Have I got a virus????

Steve1982

Thanks for that I will give it a go when I get home later, can I ask how far you think it may be from being sorted? Could this explain why I am having problems with my internet connection, i.e. it works when I first turn on but stops working after a few minutes, or would that be a different issue?

Cool Avatar by the way, this weekends specials should be interesting, hopefully better than the last series!

aliEnRIK

I dont think theyll have anything to do with your internet issues no

Run combofix as posted in post #51

then run LSP FIX

Download HostsXpert
http://www.softpedia.com/progDownload/Hoster-Download-27041.html
and then follow the below steps.

* Unzip HostsXpert.zip
* It will create a folder named HostsXpert in whatever folder you extract it to.
* Run HostsXpert.exe by double clicking on it.
* click the Make Writeable? button.
* click Restore Microsoft's Hosts File and then click OK.
* Click the X to exit the program


Download CCLEANER (Make sure you click 'DOWNLOAD LATEST VERSION' ~ make sure YAHOO TOOLBAR is unticked on installation)
http://www.filehippo.com/download_ccleaner/
Run the CLEANER scan (UNTICK 'cookies')
Then run the REGISTRY scan (Backup the registry when it asks)


reboot

Download GLARY UTILITIES (Make sure you click 'DOWNLOAD NOW' ~ UNTICK the ASK toolbar on installation)
http://www.download.com/Glary-Utilities/3000-2094_4-10508531.html
Run the ONE CLICK scan

and see how it is then

aliEnRIK

Steve1982 wrote: »

Cool Avatar by the way, this weekends specials should be interesting, hopefully better than the last series!

Ive just been watching all of them from series 1 through to 6 (Currently)

Absolute classic one I watched last night was the one where theyre gunslingers fighting a computer virus. Probably the best one they ever made

Steve1982

Combo Fix scan results:

ComboFix 09-04-04.01 - Steve M 2009-04-07 19:39:53.5 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1015.576 [GMT 1:00]
Running from: c:\documents and settings\Steve M\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Steve M\Desktop\CFscript.txt
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated)
FW: ZoneAlarm Firewall *enabled*
* Created a new restore point

FILE ::
c:\documents and settings\Steve M\Desktop\Software\mp3splitter.exe
c:\documents and settings\Steve M\My Documents\Old Stuff\BSINSTALL.exe
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Steve M\Desktop\Software\mp3splitter.exe
c:\documents and settings\Steve M\My Documents\Old Stuff\BSINSTALL.exe

.
((((((((((((((((((((((((( Files Created from 2009-03-07 to 2009-04-07 )))))))))))))))))))))))))))))))
.

2009-04-06 18:48 . 2009-04-06 18:48 410,984 --a

---

c:\windows\system32\deploytk.dll
2009-04-06 18:48 . 2009-04-06 18:48 73,728 --a

---

c:\windows\system32\javacpl.cpl
2009-03-31 20:34 . 2009-03-31 22:40 <DIR> d

---

c:\documents and settings\Steve M\DoctorWeb
2009-03-31 18:51 . 2009-03-31 18:54 <DIR> d

---

C:\CF.exe
2009-03-29 21:36 . 2009-03-29 21:36 <DIR> d

---

c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2009-03-29 21:25 . 2009-03-29 21:25 <DIR> d

---

c:\documents and settings\Steve M\Application Data\Malwarebytes
2009-03-29 19:48 . 2009-03-29 19:48 <DIR> d

---

c:\program files\SUPERAntiSpyware
2009-03-29 19:48 . 2009-03-29 19:48 <DIR> d

---

c:\documents and settings\Steve M\Application Data\SUPERAntiSpyware.com
2009-03-28 16:36 . 2009-03-28 16:36 <DIR> d

---

c:\program files\Trend Micro
2009-03-27 14:03 . 2009-03-26 16:49 38,496 --a

---

c:\windows\system32\drivers\mbamswissarmy.sys
2009-03-27 14:03 . 2009-03-26 16:49 15,504 --a

---

c:\windows\system32\drivers\mbam.sys
2009-03-27 14:01 . 2009-03-27 14:01 <DIR> d

---

c:\program files\CCleaner
2009-03-27 14:01 . 2009-03-27 14:01 <DIR> d--h-c--- c:\documents and settings\All Users\Application Data\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
2009-03-27 13:58 . 2009-03-27 13:58 <DIR> d

---

c:\documents and settings\All Users\Application Data\Malwarebytes
2009-03-27 13:53 . 2004-11-03 00:00 <DIR> d

