Avg finds Win32/Heur in Trend Micro Temp Files - False Positive?

cdnnala1 · Mar 31, 2011

Hello folks! My AVG is finding a virus in my Trend Micro temp files and I'd like to figure out if this is a false positive or not since it appears to be a nasty bug. Here are the logs, I hope I followed the instructions correctly as I'm not tech inclined!

Interestingly it also detected a virus in the Temp File Cleaner program, although I was able to use TFC anyway. I'm including the AVG log first and then the others.

Any help you can provide is greatly appreciated!

---------------------------
AVG:

"10/02/2011, 6:14:23 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"10/02/2011, 6:14:25 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"10/02/2011, 6:14:36 PM";"NT AUTHORITY\SYSTEM";"General";"A new license number 4UY9X-NSVVL-O4BZQ-QIMCL-QTDCH-4 activation."
"10/02/2011, 6:15:42 PM";"Tif-LAPTOP\Tif";"Update";"Update was started."
"10/02/2011, 6:16:42 PM";"Tif-LAPTOP\Tif";"Update";"Update completed."
"10/02/2011, 6:27:48 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"10/02/2011, 6:28:08 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"10/02/2011, 7:37:30 PM";"Tif-LAPTOP\Tif";"Scan";"User scan was started."
"10/02/2011, 7:56:16 PM";"Tif-LAPTOP\Tif";"Scan";"User scan completed. Found 0 infected files and 0 warnings."
"10/02/2011, 9:09:35 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"10/02/2011, 9:09:35 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"10/02/2011, 9:11:04 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"10/02/2011, 9:11:05 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"10/02/2011, 11:13:28 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"10/02/2011, 11:13:28 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"11/02/2011, 11:19:39 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"11/02/2011, 11:19:41 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"11/02/2011, 11:24:44 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"11/02/2011, 11:25:00 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"11/02/2011, 11:27:58 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"11/02/2011, 11:27:58 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"11/02/2011, 11:29:07 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"11/02/2011, 11:29:09 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"11/02/2011, 4:03:19 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"11/02/2011, 4:03:20 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"11/02/2011, 4:06:09 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"11/02/2011, 4:06:19 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"11/02/2011, 4:17:26 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"11/02/2011, 4:17:26 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"11/02/2011, 4:18:50 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"11/02/2011, 4:18:51 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"11/02/2011, 7:42:49 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"11/02/2011, 7:43:39 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"14/02/2011, 10:49:50 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"14/02/2011, 10:49:55 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"14/02/2011, 10:51:56 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"14/02/2011, 10:51:58 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"14/02/2011, 7:21:43 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"14/02/2011, 7:22:41 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"14/02/2011, 7:51:28 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"14/02/2011, 7:51:28 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"15/02/2011, 12:40:53 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"15/02/2011, 12:40:56 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"15/02/2011, 12:45:58 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"15/02/2011, 12:46:30 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"15/02/2011, 7:25:43 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"15/02/2011, 7:25:56 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"15/02/2011, 8:08:54 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"15/02/2011, 8:08:54 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"16/02/2011, 12:16:50 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"16/02/2011, 12:16:51 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"16/02/2011, 12:21:52 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"16/02/2011, 12:22:15 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"16/02/2011, 7:45:41 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"16/02/2011, 7:45:56 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"17/02/2011, 12:42:49 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"17/02/2011, 12:43:07 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"17/02/2011, 7:45:09 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"17/02/2011, 7:45:12 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"18/02/2011, 12:41:12 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"18/02/2011, 12:41:13 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"18/02/2011, 12:23:34 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"18/02/2011, 12:23:34 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"18/02/2011, 12:28:36 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"18/02/2011, 12:28:58 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"18/02/2011, 7:37:50 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"18/02/2011, 7:38:10 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"19/02/2011, 10:44:49 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"19/02/2011, 10:45:07 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"19/02/2011, 7:11:20 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"19/02/2011, 7:11:37 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"19/02/2011, 7:11:51 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"19/02/2011, 7:11:51 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"20/02/2011, 3:17:15 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"20/02/2011, 3:17:16 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"20/02/2011, 3:22:22 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"20/02/2011, 3:22:37 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"20/02/2011, 10:09:22 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"20/02/2011, 10:09:36 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"20/02/2011, 11:36:58 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"20/02/2011, 11:36:58 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"21/02/2011, 12:23:49 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"21/02/2011, 12:23:50 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"21/02/2011, 12:28:51 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"21/02/2011, 12:29:11 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"21/02/2011, 6:35:04 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"21/02/2011, 6:35:23 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"22/02/2011, 2:54:32 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"22/02/2011, 2:54:34 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"22/02/2011, 11:59:43 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"22/02/2011, 11:59:43 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"22/02/2011, 12:04:46 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"22/02/2011, 12:05:03 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"22/02/2011, 7:05:04 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"22/02/2011, 7:05:25 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"22/02/2011, 11:40:49 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"22/02/2011, 11:40:50 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"23/02/2011, 12:33:40 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"23/02/2011, 12:33:41 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"23/02/2011, 12:38:42 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"23/02/2011, 12:39:04 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"23/02/2011, 