Solved Malware Taking Over

1. Please open Notepad

• Click Start , then Run
• Type notepad.exe in the Run Box.

2. Now copy/paste the entire content of the codebox below into the Notepad window:

Code:

KillAll::

RENV::
c:\program files\Common Files\Microsoft Shared\DW\dwtrig20 .exe
c:\program files\Hitman Pro 3.5\HitmanPro35 .exe
c:\program files\Launch Manager\QtZgAcer .exe
c:\program files\Microsoft Security Essentials\msseces .exe
c:\program files\QuickTime\qttask  .exe
c:\program files\QuickTime\qttask .exe
c:\program files\Realtek\Audio\Drivers\AzMixerSel .exe

Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.

3. Save the above as CFScript.txt

4. Physically disconnect from the internet.

5. Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.

6. Then drag the CFScript.txt into ComboFix.exe as depicted in the animation below. This will start ComboFix again.




7. After reboot, (in case it asks to reboot), please post the following reports/logs into your next replyafter you re-enable all the programs that were disabled during the running of ComboFix:

• Combofix.txt
• A new DDS log.

Please take note:

CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.

 

ComboFix 10-04-15.05 - Sampson 04/16/2010 17:04:07.3.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1012.511 [GMT -4:00]
Running from: c:\documents and settings\Sampson\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Sampson\Desktop\CFScript.txt
AV: Microsoft Security Essentials *On-access scanning disabled* (Updated) {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
.

((((((((((((((((((((((((( Files Created from 2010-03-16 to 2010-04-16 )))))))))))))))))))))))))))))))
.

2010-04-16 21:16 . 2010-04-16 21:16 28880 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{9D61B74E-0CCF-47A1-8AD8-AA9AA58C6825}\MpKsl22917488.sys
2010-04-16 14:40 . 2010-04-16 14:40 3911239 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{43B820EB-C7E1-BA8A-A752-341526E9D0AE}-ComboFix.exe
2010-04-16 14:40 . 2010-04-16 14:40 3911239 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{683ED95A-ABBF-EE9D-10B5-281651854DD4}-ComboFix.exe
2010-04-14 07:04 . 2008-04-14 20:00 221184 ----a-w- c:\windows\system32\wmpns.dll
2010-04-13 03:44 . 2010-04-13 03:44 41476 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{FA92E1DB-5140-3ED3-BE0B-7E7EA9361750}-qttask .exe
2010-04-12 20:35 . 2010-04-12 20:35 41476 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{25AAC0DA-1079-78DA-00F3-F8B1FE2B74CD}-dwtrig20.exe
2010-04-12 20:30 . 2010-04-12 20:30 41476 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{7A6E8AB2-D246-4461-DC43-B8466BFD85FA}-dwtrig20.exe
2010-04-09 23:30 . 2010-04-12 07:24 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Adobe
2010-04-09 16:17 . 2010-04-09 16:17 53088 ----a-w- c:\windows\system32\drivers\pxrts.sys
2010-04-09 16:17 . 2010-04-09 16:17 30280 ----a-w- c:\windows\system32\drivers\pxscan.sys
2010-04-09 16:17 . 2010-04-09 16:17 24368 ----a-w- c:\windows\system32\drivers\pxkbf.sys
2010-04-08 17:36 . 2010-04-13 03:00 12872 ----a-w- c:\windows\system32\bootdelete.exe
2010-04-08 17:30 . 2010-04-13 03:00 15944 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2010-04-08 17:30 . 2010-04-08 17:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Hitman Pro
2010-04-08 17:30 . 2010-04-16 21:03 -------- d-----w- c:\program files\Hitman Pro 3.5
2010-04-08 15:47 . 2010-04-09 15:52 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-04-08 15:43 . 2010-04-08 15:56 -------- d-----w- c:\documents and settings\All Users\Application Data\Google Updater
2010-04-08 12:17 . 2010-03-30 04:46 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-08 12:16 . 2010-03-30 04:45 20824 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-07 21:01 . 2010-04-07 21:01 552 ----a-w- c:\windows\system32\d3d8caps.dat
2010-04-05 07:58 . 2010-04-05 07:58 -------- d-----w- c:\documents and settings\Sampson\Local Settings\Application Data\PCHealth
2010-03-27 18:17 . 2010-03-27 18:25 -------- d-----w- c:\documents and settings\Sampson\Local Settings\Application Data\ctrxmt
2010-03-27 01:45 . 2010-03-27 01:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Research In Motion
2010-03-22 20:04 . 2010-03-22 20:04 255472 ----a-w- c:\documents and settings\Sampson\Application Data\Mozilla\plugins\npgoogletalk.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-16 21:03 . 2009-12-26 02:42 -------- d-----w- c:\program files\QuickTime
2010-04-16 21:03 . 2010-01-09 20:41 -------- d-----w- c:\program files\Microsoft Security Essentials
2010-04-16 21:03 . 2009-01-20 18:43 -------- d-----w- c:\program files\Launch Manager
2010-04-16 04:05 . 2008-04-14 20:00 23040 ----a-w- c:\windows\system32\drivers\mouclass.sys
2010-04-16 04:03 . 2009-08-02 07:15 -------- d-----w- c:\documents and settings\Sampson\Application Data\uTorrent
2010-04-14 07:06 . 2009-01-20 19:19 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-04-09 15:44 . 2010-04-09 15:44 23040 ----a-w- c:\windows\system32\drivers\mouclass.sys4E5EA5B4
2010-04-08 15:43 . 2009-01-20 19:22 -------- d-----w- c:\program files\Google
2010-04-08 12:17 . 2010-01-09 19:52 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-07 21:01 . 2009-08-24 16:06 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-04-04 01:53 . 2009-09-06 12:29 -------- d-----w- c:\program files\AKProg
2010-03-11 12:38 . 2008-10-16 20:38 832512 ------w- c:\windows\system32\wininet.dll
2010-03-11 12:38 . 2008-04-14 20:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-03-11 12:38 . 2008-04-14 20:00 17408 ----a-w- c:\windows\system32\corpol.dll
2010-03-09 11:09 . 2008-05-09 10:53 430080 ----a-w- c:\windows\system32\vbscript.dll
2010-03-08 03:58 . 2010-03-08 03:58 -------- d-----w- c:\program files\Common Files\Roxio Shared
2010-03-06 05:18 . 2010-03-05 20:50 256 ----a-w- c:\windows\system32\pool.bin
2010-03-05 20:56 . 2010-03-05 20:56 -------- d-----w- c:\documents and settings\Sampson\Application Data\Blackberry Desktop
2010-03-05 20:49 . 2010-03-05 20:49 -------- d-----w- c:\documents and settings\Sampson\Application Data\Research In Motion
2010-03-05 20:47 . 2010-03-05 20:47 -------- d-----w- c:\program files\Common Files\Research In Motion
2010-03-05 20:47 . 2010-03-05 20:47 -------- d-----w- c:\program files\Research In Motion
2010-02-24 14:16 . 2010-01-09 20:43 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-24 13:11 . 2008-10-24 11:21 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-22 16:25 . 2010-02-22 16:25 -------- d-----w- c:\documents and settings\Sampson\Application Data\UltraVNC
2010-02-16 14:08 . 2008-08-14 10:09 2146304 ------w- c:\windows\system32\ntoskrnl.exe
2010-02-16 13:25 . 2008-08-14 09:33 2024448 ------w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 04:33 . 2008-04-14 20:00 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:02 . 2008-04-14 20:00 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
.

((((((((((((((((((((((((((((( SnapShot_2010-04-16_15.01.22 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-04-16 21:15 . 2010-04-16 21:15 16384 c:\windows\Temp\Perflib_Perfdata_76c.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg "= "c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-07-24 68856]
"Google Update "= "c:\documents and settings\Sampson\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-09-16 133104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray "= "c:\windows\system32\igfxtray.exe" [2008-02-28 141848]
"HotKeysCmds "= "c:\windows\system32\hkcmd.exe" [2008-02-28 166424]
"Persistence "= "c:\windows\system32\igfxpers.exe" [2008-02-28 137752]
"BlackBerryAutoUpdate "= "c:\program files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe" [2010-03-11 648536]
"HitmanPro35 "= "c:\program files\Hitman Pro 3.5\HitmanPro35.exe" [2010-04-08 5650240]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@= "Service "

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^InterVideo WinCinema Manager.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\InterVideo WinCinema Manager.lnk
backup=c:\windows\pss\InterVideo WinCinema Manager.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LaunchApp]
Alaunch [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-06-12 10:38 34672 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
2008-06-19 23:20 57344 ----a-w- c:\windows\ALCMTR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CarboniteSetupLite]
2008-10-03 19:18 294544 ----a-w- c:\program files\Carbonite\CarbonitePreinstaller.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eRecoveryService]
2008-09-04 05:46 425984 ----a-w- c:\acer\Empowering Technology\eRecovery\eRAgent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
2009-01-20 19:22 30192 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2009-09-16 16:05 133104 ----atw- c:\documents and settings\Sampson\Local Settings\Application Data\Google\Update\GoogleUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
2008-04-14 20:00 208952 ----a-w- c:\windows\ime\imjp8_1\imjpmig.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2009-11-12 21:33 141600 ----a-w- c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2008-12-03 06:41 3882312 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
2008-04-14 20:00 59392 ----a-w- c:\windows\system32\IME\PINTLGNT\IMSCINST.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
2008-04-14 20:00 455168 ----a-w- c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
2008-04-14 20:00 455168 ----a-w- c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-04-13 03:36 41476 ----a-w- c:\program files\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2008-12-30 21:58 18082304 ----a-w- c:\windows\RTHDCPL.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2009-12-09 20:50 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2009-07-24 08:14 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2008-04-25 16:32 1044480 ----a-w- c:\program files\Synaptics\SynTP\SynTPEnh.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride "=dword:00000001
"FirewallOverride "=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall "= 0 (0x0)
"DisableNotifications "= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe "=
"%windir%\\system32\\sessmgr.exe "=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE "=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe "=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe "=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe "=
"c:\\Program Files\\uTorrent\\uTorrent.exe "=
"c:\\Documents and Settings\\Sampson\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.dll "=
"c:\\Documents and Settings\\Sampson\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.exe "=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe "=
"c:\\Program Files\\iTunes\\iTunes.exe "=
"c:\\Documents and Settings\\Sampson\\Local Settings\\Application Data\\CrossLoop\\vncviewer.exe "=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5910:TCP "= 5910:TCP:vnc5910

