lmhagans

What do you mean bootable?

No. What I mean is how am I suppose to create the cd from a clean computer when this is my only computer? Also, the virus has prevented my cd/DVD from working and also my SD slots.

My laptop is my only computer. Is there another option?

I looked everywhere and I can't find it.

http://www.virustotal.com/file-scan/report.html?id=445549b8b896f1887e7c5ac4f8cea9a17c54b28991d678c1d28f67762bda32c2-1317090606

Nevermind I think I did it. I clicked the windows + r and I was able to open the notepad. I did the drag but combo fix still freezes.

My start menu does not have a run command in the start menu. I am on windows vista.

GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2011-09-25 14:20:02 Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 TOSHIBA_MK2035GSS rev.DK022A Running: 3bq7excc.exe; Driver: C:\Users\Linda\AppData\Local\Temp\ugloapob.sys ---- User code sections - GMER 1.0.15 ---- .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!CreateDialogParamW 775472A2 5 Bytes JMP 6CB6DE88 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!GetAsyncKeyState 7754863C 5 Bytes JMP 6CA88F0F C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!SetWindowsHookExW 775487AD 5 Bytes JMP 6CB69A89 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!CallNextHookEx 77548E3B 5 Bytes JMP 6CB5D0C5 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!UnhookWindowsHookEx 775498DB 5 Bytes JMP 6CAD467E C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!EnableWindow 7754CD8B 5 Bytes JMP 6CB6DD15 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!CreateWindowExW 77551305 5 Bytes JMP 6CB6DAFC C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!GetKeyState 77558CB1 5 Bytes JMP 6CB6D2C5 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!IsDialogMessageW 77560745 5 Bytes JMP 6CA959E7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!CreateDialogParamA 775617AA 5 Bytes JMP 6CC65F63 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!IsDialogMessage 77561847 5 Bytes JMP 6CC657FF C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!CreateDialogIndirectParamA 775626F1 5 Bytes JMP 6CC65F9A C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!CreateDialogIndirectParamW 77569A62 5 Bytes JMP 6CC65FD1 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!SetKeyboardState 77570987 5 Bytes JMP 6CC65B6E C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!DialogBoxParamW 775710B0 5 Bytes JMP 6CA954D5 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!DialogBoxIndirectParamW 77572EF5 5 Bytes JMP 6CC652F7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!SendInput 77572F75 5 Bytes JMP 6CC6672B C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!EndDialog 7757326E 5 Bytes JMP 6CA97E8E C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!SetCursorPos 77586FB2 5 Bytes JMP 6CC6677F C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!DialogBoxParamA 77588152 5 Bytes JMP 6CC65294 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!DialogBoxIndirectParamA 7758847D 5 Bytes JMP 6CC6535A C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!MessageBoxIndirectA 7759D4D9 5 Bytes JMP 6CC65229 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!MessageBoxIndirectW 7759D5D3 5 Bytes JMP 6CC651BE C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!MessageBoxExA 7759D639 5 Bytes JMP 6CC6515C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!MessageBoxExW 7759D65D 5 Bytes JMP 6CC650FA C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] USER32.dll!keybd_event 7759D972 5 Bytes JMP 6CC66AAF C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] SHELL32.dll!SHRestricted + D95 76AA89A8 4 Bytes [4D, 30, 45, 68] {DEC EBP; XOR [EBP+0x68], AL} .text C:\Program Files\Internet Explorer\iexplore.exe[5328] SHELL32.dll!SHRestricted + D9D 76AA89B0 8 Bytes [57, 2F, 45, 68, 9C, 5B, 44, ...] {PUSH EDI; DAS ; INC EBP; PUSH 0x68445b9c} .text C:\Program Files\Internet Explorer\iexplore.exe[5328] ole32.dll!OleLoadFromStream 764B1E80 5 Bytes JMP 6CC6565F C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5328] ole32.dll!CoCreateInstance 764E9F3E 5 Bytes JMP 6CB6DB58 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5776] USER32.dll!CreateWindowExW 77551305 5 Bytes JMP 6CB6DAFC C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5776] USER32.dll!DialogBoxParamW 775710B0 5 Bytes JMP 6CA954D5 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5776] USER32.dll!DialogBoxIndirectParamW 77572EF5 5 Bytes JMP 6CC652F7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5776] USER32.dll!DialogBoxParamA 77588152 5 Bytes JMP 6CC65294 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5776] USER32.dll!DialogBoxIndirectParamA 7758847D 5 Bytes JMP 6CC6535A C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5776] USER32.dll!MessageBoxIndirectA 7759D4D9 5 Bytes JMP 6CC65229 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5776] USER32.dll!MessageBoxIndirectW 7759D5D3 5 Bytes JMP 6CC651BE C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5776] USER32.dll!MessageBoxExA 7759D639 5 Bytes JMP 6CC6515C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[5776] USER32.dll!MessageBoxExW 7759D65D 5 Bytes JMP 6CC650FA C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation) CODE C:\Windows\system\svchost.exe[5976] C:\Windows\system\svchost.exe entry point in "CODE" section [0x00401F90] ---- User IAT/EAT - GMER 1.0.15 ---- IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [68441AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [6844007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CopyFileW] [6843E1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!MoveFileW] [68440994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!DeleteFileW] [6843EE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [6843A3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [68441D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [68443ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [68442999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [68443035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [6843FBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [6843E860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6843DC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [6843FD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6843D4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryInfoKeyW] [6844FBB3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegEnumValueW] [6845051D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegOpenKeyExW] [6844EB3D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryValueExW] [6844F817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegDeleteKeyW] [6844EF31] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCreateKeyExW] [6844E5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCloseKey] [6844ED95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [6844007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [6843FBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [6843E1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [6843FD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [6843E860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [68441AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [6843EE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindClose] [68443ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindFirstFileA] [68442CD2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindNextFileA] [68442926] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindFirstFileW] [68443035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindNextFileW] [68442999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetFileAttributesA] [6843BD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetCurrentDirectoryA] [6844173F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetFileAttributesA] [6843BFCD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateDirectoryA] [68440F0F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!RemoveDirectoryA] [684414E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileA] [6843ED1B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetFileAttributesW] [6843BEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetCurrentDirectoryW] [68441D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetFileAttributesW] [6843C0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateDirectoryW] [6844103D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileW] [6843EE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileW] [68440994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!RemoveDirectoryW] [68441614] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileA] [68440921] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [6843FBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [6843A073] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [6843A3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileA] [6843E717] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileW] [6843E860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryW] [6843FD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [6843FD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [68440C95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [6843DC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [6843D4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [6843D361] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [6843EE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [6844007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [6843C0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [6843E860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [68443035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [68442999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [68441AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [6843BEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [6843BFCD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [6843E717] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [68442CD2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [68442926] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [68443ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [684423A5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [6843BD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [6843FBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [uSER32.dll!WinHelpW] [6843FAAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [uSER32.dll!WinHelpA] [6843F973] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCloseKey] [6844ED95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExA] [6844E43D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyA] [6844EDE8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyA] [6844F9B7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExA] [6844E9C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExW] [6844E5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExW] [6844EB3D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExW] [6845020D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueW] [6844F4DB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyW] [6844EF31] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyW] [6844FBB3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExW] [6844F817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueW] [6845051D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyW] [6844FF19] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExA] [68450085] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueA] [68450395] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyA] [6844FDAF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExA] [6844F677] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [6843CFA8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindNextFileW] [68442999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [68440C95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [6843D22A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [6843D9DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6843DC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [6843EB68] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetCurrentDirectoryW] [68441D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [6843E1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [6843CAA7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [6844007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [6843A3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [68440994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindFirstFileW] [68443035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindClose] [68443ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [6843C709] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesA] [6843BD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SearchPathW] [68441AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [6843CD20] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6843D4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!RemoveDirectoryW] [68441614] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateDirectoryW] [6844103D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!DeleteFileW] [6843EE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetFileAttributesW] [6843C0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesW] [6843BEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [684409B9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameW] [6843C848] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [6843FD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateFileW] [6843E860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesExW] [6843C368] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [6843FBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetLongPathNameW] [6843C5D8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [uSER32.dll!LoadImageW] [6843F0D0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [uSER32.dll!WinHelpW] [6843FAAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [uSER32.dll!PrivateExtractIconsW] [6843F5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!AssocQueryStringByKeyW] [6844620B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHCreateStreamOnFileW] [68447595] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!AssocQueryKeyW] [684460AE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!AssocQueryStringW] [6844615B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHDeleteKeyA] [684475E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathCombineW] [68446533] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHOpenRegStream2W] [6844799A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsDirectoryW] [6844684F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsURLW] [68446E45] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsRootA] [68446AFB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsRootW] [68446B47] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathStripToRootW] [68447281] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathFindOnPathW] [68446716] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathStripPathW] [684471ED] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathRemoveArgsW] [68447021] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHRegGetBoolUSValueW] [68447FBE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathSkipRootW] [68447159] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsDirectoryEmptyW] [684468E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsSystemFolderW] [68446BE2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsDirectoryA] [68446803] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathRelativePathToW] [68446F81] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathBuildRootA] [684463A5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHRegGetPathW] [684480BD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHRegSetPathW] [68448513] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHRegGetUSValueW] [68448176] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathCreateFromUrlW] [684465DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHQueryValueExW] [68447BA4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHRegGetValueW] [68448235] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsNetworkPathW] [6844697F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsUNCServerShareW] [68446DAD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsUNCServerW] [68446D15] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathUnExpandEnvStringsW] [6844731F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathMakeSystemFolderW] [68446EDD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsUNCW] [68446C7D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathIsRelativeW] [68446AAF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHGetValueW] [684478EA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathBuildRootW] [684463F4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHDeleteValueW] [684476D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHSetValueW] [68448732] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHEnumKeyExW] [6844777E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHEnumValueW] [68447831] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!PathFileExistsW] [6844667B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [sHLWAPI.dll!SHDeleteKeyW] [68447636] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [6843BB38] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindClose] [68443ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindFirstFileW] [68443035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [6844007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!SearchPathW] [68441AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [6843A3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!DeleteFileW] [6843EE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetShortPathNameW] [6843C848] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesExW] [6843C368] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateFileW] [6843E860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [6843FD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesW] [6843BEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [6843FBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!SHRegGetValueW] [68448235] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!SHRegGetValueA] [684481D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!PathUnExpandEnvStringsA] [684472CD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!SHDeleteKeyA] [684475E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!SHDeleteValueW] [684476D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!PathCreateFromUrlW] [684465DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!SHGetValueA] [6844788F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!SHSetValueA] [684486D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!SHGetValueW] [684478EA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!SHSetValueW] [68448732] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [sHLWAPI.dll!PathCombineW] [68446533] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\ws2_32.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\SAMLIB.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[5328] @ C:\Windows\system32\IPHLPAPI.DLL [KERNEL32.dll!GetProcAddress] [684382F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) ---- Devices - GMER 1.0.15 ---- AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (WDF Dynamic/Microsoft Corporation) AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (WDF Dynamic/Microsoft Corporation) AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) ---- EOF - GMER 1.0.15 ----

