\Windows\system32\drivers\MCSTRM.sys [2006-10-15 8413]
    R2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; C:\Windows\System32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
    R2 NwlnkNb;NWLink NetBIOS; C:\Windows\System32\DRIVERS\nwlnknb.sys [2001-08-18 63232]
    R2 NwlnkSpx;NWLink SPX/SPXII Protocol; C:\Windows\System32\DRIVERS\nwlnkspx.sys [2001-08-18 55936]
    R2 SoftFax;SoftFax; C:\Windows\System32\DRIVERS\faxnt.sys [2001-10-04 215195]
    R2 Tones;Tones; C:\Windows\System32\DRIVERS\tonesnt.sys [2001-10-04 59375]
    R2 V124;V124; C:\Windows\System32\DRIVERS\v124nt.sys [2001-10-04 539917]
    R3 ati2mtag;ati2mtag; C:\Windows\System32\DRIVERS\ati2mtag.sys [2002-02-20 381824]
    R3 CmBatt;Microsoft AC Adapter Driver; C:\Windows\System32\DRIVERS\CmBatt.sys [2008-04-13 13952]
    R3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\System32\DRIVERS\e100b325.sys [2001-11-02 119808]
    R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
    R3 ltmodem5;Lucent Modem Driver; C:\Windows\System32\DRIVERS\ltmdmxp.sys [2002-02-28 623665]
    R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2007-11-22 79304]
    R3 mfebopk;McAfee Inc. mfebopk; C:\Windows\system32\drivers\mfebopk.sys [2007-11-22 35240]
    R3 mfesmfk;McAfee Inc. mfesmfk; C:\Windows\system32\drivers\mfesmfk.sys [2007-12-02 40488]
    R3 NSCIRDA;NSC Infrared Device Driver; C:\Windows\System32\DRIVERS\nscirda.sys [2008-04-13 28672]
    R3 Rasirda;WAN Miniport (IrDA); C:\Windows\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
    R3 RT2500;RT2500 Wireless Driver; C:\Windows\System32\DRIVERS\RT2500.sys [2004-12-15 218368]
    R3 smwdm;smwdm; C:\Windows\system32\drivers\smwdm.sys [2001-12-17 414184]
    R3 SynTP;Synaptics TouchPad Driver; C:\Windows\System32\DRIVERS\SynTP.sys [2002-04-25 253328]
    R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\Windows\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;USB Root Hub (usbport); C:\Windows\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\Windows\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
    R3 USBSTOR;USB Mass Storage Driver; C:\Windows\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    R3 wanatw;WAN Miniport (ATW); C:\Windows\System32\DRIVERS\wanatw4.sys [2003-01-10 33588]
    S1 P3;Intel PentiumIII Processor Driver; C:\Windows\System32\DRIVERS\p3.sys [2008-04-13 42752]
    S1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\System32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
    S3 ac97intc;Intel(r) 82801 Audio Driver Install Service (WDM); C:\Windows\system32\drivers\ac97intc.sys [2001-08-17 96256]
    S3 ACGPRS;Sierra Wireless 3G Adapter; C:\Windows\system32\DRIVERS\acgprs.sys [2006-01-26 97280]
    S3 allegro;ESS Allegro Audio Driver (WDM); C:\Windows\system32\drivers\es198x.sys [2001-08-17 174464]
    S3 ATICDSDr;ATICDSDr; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ATICDSDr.sys []
    S3 atimpab;atimpab; C:\Windows\System32\DRIVERS\atimpab.sys [2001-08-17 289664]
    S3 basic2;basic2; C:\Windows\System32\DRIVERS\basic2.sys [2001-10-04 76610]
    S3 eabusb;EABUsb; \??\C:\Windows\System32\drivers\EABUsb.sys []
    S3 HidUsb;Microsoft HID Class Driver; C:\Windows\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
    S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\Windows\system32\DRIVERS\HPZid412.sys [2006-05-16 49664]
    S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\Windows\system32\DRIVERS\HPZipr12.sys [2006-05-16 16496]
    S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\Windows\system32\DRIVERS\HPZius12.sys [2006-05-16 21568]
    S3 mf;mf; C:\Windows\system32\DRIVERS\mf.sys [2008-04-13 63744]
    S3 mferkdk;McAfee Inc. mferkdk; C:\Windows\system32\drivers\mferkdk.sys [2007-11-22 33832]
    S3 mouhid;Mouse HID Driver; C:\Windows\System32\DRIVERS\mouhid.sys [2001-08-17 12160]
    S3 msloop;Microsoft Loopback Adapter Driver; C:\Windows\System32\DRIVERS\loop.sys [2001-08-17 4992]