---

c:\documents and settings\Administrator\WINDOWS
2009-03-27 13:53 . 2004-11-03 00:00 <DIR> d---s---- c:\documents and settings\Administrator\UserData
2009-03-27 13:53 . 2009-03-27 14:02 <DIR> d

---

c:\documents and settings\Administrator
2009-03-27 13:13 . 2009-03-29 22:12 <DIR> d

---

c:\program files\Malwarebytes' Anti-Malware
2009-03-26 04:01 . 2009-03-26 04:01 18 --a

---

C:\SYSREST
2009-03-10 20:24 . 2008-04-17 14:12 107,368 --a

---

c:\windows\system32\GEARAspi.dll
2009-03-10 20:24 . 2008-04-17 14:12 15,464 --a

---

c:\windows\system32\drivers\GEARAspiWDM.sys
2009-03-10 20:23 . 2009-03-10 20:24 <DIR> d

---

c:\program files\iTunes
2009-03-10 20:23 . 2009-03-10 20:23 <DIR> d

---

c:\program files\iPod
2009-03-10 20:23 . 2009-03-10 20:23 <DIR> d

---

c:\program files\Bonjour
2009-03-10 20:23 . 2009-03-10 20:24 <DIR> d

---

c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2009-03-10 20:22 . 2009-03-10 20:22 54,156 --ah

---

c:\windows\QTFont.qfn
2009-03-10 20:22 . 2009-03-10 20:22 1,409 --a

---

c:\windows\QTFont.for
2009-03-10 20:21 . 2009-03-10 20:23 <DIR> d

---

c:\program files\Common Files\Apple
2009-03-10 20:21 . 2009-03-10 20:21 <DIR> d

---

c:\program files\Apple Software Update
2009-03-10 20:21 . 2009-03-10 20:21 <DIR> d

---

c:\documents and settings\All Users\Application Data\Apple
2009-03-09 22:44 . 2008-11-13 16:18 1,221,008 --a

---

c:\windows\system32\zpeng25.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-06 17:48

---

d

---

w c:\program files\Java
2009-03-30 22:05 13,594,753 -c--a-w c:\windows\Internet Logs\tvDebug.zip
2009-03-29 19:04 3,231,744 ----a-w c:\windows\Internet Logs\xDB10.tmp
2009-03-29 19:04 22,016 ----a-w c:\windows\Internet Logs\xDBF.tmp
2009-03-29 18:51

---

d

---

w c:\documents and settings\All Users\Application Data\avg8
2009-03-29 18:02 3,231,232 ----a-w c:\windows\Internet Logs\xDBE.tmp
2009-03-29 18:02 13,824 ----a-w c:\windows\Internet Logs\xDBD.tmp
2009-03-28 19:00 13,824 ----a-w c:\windows\Internet Logs\xDBC.tmp
2009-03-28 18:32

---

d

---

w c:\documents and settings\Steve M\Application Data\Free Download Manager
2009-03-28 18:22 3,230,720 ----a-w c:\windows\Internet Logs\xDBB.tmp
2009-03-28 18:22 14,336 ----a-w c:\windows\Internet Logs\xDBA.tmp
2009-03-28 16:58 3,230,720 ----a-w c:\windows\Internet Logs\xDB9.tmp
2009-03-28 16:58 14,336 ----a-w c:\windows\Internet Logs\xDB8.tmp
2009-03-28 15:39 3,230,720 ----a-w c:\windows\Internet Logs\xDB7.tmp
2009-03-28 15:39 17,920 ----a-w c:\windows\Internet Logs\xDB5.tmp
2009-03-28 15:34

---

d

---

w c:\program files\Steam
2009-03-28 15:27 3,230,208 ----a-w c:\windows\Internet Logs\xDB6.tmp
2009-03-28 15:27 12,800 ----a-w c:\windows\Internet Logs\xDB4.tmp
2009-03-27 12:53 3,230,208 ----a-w c:\windows\Internet Logs\xDB3.tmp
2009-03-27 12:53 129,024 ----a-w c:\windows\Internet Logs\xDB2.tmp
2009-03-27 12:02 2,805,248 ----a-w c:\windows\Internet Logs\xDB1.tmp
2009-03-10 19:24

---

d

---

w c:\documents and settings\Steve M\Application Data\Apple Computer
2009-03-10 19:23

