0

I previously had AVG antivirus and SpyBot search & destroy on my computer. I recently uncovered three files on my C:\ drive that won't even let me access or delete them because they say I am not an administrator (I am, and have always been the only user on this computer...) please help.
I downloaded and used all the programs that were suggested, here are my logs:


Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 7872

Windows 6.0.6001 Service Pack 1
Internet Explorer 7.0.6001.18000

05/10/2011 8:17:27 AM
mbam-log-2011-10-05 (08-17-27).txt

Scan type: Full scan (C:\|D:\|)
Objects scanned: 267382
Time elapsed: 40 minute(s), 58 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 3
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Videocan (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\ZagrebLand (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ZagrebLand (Trojan.Downloader) -> Value: ZagrebLand -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

GMERone

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-10-04 23:26:57
Windows 6.0.6001 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 Hitachi_HTS541612J9SA00 rev.SBDOC70P
Running: 2o70sdez.exe; Driver: C:\Users\Carrie\AppData\Local\Temp\agrirpob.sys


---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\fastfat \Fat AVGIDSFilter.Sys
AttachedDevice \Driver\tdx \Device\Ip avgtdix.sys
AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys
AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys
AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys

---- EOF - GMER 1.0.15 ----

GMERtwo

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-10-05 00:00:45
Windows 6.0.6001 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 Hitachi_HTS541612J9SA00 rev.SBDOC70P
Running: 2o70sdez.exe; Driver: C:\Users\Carrie\AppData\Local\Temp\agrirpob.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys ZwOpenProcess [0x976E77A0]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys ZwTerminateProcess [0x976E7848]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys ZwTerminateThread [0x976E78E4]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys ZwWriteVirtualMemory [0x976E7980]

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys
AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys
AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys
AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\fastfat \Fat AVGIDSFilter.Sys
---- Processes - GMER 1.0.15 ----

Library C:\Program (*** hidden *** ) @ C:\Program Files\Internet Explorer\iexplore.exe [2876] 0x603E0000
Library C:\Program (*** hidden *** ) @ C:\Program Files\Internet Explorer\iexplore.exe [2876] 0x6DB90000
Library C:\Program (*** hidden *** ) @ C:\Program Files\Internet Explorer\iexplore.exe [2876] 0x76E40000
Library C:\Program (*** hidden *** ) @ C:\Program Files\Internet Explorer\iexplore.exe [2876] 0x70560000
Library C:\Program (*** hidden *** ) @ C:\Program Files\Internet Explorer\iexplore.exe [2876] 0x6E4C0000
Library C:\Program (*** hidden *** ) @ C:\Program Files\Internet Explorer\iexplore.exe [2876] 0x69720000
Library C:\Program (*** hidden *** ) @ C:\Program Files\Internet Explorer\iexplore.exe [2876] 0x625E0000
Library C:\Program (*** hidden *** ) @ C:\Windows\Explorer.EXE [3912] 0x64D70000
Library C:\Program (*** hidden *** ) @ C:\Program [6436] 0x00A70000
Library C:\Program (*** hidden *** ) @ C:\Program [6436] 0x5F130000
Library C:\Program (*** hidden *** ) @ C:\Program [6436] 0x62710000
Library C:\Program (*** hidden *** ) @ C:\Program [6436] 0x6A8A0000
Library C:\Program (*** hidden *** ) @ C:\Program [6436] 0x5DEC0000

