Why does my PC Bleep at me?

13»

Comments

  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    TICK these in hijack and click to FIX them ~
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
    O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWSA\system32\browseui.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWSA\system32\browseui.dll
    O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWSA\system32\GameMon.des.exe (file missing)

    Id recommend uninstalling the LEXMARK TOOLBAR (Its useless)

    Do you know what these are ~
    O4 - HKLM\..\Run: [Turbine Download Manager Tray Icon] "C:\Program Files\Turbine\Turbine Download Manager\TurbineDownloadManagerIcon.exe"
    C:\Program Files\GamersFirst\LIVE!\Live.exe

    The 'bleep' is usually Avira (Doesnt it pop up showing you what the problem is?)
    :idea:
  • Chuzzle
    Chuzzle Posts: 625 Forumite
    Part of the Furniture Combo Breaker
    aliEnRIK wrote: »

    Id recommend uninstalling the LEXMARK TOOLBAR (Its useless) DONE

    Do you know what these are ~
    O4 - HKLM\..\Run: [Turbine Download Manager Tray Icon] "C:\Program Files\Turbine\Turbine Download Manager\TurbineDownloadManagerIcon.exe"
    C:\Program Files\GamersFirst\LIVE!\Live.exe No idea - have asked the kids and one of them thinks he might have downloaded them but can't remember why and doesn't use either now.

    The 'bleep' is usually Avira (Doesnt it pop up showing you what the problem is?) Only seems to if you are logged in at the time, if its at the log in screen then it just bleeps

    Just thinking, my son plays alot of games like World of Warcraft that he downloads a lot of stuff for, is there a way of making sure he's not downloading nasties with it?
    Banana Lovers
    Buy your bananas in bunches of 5 on Sunday. Then arrange them in order of ripeness and write a day of the week on each banana in felt pen, Monday on the ripest, Friday on the greenest to save time making those decisions on a hectic weekday morning
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    FIX these too then ~
    C:\Program Files\GamersFirst\LIVE!\Live.exe
    O4 - HKLM\..\Run: [Turbine Download Manager Tray Icon] "C:\Program Files\Turbine\Turbine Download Manager\TurbineDownloadManagerIcon.exe"
    O4 - Global Startup: GamersFirst LIVE!.lnk = C:\Program Files\GamersFirst\LIVE!\Live.exe

    then ~
    Please run COMBOFIX

    Shut down your anti virus
    Follow the simple instructions it gives
    Post the COMPLETE log it creates here (Split into sections if need be)

    If it comes up with a RENAMING error then RIGHT click the exe file and RENAME and call it QWERTY (Making the complete file name 'QWERTY.exe') Or SAVE as 'QWERTY' on download
    :idea:
  • pcombo
    pcombo Posts: 3,429 Forumite
    Actually if the beep is coming from the board speaker than it's likely to be some sort of hardware. If its coming from your desktop then its operating system related i.e a program or such.

    * I THINK* :D
  • Chuzzle
    Chuzzle Posts: 625 Forumite
    Part of the Furniture Combo Breaker
    ComboFix 09-12-20.08 - Ruth 21/12/2009 19:48:55.1.4 - x86
    Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3070.2180 [GMT 0:00]
    Running from: c:\documents and settings\Ruth\My Documents\Downloads\ComboFix.exe
    AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
    .

    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    c:\recycler\S-1-5-21-448539723-1965331169-1801674531-1004
    c:\recycler\S-1-5-21-448539723-1965331169-1801674531-1005
    c:\recycler\S-1-5-21-448539723-1965331169-1801674531-1006

    .
    ((((((((((((((((((((((((( Files Created from 2009-11-21 to 2009-12-21 )))))))))))))))))))))))))))))))
    .