GMER 1.0.15.15641 - http://www.gmer.net Rootkit quick scan 2011-09-25 12:33:34 Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 TOSHIBA_MK2035GSS rev.DK022A Running: 3bq7excc.exe; Driver: C:\Users\Linda\AppData\Local\Temp\ugloapob.sys ---- Devices - GMER 1.0.15 ---- AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (WDF Dynamic/Microsoft Corporation) AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (WDF Dynamic/Microsoft Corporation) ---- EOF - GMER 1.0.15 ----

Combofix still freezes and I was not able to get the otl fix log. The otl fix created a log after the reboot however when combofix froze and I had to restart I lost the log.

Here is the OTL scan OTL logfile created on: 9/24/2011 12:03:33 PM - Run 3 OTL by OldTimer - Version 3.2.28.0 Folder = C:\Users\Linda\Desktop Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.19120) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 1.99 Gb Total Physical Memory | 0.98 Gb Available Physical Memory | 49.44% Memory free 4.21 Gb Paging File | 3.20 Gb Available in Paging File | 75.99% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 178.83 Gb Total Space | 104.18 Gb Free Space | 58.26% Space Free | Partition Type: NTFS Drive E: | 3.69 Gb Total Space | 3.37 Gb Free Space | 91.44% Space Free | Partition Type: FAT32 Computer Name: LINDA-PC | User Name: Linda | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011/09/13 18:53:09 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Users\Linda\Desktop\OTL.exe PRC - [2011/08/31 17:00:48 | 000,449,608 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe PRC - [2011/05/17 13:29:46 | 000,395,144 | ---- | M] (Ask) -- C:\Program Files\Ask.com\Updater\Updater.exe PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe PRC - [2011/03/09 06:30:08 | 000,247,728 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe PRC - [2011/03/09 06:30:08 | 000,092,592 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe PRC - [2010/10/27 20:17:52 | 000,207,424 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe PRC - [2010/10/12 17:28:26 | 000,726,456 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Citrix\ICA Client\wfcrun32.exe PRC - [2010/10/12 17:24:38 | 000,304,568 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Citrix\ICA Client\concentr.exe PRC - [2010/03/18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe PRC - [2010/01/27 10:40:58 | 000,323,584 | ---- | M] (Eastman Kodak Company) -- C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe PRC - [2009/04/11 00:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2008/11/25 13:58:12 | 000,356,352 | ---- | M] () -- C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe PRC - [2008/11/25 13:48:38 | 000,991,232 | ---- | M] () -- C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe PRC - [2007/07/24 20:26:38 | 000,182,392 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Event Service\VESMgr.exe PRC - [2007/07/24 20:26:38 | 000,100,472 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe PRC - [2007/07/12 12:31:34 | 000,045,056 | ---- | M] (Sony Electronics, Inc.) -- C:\Program Files\Sony\VAIO PC Wireless LAN Wizard\AutoLaunchWLASU.exe PRC - [2007/06/28 09:53:02 | 000,184,320 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe PRC - [2007/06/28 09:53:00 | 000,188,416 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe PRC - [2007/06/28 09:52:48 | 000,274,432 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe PRC - [2007/06/15 13:45:20 | 000,469,112 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe PRC - [2007/06/14 09:40:46 | 000,921,600 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe PRC - [2007/06/11 19:27:14 | 000,317,560 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\ISB Utility\ISBMgr.exe PRC - [2007/05/31 10:32:14 | 000,551,032 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe PRC - [2007/01/04 20:48:52 | 000,112,152 | R--- | M] (InterVideo) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe PRC - [2007/01/04 15:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe PRC - [2006/11/02 03:45:59 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdSync.exe PRC - [2006/07/13 11:27:16 | 000,528,384 | ---- | M] ( ) -- C:\Windows\System32\lxctcoms.exe PRC - [2006/06/20 07:37:42 | 000,286,720 | ---- | M] () -- C:\Program Files\Lexmark 5400 Series\lxctmon.exe ========== Modules (No Company Name) ========== MOD - [2011/09/14 22:15:59 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\c50d9d540acecdef29c31201e203a331\System.Windows.Forms.ni.dll MOD - [2011/09/14 22:15:48 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\d8d83838f9840bde901df516ba3de588\System.Drawing.ni.dll MOD - [2011/09/14 22:13:20 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b9ea0d414c4861120bfb7365d8ec0939\System.ni.dll MOD - [2011/09/14 22:13:14 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\f6deb187f24bb3185841092b89fbfdbb\mscorlib.ni.dll MOD - [2010/11/11 22:18:53 | 000,688,128 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\VPrintOnline.dll MOD - [2010/11/11 22:18:53 | 000,143,360 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\VPrintOnlineHelper40.dll MOD - [2010/11/11 22:18:52 | 002,236,416 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\SkinuxCmpV.dll MOD - [2010/11/11 22:18:52 | 001,396,736 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\SkinuxCommonV.dll MOD - [2010/11/11 22:18:52 | 000,868,352 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\SkinuxBaseV.dll MOD - [2010/11/11 22:18:52 | 000,847,872 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\SkinuxXML2V.dll MOD - [2010/11/11 22:18:52 | 000,782,336 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\SkinuxImV.dll MOD - [2010/11/11 22:18:52 | 000,528,384 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\SkinuxProcV.dll MOD - [2010/11/11 22:18:52 | 000,462,848 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\SkinuxFFV.dll MOD - [2010/11/11 22:18:52 | 000,237,568 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\SpiffyExt.dll MOD - [2010/11/11 22:18:52 | 000,155,648 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\SkinuxZipV.dll MOD - [2010/11/11 22:18:51 | 000,090,112 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\LocAcqMod.dll MOD - [2010/11/11 22:18:51 | 000,044,544 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\LocCamBack.dll MOD - [2010/11/11 22:18:51 | 000,010,240 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\LocUpdateCheck.dll MOD - [2010/11/11 22:18:36 | 001,564,672 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\areaifdll.dll MOD - [2010/11/11 22:18:36 | 000,471,040 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\ESCom.dll