---- EOF - GMER 1.0.15 ----

DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.6001.18000
Run by Carrie at 19:35:59 on 2011-10-05
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.2.1033.18.1789.665 [GMT -6:00]
.
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
C:\Acer\Empowering Technology\eNet\eNet Service.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Acer\Mobility Center\MobilityService.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
C:\Windows\system32\taskeng.exe
C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\conime.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\PLFSetL.exe
C:\Windows\PLFSetI.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Windows\vVX1000.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\ehome\ehmsas.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\WUDFHost.exe
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Users\Carrie\AppData\Local\Temp\RtkBtMnt.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\consent.exe
C:\Windows\system32\vssvc.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = https://www.google.com/accounts/ServiceLogin?service=mail&passive=true&rm=false&continue=http%3A%2F%2Fmail.google.com%2Fmail%2F%3Fui%3Dhtml%26zy%3Dl&bsv=1k96igf4806cy&scc=1&ltmpl=default&ltmplcache=2
uWindow Title = Internet Explorer Provided by SHAW Internet
mStart Page = hxxp://en.ca.acer.yahoo.com
mDefault_Page_URL = hxxp://en.ca.acer.yahoo.com
mWindow Title = Internet Explorer Provided by SHAW Internet
uInternet Settings,ProxyOverride = *.local
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: ShowBarObj Class: {83a2f9b1-01a2-4aa5-87d1-45b6b8505e96} - c:\acer\empowering technology\edatasecurity\x86\ActiveToolBand.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.6406.1642\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Acer eDataSecurity Management: {5cbe3b7c-1e47-477e-a7dd-396db0476e29} - c:\acer\empowering technology\edatasecurity\x86\eDStoolbar.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [Pando Media Booster] c:\program files\pando networks\media booster\PMB.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [Skytel] Skytel.exe
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe"
mRun: [PLFSetL] c:\windows\PLFSetL.exe
mRun: [PLFSetI] c:\windows\PLFSetI.exe
mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe"
mRun: [LanguageShortcut] "c:\program files\cyberlink\powerdvd\language\Language.exe"
mRun: [eDataSecurity Loader] c:\acer\empowering technology\edatasecurity\x86\eDSloader.exe
mRun: [eRecoveryService]
mRun: [Acer Product Registration] "c:\program files\acer\acer registration\ACE1.exe" /startup
mRun: [Acer Tour Reminder] c:\acer\acertour\Reminder.exe
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [LifeCam] "c:\program files\microsoft lifecam\LifeExp.exe"
mRun: [VX1000] c:\windows\vVX1000.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
StartupFolder: c:\users\carrie\appdata\roaming\micros~1\windows\startm~1\programs\startup\epsona~1.lnk - e:\common\epsonreg\EpsonReg.exe
StartupFolder: c:\users\carrie\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\audibl~1.lnk - c:\program files\audible\bin\AudibleDownloadHelper.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\empowe~1.lnk - c:\acer\empowering technology\eAPLauncher.exe
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.254 75.154.132.68
TCP: Interfaces\{2A932A77-3182-471F-AF19-65D71318908F} : DhcpNameServer = 192.168.1.254 75.154.132.68
TCP: Interfaces\{9BB113EE-754C-4CB5-8B01-5BED5D073051} : DhcpNameServer = 192.168.1.254 75.154.132.68
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
.
============= SERVICES / DRIVERS ===============
.
R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2008-8-9 39680]
R0 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [2008-8-9 35712]
R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2009-11-4 214664]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-10-5 366152]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-10-5 22216]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-2-21 135664]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2008-1-20 179712]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-2-21 135664]
S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2009-12-15 34248]
.
=============== Created Last 30 ================
.
2011-10-06 01:30:10 -------- d--h--w- c:\users\carrie\appdata\local\acer eNM
2011-10-05 06:27:02 -------- d-----w- c:\users\carrie\appdata\local\Apple Computer
2011-10-05 06:06:33 -------- d-----w- c:\users\carrie\appdata\roaming\Malwarebytes
2011-10-05 06:06:24 -------- d-----w- c:\programdata\Malwarebytes
2011-10-05 06:06:21 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-10-05 06:06:21 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-09-24 04:29:43 -------- d-----w- c:\programdata\PC Tools
2011-09-24 04:21:55 -------- d-----w- c:\users\carrie\appdata\roaming\GetRightToGo
2011-09-22 02:19:28 -------- d-----w- c:\users\carrie\riotsGamesLogs
2011-09-22 01:37:44 -------- d-----w- c:\program files\iPod
2011-09-22 01:37:32 -------- d-----w- c:\program files\iTunes
2011-09-22 01:16:36 -------- d-----w- c:\program files\Bonjour
2011-09-22 01:02:43 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
2011-09-22 01:02:43 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
2011-09-22 01:02:43 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2011-09-22 01:02:43 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2011-09-22 01:02:43 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2011-09-22 01:02:43 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2011-09-22 01:02:43 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2011-09-20 07:14:41 -------- d-----w- c:\program files\Foldit
.
==================== Find3M ====================
.
2011-07-12 17:20:54 83816 ----a-w- c:\windows\system32\dns-sd.exe
2011-07-12 17:20:54 73064 ----a-w- c:\windows\system32\dnssd.dll
2011-07-12 17:20:54 178536 ----a-w- c:\windows\system32\dnssdX.dll
.
============= FINISH: 19:46:54.31 ===============