    2009-12-20 13:20 . 2009-12-21 15:20
    d
    w- C:\AeriaGames
    2009-12-20 08:57 . 2009-12-20 08:57 388096 ----a-r- c:\documents and settings\Ruth\Application Data\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
    2009-12-20 08:57 . 2009-12-20 08:57
    d
    w- c:\program files\TrendMicro
    2009-12-19 18:18 . 2009-12-19 18:36
    d
    w- c:\documents and settings\Brandon.HOME1.000\Local Settings\Application Data\Temp
    2009-12-18 14:02 . 2009-12-18 14:02
    d
    w- c:\program files\Common Files\INCA Shared
    2009-12-18 14:00 . 2005-01-04 18:43 4682 ----a-w- c:\windowsa\system32\npptNT2.sys
    2009-12-18 13:00 . 2009-12-18 13:00
    d
    w- c:\program files\Gpotato
    2009-12-18 12:42 . 2009-12-21 19:05
    d
    w- c:\documents and settings\Brandon.HOME1.000\Local Settings\Application Data\PMB Files
    2009-12-18 12:42 . 2009-12-18 12:42
    d
    w- c:\documents and settings\All Users.WINDOWSA\Application Data\PMB Files
    2009-12-17 15:51 . 2009-12-20 23:32
    d
    w- c:\documents and settings\Colin.HOME1\Application Data\DNA
    2009-12-17 15:51 . 2009-12-17 15:51
    d
    w- c:\documents and settings\Colin.HOME1\Local Settings\Application Data\GamersFirst LIVE!
    2009-12-17 15:51 . 2009-12-17 15:51
    d
    w- c:\documents and settings\Colin.HOME1\Local Settings\Application Data\DNA
    2009-12-16 18:06 . 2009-12-16 18:06
    d-sh--w- c:\windowsa\system32\config\systemprofile\IETldCache
    2009-12-14 17:29 . 2009-12-14 17:29
    d
    w- c:\program files\KingsIsle Entertainment
    2009-12-12 22:09 . 2009-12-12 22:09
    d
    w- c:\documents and settings\Josh.HOME1.000\Application Data\LolClient.F24C99354F615F3BAB18AE7B93E3F9B9E8784FA6.1
    2009-12-12 22:09 . 2009-12-11 20:52 38784 ----a-w- c:\documents and settings\Josh.HOME1.000\Application Data\Macromedia\Flash Player\https://www.macromedia.com\bin\airappinstaller\airappinstaller.exe
    2009-12-11 20:08 . 2009-12-11 20:08
    d
    w- c:\documents and settings\Brandon.HOME1.000\Application Data\LolClient.F24C99354F615F3BAB18AE7B93E3F9B9E8784FA6.1
    2009-12-11 19:40 . 2009-12-11 20:52 38784 ----a-w- c:\documents and settings\Brandon.HOME1.000\Application Data\Macromedia\Flash Player\https://www.macromedia.com\bin\airappinstaller\airappinstaller.exe
    2009-12-11 19:40 . 2009-12-11 20:52 38784 ----a-w- c:\documents and settings\Default User.WINDOWSA\Application Data\Macromedia\Flash Player\https://www.macromedia.com\bin\airappinstaller\airappinstaller.exe
    2009-12-11 19:37 . 2009-12-16 20:53
    d
    w- c:\program files\League of Legends
    2009-12-11 17:02 . 2009-12-11 19:37 814143398 ----a-w- c:\documents and settings\Brandon.HOME1.000\loleusetup.exe
    2009-12-08 13:58 . 2009-12-08 13:59
    d
    w- c:\program files\Azada - Ancient Magic
    2009-12-07 07:51 . 2009-12-07 07:51 4844296 ----a-w- c:\documents and settings\All Users.WINDOWSA\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
    2009-12-07 07:50 . 2009-12-07 07:50
    d
    w- c:\documents and settings\Ruth\Local Settings\Application Data\Turbine,_Inc
    2009-12-07 07:43 . 2009-12-07 07:44
    d
    w- c:\documents and settings\Ruth\Local Settings\Application Data\ApplicationHistory
    2009-12-06 11:09 . 2009-12-06 11:09 140 ----a-w- c:\documents and settings\Brandon.HOME1.000\Local Settings\Application Data\fusioncache.dat
    2009-12-06 11:09 . 2009-12-06 11:09
    d
    w- c:\documents and settings\Brandon.HOME1.000\Local Settings\Application Data\Turbine
    2009-12-06 10:38 . 2009-12-06 10:38
    d
    w- c:\documents and settings\Brandon.HOME1.000\Local Settings\Application Data\Turbine,_Inc
    2009-12-06 10:38 . 2009-12-19 16:30
    d
    w- c:\program files\Turbine
    2009-12-06 10:38 . 2009-12-10 17:59
    d
    w- c:\documents and settings\Brandon.HOME1.000\Local Settings\Application Data\ApplicationHistory
    2009-12-06 10:36 . 2009-12-06 10:36
    d
    w- c:\windowsa\system32\URTTEMP
    2009-12-05 09:51 . 2009-12-05 09:51
    d
    w- c:\program files\Drawn - The Painted Tower
    2009-12-05 08:45 . 2009-12-08 13:59
    d
    w- c:\documents and settings\Ruth\Application Data\Big Fish Games
    2009-12-03 19:17 . 2009-12-03 19:17
    d
    w- c:\documents and settings\Brandon.HOME1.000\Local Settings\Application Data\Blizzard Entertainment
    2009-12-03 08:01 . 2009-12-03 08:01
    d
    w- c:\program files\MSXML 4.0
    2009-12-02 22:06 . 2009-12-02 22:06
    d
    w- c:\documents and settings\Josh.HOME1.000\Local Settings\Application Data\Adobe
    2009-12-02 20:40 . 2009-12-02 20:40
    d
    w- c:\documents and settings\Brandon.HOME1.000\Application Data\Microsoft Games
    2009-12-02 19:28 . 2009-12-02 19:28
    d
    w- c:\documents and settings\Brandon.HOME1.000\Application Data\Malwarebytes
    2009-12-02 18:26 . 2009-12-02 18:26
    d
    w- c:\documents and settings\Josh.HOME1.000\Application Data\Malwarebytes
    2009-12-01 08:19 . 2009-12-01 08:19
    d
    w- c:\windowsa\system32\config\systemprofile\Local Settings\Application Data\Google
    2009-11-30 18:09 . 2009-11-30 18:09 495616 ----a-w- c:\documents and settings\All Users.WINDOWSA\Application Data\YoYoGames\d3dx8.dll
    2009-11-30 18:09 . 2009-11-30 18:09 1992000 ----a-w- c:\documents and settings\All Users.WINDOWSA\Application Data\YoYoGames\yoyo70.exe
    2009-11-30 18:09 . 2009-11-30 18:09
    d
    w- c:\documents and settings\All Users.WINDOWSA\Application Data\YoYoGames
    2009-11-30 18:09 . 2007-09-25 16:13 774144 ----a-w- c:\documents and settings\Brandon.HOME1.000\Application Data\Mozilla\Firefox\Profiles\6g9fbiod.default\extensions\yyginstantplay@yoyogames.com\plugins\NPYYGInstantPlay.dll
    2009-11-30 17:37 . 2009-11-30 17:37
    d
    w- c:\documents and settings\Josh.HOME1.000\Application Data\Lexmark Productivity Studio
    2009-11-30 13:58 . 2009-12-02 18:10
    d
    w- c:\documents and settings\Ruth\Application Data\MysteryStudio
    2009-11-28 19:47 . 2009-11-28 20:53
    d
    w- c:\documents and settings\Brandon.HOME1.000\Local Settings\Application Data\Adobe
    2009-11-28 14:13 . 2009-11-28 14:13
    d
    w- c:\documents and settings\Brandon.HOME1.000\Application Data\SpinTop
    2009-11-26 08:28 . 2009-11-26 08:28
    d
    w- c:\documents and settings\Ruth\Local Settings\Application Data\Yahoo!