MOD - [2010/11/11 22:18:36 | 000,406,016 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\KFx.dll MOD - [2010/11/11 22:18:36 | 000,356,352 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\Atlas.dll MOD - [2010/11/11 22:18:36 | 000,129,536 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\kpries40.dll MOD - [2010/11/11 22:18:36 | 000,084,480 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\keml40.dll MOD - [2010/11/11 22:18:36 | 000,062,464 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\DibLibIP.dll MOD - [2010/11/11 22:18:36 | 000,052,224 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\KPCDInterface.dll MOD - [2010/11/11 22:18:35 | 011,503,616 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\ESSkin.esx MOD - [2010/11/11 22:18:35 | 000,761,856 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\ESCliWicMDRW.esx MOD - [2010/11/11 22:18:35 | 000,684,032 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\ESEmail.esx MOD - [2010/11/11 22:18:35 | 000,339,968 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\VistaAdapter.esx MOD - [2010/11/11 22:18:35 | 000,315,392 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\VistaPrintOnline.esx MOD - [2010/11/11 22:18:35 | 000,264,192 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\AppCore.dll MOD - [2010/11/11 22:18:35 | 000,233,984 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\VistaControls.esx MOD - [2010/11/11 22:18:35 | 000,171,520 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\Pcd.esx MOD - [2010/11/11 22:18:35 | 000,152,576 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\IStorageMediaStore.esx MOD - [2010/11/11 22:18:35 | 000,098,304 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\VistaCDBackup.esx MOD - [2010/11/11 22:18:35 | 000,084,480 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\UpdateChecker.esx MOD - [2010/11/11 22:18:34 | 000,078,848 | ---- | M] () -- C:\Program Files\Kodak\Kodak EasyShare software\bin\DXRawFormatHandler.esx MOD - [2009/11/03 16:51:42 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll MOD - [2008/11/25 13:58:12 | 000,356,352 | ---- | M] () -- C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe MOD - [2008/11/25 13:56:28 | 000,045,056 | ---- | M] () -- C:\Program Files\LeapFrog\LeapFrog Connect\DeviceHooks\TagDeviceHook.dll MOD - [2007/10/11 11:40:52 | 001,581,056 | ---- | M] () -- C:\Program Files\LeapFrog\LeapFrog Connect\QtCore4.dll MOD - [2007/10/01 07:49:56 | 006,418,432 | ---- | M] () -- C:\Program Files\LeapFrog\LeapFrog Connect\QtGui4.dll MOD - [2007/06/29 07:47:09 | 000,249,856 | ---- | M] () -- C:\Windows\System32\igfxTMM.dll MOD - [2006/06/20 07:37:42 | 000,286,720 | ---- | M] () -- C:\Program Files\Lexmark 5400 Series\lxctmon.exe MOD - [2006/06/20 07:37:08 | 000,278,528 | ---- | M] () -- C:\Program Files\Lexmark 5400 Series\lxctscw.dll MOD - [2006/06/08 20:39:54 | 000,143,360 | ---- | M] () -- C:\Program Files\Lexmark 5400 Series\lxctdrec.dll ========== Win32 Services (SafeList) ========== SRV - [2011/09/01 22:22:20 | 000,218,624 | ---- | M] (Intel Corporation ) [Auto | Running] -- C:\Windows\System32\itnetw32.dll -- (itlperf) SRV - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2011/04/27 15:39:26 | 000,208,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv) SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc) SRV - [2011/03/09 06:30:08 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService) SRV - [2010/03/18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2008/11/25 13:48:38 | 000,991,232 | ---- | M] () [Auto | Running] -- C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe -- (LeapFrog Connect Device Service) SRV - [2008/01/19 01:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2008/01/19 01:36:49 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm) SRV - [2008/01/19 01:36:15 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr) SRV - [2007/07/24 20:26:38 | 000,182,392 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\VAIO Event Service\VESMgr.exe -- (VAIO Event Service) SRV - [2007/07/13 11:55:56 | 000,292,152 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe -- (VcmIAlzMgr) SRV - [2007/07/05 18:43:04 | 000,079,736 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe -- (VcmXmlIfHelper) SRV - [2007/06/28 09:53:04 | 000,073,728 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe -- (VAIO Entertainment TV Device Arbitration Service) SRV - [2007/06/28 09:53:02 | 000,184,320 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe -- (VzFw) SRV - [2007/06/28 09:53:00 | 000,188,416 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe -- (VzCdbSvc) SRV - [2007/06/28 09:52:48 | 000,274,432 | ---- | M] (Sony Corporation) [On_Demand | Running] -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe -- (Vcsw) SRV - [2007/06/20 16:35:06 | 002,523,136 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe -- (VAIOMediaPlatform-IntegratedServer-AppServer) SRV - [2007/06/20 16:34:52 | 000,499,712 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe -- (VAIOMediaPlatform-Mobile-Gateway) SRV - [2007/06/20 16:34:50 | 001,089,536 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe -- (VAIOMediaPlatform-UCLS-UPnP) VAIO Media Content Collection (UPnP) SRV - [2007/06/20 16:34:50 | 001,089,536 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe -- (VAIOMediaPlatform-IntegratedServer-UPnP) VAIO Media Integrated Server (UPnP) SRV - [2007/06/20 16:34:50 | 000,397,312 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe -- (VAIOMediaPlatform-UCLS-HTTP) VAIO Media Content Collection (HTTP) SRV - [2007/06/20 16:34:50 | 000,397,312 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe -- (VAIOMediaPlatform-IntegratedServer-HTTP) VAIO Media Integrated Server (HTTP) SRV - [2007/01/10 17:51:06 | 000,745,472 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe -- (VAIOMediaPlatform-UCLS-AppServer) SRV - [2007/01/04 20:48:52 | 000,112,152 | R--- | M] (InterVideo) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr) SRV - [2007/01/04 15:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) [Auto | Running] -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service) SRV - [2006/12/14 03:21:20 | 000,045,056 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV) SRV - [2006/12/14 03:02:08 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV) SRV - [2006/12/14 02:46:16 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR) SRV - [2006/07/13 11:27:16 | 000,528,384 | ---- | M] ( ) [Auto | Running] -- C:\Windows\System32\lxctcoms.exe -- (lxct_device) ========== Driver Services (SafeList) ========== DRV - [2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector) DRV - [2011/04/27 15:25:24 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv) DRV - [2011/04/18 13:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon) DRV - [2010/07/14 12:51:56 | 000,065,584 | ---- | M] (Citrix Systems, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\ctxusbm.sys -- (ctxusbm) DRV - [2008/11/25 13:39:02 | 000,019,456 | ---- | M] (LeapFrog) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\FlyUsb.sys -- (FlyUsb) DRV - [2007/09/26 13:12:22 | 002,251,776 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Intel® DRV - [2007/07/06 04:26:40 | 000,084,480 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169) DRV - [2007/06/27 20:29:58 | 000,010,216 | ---- | M] (Sony Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\DMICall.sys -- (DMICall) DRV - [2007/06/15 09:12:26 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio) DRV - [2007/06/05 06:17:29 | 000,812,544 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ti21sony.sys -- (ti21sony) DRV - [2007/05/24 18:36:21 | 000,128,104 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\WimFltr.sys -- (WimFltr) DRV - [2007/04/19 07:07:25 | 000,073,472 | ---- | M] (Ricoh) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\R5U870FLx86.sys -- (R5U870FLx86) DRV - [2007/04/19 07:07:25 | 000,043,904 | ---- | M] (Ricoh) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\R5U870FUx86.sys -- (R5U870FUx86) DRV - [2007/04/17 21:09:28 | 000,011,032 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\regi.sys -- (regi) DRV - [2007/02/02 05:00:00 | 000,009,464 | ---- | M] (Sonic Solutions) [Kernel | System | Running] -- C:\Windows\System32\drivers\cdralw2k.sys -- (Cdralw2k) DRV - [2007/02/02 05:00:00 | 000,009,336 | ---- | M] (Sonic Solutions) [Kernel | System | Running] -- C:\Windows\System32\drivers\cdr4_xp.sys -- (Cdr4_xp) DRV - [2006/11/06 01:09:26 | 000,027,520 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SonyNC.sys -- (SNC) DRV - [2006/11/01 14:18:15 | 000,033,588 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW) DRV - [2006/05/18 09:49:02 | 000,061,067 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftser2k.sys -- (FTSER2K) DRV - [2006/05/18 09:48:50 | 000,047,249 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftdibus.sys -- (FTDIBUS) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qwest.live.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [binary data over 100 bytes] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://qwest.live.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qwest.live.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 6C 3A 34 B0 86 75 CC 01 [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\..\URLSearchHook: - Reg Error: CLSID key missing. File not found IE - HKCU\..\URLSearchHook: {69d1a568-ffdf-4ef5-8919-7003582e0ee8} - Reg Error: No CLSID value found. File not found IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local ========== FireFox ========== FF - prefs.js..extensions.enabledItems: MapShare-status@tomtom.com:1.7.1 FF - prefs.js..extensions.enabledItems: baseTheme@tomtom.com:1.0.2 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\Linda\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks) FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll () FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\Linda\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll (Move Networks) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Linda\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\moveplayer@movenetworks.com: C:\Users\Linda\AppData\Roaming\Move Networks [2010/01/06 12:18:41 | 000,000,000 | ---D | M] [2011/09/19 22:16:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Linda\AppData\Roaming\Mozilla\Extensions [2010/06/14 20:01:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Linda\AppData\Roaming\Mozilla\Extensions\home2@tomtom.com [2009/05/29 22:32:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Linda\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org [2011/03/20 20:55:01 | 000,000,000 | ---D | M] (Map status indicator) -- C:\PROGRAM FILES\TOMTOM HOME 2\XUL\EXTENSIONS\MAPSHARE-STATUS@TOMTOM.COM [2010/10/12 16:33:32 | 000,124,344 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\CCMSDK.dll [2010/10/12 16:37:06 | 000,070,592 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\CgpCore.dll [2010/10/12 16:35:42 | 000,091,576 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\confmgr.dll [2010/10/12 16:34:56 | 000,022,464 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\ctxlogging.dll [2010/10/12 18:16:54 | 000,484,768 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\npicaN.dll [2010/10/12 16:37:02 | 000,024,000 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\TcpPServ.dll O1 HOSTS File: ([2009/01/11 17:01:47 | 000,140,462 | R--- | M]) - C:\Windows\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O1 - Hosts: 0.0.0.0 123spywar.com O1 - Hosts: 0.0.0.0 www.123spywar.com O1 - Hosts: 0.0.0.0 1clickspyclean.com O1 - Hosts: 0.0.0.0 www.1clickspyclean.com O1 - Hosts: 0.0.0.0 1clicksuite.net O1 - Hosts: 0.0.0.0 www.1clicksuite.net O1 - Hosts: 0.0.0.0 1spyware-removal.com O1 - Hosts: 0.0.0.0 www.1spyware-removal.com O1 - Hosts: 0.0.0.0 1spywarekiller.com O1 - Hosts: 0.0.0.0 www.1spywarekiller.com O1 - Hosts: 0.0.0.0 1stantivirus.com O1 - Hosts: 0.0.0.0 www.1stantivirus.com O1 - Hosts: 0.0.0.0 1stspywar.com O1 - Hosts: 0.0.0.0 www.1stspywar.com O1 - Hosts: 0.0.0.0 2-antispyware.com O1 - Hosts: 0.0.0.0 www.2-antispyware.com O1 - Hosts: 0.0.0.0 3bsoftware.com O1 - Hosts: 0.0.0.0 www.3bsoftware.com O1 - Hosts: 0.0.0.0 actualresearch.com O1 - Hosts: 0.0.0.0 www.actualresearch.com O1 - Hosts: 0.0.0.0 abletostop.com O1 - Hosts: 0.0.0.0 www.abletostop.com O1 - Hosts: 0.0.0.0 aboutblankremover.com O1 - Hosts: 4890 more lines... O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Lexmark Toolbar) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll () O2 - BHO: (no name) - {624472C5-70D2-4D33-844A-B442090336BD} - No CLSID value found. O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKLM\..\Toolbar: (Lexmark Toolbar) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll () O3 - HKLM\..\Toolbar: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKCU\..\Toolbar\WebBrowser: (Lexmark Toolbar) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll () O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found. O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found. O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found. O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found. O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [ConnectionCenter] C:\Program Files\Citrix\ICA Client\concentr.exe (Citrix Systems, Inc.) O4 - HKLM..