---

d

---

w c:\program files\QuickTime
2009-03-10 19:23

---

d

---

w c:\documents and settings\All Users\Application Data\Apple Computer
2009-03-03 18:16 325,128 ----a-w c:\windows\system32\drivers\avgldx86.sys
2009-03-03 18:16 107,272 ----a-w c:\windows\system32\drivers\avgtdix.sys
2009-03-03 18:16 10,520 ----a-w c:\windows\system32\avgrsstx.dll
2009-02-22 19:02

---

d

---

w c:\documents and settings\All Users\Application Data\DVD Shrink
2009-02-09 11:13 1,846,784 ----a-w c:\windows\system32\win32k.sys
2008-09-16 19:08 47,280 -c--a-w c:\documents and settings\Steve M\Application Data\GDIPFONTCACHEV1.DAT
2007-07-25 23:04 42,496 -csha-w c:\program files\Thumbs.db
2007-03-19 23:53 502 -c--a-w c:\documents and settings\Steve M\Application Data\wklnhst.dat
2006-05-03 03:48 181 -c--a-w c:\program files\hpsfx.ini
2008-09-14 15:19 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008091420080915\index.dat
.

((((((((((((((((((((((((((((( SnapShot@2009-03-29_21.22.48.21 )))))))))))))))))))))))))))))))))))))))))
.
- 2005-08-26 14:55:46 49,248 -c--a-w c:\windows\system32\java.exe
+ 2009-04-06 17:48:03 144,792 ----a-w c:\windows\system32\java.exe
- 2005-08-26 14:55:58 49,250 -c--a-w c:\windows\system32\javaw.exe
+ 2009-04-06 17:48:03 144,792 ----a-w c:\windows\system32\javaw.exe
- 2005-08-26 17:14:46 127,078 -c--a-w c:\windows\system32\javaws.exe
+ 2009-04-06 17:48:03 148,888 ----a-w c:\windows\system32\javaws.exe
+ 2009-04-07 18:30:27 16,384 ----atw c:\windows\temp\Perflib_Perfdata_450.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\WCESCOMM.EXE" [2004-02-03 401491]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2009-03-23 1830128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSConfig"="c:\windows\pchealth\helpctr\Binaries\MSCONFIG.EXE" [2008-04-14 169984]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2008-11-13 981904]
"snpstd3"="c:\windows\vsnpstd3.exe" [2005-09-05 339968]
"RemoteControl"="c:\windows\system32\rmctrl.exe" [2000-10-16 32768]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2004-06-06 118784]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-04-06 185896]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-04-06 148888]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-12-22 12:05 356352 c:\program files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-03-03 19:16 10520 c:\windows\system32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"MSACM.CEGSM"= mobilev.acm
"VIDC.ACDV"= ACDV.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0smrgdf c:\program files\iolo\System Mechanic 6

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Photosmart Premier Fast Start.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HP Photosmart Premier Fast Start.lnk
backup=c:\windows\pss\HP Photosmart Premier Fast Start.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG8_TRAY]
--a

---

2009-03-03 19:16 1601304 c:\progra~1\AVG\AVG8\avgtray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]

---

2004-12-02 18:23 102400 c:\program files\Creative\MediaSource\Detector\CTDetect.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
--a

---

2008-04-14 01:12 15360 c:\windows\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H/PC Connection Agent]
--a

---

2004-02-03 14:42 401491 c:\program files\Microsoft ActiveSync\wcescomm.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPWRTOOLBOX]
--a

---

2006-02-28 13:16 344064 c:\program files\Hewlett-Packard\hp deskjet 460 series\Toolbox\HPWRTBX.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a

---

2009-01-06 14:06 290088 c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a

---

2001-07-09 11:50 155648 c:\windows\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher]
--a

---

2007-09-07 14:44 3100672 c:\program files\Nokia\Nokia Software Launcher\NSLauncher.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a

---

2009-01-05 17:18 413696 c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSystemAnalyzer]
--a

---

2006-12-20 12:38 557056 c:\program files\iolo\System Mechanic 6\SMSystemAnalyzer.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
--a

---

2008-12-15 00:15 1410296 c:\program files\Steam\steam.exe

Steve1982

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
-ra

---

2007-10-14 19:09 103712 c:\program files\Macrogaming\SweetIM\SweetIM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a

---

2008-04-06 13:48 185896 c:\program files\Common Files\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]

---

2006-10-18 21:05 204288 c:\program files\Windows Media Player\wmpnscfg.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\High Definition Audio Property Page Shortcut]
--a