    .
    Banana Lovers
    Buy your bananas in bunches of 5 on Sunday. Then arrange them in order of ripeness and write a day of the week on each banana in felt pen, Monday on the ripest, Friday on the greenest to save time making those decisions on a hectic weekday morning
  • Chuzzle
    Chuzzle Posts: 625 Forumite
    Part of the Furniture Combo Breaker
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-12-21 19:57 . 2009-11-11 16:09
    d
    w- c:\documents and settings\Brandon.HOME1.000\Application Data\DNA
    2009-12-21 19:51 . 2009-11-12 07:54
    d
    w- c:\documents and settings\Ruth\Application Data\DNA
    2009-12-21 19:41 . 2009-11-11 16:09
    d
    w- c:\program files\DNA
    2009-12-21 18:35 . 2009-11-11 21:38
    d
    w- c:\documents and settings\Josh.HOME1.000\Application Data\DNA
    2009-12-21 18:26 . 2009-10-18 16:04
    d
    w- c:\documents and settings\Josh.HOME1.000\Application Data\Spotify
    2009-12-21 15:20 . 2009-02-17 13:32
    d--h--w- c:\program files\InstallShield Installation Information
    2009-12-21 13:47 . 2009-10-18 20:15
    d
    w- c:\documents and settings\Ruth\Application Data\Spotify
    2009-12-20 10:26 . 2009-04-12 13:49
    d
    w- c:\program files\Common Files\Blizzard Entertainment
    2009-12-18 21:14 . 2009-10-18 10:05
    d---a-w- c:\documents and settings\All Users.WINDOWSA\Application Data\TEMP
    2009-12-18 08:23 . 2009-10-16 16:24
    d
    w- c:\documents and settings\All Users.WINDOWSA\Application Data\BigFishGamesCache
    2009-12-16 20:52 . 2009-04-05 10:25
    d
    w- c:\program files\GameSpy Arcade
    2009-12-13 11:03 . 2009-10-29 13:25
    d
    w- c:\documents and settings\Brandon.HOME1.000\Application Data\Spotify
    2009-12-11 20:52 . 2009-02-17 16:30
    d
    w- c:\program files\Common Files\Adobe AIR
    2009-12-07 17:22 . 2009-04-25 11:35 56816 ----a-w- c:\windowsa\system32\drivers\avgntflt.sys
    2009-12-07 07:51 . 2009-04-18 07:49
    d
    w- c:\program files\Malwarebytes' Anti-Malware
    2009-12-03 16:14 . 2009-10-17 20:49 38224 ----a-w- c:\windowsa\system32\drivers\mbamswissarmy.sys
    2009-12-03 16:13 . 2009-10-17 20:49 19160 ----a-w- c:\windowsa\system32\drivers\mbam.sys
    2009-11-25 19:33 . 2009-11-20 18:01
    d
    w- c:\program files\Firefly Studios
    2009-11-19 06:55 . 2009-11-19 06:55
    d
    w- c:\documents and settings\All Users.WINDOWSA\Application Data\Lexmark 5600-6600 Series
    2009-11-17 08:43 . 2009-02-17 16:29
    d
    w- c:\program files\Common Files\Adobe
    2009-11-11 16:29 . 2009-11-11 16:29
    d
    w- c:\program files\GamersFirst
    2009-11-11 12:12 . 2009-11-11 12:12
    d
    w- c:\documents and settings\Brandon.HOME1.000\Application Data\FOG Downloader
    2009-11-11 10:37 . 2009-11-11 10:37
    d
    w- c:\program files\Acclaim
    2009-11-10 20:33 . 2009-07-20 19:23
    d
    w- c:\program files\Google
    2009-11-10 08:20 . 2009-11-10 08:18
    d
    w- c:\documents and settings\All Users.WINDOWSA\Application Data\ThumbnailCache4R
    2009-11-10 08:08 . 2009-11-10 08:08
    d
    w- c:\documents and settings\Ruth\Application Data\Lexmark Productivity Studio
    2009-11-07 11:25 . 2009-11-07 11:25
    d
    w- c:\program files\Gameforge4D
    2009-11-06 21:08 . 2009-11-06 19:24
    d
    w- c:\documents and settings\Brandon.HOME1.000\Application Data\yoclient
    2009-11-06 19:32 . 2009-11-06 19:28 63 ----a-w- c:\documents and settings\Brandon.HOME1.000\jagex_runescape_preferences2.dat
    2009-11-06 19:28 . 2009-11-06 19:26 38 ----a-w- c:\documents and settings\Brandon.HOME1.000\jagex_runescape_preferences.dat
    2009-11-06 19:25 . 2009-11-06 19:25 413696 ----a-w- c:\documents and settings\Brandon.HOME1.000\Application Data\yoclient\native\OpenAL32.dll
    2009-11-06 19:25 . 2009-11-06 19:25 153600 ----a-w- c:\documents and settings\Brandon.HOME1.000\Application Data\yoclient\native\lwjgl.dll
    2009-11-04 18:00 . 2009-11-04 18:00 19848 ----a-w- c:\documents and settings\Colin.HOME1\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    2009-11-04 07:20 . 2009-03-28 20:43
    d
    w- c:\program files\Java
    2009-11-04 07:19 . 2009-11-04 07:19 152576 ----a-w- c:\documents and settings\Ruth\Application Data\Sun\Java\jre1.6.0_17\lzma.dll
    2009-11-02 20:42 . 2009-10-18 10:37 195456
    w- c:\windowsa\system32\MpSigStub.exe
    2009-11-01 19:53 . 2009-06-24 08:44
    d
    w- c:\program files\QuickTime
    2009-11-01 19:53 . 2009-11-01 19:53
