cant install or download any antivirus or blue screen
Here whats going on the computer was crashing showing blue screen then after a while it stop and show the blue screen for a sec and restarts then i try to download bitdefener manager but it would not download so i try to just download the setup but when i try to setup it crashes the computer instantly. So i went and download Malwarebytes' Anti-Malware it cant update but it install and i ran a scan it foudn a couple viruses but the main virus is still there becasue when i try to update it still wont work, i uninstall it and try install bitdefender but no luck blue screen
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_26
Run by Administrator at 16:40:42 on 2011-12-25
Microsoft Windows XP Professional 5.1.2600.3.1252.61.1033.18.1014.147 [GMT -5:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware2\mbamservice.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Malwarebytes' Anti-Malware2\mbamgui.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\CrossriderWebApps\Crossrider.exe
C:\Program Files\Mozilla Firefox\firefox.exe
svchost.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\System32\svchost.exe -k Akamai
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\explorer.exe
.
============== Pseudo HJT Report ===============
.
uWindow Title = IE
uURLSearchHooks: H - No File
mWinlogon: SfcDisable=-99 (0xffffff9d)
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~1\office12\GRA8E1~1.DLL
BHO: MrFroggy Class: {856e12b5-22d7-4e22-9aca-ea9a008dd65b} - c:\program files\minibar\Froggy.dll
BHO: {8984B388-A5BB-4DF7-B274-77B879E179DB} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: AlterGeoBHO Class: {9bfba68e-e21b-458e-ae12-fe85e903d2c1} - c:\program files\altergeo\altergeo magic scanner\3.3.2.779\AlterGeo.BrowserPlugin.dll
BHO: CrossRider: {a876e312-7d08-401a-b7a6-fafc5dc2f292} - c:\program files\crossriderwebapps\Crossrider.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: MinibarBHO: {aa74d58f-acd0-450d-a85e-6c04b171c044} - c:\program files\minibar\Kango.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7018.1622\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: DAPIELoader Class: {ff6c3cf0-4b15-11d1-abed-709549c10000} - c:\progra~1\dap\DAPIEL~1.DLL
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
TB: {121AC508-44AF-45CF-A4E9-DDA8619A4C73} - No File
TB: {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
uRun: [ares] "c:\program files\ares\Ares.exe" -h
uRun: [CrossRiderPlugin] c:\program files\crossriderwebapps\Crossrider.exe
mRun: [UnlockerAssistant] "c:\program files\unlocker\UnlockerAssistant.exe" -H
mRun: [SystemTray] SysTray.Exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [RIMBBLaunchAgent.exe] c:\program files\common files\research in motion\usb drivers\RIMBBLaunchAgent.exe
mRun: [Steam] c:\windows\Steam.exe
mRun: [4StoryPrePatch] c:\program files\zemi interactive\4story_us\PrePatch.exe
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware2\mbamgui.exe" /starttray
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
dRunOnce: [NewUser] c:\windows\lastxp\NewUser.cmd
StartupFolder: c:\users\admini~1\startm~1\programs\startup\autoru~1\visual~1.lnk - c:\ppapps\visualtasktips\VisualTaskTips.exe
uPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
mPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
mPolicies-system: SynchronousMachineGroupPolicy = 0 (0x0)
mPolicies-system: SynchronousUserGroupPolicy = 0 (0x0)
dPolicies-explorer: NoSMHelp = 1 (0x1)
dPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
IE: &Clean Traces - c:\program files\dap\privacy package\dapcleanerie.htm
IE: &Download with &DAP - c:\program files\dap\dapextie.htm
IE: Download &all with DAP - c:\program files\dap\dapextie2.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office12\EXCEL.EXE/3000
IE: Lookup on Merriam Webster - file://c:\program files\iespell\Merriam Webster.HTM
IE: Lookup on Wikipedia - file://c:\program files\iespell\wikipedia.HTM
IE: Sothink SWF Catcher - c:\program files\common files\sourcetec\swf catcher\InternetExplorer.htm
IE: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "c:\program files\fiddler2\Fiddler.exe"
