CiD pop-ups [[B]HELP[/B]] (2024)

Okay , so here's the log


ComboFix 09-12-05.04 - Acer 06/12/2009 20:33.1.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.65.1033.18.3326.2114 [GMT 8:00]
Running from: c:\users\Acer\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\AVSredirect.dll

.
((((((((((((((((((((((((( Files Created from 2009-11-06 to 2009-12-06 )))))))))))))))))))))))))))))))
.

2009-12-06 12:29 . 2009-12-06 12:29 3580614 ----a-r- c:\users\Acer\ComboFix.exe
2009-12-06 12:24 . 2009-12-06 12:24 43705 ----a-w- C:\BdUninstallTool2009.12.06-08.24.03.reg
2009-12-06 03:41 . 2009-12-06 03:41 2494288 ----a-w- c:\users\Acer\BitDefender_Uninstall_Tool.exe
2009-12-05 10:57 . 2009-12-05 10:57 -------- d-----w- c:\program files\Trend Micro
2009-12-05 10:30 . 2009-12-05 10:30 -------- d-----w- c:\program files\ESET
2009-12-05 06:16 . 2009-12-05 14:09 -------- d-----w- c:\users\Acer\AppData\Local\Apple Computer
2009-12-05 03:37 . 2009-12-05 03:37 -------- d-----w- c:\users\Acer\AppData\Roaming\Malwarebytes
2009-12-05 03:37 . 2009-12-03 08:14 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-05 03:37 . 2009-12-05 03:37 4096 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-12-05 03:37 . 2009-12-05 03:37 -------- d-----w- c:\programdata\Malwarebytes
2009-12-05 03:37 . 2009-12-03 08:13 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-05 03:35 . 2009-12-05 03:35 4844296 ----a-w- c:\users\Acer\mbam-setup.exe
2009-12-05 03:31 . 2009-12-05 03:31 50688 ----a-w- c:\users\Acer\ATF-Cleaner.exe
2009-12-05 03:31 . 2009-12-05 03:31 812344 ----a-w- c:\users\Acer\HJTInstall.exe
2009-12-05 02:35 . 2009-12-05 02:35 -------- d-----w- c:\program files\AVG
2009-12-04 12:52 . 2009-12-04 12:52 40448 ----a-w- c:\users\Acer\NoLop.exe
2009-12-02 04:42 . 2008-04-30 02:00 1024 ---ha-r- c:\windows\system32\NTIBUN4.dll
2009-12-02 04:41 . 2008-03-16 12:30 216064 --sh--r- c:\windows\system32\nbDX.dll
2009-12-02 04:41 . 2003-11-21 21:45 91136 ----a-r- c:\windows\system32\msls2.dll
2009-12-02 04:41 . 2007-02-21 10:47 31232 --sh--r- c:\windows\system32\msfDX.dll
2009-12-02 04:39 . 2005-01-06 01:36 31744 ----a-r- c:\windows\system32\hlp95en.dll
2009-12-02 04:39 . 2006-05-03 09:06 163328 --sh--r- c:\windows\system32\flvDX.dll
2009-12-02 03:38 . 2009-11-24 12:26 10134 ----a-r- c:\users\Acer\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
2009-12-02 03:38 . 2009-09-12 07:45 131072 ----a-r- c:\users\Acer\AppData\Roaming\Microsoft\Installer\{141055D3-F7D6-4F92-AF59-09B013B78EE8}\SUPPORT.URL_143A2C221F454F61B9F40C4B1153B48D.exe
2009-12-02 02:36 . 2009-12-02 02:36 891248 ----a-w- c:\users\Acer\avg_free_stb_all_9_40_cnet.exe
2009-12-01 10:05 . 2009-12-01 10:05 11583944 ----a-w- c:\users\Acer\DAEMONToolsPro4350306.exe
2009-11-30 14:45 . 2009-12-04 10:51 4096 d-----w- c:\program files\DAEMON Tools Toolbar
2009-11-30 14:45 . 2009-11-30 14:45 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-11-30 14:45 . 2009-11-30 14:45 4096 d-----w- c:\program files\DAEMON Tools Lite
2009-11-30 14:44 . 2009-12-01 10:05 -------- d-----w- c:\users\Acer\AppData\Roaming\DAEMON Tools Lite
2009-11-30 14:44 . 2009-11-30 14:44 -------- d-----w- c:\programdata\DAEMON Tools Lite
2009-11-30 10:28 . 2009-11-30 10:28 9161776 ----a-w- c:\users\Acer\DTLite4355-0068.exe
2009-11-28 14:25 . 2009-11-28 14:25 -------- d-----w- c:\users\Acer\AppData\Local\Mozilla
2009-11-28 14:24 . 2009-11-28 14:24 8084968 ----a-w- c:\users\Acer\Firefox Setup 3.5.5.exe
2009-11-28 14:14 . 2007-12-26 09:30 1970176 ----a-w- c:\windows\system32\d3dx9.dll
2009-11-28 14:14 . 2009-12-04 08:12 8192 d-----w- c:\program files\Cheat Engine
2009-11-28 14:14 . 2007-12-26 09:30 679936 ----a-w- c:\windows\system32\D3DX81ab.dll