    d
    w- c:\documents and settings\All Users.WINDOWSA\Application Data\Apple Computer
    2009-11-01 19:53 . 2009-11-01 19:53
    d
    w- c:\program files\Common Files\Apple
    2009-11-01 19:53 . 2009-11-01 19:53
    d
    w- c:\documents and settings\All Users.WINDOWSA\Application Data\Apple
    2009-11-01 19:53 . 2009-06-24 08:44
    d
    w- c:\program files\Apple Software Update
    2009-10-31 20:50 . 2009-10-31 20:50 34304 ----a-w- c:\documents and settings\All Users.WINDOWSA\Application Data\Screentime\screensaver_shell\saver1.dll
    2009-10-31 20:50 . 2009-10-31 20:50 18192 ----a-w- c:\documents and settings\All Users.WINDOWSA\Application Data\Screentime\screensaver_shell\saver2.dll
    2009-10-31 20:50 . 2009-10-31 20:50 205312 ----a-w- c:\windowsa\system32\screensaver_shell.scr
    2009-10-31 20:50 . 2009-10-31 20:50
    d
    w- c:\documents and settings\All Users.WINDOWSA\Application Data\Screentime
    2009-10-29 20:55 . 2009-10-20 18:46
    d
    w- c:\program files\Lexmark Toolbar
    2009-10-29 08:03 . 2009-10-29 08:03
    d
    w- c:\documents and settings\All Users.WINDOWSA\Application Data\BigFishGames
    2009-10-29 08:02 . 2009-10-29 08:02
    d
    w- c:\program files\Mahjongg Investigation - Under Suspicion
    2009-10-29 07:45 . 2008-04-14 12:00 916480 ----a-w- c:\windowsa\system32\wininet.dll
    2009-10-29 04:48 . 2009-10-29 04:48 499712 ----a-w- c:\windowsa\system32\msvcp71.dll
    2009-10-29 04:48 . 2009-10-29 04:48 348160 ----a-w- c:\windowsa\system32\msvcr71.dll
    2009-10-22 13:00 . 2009-10-18 17:26 19848 ----a-w- c:\documents and settings\Brandon.HOME1.000\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    2009-10-21 21:29 . 2009-10-21 21:29 846312 ----a-w- c:\documents and settings\Josh.HOME1.000\Application Data\MSNInstaller\msnauins.exe
    2009-10-21 20:52 . 2009-10-18 15:55 19848 ----a-w- c:\documents and settings\Josh.HOME1.000\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    2009-10-21 12:21 . 2009-10-16 07:38 19848 ----a-w- c:\documents and settings\Ruth\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    2009-10-21 05:38 . 2008-04-14 12:00 75776 ----a-w- c:\windowsa\system32\strmfilt.dll
    2009-10-21 05:38 . 2008-04-14 12:00 25088 ----a-w- c:\windowsa\system32\httpapi.dll
    2009-10-20 16:20 . 2008-04-14 12:00 265728 ----a-w- c:\windowsa\system32\drivers\http.sys
    2009-10-18 20:10 . 2009-10-18 20:01 152576 ----a-w- c:\documents and settings\Ruth\Application Data\Sun\Java\jre1.6.0_16\lzma.dll
    2009-10-18 08:20 . 2009-10-18 08:20 1961720 ----a-w- c:\documents and settings\Ruth\Application Data\Macromedia\Flash Player\https://www.macromedia.com\bin\fpupdateax\fpupdateax.exe
    2009-10-17 21:28 . 2009-10-14 18:23 22720 ----a-w- c:\windowsa\system32\emptyregdb.dat
    2009-10-17 17:41 . 2009-03-28 17:35 278528 ----a-w- c:\program files\Common Files\FDEUnInstaller.exe
    2009-10-17 17:40 . 2009-10-17 17:40 81920 ----a-w- c:\windowsa\system32\W32N50.dll
    2009-10-17 17:40 . 2009-10-17 17:40 17134 ----a-w- c:\windowsa\system32\PCANDIS5.sys
    2009-10-16 16:27 . 2009-10-16 16:27 4096 ----a-w- c:\windowsa\d3dx.dat
    2009-10-16 07:37 . 2009-10-14 18:25 76493 ----a-w- c:\windowsa\pchealth\helpctr\OfflineCache\index.dat
    2009-10-16 07:15 . 2009-10-16 07:15 0 ----a-w- c:\windowsa\nsreg.dat
    2009-10-13 10:30 . 2008-04-14 12:00 270336 ----a-w- c:\windowsa\system32\oakley.dll
    2009-10-12 13:38 . 2008-04-14 12:00 149504 ----a-w- c:\windowsa\system32\rastls.dll
    2009-10-12 13:38 . 2008-04-14 12:00 79872 ----a-w- c:\windowsa\system32\raschap.dll
    2009-10-11 04:17 . 2009-10-18 20:11 411368 ----a-w- c:\windowsa\system32\deploytk.dll
    2009-10-06 17:54 . 2009-10-18 16:27 5922816 ----a-w- c:\windowsa\system32\drivers\RtkHDAud.sys
    2009-10-06 15:34 . 2009-10-18 16:27 18750976 ----a-w- c:\windowsa\RTHDCPL.EXE
    2009-09-29 17:38 . 2009-10-18 16:27 352256 ----a-w- c:\windowsa\vncutil.exe
    2009-09-25 05:37 . 2009-10-18 07:54 81920
    w- c:\windowsa\system32\ieencode.dll
    2009-09-23 13:19 . 2009-09-23 13:19 49152 ----a-r- c:\windowsa\system32\inetwh32.dll
    2009-09-23 13:19 . 2009-09-23 13:19 1044480 ----a-r- c:\windowsa\system32\roboex32.dll
    2009-06-22 09:48 . 2009-06-22 09:48 115552 ----a-w- c:\program files\mozilla firefox\components\FFConnectorLauncher.dll
    2009-06-22 09:48 . 2009-06-22 09:48 239968 ----a-w- c:\program files\mozilla firefox\components\FFSource.dll
    .
    Sigcheck