5:38:08 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"23/02/2011, 5:38:08 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"23/02/2011, 5:39:04 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"23/02/2011, 5:39:05 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"23/02/2011, 7:39:58 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"23/02/2011, 7:40:11 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"23/02/2011, 7:46:33 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"23/02/2011, 7:46:33 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"24/02/2011, 1:35:59 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"24/02/2011, 1:36:00 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"24/02/2011, 1:41:01 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"24/02/2011, 1:41:38 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"24/02/2011, 7:45:08 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"24/02/2011, 7:45:09 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"25/02/2011, 2:05:40 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"25/02/2011, 2:05:40 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"25/02/2011, 12:40:50 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"25/02/2011, 12:40:50 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"25/02/2011, 12:45:51 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"25/02/2011, 12:46:17 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"25/02/2011, 6:09:15 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"25/02/2011, 6:09:16 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"25/02/2011, 10:09:14 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"25/02/2011, 10:09:14 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"28/02/2011, 1:07:10 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"28/02/2011, 1:07:10 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"28/02/2011, 1:10:11 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"28/02/2011, 1:10:36 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"28/02/2011, 1:12:12 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"28/02/2011, 1:12:19 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"28/02/2011, 6:06:47 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"28/02/2011, 6:06:49 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"28/02/2011, 11:55:29 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"28/02/2011, 11:55:30 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"01/03/2011, 12:30:46 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"01/03/2011, 12:30:47 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"01/03/2011, 12:35:49 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"01/03/2011, 12:36:11 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"01/03/2011, 7:16:59 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"01/03/2011, 7:17:16 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"01/03/2011, 11:24:13 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"01/03/2011, 11:24:13 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"02/03/2011, 10:49:36 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"02/03/2011, 10:49:38 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"02/03/2011, 10:54:39 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"02/03/2011, 10:55:03 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"02/03/2011, 6:45:53 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"02/03/2011, 6:46:06 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"03/03/2011, 1:30:16 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"03/03/2011, 1:30:16 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"03/03/2011, 12:07:52 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"03/03/2011, 12:07:52 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"03/03/2011, 12:12:53 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"03/03/2011, 12:14:01 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"03/03/2011, 7:25:14 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"03/03/2011, 7:25:28 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"03/03/2011, 10:06:13 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"03/03/2011, 10:06:13 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"03/03/2011, 10:11:43 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"03/03/2011, 10:11:44 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"03/03/2011, 10:20:19 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"03/03/2011, 10:20:19 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"04/03/2011, 12:48:44 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"04/03/2011, 12:48:44 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"04/03/2011, 12:53:47 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"04/03/2011, 12:54:16 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"04/03/2011, 6:45:31 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"04/03/2011, 6:45:46 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"05/03/2011, 12:39:10 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"05/03/2011, 12:39:12 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"07/03/2011, 10:53:43 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"07/03/2011, 10:54:03 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"07/03/2011, 10:57:04 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"07/03/2011, 10:58:02 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"07/03/2011, 10:59:04 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"07/03/2011, 10:59:37 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"07/03/2011, 7:49:00 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"07/03/2011, 7:49:17 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"07/03/2011, 10:43:46 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"07/03/2011, 10:43:46 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"08/03/2011, 1:21:37 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"08/03/2011, 1:21:38 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"08/03/2011, 1:26:39 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"08/03/2011, 1:27:30 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"08/03/2011, 7:46:47 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"08/03/2011, 7:47:02 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"08/03/2011, 10:51:07 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"08/03/2011, 10:51:07 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"09/03/2011, 12:14:42 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"09/03/2011, 12:14:42 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"09/03/2011, 12:19:43 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"09/03/2011, 12:20:43 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"09/03/2011, 7:25:14 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"09/03/2011, 7:25:31 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"09/03/2011, 11:01:19 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"09/03/2011, 11:01:20 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"10/03/2011, 11:12:59 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"10/03/2011, 11:13:00 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"10/03/2011, 11:18:01 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"10/03/2011, 11:18:25 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"10/03/2011, 7:15:08 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"10/03/2011, 7:15:09 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"11/03/2011, 8:23:22 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"11/03/2011, 8:23:23 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"11/03/2011, 8:26:25 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"11/03/2011, 8:27:09 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"11/03/2011, 8:28:24 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"11/03/2011, 8:28:34 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"11/03/2011, 10:02:01 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"11/03/2011, 10:02:02 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"13/03/2011, 12:10:30 