Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
Wifi help
Message
<blockquote data-quote="Jstratfl" data-source="post: 70577" data-attributes="member: 2249"><p>Jack,</p><p></p><p>sorry so long. I work in retail in South FL and the storm was a little hektic. here is the Combo Fix Log...</p><p></p><p>ComboFix 12-08-25.04 - jason 08/26/2012 11:33:31.2.4 - x64</p><p>Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.6058.4522 [GMT -4:00]</p><p>Running from: c:\users\jason\Desktop\ComboFix.exe</p><p>AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}</p><p>FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}</p><p>SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}</p><p>SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}</p><p>.</p><p>.</p><p>((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))</p><p>.</p><p>.</p><p>---- Previous Run -------</p><p>.</p><p>C:\Install.exe</p><p>c:\windows\SysWow64\binperf.dll</p><p>c:\windows\SysWow64\muzapp.exe</p><p>c:\windows\SysWow64\popsvr.dll</p><p>.</p><p>.</p><p>((((((((((((((((((((((((( Files Created from 2012-07-26 to 2012-08-26 )))))))))))))))))))))))))))))))</p><p>.</p><p>.</p><p>2012-08-26 15:38 . 2012-08-26 15:38 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp</p><p>2012-08-26 15:38 . 2012-08-26 15:38 -------- d-----w- c:\users\Default\AppData\Local\temp</p><p>2012-08-25 15:34 . 2012-08-25 15:35 -------- d-----w- c:\programdata\7531CCA9006AA673177B6A13F875F002</p><p>2012-08-25 15:04 . 2012-08-25 15:04 -------- d-----w- c:\users\jason\AppData\Roaming\Free-PDF-to-Word.com</p><p>2012-08-25 15:04 . 2012-08-25 15:09 -------- d-----w- c:\program files (x86)\Free PDF to Word Converter</p><p>2012-08-24 21:29 . 2012-08-01 22:58 9309624 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{54F9CCBF-F553-4E04-A07A-04F92A5CCD13}\mpengine.dll</p><p>2012-08-15 13:21 . 2012-07-06 20:07 552960 ----a-w- c:\windows\system32\drivers\bthport.sys</p><p>2012-08-15 13:12 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll</p><p>2012-08-15 13:12 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe</p><p>2012-08-15 13:12 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll</p><p>2012-08-15 13:12 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe</p><p>2012-08-14 20:13 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll</p><p>2012-08-14 20:13 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll</p><p>2012-08-14 20:13 . 2012-07-04 22:13 59392 ----a-w- c:\windows\system32\browcli.dll</p><p>2012-08-14 20:13 . 2012-07-04 22:13 136704 ----a-w- c:\windows\system32\browser.dll</p><p>2012-08-14 20:13 . 2012-07-04 22:16 73216 ----a-w- c:\windows\system32\netapi32.dll</p><p>2012-08-14 20:13 . 2012-07-04 21:14 41984 ----a-w- c:\windows\SysWow64\browcli.dll</p><p>2012-08-14 20:13 . 2012-07-18 18:15 3148800 ----a-w- c:\windows\system32\win32k.sys</p><p>2012-08-14 20:13 . 2012-05-14 05:26 956928 ----a-w- c:\windows\system32\localspl.dll</p><p>2012-08-07 05:01 . 2012-06-04 07:59 99384 ----a-w- c:\windows\system32\drivers\ssudbus.sys</p><p>2012-08-07 05:01 . 2012-06-04 07:59 203320 ----a-w- c:\windows\system32\drivers\ssudmdm.sys</p><p>2012-08-05 22:18 . 2012-08-05 22:18 -------- d-----w- c:\program files (x86)\PLX Technology</p><p>2012-08-05 22:18 . 2010-05-25 13:14 31280 ----a-w- c:\windows\system32\drivers\OXUDIDRV_x64.sys</p><p>2012-08-05 22:18 . 2012-08-05 22:18 -------- d-----w- c:\program files\Iomega</p><p>2012-07-27 20:51 . 2012-07-27 20:51 184248 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll</p><p>.</p><p>.</p><p>.</p><p>(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))</p><p>.</p><p>2012-08-16 20:23 . 2012-07-01 13:01 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe</p><p>2012-08-16 20:23 . 2011-06-11 13:43 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl</p><p>2012-08-15 13:11 . 2011-05-08 12:52 62134624 ----a-w- c:\windows\system32\MRT.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 74752 ----a-w- c:\windows\SysWow64\iesetup.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 65024 ----a-w- c:\windows\system32\pngfilt.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 63488 ----a-w- c:\windows\SysWow64\tdc.ocx</p><p>2012-07-09 12:45 . 2012-07-09 12:45 55296 ----a-w- c:\windows\system32\msfeedsbs.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 49664 ----a-w- c:\windows\system32\imgutil.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 48640 ----a-w- c:\windows\system32\mshtmler.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 420864 ----a-w- c:\windows\SysWow64\vbscript.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 367104 ----a-w- c:\windows\SysWow64\html.iec</p><p>2012-07-09 12:45 . 2012-07-09 12:45 35840 ----a-w- c:\windows\SysWow64\imgutil.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 267776 ----a-w- c:\windows\system32\ieaksie.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 222208 ----a-w- c:\windows\system32\msls31.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 197120 ----a-w- c:\windows\system32\msrating.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 163840 ----a-w- c:\windows\system32\ieakui.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 161792 ----a-w- c:\windows\SysWow64\msls31.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 160256 ----a-w- c:\windows\system32\ieakeng.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 152064 ----a-w- c:\windows\SysWow64\wextract.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 150528 ----a-w- c:\windows\SysWow64\iexpress.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 149504 ----a-w- c:\windows\system32\occache.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 145920 ----a-w- c:\windows\system32\iepeers.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 135168 ----a-w- c:\windows\system32\IEAdvpack.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 12288 ----a-w- c:\windows\system32\mshta.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 11776 ----a-w- c:\windows\SysWow64\mshta.