2009-11-28 12:52 . 2009-11-28 12:52 -------- d-----w- c:\program files\Microsoft.NET
2009-11-28 12:50 . 2009-11-28 12:50 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2009-11-28 12:49 . 2009-11-28 12:49 -------- d-----w- c:\users\Acer\AppData\Local\Microsoft Help
2009-11-28 12:49 . 2009-11-28 12:49 -------- d-----r- C:\MSOCache
2009-11-28 03:50 . 2009-11-28 03:50 -------- d-----w- c:\users\Acer\AppData\Roaming\AVS4YOU
2009-11-28 03:50 . 2009-11-28 03:50 -------- d-----w- c:\programdata\AVS4YOU
2009-11-28 03:49 . 2009-11-28 04:21 -------- d-----w- c:\program files\Common Files\AVSMedia
2009-11-28 03:49 . 2009-11-28 04:21 -------- d-----w- c:\program files\AVS4YOU
2009-11-28 03:49 . 2008-08-13 02:22 24576 ----a-w- c:\windows\system32\msxml3a.dll
2009-11-28 03:29 . 2009-12-01 10:18 -------- d-----r- c:\users\Acer\Hannah Montana 3 Supergirl - EP (www.musicnsong.piczo.com)
2009-11-28 02:34 . 2009-11-28 02:34 -------- d-----w- c:\windows\Replay Director
2009-11-28 02:17 . 2009-11-28 02:17 -------- d-----w- c:\windows\Replay Converter 3
2009-11-26 06:15 . 2009-11-26 06:15 -------- d-----w- c:\users\Acer\AppData\Roaming\The Ringtone Maker Plus
2009-11-25 11:16 . 2009-10-29 09:17 2048 ----a-w- c:\windows\system32\tzres.dll
2009-11-25 10:03 . 2009-08-11 16:44 1401856 ----a-w- c:\windows\system32\msxml6.dll
2009-11-25 10:03 . 2009-08-11 16:44 1248768 ----a-w- c:\windows\system32\msxml3.dll
2009-11-24 12:44 . 2009-12-01 09:59 -------- d-----w- c:\programdata\Electronic Arts
2009-11-24 12:26 . 2008-09-04 18:17 447752 ----a-w- c:\windows\system32\vp6vfw.dll
2009-11-24 12:26 . 2009-11-24 12:26 -------- d-----w- c:\program files\Microsoft WSE
2009-11-24 12:26 . 2006-09-28 08:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll
2009-11-24 12:22 . 2009-12-01 10:05 -------- d-----w- c:\program files\Electronic Arts
2009-11-21 05:27 . 2009-11-21 05:28 4393269 ----a-w- c:\users\Acer\CheatEngine55.exe
2009-11-20 13:35 . 2009-11-20 13:35 -------- d-----w- c:\program files\AviSynth 2.5
2009-11-20 13:35 . 2004-01-24 16:00 70656 ----a-w- c:\windows\system32\i420vfw.dll
2009-11-20 13:34 . 2009-11-20 13:34 -------- d-----w- c:\program files\eRightSoft
2009-11-20 13:21 . 2009-11-20 13:21 -------- d-----w- c:\users\Acer\AppData\Roaming\Xilisoft Corporation
2009-11-18 13:03 . 2009-11-18 13:03 -------- d-----w- c:\program files\Windows Portable Devices
2009-11-18 12:05 . 2009-09-10 02:00 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2009-11-18 12:05 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2009-11-18 12:05 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2009-11-18 12:03 . 2009-10-08 21:07 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2009-11-18 12:03 . 2009-10-08 21:08 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2009-11-18 12:03 . 2009-10-08 21:08 234496 ----a-w- c:\windows\system32\oleacc.dll
2009-11-14 11:52 . 2009-08-14 13:27 2036736 ----a-w- c:\windows\system32\win32k.sys
2009-11-14 11:52 . 2009-08-10 12:35 355328 ----a-w- c:\windows\system32\WSDApi.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-12-06 12:28 . 2009-11-03 05:05 733184 ----a-w- c:\programdata\bits love axis thunk\Live Meow.exe
2009-12-05 15:13 . 2009-09-12 06:17 16384 d-----w- c:\users\Acer\AppData\Roaming\Azureus
2009-12-05 14:14 . 2009-09-12 06:16 4096 d-----w- c:\program files\Vuze
2009-12-04 13:33 . 2009-09-12 03:50 81984 ----a-w- c:\windows\system32\bdod.bin
2009-12-04 08:06 . 2008-04-30 02:11 16384 d-----w- c:\programdata\Microsoft Help
2009-12-04 08:05 . 2008-04-30 02:13 28672 d-----w- c:\program files\Microsoft Works
2009-12-01 10:05 . 2008-04-30 01:55 12288 d--h--w- c:\program files\InstallShield Installation Information
2009-11-28 13:41 . 2009-09-12 02:14 101856 ----a-w- c:\users\Acer\AppData\Local\GDIPFONTCACHEV1.DAT