\Run: [iSBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) O4 - HKLM..\Run: [LXCTCATS] C:\Windows\System32\spool\DRIVERS\W32X86\3\LXCTtime.DLL (Lexmark International Inc.) O4 - HKLM..\Run: [lxctmon.exe] C:\Program Files\Lexmark 5400 Series\lxctmon.exe () O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [Monitor] C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe () O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [VAIOSurvey] C:\Program Files\Sony\VAIO Survey\Vista VAIO Survey.exe () O4 - HKLM..\Run: [VWLASU] C:\Program Files\Sony\VAIO PC Wireless LAN Wizard\AutoLaunchWLASU.exe (Sony Electronics, Inc.) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) O4 - HKCU..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom) O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1 O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logmein.com/activex/ractrl.cab?lmi=100 (Performance Viewer Activex Control) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{31A7B858-59F0-4E52-9C89-A89EF59ED55A}: DhcpNameServer = 192.168.0.1 O18 - Protocol\Filter\application/x-ica {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica; charset=euc-jp {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica; charset=ISO-8859-1 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica; charset=MS936 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica; charset=MS949 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica; charset=MS950 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica; charset=UTF8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica; charset=UTF-8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica;charset=euc-jp {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica;charset=ISO-8859-1 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica;charset=MS936 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica;charset=MS949 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica;charset=MS950 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica;charset=UTF8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\application/x-ica;charset=UTF-8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\ica {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\VESWinlogon: DllName - (VESWinlogon.dll) - C:\Windows\System32\VESWinlogon.dll (Sony Corporation) O24 - Desktop WallPaper: C:\Users\Linda\Pictures\2010-11-11\100_4386.jpg O24 - Desktop BackupWallPaper: C:\Users\Linda\Pictures\2010-11-11\100_4386.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006/09/18 15:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2011/09/22 18:57:51 | 000,000,000 | --SD | C] -- C:\ComboFix12376C [2011/09/22 18:38:33 | 000,000,000 | ---D | C] -- C:\Users\Linda\Desktop\erunt [2011/09/22 18:30:41 | 000,000,000 | ---D | C] -- C:\Users\Linda\Desktop\GooredFix Backups [2011/09/22 18:30:22 | 000,071,398 | ---- | C] (jpshortstuff) -- C:\Users\Linda\Desktop\GooredFix.exe [2011/09/19 18:05:33 | 000,607,260 | R--- | C] (Swearware) -- C:\Users\Linda\Desktop\dds.scr [2011/09/19 17:59:54 | 000,000,000 | ---D | C] -- C:\Users\Linda\Documents\tdsskiller[1] [2011/09/17 16:37:01 | 000,000,000 | --SD | C] -- C:\ComboFix117931C [2011/09/17 16:08:44 | 000,000,000 | --SD | C] -- C:\ComboFix116062C [2011/09/17 12:27:28 | 000,000,000 | ---D | C] -- C:\_OTL [2011/09/14 12:18:31 | 000,000,000 | ---D | C] -- C:\Users\Linda\Desktop\GrantPerms [2011/09/13 18:53:09 | 000,581,632 | ---- | C] (OldTimer Tools) -- C:\Users\Linda\Desktop\OTL.exe [2011/09/12 18:59:03 | 000,000,000 | --SD | C] -- C:\ComboFix132056C [2011/09/12 18:50:29 | 000,000,000 | --SD | C] -- C:\ComboFix19893C [2011/09/11 21:28:46 | 000,000,000 | --SD | C] -- C:\ComboFix115519C [2011/09/11 21:28:36 | 000,000,000 | --SD | C] -- C:\ComboFix1 [2011/09/10 09:58:06 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe [2011/09/10 09:58:06 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe [2011/09/10 09:58:05 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe [2011/09/10 09:57:49 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT [2011/09/10 09:57:17 | 004,221,174 | R--- | C] (Swearware) -- C:\Users\Linda\Desktop\ComboFix1.exe [2011/09/10 09:50:21 | 000,000,000 | ---D | C] -- C:\Qoobox [2011/09/08 22:33:56 | 001,402,672 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Linda\Desktop\tdsskiller.exe [2011/09/08 22:26:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coupons [2011/09/06 21:45:40 | 000,000,000 | ---D | C] -- C:\Users\Linda\AppData\Local\{F2504F6E-697B-4838-BC2D-F1E479CED8A0} [2011/09/06 17:17:40 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client [2011/09/06 17:17:08 | 000,221,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys [2011/09/06 16:55:00 | 000,000,000 | ---D | C] -- C:\Users\Linda\AppData\Local\ElevatedDiagnostics [2011/09/01 23:42:37 | 000,000,000 | ---D | C] -- C:\Users\Linda\AppData\Local\{73FB0109-F0A5-4275-B68E-D56CCA8B4CF1} [2011/09/01 22:22:47 | 000,000,000 | ---D | C] -- C:\Users\Linda\AppData\Roaming\Remote [2011/09/01 22:22:20 | 000,218,624 | ---- | C] (Intel Corporation ) -- C:\Windows\System32\itnetw32.dll [2011/08/31 23:47:30 | 000,000,000 | ---D | C] -- C:\ProgramData\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42} [2011/08/30 22:32:45 | 000,000,000 | ---D | C] -- C:\Users\Linda\AppData\Local\{B6AFC1E7-C435-4253-BF93-E2A5930C93E8} [2011/08/30 22:30:01 | 000,000,000 | ---D | C] -- C:\Users\Linda\AppData\Roaming\154EA192084442950AC9039A3C489A6C [2011/08/27 14:48:58 | 000,000,000 | ---D | C] -- C:\Users\Linda\AppData\Local\PackageAware [2011/08/27 14:26:08 | 000,000,000 | ---D | C] -- C:\Users\Linda\Documents\Omni PC Scan Results [2011/08/27 13:26:43 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2008/04/25 21:00:18 | 000,409,600 | ---- | C] ( ) -- C:\Windows\System32\lxctinpa.dll [2008/04/25 21:00:17 | 000,393,216 | ---- | C] ( ) -- C:\Windows\System32\lxctiesc.dll [2008/04/25 21:00:15 | 000,983,040 | ---- | C] ( ) -- C:\Windows\System32\lxctusb1.dll [2008/04/25 21:00:14 | 001,187,840 | ---- | C] ( ) -- C:\Windows\System32\lxctserv.dll [2008/04/25 21:00:13 | 000,643,072 | ---- | C] ( ) -- C:\Windows\System32\lxctpmui.dll [2008/04/25 21:00:13 | 000,163,840 | ---- | C] ( ) -- C:\Windows\System32\lxctprox.dll [2008/04/25 21:00:13 | 000,094,208 | ---- | C] ( ) -- C:\Windows\System32\lxctpplc.dll [2008/04/25 21:00:11 | 000,528,384 | ---- | C] ( ) -- C:\Windows\System32\lxctlmpm.dll [2008/04/25 21:00:10 | 000,380,928 | ---- | C] ( ) -- C:\Windows\System32\lxctih.exe [2008/04/25 21:00:09 | 000,696,320 | ---- | C] ( ) -- C:\Windows\System32\lxcthbn3.dll [2008/04/25 21:00:06 | 000,528,384 | ---- | C] ( ) -- C:\Windows\System32\lxctcoms.exe [2008/04/25 21:00:05 | 000,421,888 | ---- | C] ( ) -- C:\Windows\System32\lxctcomm.dll [2008/04/25 21:00:04 | 000,667,648 | ---- | C] ( ) -- C:\Windows\System32\lxctcomc.dll [2008/04/25 21:00:04 | 000,376,832 | ---- | C] ( ) -- C:\Windows\System32\lxctcfg.exe [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011/09/24 12:04:46 | 000,007,680 | ---- | M] () -- C:\Windows\System\svchost.exe [2011/09/24 12:01:17 | 000,003,296 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011/09/24 12:01:17 | 000,003,296 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011/09/24 12:01:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011/09/24 12:01:04 | 2137,448,448 | -HS- | M] () -- C:\hiberfil.sys [2011/09/22 18:38:07 | 000,513,320 | ---- | M] () -- C:\Users\Linda\Desktop\erunt.zip [2011/09/22 18:30:23 | 000,071,398 | ---- | M] (jpshortstuff) -- C:\Users\Linda\Desktop\GooredFix.exe [2011/09/21 21:02:37 | 000,085,504 | ---- | M] () -- C:\Users\Linda\Desktop\Inherit.exe [2011/09/20 21:07:22 | 004,221,174 | R--- | M] (Swearware) -- C:\Users\Linda\Desktop\ComboFix1.exe [2011/09/19 22:18:23 | 000,050,477 | ---- | M] () -- C:\Users\Linda\Desktop\Defogger.exe [2011/09/19 18:05:41 | 000,607,260 | R--- | M] (Swearware) -- C:\Users\Linda\Desktop\dds.scr [2011/09/14 22:10:26 | 000,614,930 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011/09/14 22:10:26 | 000,108,860 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011/09/14 12:31:29 | 000,168,448 | ---- | M] () -- C:\Users\Linda\Desktop\screen print.wps [2011/09/14 12:31:29 | 000,002,166 | ---- | M] () -- C:\Users\Linda\AppData\Roaming\wklnhst.dat [2011/09/14 08:12:46 | 000,079,623 | ---- | M] () -- C:\Users\Linda\Desktop\Junction.zip [2011/09/13 18:53:09 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Users\Linda\Desktop\OTL.exe [2011/09/08 22:33:51 | 001,402,672 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Linda\Desktop\tdsskiller.exe [2011/09/07 14:24:00 | 000,001,942 | ---- | M] () -- C:\Users\Linda\Desktop\ark.zip [2011/09/07 14:23:30 | 000,027,524 | ---- | M] () -- C:\Users\Linda\Documents\Attach.zip [2011/09/07 14:23:30 | 000,027,524 | ---- | M] () -- C:\Users\Linda\Desktop\Attach.zip [2011/09/07 11:46:20 | 000,006,912 | ---- | M] () -- C:\Users\Linda\Documents\DDS.zip [2011/09/07 11:46:20 | 000,006,912 | ---- | M] () -- C:\Users\Linda\Desktop\DDS.zip [2011/09/07 10:10:05 | 000,000,000 | ---- | M] () -- C:\Users\Linda\defogger_reenable [2011/09/06 17:19:14 | 000,002,154 | ---- | M] () -- C:\Windows\epplauncher.mif [2011/09/01 22:31:06 | 000,010,752 | ---- | M] () -- C:\Users\Linda\Desktop\pw.xlr [2011/09/01 22:22:20 | 000,218,624 | ---- | M] (Intel Corporation ) -- C:\Windows\System32\itnetw32.dll [2011/09/01 00:02:34 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol [2011/08/31 21:19:24 | 163,371,302 | ---- | M] () -- C:\Windows\MEMORY.DMP [2011/08/31 21:15:03 | 000,000,000 | ---- | M] () -- C:\Users\Linda\AppData\Local\Qlele.bin [2011/08/31 21:00:05 | 000,000,120 | ---- | M] () -- C:\Users\Linda\AppData\Local\Wronocubale.dat [2011/08/31 20:58:47 | 000,000,394 | ---- | M] () -- C:\Windows\tasks\Schedule Task Weekly.job [2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2011/08/27 13:26:43 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2011/09/22 18:44:15 | 000,007,680 | ---- | C] () -- C:\Windows\System\svchost.exe [2011/09/22 18:37:59 | 000,513,320 | ---- | C] () -- C:\Users\Linda\Desktop\erunt.zip [2011/09/21 21:02:36 | 000,085,504 | ---- | C] () -- C:\Users\Linda\Desktop\Inherit.exe [2011/09/19 22:18:22 | 000,050,477 | ---- | C] () -- C:\Users\Linda\Desktop\Defogger.exe [2011/09/19 21:25:28 | 2137,448,448 | -HS- | C] () -- C:\hiberfil.sys [2011/09/14 12:31:29 | 000,168,448 | ---- | C] () -- C:\Users\Linda\Desktop\screen print.wps [2011/09/14 08:12:45 | 000,079,623 | ---- | C] () -- C:\Users\Linda\Desktop\Junction.zip [2011/09/10 09:58:06 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe [2011/09/10 09:58:06 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe [2011/09/10 09:58:06 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe [2011/09/10 09:58:05 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe [2011/09/08 22:26:33 | 000,001,801 | ---- | C] () -- C:\Users\Public\Desktop\Registration Warranty.lnk [2011/09/08 22:26:33 | 000,000,951 | ---- | C] () -- C:\Users\Public\Desktop\Get OpenOffice.org.lnk [2011/09/07 14:24:00 | 000,001,942 | ---- | C] () -- C:\Users\Linda\Desktop\ark.zip [2011/09/07 14:23:53 | 000,027,524 | ---- | C] () -- C:\Users\Linda\Desktop\Attach.zip [2011/09/07 14:23:30 | 000,027,524 | ---- | C] () -- C:\Users\Linda\Documents\Attach.zip [2011/09/07 11:46:32 | 000,006,912 | ---- | C] () -- C:\Users\Linda\Desktop\DDS.zip [2011/09/07 11:46:20 | 000,006,912 | ---- | C] () -- C:\Users\Linda\Documents\DDS.zip [2011/09/07 10:10:05 | 000,000,000 | ---- | C] () -- C:\Users\Linda\defogger_reenable [2011/09/06 17:19:14 | 000,002,154 | ---- | C] () -- C:\Windows\epplauncher.mif [2011/09/06 17:18:00 | 000,001,768 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk [2011/09/01 00:02:34 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2011/08/31 21:00:05 | 000,000,000 | ---- | C] () -- C:\Users\Linda\AppData\Local\Qlele.bin [2011/08/31 21:00:04 | 000,000,120 | ---- | C] () -- C:\Users\Linda\AppData\Local\Wronocubale.dat [2011/08/27 13:25:25 | 000,002,152 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Office - 60 Day Trial.lnk [2011/08/27 13:25:25 | 000,001,975 | ---- | C] () -- C:\Users\Public\Desktop\Kodak EasyShare.lnk [2011/08/27 13:25:25 | 000,001,726 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [2011/08/27 13:25:25 | 000,001,658 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Works.lnk [2011/08/27 13:25:25 | 000,000,984 | ---- | C] () -- C:\Users\Public\Desktop\QuickConnect.lnk [2011/08/27 13:25:25 | 000,000,874 | ---- | C] () -- C:\Users\Public\Desktop\Lexmark Imaging Studio - 5400 Series.LNK [2011/08/27 13:25:25 | 000,000,751 | ---- | C] () -- C:\Users\Public\Desktop\LeapFrog Connect.lnk [2011/08/27 13:25:24 | 000,001,308 | ---- | C] () -- C:\Users\Public\Desktop\AOL Pictures.lnk [2011/08/27 13:25:24 | 000,001,272 | ---- | C] () -- C:\Users\Public\Desktop\AOL Video.lnk [2011/08/27 13:25:24 | 000,001,234 | ---- | C] () -- C:\Users\Public\Desktop\AIM 6.0.lnk [2011/08/27 13:25:24 | 000,000,874 | ---- | C] () -- C:\Users\Public\Desktop\Acrobat.com.lnk [2011/08/27 13:25:24 | 000,000,804 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2011/08/27 13:25:11 | 