DDS (Ver_2011-08-26.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 09/08/2008 9:13:37 AM
System Uptime: 05/10/2011 7:27:41 PM (0

hours ago)
.
Motherboard: Acer | | TravelMate 5520
Processor: AMD Athlon(tm) 64 X2 Dual-Core

Processor TK-57 | Socket M2/S1G1 |

1900/200mhz
.
==== Disk Partitions

=========================
.
C: is FIXED (NTFS) - 51 GiB total, 17.375

GiB free.
D: is FIXED (NTFS) - 51 GiB total, 50.651

GiB free.
E: is CDROM ()
F: is Removable
.
==== Disabled Device Manager Items

=============
.
==== System Restore Points

===================
.
RP434: 05/10/2011 3:00:13 AM - Windows

Update
RP436: 05/10/2011 7:35:58 PM - Windows

Update
.
==== Installed Programs

======================
.
Update for Microsoft Office 2007

(KB2508958)
2007 Microsoft Office system
Acer Crystal Eye Webcam 2.0.8
Acer Crystal Eye Webcam Video Class

Camera
Acer eDataSecurity Management
Acer eLock Management
Acer Empowering Technology
Acer eNet Management
Acer ePower Management
Acer ePresentation Management
Acer eSettings Management
Acer GridVista
Acer Mobility Center Plug-In
Acer Registration
Activation Assistant for the 2007

Microsoft Office suites
Adobe Flash Player 10 ActiveX
Adobe Reader 8.1.5
AirPort
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ATI Catalyst Install Manager
AuthenTec Fingerprint Sensor Minimum

Install
Bonjour
Business Contact Manager for Outlook 2007

SP2
Catalyst Control Center - Branding
Catalyst Control Center Core

Implementation
Catalyst Control Center Graphics Light
Catalyst Control Center Localization

Chinese Standard
Catalyst Control Center Localization

Chinese Traditional
Catalyst Control Center Localization

Czech
Catalyst Control Center Localization

Danish
Catalyst Control Center Localization

Dutch
Catalyst Control Center Localization

Finnish
Catalyst Control Center Localization

French
Catalyst Control Center Localization

German
Catalyst Control Center Localization

Greek
Catalyst Control Center Localization

Hungarian
Catalyst Control Center Localization

Italian
Catalyst Control Center Localization

Japanese
Catalyst Control Center Localization

Korean
Catalyst Control Center Localization

Norwegian
Catalyst Control Center Localization

Polish
Catalyst Control Center Localization

Portuguese
Catalyst Control Center Localization

Russian
Catalyst Control Center Localization

Spanish
Catalyst Control Center Localization

Swedish
Catalyst Control Center Localization Thai
Catalyst Control Center Localization

Turkish
ccc-core-static
ccc-utility
Citrix XenApp Plugin for Hosted Apps
Foldit
Google Toolbar for Internet Explorer
Google Update Helper
HDAUDIO Soft Data Fax Modem with SmartCP
Hotfix for Microsoft .NET Framework 3.5

SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5

SP1 (KB958484)
iTunes
Java(TM) 6 Update 17
KB408682
League of Legends
LightScribe 1.4.142.1
Malwarebytes' Anti-Malware version

1.51.2.1300
Microsoft .NET Framework 3.5 SP1
Microsoft LifeCam
Microsoft Office 2003 Web Components
Microsoft Office 2007 Primary Interop

Assemblies
Microsoft Office 2007 Service Pack 2

(SP2)
Microsoft Office Access MUI (English)

2007
Microsoft Office Access Setup Metadata

MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English)

2007
Microsoft Office Groove Setup Metadata

MUI (English) 2007
Microsoft Office InfoPath MUI (English)

2007
Microsoft Office OneNote MUI (English)

2007
Microsoft Office Outlook MUI (English)

2007
Microsoft Office PowerPoint MUI (English)

2007
Microsoft Office Professional Hybrid 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007

Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English)

2007
Microsoft Office Shared MUI (English)

2007
Microsoft Office Shared Setup Metadata

MUI (English) 2007
Microsoft Office Small Business

Connectivity Components
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition

(MSSMLBIZ)
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files

(English)
Microsoft SQL Server VSS Writer
Microsoft Visual C++ 2005 ATL Update

kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable

- x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable

- x86 9.0.30729.6161
MobileMe Control Panel
NTI Backup NOW! 4.7
NTI CD & DVD-Maker
NTI Shadow
Pando Media Booster
PowerDVD
QuickTime
Realtek High Definition Audio Driver
Security Update for 2007 Microsoft Office

