q1q1

As the title says the security center (the one the sys tray) of my window 7(64bit) laptop is flashing a notification... i don't how it's started cause i've scanned it with malwarebytes and no infection was found even on safe mode. I aslo scanned with my anti-virus program (ZoneAlarm Security Suite 2012) and nothing was also found. as per rules of the forum i'll post the DSS log file and the hijackthis logs. DSS log -------------------------- . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 9.0.8112.16421 Run by LJS-PC at 9:29:34 on 2011-10-19 . ============== Running Processes =============== . . ============== Pseudo HJT Report =============== . uStart Page = about:blank mWinlogon: Userinit=userinit.exe, BHO: IDM integration (IDMIEHlprObj Class): {0055c089-8582-441b-a0bf-17b458c2a3a8} - D:\Program Files (x86)\Internet Download Manager\IDMIECC.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - D:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL TB: {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File uRun: [iDMan] D:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot uRun: [<NO NAME>] mRun: [ZoneAlarm] "D:\Program Files (x86)\CheckPoint\ZoneAlarm\CheckPoint\ZoneAlarm\zatray.exe" uPolicies-explorer: NoResolveTrack = 1 (0x1) mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableLUA = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) mPolicies-system: PromptOnSecureDesktop = 0 (0x0) IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200 IE: Download all links with IDM - D:\Program Files (x86)\Internet Download Manager\IEGetAll.htm IE: Download with IDM - D:\Program Files (x86)\Internet Download Manager\IEExt.htm IE: E&xport to Microsoft Excel - D:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: Send image to &Bluetooth Device... - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: Send page to &Bluetooth Device... - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - D:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - D:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{5788FA58-EA5B-4B38-846A-642643C1052A} : NameServer = 208.67.222.123,208.67.220.123 TCP: Interfaces\{73983853-803E-4591-86BA-1378AB4CDD41} : NameServer = 208.67.222.123,208.67.220.123 TCP: Interfaces\{73983853-803E-4591-86BA-1378AB4CDD41} : DhcpNameServer = 192.168.1.1 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - D:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL IFEO: bttray.exe - "D:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe" IFEO: hpbc.exe - "D:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe" IFEO: iastorui.exe - "D:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe" IFEO: TeamViewer.exe - "D:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe" BHO-X64: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\Program Files (x86)\Internet Download Manager\IDMIECC.dll BHO-X64: IDM Helper - No File BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL TB-X64: {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File mRun-x64: [ZoneAlarm] "D:\Program Files (x86)\CheckPoint\ZoneAlarm\CheckPoint\ZoneAlarm\zatray.exe" IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL IFEO-X64: bttray.exe - "D:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe" IFEO-X64: hpbc.exe - "D:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe" IFEO-X64: iastorui.exe - "D:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe" IFEO-X64: TeamViewer.exe - "D:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe" . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\LJS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\eiv4z50p.default\ FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon) FF - prefs.js: browser.startup.homepage - about:home FF - prefs.js: keyword.URL - hxxps://encrypted.google.com/search?ie=UTF-8&sourceid=navclient&gfns=1&q= FF - prefs.js: network.proxy.gopher - FF - prefs.js: network.proxy.gopher_port - 0 FF - prefs.js: network.proxy.type - 0 FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll FF - plugin: C:\Windows\system32\Wat\npWatWeb.