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 114176 ----a-w- c:\windows\system32\admparse.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 111616 ----a-w- c:\windows\system32\iesysprep.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 10752 ----a-w- c:\windows\system32\msfeedssync.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 101888 ----a-w- c:\windows\SysWow64\admparse.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 89088 ----a-w- c:\windows\system32\ie4uinit.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 85504 ----a-w- c:\windows\system32\iesetup.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 82432 ----a-w- c:\windows\system32\icardie.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 76800 ----a-w- c:\windows\system32\tdc.ocx</p><p>2012-07-09 12:45 . 2012-07-09 12:45 697344 ----a-w- c:\windows\system32\msfeeds.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 603648 ----a-w- c:\windows\system32\vbscript.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 534528 ----a-w- c:\windows\system32\ieapfltr.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 452608 ----a-w- c:\windows\system32\dxtmsft.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 448512 ----a-w- c:\windows\system32\html.iec</p><p>2012-07-09 12:45 . 2012-07-09 12:45 403248 ----a-w- c:\windows\system32\iedkcs32.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 39936 ----a-w- c:\windows\system32\iernonce.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 3695416 ----a-w- c:\windows\system32\ieapfltr.dat</p><p>2012-07-09 12:45 . 2012-07-09 12:45 30720 ----a-w- c:\windows\system32\licmgr10.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 282112 ----a-w- c:\windows\system32\dxtrans.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 249344 ----a-w- c:\windows\system32\webcheck.dll</p><p>2012-07-09 12:45 . 2012-07-09 12:45 165888 ----a-w- c:\windows\system32\iexpress.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 160256 ----a-w- c:\windows\system32\wextract.exe</p><p>2012-07-09 12:45 . 2012-07-09 12:45 103936 ----a-w- c:\windows\system32\inseng.dll</p><p>2012-06-26 07:02 . 2012-03-29 02:11 330240 ----a-w- c:\windows\MASetupCaller.dll</p><p>2012-06-09 05:43 . 2012-07-11 13:03 14172672 ----a-w- c:\windows\system32\shell32.dll</p><p>2012-06-06 12:49 . 2012-06-06 12:49 1070152 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX</p><p>2012-06-06 06:06 . 2012-07-11 13:03 2004480 ----a-w- c:\windows\system32\msxml6.dll</p><p>2012-06-06 06:06 . 2012-07-11 13:03 1881600 ----a-w- c:\windows\system32\msxml3.dll</p><p>2012-06-06 06:02 . 2012-07-11 13:03 1133568 ----a-w- c:\windows\system32\cdosys.dll</p><p>2012-06-06 05:05 . 2012-07-11 13:03 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll</p><p>2012-06-06 05:05 . 2012-07-11 13:03 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll</p><p>2012-06-06 05:03 . 2012-07-11 13:03 805376 ----a-w- c:\windows\SysWow64\cdosys.dll</p><p>2012-06-02 22:19 . 2012-06-22 12:58 38424 ----a-w- c:\windows\system32\wups.dll</p><p>2012-06-02 22:19 . 2012-06-22 12:58 2428952 ----a-w- c:\windows\system32\wuaueng.dll</p><p>2012-06-02 22:19 . 2012-06-22 12:58 57880 ----a-w- c:\windows\system32\wuauclt.exe</p><p>2012-06-02 22:19 . 2012-06-22 12:58 44056 ----a-w- c:\windows\system32\wups2.dll</p><p>2012-06-02 22:19 . 2012-06-22 12:58 701976 ----a-w- c:\windows\system32\wuapi.dll</p><p>2012-06-02 22:15 . 2012-06-22 12:58 2622464 ----a-w- c:\windows\system32\wucltux.dll</p><p>2012-06-02 22:15 . 2012-06-22 12:58 99840 ----a-w- c:\windows\system32\wudriver.dll</p><p>2012-06-02 19:19 . 2012-06-22 12:58 186752 ----a-w- c:\windows\system32\wuwebv.dll</p><p>2012-06-02 19:15 . 2012-06-22 12:58 36864 ----a-w- c:\windows\system32\wuapp.exe</p><p>2012-06-02 05:50 . 2012-07-11 13:03 458704 ----a-w- c:\windows\system32\drivers\cng.sys</p><p>2012-06-02 05:48 . 2012-07-11 13:03 151920 ----a-w- c:\windows\system32\drivers\ksecpkg.sys</p><p>2012-06-02 05:48 . 2012-07-11 13:03 95600 ----a-w- c:\windows\system32\drivers\ksecdd.sys</p><p>2012-06-02 05:45 . 2012-07-11 13:03 340992 ----a-w- c:\windows\system32\schannel.dll</p><p>2012-06-02 05:44 . 2012-07-11 13:03 307200 ----a-w- c:\windows\system32\ncrypt.dll</p><p>2012-06-02 04:40 . 2012-07-11 13:03 22016 ----a-w- c:\windows\SysWow64\secur32.dll</p><p>2012-06-02 04:40 . 2012-07-11 13:03 225280 ----a-w- c:\windows\SysWow64\schannel.dll</p><p>2012-06-02 04:39 . 2012-07-11 13:03 219136 ----a-w- c:\windows\SysWow64\ncrypt.dll</p><p>2012-06-02 04:34 . 2012-07-11 13:03 96768 ----a-w- c:\windows\SysWow64\sspicli.dll</p><p>2012-05-31 16:25 . 2011-08-14 17:06 279656 ------w- c:\windows\system32\MpSigStub.exe</p><p>.</p><p>.</p><p>((((((((((((((((((((((((((((( SnapShot@2012-08-26_14.38.56 )))))))))))))))))))))))))))))))))))))))))</p><p>.</p><p>+ 2011-04-19 00:08 . 2012-08-26 15:41 49494 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin</p><p>+ 2009-07-14 05:10 . 2012-08-26 15:41 28468 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin</p><p>+ 2011-04-27 11:35 . 2012-08-26 15:41 12344 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3435974654-3500693669-253271430-1001_UserData.bin</p><p>+ 2011-04-26 13:00 . 2012-08-26 14:45 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat</p><p>- 2011-04-26 13:00 . 2012-08-26 13:41 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat</p><p>+ 2011-04-26 13:00 . 2012-08-26 14:45 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat</p><p>- 2011-04-26 13:00 . 2012-08-26 13:41 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat</p><p>- 2009-07-14 04:54 . 2012-08-26 13:41 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat</p><p>+ 2009-07-14 04:54 . 2012-08-26 14:45 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat</p><p>- 2012-08-26 14:37 . 2012-08-26 14:37 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat</p><p>+ 2012-08-26 15:39 . 2012-08-26 15:39 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat</p><p>+ 2012-08-26 15:39 . 