System (KB2288621)
Security Update for 2007 Microsoft Office

System (KB2288931)
Security Update for 2007 Microsoft Office

System (KB2345043)
Security Update for 2007 Microsoft Office

System (KB2553074)
Security Update for 2007 Microsoft Office

System (KB2553089)
Security Update for 2007 Microsoft Office

System (KB2553090)
Security Update for 2007 Microsoft Office

System (KB2584063)
Security Update for 2007 Microsoft Office

System (KB969559)
Security Update for 2007 Microsoft Office

System (KB976321)
Security Update for Microsoft .NET

Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft Office

Access 2007 (KB979440)
Security Update for Microsoft Office

Excel 2007 (KB2553073)
Security Update for Microsoft Office

Groove 2007 (KB2552997)
Security Update for Microsoft Office

InfoPath 2007 (KB2510061)
Security Update for Microsoft Office

InfoPath 2007 (KB979441)
Security Update for Microsoft Office

PowerPoint 2007 (KB2535818)
Security Update for Microsoft Office

PowerPoint Viewer 2007 (KB2464623)
Security Update for Microsoft Office

Publisher 2007 (KB2284697)
Security Update for Microsoft Office

system 2007 (972581)
Security Update for Microsoft Office

system 2007 (KB974234)
Security Update for Microsoft Office

Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word

2007 (KB2344993)
Spectre
Update for 2007 Microsoft Office System

(KB967642)
Update for Microsoft .NET Framework 3.5

SP1 (KB963707)
Update for Microsoft Office 2007 System

(KB2539530)
Update for Microsoft Office OneNote 2007

(KB980729)
Update for Microsoft Office Outlook 2007

(KB2583910)
Update for Outlook 2007 Junk Email Filter

(KB2553110)
Xvid 1.2.2 final uninstall
.
==== Event Viewer Messages From Past Week

========
.
29/09/2011 9:20:38 PM, Error: Microsoft-

Windows-WindowsUpdateClient [20] -

Installation Failure: Windows failed to

install the following update with error

0x80070643: Microsoft SQL Server 2005

Express Edition Service Pack 4

(KB2463332).
29/09/2011 9:10:02 PM, Error: Service

Control Manager [7026] - The following

boot-start or system-start driver(s)

failed to load: TfFsMon TfSysMon
29/09/2011 9:09:52 PM, Error: Service

Control Manager [7000] - The Parallel

port driver service failed to start due

to the following error: The service

cannot be started, either because it is

disabled or because it has no enabled

devices associated with it.
29/09/2011 9:09:22 PM, Error: EventLog

[6008] - The previous system shutdown at

5:14:03 AM on 28/09/2011 was unexpected.
28/09/2011 5:14:08 AM, Error: Service

Control Manager [7043] - The Windows

Update service did not shut down properly

after receiving a preshutdown control.
05/10/2011 7:25:26 PM, Error: bowser

[8003] - The master browser has received

a server announcement from the computer

CASSANDRA that believes that it is the

master browser for the domain on

transport NetBT_Tcpip_{2A932A77-3182-

471F-AF19-65D71318. The master browser is

stopping or an election is being forced.
04/10/2011 8:11:35 PM, Error: EventLog

[6008] - The previous system shutdown at

2:29:36 AM on 04/10/2011 was unexpected.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7026] - The following

boot-start or system-start driver(s)

failed to load: AFD Avgldx86 Avgmfx86

Avgtdix DfsC mfehidk NetBIOS netbt

nsiproxy PSched RasAcd rdbss Smb spldr

Tcpip tdx TfFsMon TfSysMon Wanarpv6
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The Workstation

service depends on the Network Store

Interface Service service which failed to

start because of the following error:

The dependency service or group failed to

start.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The WebDav

Client Redirector Driver service depends

on the Redirected Buffering Sub Sysytem

service which failed to start because of

the following error: A device attached

to the system is not functioning.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The WebClient

service depends on the WebDav Client

Redirector Driver service which failed to

start because of the following error:

The dependency service or group failed to

start.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The TCP/IP

Registry Compatibility service depends on

the TCP/IP Protocol Driver service which

failed to start because of the following

error: A device attached to the system

is not functioning.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The TCP/IP

NetBIOS Helper service depends on the

Ancilliary Function Driver for Winsock

service which failed to start because of

the following error: A device attached

to the system is not functioning.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The SMB