IE: {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - c:\program files\common files\sourcetec\swf catcher\InternetExplorer.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~1\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office12\REFIEBAR.DLL
IE: {AAA38851-3CFF-475F-B5E0-720D3645E4A5} - {AAA38851-3CFF-475F-B5E0-720D3645E4A5} - c:\program files\minibar\MinibarButton.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
TCP: DhcpNameServer = 65.183.0.76 65.183.0.86
TCP: Interfaces\{811951D2-CA06-4836-A40B-9E0CC359FAFA} : DhcpNameServer = 65.183.0.76 65.183.0.86
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~1\office12\GR99D3~1.DLL
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~1\office12\GRA8E1~1.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\administrator\application data\mozilla\firefox\profiles\bsd7htq7.default\
FF - prefs.js: browser.search.defaulturl - hxxp://go.mail.ru/search?fr=fftb&utf8in&q=
FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.jm/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?hl=en-GB&q=
FF - prefs.js: network.proxy.type - 4
FF - component: c:\program files\dap\dapfirefox\components\DAPFireFox.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60831.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll
FF - plugin: c:\users\administrator\local settings\application data\facebook\video\skype\npFacebookVideoCalling.dll
FF - plugin: c:\users\administrator\local settings\application data\google\update\1.3.21.57\npGoogleUpdate3.dll
FF - plugin: c:\users\administrator\local settings\application data\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\windows\system32\npOGPPlugin.dll
FF - plugin: c:\windows\system32\npptools.dll
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true);user_pref(extensions.BabylonToolbar_i.babTrack, affID=100888
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 78dbc037000000000000001320c4963c
FF - user.js: extensions.BabylonToolbar_i.hardId - 78dbc037000000000000001320c4963c
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15322
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1714:36:01
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
============= SERVICES / DRIVERS ===============
.
R0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\drivers\NBVol.sys [2011-12-16 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\drivers\NBVolUp.sys [2011-12-16 12464]
R1 {8EF3C372-2A65-45b5-B423-F87E1054A832};{8EF3C372-2A65-45b5-B423-F87E1054A832};c:\program files\common files\microsoft shared\triedit\{8EF3C372-2A65-45b5-B423-F87E1054A832}.sys [2011-12-21 636744]
R1 BdRawPr;BdRawPr;c:\windows\system32\drivers\bdrawpr.sys [2011-12-24 12960]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2008-5-5 14336]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware2\mbamservice.exe [2011-12-25 366152]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-12-25 22216]
R3 scncap;scncap;c:\windows\system32\drivers\scncap.sys [2009-12-25 9984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-17 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-10-23 136176]
S2 WCMVCAM;WebcamMax, WDM Video Capture;c:\windows\system32\drivers\wcmvcam.sys [2011-6-23 1068216]
S3 1394hub;1394 Enabled Hub;c:\windows\system32\svchost.exe -k netsvcs [2008-5-5 14336]
S3 cpudrv;cpudrv;\??\c:\program files\systemrequirementslab\cpudrv.sys --> c:\program files\systemrequirementslab\cpudrv.sys [?]
S3 EagleXNt;EagleXNt;\??\c:\windows\system32\drivers\eaglexnt.sys --> c:\windows\system32\drivers\EagleXNt.sys [?]
S3 ExterminateIt;ExterminateIt;c:\windows\system32\drivers\extit.sys [2011-12-25 64000]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\garena messenger\room\safedrv.sys --> c:\program files\garena messenger\room\safedrv.sys [?]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-10-23 136176]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-17 753504]
S3 XDva387;XDva387;\??\c:\windows\system32\xdva387.sys --> c:\windows\system32\XDva387.sys [?]
.
=============== File Associations ===============
.
inffile=c:\windows\system32\Notepad2.exe %1
inifile=c:\windows\system32\Notepad2.exe %1
txtfile=c:\windows\system32\Notepad2.exe %1
.
=============== Created Last 30 ================
.