2012-08-26 15:39 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat</p><p>- 2012-08-26 14:37 . 2012-08-26 14:37 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat</p><p>- 2009-07-14 05:01 . 2012-08-26 14:37 510900 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat</p><p>+ 2009-07-14 05:01 . 2012-08-26 15:38 510900 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat</p><p>+ 2011-04-27 16:39 . 2012-08-26 15:38 32175668 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3435974654-3500693669-253271430-1001-8192.dat</p><p>- 2011-04-27 16:39 . 2012-08-26 14:37 32175668 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3435974654-3500693669-253271430-1001-8192.dat</p><p>.</p><p>((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))</p><p>.</p><p>.</p><p>*Note* empty entries & legit default entries are not shown </p><p>REGEDIT4</p><p>.</p><p>[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Wsockctrl]</p><p>@="{0158F685-6249-486F-85B4-08D218BC1A51}"</p><p>[HKEY_CLASSES_ROOT\CLSID\{0158F685-6249-486F-85B4-08D218BC1A51}]</p><p>2011-07-16 04:24 2118888 ----a-w- c:\windows\SysWOW64\usblib.dll</p><p>.</p><p>[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]</p><p>"MobileDocuments"="c:\program files (x86)\Common Files\Apple\Internet Services\ubd.exe" [2012-02-23 59240]</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]</p><p>"RemoteControl9"="c:\program files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [2010-10-01 87336]</p><p>"PDVD9LanguageShortcut"="c:\program files (x86)\CyberLink\PowerDVD9\Language\Language.exe" [2010-09-17 50472]</p><p>"BDRegion"="c:\program files (x86)\Cyberlink\Shared Files\brs.exe" [2010-10-29 75048]</p><p>"RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-11-25 240112]</p><p>"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-03-22 1675160]</p><p>"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]</p><p>"Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-05-21 155456]</p><p>"Intel AppUp(SM) center Systray"="c:\program files (x86)\Intel\IntelAppStore\bin\AppUp.exe" [2012-05-21 901416]</p><p>.</p><p>c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\</p><p>McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]</p><p>.</p><p>[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]</p><p>"ConsentPromptBehaviorAdmin"= 5 (0x5)</p><p>"ConsentPromptBehaviorUser"= 3 (0x3)</p><p>"EnableUIADesktopToggle"= 0 (0x0)</p><p>.</p><p>[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]</p><p>"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll</p><p>.</p><p>[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]</p><p>Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]</p><p>@=""</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]</p><p>@=""</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]</p><p>@="Driver"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]</p><p>"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"</p><p>"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"</p><p>"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"</p><p>"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime</p><p>"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"</p><p>.</p><p>R2 0186111345904461mcinstcleanup;McAfee Application Installer Cleanup (0186111345904461);c:\windows\TEMP\018611~1.EXE [x]</p><p>R2 CLKMSVC10_9EC60124;CyberLink Product - 2011/04/18 19:46;c:\program files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [2010-10-29 236016]</p><p>R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]</p><p>R2 DellDigitalDelivery;Dell Digital Delivery Service;c:\program files (x86)\Dell Digital Delivery\DeliveryService.exe [2010-11-16 141192]</p><p>R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-27 136176]</p><p>R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]</p><p>R2 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2010-12-17 340240]</p><p>R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]</p><p>R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-16 250056]</p><p>R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-02-22 65264]</p><p>R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-06-04 99384]</p><p>R3 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-27 136176]</p><p>R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-26 158976]</p><p>R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]</p><p>R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-02-22 100912]</p><p>R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]</p><p>R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]</p><p>R3 OXSDIDRV_x64;Oxford Semi eSATA Filter (x64);c:\windows\system32\DRIVERS\OXSDIDRV_x64.sys [2009-09-28 51760]</p><p>R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]</p><p>R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-12-01 250984]</p><p>R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-06-04 203320]</p><p>R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]</p><p>R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]</p><p>R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-02-15 52736]</p><p>R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-04-29 1255736]</p><p>R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]</p><p>S0 McPvDrv;McPvDrv Driver;c:\windows\system32\drivers\McPvDrv.sys [2011-04-11 71800]</p><p>S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-02-22 289664]</p><p>S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2010-11-30 25576]</p><p>S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]</p><p>S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2012-02-22 75936]</p><p>S1 MOBKFilter;MOBKFilter;c:\windows\system32\DRIVERS\MOBK.sys [2010-04-14 66040]</p><p>S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]</p><p>S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]</p><p>S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]</p><p>S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [2010-12-14 