2009-11-28 12:53 . 2006-11-02 12:37 -------- d-----w- c:\program files\MSBuild
2009-11-27 08:47 . 2008-04-30 01:59 4096 d-----w- c:\program files\Common Files\Adobe
2009-11-18 13:03 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-11-18 13:03 . 2009-11-18 13:03 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2009-11-18 13:03 . 2009-11-18 13:03 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
2009-11-16 01:58 . 2009-09-14 10:48 4096 d-----w- c:\users\Acer\AppData\Roaming\Epson
2009-11-15 14:56 . 2006-11-02 11:18 4096 d-----w- c:\program files\Windows Mail
2009-11-14 14:19 . 2009-11-03 05:04 -------- d-----w- c:\programdata\FilmDvdSoap
2009-11-03 05:11 . 2009-11-03 05:09 4096 d-----w- c:\program files\iTunes
2009-11-03 05:09 . 2009-11-03 05:09 -------- d-----w- c:\program files\iPod
2009-11-03 05:09 . 2009-09-12 03:28 -------- d-----w- c:\program files\Common Files\Apple
2009-11-03 05:05 . 2009-11-03 05:05 79144 ----a-w- c:\programdata\Apple Computer\Installer Cache\iTunes 9.0.2.25\SetupAdmin.exe
2009-11-03 05:05 . 2009-11-03 05:05 252416 ----a-w- c:\programdata\FilmDvdSoap\byte active admin send.exe
2009-11-03 05:05 . 2009-11-03 05:05 -------- d-----w- c:\programdata\bits love axis thunk
2009-11-03 05:05 . 2009-11-03 05:05 733184 ----a-w- c:\programdata\FilmDvdSoap\mkukqbwp.exe
2009-11-03 05:04 . 2009-09-12 04:14 4096 d-----w- c:\program files\Messenger Plus! Live
2009-11-02 12:42 . 2009-10-04 12:05 195456 ------w- c:\windows\system32\MpSigStub.exe
2009-10-26 14:48 . 2009-10-26 14:48 -------- d-----w- c:\users\Acer\AppData\Roaming\Media Player Classic
2009-10-26 14:48 . 2009-10-26 14:48 4096 d-----w- c:\program files\K-Lite Codec Pack
2009-10-18 12:37 . 2009-09-23 03:14 174 ----a-w- c:\users\Acer\AppData\Roaming\Azureus\restart.bat
2009-10-18 10:48 . 2009-10-18 10:48 -------- d-----w- c:\program files\Common Files\NetDragon
2009-10-18 10:47 . 2009-10-18 10:47 -------- d-----w- c:\program files\NetDragon
2009-10-17 04:02 . 2009-09-13 12:56 -------- d-----w- c:\program files\Common Files\Memeo
2009-10-17 04:02 . 2009-09-13 12:53 -------- d-----w- c:\users\Acer\AppData\Roaming\Memeo
2009-10-09 09:01 . 2006-11-02 12:37 4096 d-----w- c:\program files\Windows Sidebar
2009-10-09 09:01 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2009-10-09 09:01 . 2006-11-02 12:37 4096 d-----w- c:\program files\Windows Journal
2009-10-09 09:01 . 2006-11-02 12:37 4096 d-----w- c:\program files\Windows Collaboration
2009-10-09 09:01 . 2006-11-02 12:37 4096 d-----w- c:\program files\Windows Photo Gallery
2009-10-09 09:01 . 2006-11-02 12:37 4096 d-----w- c:\program files\Windows Defender
2009-10-01 01:02 . 2009-11-18 12:04 2537472 ----a-w- c:\windows\system32\wpdshext.dll
2009-10-01 01:02 . 2009-11-18 12:04 30208 ----a-w- c:\windows\system32\WPDShextAutoplay.exe
2009-10-01 01:02 . 2009-11-18 12:04 334848 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2009-10-01 01:02 . 2009-11-18 12:04 87552 ----a-w- c:\windows\system32\WPDShServiceObj.dll
2009-10-01 01:02 . 2009-11-18 12:04 31232 ----a-w- c:\windows\system32\BthMtpContextHandler.dll
2009-10-01 01:01 . 2009-11-18 12:04 546816 ----a-w- c:\windows\system32\wpd_ci.dll
2009-10-01 01:01 . 2009-11-18 12:04 160256 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
2009-10-01 01:01 . 2009-11-18 12:04 60928 ----a-w- c:\windows\system32\PortableDeviceConnectApi.dll
2009-10-01 01:01 . 2009-11-18 12:04 350208 ----a-w- c:\windows\system32\WPDSp.dll
2009-10-01 01:01 . 2009-11-18 12:04 196608 ----a-w- c:\windows\system32\PortableDeviceWMDRM.dll
2009-10-01 01:01 . 2009-11-18 12:04 100864 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll
2009-10-01 01:01 . 2009-11-18 12:04 81920 ----a-w- c:\windows\system32\wpdbusenum.dll