R1 MpKsl22917488;MpKsl22917488;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{9D61B74E-0CCF-47A1-8AD8-AA9AA58C6825}\MpKsl22917488.sys [4/16/2010 5:16 PM 28880]
R2 CrossLoopService;CrossLoop Service;c:\documents and settings\Sampson\Local Settings\Application Data\CrossLoop\CrossLoopService.exe [2/22/2010 10:11 AM 560792]
R2 QDLService;Qualcomm Gobi Download Service;c:\qualcomm\QDLService\QDLService.exe [11/10/2008 2:43 AM 345336]
S1 adfyiqew;adfyiqew;\??\c:\windows\system32\drivers\adfyiqew.sys --> c:\windows\system32\drivers\adfyiqew.sys [?]
S1 afiwatfs;afiwatfs;\??\c:\windows\system32\drivers\afiwatfs.sys --> c:\windows\system32\drivers\afiwatfs.sys [?]
S1 ailgulld;ailgulld;\??\c:\windows\system32\drivers\ailgulld.sys --> c:\windows\system32\drivers\ailgulld.sys [?]
S1 aisggsig;aisggsig;\??\c:\windows\system32\drivers\aisggsig.sys --> c:\windows\system32\drivers\aisggsig.sys [?]
S1 alruyfvg;alruyfvg;\??\c:\windows\system32\drivers\alruyfvg.sys --> c:\windows\system32\drivers\alruyfvg.sys [?]
S1 apkxbpue;apkxbpue;\??\c:\windows\system32\drivers\apkxbpue.sys --> c:\windows\system32\drivers\apkxbpue.sys [?]
S1 atmmxame;atmmxame;\??\c:\windows\system32\drivers\atmmxame.sys --> c:\windows\system32\drivers\atmmxame.sys [?]
S1 bumfnder;bumfnder;\??\c:\windows\system32\drivers\bumfnder.sys --> c:\windows\system32\drivers\bumfnder.sys [?]
S1 busaarbc;busaarbc;\??\c:\windows\system32\drivers\busaarbc.sys --> c:\windows\system32\drivers\busaarbc.sys [?]
S1 bxydhbzh;bxydhbzh;\??\c:\windows\system32\drivers\bxydhbzh.sys --> c:\windows\system32\drivers\bxydhbzh.sys [?]
S1 cifivddr;cifivddr;\??\c:\windows\system32\drivers\cifivddr.sys --> c:\windows\system32\drivers\cifivddr.sys [?]
S1 cpoxzgoh;cpoxzgoh;\??\c:\windows\system32\drivers\cpoxzgoh.sys --> c:\windows\system32\drivers\cpoxzgoh.sys [?]
S1 cvermjmb;cvermjmb;\??\c:\windows\system32\drivers\cvermjmb.sys --> c:\windows\system32\drivers\cvermjmb.sys [?]
S1 cxiotagl;cxiotagl;\??\c:\windows\system32\drivers\cxiotagl.sys --> c:\windows\system32\drivers\cxiotagl.sys [?]
S1 cyyymcxa;cyyymcxa;\??\c:\windows\system32\drivers\cyyymcxa.sys --> c:\windows\system32\drivers\cyyymcxa.sys [?]
S1 daxohfla;daxohfla;\??\c:\windows\system32\drivers\daxohfla.sys --> c:\windows\system32\drivers\daxohfla.sys [?]
S1 dwttwlcm;dwttwlcm;\??\c:\windows\system32\drivers\dwttwlcm.sys --> c:\windows\system32\drivers\dwttwlcm.sys [?]
S1 eluhfmvh;eluhfmvh;\??\c:\windows\system32\drivers\eluhfmvh.sys --> c:\windows\system32\drivers\eluhfmvh.sys [?]
S1 enrwgrwn;enrwgrwn;\??\c:\windows\system32\drivers\enrwgrwn.sys --> c:\windows\system32\drivers\enrwgrwn.sys [?]
S1 envjojgn;envjojgn;\??\c:\windows\system32\drivers\envjojgn.sys --> c:\windows\system32\drivers\envjojgn.sys [?]
S1 eoypwiud;eoypwiud;\??\c:\windows\system32\drivers\eoypwiud.sys --> c:\windows\system32\drivers\eoypwiud.sys [?]
S1 excptvku;excptvku;\??\c:\windows\system32\drivers\excptvku.sys --> c:\windows\system32\drivers\excptvku.sys [?]
S1 fneemrct;fneemrct;\??\c:\windows\system32\drivers\fneemrct.sys --> c:\windows\system32\drivers\fneemrct.sys [?]
S1 fyzzajvd;fyzzajvd;\??\c:\windows\system32\drivers\fyzzajvd.sys --> c:\windows\system32\drivers\fyzzajvd.sys [?]
S1 gcgtyqnz;gcgtyqnz;\??\c:\windows\system32\drivers\gcgtyqnz.sys --> c:\windows\system32\drivers\gcgtyqnz.sys [?]
S1 glgrkqgo;glgrkqgo;\??\c:\windows\system32\drivers\glgrkqgo.sys --> c:\windows\system32\drivers\glgrkqgo.sys [?]
S1 gxkhluqx;gxkhluqx;\??\c:\windows\system32\drivers\gxkhluqx.sys --> c:\windows\system32\drivers\gxkhluqx.sys [?]
S1 hcmqfbkr;hcmqfbkr;\??\c:\windows\system32\drivers\hcmqfbkr.sys --> c:\windows\system32\drivers\hcmqfbkr.sys [?]
S1 hemwhtco;hemwhtco;\??\c:\windows\system32\drivers\hemwhtco.sys --> c:\windows\system32\drivers\hemwhtco.sys [?]
S1 hnflobwb;hnflobwb;\??\c:\windows\system32\drivers\hnflobwb.sys --> c:\windows\system32\drivers\hnflobwb.sys [?]
S1 hsdzegox;hsdzegox;\??\c:\windows\system32\drivers\hsdzegox.sys --> c:\windows\system32\drivers\hsdzegox.sys [?]
S1 htiattnr;htiattnr;\??\c:\windows\system32\drivers\htiattnr.sys --> c:\windows\system32\drivers\htiattnr.sys [?]
S1 htiffrkc;htiffrkc;\??\c:\windows\system32\drivers\htiffrkc.sys --> c:\windows\system32\drivers\htiffrkc.sys [?]
S1 iemmvdae;iemmvdae;\??\c:\windows\system32\drivers\iemmvdae.sys --> c:\windows\system32\drivers\iemmvdae.sys [?]
S1 iigpwxuz;iigpwxuz;\??\c:\windows\system32\drivers\iigpwxuz.sys --> c:\windows\system32\drivers\iigpwxuz.sys [?]
S1 ivmxxizo;ivmxxizo;\??\c:\windows\system32\drivers\ivmxxizo.sys --> c:\windows\system32\drivers\ivmxxizo.sys [?]
S1 jigqmujs;jigqmujs;\??\c:\windows\system32\drivers\jigqmujs.sys --> c:\windows\system32\drivers\jigqmujs.sys [?]
S1 jkxixymb;jkxixymb;\??\c:\windows\system32\drivers\jkxixymb.sys --> c:\windows\system32\drivers\jkxixymb.sys [?]
S1 jodvzvic;jodvzvic;\??\c:\windows\system32\drivers\jodvzvic.sys --> c:\windows\system32\drivers\jodvzvic.sys [?]
S1 jrsbflhy;jrsbflhy;\??\c:\windows\system32\drivers\jrsbflhy.sys --> c:\windows\system32\drivers\jrsbflhy.sys [?]
S1 jwjstrcn;jwjstrcn;\??\c:\windows\system32\drivers\jwjstrcn.sys --> c:\windows\system32\drivers\jwjstrcn.sys [?]
S1 jyaajtlb;jyaajtlb;\??\c:\windows\system32\drivers\jyaajtlb.sys --> c:\windows\system32\drivers\jyaajtlb.sys [?]
S1 kcknzwpd;kcknzwpd;\??\c:\windows\system32\drivers\kcknzwpd.sys --> c:\windows\system32\drivers\kcknzwpd.sys [?]
S1 kdhzzjrp;kdhzzjrp;\??\c:\windows\system32\drivers\kdhzzjrp.sys --> c:\windows\system32\drivers\kdhzzjrp.sys [?]
S1 keagzpqu;keagzpqu;\??\c:\windows\system32\drivers\keagzpqu.sys --> c:\windows\system32\drivers\keagzpqu.sys [?]
S1 kjzewzjg;kjzewzjg;\??\c:\windows\system32\drivers\kjzewzjg.sys --> c:\windows\system32\drivers\kjzewzjg.sys [?]
S1 klikbyhe;klikbyhe;\??\c:\windows\system32\drivers\klikbyhe.sys --> c:\windows\system32\drivers\klikbyhe.sys [?]
S1 kqqjhrxt;kqqjhrxt;\??\c:\windows\system32\drivers\kqqjhrxt.sys --> c:\windows\system32\drivers\kqqjhrxt.sys [?]
S1 ldmhzbfv;ldmhzbfv;\??\c:\windows\system32\drivers\ldmhzbfv.sys --> c:\windows\system32\drivers\ldmhzbfv.sys [?]
S1 leuaoesr;leuaoesr;\??\c:\windows\system32\drivers\leuaoesr.sys --> c:\windows\system32\drivers\leuaoesr.sys [?]
S1 lgpeogpg;lgpeogpg;\??\c:\windows\system32\drivers\lgpeogpg.sys --> c:\windows\system32\drivers\lgpeogpg.sys [?]
S1 lnbhhpva;lnbhhpva;\??\c:\windows\system32\drivers\lnbhhpva.sys --> c:\windows\system32\drivers\lnbhhpva.sys [?]
S1 lnemnyam;lnemnyam;\??\c:\windows\system32\drivers\lnemnyam.sys --> c:\windows\system32\drivers\lnemnyam.sys [?]
S1 lnlshdlv;lnlshdlv;\??\c:\windows\system32\drivers\lnlshdlv.sys --> c:\windows\system32\drivers\lnlshdlv.sys [?]
S1 lotqaikm;lotqaikm;\??\c:\windows\system32\drivers\lotqaikm.sys --> c:\windows\system32\drivers\lotqaikm.sys [?]
S1 lsadewkd;lsadewkd;\??\c:\windows\system32\drivers\lsadewkd.sys --> c:\windows\system32\drivers\lsadewkd.sys [?]
S1 mdosmnaq;mdosmnaq;\??\c:\windows\system32\drivers\mdosmnaq.sys --> c:\windows\system32\drivers\mdosmnaq.sys [?]
S1 mkbxtgce;mkbxtgce;\??\c:\windows\system32\drivers\mkbxtgce.sys --> c:\windows\system32\drivers\mkbxtgce.sys [?]
S1 mkjkywdx;mkjkywdx;\??\c:\windows\system32\drivers\mkjkywdx.sys --> c:\windows\system32\drivers\mkjkywdx.sys [?]
S1 mpbptoxg;mpbptoxg;\??\c:\windows\system32\drivers\mpbptoxg.sys --> c:\windows\system32\drivers\mpbptoxg.sys [?]
S1 MpKsl99f20418;MpKsl99f20418;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{41DFD1F1-65AD-45EC-8545-DC6EDCAB87F4}\MpKsl99f20418.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{41DFD1F1-65AD-45EC-8545-DC6EDCAB87F4}\MpKsl99f20418.sys [?]
S1 mxghughy;mxghughy;\??\c:\windows\system32\drivers\mxghughy.sys --> c:\windows\system32\drivers\mxghughy.sys [?]
S1 nlanccde;nlanccde;\??\c:\windows\system32\drivers\nlanccde.sys --> c:\windows\system32\drivers\nlanccde.sys [?]
S1 npmyxkah;npmyxkah;\??\c:\windows\system32\drivers\npmyxkah.sys --> c:\windows\system32\drivers\npmyxkah.sys [?]
S1 octroxqf;octroxqf;\??\c:\windows\system32\drivers\octroxqf.sys --> c:\windows\system32\drivers\octroxqf.sys [?]
S1 oewprgpm;oewprgpm;\??\c:\windows\system32\drivers\oewprgpm.sys --> c:\windows\system32\drivers\oewprgpm.sys [?]
S1 ofepepqd;ofepepqd;\??\c:\windows\system32\drivers\ofepepqd.sys --> c:\windows\system32\drivers\ofepepqd.sys [?]
S1 pioikkst;pioikkst;\??\c:\windows\system32\drivers\pioikkst.sys --> c:\windows\system32\drivers\pioikkst.sys [?]
S1 pjgooijz;pjgooijz;\??\c:\windows\system32\drivers\pjgooijz.sys --> c:\windows\system32\drivers\pjgooijz.sys [?]
S1 plucvslj;plucvslj;\??\c:\windows\system32\drivers\plucvslj.sys --> c:\windows\system32\drivers\plucvslj.sys [?]
S1 ppefzsvk;ppefzsvk;\??\c:\windows\system32\drivers\ppefzsvk.sys --> c:\windows\system32\drivers\ppefzsvk.sys [?]
S1 ppvopmjx;ppvopmjx;\??\c:\windows\system32\drivers\ppvopmjx.sys --> c:\windows\system32\drivers\ppvopmjx.sys [?]
S1 pseexmir;pseexmir;\??\c:\windows\system32\drivers\pseexmir.sys --> c:\windows\system32\drivers\pseexmir.sys [?]
S1 qfohcaif;qfohcaif;\??\c:\windows\system32\drivers\qfohcaif.sys --> c:\windows\system32\drivers\qfohcaif.sys [?]
S1 qgtuwpbk;qgtuwpbk;\??\c:\windows\system32\drivers\qgtuwpbk.sys --> c:\windows\system32\drivers\qgtuwpbk.sys [?]
S1 qtfqfaua;qtfqfaua;\??\c:\windows\system32\drivers\qtfqfaua.sys --> c:\windows\system32\drivers\qtfqfaua.sys [?]
S1 rkxiudjf;rkxiudjf;\??\c:\windows\system32\drivers\rkxiudjf.sys --> c:\windows\system32\drivers\rkxiudjf.sys [?]
S1 sgpszqvc;sgpszqvc;\??\c:\windows\system32\drivers\sgpszqvc.sys --> c:\windows\system32\drivers\sgpszqvc.sys [?]
S1 svfexkuk;svfexkuk;\??\c:\windows\system32\drivers\svfexkuk.sys --> c:\windows\system32\drivers\svfexkuk.sys [?]
S1 tbwvivmo;tbwvivmo;\??\c:\windows\system32\drivers\tbwvivmo.sys --> c:\windows\system32\drivers\tbwvivmo.sys [?]
S1 tcjsouln;tcjsouln;\??\c:\windows\system32\drivers\tcjsouln.sys --> c:\windows\system32\drivers\tcjsouln.sys [?]
S1 tcxftcir;tcxftcir;\??\c:\windows\system32\drivers\tcxftcir.sys --> c:\windows\system32\drivers\tcxftcir.sys [?]
S1 teoblrbl;teoblrbl;\??\c:\windows\system32\drivers\teoblrbl.sys --> c:\windows\system32\drivers\teoblrbl.sys [?]
S1 tfttfuvx;tfttfuvx;\??\c:\windows\system32\drivers\tfttfuvx.sys --> c:\windows\system32\drivers\tfttfuvx.sys [?]
S1 tidfpoko;tidfpoko;\??\c:\windows\system32\drivers\tidfpoko.sys --> c:\windows\system32\drivers\tidfpoko.sys [?]
S1 toqfbdod;toqfbdod;\??\c:\windows\system32\drivers\toqfbdod.sys --> c:\windows\system32\drivers\toqfbdod.sys [?]
S1 tutpypmd;tutpypmd;\??\c:\windows\system32\drivers\tutpypmd.sys --> c:\windows\system32\drivers\tutpypmd.sys [?]
S1 uajvtaov;uajvtaov;\??\c:\windows\system32\drivers\uajvtaov.sys --> c:\windows\system32\drivers\uajvtaov.sys [?]
S1 uqabyyyb;uqabyyyb;\??\c:\windows\system32\drivers\uqabyyyb.sys --> c:\windows\system32\drivers\uqabyyyb.sys [?]
S1 uxmsljlj;uxmsljlj;\??\c:\windows\system32\drivers\uxmsljlj.sys --> c:\windows\system32\drivers\uxmsljlj.sys [?]
S1 vbetfiky;vbetfiky;\??\c:\windows\system32\drivers\vbetfiky.sys --> c:\windows\system32\drivers\vbetfiky.sys [?]
S1 vczqsput;vczqsput;\??\c:\windows\system32\drivers\vczqsput.sys --> c:\windows\system32\drivers\vczqsput.sys [?]
S1 vdsyuxmu;vdsyuxmu;\??\c:\windows\system32\drivers\vdsyuxmu.sys --> c:\windows\system32\drivers\vdsyuxmu.sys [?]
S1 vfseajww;vfseajww;\??\c:\windows\system32\drivers\vfseajww.sys --> c:\windows\system32\drivers\vfseajww.sys [?]
S1 vrmxrfzv;vrmxrfzv;\??\c:\windows\system32\drivers\vrmxrfzv.sys --> c:\windows\system32\drivers\vrmxrfzv.sys [?]
S1 vrnrdnbt;vrnrdnbt;\??\c:\windows\system32\drivers\vrnrdnbt.sys --> c:\windows\system32\drivers\vrnrdnbt.sys [?]
S1 vspqeuet;vspqeuet;\??\c:\windows\system32\drivers\vspqeuet.sys --> c:\windows\system32\drivers\vspqeuet.sys [?]
S1 wbcksbzu;wbcksbzu;\??\c:\windows\system32\drivers\wbcksbzu.sys --> c:\windows\system32\drivers\wbcksbzu.sys [?]
S1 weeqjijd;weeqjijd;\??\c:\windows\system32\drivers\weeqjijd.sys --> c:\windows\system32\drivers\weeqjijd.sys [?]
S1 wgppprhv;wgppprhv;\??\c:\windows\system32\drivers\wgppprhv.sys --> c:\windows\system32\drivers\wgppprhv.sys [?]
S1 wjjinjiw;wjjinjiw;\??\c:\windows\system32\drivers\wjjinjiw.sys --> c:\windows\system32\drivers\wjjinjiw.sys [?]
S1 wkaoilby;wkaoilby;\??\c:\windows\system32\drivers\wkaoilby.sys --> c:\windows\system32\drivers\wkaoilby.sys [?]
S1 wvcrotwx;wvcrotwx;\??\c:\windows\system32\drivers\wvcrotwx.sys --> c:\windows\system32\drivers\wvcrotwx.sys [?]
S1 xdtmlija;xdtmlija;\??\c:\windows\system32\drivers\xdtmlija.sys --> c:\windows\system32\drivers\xdtmlija.sys [?]
S1 xhlsrnsk;xhlsrnsk;\??\c:\windows\system32\drivers\xhlsrnsk.sys --> c:\windows\system32\drivers\xhlsrnsk.sys [?]
S1 xkjwarsp;xkjwarsp;\??\c:\windows\system32\drivers\xkjwarsp.sys --> c:\windows\system32\drivers\xkjwarsp.sys [?]
S1 xmaiqrfy;xmaiqrfy;\??\c:\windows\system32\drivers\xmaiqrfy.sys --> c:\windows\system32\drivers\xmaiqrfy.sys [?]
S1 xqljlier;xqljlier;\??\c:\windows\system32\drivers\xqljlier.sys --> c:\windows\system32\drivers\xqljlier.sys [?]
S1 xumzmlmm;xumzmlmm;\??\c:\windows\system32\drivers\xumzmlmm.sys --> c:\windows\system32\drivers\xumzmlmm.sys [?]
S1 xvrqezgj;xvrqezgj;\??\c:\windows\system32\drivers\xvrqezgj.sys --> c:\windows\system32\drivers\xvrqezgj.sys [?]
S1 xvtsyrth;xvtsyrth;\??\c:\windows\system32\drivers\xvtsyrth.sys --> c:\windows\system32\drivers\xvtsyrth.sys [?]
S1 xwcdgmtg;xwcdgmtg;\??\c:\windows\system32\drivers\xwcdgmtg.sys --> c:\windows\system32\drivers\xwcdgmtg.sys [?]
S1 xxrjdfft;xxrjdfft;\??\c:\windows\system32\drivers\xxrjdfft.sys --> c:\windows\system32\drivers\xxrjdfft.sys [?]
S1 zazgskap;zazgskap;\??\c:\windows\system32\drivers\zazgskap.sys --> c:\windows\system32\drivers\zazgskap.sys [?]
S1 zdcxqdaw;zdcxqdaw;\??\c:\windows\system32\drivers\zdcxqdaw.sys --> c:\windows\system32\drivers\zdcxqdaw.sys [?]
S1 zgunwcaw;zgunwcaw;\??\c:\windows\system32\drivers\zgunwcaw.sys --> c:\windows\system32\drivers\zgunwcaw.sys [?]
S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [1/20/2009 3:22 PM 30192]
S3 hitmanpro35;Hitman Pro 3.5 Support Driver;c:\windows\system32\drivers\hitmanpro35.sys [4/8/2010 1:30 PM 15944]
S3 QCFilterGAD;Gobi AD USB Composite Device Filter Driver;c:\windows\system32\drivers\qcfilterGAD.sys [7/24/2009 4:08 AM 5248]
S3 qcusbnetGAD;Gobi AD USB-NDIS miniport;c:\windows\system32\drivers\qcusbnetGAD.sys [7/24/2009 4:08 AM 115200]
S3 qcusbserGAD;Gobi AD USB Device for Legacy Serial Communication;c:\windows\system32\drivers\qcusbserGAD.sys [2/17/2009 12:42 AM 103680]
S3 RkPavproc1;RkPavproc1;\??\c:\windows\system32\drivers\RkPavproc1.sys --> c:\windows\system32\drivers\RkPavproc1.sys [?]
S3 uvnc_service;uvnc_service;c:\documents and settings\Sampson\Local Settings\Application Data\CrossLoop\winvnc.exe [2/22/2010 10:11 AM 1590216]

--- Other Services/Drivers In Memory ---

*NewlyCreated* - MPKSL22917488
.
Contents of the 'Scheduled Tasks' folder

2010-04-16 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-24 15:43]

2010-04-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-776817393-1407352519-815249355-1006Core.job
- c:\documents and settings\Sampson\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-16 16:05]

2010-04-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-776817393-1407352519-815249355-1006UA.job
- c:\documents and settings\Sampson\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-16 16:05]

2010-04-16 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Essentials\MpCmdRun.exe [2009-12-09 23:02]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aoa150
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aoa150
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = <local>
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
FF - ProfilePath - c:\documents and settings\Sampson\Application Data\Mozilla\Firefox\Profiles\l85e7cm8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.gmail.com
FF - plugin: c:\documents and settings\Sampson\Application Data\Move Networks\plugins\npqmp071505000010.dll
FF - plugin: c:\documents and settings\Sampson\Application Data\Move Networks\plugins\npqmp071505000011.dll
FF - plugin: c:\documents and settings\Sampson\Application Data\Mozilla\Firefox\Profiles\l85e7cm8.default\extensions\justintvpublisher@justin.tv\platform\WINNT_x86-msvc\plugins\npjustintvpublish.dll
FF - plugin: c:\documents and settings\Sampson\Application Data\Mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\Sampson\Application Data\Mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\Sampson\Local Settings\Application Data\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1908.5032\npCIDetect14.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "ui.use_native_colors ", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "ui.use_native_popup_windows ", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.enable_click_image_resizing ", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "accessibility.browsewithcaret_shortcut.enabled ", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "javascript.options.mem.high_water_mark ", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "javascript.options.mem.gc_frequency ", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "network.auth.force-generic-ntlm ", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "svg.smil.enabled ", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "ui.trackpoint_hack.enabled ", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.debug ", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.agedWeight ", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.bucketSize ", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.maxTimeGroupings ", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.timeGroupingSize ", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.boundaryWeight ", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.prefixWeight ", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "html5.enable ", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref( "security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref ", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref( "security.ssl.renego_unrestricted_hosts ", " ");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref( "security.ssl.treat_unsafe_negotiation_as_broken ", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref( "security.ssl.require_safe_negotiation ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref( "app.update.download.backgroundInterval ", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref( "app.update.url.manual ", "http://www.firefox.com ");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref( "browser.search.param.yahoo-fr-ja ", "mozff ");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name ", "chrome://browser/locale/browser.properties ");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description ", "chrome://browser/locale/browser.properties ");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "xpinstall.whitelist.add ", "addons.mozilla.org ");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "xpinstall.whitelist.add.36 ", "getpersonas.com ");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "lightweightThemes.update.enabled ", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "browser.allTabs.previews ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "plugins.hide_infobar_for_outdated_plugin ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "plugins.update.notifyUser ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "toolbar.customization.usesheet ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.enable ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.max ", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.cachetime ", 20);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-16 17:16
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x8698CAC8]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xf752bf28
\Driver\ACPI -> ACPI.sys @ 0xf749ecb8
\Driver\atapi -> atapi.sys @ 0xf7456852
IoDeviceObjectType -> DeleteProcedure -> ntoskrnl.exe @ 0x805e710a
SecurityProcedure -> ntoskrnl.exe @ 0x805df529
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntoskrnl.exe @ 0x805e710a
SecurityProcedure -> ntoskrnl.exe @ 0x805df529
NDIS: Realtek RTL8102E/RTL8103E Family PCI-E Fast Ethernet NIC -> SendCompleteHandler -> NDIS.sys @ 0xf7362bb0
PacketIndicateHandler -> NDIS.sys @ 0xf7351a0d
SendHandler -> NDIS.sys @ 0xf7365b40
user & kernel MBR OK