    [-] 2008-04-14 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windowsa\system32\drivers\atapi.sys

    [-] 2008-04-14 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\asyncmac.sys
    [-] 2008-04-14 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windowsa\system32\drivers\asyncmac.sys

    [-] 2008-04-14 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windowsa\system32\dllcache\beep.sys
    [-] 2008-04-14 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windowsa\system32\drivers\beep.sys

    [-] 2008-04-14 . 463C1EC80CD17420A542B7F36A36F128 . 24576 . . [5.1.2600.5512] . . c:\windowsa\system32\drivers\kbdclass.sys

    [-] 2008-04-14 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\ndis.sys
    [-] 2008-04-14 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windowsa\system32\drivers\ndis.sys

    [-] 2008-04-14 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\ntfs.sys
    [-] 2008-04-14 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windowsa\system32\drivers\ntfs.sys

    [-] 2008-04-14 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windowsa\system32\dllcache\null.sys
    [-] 2008-04-14 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windowsa\system32\drivers\null.sys

    [-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windowsa\$hf_mig$\KB951748\SP3QFE\tcpip.sys
    [-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windowsa\system32\dllcache\tcpip.sys
    [-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windowsa\system32\drivers\tcpip.sys
    [-] 2008-04-14 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windowsa\$NtUninstallKB951748$\tcpip.sys

    [-] 2008-04-14 . A06CE3399D16DB864F55FAEB1F1927A9 . 77824 . . [5.1.2600.5512] . . c:\windowsa\system32\browser.dll
    [-] 2008-04-14 . A06CE3399D16DB864F55FAEB1F1927A9 . 77824 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\browser.dll

    [-] 2008-04-14 . BF2466B3E18E970D8A976FB95FC1CA85 . 13312 . . [5.1.2600.5512] . . c:\windowsa\system32\lsass.exe
    [-] 2008-04-14 . BF2466B3E18E970D8A976FB95FC1CA85 . 13312 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\lsass.exe

    [-] 2008-04-14 . 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE . 198144 . . [5.1.2600.5512] . . c:\windowsa\system32\netman.dll
    [-] 2008-04-14 . 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE . 198144 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\netman.dll

    [-] 2008-04-14 . 574738F61FCA2935F5265DC4E5691314 . 409088 . . [6.7.2600.5512] . . c:\windowsa\system32\qmgr.dll
    [-] 2008-04-14 . 574738F61FCA2935F5265DC4E5691314 . 409088 . . [6.7.2600.5512] . . c:\windowsa\system32\dllcache\qmgr.dll

    [-] 2008-04-14 . D8E14A61ACC1D4A6CD0D38AEBAC7FA3B . 57856 . . [5.1.2600.5512] . . c:\windowsa\system32\spoolsv.exe
    [-] 2008-04-14 . D8E14A61ACC1D4A6CD0D38AEBAC7FA3B . 57856 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\spoolsv.exe

    [-] 2008-04-14 . ED0EF0A136DEC83DF69F04118870003E . 507904 . . [5.1.2600.5512] . . c:\windowsa\system32\winlogon.exe
    [-] 2008-04-14 . ED0EF0A136DEC83DF69F04118870003E . 507904 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\winlogon.exe

    [-] 2008-04-14 . 06F247492BC786CE5C24A23E178C711A . 617472 . . [5.82] . . c:\windowsa\system32\comctl32.dll
    [-] 2008-04-14 . 06F247492BC786CE5C24A23E178C711A . 617472 . . [5.82] . . c:\windowsa\system32\dllcache\comctl32.dll

    [-] 2008-04-14 . 3D4E199942E29207970E04315D02AD3B . 62464 . . [5.1.2600.5512] . . c:\windowsa\system32\cryptsvc.dll
    [-] 2008-04-14 . 3D4E199942E29207970E04315D02AD3B . 62464 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\cryptsvc.dll

    [-] 2008-07-07 20:26 . D4991D98F2DB73C60D042F1AEF79EFAE . 253952 . . [2001.12.4414.706] . . c:\windowsa\system32\es.dll
    [-] 2008-07-07 20:26 . D4991D98F2DB73C60D042F1AEF79EFAE . 253952 . . [2001.12.4414.706] . . c:\windowsa\system32\dllcache\es.dll
    [-] 2008-07-07 20:23 . F17F6226BDC0CD5F0BEF0DAF84D29BEC . 253952 . . [2001.12.4414.706] . . c:\windowsa\$hf_mig$\KB950974\SP3QFE\es.dll
    [-] 2008-04-14 12:00 . 19A799805B24990867B00C120D300C3A . 246272 . . [2001.12.4414.701] . . c:\windowsa\$NtUninstallKB950974$\es.dll

    [-] 2008-04-14 . 0DA85218E92526972A821587E6A8BF8F . 110080 . . [5.1.2600.5512] . . c:\windowsa\system32\imm32.dll
    [-] 2008-04-14 . 0DA85218E92526972A821587E6A8BF8F . 110080 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\imm32.dll

    [-] 2009-03-21 . B921FB870C9AC0D509B2CCABBBBE95F3 . 989696 . . [5.1.2600.5781] . . c:\windowsa\system32\kernel32.dll
    [-] 2009-03-21 . B921FB870C9AC0D509B2CCABBBBE95F3 . 989696 . . [5.1.2600.5781] . . c:\windowsa\system32\dllcache\kernel32.dll
    [-] 2009-03-21 . DA11D9D6ECBDF0F93436A4B7C13F7BEC . 991744 . . [5.1.2600.5781] . . c:\windowsa\$hf_mig$\KB959426\SP3QFE\kernel32.dll
    [-] 2008-04-14 . C24B983D211C34DA8FCC1AC38477971D . 989696 . . [5.1.2600.5512] . . c:\windowsa\$NtUninstallKB959426$\kernel32.dll