2009-10-01 01:01 . 2009-11-18 12:04 40448 ----a-w- c:\windows\system32\drivers\WpdUsb.sys
2009-10-01 01:01 . 2009-11-18 12:04 226816 ----a-w- c:\windows\system32\WpdMtp.dll
2009-10-01 01:01 . 2009-11-18 12:04 61952 ----a-w- c:\windows\system32\WpdMtpUS.dll
2009-10-01 01:01 . 2009-11-18 12:04 33280 ----a-w- c:\windows\system32\WpdConns.dll
2009-09-25 02:10 . 2009-11-18 12:04 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2009-09-25 02:07 . 2009-11-18 12:04 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2009-09-25 02:04 . 2009-11-18 12:04 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2009-09-25 01:49 . 2009-11-18 12:04 1554432 ----a-w- c:\windows\system32\xpsservices.dll
2009-09-25 01:48 . 2009-11-18 12:04 351232 ----a-w- c:\windows\system32\XpsPrint.dll
2009-09-25 01:38 . 2009-11-18 12:04 847360 ----a-w- c:\windows\system32\OpcServices.dll
2009-09-25 01:36 . 2009-11-18 12:04 280064 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2009-09-25 01:35 . 2009-11-18 12:04 135680 ----a-w- c:\windows\system32\XpsRasterService.dll
2009-09-25 01:33 . 2009-11-18 12:04 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2009-09-25 01:33 . 2009-11-18 12:04 829440 ----a-w- c:\windows\system32\d3d10warp.dll
2009-09-25 01:33 . 2009-11-18 12:04 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2009-09-25 01:32 . 2009-11-18 12:04 252928 ----a-w- c:\windows\system32\dxdiag.exe
2009-09-25 01:31 . 2009-11-18 12:04 519680 ----a-w- c:\windows\system32\d3d11.dll
2009-09-25 01:31 . 2009-11-18 12:04 486912 ----a-w- c:\windows\system32\d3d10level9.dll
2009-09-25 01:31 . 2009-11-18 12:04 161280 ----a-w- c:\windows\system32\d3d10_1.dll
2009-09-25 01:31 . 2009-11-18 12:04 218112 ----a-w- c:\windows\system32\d3d10_1core.dll
2009-09-25 01:31 . 2009-11-18 12:04 1030144 ----a-w- c:\windows\system32\d3d10.dll
2009-09-25 01:31 . 2009-11-18 12:04 828928 ----a-w- c:\windows\system32\d2d1.dll
2009-09-25 01:30 . 2009-11-18 12:04 481792 ----a-w- c:\windows\system32\dxgi.dll
2009-09-25 01:30 . 2009-11-18 12:04 190464 ----a-w- c:\windows\system32\d3d10core.dll
2009-09-25 01:27 . 2009-11-18 12:04 634880 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2009-09-25 01:27 . 2009-11-18 12:04 37888 ----a-w- c:\windows\system32\cdd.dll
2009-09-25 01:27 . 2009-11-18 12:04 793088 ----a-w- c:\windows\system32\FntCache.dll
2009-09-25 01:27 . 2009-11-18 12:04 1064448 ----a-w- c:\windows\system32\DWrite.dll
2009-09-24 22:54 . 2009-11-18 12:04 258048 ----a-w- c:\windows\system32\winspool.drv
2009-09-24 22:54 . 2009-11-18 12:04 667648 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe
2009-09-24 22:54 . 2009-11-18 12:04 26112 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll
2009-09-17 14:08 . 2009-09-17 14:08 10686001 ----a-w- c:\users\Acer\AppData\Roaming\Azureus\plugins\azump\mplayer.exe
2009-09-14 09:29 . 2009-10-14 08:48 144896 ----a-w- c:\windows\system32\drivers\srv2.sys
2009-09-13 12:55 . 2009-09-13 12:55 10054640 ----a-w- c:\users\Acer\AppData\Roaming\Memeo\AutoBackup\temp\5735_me_ab_en-US_setup.exe
2009-09-12 07:38 . 2009-09-12 07:45 337240 ----a-w- c:\users\Acer\AppData\Roaming\InstallShield Installation Information\{141055D3-F7D6-4F92-AF59-09B013B78EE8}\setup.exe
2009-09-10 16:48 . 2009-10-14 08:48 218624 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-10 14:59 . 2009-10-28 09:26 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2009-09-10 14:58 . 2009-10-28 09:26 310784 ----a-w- c:\windows\system32\unregmp2.exe
2006-05-03 09:06 . 2009-12-02 04:39 163328 --sh--r- c:\windows\System32\flvDX.dll
2007-02-21 10:47 . 2009-12-02 04:41 31232 --sh--r- c:\windows\System32\msfDX.dll
2008-03-16 12:30 . 2009-12-02 04:41 216064 --sh--r- c:\windows\System32\nbDX.dll
.