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"13/03/2011, 12:10:31 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"13/03/2011, 12:13:32 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"13/03/2011, 12:13:48 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"13/03/2011, 12:15:32 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"13/03/2011, 12:15:33 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"13/03/2011, 5:17:16 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"13/03/2011, 5:17:20 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"13/03/2011, 5:28:13 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"13/03/2011, 5:28:13 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"14/03/2011, 1:37:01 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"14/03/2011, 1:37:01 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"14/03/2011, 1:42:02 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"14/03/2011, 1:42:55 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"14/03/2011, 5:29:58 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"14/03/2011, 5:30:06 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"14/03/2011, 9:38:36 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"14/03/2011, 9:38:36 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"15/03/2011, 12:21:09 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"15/03/2011, 12:21:12 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"15/03/2011, 12:26:13 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"15/03/2011, 12:26:51 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"15/03/2011, 6:26:30 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"15/03/2011, 6:26:35 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"15/03/2011, 7:57:28 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"15/03/2011, 7:57:29 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"16/03/2011, 9:12:30 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"16/03/2011, 9:12:31 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"16/03/2011, 9:17:32 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"16/03/2011, 9:18:03 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"16/03/2011, 1:11:31 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"16/03/2011, 1:11:31 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"16/03/2011, 1:12:41 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"16/03/2011, 1:12:43 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"16/03/2011, 6:27:15 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"16/03/2011, 6:27:51 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"17/03/2011, 8:30:21 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"17/03/2011, 8:30:43 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"17/03/2011, 1:50:16 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"17/03/2011, 1:50:18 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"25/03/2011, 11:10:22 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"25/03/2011, 11:10:23 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"25/03/2011, 11:34:09 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"25/03/2011, 11:34:11 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"25/03/2011, 11:47:19 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"25/03/2011, 11:47:20 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"25/03/2011, 3:19:26 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"25/03/2011, 3:19:27 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"27/03/2011, 1:30:08 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"27/03/2011, 1:30:09 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"27/03/2011, 1:33:13 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"27/03/2011, 1:33:42 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"27/03/2011, 1:35:10 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"27/03/2011, 1:35:17 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"27/03/2011, 4:49:12 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"27/03/2011, 4:49:12 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"28/03/2011, 11:46:56 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"28/03/2011, 11:46:58 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"28/03/2011, 12:32:47 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"28/03/2011, 12:32:52 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"28/03/2011, 12:37:55 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"28/03/2011, 12:38:17 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"28/03/2011, 5:40:21 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"28/03/2011, 5:40:52 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"28/03/2011, 7:13:58 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"28/03/2011, 7:13:58 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"29/03/2011, 1:27:09 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"29/03/2011, 1:27:10 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"29/03/2011, 1:32:14 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"29/03/2011, 1:32:40 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"29/03/2011, 5:12:27 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"29/03/2011, 5:12:41 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"29/03/2011, 9:55:19 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"29/03/2011, 9:55:20 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"30/03/2011, 9:49:14 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"30/03/2011, 9:49:14 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"30/03/2011, 9:53:40 AM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"30/03/2011, 9:56:23 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"30/03/2011, 9:56:23 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"30/03/2011, 9:56:48 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"30/03/2011, 9:56:49 AM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"30/03/2011, 9:57:10 AM";"NT AUTHORITY\SYSTEM";"General";"A new license number 4UY9X-NSVVL-O4BZQ-QIMCL-QTDCH-4 activation."
"30/03/2011, 9:57:23 AM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"30/03/2011, 10:11:48 AM";"NT AUTHORITY\SYSTEM";"IDP";"Process VSRPHN7T.O11 was detected."
"30/03/2011, 5:44:38 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"30/03/2011, 5:44:48 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"30/03/2011, 8:01:17 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopping."
"30/03/2011, 8:01:18 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is stopped."
"30/03/2011, 8:58:52 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is starting."
"30/03/2011, 8:58:53 PM";"NT AUTHORITY\SYSTEM";"General";"AVG is running."
"30/03/2011, 8:59:24 PM";"NT AUTHORITY\SYSTEM";"IDP";"Process VSRPHN7T.O11 was detected."
"30/03/2011, 9:11:23 PM";"NT AUTHORITY\SYSTEM";"IDP";"Process VSRPHN7T.O11 was quarantined."
"30/03/2011, 10:00:53 PM";"NT AUTHORITY\SYSTEM";"Update";"Update was started."
"30/03/2011, 10:01:12 PM";"NT AUTHORITY\SYSTEM";"Update";"Update completed."
"30/03/2011, 10:02:28 PM";"Tif-LAPTOP\Tif";"Scan";"User scan was started."
"30/03/2011, 11:01:16 PM";"NT AUTHORITY\SYSTEM";"IDP";"Process VS83173C.8CS was detected."
"30/03/2011, 11:01:35 PM";"NT AUTHORITY\SYSTEM";"IDP";"Process VS83173C.8CS was quarantined."
"30/03/2011, 11:05:20 PM";"NT AUTHORITY\SYSTEM";"IDP";"Process VSUKGEJ0.OHR was detected."
"30/03/2011, 11:05:32 PM";"NT AUTHORITY\SYSTEM";"IDP";"Process VSUKGEJ0.OHR was quarantined."
"30/03/2011, 11:21:04 PM";"Tif-LAPTOP\Tif";"Scan";"User scan completed. Found 0 infected files and 0 warnings."
"30/03/2011, 11:31:18 PM";"NT AUTHORITY\SYSTEM";"IDP";"Process TEMP FILE CLEANER.EXE was detected."
"30/03/2011, 11:33:46 PM";"NT AUTHORITY\SYSTEM";"IDP";"Process TEMP FILE CLEANER.EXE was quarantined."
"30/03/2011, 11:36:19 PM";"Tif-LAPTOP\Tif";"Scan";"User scan was started."
"30/03/2011, 11:36:23 PM";"Tif-LAPTOP\Tif";"Scan";"User scan completed. Found 0 infected files and 0 warnings."
"30/03/2011, 11:51:31 PM";"NT AUTHORITY\SYSTEM";"IDP";"Process VS83172J.8FI was detected."
"30/03/2011, 11:52:00 PM";"NT AUTHORITY\SYSTEM";"IDP";"Process VS83172J.8FI was quarantined."