974912]</p><p>S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]</p><p>S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]</p><p>S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-03-20 210584]</p><p>S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-03-20 162192]</p><p>S2 MOBKbackup;McAfee Online Backup;c:\program files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-04-14 231224]</p><p>S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-11-30 1997416]</p><p>S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-11-29 378472]</p><p>S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]</p><p>S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-20 2656280]</p><p>S2 VBoxDrv;VBox Support Driver;c:\program files (x86)\YouWave_Android\vb\VBoxDrv.sys [2010-07-15 203864]</p><p>S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [2010-12-14 1298496]</p><p>S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys [2010-12-14 58128]</p><p>S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-11-15 327168]</p><p>S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2010-08-12 175168]</p><p>S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [2011-05-18 47616]</p><p>S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-12-10 60416]</p><p>S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]</p><p>S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-02-22 487296]</p><p>S3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [2010-12-22 8505856]</p><p>S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-11-19 80384]</p><p>S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-11-19 181248]</p><p>S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2011-08-01 45416]</p><p>S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]</p><p>S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]</p><p>S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys [2010-12-01 42392]</p><p>.</p><p>.</p><p>--- Other Services/Drivers In Memory ---</p><p>.</p><p>*Deregistered* - CLKMDRV10_9EC60124</p><p>*Deregistered* - mfeavfk01</p><p>.</p><p>Contents of the 'Scheduled Tasks' folder</p><p>.</p><p>2012-08-26 c:\windows\Tasks\Adobe Flash Player Updater.job</p><p>- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-01 20:23]</p><p>.</p><p>2012-08-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job</p><p>- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-27 13:19]</p><p>.</p><p>2012-08-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job</p><p>- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-27 13:19]</p><p>.</p><p>.</p><p>--------- X64 Entries -----------</p><p>.</p><p>.</p><p>[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MOBK]</p><p>@="{3c3f3c1a-9153-7c05-f938-622e7003894d}"</p><p>[HKEY_CLASSES_ROOT\CLSID\{3c3f3c1a-9153-7c05-f938-622e7003894d}]</p><p>2010-04-14 00:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll</p><p>.</p><p>[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MOBK2]</p><p>@="{e6ea1d7d-144e-b977-98c4-84c53c1a69d0}"</p><p>[HKEY_CLASSES_ROOT\CLSID\{e6ea1d7d-144e-b977-98c4-84c53c1a69d0}]</p><p>2010-04-14 00:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll</p><p>.</p><p>[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MOBK3]</p><p>@="{b4caf489-1eec-c617-49ad-8d7088598c06}"</p><p>[HKEY_CLASSES_ROOT\CLSID\{b4caf489-1eec-c617-49ad-8d7088598c06}]</p><p>2010-04-14 00:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll</p><p>.</p><p>[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Wsockctrl]</p><p>@="{0158F685-6249-486F-85B4-08D218BC1A51}"</p><p>[HKEY_CLASSES_ROOT\CLSID\{0158F685-6249-486F-85B4-08D218BC1A51}]</p><p>2011-07-16 04:24 1751281 ----a-w- c:\windows\SysWOW64\chkfax.dll</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]</p><p>"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2010-12-14 6561384]</p><p>"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-18 167960]</p><p>"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-18 391704]</p><p>"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-18 417304]</p><p>"NVHotkey"="c:\windows\system32\nvHotkey.dll" [2010-11-29 312936]</p><p>"Apoint"="c:\program files\DellTPad\Apoint.exe" [2011-01-05 592240]</p><p>"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2010-12-17 1933584]</p><p>"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2010-12-14 10222080]</p><p>"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]</p><p>"McPvTray_exe"="c:\program files\McAfee\MAT\McPvTray.exe" [2011-04-08 436384]</p><p>"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 2417032]</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]</p><p>"LoadAppInit_DLLs"=0x1</p><p>"AppInit_DLLs"=c:\windows\System32\nvinitx.dll</p><p>.</p><p>------- Supplementary Scan -------</p><p>.</p><p>uLocal Page = c:\windows\system32\blank.htm</p><p>uStart Page = hxxp://www.google.com/</p><p>mLocal Page = c:\windows\SysWOW64\blank.htm</p><p>uInternet Settings,ProxyOverride = *.local</p><p>IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000</p><p>IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105</p><p>TCP: DhcpNameServer = 192.168.1.1</p><p>DPF: {16F67783-7E72-4C39-99C4-4780A8335484} - hxxp://www.syncmyride.com/Own/Modules/UpdateCenter/applets/sync.cab</p><p>FF - ProfilePath - c:\users\jason\AppData\Roaming\Mozilla\Firefox\Profiles\jf9dh41e.default\</p><p>FF - prefs.js: network.proxy.type - 0</p><p>FF - user.js: general.useragent.extra.brc - </p><p>.</p><p>- - - - ORPHANS REMOVED - - - -</p><p>.</p><p>Toolbar-Locked - (no file)</p><p>HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start</p><p>Toolbar-Locked - (no file)</p><p>.</p><p>.</p><p>.