See Also
Infected with 127.0.0.1;5555PC portable très lent et curseur qui bouge dans tous les sens.What EPTBL.dll (Epson Easy Photo Print) does

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-03-05 06:38 121392 ----a-w- c:\acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"bleh type"="c:\programdata\1 Anti Anti.qsrs39h" [X]
"Axis Thunk Window Wma"="c:\programdata\UPLOAD MEOW REMOTE.mfrvyes" [X]
"EA Core"="c:\program files\Electronic Arts\EADM\Core.exe" [2009-09-03 3342336]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-07-12 178712]
"RtHDVCpl"="RtHDVCpl.exe" [2007-10-31 4702208]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-03-08 40048]
"PCMMediaSharing"="c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe" [2008-01-26 204908]
"Acer Empowering Technology Monitor"="c:\acer\Empowering Technology\SysMonitor.exe" [2008-04-15 326176]
"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-03-05 526896]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2007-02-02 630784]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-04-04 13535776]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-04-04 92704]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-04 417792]
"EEventManager"="c:\progra~1\EPSONS~1\EVENTM~1\EEventManager.exe" [2008-12-04 665424]
"Skytel"="Skytel.exe" [2007-10-11 1826816]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-10-28 141600]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]

c:\users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2008-10-25 98696]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Empowering Technology Launcher.lnk - c:\acer\Empowering Technology\eAPLauncher.exe [2008-4-30 535336]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):be,51,29,dc,bf,48,ca,01