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(660)
c:\windows\system32\WININET.dll

- - - - - - - > 'lsass.exe'(720)
c:\windows\system32\WININET.dll

- - - - - - - > 'explorer.exe'(3932)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Microsoft Security Essentials\MsMpEng.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\igfxsrvc.exe
.
**************************************************************************
.
Completion time: 2010-04-16 17:23:08 - machine was rebooted
ComboFix-quarantined-files.txt 2010-04-16 21:22
ComboFix2.txt 2010-04-16 15:07
ComboFix3.txt 2010-04-09 22:03

Pre-Run: 135,007,657,984 bytes free
Post-Run: 134,992,515,072 bytes free

- - End Of File - - 2D81FBFACEDF27C65DFEACE40A3D936A

 

DDS (Ver_10-03-17.01) - NTFSx86
Run by Sampson at 17:27:37.46 on Fri 04/16/2010
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_16
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1012.544 [GMT -4:00]

AV: Microsoft Security Essentials *On-access scanning disabled* (Updated) {BCF43643-A118-4432-AEDE-D861FCBCFCDF}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Documents and Settings\Sampson\Local Settings\Application Data\CrossLoop\CrossLoopService.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\QUALCOMM\QDLService\QDLService.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Documents and Settings\Sampson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sampson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sampson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sampson\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aoa150
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aoa150
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = <local>
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.4.4525.1752\swg.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe "
uRun: [Google Update] "c:\documents and settings\sampson\local settings\application data\google\update\GoogleUpdate.exe" /c
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [BlackBerryAutoUpdate] c:\program files\common files\research in motion\auto update\RIMAutoUpdate.exe /background
mRun: [HitmanPro35] "c:\program files\hitman pro 3.5\HitmanPro35.exe" /scan:boot
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Notify: igfxcui - igfxdev.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\sampson\applic~1\mozilla\firefox\profiles\l85e7cm8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.gmail.com
FF - plugin: c:\documents and settings\sampson\application data\move networks\plugins\npqmp071505000010.dll
FF - plugin: c:\documents and settings\sampson\application data\move networks\plugins\npqmp071505000011.dll
FF - plugin: c:\documents and settings\sampson\application data\mozilla\firefox\profiles\l85e7cm8.default\extensions\justintvpublisher@justin.tv\platform\winnt_x86-msvc\plugins\npjustintvpublish.dll
FF - plugin: c:\documents and settings\sampson\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\sampson\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\sampson\local settings\application data\google\update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\google\google updater\2.4.1908.5032\npCIDetect14.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref( "ui.use_native_colors ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "ui.use_native_popup_windows ", false);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.enable_click_image_resizing ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "accessibility.browsewithcaret_shortcut.enabled ", true);
c:\program files\mozilla firefox\greprefs\all.js - pref( "javascript.options.mem.high_water_mark ", 32);
c:\program files\mozilla firefox\greprefs\all.js - pref( "javascript.options.mem.gc_frequency ", 1600);
c:\program files\mozilla firefox\greprefs\all.js - pref( "network.auth.force-generic-ntlm ", false);
c:\program files\mozilla firefox\greprefs\all.js - pref( "svg.smil.enabled ", false);
c:\program files\mozilla firefox\greprefs\all.js - pref( "ui.trackpoint_hack.enabled ", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.debug ", false);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.agedWeight ", 2);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.bucketSize ", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.maxTimeGroupings ", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.timeGroupingSize ", 604800);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.boundaryWeight ", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref( "browser.formfill.prefixWeight ", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref( "html5.enable ", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref ", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl.renego_unrestricted_hosts ", " ");
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl.treat_unsafe_negotiation_as_broken ", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl.require_safe_negotiation ", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref( "security.ssl3.rsa_seed_sha ", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref( "app.update.download.backgroundInterval ", 600);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref( "app.update.url.manual ", "http://www.firefox.com ");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref( "browser.search.param.yahoo-fr-ja ", "mozff ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name ", "chrome://browser/locale/browser.properties ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description ", "chrome://browser/locale/browser.properties ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "xpinstall.whitelist.add ", "addons.mozilla.org ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "xpinstall.whitelist.add.36 ", "getpersonas.com ");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "lightweightThemes.update.enabled ", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.allTabs.previews ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "plugins.hide_infobar_for_outdated_plugin ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "plugins.update.notifyUser ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "toolbar.customization.usesheet ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.enable ", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.max ", 20);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.cachetime ", 20);

============= SERVICES / DRIVERS ===============

R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2009-6-18 149040]
R1 MpKsl22917488;MpKsl22917488;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{9d61b74e-0ccf-47a1-8ad8-aa9aa58c6825}\MpKsl22917488.sys [2010-4-16 28880]
R2 CrossLoopService;CrossLoop Service;c:\documents and settings\sampson\local settings\application data\crossloop\CrossLoopService.exe [2010-2-22 560792]
R2 QDLService;Qualcomm Gobi Download Service;c:\qualcomm\qdlservice\QDLService.exe [2008-11-10 345336]
S1 adfyiqew;adfyiqew;\??\c:\windows\system32\drivers\adfyiqew.sys --> c:\windows\system32\drivers\adfyiqew.sys [?]
S1 afiwatfs;afiwatfs;\??\c:\windows\system32\drivers\afiwatfs.sys --> c:\windows\system32\drivers\afiwatfs.sys [?]
S1 ailgulld;ailgulld;\??\c:\windows\system32\drivers\ailgulld.sys --> c:\windows\system32\drivers\ailgulld.sys [?]
S1 aisggsig;aisggsig;\??\c:\windows\system32\drivers\aisggsig.sys --> c:\windows\system32\drivers\aisggsig.sys [?]
S1 alruyfvg;alruyfvg;\??\c:\windows\system32\drivers\alruyfvg.sys --> c:\windows\system32\drivers\alruyfvg.sys [?]
S1 apkxbpue;apkxbpue;\??\c:\windows\system32\drivers\apkxbpue.sys --> c:\windows\system32\drivers\apkxbpue.sys [?]
S1 atmmxame;atmmxame;\??\c:\windows\system32\drivers\atmmxame.sys --> c:\windows\system32\drivers\atmmxame.sys [?]
S1 bumfnder;bumfnder;\??\c:\windows\system32\drivers\bumfnder.sys --> c:\windows\system32\drivers\bumfnder.sys [?]
S1 busaarbc;busaarbc;\??\c:\windows\system32\drivers\busaarbc.sys --> c:\windows\system32\drivers\busaarbc.sys [?]
S1 bxydhbzh;bxydhbzh;\??\c:\windows\system32\drivers\bxydhbzh.sys --> c:\windows\system32\drivers\bxydhbzh.sys [?]
S1 cifivddr;cifivddr;\??\c:\windows\system32\drivers\cifivddr.sys --> c:\windows\system32\drivers\cifivddr.sys [?]
S1 cpoxzgoh;cpoxzgoh;\??\c:\windows\system32\drivers\cpoxzgoh.sys --> c:\windows\system32\drivers\cpoxzgoh.sys [?]
S1 cvermjmb;cvermjmb;\??\c:\windows\system32\drivers\cvermjmb.sys --> c:\windows\system32\drivers\cvermjmb.sys [?]
S1 cxiotagl;cxiotagl;\??\c:\windows\system32\drivers\cxiotagl.sys --> c:\windows\system32\drivers\cxiotagl.sys [?]
S1 cyyymcxa;cyyymcxa;\??\c:\windows\system32\drivers\cyyymcxa.sys --> c:\windows\system32\drivers\cyyymcxa.sys [?]
S1 daxohfla;daxohfla;\??\c:\windows\system32\drivers\daxohfla.sys --> c:\windows\system32\drivers\daxohfla.sys [?]
S1 dwttwlcm;dwttwlcm;\??\c:\windows\system32\drivers\dwttwlcm.sys --> c:\windows\system32\drivers\dwttwlcm.sys [?]
S1 eluhfmvh;eluhfmvh;\??\c:\windows\system32\drivers\eluhfmvh.sys --> c:\windows\system32\drivers\eluhfmvh.sys [?]
S1 enrwgrwn;enrwgrwn;\??\c:\windows\system32\drivers\enrwgrwn.sys --> c:\windows\system32\drivers\enrwgrwn.sys [?]
S1 envjojgn;envjojgn;\??\c:\windows\system32\drivers\envjojgn.sys --> c:\windows\system32\drivers\envjojgn.sys [?]
S1 eoypwiud;eoypwiud;\??\c:\windows\system32\drivers\eoypwiud.sys --> c:\windows\system32\drivers\eoypwiud.sys [?]
S1 excptvku;excptvku;\??\c:\windows\system32\drivers\excptvku.sys --> c:\windows\system32\drivers\excptvku.sys [?]
S1 fneemrct;fneemrct;\??\c:\windows\system32\drivers\fneemrct.sys --> c:\windows\system32\drivers\fneemrct.sys [?]
S1 fyzzajvd;fyzzajvd;\??\c:\windows\system32\drivers\fyzzajvd.sys --> c:\windows\system32\drivers\fyzzajvd.sys [?]
S1 gcgtyqnz;gcgtyqnz;\??\c:\windows\system32\drivers\gcgtyqnz.sys --> c:\windows\system32\drivers\gcgtyqnz.sys [?]
S1 glgrkqgo;glgrkqgo;\??\c:\windows\system32\drivers\glgrkqgo.sys --> c:\windows\system32\drivers\glgrkqgo.sys [?]
S1 gxkhluqx;gxkhluqx;\??\c:\windows\system32\drivers\gxkhluqx.sys --> c:\windows\system32\drivers\gxkhluqx.sys [?]
S1 hcmqfbkr;hcmqfbkr;\??\c:\windows\system32\drivers\hcmqfbkr.sys --> c:\windows\system32\drivers\hcmqfbkr.sys [?]
S1 hemwhtco;hemwhtco;\??\c:\windows\system32\drivers\hemwhtco.sys --> c:\windows\system32\drivers\hemwhtco.sys [?]
S1 hnflobwb;hnflobwb;\??\c:\windows\system32\drivers\hnflobwb.sys --> c:\windows\system32\drivers\hnflobwb.sys [?]
S1 hsdzegox;hsdzegox;\??\c:\windows\system32\drivers\hsdzegox.sys --> c:\windows\system32\drivers\hsdzegox.sys [?]
S1 htiattnr;htiattnr;\??\c:\windows\system32\drivers\htiattnr.sys --> c:\windows\system32\drivers\htiattnr.sys [?]
S1 htiffrkc;htiffrkc;\??\c:\windows\system32\drivers\htiffrkc.sys --> c:\windows\system32\drivers\htiffrkc.sys [?]
S1 iemmvdae;iemmvdae;\??\c:\windows\system32\drivers\iemmvdae.sys --> c:\windows\system32\drivers\iemmvdae.sys [?]
S1 iigpwxuz;iigpwxuz;\??\c:\windows\system32\drivers\iigpwxuz.sys --> c:\windows\system32\drivers\iigpwxuz.sys [?]
S1 ivmxxizo;ivmxxizo;\??\c:\windows\system32\drivers\ivmxxizo.sys --> c:\windows\system32\drivers\ivmxxizo.sys [?]
S1 jigqmujs;jigqmujs;\??\c:\windows\system32\drivers\jigqmujs.sys --> c:\windows\system32\drivers\jigqmujs.sys [?]
S1 jkxixymb;jkxixymb;\??\c:\windows\system32\drivers\jkxixymb.sys --> c:\windows\system32\drivers\jkxixymb.sys [?]
S1 jodvzvic;jodvzvic;\??\c:\windows\system32\drivers\jodvzvic.sys --> c:\windows\system32\drivers\jodvzvic.sys [?]
S1 jrsbflhy;jrsbflhy;\??\c:\windows\system32\drivers\jrsbflhy.sys --> c:\windows\system32\drivers\jrsbflhy.sys [?]
S1 jwjstrcn;jwjstrcn;\??\c:\windows\system32\drivers\jwjstrcn.sys --> c:\windows\system32\drivers\jwjstrcn.sys [?]
S1 jyaajtlb;jyaajtlb;\??\c:\windows\system32\drivers\jyaajtlb.sys --> c:\windows\system32\drivers\jyaajtlb.sys [?]
S1 kcknzwpd;kcknzwpd;\??\c:\windows\system32\drivers\kcknzwpd.sys --> c:\windows\system32\drivers\kcknzwpd.sys [?]
S1 kdhzzjrp;kdhzzjrp;\??\c:\windows\system32\drivers\kdhzzjrp.sys --> c:\windows\system32\drivers\kdhzzjrp.sys [?]
S1 keagzpqu;keagzpqu;\??\c:\windows\system32\drivers\keagzpqu.sys --> c:\windows\system32\drivers\keagzpqu.sys [?]
S1 kjzewzjg;kjzewzjg;\??\c:\windows\system32\drivers\kjzewzjg.sys --> c:\windows\system32\drivers\kjzewzjg.sys [?]
S1 klikbyhe;klikbyhe;\??\c:\windows\system32\drivers\klikbyhe.sys --> c:\windows\system32\drivers\klikbyhe.sys [?]
S1 kqqjhrxt;kqqjhrxt;\??\c:\windows\system32\drivers\kqqjhrxt.sys --> c:\windows\system32\drivers\kqqjhrxt.sys [?]
S1 ldmhzbfv;ldmhzbfv;\??\c:\windows\system32\drivers\ldmhzbfv.sys --> c:\windows\system32\drivers\ldmhzbfv.sys [?]
S1 leuaoesr;leuaoesr;\??\c:\windows\system32\drivers\leuaoesr.sys --> c:\windows\system32\drivers\leuaoesr.sys [?]
S1 lgpeogpg;lgpeogpg;\??\c:\windows\system32\drivers\lgpeogpg.sys --> c:\windows\system32\drivers\lgpeogpg.sys [?]
S1 lnbhhpva;lnbhhpva;\??\c:\windows\system32\drivers\lnbhhpva.sys --> c:\windows\system32\drivers\lnbhhpva.sys [?]
S1 lnemnyam;lnemnyam;\??\c:\windows\system32\drivers\lnemnyam.sys --> c:\windows\system32\drivers\lnemnyam.sys [?]
S1 lnlshdlv;lnlshdlv;\??\c:\windows\system32\drivers\lnlshdlv.sys --> c:\windows\system32\drivers\lnlshdlv.sys [?]
S1 lotqaikm;lotqaikm;\??\c:\windows\system32\drivers\lotqaikm.sys --> c:\windows\system32\drivers\lotqaikm.sys [?]
S1 lsadewkd;lsadewkd;\??\c:\windows\system32\drivers\lsadewkd.sys --> c:\windows\system32\drivers\lsadewkd.sys [?]
S1 mdosmnaq;mdosmnaq;\??\c:\windows\system32\drivers\mdosmnaq.sys --> c:\windows\system32\drivers\mdosmnaq.sys [?]
S1 mkbxtgce;mkbxtgce;\??\c:\windows\system32\drivers\mkbxtgce.sys --> c:\windows\system32\drivers\mkbxtgce.sys [?]
S1 mkjkywdx;mkjkywdx;\??\c:\windows\system32\drivers\mkjkywdx.sys --> c:\windows\system32\drivers\mkjkywdx.sys [?]
S1 mpbptoxg;mpbptoxg;\??\c:\windows\system32\drivers\mpbptoxg.sys --> c:\windows\system32\drivers\mpbptoxg.sys [?]
S1 MpKsl99f20418;MpKsl99f20418;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{41dfd1f1-65ad-45ec-8545-dc6edcab87f4}\mpksl99f20418.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{41dfd1f1-65ad-45ec-8545-dc6edcab87f4}\MpKsl99f20418.sys [?]
S1 mxghughy;mxghughy;\??\c:\windows\system32\drivers\mxghughy.sys --> c:\windows\system32\drivers\mxghughy.sys [?]
S1 nlanccde;nlanccde;\??\c:\windows\system32\drivers\nlanccde.sys --> c:\windows\system32\drivers\nlanccde.sys [?]
S1 npmyxkah;npmyxkah;\??\c:\windows\system32\drivers\npmyxkah.sys --> c:\windows\system32\drivers\npmyxkah.sys [?]
S1 octroxqf;octroxqf;\??\c:\windows\system32\drivers\octroxqf.sys --> c:\windows\system32\drivers\octroxqf.sys [?]
S1 oewprgpm;oewprgpm;\??\c:\windows\system32\drivers\oewprgpm.sys --> c:\windows\system32\drivers\oewprgpm.sys [?]
S1 ofepepqd;ofepepqd;\??\c:\windows\system32\drivers\ofepepqd.sys --> c:\windows\system32\drivers\ofepepqd.sys [?]
S1 pioikkst;pioikkst;\??\c:\windows\system32\drivers\pioikkst.sys --> c:\windows\system32\drivers\pioikkst.sys [?]
S1 pjgooijz;pjgooijz;\??\c:\windows\system32\drivers\pjgooijz.sys --> c:\windows\system32\drivers\pjgooijz.sys [?]
S1 plucvslj;plucvslj;\??\c:\windows\system32\drivers\plucvslj.sys --> c:\windows\system32\drivers\plucvslj.sys [?]
S1 ppefzsvk;ppefzsvk;\??\c:\windows\system32\drivers\ppefzsvk.sys --> c:\windows\system32\drivers\ppefzsvk.sys [?]
S1 ppvopmjx;ppvopmjx;\??\c:\windows\system32\drivers\ppvopmjx.sys --> c:\windows\system32\drivers\ppvopmjx.sys [?]
S1 pseexmir;pseexmir;\??\c:\windows\system32\drivers\pseexmir.sys --> c:\windows\system32\drivers\pseexmir.sys [?]
S1 qfohcaif;qfohcaif;\??\c:\windows\system32\drivers\qfohcaif.sys --> c:\windows\system32\drivers\qfohcaif.sys [?]
S1 qgtuwpbk;qgtuwpbk;\??\c:\windows\system32\drivers\qgtuwpbk.sys --> c:\windows\system32\drivers\qgtuwpbk.sys [?]
S1 qtfqfaua;qtfqfaua;\??\c:\windows\system32\drivers\qtfqfaua.sys --> c:\windows\system32\drivers\qtfqfaua.sys [?]
S1 rkxiudjf;rkxiudjf;\??\c:\windows\system32\drivers\rkxiudjf.sys --> c:\windows\system32\drivers\rkxiudjf.sys [?]
S1 sgpszqvc;sgpszqvc;\??\c:\windows\system32\drivers\sgpszqvc.sys --> c:\windows\system32\drivers\sgpszqvc.sys [?]
S1 svfexkuk;svfexkuk;\??\c:\windows\system32\drivers\svfexkuk.sys --> c:\windows\system32\drivers\svfexkuk.sys [?]
S1 tbwvivmo;tbwvivmo;\??\c:\windows\system32\drivers\tbwvivmo.sys --> c:\windows\system32\drivers\tbwvivmo.sys [?]
S1 tcjsouln;tcjsouln;\??\c:\windows\system32\drivers\tcjsouln.sys --> c:\windows\system32\drivers\tcjsouln.sys [?]
S1 tcxftcir;tcxftcir;\??\c:\windows\system32\drivers\tcxftcir.sys --> c:\windows\system32\drivers\tcxftcir.sys [?]
S1 teoblrbl;teoblrbl;\??\c:\windows\system32\drivers\teoblrbl.sys --> c:\windows\system32\drivers\teoblrbl.sys [?]
S1 tfttfuvx;tfttfuvx;\??\c:\windows\system32\drivers\tfttfuvx.sys --> c:\windows\system32\drivers\tfttfuvx.sys [?]
S1 tidfpoko;tidfpoko;\??\c:\windows\system32\drivers\tidfpoko.sys --> c:\windows\system32\drivers\tidfpoko.sys [?]
S1 toqfbdod;toqfbdod;\??\c:\windows\system32\drivers\toqfbdod.sys --> c:\windows\system32\drivers\toqfbdod.sys [?]
S1 tutpypmd;tutpypmd;\??\c:\windows\system32\drivers\tutpypmd.sys --> c:\windows\system32\drivers\tutpypmd.sys [?]
S1 uajvtaov;uajvtaov;\??\c:\windows\system32\drivers\uajvtaov.sys --> c:\windows\system32\drivers\uajvtaov.sys [?]
S1 uqabyyyb;uqabyyyb;\??\c:\windows\system32\drivers\uqabyyyb.sys --> c:\windows\system32\drivers\uqabyyyb.sys [?]
S1 uxmsljlj;uxmsljlj;\??\c:\windows\system32\drivers\uxmsljlj.sys --> c:\windows\system32\drivers\uxmsljlj.sys [?]
S1 vbetfiky;vbetfiky;\??\c:\windows\system32\drivers\vbetfiky.sys --> c:\windows\system32\drivers\vbetfiky.sys [?]
S1 vczqsput;vczqsput;\??\c:\windows\system32\drivers\vczqsput.sys --> c:\windows\system32\drivers\vczqsput.sys [?]
S1 vdsyuxmu;vdsyuxmu;\??\c:\windows\system32\drivers\vdsyuxmu.sys --> c:\windows\system32\drivers\vdsyuxmu.sys [?]
S1 vfseajww;vfseajww;\??\c:\windows\system32\drivers\vfseajww.sys --> c:\windows\system32\drivers\vfseajww.sys [?]
S1 vrmxrfzv;vrmxrfzv;\??\c:\windows\system32\drivers\vrmxrfzv.sys --> c:\windows\system32\drivers\vrmxrfzv.sys [?]
S1 vrnrdnbt;vrnrdnbt;\??\c:\windows\system32\drivers\vrnrdnbt.sys --> c:\windows\system32\drivers\vrnrdnbt.sys [?]
S1 vspqeuet;vspqeuet;\??\c:\windows\system32\drivers\vspqeuet.sys --> c:\windows\system32\drivers\vspqeuet.sys [?]
S1 wbcksbzu;wbcksbzu;\??\c:\windows\system32\drivers\wbcksbzu.sys --> c:\windows\system32\drivers\wbcksbzu.sys [?]
S1 weeqjijd;weeqjijd;\??\c:\windows\system32\drivers\weeqjijd.sys --> c:\windows\system32\drivers\weeqjijd.sys [?]
S1 wgppprhv;wgppprhv;\??\c:\windows\system32\drivers\wgppprhv.sys --> c:\windows\system32\drivers\wgppprhv.sys [?]
S1 wjjinjiw;wjjinjiw;\??\c:\windows\system32\drivers\wjjinjiw.sys --> c:\windows\system32\drivers\wjjinjiw.sys [?]
S1 wkaoilby;wkaoilby;\??\c:\windows\system32\drivers\wkaoilby.sys --> c:\windows\system32\drivers\wkaoilby.sys [?]
S1 wvcrotwx;wvcrotwx;\??\c:\windows\system32\drivers\wvcrotwx.sys --> c:\windows\system32\drivers\wvcrotwx.sys [?]
S1 xdtmlija;xdtmlija;\??\c:\windows\system32\drivers\xdtmlija.sys --> c:\windows\system32\drivers\xdtmlija.sys [?]
S1 xhlsrnsk;xhlsrnsk;\??\c:\windows\system32\drivers\xhlsrnsk.sys --> c:\windows\system32\drivers\xhlsrnsk.sys [?]
S1 xkjwarsp;xkjwarsp;\??\c:\windows\system32\drivers\xkjwarsp.sys --> c:\windows\system32\drivers\xkjwarsp.sys [?]
S1 xmaiqrfy;xmaiqrfy;\??\c:\windows\system32\drivers\xmaiqrfy.sys --> c:\windows\system32\drivers\xmaiqrfy.sys [?]
S1 xqljlier;xqljlier;\??\c:\windows\system32\drivers\xqljlier.sys --> c:\windows\system32\drivers\xqljlier.sys [?]
S1 xumzmlmm;xumzmlmm;\??\c:\windows\system32\drivers\xumzmlmm.sys --> c:\windows\system32\drivers\xumzmlmm.sys [?]
S1 xvrqezgj;xvrqezgj;\??\c:\windows\system32\drivers\xvrqezgj.sys --> c:\windows\system32\drivers\xvrqezgj.sys [?]
S1 xvtsyrth;xvtsyrth;\??\c:\windows\system32\drivers\xvtsyrth.sys --> c:\windows\system32\drivers\xvtsyrth.sys [?]
S1 xwcdgmtg;xwcdgmtg;\??\c:\windows\system32\drivers\xwcdgmtg.sys --> c:\windows\system32\drivers\xwcdgmtg.sys [?]
S1 xxrjdfft;xxrjdfft;\??\c:\windows\system32\drivers\xxrjdfft.sys --> c:\windows\system32\drivers\xxrjdfft.sys [?]
S1 zazgskap;zazgskap;\??\c:\windows\system32\drivers\zazgskap.sys --> c:\windows\system32\drivers\zazgskap.sys [?]
S1 zdcxqdaw;zdcxqdaw;\??\c:\windows\system32\drivers\zdcxqdaw.sys --> c:\windows\system32\drivers\zdcxqdaw.sys [?]
S1 zgunwcaw;zgunwcaw;\??\c:\windows\system32\drivers\zgunwcaw.sys --> c:\windows\system32\drivers\zgunwcaw.sys [?]
S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506;c:\program files\google\google desktop search\GoogleDesktop.exe [2009-1-20 30192]
S3 hitmanpro35;Hitman Pro 3.5 Support Driver;c:\windows\system32\drivers\hitmanpro35.sys [2010-4-8 15944]
S3 QCFilterGAD;Gobi AD USB Composite Device Filter Driver;c:\windows\system32\drivers\qcfilterGAD.sys [2009-7-24 5248]
S3 qcusbnetGAD;Gobi AD USB-NDIS miniport;c:\windows\system32\drivers\qcusbnetGAD.sys [2009-7-24 115200]
S3 qcusbserGAD;Gobi AD USB Device for Legacy Serial Communication;c:\windows\system32\drivers\qcusbserGAD.sys [2009-2-17 103680]
S3 RkPavproc1;RkPavproc1;\??\c:\windows\system32\drivers\rkpavproc1.sys --> c:\windows\system32\drivers\RkPavproc1.sys [?]
S3 uvnc_service;uvnc_service;c:\documents and settings\sampson\local settings\application data\crossloop\winvnc.exe [2010-2-22 1590216]