000,002,001 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Kodak EasyShare software.lnk [2011/08/27 13:25:05 | 000,002,025 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk [2011/08/27 13:25:05 | 000,001,950 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Photo Gallery.lnk [2011/08/27 13:25:05 | 000,001,924 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk [2011/08/27 13:25:05 | 000,001,852 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Collaboration.lnk [2011/08/27 13:25:05 | 000,001,803 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk [2011/08/27 13:25:05 | 000,001,770 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Calendar.lnk [2011/08/27 13:25:05 | 000,001,768 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker.lnk [2011/08/27 13:25:05 | 000,001,757 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Defender.lnk [2011/08/27 13:25:05 | 000,001,743 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk [2011/08/27 13:25:05 | 000,001,703 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Contacts.lnk [2011/08/27 13:25:05 | 000,001,630 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk [2011/08/27 13:25:05 | 000,001,227 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk [2011/08/27 13:25:05 | 000,001,158 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk [2011/08/27 13:25:05 | 000,001,113 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Control Center.lnk [2011/08/27 13:25:05 | 000,001,037 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk [2011/08/27 13:25:05 | 000,001,016 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk [2011/08/27 13:25:05 | 000,000,886 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk [2011/08/27 13:25:05 | 000,000,743 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO MusicBox.lnk [2011/05/07 01:05:06 | 000,000,136 | ---- | C] () -- C:\ProgramData\~36626168r [2011/05/07 01:05:05 | 000,000,224 | ---- | C] () -- C:\ProgramData\~36626168 [2011/05/07 01:04:49 | 000,000,344 | ---- | C] () -- C:\ProgramData\36626168 [2010/09/10 16:04:47 | 000,000,000 | ---- | C] () -- C:\Windows\SETUP32.INI [2010/07/16 00:27:58 | 000,007,254 | ---- | C] () -- C:\ProgramData\N360BUOptions.ini [2010/04/30 22:12:28 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE [2010/01/25 12:58:06 | 000,462,848 | ---- | C] () -- C:\Windows\System32\ractrlkeyhook.dll [2010/01/03 00:20:03 | 000,146,788 | ---- | C] () -- C:\Windows\System32\mlfcache.dat [2009/08/18 19:57:53 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2009/08/18 19:57:52 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll [2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe [2009/05/29 15:25:02 | 000,000,004 | ---- | C] () -- C:\Users\Linda\AppData\Roaming\342C73 [2009/05/29 15:25:01 | 000,870,128 | ---- | C] () -- C:\Users\Linda\AppData\Roaming\mcs.rma [2009/02/06 18:01:18 | 000,000,110 | ---- | C] () -- C:\Windows\{CF055C57-A988-42E6-BDAF-E3D94C6973A8}_WiseFW.ini [2009/01/10 20:40:22 | 000,000,047 | ---- | C] () -- C:\Windows\uill.ini [2008/07/28 11:49:34 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin [2008/04/25 21:17:11 | 000,335,872 | ---- | C] () -- C:\Windows\System32\lxctcoin.dll [2008/04/25 21:13:52 | 000,040,960 | ---- | C] () -- C:\Windows\System32\lxctpmon.dll [2008/04/25 21:13:52 | 000,032,768 | ---- | C] () -- C:\Windows\System32\LXCTFXPU.DLL [2008/04/25 21:00:18 | 000,274,432 | ---- | C] () -- C:\Windows\System32\LXCTinst.dll [2008/04/25 21:00:08 | 000,204,800 | ---- | C] () -- C:\Windows\System32\lxctgrd.dll [2008/02/15 01:40:21 | 000,232,401 | ---- | C] () -- C:\Users\Linda\AppData\Roaming\UserTile.png [2008/01/26 21:54:28 | 000,002,166 | ---- | C] () -- C:\Users\Linda\AppData\Roaming\wklnhst.dat [2008/01/04 00:13:41 | 000,000,002 | ---- | C] () -- C:\Windows\msoffice.ini [2008/01/03 22:10:23 | 000,005,632 | ---- | C] () -- C:\Users\Linda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008/01/03 00:02:33 | 000,000,093 | ---- | C] () -- C:\Users\Linda\AppData\Local\fusioncache.dat [2007/12/25 20:21:55 | 000,000,335 | ---- | C] () -- C:\Windows\nsreg.dat [2007/12/25 09:15:09 | 000,000,680 | ---- | C] () -- C:\Users\Linda\AppData\Local\d3d9caps.dat [2007/09/01 09:56:52 | 000,019,968 | ---- | C] () -- C:\Windows\System32\Cpuinf32.dll [2007/09/01 09:53:45 | 000,344,064 | ---- | C] () -- C:\Windows\System32\SSMSIppCustom.dll [2007/09/01 09:46:18 | 001,132,112 | ---- | C] () -- C:\ProgramData\pswi_preloaded.exe [2007/08/24 18:38:51 | 000,000,000 | ---- | C] () -- C:\Windows\VAIOUpdt.INI [2007/08/24 18:36:57 | 000,910,304 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll [2007/08/24 18:36:57 | 000,249,856 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll [2007/08/24 18:36:57 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1244.dll [2007/08/24 18:28:22 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2007/08/24 17:54:45 | 000,000,031 | ---- | C] () -- C:\Windows\System32\elcric.dat [2007/06/14 13:02:02 | 000,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll [2007/06/14 13:02:01 | 000,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll [2007/06/14 13:01:08 | 000,000,000 | ---- | C] () -- C:\Windows\System32\px.ini [2006/11/02 06:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2006/11/02 06:47:37 | 000,352,544 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2006/11/02 06:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006/11/02 04:33:01 | 000,614,930 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2006/11/02 04:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2006/11/02 04:33:01 | 000,108,860 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2006/11/02 04:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2006/11/02 04:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2006/11/02 02:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2006/11/02 02:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2006/11/02 01:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006/11/02 01:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2006/06/20 07:40:14 | 000,692,224 | ---- | C] () -- C:\Windows\System32\lxctdrs.dll [2006/05/24 11:04:14 | 000,000,133 | ---- | C] () -- C:\Windows\System32\ftdiun2k.ini [2006/05/24 10:40:42 | 000,188,416 | ---- | C] () -- C:\Windows\System32\ftdiunin.exe [2006/05/18 05:01:34 | 000,065,536 | ---- | C] () -- C:\Windows\System32\lxctcaps.dll [2006/05/03 08:31:04 | 000,061,440 | ---- | C] () -- C:\Windows\System32\lxctcnv4.dll [2005/06/23 20:37:50 | 000,040,960 | ---- | C] () -- C:\Windows\System32\lxctvs.dll [2000/08/30 18:00:00 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe < End of report >