R2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service;c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [30/4/2008 10:05 AM 269448]
R2 MyEpson Portal Service;MyEpson Portal Service;c:\program files\epson\MyEpson Portal\mepService.exe [8/6/2009 4:58 PM 622592]
R3 RTL85n86;Realtek 8180/8185 Extensible 802.11 Wireless Device Driver;c:\windows\System32\drivers\RTL85n86.sys [30/4/2008 9:29 AM 341504]
S0 sptd;sptd;c:\windows\System32\drivers\sptd.sys [30/11/2009 10:45 PM 691696]
S3 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [21/1/2008 10:23 AM 21504]
S3 WSVD;WSVD;c:\windows\System32\drivers\WSVD.sys [15/9/2009 6:40 PM 80744]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
------- Supplementary Scan -------
.
uStart Page = about:blank
mStart Page = hxxp://
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\4zahm5mx.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
.
- - - - ORPHANS REMOVED - - - -

HKLM-Run-Apanel - c:\acersw\config\SetApanel.cmd
HKLM-Run-eRecoveryService - (no file)
AddRemove-Activation Assistant for the 2007 Microsoft Office suites - c:\programdata\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe REMOVE=TRUE MODIFY=FALSE
AddRemove-NVIDIA Drivers - c:\windows\system32\NVUNINST.EXE UninstallGUI

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-06 20:39
Windows 6.0.6002 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2009-12-06 20:40
ComboFix-quarantined-files.txt 2009-12-06 12:40

Pre-Run: 251,266,846,720 bytes free
Post-Run: 251,632,979,968 bytes free

- - End Of File - - 49412BC26DDC455F39E327FEAED6D042


by the way , should i install AVG? Cause afterall , i need some anti virus software

CiD pop-ups [[B]HELP[/B]] (2024)
Top Articles
Roblox Rainbow Friends Wiki
Huge Garage Sale in Chicago June 20,21,22 - Southwest Regional Publishing
Craigslist Apartment Long Island
Star-Gazette from Elmira, New York
D Con Rat Poison At Walmart
Jimmy John's Menu Hours
Jacquie Lawson Greeting Cards and Animated Ecards
Geometry Regents August 2019 Answers
Obituaries in Fort Smith, AR | Times Record
Fort Smith Community's Choice Awards
Dignity Health hiring Engineer in Woodland, California, United States | LinkedIn
Dignity Memorial hiring Outside Sales Representative in Atlanta, Georgia, United States | LinkedIn
Latest Posts
Sesame Street 4318
Success Simplified - Swisher's New Identity | Swisher
Article information

Author: Fredrick Kertzmann

Last Updated:

Views: 5277

Rating: 4.6 / 5 (66 voted)

Reviews: 89% of readers found this page helpful

Author information

Name: Fredrick Kertzmann

Birthday: 2000-04-29

Address: Apt. 203 613 Huels Gateway, Ralphtown, LA 40204

Phone: +2135150832870

Job: Regional Design Producer

Hobby: Nordic skating, Lacemaking, Mountain biking, Rowing, Gardening, Water sports, role-playing games

Introduction: My name is Fredrick Kertzmann, I am a gleaming, encouraging, inexpensive, thankful, tender, quaint, precious person who loves writing and wants to share my knowledge and understanding with you.