=============== Created Last 30 ================

2010-04-16 14:45:59 261632 ----a-w- c:\windows\PEV.exe
2010-04-14 07:04:59 221184 ----a-w- c:\windows\system32\wmpns.dll
2010-04-12 21:08:19 23040 ----a-w- c:\windows\system32\drivers\SET25BB.tmp
2010-04-09 21:44:15 0 d-sha-r- C:\cmdcons
2010-04-09 21:42:38 98816 ----a-w- c:\windows\sed.exe
2010-04-09 21:42:38 77312 ----a-w- c:\windows\MBR.exe
2010-04-09 21:42:38 161792 ----a-w- c:\windows\SWREG.exe
2010-04-09 16:17:23 53088 ----a-w- c:\windows\system32\drivers\pxrts.sys
2010-04-09 16:17:23 30280 ----a-w- c:\windows\system32\drivers\pxscan.sys
2010-04-09 16:17:16 24368 ----a-w- c:\windows\system32\drivers\pxkbf.sys
2010-04-09 16:16:53 50 ----a-w- c:\windows\wininit.ini
2010-04-09 15:44:19 23040 ----a-w- c:\windows\system32\drivers\mouclass.sys4E5EA5B4
2010-04-08 17:36:15 12872 ----a-w- c:\windows\system32\bootdelete.exe
2010-04-08 17:30:36 15944 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2010-04-08 17:30:28 0 d-----w- c:\docume~1\alluse~1\applic~1\Hitman Pro
2010-04-08 17:30:15 0 d-----w- c:\program files\Hitman Pro 3.5
2010-04-08 12:17:02 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-08 12:16:55 20824 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-07 21:01:38 552 ----a-w- c:\windows\system32\d3d8caps.dat
2010-03-27 01:45:33 0 d-----w- c:\docume~1\alluse~1\applic~1\Research In Motion

==================== Find3M ====================

2010-04-16 04:05:15 23040 ----a-w- c:\windows\system32\drivers\mouclass.sys
2010-03-11 12:38:54 832512 ------w- c:\windows\system32\wininet.dll
2010-03-11 12:38:52 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-03-11 12:38:51 17408 ----a-w- c:\windows\system32\corpol.dll
2010-03-09 11:09:18 430080 ----a-w- c:\windows\system32\vbscript.dll
2010-02-24 14:16:06 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-24 13:11:07 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-16 14:08:49 2146304 ------w- c:\windows\system32\ntoskrnl.exe
2010-02-16 13:25:04 2024448 ------w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 04:33:11 100864 ----a-w- c:\windows\system32\6to4svc.dll
2009-01-20 18:25:44 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\application data\microsoft\feeds cache\index.dat
2009-07-24 08:04:30 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012009072420090725\index.dat

============= FINISH: 17:29:19.32 ===============

 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 7/24/2009 4:06:44 AM
System Uptime: 4/16/2010 5:15:30 PM (0 hours ago)

Motherboard: Acer | |
Processor: Intel(R) Atom(TM) CPU N270 @ 1.60GHz | CPU | 1596/533mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 143 GiB total, 125.756 GiB free.

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP159: 1/16/2010 12:41:08 PM - Software Distribution Service 3.0
RP160: 1/17/2010 1:40:43 PM - System Checkpoint
RP161: 1/18/2010 4:10:37 AM - Microsoft Antimalware Checkpoint
RP162: 1/18/2010 5:07:03 PM - Software Distribution Service 3.0
RP163: 1/19/2010 5:47:32 PM - System Checkpoint
RP164: 1/20/2010 9:08:17 AM - Software Distribution Service 3.0
RP165: 1/20/2010 6:28:59 PM - Microsoft Antimalware Checkpoint
RP166: 1/21/2010 9:08:08 AM - Software Distribution Service 3.0
RP167: 1/22/2010 3:00:18 AM - Software Distribution Service 3.0
RP168: 1/24/2010 8:03:46 PM - Software Distribution Service 3.0
RP169: 1/25/2010 7:58:09 PM - Software Distribution Service 3.0
RP170: 1/26/2010 7:58:13 PM - Software Distribution Service 3.0
RP171: 1/27/2010 7:58:16 PM - Software Distribution Service 3.0
RP172: 1/28/2010 7:58:22 PM - Software Distribution Service 3.0
RP173: 1/29/2010 10:04:02 PM - System Checkpoint
RP174: 1/30/2010 8:49:28 AM - Software Distribution Service 3.0
RP175: 1/31/2010 2:13:50 AM - Software Distribution Service 3.0
RP176: 1/31/2010 5:24:02 PM - Software Distribution Service 3.0
RP177: 2/1/2010 5:24:22 PM - Software Distribution Service 3.0
RP178: 2/2/2010 5:24:18 PM - Software Distribution Service 3.0
RP179: 2/3/2010 5:24:24 PM - Software Distribution Service 3.0
RP180: 2/4/2010 8:02:19 PM - System Checkpoint
RP181: 2/5/2010 11:56:45 AM - Software Distribution Service 3.0
RP182: 2/6/2010 11:56:58 AM - Software Distribution Service 3.0
RP183: 2/7/2010 1:57:34 AM - Software Distribution Service 3.0
RP184: 2/7/2010 11:57:04 AM - Software Distribution Service 3.0
RP185: 2/8/2010 11:57:00 AM - Software Distribution Service 3.0
RP186: 2/9/2010 11:56:29 AM - Software Distribution Service 3.0
RP187: 2/10/2010 11:57:04 AM - Software Distribution Service 3.0
RP188: 2/11/2010 3:00:17 AM - Software Distribution Service 3.0
RP189: 2/12/2010 2:26:28 AM - Software Distribution Service 3.0
RP190: 2/13/2010 2:59:18 AM - System Checkpoint
RP191: 2/14/2010 3:00:22 AM - System Checkpoint
RP192: 2/16/2010 1:08:59 AM - System Checkpoint
RP193: 2/16/2010 5:22:47 PM - Software Distribution Service 3.0
RP194: 2/17/2010 1:01:55 AM - Software Distribution Service 3.0
RP195: 2/17/2010 6:13:19 PM - Microsoft Antimalware Checkpoint
RP196: 2/18/2010 5:04:01 PM - Software Distribution Service 3.0
RP197: 2/19/2010 5:04:04 PM - Software Distribution Service 3.0
RP198: 2/20/2010 5:03:41 PM - Software Distribution Service 3.0
RP199: 2/21/2010 2:23:53 AM - Software Distribution Service 3.0
RP200: 2/21/2010 5:03:50 PM - Software Distribution Service 3.0
RP201: 2/22/2010 11:19:52 AM - Installed LogMeIn
RP202: 2/22/2010 5:04:06 PM - Software Distribution Service 3.0
RP203: 2/23/2010 5:04:10 PM - Software Distribution Service 3.0
RP204: 2/24/2010 3:00:25 AM - Software Distribution Service 3.0
RP205: 2/25/2010 8:05:57 AM - System Checkpoint
RP206: 2/26/2010 8:59:52 AM - System Checkpoint
RP207: 2/28/2010 12:39:32 AM - System Checkpoint
RP208: 3/1/2010 4:28:22 AM - System Checkpoint
RP209: 3/2/2010 1:13:52 AM - Software Distribution Service 3.0
RP210: 3/3/2010 5:01:53 AM - System Checkpoint
RP211: 3/3/2010 12:55:54 PM - Software Distribution Service 3.0
RP212: 3/4/2010 12:55:24 PM - Software Distribution Service 3.0
RP213: 3/5/2010 12:55:31 PM - Software Distribution Service 3.0
RP214: 3/5/2010 3:46:46 PM - Installed BlackBerry Desktop Software 5.0.
RP215: 3/6/2010 1:36:50 PM - Software Distribution Service 3.0
RP216: 3/7/2010 1:35:19 AM - Software Distribution Service 3.0
RP217: 3/7/2010 1:36:45 PM - Software Distribution Service 3.0
RP218: 3/8/2010 1:36:45 PM - Software Distribution Service 3.0
RP219: 3/9/2010 1:37:01 PM - Software Distribution Service 3.0
RP220: 3/10/2010 1:37:18 PM - Software Distribution Service 3.0
RP221: 3/11/2010 3:00:27 AM - Software Distribution Service 3.0
RP222: 3/12/2010 3:11:24 AM - Software Distribution Service 3.0
RP223: 3/13/2010 3:11:20 AM - Software Distribution Service 3.0
RP224: 3/14/2010 7:31:34 AM - System Checkpoint
RP225: 3/14/2010 9:35:32 PM - Software Distribution Service 3.0
RP226: 3/15/2010 3:11:20 AM - Software Distribution Service 3.0
RP227: 3/16/2010 5:50:26 AM - System Checkpoint
RP228: 3/16/2010 5:57:44 AM - Software Distribution Service 3.0
RP229: 3/17/2010 10:58:36 PM - Software Distribution Service 3.0
RP230: 3/18/2010 11:38:34 PM - Software Distribution Service 3.0
RP231: 3/20/2010 1:15:14 AM - System Checkpoint
RP232: 3/20/2010 12:39:55 PM - Software Distribution Service 3.0
RP233: 3/21/2010 1:42:24 AM - Software Distribution Service 3.0