</p><p>--------------------- LOCKED REGISTRY KEYS ---------------------</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]</p><p>@Denied: (A 2) (Everyone)</p><p>@="FlashBroker"</p><p>"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]</p><p>"Enabled"=dword:00000001</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]</p><p>@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]</p><p>@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]</p><p>@Denied: (A 2) (Everyone)</p><p>@="Shockwave Flash Object"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]</p><p>@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"</p><p>"ThreadingModel"="Apartment"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]</p><p>@="0"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]</p><p>@="ShockwaveFlash.ShockwaveFlash.11"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]</p><p>@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]</p><p>@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]</p><p>@="1.0"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]</p><p>@="ShockwaveFlash.ShockwaveFlash"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]</p><p>@Denied: (A 2) (Everyone)</p><p>@="Macromedia Flash Factory Object"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]</p><p>@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"</p><p>"ThreadingModel"="Apartment"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]</p><p>@="FlashFactory.FlashFactory.1"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]</p><p>@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]</p><p>@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]</p><p>@="1.0"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]</p><p>@="FlashFactory.FlashFactory"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]</p><p>@Denied: (A 2) (Everyone)</p><p>@="IFlashBroker4"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]</p><p>@="{00020424-0000-0000-C000-000000000046}"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]</p><p>@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"</p><p>"Version"="1.0"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]</p><p>"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,</p><p> 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]</p><p>@Denied: (A) (Everyone)</p><p>"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]</p><p>@Denied: (A) (Everyone)</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]</p><p>"Key"="ActionsPane3"</p><p>"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]</p><p>@Denied: (A) (Users)</p><p>@Denied: (A) (Everyone)</p><p>@Allowed: (B 1 2 3 4 5) (S-1-5-20)</p><p>"BlindDial"=dword:00000000</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]</p><p>@Denied: (A) (Users)</p><p>@Denied: (A) (Everyone)</p><p>@Allowed: (B 1 2 3 4 5) (S-1-5-20)</p><p>"BlindDial"=dword:00000000</p><p>.</p><p>[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]</p><p>@Denied: (Full) (Everyone)</p><p>.</p><p>------------------------ Other Running Processes ------------------------</p><p>.</p><p>c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe</p><p>c:\windows\SysWOW64\rundll32.exe</p><p>c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe</p><p>c:\program files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe</p><p>c:\windows\SysWOW64\rundll32.exe</p><p>c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe</p><p>.</p><p>**************************************************************************</p><p>.</p><p>Completion time: 2012-08-26 11:44:57 - machine was rebooted</p><p>ComboFix-quarantined-files.txt 2012-08-26 15:44</p><p>.</p><p>Pre-Run: 400,112,300,032 bytes free</p><p>Post-Run: 399,786,856,448 bytes free</p><p>.</p><p>- - End Of File - - DFAEBDFBACFF19789AE1F36F99C7B78F</p><p></p><p></p><p>still not connected to internet. thanks jason</p></blockquote><p></p>
[QUOTE="Jstratfl, post: 70577, member: 2249"] Jack, sorry so long. I work in retail in South FL and the storm was a little hektic. here is the Combo Fix Log... ComboFix 12-08-25.04 - jason 08/26/2012 11:33:31.2.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.6058.4522 [GMT -4:00] Running from: c:\users\jason\Desktop\ComboFix.exe AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637} FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C} SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . ---- Previous Run ------- . C:\Install.exe c:\windows\SysWow64\binperf.dll c:\windows\SysWow64\muzapp.exe c:\windows\SysWow64\popsvr.dll . . ((((((((((((((((((((((((( Files Created from 2012-07-26 to 2012-08-26 ))))))))))))))))))))))))))))))) . . 2012-08-26 15:38 . 2012-08-26 15:38 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp 2012-08-26 15:38 . 2012-08-26 15:38 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-08-25 15:34 . 2012-08-25 15:35 -------- d-----w- c:\programdata\7531CCA9006AA673177B6A13F875F002 2012-08-25 15:04 . 2012-08-25 15:04 -------- d-----w- c:\users\jason\AppData\Roaming\Free-PDF-to-Word.com 2012-08-25 15:04 . 2012-08-25 15:09 -------- d-----w- c:\program files (x86)\Free PDF to Word Converter 2012-08-24 21:29 . 2012-08-01 22:58 9309624 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{54F9CCBF-F553-4E04-A07A-04F92A5CCD13}\mpengine.dll 2012-08-15 13:21 . 2012-07-06 20:07 552960 ----a-w- c:\windows\system32\drivers\bthport.sys 2012-08-15 13:12 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll 2012-08-15 13:12 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe 2012-08-15 13:12 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll 2012-08-15 13:12 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe 2012-08-14 20:13 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll 2012-08-14 20:13 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll 2012-08-14 20:13 . 2012-07-04 22:13 59392 ----a-w- c:\windows\system32\browcli.dll 2012-08-14 20:13 . 2012-07-04 22:13 136704 ----a-w- c:\windows\system32\browser.dll 2012-08-14 20:13 . 2012-07-04 22:16 73216 ----a-w- c:\windows\system32\netapi32.dll 2012-08-14 20:13 . 2012-07-04 21:14 41984 ----a-w- c:\windows\SysWow64\browcli.dll 2012-08-14 20:13 . 2012-07-18 18:15 3148800 ----a-w- c:\windows\system32\win32k.sys 2012-08-14 20:13 . 2012-05-14 05:26 956928 ----a-w- c:\windows\system32\localspl.dll 2012-08-07 05:01 . 2012-06-04 07:59 99384 ----a-w- c:\windows\system32\drivers\ssudbus.sys 2012-08-07 05:01 . 