2011-12-25 21:04:40 -------- d-----w- c:\program files\ESET
2011-12-25 19:36:28 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-12-25 19:36:28 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware2
2011-12-25 17:59:43 -------- d-----w- c:\users\administrator\application data\Malwarebytes
2011-12-25 17:59:31 -------- d-----w- c:\users\all users\application data\Malwarebytes
2011-12-25 17:59:30 2964 ----a-w- c:\windows\system32\tmp.reg
2011-12-25 16:45:15 64000 ----a-w- c:\windows\system32\drivers\extit.sys
2011-12-25 03:13:21 -------- d-----w- c:\users\all users\application data\Spybot - Search & Destroy
2011-12-25 02:53:43 100208 ----a-w- c:\users\all users\application data\1324781602.bdinstall.bin
2011-12-25 02:53:40 -------- d-----w- c:\program files\Bitdefender
2011-12-25 01:43:12 12960 ----a-w- c:\windows\system32\drivers\bdrawpr.sys
2011-12-25 01:43:07 15698 ----a-w- c:\users\all users\application data\bdinstall.bin
2011-12-25 01:19:02 -------- d-----w- c:\program files\common files\Bitdefender
2011-12-23 19:22:58 -------- d-----w- c:\users\administrator\application data\DVD Flick
2011-12-23 19:22:43 40960 ----a-w- c:\windows\system32\ssubtmr6.dll
2011-12-23 19:22:43 36864 ----a-w- c:\windows\system32\trayicon_handler.ocx
2011-12-23 19:22:43 28672 ----a-w- c:\windows\system32\mousewheel.ocx
2011-12-23 19:22:42 -------- d-----w- c:\program files\DVD Flick
2011-12-21 05:33:32 -------- d-----w- c:\users\all users\application data\GetRight
2011-12-21 05:31:14 -------- d-----w- c:\users\administrator\application data\GetRight
2011-12-21 05:18:21 636744 ----a-w- c:\program files\common files\microsoft shared\triedit\{8EF3C372-2A65-45b5-B423-F87E1054A832}.sys
2011-12-19 20:05:16 -------- d-----w- c:\users\administrator\application data\TMNT
2011-12-19 00:43:50 -------- d-----w- C:\dell
2011-12-18 02:51:58 -------- d-----w- c:\program files\KAPITALSIN
2011-12-17 05:15:32 -------- d--h--w- C:\msdownld.tmp
2011-12-17 04:59:28 -------- d-sh--w- C:\$RECYCLE.BIN
2011-12-17 04:30:01 -------- d-sh--w- C:\Boot
2011-12-17 03:27:15 65776 ----a-w- c:\windows\UnDeploy.exe
2011-12-17 02:55:05 -------- d-----w- c:\program files\GnuWin32
2011-12-17 01:06:57 12464 ----a-w- c:\windows\system32\drivers\NBVolUp.sys
2011-12-17 01:06:56 56496 ----a-w- c:\windows\system32\drivers\NBVol.sys
2011-12-17 01:06:55 -------- d-----w- c:\program files\Nero
2011-12-16 02:00:54 -------- d-----w- C:\SAVE
2011-12-16 00:35:10 32768 ----a-w- c:\windows\system32\mf.dll
2011-12-15 21:29:24 -------- d-----w- c:\windows\system32\CatRoot
2011-12-15 17:37:15 -------- d-----w- c:\program files\Exterminate It!
2011-12-15 16:38:13 -------- d-----w- c:\users\administrator\application data\Curiolab
2011-12-15 15:08:13 -------- d-----w- c:\users\all users\Uniblue
2011-12-15 02:49:54 -------- d-----w- c:\program files\Digitalo Studios
2011-12-15 02:49:34 32768 ----a-w- c:\program files\common files\installshield\professional\runtime\Objectps.dll
2011-12-15 02:49:34 155648 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iuser.dll
2011-12-15 02:49:33 692224 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iKernel.dll
2011-12-15 02:49:33 57344 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\ctor.dll
2011-12-15 02:49:33 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\DotNetInstaller.exe
2011-12-15 02:49:33 237568 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iscript.dll
2011-12-15 02:49:33 163972 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iGdi.dll
2011-12-15 02:49:32 282756 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\setup.dll