I was able to do everything except the combofix. That still froze.

This is what I got with the OTL Fix. It stopped working in the middle so I am not sure if this is the right log or not. Files\Folders moved on Reboot... C:\Users\Linda\AppData\Local\Temp\~DF334E.tmp moved successfully. C:\Users\Linda\AppData\Local\Temp\~DF3363.tmp moved successfully. C:\Users\Linda\AppData\Local\Temp\~DF3461.tmp moved successfully. C:\Users\Linda\AppData\Local\Temp\~DF3471.tmp moved successfully. File move failed. C:\Users\Linda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\H4LHWQ9G\freeware[1].htm scheduled to be moved on reboot. File\Folder C:\Users\Linda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\ER1QPDPS\index[6].htm not found! C:\Users\Linda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully. Registry entries deleted on Reboot...

Ok. I looked the ERUNT up and ran that.

I was not sure about the ERUNT it says in the description that it is not for Windows Vista and that is what I am running. Should I still do it? GooredFix by jpshortstuff (03.07.10.1) Log created at 18:30 on 22/09/2011 (Linda) Firefox version [unable to determine] ========== GooredScan ========== Deleting HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{9D8BA1B0-A088-4512-A6AD-FFBFC7858BD8} -> Success! Deleting C:\Users\Linda\AppData\Local\{9D8BA1B0-A088-4512-A6AD-FFBFC7858BD8} -> Success! ========== GooredLog ========== C:\Program Files\Mozilla Firefox\extensions\ (none) [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [14:36 07/08/2009] -=E.O.F=