2012-06-04 07:59 203320 ----a-w- c:\windows\system32\drivers\ssudmdm.sys 2012-08-05 22:18 . 2012-08-05 22:18 -------- d-----w- c:\program files (x86)\PLX Technology 2012-08-05 22:18 . 2010-05-25 13:14 31280 ----a-w- c:\windows\system32\drivers\OXUDIDRV_x64.sys 2012-08-05 22:18 . 2012-08-05 22:18 -------- d-----w- c:\program files\Iomega 2012-07-27 20:51 . 2012-07-27 20:51 184248 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-08-16 20:23 . 2012-07-01 13:01 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2012-08-16 20:23 . 2011-06-11 13:43 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2012-08-15 13:11 . 2011-05-08 12:52 62134624 ----a-w- c:\windows\system32\MRT.exe 2012-07-09 12:45 . 2012-07-09 12:45 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2012-07-09 12:45 . 2012-07-09 12:45 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2012-07-09 12:45 . 2012-07-09 12:45 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll 2012-07-09 12:45 . 2012-07-09 12:45 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2012-07-09 12:45 . 2012-07-09 12:45 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe 2012-07-09 12:45 . 2012-07-09 12:45 74752 ----a-w- c:\windows\SysWow64\iesetup.dll 2012-07-09 12:45 . 2012-07-09 12:45 65024 ----a-w- c:\windows\system32\pngfilt.dll 2012-07-09 12:45 . 2012-07-09 12:45 63488 ----a-w- c:\windows\SysWow64\tdc.ocx 2012-07-09 12:45 . 2012-07-09 12:45 55296 ----a-w- c:\windows\system32\msfeedsbs.dll 2012-07-09 12:45 . 2012-07-09 12:45 49664 ----a-w- c:\windows\system32\imgutil.dll 2012-07-09 12:45 . 2012-07-09 12:45 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2012-07-09 12:45 . 2012-07-09 12:45 48640 ----a-w- c:\windows\system32\mshtmler.dll 2012-07-09 12:45 . 2012-07-09 12:45 420864 ----a-w- c:\windows\SysWow64\vbscript.dll 2012-07-09 12:45 . 2012-07-09 12:45 367104 ----a-w- c:\windows\SysWow64\html.iec 2012-07-09 12:45 . 2012-07-09 12:45 35840 ----a-w- c:\windows\SysWow64\imgutil.dll 2012-07-09 12:45 . 2012-07-09 12:45 267776 ----a-w- c:\windows\system32\ieaksie.dll 2012-07-09 12:45 . 2012-07-09 12:45 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll 2012-07-09 12:45 . 2012-07-09 12:45 222208 ----a-w- c:\windows\system32\msls31.dll 2012-07-09 12:45 . 2012-07-09 12:45 197120 ----a-w- c:\windows\system32\msrating.dll 2012-07-09 12:45 . 2012-07-09 12:45 163840 ----a-w- c:\windows\system32\ieakui.dll 2012-07-09 12:45 . 2012-07-09 12:45 161792 ----a-w- c:\windows\SysWow64\msls31.dll 2012-07-09 12:45 . 2012-07-09 12:45 160256 ----a-w- c:\windows\system32\ieakeng.dll 2012-07-09 12:45 . 2012-07-09 12:45 152064 ----a-w- c:\windows\SysWow64\wextract.exe 2012-07-09 12:45 . 2012-07-09 12:45 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2012-07-09 12:45 . 2012-07-09 12:45 149504 ----a-w- c:\windows\system32\occache.dll 2012-07-09 12:45 . 2012-07-09 12:45 145920 ----a-w- c:\windows\system32\iepeers.dll 2012-07-09 12:45 . 2012-07-09 12:45 135168 ----a-w- c:\windows\system32\IEAdvpack.dll 2012-07-09 12:45 . 2012-07-09 12:45 12288 ----a-w- c:\windows\system32\mshta.exe 2012-07-09 12:45 . 2012-07-09 12:45 11776 ----a-w- c:\windows\SysWow64\mshta.exe 2012-07-09 12:45 . 2012-07-09 12:45 114176 ----a-w- c:\windows\system32\admparse.dll 2012-07-09 12:45 . 2012-07-09 12:45 111616 ----a-w- c:\windows\system32\iesysprep.dll 2012-07-09 12:45 . 2012-07-09 12:45 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2012-07-09 12:45 . 2012-07-09 12:45 10752 ----a-w- c:\windows\system32\msfeedssync.exe 2012-07-09 12:45 . 2012-07-09 12:45 101888 ----a-w- c:\windows\SysWow64\admparse.dll 2012-07-09 12:45 . 2012-07-09 12:45 89088 ----a-w- c:\windows\system32\ie4uinit.exe 2012-07-09 12:45 . 2012-07-09 12:45 85504 ----a-w- c:\windows\system32\iesetup.dll 2012-07-09 12:45 . 2012-07-09 12:45 82432 ----a-w- c:\windows\system32\icardie.dll 2012-07-09 12:45 . 2012-07-09 12:45 76800 ----a-w- c:\windows\system32\tdc.ocx 2012-07-09 12:45 . 2012-07-09 12:45 697344 ----a-w- c:\windows\system32\msfeeds.dll 2012-07-09 12:45 . 2012-07-09 12:45 603648 ----a-w- c:\windows\system32\vbscript.dll 2012-07-09 12:45 . 2012-07-09 12:45 534528 ----a-w- c:\windows\system32\ieapfltr.dll 2012-07-09 12:45 . 2012-07-09 12:45 452608 ----a-w- c:\windows\system32\dxtmsft.dll 2012-07-09 12:45 . 2012-07-09 12:45 448512 ----a-w- c:\windows\system32\html.iec 2012-07-09 12:45 . 2012-07-09 12:45 403248 ----a-w- c:\windows\system32\iedkcs32.dll 2012-07-09 12:45 . 2012-07-09 12:45 39936 ----a-w- c:\windows\system32\iernonce.dll 2012-07-09 12:45 . 2012-07-09 12:45 3695416 ----a-w- c:\windows\system32\ieapfltr.dat 2012-07-09 12:45 . 2012-07-09 12:45 30720 ----a-w- c:\windows\system32\licmgr10.dll 2012-07-09 12:45 . 2012-07-09 12:45 282112 ----a-w- c:\windows\system32\dxtrans.dll 2012-07-09 12:45 . 2012-07-09 12:45 249344 ----a-w- c:\windows\system32\webcheck.dll 2012-07-09 12:45 . 2012-07-09 12:45 165888 ----a-w- c:\windows\system32\iexpress.exe 2012-07-09 12:45 . 2012-07-09 12:45 160256 ----a-w- c:\windows\system32\wextract.exe 2012-07-09 12:45 . 2012-07-09 12:45 103936 ----a-w- c:\windows\system32\inseng.dll 2012-06-26 07:02 . 2012-03-29 02:11 330240 ----a-w- c:\windows\MASetupCaller.dll 2012-06-09 05:43 . 2012-07-11 13:03 14172672 ----a-w- c:\windows\system32\shell32.dll 2012-06-06 12:49 . 2012-06-06 12:49 1070152 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX 2012-06-06 06:06 . 2012-07-11 13:03 2004480 ----a-w- c:\windows\system32\msxml6.dll 2012-06-06 06:06 . 2012-07-11 13:03 1881600 ----a-w- c:\windows\system32\msxml3.dll 2012-06-06 06:02 . 2012-07-11 13:03 1133568 ----a-w- c:\windows\system32\cdosys.dll 2012-06-06 05:05 . 2012-07-11 13:03 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll 2012-06-06 05:05 . 2012-07-11 13:03 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll 2012-06-06 05:03 . 2012-07-11 13:03 805376 ----a-w- c:\windows\SysWow64\cdosys.dll 2012-06-02 22:19 . 2012-06-22 12:58 38424 ----a-w- c:\windows\system32\wups.dll 2012-06-02 22:19 . 