    S3 NWRDR;NetWare Rdr; C:\Windows\System32\DRIVERS\nwrdr.sys [2008-04-13 163584]
    S3 PCTINDIS5;PCTINDIS5 NDIS Protocol Driver; \??\C:\Windows\system32\PCTINDIS5.SYS []
    S3 RimSerPort;RIM Virtual Serial Port; C:\Windows\system32\DRIVERS\RimSerial.sys [2006-07-12 18432]
    S3 Rksample;Rksample; C:\Windows\System32\DRIVERS\rksample.sys [2001-10-04 67222]
    S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2001-08-18 5888]
    S3 SMCIRDA;SMC IrCC Miniport Device Driver; C:\Windows\System32\DRIVERS\smcirda.sys [2001-08-17 35913]
    S3 usbccgp;Microsoft USB Generic Parent Driver; C:\Windows\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    S3 usbprint;Microsoft USB PRINTER Class; C:\Windows\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 usbscan;USB Scanner Driver; C:\Windows\System32\DRIVERS\usbscan.sys [2008-04-13 15104]
    S3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
    S3 winachsf;winachsf; C:\Windows\System32\DRIVERS\HSF_CNXT.sys [2001-10-04 585200]
    S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\Windows\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\Windows\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AOL ACS;AOL Connectivity Service; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [2006-10-23 46640]
    R2 AOL TopSpeedMonitor;AOL TopSpeed Monitor; C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe [2004-10-15 100016]
    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-10-01 116040]
    R2 Ati HotKey Poller;Ati HotKey Poller; C:\Windows\System32\Ati2evxx.exe [2002-01-16 110592]
    R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
    R2 Irmon;Infrared Monitor; C:\Windows\System32\svchost.exe [2008-04-13 14336]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-11-10 152984]
    R2 LicCtrlService;LicCtrl Service; C:\Windows\runservice.exe [2006-09-23 2560]
    R2 LxrSII1s;Lexar Secure II; C:\Windows\system32\LxrSII1s.exe [2005-05-19 53248]
    R2 mcmscsvc;McAfee Services; C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe [2008-01-09 767976]
    R2 McNASvc;McAfee Network Agent; c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe [2008-01-25 2458128]
    R2 McProxy;McAfee Proxy Service; c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe [2007-08-15 359248]
    R2 McShield;McAfee Real-time Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [2007-07-24 144704]
    R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
    R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2007-07-18 856864]
    R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\system32\HPZipm12.exe [2007-08-09 73728]
    R2 SNMP;SNMP Service; C:\Windows\System32\snmp.exe [2008-04-13 33280]
    R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-10-01 536872]
    R3 McSysmon;McAfee SystemGuards; C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [2007-12-05 695624]
    S2 0248711227139684mcinstcleanup;McAfee Application Installer Cleanup (0248711227139684); C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\024871~1.EXE C:\PROGRA~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service []
    S2 NWCWorkstation;Client Service for NetWare; C:\Windows\System32\svchost.exe [2008-04-13 14336]
    S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-02-11 138168]
    S3 McODS;McAfee Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe [2007-11-07 378184]
    S3 SNMPTRAP;SNMP Trap Service; C:\Windows\System32\snmptrap.exe [2008-04-13 8704]
    S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
    S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\Windows\system32\svchost.exe [2008-04-13 14336]

    -----------------EOF-----------------
     
    fleagore,
    #1
  2. 2008/12/13
    noahdfear

    noahdfear Inactive

    Joined:
    2003/04/06
    Messages:
    12,178
    Likes Received:
    15
    Posted to malware removal forum.
     
    noahdfear,
    #2


  3. to hide this advert.

Thread Status:
Not open for further replies.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...