    [-] 2008-04-14 . 2DC5A8019E2387987905F77C664E4BE2 . 19968 . . [5.1.2600.5512] . . c:\windowsa\system32\linkinfo.dll
    [-] 2008-04-14 . 2DC5A8019E2387987905F77C664E4BE2 . 19968 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\linkinfo.dll

    [-] 2008-04-14 . 012DF358CEBAA23ACB26D82077820817 . 22016 . . [5.1.2600.5512] . . c:\windowsa\system32\lpk.dll
    [-] 2008-04-14 . 012DF358CEBAA23ACB26D82077820817 . 22016 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\lpk.dll

    [-] 2008-04-14 . 355EDBB4D412B01F1740C17E3F50FA00 . 343040 . . [7.0.2600.5512] . . c:\windowsa\system32\msvcrt.dll
    [-] 2008-04-14 . 355EDBB4D412B01F1740C17E3F50FA00 . 343040 . . [7.0.2600.5512] . . c:\windowsa\system32\dllcache\msvcrt.dll

    [-] 2008-06-20 . 832E4DD8964AB7ACC880B2837CB1ED20 . 245248 . . [5.1.2600.5625] . . c:\windowsa\system32\mswsock.dll
    [-] 2008-06-20 . 832E4DD8964AB7ACC880B2837CB1ED20 . 245248 . . [5.1.2600.5625] . . c:\windowsa\system32\dllcache\mswsock.dll
    [-] 2008-06-20 . FCEE5FCB99F7C724593365C706D28388 . 245248 . . [5.1.2600.5625] . . c:\windowsa\$hf_mig$\KB951748\SP3QFE\mswsock.dll
    [-] 2008-04-14 . B4138E99236F0F57D4CF49BAE98A0746 . 245248 . . [5.1.2600.5512] . . c:\windowsa\$NtUninstallKB951748$\mswsock.dll

    [-] 2008-04-14 . 1B7F071C51B77C272875C3A23E1E4550 . 407040 . . [5.1.2600.5512] . . c:\windowsa\system32\netlogon.dll
    [-] 2008-04-14 . 1B7F071C51B77C272875C3A23E1E4550 . 407040 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\netlogon.dll

    [-] 2008-04-14 . 50A166237A0FA771261275A405646CC0 . 17408 . . [6.00.2900.5512] . . c:\windowsa\system32\powrprof.dll
    [-] 2008-04-14 . 50A166237A0FA771261275A405646CC0 . 17408 . . [6.00.2900.5512] . . c:\windowsa\system32\dllcache\powrprof.dll

    [-] 2008-04-14 . A86BB5E61BF3E39B62AB4C7E7085A084 . 181248 . . [5.1.2600.5512] . . c:\windowsa\system32\scecli.dll
    [-] 2008-04-14 . A86BB5E61BF3E39B62AB4C7E7085A084 . 181248 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\scecli.dll

    [-] 2008-04-14 . 96E1C926F22EE1BFBAE82901A35F6BF3 . 5120 . . [5.1.2600.5512] . . c:\windowsa\system32\sfc.dll
    [-] 2008-04-14 . 96E1C926F22EE1BFBAE82901A35F6BF3 . 5120 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\sfc.dll

    [-] 2008-04-14 . 27C6D03BCDB8CFEB96B716F3D8BE3E18 . 14336 . . [5.1.2600.5512] . . c:\windowsa\system32\svchost.exe
    [-] 2008-04-14 . 27C6D03BCDB8CFEB96B716F3D8BE3E18 . 14336 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\svchost.exe

    [-] 2008-04-14 . 3CB78C17BB664637787C9A1C98F79C38 . 249856 . . [5.1.2600.5512] . . c:\windowsa\system32\tapisrv.dll
    [-] 2008-04-14 . 3CB78C17BB664637787C9A1C98F79C38 . 249856 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\tapisrv.dll

    [-] 2008-04-14 . B26B135FF1B9F60C9388B4A7D16F600B . 578560 . . [5.1.2600.5512] . . c:\windowsa\system32\user32.dll
    [-] 2008-04-14 . B26B135FF1B9F60C9388B4A7D16F600B . 578560 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\user32.dll

    [-] 2008-04-14 . A93AEE1928A9D7CE3E16D24EC7380F89 . 26112 . . [5.1.2600.5512] . . c:\windowsa\system32\userinit.exe
    [-] 2008-04-14 . A93AEE1928A9D7CE3E16D24EC7380F89 . 26112 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\userinit.exe

    [-] 2008-04-14 . 2CCC474EB85CEAA3E1FA1726580A3E5A . 82432 . . [5.1.2600.5512] . . c:\windowsa\system32\ws2_32.dll
    [-] 2008-04-14 . 2CCC474EB85CEAA3E1FA1726580A3E5A . 82432 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\ws2_32.dll

    [-] 2008-04-14 . 12896823FB95BFB3DC9B46BCAEDC9923 . 1033728 . . [6.00.2900.5512] . . c:\windowsa\explorer.exe
    [-] 2008-04-14 . 12896823FB95BFB3DC9B46BCAEDC9923 . 1033728 . . [6.00.2900.5512] . . c:\windowsa\system32\dllcache\explorer.exe

    [-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windowsa\system32\srsvc.dll
    [-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\srsvc.dll

    [-] 2008-04-14 . F92E1076C42FCD6DB3D72D8CFE9816D5 . 13824 . . [5.1.2600.5512] . . c:\windowsa\system32\wscntfy.exe
    [-] 2008-04-14 . F92E1076C42FCD6DB3D72D8CFE9816D5 . 13824 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\wscntfy.exe