 

RP234: 3/21/2010 12:40:04 PM - Software Distribution Service 3.0
RP235: 3/22/2010 12:39:59 PM - Software Distribution Service 3.0
RP236: 3/23/2010 2:58:33 PM - Software Distribution Service 3.0
RP237: 3/24/2010 12:40:00 PM - Software Distribution Service 3.0
RP238: 3/25/2010 12:39:45 PM - Software Distribution Service 3.0
RP239: 3/26/2010 12:52:13 PM - System Checkpoint
RP240: 3/27/2010 12:54:40 AM - Software Distribution Service 3.0
RP241: 3/27/2010 2:22:32 PM - Software Distribution Service 3.0
RP242: 3/28/2010 1:49:00 AM - Software Distribution Service 3.0
RP243: 3/29/2010 7:56:46 AM - System Checkpoint
RP244: 3/30/2010 12:55:24 AM - Software Distribution Service 3.0
RP245: 3/31/2010 12:55:26 AM - Software Distribution Service 3.0
RP246: 3/31/2010 3:00:17 AM - Software Distribution Service 3.0
RP247: 4/1/2010 3:34:23 AM - Software Distribution Service 3.0
RP248: 4/2/2010 7:12:45 AM - System Checkpoint
RP249: 4/2/2010 2:05:32 PM - Software Distribution Service 3.0
RP250: 4/3/2010 5:29:24 PM - System Checkpoint
RP251: 4/3/2010 5:40:10 PM - Software Distribution Service 3.0
RP252: 4/4/2010 8:53:14 PM - System Checkpoint
RP253: 4/5/2010 2:01:13 PM - Software Distribution Service 3.0
RP254: 4/6/2010 5:42:14 PM - Software Distribution Service 3.0
RP255: 4/7/2010 1:59:39 PM - Software Distribution Service 3.0
RP256: 4/8/2010 11:55:40 AM - Spyware Doctor: Cleaning Threats
RP257: 4/9/2010 1:28:43 PM - System Checkpoint
RP258: 4/11/2010 4:28:06 AM - Restore Operation
RP259: 4/11/2010 9:13:50 AM - OTL Restore Point
RP260: 4/12/2010 12:55:51 PM - System Checkpoint
RP261: 4/14/2010 10:11:57 AM - System Checkpoint
RP262: 4/15/2010 3:32:51 PM - System Checkpoint

==== Installed Programs ======================


µTorrent
Acer 3G Connection Manager
Acer Crystal Eye webcam
Acer ScreenSaver
Acrobat.com
Actual Keylogger 2.3
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9
Apple Application Support
Apple Mobile Device Support
Apple Software Update
BlackBerry Desktop Software 5.0.1
Bonjour
Carbonite Online Backup Setup
Choice Guard
CrossLoop 2.71
eSobi v2
Free YouTube to MP3 Converter version 3.2
Google Chrome
Google Desktop
Google Talk Plugin
Google Toolbar for Internet Explorer
Google Updater
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB954708)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Intel(R) Graphics Media Accelerator Driver
InterVideo Register Manager
InterVideo WinDVD
iTunes
Java(TM) 6 Update 16
JMicron JMB38X Flash Media Controller
Junk Mail filter update
Launch Manager
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Antimalware
Microsoft Application Error Reporting
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007

 

Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Security Essentials
Microsoft Software Update for Web Folders (English) 12
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Works
Move Media Player
Mozilla Firefox (3.6.3)
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Qualcomm Gobi Driver Package
Qualcomm Gobi Images
QuickTime
REALTEK GbE & FE Ethernet PCI-E NIC Driver
Realtek High Definition Audio Driver
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB978380)
Security Update for Microsoft Office Excel 2007 (KB978382)
Security Update for Microsoft Office PowerPoint 2007 (KB957789)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB969613)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB969604)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB974455)
Security Update for Windows Internet Explorer 7 (KB976325)
Security Update for Windows Internet Explorer 7 (KB978207)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB979402)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB981349)
Segoe UI
Synaptics Pointing Device Driver
Uninstall 1.0.0.1
Update for 2007 Microsoft Office System (KB967642)
Update for 2007 Microsoft Office System (KB981715)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office InfoPath 2007 (KB976416)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Windows Internet Explorer 7 (KB976749)
Update for Windows Internet Explorer 7 (KB980182)
Update for Windows XP (KB898461)
Update for Windows XP (KB942763)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
WebFldrs XP
Windows Internet Explorer 7
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer

==== Event Viewer Messages From Past Week ========

 

4/16/2010 9:36:00 AM, error: Schedule [7901] - The At10.job command failed to start due to the following error: %%2147942402
4/16/2010 8:36:00 AM, error: Schedule [7901] - The At9.job command failed to start due to the following error: %%2147942402
4/16/2010 7:36:00 AM, error: Schedule [7901] - The At8.job command failed to start due to the following error: %%2147942402
4/16/2010 6:36:00 AM, error: Schedule [7901] - The At7.job command failed to start due to the following error: %%2147942402
4/16/2010 5:36:00 AM, error: Schedule [7901] - The At6.job command failed to start due to the following error: %%2147942402
4/16/2010 5:03:30 PM, error: Service Control Manager [7034] - The Qualcomm Gobi Download Service service terminated unexpectedly. It has done this 1 time(s).
4/16/2010 5:03:30 PM, error: Service Control Manager [7034] - The Print Spooler service terminated unexpectedly. It has done this 1 time(s).
4/16/2010 5:03:30 PM, error: Service Control Manager [7034] - The Microsoft Antimalware Service service terminated unexpectedly. It has done this 3 time(s).
4/16/2010 5:03:30 PM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
4/16/2010 5:03:30 PM, error: Service Control Manager [7034] - The IviRegMgr service terminated unexpectedly. It has done this 1 time(s).
4/16/2010 5:03:30 PM, error: Service Control Manager [7034] - The Bonjour Service service terminated unexpectedly. It has done this 1 time(s).
4/16/2010 4:36:00 AM, error: Schedule [7901] - The At5.job command failed to start due to the following error: %%2147942402

 

4/16/2010 3:36:00 AM, error: Schedule [7901] - The At4.job command failed to start due to the following error: %%2147942402
4/16/2010 2:36:00 AM, error: Schedule [7901] - The At3.job command failed to start due to the following error: %%2147942402
4/16/2010 12:36:00 AM, error: Schedule [7901] - The At1.job command failed to start due to the following error: %%2147942402
4/16/2010 12:07:14 AM, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
4/16/2010 12:06:58 AM, error: Service Control Manager [7034] - The CrossLoop Service service terminated unexpectedly. It has done this 1 time(s).
4/16/2010 12:06:20 AM, error: Ftdisk [49] - Configuring the Page file for crash dump failed. Make sure there is a page file on the boot partition and that is large enough to contain all physical memory.
4/16/2010 12:06:20 AM, error: Ftdisk [45] - The system could not sucessfully load the crash dump driver.
4/16/2010 12:03:58 AM, warning: Windows File Protection [64008] - The protected system file c:\windows\system32\drivers\mouclass.sys could not be verified as valid because Windows File Protection is terminating. Use the SFC utility to verify the integrity of the file at a later time.
4/16/2010 12:03:27 AM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/16/2010 12:03:27 AM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/16/2010 12:02:35 AM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/16/2010 12:02:35 AM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/16/2010 12:02:10 AM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/16/2010 12:00:30 AM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/16/2010 10:42:10 AM, error: Service Control Manager [7031] - The Microsoft Antimalware Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 15000 milliseconds: Restart the service.
4/16/2010 10:41:31 AM, error: Service Control Manager [7031] - The Microsoft Antimalware Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 15000 milliseconds: Restart the service.
4/16/2010 10:36:00 AM, error: Schedule [7901] - The At11.job command failed to start due to the following error: %%2147942402
4/16/2010 1:36:00 AM, error: Schedule [7901] - The At2.job command failed to start due to the following error: %%2147942402
4/15/2010 11:58:28 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:58:09 PM, information: Windows File Protection [64002] - File replacement was attempted on the protected system file mouclass.sys. This file was restored to the original version to maintain system stability. The file version of the system file is 5.1.2600.5512.
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0

 

4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0

 

4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0

 

4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:17 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0

 

4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:57:16 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:48 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:48 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:48 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:48 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:48 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:48 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0

 

4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:47 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0
4/15/2010 11:56:46 PM, error: Microsoft Antimalware [1008] - Microsoft Antimalware has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Alureon.H&threatid=2147632576 User: ACER-E817FAE0D8\Sampson Name: Virus:Win32/Alureon.H ID: 2147632576 Severity: Severe Category: Virus Path: Action: Clean Error Code: 0x80508023 Error description: The program could not find the spyware and other potentially unwanted software on this computer. Status: Signature Version: AV: 1.79.1777.0, AS: 1.79.1777.0 Engine Version: 1.1.5605.0

==== End Of File ===========================

 

You are going to have to uninstall Microsoft Antimalware and reinstall it again. You have been severely infected by the vundo file changer and might possibly end up having to reformat your pc.

Do you have the XP CD?

==

1. Please open Notepad

• Click Start , then Run
• Type notepad.exe in the Run Box.

2. Now copy/paste the entire content of the codebox below into the Notepad window:

Code:

KillAll::