MiniRedirector Wrapper and Engine service

depends on the Redirected Buffering Sub

Sysytem service which failed to start

because of the following error: A device

attached to the system is not

functioning.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The SMB 2.0

MiniRedirector service depends on the SMB

MiniRedirector Wrapper and Engine service

which failed to start because of the

following error: The dependency service

or group failed to start.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The SMB 1.x

MiniRedirector service depends on the SMB

MiniRedirector Wrapper and Engine service

which failed to start because of the

following error: The dependency service

or group failed to start.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The Network

Store Interface Service service depends

on the NSI proxy service service which

failed to start because of the following

error: A device attached to the system

is not functioning.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The Network

Location Awareness service depends on the

TCP/IP Protocol Driver service which

failed to start because of the following

error: A device attached to the system

is not functioning.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The Network

List Service service depends on the

Network Location Awareness service which

failed to start because of the following

error: The dependency service or group

failed to start.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The Network

Connections service depends on the

Network Store Interface Service service

which failed to start because of the

following error: The dependency service

or group failed to start.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The IP Helper

service depends on the Network Store

Interface Service service which failed to

start because of the following error:

The dependency service or group failed to

start.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The DNS Client

service depends on the NetIO Legacy TDI

Support Driver service which failed to

start because of the following error: A

device attached to the system is not

functioning.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The DHCP Client

service depends on the Ancilliary

Function Driver for Winsock service which

failed to start because of the following

error: A device attached to the system

is not functioning.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The Computer

Browser service depends on the Server

service which failed to start because of

the following error: The dependency

service or group failed to start.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The Bonjour

Service service depends on the TCP/IP

Protocol Driver service which failed to

start because of the following error: A

device attached to the system is not

functioning.
03/10/2011 11:38:19 PM, Error: Service

Control Manager [7001] - The Apple

Mobile Device service depends on the

TCP/IP Protocol Driver service which

failed to start because of the following

error: A device attached to the system

is not functioning.
03/10/2011 11:37:58 PM, Error: Microsoft

-Windows-DistributedCOM [10005] - DCOM

got error "1084" attempting to start the

service WSearch with arguments "" in

order to run the server: {9E175B6D-F52A-

11D8-B9A5-505054503030}
03/10/2011 11:37:24 PM, Error: Microsoft

-Windows-DistributedCOM [10005] - DCOM

got error "1068" attempting to start the

service netprofm with arguments "" in

order to run the server: {A47979D2-C419-

11D9-A5B4-001185AD2B89}
03/10/2011 11:37:24 PM, Error: Microsoft

-Windows-DistributedCOM [10005] - DCOM

got error "1068" attempting to start the

service netman with arguments "" in order

to run the server: {BA126AD1-2166-11D1-

B1D0-00805FC1270E}
03/10/2011 11:37:24 PM, Error: Microsoft

-Windows-DistributedCOM [10005] - DCOM

got error "1068" attempting to start the

service fdPHost with arguments "" in

order to run the server: {145B4335-FE2A-

4927-A040-7C35AD3180EF}
03/10/2011 11:37:23 PM, Error: Microsoft

-Windows-DistributedCOM [10005] - DCOM

got error "1084" attempting to start the

service EventSystem with arguments "" in

order to run the server: {1BE1F766-5536-

11D1-B726-00C04FB926AF}
03/10/2011 11:37:16 PM, Error: Microsoft

-Windows-DistributedCOM [10005] - DCOM

got error "1084" attempting to start the

service ShellHWDetection with arguments

"" in order to run the server: {DD522ACC

-F821-461A-A407-50B198B896DC}
03/10/2011 11:36:56 PM, Error: EventLog

[6008] - The previous system shutdown at

7:37:53 AM on 02/10/2011 was unexpected.
01/10/2011 10:07:05 PM, Error: Microsoft

-Windows-Dhcp-Client [1002] - The IP

address lease 10.59.131.118 for the

Network Card with network address

001FE2A8AEEB has been denied by the DHCP

server 192.168.1.254 (The DHCP Server

sent a DHCPNACK message).
01/10/2011 1:24:38 PM, Error: Microsoft-

Windows-SharedAccess_NAT [31004] - The

DNS proxy agent was unable to allocate 0

bytes of memory. This may indicate that

the system is low on virtual memory, or

that the memory manager has encountered

an internal error.
.
==== End Of File

===========================

2
Contributors
6
Replies
7
Views
5 Years
Discussion Span
Last Post by carriegirl
0

I recently uncovered three files on my C:\ drive that won't even let me access or delete them
What are the three files and why do you want to delete them?
Please do the following:
Turn OFF Windows Defender, it is out of date and really is not top of the line. Leave it turned off.