2011-12-15 02:48:27 -------- d-----w- c:\windows\solcache
2011-12-14 22:11:37 21840 ----a-w- c:\windows\system32\SIntfNT.dll
2011-12-14 22:11:37 17212 ----a-w- c:\windows\system32\SIntf32.dll
2011-12-14 22:11:36 12067 ----a-w- c:\windows\system32\SIntf16.dll
2011-12-14 21:35:11 -------- d-----w- c:\program files\Sierra On-Line
2011-12-14 20:55:13 -------- d-----w- C:\Sierra
2011-12-14 19:35:57 -------- d-----w- c:\users\administrator\local settings\application data\Babylon
2011-12-14 19:35:55 -------- d-----w- c:\users\all users\application data\Babylon
2011-12-14 19:35:55 -------- d-----w- c:\users\administrator\application data\Babylon
2011-12-13 02:28:31 -------- d-----w- c:\program files\MW2Bot
2011-12-04 17:07:46 2106216 ----a-w- c:\program files\mozilla firefox\D3DCompiler_43.dll
2011-12-04 17:07:45 1998168 ----a-w- c:\program files\mozilla firefox\d3dx9_43.dll
2011-12-04 17:07:45 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2011-12-04 17:07:43 89048 ----a-w- c:\program files\mozilla firefox\libEGL.dll
2011-12-04 17:07:43 478168 ----a-w- c:\program files\mozilla firefox\libGLESv2.dll
2011-12-04 17:07:43 15832 ----a-w- c:\program files\mozilla firefox\mozalloc.dll
2011-12-04 17:07:42 801752 ----a-w- c:\program files\mozilla firefox\mozsqlite3.dll
2011-12-04 17:07:42 1989592 ----a-w- c:\program files\mozilla firefox\mozjs.dll
2011-12-01 02:02:42 -------- d-----w- c:\program files\Quick Screen Capture
2011-12-01 02:02:42 -------- d-----w- C:\MyCaptures
2011-12-01 01:57:32 49664 ----a-w- c:\windows\system32\CamCodec.dll
2011-11-28 03:18:19 -------- d-----w- c:\program files\SourceTec
.
==================== Find3M ====================
.
2011-12-17 01:06:49 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-29 17:59:21 655872 ----a-w- c:\windows\system32\msvcr90.dll
2011-10-29 17:58:19 1467200 ----a-w- c:\windows\system32\msvcr100d.dll
2011-10-20 23:26:22 94208 ----a-w- c:\windows\system32\dpl100.dll
2011-10-04 00:10:52 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2011-09-28 00:01:07 139080 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-09-28 00:00:58 270240 ----a-w- c:\windows\system32\PnkBstrB.xtr
2011-09-28 00:00:58 270240 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-09-27 23:31:11 270240 ----a-w- c:\windows\system32\PnkBstrB.ex0
.
============= FINISH: 16:41:14.78 ===============
Here whats going on the computer was crashing showing blue screen then after a while it stop and show the blue screen for a sec and restarts then i try to download bitdefener manager but it would not download so i try to just download the setup but when i try to setup it crashes the computer instantly. So i went and download Malwarebytes' Anti-Malware it cant update but it install and i ran a scan it foudn a couple viruses but the main virus is still there becasue when i try to update it still wont work, i uninstall it and try install bitdefender but no luck blue screen
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_26
Run by Administrator at 16:40:42 on 2011-12-25
Microsoft Windows XP Professional 5.1.2600.3.1252.61.1033.18.1014.147 [GMT -5:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware2\mbamservice.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Malwarebytes' Anti-Malware2\mbamgui.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\CrossriderWebApps\Crossrider.exe
C:\Program Files\Mozilla Firefox\firefox.exe
svchost.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\System32\svchost.exe -k Akamai
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\explorer.exe
.
============== Pseudo HJT Report ===============
.