DDS::
S1 adfyiqew;adfyiqew;\??\c:\windows\system32\drivers\adfyiqew.sys --> c:\windows\system32\drivers\adfyiqew.sys [?]
S1 afiwatfs;afiwatfs;\??\c:\windows\system32\drivers\afiwatfs.sys --> c:\windows\system32\drivers\afiwatfs.sys [?]
S1 ailgulld;ailgulld;\??\c:\windows\system32\drivers\ailgulld.sys --> c:\windows\system32\drivers\ailgulld.sys [?]
S1 aisggsig;aisggsig;\??\c:\windows\system32\drivers\aisggsig.sys --> c:\windows\system32\drivers\aisggsig.sys [?]
S1 alruyfvg;alruyfvg;\??\c:\windows\system32\drivers\alruyfvg.sys --> c:\windows\system32\drivers\alruyfvg.sys [?]
S1 apkxbpue;apkxbpue;\??\c:\windows\system32\drivers\apkxbpue.sys --> c:\windows\system32\drivers\apkxbpue.sys [?]
S1 atmmxame;atmmxame;\??\c:\windows\system32\drivers\atmmxame.sys --> c:\windows\system32\drivers\atmmxame.sys [?]
S1 bumfnder;bumfnder;\??\c:\windows\system32\drivers\bumfnder.sys --> c:\windows\system32\drivers\bumfnder.sys [?]
S1 busaarbc;busaarbc;\??\c:\windows\system32\drivers\busaarbc.sys --> c:\windows\system32\drivers\busaarbc.sys [?]
S1 bxydhbzh;bxydhbzh;\??\c:\windows\system32\drivers\bxydhbzh.sys --> c:\windows\system32\drivers\bxydhbzh.sys [?]
S1 cifivddr;cifivddr;\??\c:\windows\system32\drivers\cifivddr.sys --> c:\windows\system32\drivers\cifivddr.sys [?]
S1 cpoxzgoh;cpoxzgoh;\??\c:\windows\system32\drivers\cpoxzgoh.sys --> c:\windows\system32\drivers\cpoxzgoh.sys [?]
S1 cvermjmb;cvermjmb;\??\c:\windows\system32\drivers\cvermjmb.sys --> c:\windows\system32\drivers\cvermjmb.sys [?]
S1 cxiotagl;cxiotagl;\??\c:\windows\system32\drivers\cxiotagl.sys --> c:\windows\system32\drivers\cxiotagl.sys [?]
S1 cyyymcxa;cyyymcxa;\??\c:\windows\system32\drivers\cyyymcxa.sys --> c:\windows\system32\drivers\cyyymcxa.sys [?]
S1 daxohfla;daxohfla;\??\c:\windows\system32\drivers\daxohfla.sys --> c:\windows\system32\drivers\daxohfla.sys [?]
S1 dwttwlcm;dwttwlcm;\??\c:\windows\system32\drivers\dwttwlcm.sys --> c:\windows\system32\drivers\dwttwlcm.sys [?]
S1 eluhfmvh;eluhfmvh;\??\c:\windows\system32\drivers\eluhfmvh.sys --> c:\windows\system32\drivers\eluhfmvh.sys [?]
S1 enrwgrwn;enrwgrwn;\??\c:\windows\system32\drivers\enrwgrwn.sys --> c:\windows\system32\drivers\enrwgrwn.sys [?]
S1 envjojgn;envjojgn;\??\c:\windows\system32\drivers\envjojgn.sys --> c:\windows\system32\drivers\envjojgn.sys [?]
S1 eoypwiud;eoypwiud;\??\c:\windows\system32\drivers\eoypwiud.sys --> c:\windows\system32\drivers\eoypwiud.sys [?]
S1 excptvku;excptvku;\??\c:\windows\system32\drivers\excptvku.sys --> c:\windows\system32\drivers\excptvku.sys [?]
S1 fneemrct;fneemrct;\??\c:\windows\system32\drivers\fneemrct.sys --> c:\windows\system32\drivers\fneemrct.sys [?]
S1 fyzzajvd;fyzzajvd;\??\c:\windows\system32\drivers\fyzzajvd.sys --> c:\windows\system32\drivers\fyzzajvd.sys [?]
S1 gcgtyqnz;gcgtyqnz;\??\c:\windows\system32\drivers\gcgtyqnz.sys --> c:\windows\system32\drivers\gcgtyqnz.sys [?]
S1 glgrkqgo;glgrkqgo;\??\c:\windows\system32\drivers\glgrkqgo.sys --> c:\windows\system32\drivers\glgrkqgo.sys [?]
S1 gxkhluqx;gxkhluqx;\??\c:\windows\system32\drivers\gxkhluqx.sys --> c:\windows\system32\drivers\gxkhluqx.sys [?]
S1 hcmqfbkr;hcmqfbkr;\??\c:\windows\system32\drivers\hcmqfbkr.sys --> c:\windows\system32\drivers\hcmqfbkr.sys [?]
S1 hemwhtco;hemwhtco;\??\c:\windows\system32\drivers\hemwhtco.sys --> c:\windows\system32\drivers\hemwhtco.sys [?]
S1 hnflobwb;hnflobwb;\??\c:\windows\system32\drivers\hnflobwb.sys --> c:\windows\system32\drivers\hnflobwb.sys [?]
S1 hsdzegox;hsdzegox;\??\c:\windows\system32\drivers\hsdzegox.sys --> c:\windows\system32\drivers\hsdzegox.sys [?]
S1 htiattnr;htiattnr;\??\c:\windows\system32\drivers\htiattnr.sys --> c:\windows\system32\drivers\htiattnr.sys [?]
S1 htiffrkc;htiffrkc;\??\c:\windows\system32\drivers\htiffrkc.sys --> c:\windows\system32\drivers\htiffrkc.sys [?]
S1 iemmvdae;iemmvdae;\??\c:\windows\system32\drivers\iemmvdae.sys --> c:\windows\system32\drivers\iemmvdae.sys [?]
S1 iigpwxuz;iigpwxuz;\??\c:\windows\system32\drivers\iigpwxuz.sys --> c:\windows\system32\drivers\iigpwxuz.sys [?]
S1 ivmxxizo;ivmxxizo;\??\c:\windows\system32\drivers\ivmxxizo.sys --> c:\windows\system32\drivers\ivmxxizo.sys [?]
S1 jigqmujs;jigqmujs;\??\c:\windows\system32\drivers\jigqmujs.sys --> c:\windows\system32\drivers\jigqmujs.sys [?]
S1 jkxixymb;jkxixymb;\??\c:\windows\system32\drivers\jkxixymb.sys --> c:\windows\system32\drivers\jkxixymb.sys [?]
S1 jodvzvic;jodvzvic;\??\c:\windows\system32\drivers\jodvzvic.sys --> c:\windows\system32\drivers\jodvzvic.sys [?]
S1 jrsbflhy;jrsbflhy;\??\c:\windows\system32\drivers\jrsbflhy.sys --> c:\windows\system32\drivers\jrsbflhy.sys [?]
S1 jwjstrcn;jwjstrcn;\??\c:\windows\system32\drivers\jwjstrcn.sys --> c:\windows\system32\drivers\jwjstrcn.sys [?]
S1 jyaajtlb;jyaajtlb;\??\c:\windows\system32\drivers\jyaajtlb.sys --> c:\windows\system32\drivers\jyaajtlb.sys [?]
S1 kcknzwpd;kcknzwpd;\??\c:\windows\system32\drivers\kcknzwpd.sys --> c:\windows\system32\drivers\kcknzwpd.sys [?]
S1 kdhzzjrp;kdhzzjrp;\??\c:\windows\system32\drivers\kdhzzjrp.sys --> c:\windows\system32\drivers\kdhzzjrp.sys [?]
S1 keagzpqu;keagzpqu;\??\c:\windows\system32\drivers\keagzpqu.sys --> c:\windows\system32\drivers\keagzpqu.sys [?]
S1 kjzewzjg;kjzewzjg;\??\c:\windows\system32\drivers\kjzewzjg.sys --> c:\windows\system32\drivers\kjzewzjg.sys [?]
S1 klikbyhe;klikbyhe;\??\c:\windows\system32\drivers\klikbyhe.sys --> c:\windows\system32\drivers\klikbyhe.sys [?]
S1 kqqjhrxt;kqqjhrxt;\??\c:\windows\system32\drivers\kqqjhrxt.sys --> c:\windows\system32\drivers\kqqjhrxt.sys [?]
S1 ldmhzbfv;ldmhzbfv;\??\c:\windows\system32\drivers\ldmhzbfv.sys --> c:\windows\system32\drivers\ldmhzbfv.sys [?]
S1 leuaoesr;leuaoesr;\??\c:\windows\system32\drivers\leuaoesr.sys --> c:\windows\system32\drivers\leuaoesr.sys [?]
S1 lgpeogpg;lgpeogpg;\??\c:\windows\system32\drivers\lgpeogpg.sys --> c:\windows\system32\drivers\lgpeogpg.sys [?]
S1 lnbhhpva;lnbhhpva;\??\c:\windows\system32\drivers\lnbhhpva.sys --> c:\windows\system32\drivers\lnbhhpva.sys [?]
S1 lnemnyam;lnemnyam;\??\c:\windows\system32\drivers\lnemnyam.sys --> c:\windows\system32\drivers\lnemnyam.sys [?]
S1 lnlshdlv;lnlshdlv;\??\c:\windows\system32\drivers\lnlshdlv.sys --> c:\windows\system32\drivers\lnlshdlv.sys [?]
S1 lotqaikm;lotqaikm;\??\c:\windows\system32\drivers\lotqaikm.sys --> c:\windows\system32\drivers\lotqaikm.sys [?]
S1 lsadewkd;lsadewkd;\??\c:\windows\system32\drivers\lsadewkd.sys --> c:\windows\system32\drivers\lsadewkd.sys [?]
S1 mdosmnaq;mdosmnaq;\??\c:\windows\system32\drivers\mdosmnaq.sys --> c:\windows\system32\drivers\mdosmnaq.sys [?]
S1 mkbxtgce;mkbxtgce;\??\c:\windows\system32\drivers\mkbxtgce.sys --> c:\windows\system32\drivers\mkbxtgce.sys [?]
S1 mkjkywdx;mkjkywdx;\??\c:\windows\system32\drivers\mkjkywdx.sys --> c:\windows\system32\drivers\mkjkywdx.sys [?]
S1 mpbptoxg;mpbptoxg;\??\c:\windows\system32\drivers\mpbptoxg.sys --> c:\windows\system32\drivers\mpbptoxg.sys [?]
S1 MpKsl99f20418;MpKsl99f20418;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{41dfd1f1-65ad-45ec-8545-dc6edcab87f4}\mpksl99f20418.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{41dfd1f1-65ad-45ec-8545-dc6edcab87f4}\MpKsl99f20418.sys [?]
S1 mxghughy;mxghughy;\??\c:\windows\system32\drivers\mxghughy.sys --> c:\windows\system32\drivers\mxghughy.sys [?]
S1 nlanccde;nlanccde;\??\c:\windows\system32\drivers\nlanccde.sys --> c:\windows\system32\drivers\nlanccde.sys [?]
S1 npmyxkah;npmyxkah;\??\c:\windows\system32\drivers\npmyxkah.sys --> c:\windows\system32\drivers\npmyxkah.sys [?]
S1 octroxqf;octroxqf;\??\c:\windows\system32\drivers\octroxqf.sys --> c:\windows\system32\drivers\octroxqf.sys [?]
S1 oewprgpm;oewprgpm;\??\c:\windows\system32\drivers\oewprgpm.sys --> c:\windows\system32\drivers\oewprgpm.sys [?]
S1 ofepepqd;ofepepqd;\??\c:\windows\system32\drivers\ofepepqd.sys --> c:\windows\system32\drivers\ofepepqd.sys [?]
S1 pioikkst;pioikkst;\??\c:\windows\system32\drivers\pioikkst.sys --> c:\windows\system32\drivers\pioikkst.sys [?]
S1 pjgooijz;pjgooijz;\??\c:\windows\system32\drivers\pjgooijz.sys --> c:\windows\system32\drivers\pjgooijz.sys [?]
S1 plucvslj;plucvslj;\??\c:\windows\system32\drivers\plucvslj.sys --> c:\windows\system32\drivers\plucvslj.sys [?]
S1 ppefzsvk;ppefzsvk;\??\c:\windows\system32\drivers\ppefzsvk.sys --> c:\windows\system32\drivers\ppefzsvk.sys [?]
S1 ppvopmjx;ppvopmjx;\??\c:\windows\system32\drivers\ppvopmjx.sys --> c:\windows\system32\drivers\ppvopmjx.sys [?]
S1 pseexmir;pseexmir;\??\c:\windows\system32\drivers\pseexmir.sys --> c:\windows\system32\drivers\pseexmir.sys [?]
S1 qfohcaif;qfohcaif;\??\c:\windows\system32\drivers\qfohcaif.sys --> c:\windows\system32\drivers\qfohcaif.sys [?]
S1 qgtuwpbk;qgtuwpbk;\??\c:\windows\system32\drivers\qgtuwpbk.sys --> c:\windows\system32\drivers\qgtuwpbk.sys [?]
S1 qtfqfaua;qtfqfaua;\??\c:\windows\system32\drivers\qtfqfaua.sys --> c:\windows\system32\drivers\qtfqfaua.sys [?]
S1 rkxiudjf;rkxiudjf;\??\c:\windows\system32\drivers\rkxiudjf.sys --> c:\windows\system32\drivers\rkxiudjf.sys [?]
S1 sgpszqvc;sgpszqvc;\??\c:\windows\system32\drivers\sgpszqvc.sys --> c:\windows\system32\drivers\sgpszqvc.sys [?]
S1 svfexkuk;svfexkuk;\??\c:\windows\system32\drivers\svfexkuk.sys --> c:\windows\system32\drivers\svfexkuk.sys [?]
S1 tbwvivmo;tbwvivmo;\??\c:\windows\system32\drivers\tbwvivmo.sys --> c:\windows\system32\drivers\tbwvivmo.sys [?]
S1 tcjsouln;tcjsouln;\??\c:\windows\system32\drivers\tcjsouln.sys --> c:\windows\system32\drivers\tcjsouln.sys [?]
S1 tcxftcir;tcxftcir;\??\c:\windows\system32\drivers\tcxftcir.sys --> c:\windows\system32\drivers\tcxftcir.sys [?]
S1 teoblrbl;teoblrbl;\??\c:\windows\system32\drivers\teoblrbl.sys --> c:\windows\system32\drivers\teoblrbl.sys [?]
S1 tfttfuvx;tfttfuvx;\??\c:\windows\system32\drivers\tfttfuvx.sys --> c:\windows\system32\drivers\tfttfuvx.sys [?]
S1 tidfpoko;tidfpoko;\??\c:\windows\system32\drivers\tidfpoko.sys --> c:\windows\system32\drivers\tidfpoko.sys [?]
S1 toqfbdod;toqfbdod;\??\c:\windows\system32\drivers\toqfbdod.sys --> c:\windows\system32\drivers\toqfbdod.sys [?]
S1 tutpypmd;tutpypmd;\??\c:\windows\system32\drivers\tutpypmd.sys --> c:\windows\system32\drivers\tutpypmd.sys [?]
S1 uajvtaov;uajvtaov;\??\c:\windows\system32\drivers\uajvtaov.sys --> c:\windows\system32\drivers\uajvtaov.sys [?]
S1 uqabyyyb;uqabyyyb;\??\c:\windows\system32\drivers\uqabyyyb.sys --> c:\windows\system32\drivers\uqabyyyb.sys [?]
S1 uxmsljlj;uxmsljlj;\??\c:\windows\system32\drivers\uxmsljlj.sys --> c:\windows\system32\drivers\uxmsljlj.sys [?]
S1 vbetfiky;vbetfiky;\??\c:\windows\system32\drivers\vbetfiky.sys --> c:\windows\system32\drivers\vbetfiky.sys [?]
S1 vczqsput;vczqsput;\??\c:\windows\system32\drivers\vczqsput.sys --> c:\windows\system32\drivers\vczqsput.sys [?]
S1 vdsyuxmu;vdsyuxmu;\??\c:\windows\system32\drivers\vdsyuxmu.sys --> c:\windows\system32\drivers\vdsyuxmu.sys [?]
S1 vfseajww;vfseajww;\??\c:\windows\system32\drivers\vfseajww.sys --> c:\windows\system32\drivers\vfseajww.sys [?]
S1 vrmxrfzv;vrmxrfzv;\??\c:\windows\system32\drivers\vrmxrfzv.sys --> c:\windows\system32\drivers\vrmxrfzv.sys [?]
S1 vrnrdnbt;vrnrdnbt;\??\c:\windows\system32\drivers\vrnrdnbt.sys --> c:\windows\system32\drivers\vrnrdnbt.sys [?]
S1 vspqeuet;vspqeuet;\??\c:\windows\system32\drivers\vspqeuet.sys --> c:\windows\system32\drivers\vspqeuet.sys [?]
S1 wbcksbzu;wbcksbzu;\??\c:\windows\system32\drivers\wbcksbzu.sys --> c:\windows\system32\drivers\wbcksbzu.sys [?]
S1 weeqjijd;weeqjijd;\??\c:\windows\system32\drivers\weeqjijd.sys --> c:\windows\system32\drivers\weeqjijd.sys [?]
S1 wgppprhv;wgppprhv;\??\c:\windows\system32\drivers\wgppprhv.sys --> c:\windows\system32\drivers\wgppprhv.sys [?]
S1 wjjinjiw;wjjinjiw;\??\c:\windows\system32\drivers\wjjinjiw.sys --> c:\windows\system32\drivers\wjjinjiw.sys [?]
S1 wkaoilby;wkaoilby;\??\c:\windows\system32\drivers\wkaoilby.sys --> c:\windows\system32\drivers\wkaoilby.sys [?]
S1 wvcrotwx;wvcrotwx;\??\c:\windows\system32\drivers\wvcrotwx.sys --> c:\windows\system32\drivers\wvcrotwx.sys [?]
S1 xdtmlija;xdtmlija;\??\c:\windows\system32\drivers\xdtmlija.sys --> c:\windows\system32\drivers\xdtmlija.sys [?]
S1 xhlsrnsk;xhlsrnsk;\??\c:\windows\system32\drivers\xhlsrnsk.sys --> c:\windows\system32\drivers\xhlsrnsk.sys [?]
S1 xkjwarsp;xkjwarsp;\??\c:\windows\system32\drivers\xkjwarsp.sys --> c:\windows\system32\drivers\xkjwarsp.sys [?]
S1 xmaiqrfy;xmaiqrfy;\??\c:\windows\system32\drivers\xmaiqrfy.sys --> c:\windows\system32\drivers\xmaiqrfy.sys [?]
S1 xqljlier;xqljlier;\??\c:\windows\system32\drivers\xqljlier.sys --> c:\windows\system32\drivers\xqljlier.sys [?]
S1 xumzmlmm;xumzmlmm;\??\c:\windows\system32\drivers\xumzmlmm.sys --> c:\windows\system32\drivers\xumzmlmm.sys [?]
S1 xvrqezgj;xvrqezgj;\??\c:\windows\system32\drivers\xvrqezgj.sys --> c:\windows\system32\drivers\xvrqezgj.sys [?]
S1 xvtsyrth;xvtsyrth;\??\c:\windows\system32\drivers\xvtsyrth.sys --> c:\windows\system32\drivers\xvtsyrth.sys [?]
S1 xwcdgmtg;xwcdgmtg;\??\c:\windows\system32\drivers\xwcdgmtg.sys --> c:\windows\system32\drivers\xwcdgmtg.sys [?]
S1 xxrjdfft;xxrjdfft;\??\c:\windows\system32\drivers\xxrjdfft.sys --> c:\windows\system32\drivers\xxrjdfft.sys [?]
S1 zazgskap;zazgskap;\??\c:\windows\system32\drivers\zazgskap.sys --> c:\windows\system32\drivers\zazgskap.sys [?]
S1 zdcxqdaw;zdcxqdaw;\??\c:\windows\system32\drivers\zdcxqdaw.sys --> c:\windows\system32\drivers\zdcxqdaw.sys [?]
S1 zgunwcaw;zgunwcaw;\??\c:\windows\system32\drivers\zgunwcaw.sys --> c:\windows\system32\drivers\zgunwcaw.sys [?]

Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.

3. Save the above as CFScript.txt

4. Physically disconnect from the internet.

5. Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.

6. Then drag the CFScript.txt into ComboFix.exe as depicted in the animation below. This will start ComboFix again.




7. After reboot, (in case it asks to reboot), please post the following reports/logs into your next replyafter you re-enable all the programs that were disabled during the running of ComboFix:

• Combofix.txt
• A new HijackThis log.

Please take note:

CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.

 

I have access to an XP CD, though i'm using a netbook and don't have an external drive. I will do what you directed now.

 

What is a hijackthis log again please?

 

ComboFix 10-04-15.05 - Sampson 04/16/2010 21:47:09.4.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1012.732 [GMT -4:00]
Running from: c:\documents and settings\Sampson\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Sampson\Desktop\CFScript.txt
AV: Microsoft Security Essentials *On-access scanning disabled* (Updated) {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Sampson\Local Settings\Application Data\ave.exe

.
((((((((((((((((((((((((( Files Created from 2010-03-17 to 2010-04-17 )))))))))))))))))))))))))))))))
.

2010-04-17 01:57 . 2010-04-17 01:57 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\PCHealth
2010-04-16 23:08 . 2010-04-16 23:08 28880 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{525AEC6A-FB13-4240-83B4-26F43F814CD5}\MpKslf9fd7228.sys
2010-04-16 14:40 . 2010-04-16 14:40 3911239 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{43B820EB-C7E1-BA8A-A752-341526E9D0AE}-ComboFix.exe
2010-04-16 14:40 . 2010-04-16 14:40 3911239 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{683ED95A-ABBF-EE9D-10B5-281651854DD4}-ComboFix.exe
2010-04-14 07:04 . 2008-04-14 20:00 221184 ----a-w- c:\windows\system32\wmpns.dll
2010-04-13 03:44 . 2010-04-13 03:44 41476 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{FA92E1DB-5140-3ED3-BE0B-7E7EA9361750}-qttask .exe
2010-04-12 20:35 . 2010-04-12 20:35 41476 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{25AAC0DA-1079-78DA-00F3-F8B1FE2B74CD}-dwtrig20.exe
2010-04-12 20:30 . 2010-04-12 20:30 41476 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{7A6E8AB2-D246-4461-DC43-B8466BFD85FA}-dwtrig20.exe
2010-04-09 23:30 . 2010-04-12 07:24 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Adobe
2010-04-09 16:17 . 2010-04-09 16:17 53088 ----a-w- c:\windows\system32\drivers\pxrts.sys
2010-04-09 16:17 . 2010-04-09 16:17 30280 ----a-w- c:\windows\system32\drivers\pxscan.sys
2010-04-09 16:17 . 2010-04-09 16:17 24368 ----a-w- c:\windows\system32\drivers\pxkbf.sys
2010-04-08 17:36 . 2010-04-13 03:00 12872 ----a-w- c:\windows\system32\bootdelete.exe
2010-04-08 17:30 . 2010-04-13 03:00 15944 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2010-04-08 17:30 . 2010-04-08 17:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Hitman Pro
2010-04-08 17:30 . 2010-04-16 21:03 -------- d-----w- c:\program files\Hitman Pro 3.5
2010-04-08 15:47 . 2010-04-09 15:52 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-04-08 15:43 . 2010-04-08 15:56 -------- d-----w- c:\documents and settings\All Users\Application Data\Google Updater
2010-04-08 12:17 . 2010-03-30 04:46 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-08 12:16 . 2010-03-30 04:45 20824 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-07 21:01 . 2010-04-07 21:01 552 ----a-w- c:\windows\system32\d3d8caps.dat
2010-04-05 07:58 . 2010-04-05 07:58 -------- d-----w- c:\documents and settings\Sampson\Local Settings\Application Data\PCHealth
2010-03-27 18:17 . 2010-03-27 18:25 -------- d-----w- c:\documents and settings\Sampson\Local Settings\Application Data\ctrxmt
2010-03-27 01:45 . 2010-03-27 01:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Research In Motion
2010-03-22 20:04 . 2010-03-22 20:04 255472 ----a-w- c:\documents and settings\Sampson\Application Data\Mozilla\plugins\npgoogletalk.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-17 00:29 . 2009-12-26 02:42 -------- d-----w- c:\program files\QuickTime
2010-04-16 21:03 . 2010-01-09 20:41 -------- d-----w- c:\program files\Microsoft Security Essentials
2010-04-16 21:03 . 2009-01-20 18:43 -------- d-----w- c:\program files\Launch Manager
2010-04-16 04:05 . 2008-04-14 20:00 23040 ----a-w- c:\windows\system32\drivers\mouclass.sys
2010-04-16 04:03 . 2009-08-02 07:15 -------- d-----w- c:\documents and settings\Sampson\Application Data\uTorrent
2010-04-14 07:06 . 2009-01-20 19:19 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-04-09 15:44 . 2010-04-09 15:44 23040 ----a-w- c:\windows\system32\drivers\mouclass.sys4E5EA5B4
2010-04-08 15:43 . 2009-01-20 19:22 -------- d-----w- c:\program files\Google
2010-04-08 12:17 . 2010-01-09 19:52 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-07 21:01 . 2009-08-24 16:06 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-04-04 01:53 . 2009-09-06 12:29 -------- d-----w- c:\program files\AKProg
2010-03-11 12:38 . 2008-10-16 20:38 832512 ------w- c:\windows\system32\wininet.dll
2010-03-11 12:38 . 2008-04-14 20:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-03-11 12:38 . 2008-04-14 20:00 17408 ----a-w- c:\windows\system32\corpol.dll
2010-03-09 11:09 . 2008-05-09 10:53 430080 ----a-w- c:\windows\system32\vbscript.dll
2010-03-08 03:58 . 2010-03-08 03:58 -------- d-----w- c:\program files\Common Files\Roxio Shared
2010-03-06 05:18 . 2010-03-05 20:50 256 ----a-w- c:\windows\system32\pool.bin
2010-03-05 20:56 . 2010-03-05 20:56 -------- d-----w- c:\documents and settings\Sampson\Application Data\Blackberry Desktop
2010-03-05 20:49 . 2010-03-05 20:49 -------- d-----w- c:\documents and settings\Sampson\Application Data\Research In Motion
2010-03-05 20:47 . 2010-03-05 20:47 -------- d-----w- c:\program files\Common Files\Research In Motion
2010-03-05 20:47 . 2010-03-05 20:47 -------- d-----w- c:\program files\Research In Motion
2010-02-24 14:16 . 2010-01-09 20:43 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-24 13:11 . 2008-10-24 11:21 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-22 16:25 . 2010-02-22 16:25 -------- d-----w- c:\documents and settings\Sampson\Application Data\UltraVNC
2010-02-16 14:08 . 2008-08-14 10:09 2146304 ------w- c:\windows\system32\ntoskrnl.exe
2010-02-16 13:25 . 2008-08-14 09:33 2024448 ------w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 04:33 . 2008-04-14 20:00 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:02 . 2008-04-14 20:00 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
.