---

2004-03-17 16:10 61952 c:\windows\system32\HDAudPropShortcut.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"avg8wd"=2 (0x2)
"avg8emc"=2 (0x2)
"W32Time"=2 (0x2)
"VSS"=3 (0x3)
"vsmon"=2 (0x2)
"usnjsvc"=3 (0x3)
"SwPrv"=3 (0x3)
"stisvc"=2 (0x2)
"SSDPSRV"=3 (0x3)
"ServiceLayer"=3 (0x3)
"SamSs"=2 (0x2)
"RDSessMgr"=3 (0x3)
"ImapiService"=3 (0x3)
"FontCache3.0.0.0"=3 (0x3)
"AudioSrv"=2 (0x2)
"ALG"=3 (0x3)

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\StubInstaller.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"c:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgemc.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\Steam\\SteamApps\\common\\football manager 2009\\fm.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=

R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-07-02 325128]
R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2008-07-02 107272]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [2009-03-23 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2009-03-23 72944]
R2 Belkin 54g Wireless USB Network Adapter Service;Belkin 54g Wireless USB Network Adapter;c:\program files\Belkin\Belkin Wireless Network Utility\WLService.exe [2005-10-07 49152]
R3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [2009-03-23 7408]
S3 bkn50USB;Belkin 54Mbps Wireless USB Network Adapter;c:\windows\system32\drivers\rt2500usb.sys [2005-10-07 140416]
S4 avg8emc;AVG8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [2008-07-02 903960]
S4 avg8wd;AVG8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [2008-07-02 298264]
.
Contents of the 'Scheduled Tasks' folder

2009-03-10 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 13:34]
.
.

---

Supplementary Scan

---

.
uStart Page = hxxp://www.bbc.co.uk/sport
uInternet Settings,ProxyOverride = *.local;<local>
IE: Download all with Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm
IE: Download selected with Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm
IE: Download video with Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Download with Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office10\EXCEL.EXE/3000
.

**************************************************************************

catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-07 19:41:08
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.

---

DLLs Loaded Under Running Processes

---

- - - - - - - > 'winlogon.exe'(740)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
.
Completion time: 2009-04-07 19:42:34
ComboFix-quarantined-files.txt 2009-04-07 18:42:32
ComboFix2.txt 2009-03-31 17:54:22
ComboFix3.txt 2009-03-31 17:14:27
ComboFix4.txt 2009-03-30 22:29:06
ComboFix5.txt 2009-04-07 18:38:35

Pre-Run: 176,490,405,888 bytes free
Post-Run: 176,596,582,400 bytes free

WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

258 --- E O F --- 2009-03-29 22:03:32

Steve1982

CCleaner Scan

CLEANING COMPLETE - (1.798 secs)

---

15.6MB removed.