uWindow Title = IE
uURLSearchHooks: H - No File
mWinlogon: SfcDisable=-99 (0xffffff9d)
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~1\office12\GRA8E1~1.DLL
BHO: MrFroggy Class: {856e12b5-22d7-4e22-9aca-ea9a008dd65b} - c:\program files\minibar\Froggy.dll
BHO: {8984B388-A5BB-4DF7-B274-77B879E179DB} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: AlterGeoBHO Class: {9bfba68e-e21b-458e-ae12-fe85e903d2c1} - c:\program files\altergeo\altergeo magic scanner\3.3.2.779\AlterGeo.BrowserPlugin.dll
BHO: CrossRider: {a876e312-7d08-401a-b7a6-fafc5dc2f292} - c:\program files\crossriderwebapps\Crossrider.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: MinibarBHO: {aa74d58f-acd0-450d-a85e-6c04b171c044} - c:\program files\minibar\Kango.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7018.1622\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: DAPIELoader Class: {ff6c3cf0-4b15-11d1-abed-709549c10000} - c:\progra~1\dap\DAPIEL~1.DLL
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
TB: {121AC508-44AF-45CF-A4E9-DDA8619A4C73} - No File
TB: {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
uRun: [ares] "c:\program files\ares\Ares.exe" -h
uRun: [CrossRiderPlugin] c:\program files\crossriderwebapps\Crossrider.exe
mRun: [UnlockerAssistant] "c:\program files\unlocker\UnlockerAssistant.exe" -H
mRun: [SystemTray] SysTray.Exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [RIMBBLaunchAgent.exe] c:\program files\common files\research in motion\usb drivers\RIMBBLaunchAgent.exe
mRun: [Steam] c:\windows\Steam.exe
mRun: [4StoryPrePatch] c:\program files\zemi interactive\4story_us\PrePatch.exe
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware2\mbamgui.exe" /starttray
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
dRunOnce: [NewUser] c:\windows\lastxp\NewUser.cmd
StartupFolder: c:\users\admini~1\startm~1\programs\startup\autoru~1\visual~1.lnk - c:\ppapps\visualtasktips\VisualTaskTips.exe
uPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
mPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
mPolicies-system: SynchronousMachineGroupPolicy = 0 (0x0)
mPolicies-system: SynchronousUserGroupPolicy = 0 (0x0)
dPolicies-explorer: NoSMHelp = 1 (0x1)
dPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
IE: &Clean Traces - c:\program files\dap\privacy package\dapcleanerie.htm
IE: &Download with &DAP - c:\program files\dap\dapextie.htm
IE: Download &all with DAP - c:\program files\dap\dapextie2.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office12\EXCEL.EXE/3000
IE: Lookup on Merriam Webster - file://c:\program files\iespell\Merriam Webster.HTM
IE: Lookup on Wikipedia - file://c:\program files\iespell\wikipedia.HTM
IE: Sothink SWF Catcher - c:\program files\common files\sourcetec\swf catcher\InternetExplorer.htm
IE: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "c:\program files\fiddler2\Fiddler.exe"
IE: {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - c:\program files\common files\sourcetec\swf catcher\InternetExplorer.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~1\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office12\REFIEBAR.DLL
IE: {AAA38851-3CFF-475F-B5E0-720D3645E4A5} - {AAA38851-3CFF-475F-B5E0-720D3645E4A5} - c:\program files\minibar\MinibarButton.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
TCP: DhcpNameServer = 65.183.0.76 65.183.0.86
TCP: Interfaces\{811951D2-CA06-4836-A40B-9E0CC359FAFA} : DhcpNameServer = 65.183.0.76 65.183.0.86
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~1\office12\GR99D3~1.DLL
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~1\office12\GRA8E1~1.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\administrator\application data\mozilla\firefox\profiles\bsd7htq7.default\
FF - prefs.js: browser.search.defaulturl - hxxp://go.mail.ru/search?fr=fftb&utf8in&q=
FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.jm/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?hl=en-GB&q=
FF - prefs.js: network.proxy.type - 4
FF - component: c:\program files\dap\dapfirefox\components\DAPFireFox.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60831.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll
FF - plugin: c:\users\administrator\local settings\application data\facebook\video\skype\npFacebookVideoCalling.dll
FF - plugin: c:\users\administrator\local settings\application data\google\update\1.3.21.57\npGoogleUpdate3.dll
FF - plugin: c:\users\administrator\local settings\application data\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\windows\system32\npOGPPlugin.dll
FF - plugin: c:\windows\system32\npptools.dll
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true);user_pref(extensions.BabylonToolbar_i.babTrack, affID=100888
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 78dbc037000000000000001320c4963c
FF - user.js: extensions.BabylonToolbar_i.hardId - 78dbc037000000000000001320c4963c
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15322
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1714:36:01
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
============= SERVICES / DRIVERS ===============
.