((((((((((((((((((((((((((((( SnapShot_2010-04-16_15.01.22 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-04-17 01:59 . 2010-04-17 01:59 16384 c:\windows\Temp\Perflib_Perfdata_76c.dat
+ 2009-01-20 20:20 . 2010-04-16 21:24 72134 c:\windows\system32\perfc009.dat
- 2009-01-20 20:20 . 2010-04-16 14:38 72134 c:\windows\system32\perfc009.dat
+ 2009-01-20 20:20 . 2010-04-16 21:24 443034 c:\windows\system32\perfh009.dat
- 2009-01-20 20:20 . 2010-04-16 14:38 443034 c:\windows\system32\perfh009.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg "= "c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-07-24 68856]
"Google Update "= "c:\documents and settings\Sampson\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-09-16 133104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray "= "c:\windows\system32\igfxtray.exe" [2008-02-28 141848]
"HotKeysCmds "= "c:\windows\system32\hkcmd.exe" [2008-02-28 166424]
"Persistence "= "c:\windows\system32\igfxpers.exe" [2008-02-28 137752]
"BlackBerryAutoUpdate "= "c:\program files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe" [2010-03-11 648536]
"HitmanPro35 "= "c:\program files\Hitman Pro 3.5\HitmanPro35.exe" [2010-04-08 5650240]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting "= "c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@= "Service "

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^InterVideo WinCinema Manager.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\InterVideo WinCinema Manager.lnk
backup=c:\windows\pss\InterVideo WinCinema Manager.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LaunchApp]
Alaunch [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-06-12 10:38 34672 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
2008-06-19 23:20 57344 ----a-w- c:\windows\ALCMTR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CarboniteSetupLite]
2008-10-03 19:18 294544 ----a-w- c:\program files\Carbonite\CarbonitePreinstaller.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eRecoveryService]
2008-09-04 05:46 425984 ----a-w- c:\acer\Empowering Technology\eRecovery\eRAgent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
2009-01-20 19:22 30192 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2009-09-16 16:05 133104 ----atw- c:\documents and settings\Sampson\Local Settings\Application Data\Google\Update\GoogleUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
2008-04-14 20:00 208952 ----a-w- c:\windows\ime\imjp8_1\imjpmig.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2009-11-12 21:33 141600 ----a-w- c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2008-12-03 06:41 3882312 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
2008-04-14 20:00 59392 ----a-w- c:\windows\system32\IME\PINTLGNT\IMSCINST.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
2008-04-14 20:00 455168 ----a-w- c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
2008-04-14 20:00 455168 ----a-w- c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2008-12-30 21:58 18082304 ----a-w- c:\windows\RTHDCPL.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2009-12-09 20:50 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2009-07-24 08:14 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2008-04-25 16:32 1044480 ----a-w- c:\program files\Synaptics\SynTP\SynTPEnh.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride "=dword:00000001
"FirewallOverride "=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall "= 0 (0x0)
"DisableNotifications "= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe "=
"%windir%\\system32\\sessmgr.exe "=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE "=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe "=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe "=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe "=
"c:\\Program Files\\uTorrent\\uTorrent.exe "=
"c:\\Documents and Settings\\Sampson\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.dll "=
"c:\\Documents and Settings\\Sampson\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.exe "=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe "=
"c:\\Program Files\\iTunes\\iTunes.exe "=
"c:\\Documents and Settings\\Sampson\\Local Settings\\Application Data\\CrossLoop\\vncviewer.exe "=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5910:TCP "= 5910:TCP:vnc5910

R1 MpKslf9fd7228;MpKslf9fd7228;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{525AEC6A-FB13-4240-83B4-26F43F814CD5}\MpKslf9fd7228.sys [4/16/2010 7:08 PM 28880]
R2 CrossLoopService;CrossLoop Service;c:\documents and settings\Sampson\Local Settings\Application Data\CrossLoop\CrossLoopService.exe [2/22/2010 10:11 AM 560792]
R2 QDLService;Qualcomm Gobi Download Service;c:\qualcomm\QDLService\QDLService.exe [11/10/2008 2:43 AM 345336]
S1 adfyiqew;adfyiqew;\??\c:\windows\system32\drivers\adfyiqew.sys --> c:\windows\system32\drivers\adfyiqew.sys [?]
S1 afiwatfs;afiwatfs;\??\c:\windows\system32\drivers\afiwatfs.sys --> c:\windows\system32\drivers\afiwatfs.sys [?]
S1 ailgulld;ailgulld;\??\c:\windows\system32\drivers\ailgulld.sys --> c:\windows\system32\drivers\ailgulld.sys [?]
S1 aisggsig;aisggsig;\??\c:\windows\system32\drivers\aisggsig.sys --> c:\windows\system32\drivers\aisggsig.sys [?]
S1 alruyfvg;alruyfvg;\??\c:\windows\system32\drivers\alruyfvg.sys --> c:\windows\system32\drivers\alruyfvg.sys [?]
S1 apkxbpue;apkxbpue;\??\c:\windows\system32\drivers\apkxbpue.sys --> c:\windows\system32\drivers\apkxbpue.sys [?]
S1 atmmxame;atmmxame;\??\c:\windows\system32\drivers\atmmxame.sys --> c:\windows\system32\drivers\atmmxame.sys [?]
S1 bumfnder;bumfnder;\??\c:\windows\system32\drivers\bumfnder.sys --> c:\windows\system32\drivers\bumfnder.sys [?]
S1 busaarbc;busaarbc;\??\c:\windows\system32\drivers\busaarbc.sys --> c:\windows\system32\drivers\busaarbc.sys [?]
S1 bxydhbzh;bxydhbzh;\??\c:\windows\system32\drivers\bxydhbzh.sys --> c:\windows\system32\drivers\bxydhbzh.sys [?]
S1 cifivddr;cifivddr;\??\c:\windows\system32\drivers\cifivddr.sys --> c:\windows\system32\drivers\cifivddr.sys [?]
S1 cpoxzgoh;cpoxzgoh;\??\c:\windows\system32\drivers\cpoxzgoh.sys --> c:\windows\system32\drivers\cpoxzgoh.sys [?]
S1 cvermjmb;cvermjmb;\??\c:\windows\system32\drivers\cvermjmb.sys --> c:\windows\system32\drivers\cvermjmb.sys [?]
S1 cxiotagl;cxiotagl;\??\c:\windows\system32\drivers\cxiotagl.sys --> c:\windows\system32\drivers\cxiotagl.sys [?]
S1 cyyymcxa;cyyymcxa;\??\c:\windows\system32\drivers\cyyymcxa.sys --> c:\windows\system32\drivers\cyyymcxa.sys [?]
S1 daxohfla;daxohfla;\??\c:\windows\system32\drivers\daxohfla.sys --> c:\windows\system32\drivers\daxohfla.sys [?]
S1 dwttwlcm;dwttwlcm;\??\c:\windows\system32\drivers\dwttwlcm.sys --> c:\windows\system32\drivers\dwttwlcm.sys [?]
S1 eluhfmvh;eluhfmvh;\??\c:\windows\system32\drivers\eluhfmvh.sys --> c:\windows\system32\drivers\eluhfmvh.sys [?]
S1 enrwgrwn;enrwgrwn;\??\c:\windows\system32\drivers\enrwgrwn.sys --> c:\windows\system32\drivers\enrwgrwn.sys [?]
S1 envjojgn;envjojgn;\??\c:\windows\system32\drivers\envjojgn.sys --> c:\windows\system32\drivers\envjojgn.sys [?]
S1 eoypwiud;eoypwiud;\??\c:\windows\system32\drivers\eoypwiud.sys --> c:\windows\system32\drivers\eoypwiud.sys [?]
S1 excptvku;excptvku;\??\c:\windows\system32\drivers\excptvku.sys --> c:\windows\system32\drivers\excptvku.sys [?]
S1 fneemrct;fneemrct;\??\c:\windows\system32\drivers\fneemrct.sys --> c:\windows\system32\drivers\fneemrct.sys [?]
S1 fyzzajvd;fyzzajvd;\??\c:\windows\system32\drivers\fyzzajvd.sys --> c:\windows\system32\drivers\fyzzajvd.sys [?]
S1 gcgtyqnz;gcgtyqnz;\??\c:\windows\system32\drivers\gcgtyqnz.sys --> c:\windows\system32\drivers\gcgtyqnz.sys [?]
S1 glgrkqgo;glgrkqgo;\??\c:\windows\system32\drivers\glgrkqgo.sys --> c:\windows\system32\drivers\glgrkqgo.sys [?]
S1 gxkhluqx;gxkhluqx;\??\c:\windows\system32\drivers\gxkhluqx.sys --> c:\windows\system32\drivers\gxkhluqx.sys [?]
S1 hcmqfbkr;hcmqfbkr;\??\c:\windows\system32\drivers\hcmqfbkr.sys --> c:\windows\system32\drivers\hcmqfbkr.sys [?]
S1 hemwhtco;hemwhtco;\??\c:\windows\system32\drivers\hemwhtco.sys --> c:\windows\system32\drivers\hemwhtco.sys [?]
S1 hnflobwb;hnflobwb;\??\c:\windows\system32\drivers\hnflobwb.sys --> c:\windows\system32\drivers\hnflobwb.sys [?]
S1 hsdzegox;hsdzegox;\??\c:\windows\system32\drivers\hsdzegox.sys --> c:\windows\system32\drivers\hsdzegox.sys [?]
S1 htiattnr;htiattnr;\??\c:\windows\system32\drivers\htiattnr.sys --> c:\windows\system32\drivers\htiattnr.sys [?]
S1 htiffrkc;htiffrkc;\??\c:\windows\system32\drivers\htiffrkc.sys --> c:\windows\system32\drivers\htiffrkc.sys [?]
S1 iemmvdae;iemmvdae;\??\c:\windows\system32\drivers\iemmvdae.sys --> c:\windows\system32\drivers\iemmvdae.sys [?]
S1 iigpwxuz;iigpwxuz;\??\c:\windows\system32\drivers\iigpwxuz.sys --> c:\windows\system32\drivers\iigpwxuz.sys [?]
S1 ivmxxizo;ivmxxizo;\??\c:\windows\system32\drivers\ivmxxizo.sys --> c:\windows\system32\drivers\ivmxxizo.sys [?]
S1 jigqmujs;jigqmujs;\??\c:\windows\system32\drivers\jigqmujs.sys --> c:\windows\system32\drivers\jigqmujs.sys [?]
S1 jkxixymb;jkxixymb;\??\c:\windows\system32\drivers\jkxixymb.sys --> c:\windows\system32\drivers\jkxixymb.sys [?]
S1 jodvzvic;jodvzvic;\??\c:\windows\system32\drivers\jodvzvic.sys --> c:\windows\system32\drivers\jodvzvic.sys [?]
S1 jrsbflhy;jrsbflhy;\??\c:\windows\system32\drivers\jrsbflhy.sys --> c:\windows\system32\drivers\jrsbflhy.sys [?]
S1 jwjstrcn;jwjstrcn;\??\c:\windows\system32\drivers\jwjstrcn.sys --> c:\windows\system32\drivers\jwjstrcn.sys [?]
S1 jyaajtlb;jyaajtlb;\??\c:\windows\system32\drivers\jyaajtlb.sys --> c:\windows\system32\drivers\jyaajtlb.sys [?]
S1 kcknzwpd;kcknzwpd;\??\c:\windows\system32\drivers\kcknzwpd.sys --> c:\windows\system32\drivers\kcknzwpd.sys [?]
S1 kdhzzjrp;kdhzzjrp;\??\c:\windows\system32\drivers\kdhzzjrp.sys --> c:\windows\system32\drivers\kdhzzjrp.sys [?]
S1 keagzpqu;keagzpqu;\??\c:\windows\system32\drivers\keagzpqu.sys --> c:\windows\system32\drivers\keagzpqu.sys [?]
S1 kjzewzjg;kjzewzjg;\??\c:\windows\system32\drivers\kjzewzjg.sys --> c:\windows\system32\drivers\kjzewzjg.sys [?]
S1 klikbyhe;klikbyhe;\??\c:\windows\system32\drivers\klikbyhe.sys --> c:\windows\system32\drivers\klikbyhe.sys [?]
S1 kqqjhrxt;kqqjhrxt;\??\c:\windows\system32\drivers\kqqjhrxt.sys --> c:\windows\system32\drivers\kqqjhrxt.sys [?]
S1 ldmhzbfv;ldmhzbfv;\??\c:\windows\system32\drivers\ldmhzbfv.sys --> c:\windows\system32\drivers\ldmhzbfv.sys [?]
S1 leuaoesr;leuaoesr;\??\c:\windows\system32\drivers\leuaoesr.sys --> c:\windows\system32\drivers\leuaoesr.sys [?]
S1 lgpeogpg;lgpeogpg;\??\c:\windows\system32\drivers\lgpeogpg.sys --> c:\windows\system32\drivers\lgpeogpg.sys [?]
S1 lnbhhpva;lnbhhpva;\??\c:\windows\system32\drivers\lnbhhpva.sys --> c:\windows\system32\drivers\lnbhhpva.sys [?]
S1 lnemnyam;lnemnyam;\??\c:\windows\system32\drivers\lnemnyam.sys --> c:\windows\system32\drivers\lnemnyam.sys [?]
S1 lnlshdlv;lnlshdlv;\??\c:\windows\system32\drivers\lnlshdlv.sys --> c:\windows\system32\drivers\lnlshdlv.sys [?]
S1 lotqaikm;lotqaikm;\??\c:\windows\system32\drivers\lotqaikm.sys --> c:\windows\system32\drivers\lotqaikm.sys [?]
S1 lsadewkd;lsadewkd;\??\c:\windows\system32\drivers\lsadewkd.sys --> c:\windows\system32\drivers\lsadewkd.sys [?]
S1 mdosmnaq;mdosmnaq;\??\c:\windows\system32\drivers\mdosmnaq.sys --> c:\windows\system32\drivers\mdosmnaq.sys [?]
S1 mkbxtgce;mkbxtgce;\??\c:\windows\system32\drivers\mkbxtgce.sys --> c:\windows\system32\drivers\mkbxtgce.sys [?]
S1 mkjkywdx;mkjkywdx;\??\c:\windows\system32\drivers\mkjkywdx.sys --> c:\windows\system32\drivers\mkjkywdx.sys [?]
S1 mpbptoxg;mpbptoxg;\??\c:\windows\system32\drivers\mpbptoxg.sys --> c:\windows\system32\drivers\mpbptoxg.sys [?]
S1 MpKsl99f20418;MpKsl99f20418;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{41DFD1F1-65AD-45EC-8545-DC6EDCAB87F4}\MpKsl99f20418.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{41DFD1F1-65AD-45EC-8545-DC6EDCAB87F4}\MpKsl99f20418.sys [?]
S1 mxghughy;mxghughy;\??\c:\windows\system32\drivers\mxghughy.sys --> c:\windows\system32\drivers\mxghughy.sys [?]
S1 nlanccde;nlanccde;\??\c:\windows\system32\drivers\nlanccde.sys --> c:\windows\system32\drivers\nlanccde.sys [?]
S1 npmyxkah;npmyxkah;\??\c:\windows\system32\drivers\npmyxkah.sys --> c:\windows\system32\drivers\npmyxkah.sys [?]
S1 octroxqf;octroxqf;\??\c:\windows\system32\drivers\octroxqf.sys --> c:\windows\system32\drivers\octroxqf.sys [?]
S1 oewprgpm;oewprgpm;\??\c:\windows\system32\drivers\oewprgpm.sys --> c:\windows\system32\drivers\oewprgpm.sys [?]
S1 ofepepqd;ofepepqd;\??\c:\windows\system32\drivers\ofepepqd.sys --> c:\windows\system32\drivers\ofepepqd.sys [?]
S1 pioikkst;pioikkst;\??\c:\windows\system32\drivers\pioikkst.sys --> c:\windows\system32\drivers\pioikkst.sys [?]
S1 pjgooijz;pjgooijz;\??\c:\windows\system32\drivers\pjgooijz.sys --> c:\windows\system32\drivers\pjgooijz.sys [?]
S1 plucvslj;plucvslj;\??\c:\windows\system32\drivers\plucvslj.sys --> c:\windows\system32\drivers\plucvslj.sys [?]
S1 ppefzsvk;ppefzsvk;\??\c:\windows\system32\drivers\ppefzsvk.sys --> c:\windows\system32\drivers\ppefzsvk.sys [?]
S1 ppvopmjx;ppvopmjx;\??\c:\windows\system32\drivers\ppvopmjx.sys --> c:\windows\system32\drivers\ppvopmjx.sys [?]
S1 pseexmir;pseexmir;\??\c:\windows\system32\drivers\pseexmir.sys --> c:\windows\system32\drivers\pseexmir.sys [?]
S1 qfohcaif;qfohcaif;\??\c:\windows\system32\drivers\qfohcaif.sys --> c:\windows\system32\drivers\qfohcaif.sys [?]
S1 qgtuwpbk;qgtuwpbk;\??\c:\windows\system32\drivers\qgtuwpbk.sys --> c:\windows\system32\drivers\qgtuwpbk.sys [?]
S1 qtfqfaua;qtfqfaua;\??\c:\windows\system32\drivers\qtfqfaua.sys --> c:\windows\system32\drivers\qtfqfaua.sys [?]
S1 rkxiudjf;rkxiudjf;\??\c:\windows\system32\drivers\rkxiudjf.sys --> c:\windows\system32\drivers\rkxiudjf.sys [?]
S1 sgpszqvc;sgpszqvc;\??\c:\windows\system32\drivers\sgpszqvc.sys --> c:\windows\system32\drivers\sgpszqvc.sys [?]
S1 svfexkuk;svfexkuk;\??\c:\windows\system32\drivers\svfexkuk.sys --> c:\windows\system32\drivers\svfexkuk.sys [?]
S1 tbwvivmo;tbwvivmo;\??\c:\windows\system32\drivers\tbwvivmo.sys --> c:\windows\system32\drivers\tbwvivmo.sys [?]
S1 tcjsouln;tcjsouln;\??\c:\windows\system32\drivers\tcjsouln.sys --> c:\windows\system32\drivers\tcjsouln.sys [?]
S1 tcxftcir;tcxftcir;\??\c:\windows\system32\drivers\tcxftcir.sys --> c:\windows\system32\drivers\tcxftcir.sys [?]
S1 teoblrbl;teoblrbl;\??\c:\windows\system32\drivers\teoblrbl.sys --> c:\windows\system32\drivers\teoblrbl.sys [?]
S1 tfttfuvx;tfttfuvx;\??\c:\windows\system32\drivers\tfttfuvx.sys --> c:\windows\system32\drivers\tfttfuvx.sys [?]
S1 tidfpoko;tidfpoko;\??\c:\windows\system32\drivers\tidfpoko.sys --> c:\windows\system32\drivers\tidfpoko.sys [?]
S1 toqfbdod;toqfbdod;\??\c:\windows\system32\drivers\toqfbdod.sys --> c:\windows\system32\drivers\toqfbdod.sys [?]
S1 tutpypmd;tutpypmd;\??\c:\windows\system32\drivers\tutpypmd.sys --> c:\windows\system32\drivers\tutpypmd.sys [?]
S1 uajvtaov;uajvtaov;\??\c:\windows\system32\drivers\uajvtaov.sys --> c:\windows\system32\drivers\uajvtaov.sys [?]
S1 uqabyyyb;uqabyyyb;\??\c:\windows\system32\drivers\uqabyyyb.sys --> c:\windows\system32\drivers\uqabyyyb.sys [?]
S1 uxmsljlj;uxmsljlj;\??\c:\windows\system32\drivers\uxmsljlj.sys --> c:\windows\system32\drivers\uxmsljlj.sys [?]
S1 vbetfiky;vbetfiky;\??\c:\windows\system32\drivers\vbetfiky.sys --> c:\windows\system32\drivers\vbetfiky.sys [?]
S1 vczqsput;vczqsput;\??\c:\windows\system32\drivers\vczqsput.sys --> c:\windows\system32\drivers\vczqsput.sys [?]
S1 vdsyuxmu;vdsyuxmu;\??\c:\windows\system32\drivers\vdsyuxmu.sys --> c:\windows\system32\drivers\vdsyuxmu.sys [?]
S1 vfseajww;vfseajww;\??\c:\windows\system32\drivers\vfseajww.sys --> c:\windows\system32\drivers\vfseajww.sys [?]
S1 vrmxrfzv;vrmxrfzv;\??\c:\windows\system32\drivers\vrmxrfzv.sys --> c:\windows\system32\drivers\vrmxrfzv.sys [?]
S1 vrnrdnbt;vrnrdnbt;\??\c:\windows\system32\drivers\vrnrdnbt.sys --> c:\windows\system32\drivers\vrnrdnbt.sys [?]
S1 vspqeuet;vspqeuet;\??\c:\windows\system32\drivers\vspqeuet.sys --> c:\windows\system32\drivers\vspqeuet.sys [?]
S1 wbcksbzu;wbcksbzu;\??\c:\windows\system32\drivers\wbcksbzu.sys --> c:\windows\system32\drivers\wbcksbzu.sys [?]
S1 weeqjijd;weeqjijd;\??\c:\windows\system32\drivers\weeqjijd.sys --> c:\windows\system32\drivers\weeqjijd.sys [?]
S1 wgppprhv;wgppprhv;\??\c:\windows\system32\drivers\wgppprhv.sys --> c:\windows\system32\drivers\wgppprhv.sys [?]
S1 wjjinjiw;wjjinjiw;\??\c:\windows\system32\drivers\wjjinjiw.sys --> c:\windows\system32\drivers\wjjinjiw.sys [?]
S1 wkaoilby;wkaoilby;\??\c:\windows\system32\drivers\wkaoilby.sys --> c:\windows\system32\drivers\wkaoilby.sys [?]
S1 wvcrotwx;wvcrotwx;\??\c:\windows\system32\drivers\wvcrotwx.sys --> c:\windows\system32\drivers\wvcrotwx.sys [?]
S1 xdtmlija;xdtmlija;\??\c:\windows\system32\drivers\xdtmlija.sys --> c:\windows\system32\drivers\xdtmlija.sys [?]
S1 xhlsrnsk;xhlsrnsk;\??\c:\windows\system32\drivers\xhlsrnsk.sys --> c:\windows\system32\drivers\xhlsrnsk.sys [?]
S1 xkjwarsp;xkjwarsp;\??\c:\windows\system32\drivers\xkjwarsp.sys --> c:\windows\system32\drivers\xkjwarsp.sys [?]
S1 xmaiqrfy;xmaiqrfy;\??\c:\windows\system32\drivers\xmaiqrfy.sys --> c:\windows\system32\drivers\xmaiqrfy.sys [?]
S1 xqljlier;xqljlier;\??\c:\windows\system32\drivers\xqljlier.sys --> c:\windows\system32\drivers\xqljlier.sys [?]
S1 xumzmlmm;xumzmlmm;\??\c:\windows\system32\drivers\xumzmlmm.sys --> c:\windows\system32\drivers\xumzmlmm.sys [?]
S1 xvrqezgj;xvrqezgj;\??\c:\windows\system32\drivers\xvrqezgj.sys --> c:\windows\system32\drivers\xvrqezgj.sys [?]
S1 xvtsyrth;xvtsyrth;\??\c:\windows\system32\drivers\xvtsyrth.sys --> c:\windows\system32\drivers\xvtsyrth.sys [?]
S1 xwcdgmtg;xwcdgmtg;\??\c:\windows\system32\drivers\xwcdgmtg.sys --> c:\windows\system32\drivers\xwcdgmtg.sys [?]
S1 xxrjdfft;xxrjdfft;\??\c:\windows\system32\drivers\xxrjdfft.sys --> c:\windows\system32\drivers\xxrjdfft.sys [?]
S1 zazgskap;zazgskap;\??\c:\windows\system32\drivers\zazgskap.sys --> c:\windows\system32\drivers\zazgskap.sys [?]
S1 zdcxqdaw;zdcxqdaw;\??\c:\windows\system32\drivers\zdcxqdaw.sys --> c:\windows\system32\drivers\zdcxqdaw.sys [?]
S1 zgunwcaw;zgunwcaw;\??\c:\windows\system32\drivers\zgunwcaw.sys --> c:\windows\system32\drivers\zgunwcaw.sys [?]
S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [1/20/2009 3:22 PM 30192]
S3 hitmanpro35;Hitman Pro 3.5 Support Driver;c:\windows\system32\drivers\hitmanpro35.sys [4/8/2010 1:30 PM 15944]
S3 QCFilterGAD;Gobi AD USB Composite Device Filter Driver;c:\windows\system32\drivers\qcfilterGAD.sys [7/24/2009 4:08 AM 5248]
S3 qcusbnetGAD;Gobi AD USB-NDIS miniport;c:\windows\system32\drivers\qcusbnetGAD.sys [7/24/2009 4:08 AM 115200]
S3 qcusbserGAD;Gobi AD USB Device for Legacy Serial Communication;c:\windows\system32\drivers\qcusbserGAD.sys [2/17/2009 12:42 AM 103680]
S3 RkPavproc1;RkPavproc1;\??\c:\windows\system32\drivers\RkPavproc1.sys --> c:\windows\system32\drivers\RkPavproc1.sys [?]
S3 uvnc_service;uvnc_service;c:\documents and settings\Sampson\Local Settings\Application Data\CrossLoop\winvnc.exe [2/22/2010 10:11 AM 1590216]
.
Contents of the 'Scheduled Tasks' folder