2012-06-22 12:58 2428952 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-02 22:19 . 2012-06-22 12:58 57880 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-02 22:19 . 2012-06-22 12:58 44056 ----a-w- c:\windows\system32\wups2.dll 2012-06-02 22:19 . 2012-06-22 12:58 701976 ----a-w- c:\windows\system32\wuapi.dll 2012-06-02 22:15 . 2012-06-22 12:58 2622464 ----a-w- c:\windows\system32\wucltux.dll 2012-06-02 22:15 . 2012-06-22 12:58 99840 ----a-w- c:\windows\system32\wudriver.dll 2012-06-02 19:19 . 2012-06-22 12:58 186752 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-02 19:15 . 2012-06-22 12:58 36864 ----a-w- c:\windows\system32\wuapp.exe 2012-06-02 05:50 . 2012-07-11 13:03 458704 ----a-w- c:\windows\system32\drivers\cng.sys 2012-06-02 05:48 . 2012-07-11 13:03 151920 ----a-w- c:\windows\system32\drivers\ksecpkg.sys 2012-06-02 05:48 . 2012-07-11 13:03 95600 ----a-w- c:\windows\system32\drivers\ksecdd.sys 2012-06-02 05:45 . 2012-07-11 13:03 340992 ----a-w- c:\windows\system32\schannel.dll 2012-06-02 05:44 . 2012-07-11 13:03 307200 ----a-w- c:\windows\system32\ncrypt.dll 2012-06-02 04:40 . 2012-07-11 13:03 22016 ----a-w- c:\windows\SysWow64\secur32.dll 2012-06-02 04:40 . 2012-07-11 13:03 225280 ----a-w- c:\windows\SysWow64\schannel.dll 2012-06-02 04:39 . 2012-07-11 13:03 219136 ----a-w- c:\windows\SysWow64\ncrypt.dll 2012-06-02 04:34 . 2012-07-11 13:03 96768 ----a-w- c:\windows\SysWow64\sspicli.dll 2012-05-31 16:25 . 2011-08-14 17:06 279656 ------w- c:\windows\system32\MpSigStub.exe . . ((((((((((((((((((((((((((((( SnapShot@2012-08-26_14.38.56 ))))))))))))))))))))))))))))))))))))))))) . + 2011-04-19 00:08 . 2012-08-26 15:41 49494 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin + 2009-07-14 05:10 . 2012-08-26 15:41 28468 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin + 2011-04-27 11:35 . 2012-08-26 15:41 12344 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3435974654-3500693669-253271430-1001_UserData.bin + 2011-04-26 13:00 . 2012-08-26 14:45 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2011-04-26 13:00 . 2012-08-26 13:41 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2011-04-26 13:00 . 2012-08-26 14:45 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2011-04-26 13:00 . 2012-08-26 13:41 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2009-07-14 04:54 . 2012-08-26 13:41 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-07-14 04:54 . 2012-08-26 14:45 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2012-08-26 14:37 . 2012-08-26 14:37 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2012-08-26 15:39 . 2012-08-26 15:39 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2012-08-26 15:39 . 2012-08-26 15:39 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2012-08-26 14:37 . 2012-08-26 14:37 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2009-07-14 05:01 . 2012-08-26 14:37 510900 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2009-07-14 05:01 . 2012-08-26 15:38 510900 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2011-04-27 16:39 . 2012-08-26 15:38 32175668 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3435974654-3500693669-253271430-1001-8192.dat - 2011-04-27 16:39 . 2012-08-26 14:37 32175668 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3435974654-3500693669-253271430-1001-8192.dat . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Wsockctrl] @="{0158F685-6249-486F-85B4-08D218BC1A51}" [HKEY_CLASSES_ROOT\CLSID\{0158F685-6249-486F-85B4-08D218BC1A51}] 2011-07-16 04:24 2118888 ----a-w- c:\windows\SysWOW64\usblib.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MobileDocuments"="c:\program files (x86)\Common Files\Apple\Internet Services\ubd.exe" [2012-02-23 59240] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "RemoteControl9"="c:\program files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [2010-10-01 87336] "PDVD9LanguageShortcut"="c:\program files (x86)\CyberLink\PowerDVD9\Language\Language.exe" [2010-09-17 50472] "BDRegion"="c:\program files (x86)\Cyberlink\Shared Files\brs.exe" [2010-10-29 75048] "RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-11-25 240112] "mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-03-22 1675160] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240] "Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-05-21 155456] "Intel AppUp(SM) center Systray"="c:\program files (x86)\Intel\IntelAppStore\bin\AppUp.exe" [2012-05-21 901416] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" . R2 0186111345904461mcinstcleanup;McAfee Application Installer Cleanup (0186111345904461);c:\windows\TEMP\018611~1.EXE [x] R2 CLKMSVC10_9EC60124;CyberLink Product - 2011/04/18 19:46;c:\program files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [2010-10-29 236016] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 DellDigitalDelivery;Dell Digital Delivery Service;c:\program files (x86)\Dell Digital Delivery\DeliveryService.exe [2010-11-16 141192] R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-27 136176] R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936] R2 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2010-12-17 340240] R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632] R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-16 250056] R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-02-22 65264] R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-06-04 99384] R3 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-27 136176] R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-26 158976] R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232] R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-02-22 100912] R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2010-11-12 155752] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184] R3 OXSDIDRV_x64;Oxford Semi eSATA Filter (x64);c:\windows\system32\DRIVERS\OXSDIDRV_x64.sys [2009-09-28 51760] R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-12-01 250984] R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-06-04 