---

Details of files deleted

---

IE Temporary Internet Files (604 files) 7.52MB
C:\Documents and Settings\Steve M\Local Settings\History\History.IE5\MSHist012009033020090406\index.dat 16.00KB
C:\Documents and Settings\Steve M\Local Settings\History\History.IE5\MSHist012009040620090407\index.dat 32.00KB
Marked for deletion: C:\Documents and Settings\Steve M\Local Settings\Temporary Internet Files\Content.IE5\index.dat
Marked for deletion: C:\Documents and Settings\Steve M\Cookies\index.dat
Marked for deletion: C:\Documents and Settings\Steve M\Local Settings\History\History.IE5\index.dat
Marked for deletion: C:\Documents and Settings\Steve M\Local Settings\History\History.IE5\MSHist012009040720090408\index.dat
C:\Documents and Settings\Steve M\Recent\anti spyware scan.lnk 302 bytes
C:\Documents and Settings\Steve M\Recent\CFscript.lnk 515 bytes
C:\Documents and Settings\Steve M\Recent\Have I got a virus - Page 3 - MoneySavingExpert_com Forums.lnk 826 bytes
C:\Documents and Settings\Steve M\Recent\HostsXpert.lnk 273 bytes
C:\Documents and Settings\Steve M\Recent\Kasoersky online scan.lnk 326 bytes
C:\Documents and Settings\Steve M\Recent\Removable Disk (F).lnk 179 bytes
C:\WINDOWS\MiniDump\Mini033109-01.dmp 88.00KB
C:\WINDOWS\MiniDump\Mini040309-01.dmp 88.00KB
C:\WINDOWS\MiniDump\Mini040409-01.dmp 88.00KB
C:\WINDOWS\system32\wbem\Logs\FrameWork.log 3.34KB
C:\WINDOWS\system32\wbem\Logs\wbemcore.log 10.07KB
C:\WINDOWS\system32\wbem\Logs\wbemess.log 23.72KB
C:\WINDOWS\system32\wbem\Logs\wmiprov.log 536 bytes
C:\WINDOWS\0.log 0 bytes
C:\WINDOWS\setupapi.log 609 bytes
C:\Documents and Settings\Steve M\Application Data\Microsoft\Office\Recent\anti spyware scan.LNK 294 bytes
C:\Documents and Settings\Steve M\Application Data\Microsoft\Office\Recent\index.dat 69 bytes
C:\Documents and Settings\Steve M\Application Data\Microsoft\Office\Recent\Removable Disk (F).LNK 179 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\11\2b98eb8b-2f63e362 20.77KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\11\2b98eb8b-2f63e362.idx 12.12KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\14\757e808e-10018bf2 0.21MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\14\757e808e-10018bf2.idx 14.11KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\15\48d7188f-669ffd54 341 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\15\48d7188f-669ffd54.idx 326 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\15\4e09eacf-4f59e6db 12.43KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\15\4e09eacf-4f59e6db-n\Decora-D3D.dll 23.50KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\15\4e09eacf-4f59e6db.idx 10.50KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\16\48ee1e90-144f5850 0.12MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\16\48ee1e90-144f5850.idx 18.72KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\16\f246190-2524eccb 567 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\16\f246190-2524eccb.idx 462 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\20\167405d4-7d19cc3d 0.34MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\20\167405d4-7d19cc3d.idx 52.41KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\24\6162fb58-22f2e28d-1.1.1- 1.51KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\24\6162fb58-22f2e28d-1.1.1-.idx 493 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\24\96cee98-13c82df0 345 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\24\96cee98-13c82df0.idx 326 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\26\2d280e1a-7fdb4787-1.1.1a- 3.22KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\26\2d280e1a-7fdb4787-1.1.1a-.idx 493 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\27\3a3fec5b-63701499 253 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\27\3a3fec5b-63701499.idx 326 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\28\1d17715c-4e84c579 52.62KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\28\1d17715c-4e84c579.idx 14.16KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\28\45854e1c-56bc2373 1.53KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\28\45854e1c-56bc2373.idx 511 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\32\3c877e0-5955f5f7 4.88KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\32\3c877e0-5955f5f7.idx 144 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\32\6c34baa0-2d892bc9 4.94KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\32\6c34baa0-2d892bc9.idx 461 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\33\258cea61-71006a8b 0.52MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\33\258cea61-71006a8b-n\jmc.dll 0.48MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\33\258cea61-71006a8b-n\msvcp71.dll 0.48MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\33\258cea61-71006a8b-n\msvcr71.dll 0.33MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\33\258cea61-71006a8b.idx 10.63KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\39\50fd5427-12c519de-1.1.1- 1,006 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\39\50fd5427-12c519de-1.1.1-.idx 490 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\4\5ae66d44-6c0b19fa 75.39KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\4\5ae66d44-6c0b19fa.idx 17.35KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\45\4f710eed-7980c70b 5.46KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\45\4f710eed-7980c70b-n\gluegen-rt.dll 20.00KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\45\4f710eed-7980c70b.idx 10.51KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\48\26760070-3f9c5130-1.0b06a- 3.31KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\48\26760070-3f9c5130-1.0b06a-.idx 501 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\48\6ae40e30-56dcaeed 68.19KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\48\6ae40e30-56dcaeed.idx 17.73KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\50\5b902232-7a9740c8 20.27KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\50\5b902232-7a9740c8-n\Decora-SSE.dll 56.00KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\50\5b902232-7a9740c8.idx 10.51KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\55\28db50f7-3e686003 468 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\55\28db50f7-3e686003.idx 326 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\59\1ea183bb-400a1939 0.90MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\59\1ea183bb-400a1939.idx 72.42KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\6\306e1546-430e6d01 355 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\6\306e1546-430e6d01.idx 326 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-528fec50 59.82KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-528fec50-n\jogl.dll 0.30MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-528fec50-n\jogl_awt.dll 20.00KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-528fec50-n\jogl_cg.dll 0.11MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\62\6baea4fe-528fec50.idx 10.64KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\7\767ab947-5464fde8 2.63MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\7\767ab947-5464fde8.idx 0.36MB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\6.0\lastAccessed 1 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\javavm.class-1540b3a5-6b22b953.class 4.88KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\javavm.class-1540b3a5-6b22b953.idx 280 bytes
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\kos-main.jar-a28c4e6-2dacb64d.idx 11.99KB
C:\Documents and Settings\Steve M\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\kos-main.jar-a28c4e6-2dacb64d.zip 0.21MB
C:\Documents and Settings\Steve M\Application Data\Macromedia\Flash Player\#SharedObjects\GXT3NSRH\video.google.com\googleplayer.swf\mediaPlayerUserSettings.sol 94 bytes
C:\Documents and Settings\Steve M\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#video.google.com\settings.sol 86 bytes
C:\Documents and Settings\Steve M\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol 439 bytes