Run the ESET Online Scanner

http://www.eset.com/onlinescan/scanner.php?i_agree=14
* You can use Internet Explorer to complete this scan and you will need to allow an Active X to be installed or you may use Firefox
* Be sure the option to Remove found threats is checked and the option to Scan unwanted applications is Checked.
* When you have completed that scan, a scanlog ought to have been created and located at C:\Program Files\EsetOnlineScanner\log.txt.
Post back here with the log.

AFTER running ESET please do the following:

You don't have any antivirus installed on the computer you DO need one.I would suggest Avast Free:
http://www.avast.com/free-antivirus-download

Install Avast, update and run a full scan with it. If anything is found have the program remove/quarantine.

0

This is the log from the online scanner.
ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
esets_scanner_update returned -1 esets_gle=1
esets_scanner_update returned -1 esets_gle=1
esets_scanner_update returned -1 esets_gle=1

I couldn't get Avast to download, but I reinstalled AVG. Is this comparable for protection?

The supicious files are on my data (D:/) drive. I was trying to delete them, because they obviously don't belong on my computer. The are called:
6268c905456e72708ec8fa
cd75fa1cdd769fefe0161674966e
d5947f673097c945b1ad75d859fe

0

That is not an ESET log. It is the set up information.
Did you turn off the antivirus programs when you ran the scan? It should have taken probably an hour to scan and you should have actually seen it doing the scanning. It should have shown you what was found and you would have had to tell it what to do with what it found.

Those numbers on the files tell me nothing, what is inside of them? They look like temporary files.

No AVG is not comparable to Avast. What happened when you tried to download Avast?

Try Avira Free, it also is much better than AVG.


http://download.cnet.com/Avira-Free-Antivirus-2012/3000-2239_4-10322935.html?part=dl-&subj=dl&tag=button

Follow these instructions to get and install Avira Free
Click the GREEN Download Now Button to get the executable install package, save it wherever you can easily find it, I chose My Desktop.
You must then UNINSTALL your AVG program completely.
To begin, double click the executable file to start installation. Vista and Windows 7 users must run this executable as Admininistrator.

Before installation the installer will scan your system for other security programs installed. Avira Free AntiVirus 2012 may warn you of POSSIBLE incompatible security software on your system like Emsisoft AntiMalware, some 3rd party Firewalls, especially Zone Alarm. It is just a warning of POSSIBLE conflicts and you do not need to uninstall these software programs. Just install Avira Free AV and everything is OK. I was warned about SpyBot and SpywareBlaster, I IGNORED the warning, I still have the programs and they ARE working fine. The warning is of POSSIBLE conflicts, not absolutes. I say again, you DO NOT have to uninstall the programs you may receive a warning about. The Avira program has a WebGuard included ONLY IF you first accept it, this would be one reason for this type of warning. I will get to the WebGuard in a moment.

After you click the executable, and if you have the previous version of Avira Free installed, the installer will FIRST Uninstall the old version, this will take a few minutes, you will see the progress of this uninstall. You will then be told in order to proceed the computer must be rebooted, please allow it to do so. The computer will shut down, reboot and proceed with the install.

Once the computer is fully booted the install will proceed. You will need to WATCH the full install as ALL of it REQUIRES User interaction. It will not proceed unless you continue to follow it and read the screens and then click the required buttons to go forward.
Choose Installation Type choose CUSTOM INSTALL then click Next.
The next screen is titled Web Protection with Avira Search Free Tool Bar for your browser. Just click NEXT, you DO NOT Want these.
Next screen shows Install Components. Check marks are all ready in place as these are the Default choices. Just click Next.
Next screen is Advanced Heuristic Analysis and Detection. Default is Medium. Just click Next. After that installation will proceed to the end, showing you various screens.

When complete the program should update to latest definitions and then do a short scan.
You will notice that the main screen has a few greyed unclickable features which means these features are not available in freeware. But they are in the package in case you later decide to purchase the paid version later. This is why this version is 24mb larger than the old version, still very small compared to many other paid antivirus programs.

0

I'm working on installing Avira now.

The files look temporary, only I can't open them or delete them, or change anything about them.

This question has already been answered. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.