2010-04-17 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-24 15:43]

2010-04-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-776817393-1407352519-815249355-1006Core.job
- c:\documents and settings\Sampson\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-16 16:05]

2010-04-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-776817393-1407352519-815249355-1006UA.job
- c:\documents and settings\Sampson\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-16 16:05]

2010-04-17 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Essentials\MpCmdRun.exe [2009-12-09 23:02]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aoa150
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aoa150
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = <local>
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
FF - ProfilePath - c:\documents and settings\Sampson\Application Data\Mozilla\Firefox\Profiles\l85e7cm8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.gmail.com
FF - plugin: c:\documents and settings\Sampson\Application Data\Move Networks\plugins\npqmp071505000010.dll
FF - plugin: c:\documents and settings\Sampson\Application Data\Move Networks\plugins\npqmp071505000011.dll
FF - plugin: c:\documents and settings\Sampson\Application Data\Mozilla\Firefox\Profiles\l85e7cm8.default\extensions\justintvpublisher@justin.tv\platform\WINNT_x86-msvc\plugins\npjustintvpublish.dll
FF - plugin: c:\documents and settings\Sampson\Application Data\Mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\Sampson\Application Data\Mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\Sampson\Local Settings\Application Data\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1908.5032\npCIDetect14.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "ui.use_native_colors ", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "ui.use_native_popup_windows ", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.enable_click_image_resizing ", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "accessibility.browsewithcaret_shortcut.enabled ", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "javascript.options.mem.high_water_mark ", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "javascript.options.mem.gc_frequency ", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "network.auth.force-generic-ntlm ", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "svg.smil.enabled ", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "ui.trackpoint_hack.enabled ", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.debug ", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.agedWeight ", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.bucketSize ", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.maxTimeGroupings ", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.timeGroupingSize ", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.boundaryWeight ", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "browser.formfill.prefixWeight ", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref( "html5.enable ", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref( "security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref ", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref( "security.ssl.renego_unrestricted_hosts ", " ");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref( "security.ssl.treat_unsafe_negotiation_as_broken ", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref( "security.ssl.require_safe_negotiation ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref( "app.update.download.backgroundInterval ", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref( "app.update.url.manual ", "http://www.firefox.com ");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref( "browser.search.param.yahoo-fr-ja ", "mozff ");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name ", "chrome://browser/locale/browser.properties ");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description ", "chrome://browser/locale/browser.properties ");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "xpinstall.whitelist.add ", "addons.mozilla.org ");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "xpinstall.whitelist.add.36 ", "getpersonas.com ");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "lightweightThemes.update.enabled ", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "browser.allTabs.previews ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "plugins.hide_infobar_for_outdated_plugin ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "plugins.update.notifyUser ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "toolbar.customization.usesheet ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.enable ", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.max ", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref( "browser.taskbar.previews.cachetime ", 20);
.
- - - - ORPHANS REMOVED - - - -

MSConfigStartUp-QuickTime Task - c:\program files\QuickTime\QTTask.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-16 22:00
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x8699CAC8]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xf752bf28
\Driver\ACPI -> ACPI.sys @ 0xf749ecb8
\Driver\atapi -> atapi.sys @ 0xf7456852
IoDeviceObjectType -> DeleteProcedure -> ntoskrnl.exe @ 0x805e710a
SecurityProcedure -> ntoskrnl.exe @ 0x805df529
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntoskrnl.exe @ 0x805e710a
SecurityProcedure -> ntoskrnl.exe @ 0x805df529
NDIS: Realtek RTL8102E/RTL8103E Family PCI-E Fast Ethernet NIC -> SendCompleteHandler -> NDIS.sys @ 0xf7362bb0
PacketIndicateHandler -> NDIS.sys @ 0xf7351a0d
SendHandler -> NDIS.sys @ 0xf7365b40
user & kernel MBR OK

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(664)
c:\windows\system32\WININET.dll

- - - - - - - > 'lsass.exe'(724)
c:\windows\system32\WININET.dll

- - - - - - - > 'explorer.exe'(3856)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Microsoft Security Essentials\MsMpEng.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\igfxsrvc.exe
.
**************************************************************************
.
Completion time: 2010-04-16 22:06:33 - machine was rebooted
ComboFix-quarantined-files.txt 2010-04-17 02:06
ComboFix2.txt 2010-04-16 21:23
ComboFix3.txt 2010-04-16 15:07
ComboFix4.txt 2010-04-09 22:03

Pre-Run: 134,970,679,296 bytes free
Post-Run: 134,970,302,464 bytes free

- - End Of File - - FCD86E359170AC04E0B791B196D1DC55

 

Sorry, I thought we had already run hijackthis.

Download HijackThis Executable from here. Save it to your desktop.
Start HJT & press the "Do a system scan and save a log file" button. When the scan is finished a window will pop up giving you the option of where to save it. Save it to desktop where it is easy to access. Open the log file and then go to the format Tab and make sure that wordwrap is unchecked. Copy the entire contents of the file & paste it into the body of your post. DO NOT FIX ANYTHING YET. Most of what is there is necessary for the running of your system.

==

Please use the Internet Explorer browser (or FireFox with IETab), and do an online scan with [color= "blue"]Kaspersky Online Scanner[/color]

Note: If you have used this particular scanner before, you MAY HAVE TO UNINSTALL the program through Add/Remove Programs before downloading the new ActiveX component

Click Yes, when prompted to install its ActiveX component.
(Note.. for Internet [color= "#3333FF"]Explorer 7[/color] users: If at any time you have trouble with the "Accept" button of the license, click on the "Zoom" tool located at the bottom right of the IE window and set the zoom to 75 %. Once the license has been accepted, reset to 100%.)
The program launches and downloads the latest definition files.

• Once the files are downloaded click on Next
• Click on Scan Settings and configure as follows:
  • Scan using the following Anti-Virus database:
    • [color= "#6666CC"]Extended[/color]
  • Scan Options:
    • [color= "#6666CC"]Scan Archives[/color]
    • [color= "#6666CC"]Scan Mail Bases[/color]
• Click OK and, under select a target to scan, select My Computer

When the scan is done, in the [color= "Navy"]Scan is completed [/color]window (below), any infection is displayed.
There is no option to clean/disinfect, however, we need to analyze the information on the report.

To obtain the report:
Click on: Save Report As (above - red blinking arrow)
Next, in the [color= "Navy"]Save as [/color]prompt, [color= "navy"]Save in[/color] area, select: Desktop
In the [color= "navy"]File name[/color] area, use KScan, or something similar
In [color= "navy"]Save as type[/color], click the drop arrow and select: Text file [*.txt]
Then, click: Save
Please post the [color= "Navy"]Kaspersky Online Scanner Report [/color]in your reply.

 

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:21:37 PM, on 4/16/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17023)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Documents and Settings\Sampson\Local Settings\Application Data\CrossLoop\CrossLoopService.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\QUALCOMM\QDLService\QDLService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Sampson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Sampson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sampson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sampson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sampson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sampson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sampson\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aoa150
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0709&m=aoa150
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [BlackBerryAutoUpdate] C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe /background
O4 - HKLM\..\Run: [HitmanPro35] "C:\Program Files\Hitman Pro 3.5\HitmanPro35.exe" /scan:boot
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe "
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Sampson\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CrossLoop Service (CrossLoopService) - CrossLoop Inc - C:\Documents and Settings\Sampson\Local Settings\Application Data\CrossLoop\CrossLoopService.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Qualcomm Gobi Download Service (QDLService) - QUALCOMM, Inc. - C:\QUALCOMM\QDLService\QDLService.exe
O23 - Service: uvnc_service - UltraVNC - C:\Documents and Settings\Sampson\Local Settings\Application Data\CrossLoop\winvnc.exe

--
End of file - 7370 bytes

 

How's the Kaspersky scan going?