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll FF - plugin: D:\Program Files (x86)\Google\Picasa3\npPicasa3.dll FF - plugin: D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll . ---- FIREFOX POLICIES ---- FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: nglayout.initialpaint.delay - 600 FF - user.js: content.notify.interval - 600000 FF - user.js: content.max.tokenizing.time - 1800000 FF - user.js: content.switch.threshold - 600000 . ============= SERVICES / DRIVERS =============== . . =============== Created Last 30 ================ . 2011-10-19 16:23:56 388096 ----a-r- C:\Users\LJS-PC\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-10-18 03:05:39 34624 ----a-w- C:\Windows\System32\TURegOpt.exe 2011-10-18 03:05:29 25920 ----a-w- C:\Windows\System32\authuitu.dll 2011-10-18 03:05:29 21312 ----a-w- C:\Windows\SysWow64\authuitu.dll 2011-10-18 03:00:34 -------- d-sh--w- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936} 2011-10-13 03:11:21 -------- d-----w- C:\Windows\AutoKMS 2011-10-12 17:12:06 3138048 ----a-w- C:\Windows\System32\win32k.sys 2011-10-12 17:06:16 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax 2011-10-12 17:06:16 613888 ----a-w- C:\Windows\System32\psisdecd.dll 2011-10-12 17:06:16 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll 2011-10-12 17:06:16 108032 ----a-w- C:\Windows\System32\psisrndr.ax 2011-10-12 17:03:10 331776 ----a-w- C:\Windows\System32\oleacc.dll 2011-10-12 17:03:10 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll 2011-10-12 17:03:09 861696 ----a-w- C:\Windows\System32\oleaut32.dll 2011-10-12 17:03:09 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll 2011-10-11 18:31:59 -------- d-----w- C:\Users\LJS-PC\AppData\Local\uTorrent 2011-10-09 04:38:51 -------- d-----w- C:\Users\LJS-PC\AppData\Local\Babylon 2011-10-09 04:38:46 -------- d-----w- C:\Users\LJS-PC\AppData\Roaming\Babylon 2011-10-09 04:38:46 -------- d-----w- C:\ProgramData\Babylon 2011-10-08 21:04:44 9049936 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{80AE8E86-25E6-474A-B25F-9319284E4BC6}\mpengine.dll 2011-10-08 03:10:57 -------- d-----w- C:\Users\LJS-PC\AppData\Roaming\PlatinumHideIP 2011-10-08 03:10:57 -------- d-----w- C:\ProgramData\PlatinumHideIP 2011-10-07 21:06:20 -------- d-----w- C:\MGADiagToolOutput 2011-10-07 02:21:43 -------- d-----w- C:\Users\LJS-PC\AppData\Local\ODUI 2011-10-07 02:21:35 -------- d-----w- C:\Users\LJS-PC\AppData\Local\Stardock 2011-10-07 02:20:36 -------- d-----w- C:\Users\LJS-PC\AppData\Roaming\Stardock 2011-10-07 02:19:57 -------- d-----w- C:\ProgramData\Stardock 2011-10-07 02:19:35 -------- d-----w- C:\Users\LJS-PC\AppData\Local\PackageAware 2011-10-07 01:43:09 -------- d-----w- C:\Users\LJS-PC\AppData\Local\VS Revo Group 2011-10-07 01:42:44 31800 ----a-w- C:\Windows\System32\drivers\revoflt.sys 2011-10-06 18:24:12 9049936 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll 2011-10-05 17:01:56 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2011-10-05 00:29:03 -------- d-----w- C:\Users\LJS-PC\AppData\Roaming\Foxit Software 2011-10-03 17:39:07 -------- d-----w- C:\Program Files (x86)\zonealarm_security_suite 2011-10-01 14:11:03 145008 ----a-w- C:\Windows\System32\drivers\idmwfp.sys 2011-09-22 04:18:27 74272 ----a-w- C:\Windows\System32\RtNicProp64.dll 2011-09-22 04:18:27 565352 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys . ==================== Find3M ==================== . 2011-09-01 05:24:07 2309120 ----a-w- C:\Windows\System32\jscript9.dll 2011-09-01 05:17:57 1389056 ----a-w- C:\Windows\System32\wininet.dll 2011-09-01 05:12:04 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2011-09-01 02:35:59 1798144 ----a-w- C:\Windows\SysWow64\jscript9.dll 2011-09-01 02:28:15 1126912 ----a-w- C:\Windows\SysWow64\wininet.dll 2011-09-01 02:22:54 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2011-09-01 00:00:50 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys 2011-08-31 22:20:52 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll 2011-08-24 10:57:24 107552 ----a-w- C:\Windows\System32\RTNUninst64.dll 2011-08-05 23:29:50 627600 ----a-w- C:\Windows\System32\deployJava1.dll 2011-07-22 18:28:38 175192 ----a-w- C:\Windows\System32\drivers\jmcr.sys . ============= FINISH: 9:30:27.06 =============== Attach file ----------------------------------------------------------------- . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . . ==== Disk Partitions ========================= . . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . No restore point in system. . ==== Installed Programs ====================== . µTorrent Adobe AIR Adobe Shockwave Player 11.6 Aegisub 2.1.8 Ashampoo Burning Studio 10 v.10.0.14 Auslogics Disk Defrag CyberLink PowerDVD 11 CyberLink WaveEditor Driver Genius Professional Edition Foxit Reader 5.0 Freemake Video Converter version 2.4.0 Globe Broadband GOM Player HiJackThis Intel® Graphics Media Accelerator Driver Intel® Rapid Storage Technology Internet Download Manager JMicron Flash Media Controller Driver Malwarebytes' Anti-Malware version 1.51.2.1300 Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft_VC80_CRT_x86 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFCLOC_x86 Microsoft_VC90_ATL_x86 Microsoft_VC90_CRT_x86 Microsoft_VC90_MFC_x86 Mozilla Firefox 7.0.1 (x86 en-US) Mp3tag v2.49 MSI to redistribute MS VS2005 CRT libraries MSVC80_x86_v2 MSVC90_x86 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nokia Connectivity Cable Driver Nokia Ovi Suite Nokia Ovi Suite Software Updater Ovi Desktop Sync Engine OviMPlatform PC Connectivity Solution Picasa 3 Realtek Ethernet Controller Driver Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft Office Excel 2007 (KB951546) Skype™ 5.5 swMSM TeamViewer 6 Testline Killbits for Microsoft Office 2007 TuneUp Utilities 2012 TuneUp Utilities Language Pack (en-US) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Outlook 2007 Junk Email Filter (KB2596560) VC 9.0 Runtime ViiKii Desktop Plug-in VLC media player 1.1.9 Windows Movie Maker 2.6 Yahoo! Messenger ZoneAlarm Antivirus ZoneAlarm Firewall ZoneAlarm Internet Security Suite ZoneAlarm Security . ==== End Of File =========================== Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:24:11 AM, on 10/19/2011 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: D:\Program Files (x86)\Internet Download Manager\IDMan.exe D:\Program Files (x86)\CheckPoint\ZoneAlarm\CheckPoint\ZoneAlarm\zatray.exe D:\Program Files (x86)\Internet Download Manager\IEMonitor.exe D:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O1 - Hosts: ::1 localhost #[iPv6] O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\Program Files (x86)\Internet Download Manager\IDMIECC.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL O3 - Toolbar: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - (no file) O4 - HKLM\..\Run: [ZoneAlarm] "D:\Program Files (x86)\CheckPoint\ZoneAlarm\CheckPoint\ZoneAlarm\zatray.exe" O4 - HKCU\..\Run: [iDMan] D:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?') O4 - HKUS\S-1-5-21-2156619091-2111525993-549436738-1001\..\Run: [iDMan] D:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot (User '?') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Download all links with IDM - D:\Program Files (x86)\Internet Download Manager\IEGetAll.htm O8 - Extra context menu item: Download with IDM - D:\Program Files (x86)\Internet Download Manager\IEExt.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Send image to &Bluetooth Device... - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: Send page to &Bluetooth Device... - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O17 - HKLM\System\CCS\Services\Tcpip\..\{5788FA58-EA5B-4B38-846A-642643C1052A}: NameServer = 208.67.222.123,208.67.220.123 O17 - HKLM\System\CCS\Services\Tcpip\..\{73983853-803E-4591-86BA-1378AB4CDD41}: NameServer = 208.67.222.123,208.67.220.123 O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - D:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - D:\Program Files (x86)\CheckPoint\ZoneAlarm\CheckPoint\ZoneAlarm\vsmon.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) -- End of file - 6288 bytes the testline killbits here is a (logger for my kids lol a monitoring program i just renamed it so they wouldn't wonder.)

the explorer is always flickering..(but now it is no longer flickering malwarebytes remove the viruses when i updated it) but now the problem is the icons are invicible(when view as large ones) and when i delete some files recycle bin shows black icons. maybe a registry entry was damaged when the virus invaded my laptop..

anyone please????

here are my logs....please help...i'm running at safe mode with networking cause i can't boot on normal mode.. DDS Log file DDS (Ver_09-12-01.01) - NTFSx86 NETWORK Run by LJS at 10:30:20.17 on Fri 03/12/2010 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_18 Microsoft Attach.zip