R0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\drivers\NBVol.sys [2011-12-16 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\drivers\NBVolUp.sys [2011-12-16 12464]
R1 {8EF3C372-2A65-45b5-B423-F87E1054A832};{8EF3C372-2A65-45b5-B423-F87E1054A832};c:\program files\common files\microsoft shared\triedit\{8EF3C372-2A65-45b5-B423-F87E1054A832}.sys [2011-12-21 636744]
R1 BdRawPr;BdRawPr;c:\windows\system32\drivers\bdrawpr.sys [2011-12-24 12960]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2008-5-5 14336]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware2\mbamservice.exe [2011-12-25 366152]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-12-25 22216]
R3 scncap;scncap;c:\windows\system32\drivers\scncap.sys [2009-12-25 9984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-17 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-10-23 136176]
S2 WCMVCAM;WebcamMax, WDM Video Capture;c:\windows\system32\drivers\wcmvcam.sys [2011-6-23 1068216]
S3 1394hub;1394 Enabled Hub;c:\windows\system32\svchost.exe -k netsvcs [2008-5-5 14336]
S3 cpudrv;cpudrv;\??\c:\program files\systemrequirementslab\cpudrv.sys --> c:\program files\systemrequirementslab\cpudrv.sys [?]
S3 EagleXNt;EagleXNt;\??\c:\windows\system32\drivers\eaglexnt.sys --> c:\windows\system32\drivers\EagleXNt.sys [?]
S3 ExterminateIt;ExterminateIt;c:\windows\system32\drivers\extit.sys [2011-12-25 64000]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\garena messenger\room\safedrv.sys --> c:\program files\garena messenger\room\safedrv.sys [?]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-10-23 136176]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-17 753504]
S3 XDva387;XDva387;\??\c:\windows\system32\xdva387.sys --> c:\windows\system32\XDva387.sys [?]
.
=============== File Associations ===============
.
inffile=c:\windows\system32\Notepad2.exe %1
inifile=c:\windows\system32\Notepad2.exe %1
txtfile=c:\windows\system32\Notepad2.exe %1
.
=============== Created Last 30 ================
.
2011-12-25 21:04:40 -------- d-----w- c:\program files\ESET
2011-12-25 19:36:28 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-12-25 19:36:28 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware2
2011-12-25 17:59:43 -------- d-----w- c:\users\administrator\application data\Malwarebytes
2011-12-25 17:59:31 -------- d-----w- c:\users\all users\application data\Malwarebytes
2011-12-25 17:59:30 2964 ----a-w- c:\windows\system32\tmp.reg
2011-12-25 16:45:15 64000 ----a-w- c:\windows\system32\drivers\extit.sys
2011-12-25 03:13:21 -------- d-----w- c:\users\all users\application data\Spybot - Search & Destroy
2011-12-25 02:53:43 100208 ----a-w- c:\users\all users\application data\1324781602.bdinstall.bin
2011-12-25 02:53:40 -------- d-----w- c:\program files\Bitdefender
2011-12-25 01:43:12 12960 ----a-w- c:\windows\system32\drivers\bdrawpr.sys
2011-12-25 01:43:07 15698 ----a-w- c:\users\all users\application data\bdinstall.bin
2011-12-25 01:19:02 -------- d-----w- c:\program files\common files\Bitdefender
2011-12-23 19:22:58 -------- d-----w- c:\users\administrator\application data\DVD Flick
2011-12-23 19:22:43 40960 ----a-w- c:\windows\system32\ssubtmr6.dll
2011-12-23 19:22:43 36864 ----a-w- c:\windows\system32\trayicon_handler.ocx
2011-12-23 19:22:43 28672 ----a-w- c:\windows\system32\mousewheel.ocx
2011-12-23 19:22:42 -------- d-----w- c:\program files\DVD Flick
2011-12-21 05:33:32 -------- d-----w- c:\users\all users\application data\GetRight
2011-12-21 05:31:14 -------- d-----w- c:\users\administrator\application data\GetRight
2011-12-21 05:18:21 636744 ----a-w- c:\program files\common files\microsoft shared\triedit\{8EF3C372-2A65-45b5-B423-F87E1054A832}.sys
2011-12-19 20:05:16 -------- d-----w- c:\users\administrator\application data\TMNT
2011-12-19 00:43:50 -------- d-----w- C:\dell
2011-12-18 02:51:58 -------- d-----w- c:\program files\KAPITALSIN
2011-12-17 05:15:32 -------- d--h--w- C:\msdownld.tmp
2011-12-17 04:59:28 -------- d-sh--w- C:\$RECYCLE.BIN
2011-12-17 04:30:01 -------- d-sh--w- C:\Boot
2011-12-17 03:27:15 65776 ----a-w- c:\windows\UnDeploy.exe
2011-12-17 02:55:05 -------- d-----w- c:\program files\GnuWin32
2011-12-17 01:06:57 12464 ----a-w- c:\windows\system32\drivers\NBVolUp.sys
2011-12-17 01:06:56 56496 ----a-w- c:\windows\system32\drivers\NBVol.sys
2011-12-17 01:06:55 -------- d-----w- c:\program files\Nero
2011-12-16 02:00:54 -------- d-----w- C:\SAVE
2011-12-16 00:35:10 32768 ----a-w- c:\windows\system32\mf.dll
2011-12-15 21:29:24 -------- d-----w- c:\windows\system32\CatRoot
2011-12-15 17:37:15 -------- d-----w- c:\program files\Exterminate It!