    [-] 2008-04-14 . 295D21F14C335B53CB8154E5B1F892B9 . 129024 . . [5.1.2600.5512] . . c:\windowsa\system32\xmlprov.dll
    [-] 2008-04-14 . 295D21F14C335B53CB8154E5B1F892B9 . 129024 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\xmlprov.dll

    [-] 2008-04-14 . 6D4FEB43EE538FC5428CC7F0565AA656 . 56320 . . [5.1.2600.5512] . . c:\windowsa\system32\eventlog.dll
    [-] 2008-04-14 . 6D4FEB43EE538FC5428CC7F0565AA656 . 56320 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\eventlog.dll

    [-] 2008-04-14 . 9DD07AF82244867CA36681EA2D29CE79 . 1614848 . . [5.1.2600.5512] . . c:\windowsa\system32\sfcfiles.dll
    [-] 2008-04-14 . 9DD07AF82244867CA36681EA2D29CE79 . 1614848 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\sfcfiles.dll

    [-] 2008-04-14 . 5F1D5F88303D4A4DBC8E5F97BA967CC3 . 15360 . . [5.1.2600.5512] . . c:\windowsa\system32\ctfmon.exe
    [-] 2008-04-14 . 5F1D5F88303D4A4DBC8E5F97BA967CC3 . 15360 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\ctfmon.exe

    [-] 2008-04-14 . 1926899BF9FFE2602B63074971700412 . 135168 . . [6.00.2900.5512] . . c:\windowsa\system32\shsvcs.dll
    [-] 2008-04-14 . 1926899BF9FFE2602B63074971700412 . 135168 . . [6.00.2900.5512] . . c:\windowsa\system32\dllcache\shsvcs.dll

    [-] 2008-04-14 . 5B19B557B0C188210A56A6B699D90B8F . 59904 . . [5.1.2600.5512] . . c:\windowsa\system32\regsvc.dll
    [-] 2008-04-14 . 5B19B557B0C188210A56A6B699D90B8F . 59904 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\regsvc.dll

    [-] 2008-04-14 . 0A9A7365A1CA4319AA7C1D6CD8E4EAFA . 192512 . . [5.1.2600.5512] . . c:\windowsa\system32\schedsvc.dll
    [-] 2008-04-14 . 0A9A7365A1CA4319AA7C1D6CD8E4EAFA . 192512 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\schedsvc.dll

    [-] 2008-04-14 . 0A5679B3714EDAB99E357057EE88FCA6 . 71680 . . [5.1.2600.5512] . . c:\windowsa\system32\ssdpsrv.dll
    [-] 2008-04-14 . 0A5679B3714EDAB99E357057EE88FCA6 . 71680 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\ssdpsrv.dll

    [-] 2008-04-14 . FF3477C03BE7201C294C35F684B3479F . 295424 . . [5.1.2600.5512] . . c:\windowsa\system32\termsrv.dll
    [-] 2008-04-14 . FF3477C03BE7201C294C35F684B3479F . 295424 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\termsrv.dll

    [-] 2008-04-14 . 9859C0F6936E723E4892D7141B1327D5 . 11648 . . [5.1.2600.0] . . c:\windowsa\system32\drivers\acpiec.sys

    [-] 2008-04-13 21:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windowsa\system32\drivers\aec.sys

    [-] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windowsa\system32\drivers\agp440.sys

    [-] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\ip6fw.sys
    [-] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windowsa\system32\drivers\ip6fw.sys

    [-] 2008-04-14 12:00 . CDDD4416B2B4C7295FE3FDB6DDE57E4E . 927504 . . [4.1.0.61] . . c:\windowsa\system32\mfc40u.dll
    [-] 2008-04-14 12:00 . CDDD4416B2B4C7295FE3FDB6DDE57E4E . 927504 . . [4.1.0.61] . . c:\windowsa\system32\dllcache\mfc40u.dll

    [-] 2008-04-14 . 986B1FF5814366D71E0AC5755C88F2D3 . 33792 . . [5.1.2600.5512] . . c:\windowsa\system32\msgsvc.dll
    [-] 2008-04-14 . 986B1FF5814366D71E0AC5755C88F2D3 . 33792 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\msgsvc.dll

    [-] 2008-04-14 12:00 . 156F64A3345BD23C600655FB4D10BC08 . 435200 . . [5.1.2400.5512] . . c:\windowsa\system32\ntmssvc.dll
    [-] 2008-04-14 12:00 . 156F64A3345BD23C600655FB4D10BC08 . 435200 . . [5.1.2400.5512] . . c:\windowsa\system32\dllcache\ntmssvc.dll

    [-] 2008-04-14 . 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 . 185856 . . [5.1.2600.5512] . . c:\windowsa\system32\upnphost.dll
    [-] 2008-04-14 . 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 . 185856 . . [5.1.2600.5512] . . c:\windowsa\system32\dllcache\upnphost.dll
    .
    Banana Lovers
    Buy your bananas in bunches of 5 on Sunday. Then arrange them in order of ripeness and write a day of the week on each banana in felt pen, Monday on the ripest, Friday on the greenest to save time making those decisions on a hectic weekday morning
  • Chuzzle
    Chuzzle Posts: 625 Forumite
    Part of the Furniture Combo Breaker
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232]
    "BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-12-20 323392]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"="c:\windowsa\system32\NvCpl.dll" [2009-03-27 13684736]
    "nwiz"="nwiz.exe" [2009-03-27 1657376]
    "NvMediaCenter"="c:\windowsa\system32\NvMcTray.dll" [2009-03-27 86016]
    "Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2006-11-03 866584]
    "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
    "RTHDCPL"="RTHDCPL.EXE" [2009-10-06 18750976]
    "lxdumon.exe"="c:\program files\Lexmark 5600-6600 Series\lxdumon.exe" [2008-05-30 676520]
    "lxduamon"="c:\program files\Lexmark 5600-6600 Series\lxduamon.exe" [2008-05-30 16040]
    "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-05 417792]
    "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windowsa\system32\CTFMON.EXE" [2008-04-14 15360]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
    @="Service"