Steve1982

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 04/07/2009 at 10:17 PM

Application Version : 4.26.1000

Core Rules Database Version : 3833
Trace Rules Database Version: 1789

Scan type : Complete Scan
Total Scan Time : 00:46:32

Memory items scanned : 385
Memory threats detected : 0
Registry items scanned : 7667
Registry threats detected : 0
File items scanned : 24214
File threats detected : 11

Adware.Tracking Cookie
C:\Documents and Settings\Steve M\Cookies\steve_madden@247realmedia[1].txt
C:\Documents and Settings\Steve M\Cookies\steve_madden@tribalfusion[2].txt
C:\Documents and Settings\Steve M\Cookies\steve_madden@zedo[1].txt
C:\Documents and Settings\Steve M\Cookies\steve_madden@casalemedia[2].txt
C:\Documents and Settings\Steve M\Cookies\steve_madden@specificclick[2].txt
C:\Documents and Settings\Steve M\Cookies\steve_madden@serving-sys[2].txt
C:\Documents and Settings\Steve M\Cookies\steve_madden@mediaservices.myspace[1].txt
C:\Documents and Settings\Steve M\Cookies\steve_madden@msnportal.112.2o7[1].txt
C:\Documents and Settings\Steve M\Cookies\steve_madden@bs.serving-sys[1].txt

Trojan.Agent/Gen-RogueDropper
C:\PROGRAM FILES\TREND MICRO\HIJACKTHIS\BACKUPS\BACKUP-20090328-165252-278.DLL

Adware.SysGuard/FakeAlert
C:\SYSTEM VOLUME INFORMATION\_RESTORE{094ED2EF-B4C2-48FA-B681-1FACB529B5DF}\RP0\A0000018.EXE

Steve1982

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:30:47, on 07/04/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG8\avgrsx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Belkin\Belkin Wireless Network Utility\WLService.exe
C:\Program Files\Belkin\Belkin Wireless Network Utility\WLanCfgG.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\vsnpstd3.exe
C:\WINDOWS\system32\rmctrl.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bbc.co.uk/sport
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [RemoteControl] C:\WINDOWS\system32\rmctrl.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.savastore.com
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-09.sun.com/s/ESD7/JSCDL/jdk/6u13-b03/jinstall-6u13-windows-i586-jc.cab?e=1239040115564&h=d5ea43ceb9e2e30db1de1a6dd1b47db6/&filename=jinstall-6u13-windows-i586-jc.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Belkin 54g Wireless USB Network Adapter (Belkin 54g Wireless USB Network Adapter Service) - Unknown owner - C:\Program Files\Belkin\Belkin Wireless Network Utility\WLService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

--
End of file - 7266 bytes

Steve1982

I have done all that you said above and then done the scans shown above. With regards to the internet connection could something have been disabled as part of the trouble shooting process?

As for Red Dwarf I agree Gunmen of the Apocalypse is probably the best episode, always loved that. My other faves are Better than Life and
Marooned, although I find all episodes have some clasic moments.

aliEnRIK

Steve1982 wrote: »

I have done all that you said above and then done the scans shown above. With regards to the internet connection could something have been disabled as part of the trouble shooting process?

Shouldnt have been ~ are you still having trouble? Are you on AVG 8.5 now as ive heard of problems with it (Well ~ ive heard of problems with AVG all my life but 8.5 does have inherant problems)

Steve1982 wrote: »

As for Red Dwarf I agree Gunmen of the Apocalypse is probably the best episode, always loved that. My other faves are Better than Life and
Marooned, although I find all episodes have some clasic moments.

I hadnt seen ANY of them since the very first time they were shown on tv. I was amazed at how much I DID remember actually