2011-12-15 16:38:13 -------- d-----w- c:\users\administrator\application data\Curiolab
2011-12-15 15:08:13 -------- d-----w- c:\users\all users\Uniblue
2011-12-15 02:49:54 -------- d-----w- c:\program files\Digitalo Studios
2011-12-15 02:49:34 32768 ----a-w- c:\program files\common files\installshield\professional\runtime\Objectps.dll
2011-12-15 02:49:34 155648 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iuser.dll
2011-12-15 02:49:33 692224 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iKernel.dll
2011-12-15 02:49:33 57344 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\ctor.dll
2011-12-15 02:49:33 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\DotNetInstaller.exe
2011-12-15 02:49:33 237568 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iscript.dll
2011-12-15 02:49:33 163972 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iGdi.dll
2011-12-15 02:49:32 282756 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\setup.dll
2011-12-15 02:48:27 -------- d-----w- c:\windows\solcache
2011-12-14 22:11:37 21840 ----a-w- c:\windows\system32\SIntfNT.dll
2011-12-14 22:11:37 17212 ----a-w- c:\windows\system32\SIntf32.dll
2011-12-14 22:11:36 12067 ----a-w- c:\windows\system32\SIntf16.dll
2011-12-14 21:35:11 -------- d-----w- c:\program files\Sierra On-Line
2011-12-14 20:55:13 -------- d-----w- C:\Sierra
2011-12-14 19:35:57 -------- d-----w- c:\users\administrator\local settings\application data\Babylon
2011-12-14 19:35:55 -------- d-----w- c:\users\all users\application data\Babylon
2011-12-14 19:35:55 -------- d-----w- c:\users\administrator\application data\Babylon
2011-12-13 02:28:31 -------- d-----w- c:\program files\MW2Bot
2011-12-04 17:07:46 2106216 ----a-w- c:\program files\mozilla firefox\D3DCompiler_43.dll
2011-12-04 17:07:45 1998168 ----a-w- c:\program files\mozilla firefox\d3dx9_43.dll
2011-12-04 17:07:45 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2011-12-04 17:07:43 89048 ----a-w- c:\program files\mozilla firefox\libEGL.dll
2011-12-04 17:07:43 478168 ----a-w- c:\program files\mozilla firefox\libGLESv2.dll
2011-12-04 17:07:43 15832 ----a-w- c:\program files\mozilla firefox\mozalloc.dll
2011-12-04 17:07:42 801752 ----a-w- c:\program files\mozilla firefox\mozsqlite3.dll
2011-12-04 17:07:42 1989592 ----a-w- c:\program files\mozilla firefox\mozjs.dll
2011-12-01 02:02:42 -------- d-----w- c:\program files\Quick Screen Capture
2011-12-01 02:02:42 -------- d-----w- C:\MyCaptures
2011-12-01 01:57:32 49664 ----a-w- c:\windows\system32\CamCodec.dll
2011-11-28 03:18:19 -------- d-----w- c:\program files\SourceTec
.
==================== Find3M ====================
.
2011-12-17 01:06:49 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-29 17:59:21 655872 ----a-w- c:\windows\system32\msvcr90.dll
2011-10-29 17:58:19 1467200 ----a-w- c:\windows\system32\msvcr100d.dll
2011-10-20 23:26:22 94208 ----a-w- c:\windows\system32\dpl100.dll
2011-10-04 00:10:52 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2011-09-28 00:01:07 139080 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-09-28 00:00:58 270240 ----a-w- c:\windows\system32\PnkBstrB.xtr
2011-09-28 00:00:58 270240 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-09-27 23:31:11 270240 ----a-w- c:\windows\system32\PnkBstrB.ex0
.
============= FINISH: 16:41:14.78 ===============