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\Spotify\\spotify.exe"=
    "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
    "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
    "c:\\WINDOWSA\\system32\\lxducoms.exe"=
    "c:\\Program Files\\Messenger\\msmsgs.exe"=
    "c:\\Program Files\\DNA\\btdna.exe"=
    "c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "8394:TCP"= 8394:TCP:League of Legends Launcher
    "8394:UDP"= 8394:UDP:League of Legends Launcher
    "57563:TCP"= 57563:TCP:Pando Media Booster
    "57563:UDP"= 57563:UDP:Pando Media Booster

    R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [25/04/2009 11:35 108289]
    R2 lxdu_device;lxdu_device;c:\windowsa\system32\lxducoms.exe -service --> c:\windowsa\system32\lxducoms.exe -service [?]
    R2 lxduCATSCustConnectService;lxduCATSCustConnectService;c:\windowsa\system32\spool\drivers\w32x86\3\lxduserv.exe [28/03/2009 18:20 98984]
    R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [03/11/2006 18:19 13592]
    S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [20/07/2009 19:24 133104]
    S3 Ambfilt;Ambfilt;c:\windowsa\system32\drivers\Ambfilt.sys [18/10/2009 16:27 1684736]
    S3 npggsvc;nProtect GameGuard Service;c:\windowsa\system32\GameMon.des -service --> c:\windowsa\system32\GameMon.des -service [?]
    S3 vtany;vtany;\??\c:\windowsa\vtany.sys --> c:\windowsa\vtany.sys [?]
    S3 xhunter1;xhunter1;\??\c:\windowsa\xhunter1.sys --> c:\windowsa\xhunter1.sys [?]
    .
    Supplementary Scan
    .
    uStart Page = hxxp://www.wanadoo.co.uk/
    uInternet Connection Wizard,ShellNext = hxxp://www.wanadoo.co.uk/cd_redirects/wanadoohome
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
    FF - ProfilePath - c:\documents and settings\Ruth\Application Data\Mozilla\Firefox\Profiles\xsrvxedi.default\
    FF - prefs.js: browser.startup.homepage - hxxp://m.uk.yahoo.com/
    FF - component: c:\program files\Mozilla Firefox\components\FFConnectorLauncher.dll
    FF - component: c:\program files\Mozilla Firefox\components\FFSource.dll
    FF - plugin: c:\documents and settings\Ruth\Local Settings\Application Data\Yahoo!\BrowserPlus\2.4.21\Plugins\npybrowserplus_2.4.21.dll
    FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
    FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins\npArtistScope42.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins\npArtistScopeDRM11.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins\npPandoWebInst.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins\nppopcaploader.dll
    FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windowsa\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
    .

    **************************************************************************

    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-12-21 19:57
    Windows 5.1.2600 Service Pack 3 NTFS

    scanning hidden processes ...

    scanning hidden autostart entries ...

    scanning hidden files ...


    c:\windowsa\TEMP\TMP000001463C890D1430A269DE 524288 bytes executable

    scan completed successfully
    hidden files: 1

    **************************************************************************

    [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
    "ImagePath"="c:\windowsa\system32\GameMon.des -service"
    .
    DLLs Loaded Under Running Processes

    - - - - - - - > 'explorer.exe'(1932)
    c:\windowsa\system32\WININET.dll
    c:\windowsa\system32\ieframe.dll
    c:\windowsa\system32\webcheck.dll
    c:\windowsa\system32\WPDShServiceObj.dll
    c:\windowsa\system32\PortableDeviceTypes.dll
    c:\windowsa\system32\PortableDeviceApi.dll

    - - - - - - - > 'explorer.exe'(4368)
    c:\windowsa\system32\WININET.dll
    c:\progra~1\WINDOW~2\wmpband.dll
    c:\windowsa\system32\ieframe.dll
    c:\windowsa\system32\webcheck.dll
    c:\windowsa\system32\WPDShServiceObj.dll
    c:\windowsa\system32\PortableDeviceTypes.dll
    c:\windowsa\system32\PortableDeviceApi.dll
    .
    Completion time: 2009-12-21 19:59:02
    ComboFix-quarantined-files.txt 2009-12-21 19:59

    Pre-Run: 414,198,800,384 bytes free
    Post-Run: 417,835,081,728 bytes free

    - - End Of File - - 64E21EBCDD280BA8DBD46E2084579D39
    Banana Lovers
    Buy your bananas in bunches of 5 on Sunday. Then arrange them in order of ripeness and write a day of the week on each banana in felt pen, Monday on the ripest, Friday on the greenest to save time making those decisions on a hectic weekday morning
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Looks clean to me
    :idea:
  • Chuzzle
    Chuzzle Posts: 625 Forumite
    Part of the Furniture Combo Breaker
    Thanks aliEnRik thats good to know.
    Banana Lovers
    Buy your bananas in bunches of 5 on Sunday. Then arrange them in order of ripeness and write a day of the week on each banana in felt pen, Monday on the ripest, Friday on the greenest to save time making those decisions on a hectic weekday morning
This discussion has been closed.
Meet your Ambassadors

🚀 Getting Started

Hi new member!

Our Getting Started Guide will help you get the most out of the Forum

Categories

  • All Categories
  • 350K Banking & Borrowing
  • 252.7K Reduce Debt & Boost Income
  • 453.1K Spending & Discounts
  • 243K Work, Benefits & Business
  • 619.9K Mortgages, Homes & Bills
  • 176.5K Life & Family
  • 256K Travel & Transport
  • 1.5M Hobbies & Leisure
  • 16.1K Discuss & Feedback
  • Read-Only Boards

Is this how you want to be seen?

We see you are using a default avatar. It takes only a few seconds to pick a picture.
Update Your Picture