203320] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392] R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-02-15 52736] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-04-29 1255736] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] S0 McPvDrv;McPvDrv Driver;c:\windows\system32\drivers\McPvDrv.sys [2011-04-11 71800] S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-02-22 289664] S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2010-11-30 25576] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856] S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2012-02-22 75936] S1 MOBKFilter;MOBKFilter;c:\windows\system32\DRIVERS\MOBK.sys [2010-04-14 66040] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960] S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208] S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [2010-12-14 974912] S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936] S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936] S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-03-20 210584] S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-03-20 162192] S2 MOBKbackup;McAfee Online Backup;c:\program files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-04-14 231224] S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-11-30 1997416] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-11-29 378472] S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120] S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-20 2656280] S2 VBoxDrv;VBox Support Driver;c:\program files (x86)\YouWave_Android\vb\VBoxDrv.sys [2010-07-15 203864] S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [2010-12-14 1298496] S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys [2010-12-14 58128] S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-11-15 327168] S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2010-08-12 175168] S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [2011-05-18 47616] S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-12-10 60416] S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344] S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-02-22 487296] S3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [2010-12-22 8505856] S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-11-19 80384] S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-11-19 181248] S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2011-08-01 45416] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys [2010-12-01 42392] . . --- Other Services/Drivers In Memory --- . *Deregistered* - CLKMDRV10_9EC60124 *Deregistered* - mfeavfk01 . Contents of the 'Scheduled Tasks' folder . 2012-08-26 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-01 20:23] . 2012-08-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-27 13:19] . 2012-08-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-27 13:19] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MOBK] @="{3c3f3c1a-9153-7c05-f938-622e7003894d}" [HKEY_CLASSES_ROOT\CLSID\{3c3f3c1a-9153-7c05-f938-622e7003894d}] 2010-04-14 00:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MOBK2] @="{e6ea1d7d-144e-b977-98c4-84c53c1a69d0}" [HKEY_CLASSES_ROOT\CLSID\{e6ea1d7d-144e-b977-98c4-84c53c1a69d0}] 2010-04-14 00:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MOBK3] @="{b4caf489-1eec-c617-49ad-8d7088598c06}" [HKEY_CLASSES_ROOT\CLSID\{b4caf489-1eec-c617-49ad-8d7088598c06}] 2010-04-14 00:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Wsockctrl] @="{0158F685-6249-486F-85B4-08D218BC1A51}" [HKEY_CLASSES_ROOT\CLSID\{0158F685-6249-486F-85B4-08D218BC1A51}] 2011-07-16 04:24 1751281 ----a-w- c:\windows\SysWOW64\chkfax.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2010-12-14 6561384] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-18 167960] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-18 391704] "Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-18 417304] "NVHotkey"="c:\windows\system32\nvHotkey.dll" [2010-11-29 312936] "Apoint"="c:\program files\DellTPad\Apoint.exe" [2011-01-05 592240] "IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2010-12-17 1933584] "BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2010-12-14 10222080] "IntelTBRunOnce"="wscript.exe" [2009-07-14 168960] "McPvTray_exe"="c:\program files\McAfee\MAT\McPvTray.exe" [2011-04-08 436384] "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 2417032] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x1 "AppInit_DLLs"=c:\windows\System32\nvinitx.dll . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.com/ mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 TCP: DhcpNameServer = 192.168.1.1 DPF: {16F67783-7E72-4C39-99C4-4780A8335484} - hxxp://www.syncmyride.com/Own/Modules/UpdateCenter/applets/sync.cab FF - ProfilePath - c:\users\jason\AppData\Roaming\Mozilla\Firefox\Profiles\jf9dh41e.default\ FF - prefs.js: network.proxy.type - 0 FF - user.js: general.useragent.extra.brc - . - - - - ORPHANS REMOVED - - - - . Toolbar-Locked - (no file) HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start Toolbar-Locked - (no file) . . . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee] "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Other Running Processes ------------------------ . c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\windows\SysWOW64\rundll32.exe c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe c:\program files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe c:\windows\SysWOW64\rundll32.exe c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe . ************************************************************************** . Completion time: 2012-08-26 11:44:57 - machine was rebooted ComboFix-quarantined-files.txt 2012-08-26 15:44 . Pre-Run: 400,112,300,032 bytes free Post-Run: 399,786,856,448 bytes free . - - End Of File - - DFAEBDFBACFF19789AE1F36F99C7B78F still not connected to internet. thanks jason [/QUOTE]
Insert quotes…
Verification
Post reply
Top