---------------------------------

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6222

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

30/03/2011 11:53:58 PM
mbam-log-2011-03-30 (23-53-58).txt

Scan type: Quick scan
Objects scanned: 179212
Time elapsed: 7 minute(s), 57 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

---------------------------------

GMER 1.0.15.15570 - http://www.gmer.net
Rootkit quick scan 2011-03-31 00:15:03
Windows 6.1.7600 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 ST925041 rev.D005
Running: jk0jqg2e.exe; Driver: C:\Users\Tif\AppData\Local\Temp\kwloikow.sys

---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\fastfat \Fat AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \Driver\tdx \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\Tcp tmtdi.sys (Trend Micro TDI Driver (i386-fre)/Trend Micro Inc.)
AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\Udp tmtdi.sys (Trend Micro TDI Driver (i386-fre)/Trend Micro Inc.)
AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\RawIp tmtdi.sys (Trend Micro TDI Driver (i386-fre)/Trend Micro Inc.)

---- EOF - GMER 1.0.15 ----

--------------------------------------

cdnnala1 · Mar 31, 2011

--------------------------------------

.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Tif at 0:10:40.93 on 31/03/2011
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Professional 6.1.7600.0.1252.2.1033.18.2934.1505 [GMT -4:00]
.
AV: Trend Micro Client/Server Security Agent Antivirus *Enabled/Updated* {68F968AC-2AA0-091D-848C-803E83E35902}
AV: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Trend Micro Client/Server Security Agent Anti-spyware *Enabled/Updated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Trend Micro Personal Firewall *Disabled* {70A91CD9-303D-A217-A80E-6DEE136EDB2B}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files\Fingerprint Sensor\AtService.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
C:\Program Files\IDT\WDM\aestsrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe
c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Windows\system32\HPSIsvc.exe
C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe
c:\Program Files\Trend Micro\Client Server Security Agent\ntrtscan.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
C:\Program Files\TalkSwitch\UDPLogger\UDPLogger.exe
C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe
C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
c:\Program Files\Trend Micro\Client Server Security Agent\HostedAgent\svcGenericHost.exe
c:\Program Files\Trend Micro\Client Server Security Agent\tmlisten.exe
c:\Program Files\Trend Micro\Client Server Security Agent\HostedAgent\HostedAgent.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\Program Files\Trend Micro\Client Server Security Agent\TmPfw.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe
c:\Program Files\Trend Micro\Client Server Security Agent\CNTAoSMgr.exe
C:\Windows\system32\conhost.exe
c:\Program Files\Trend Micro\Client Server Security Agent\TmProxy.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe
C:\Program Files\Wave Systems Corp\Services Manager\DocMgr\bin\WavXDocMgr.exe
C:\Program Files\Dell\Dell ControlPoint\Security Manager\BcmDeviceAndTaskStatusService.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\conhost.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files\Trend Micro\Client Server Security Agent\PccNTMon.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT.EXE
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Windows\system32\conhost.exe
C:\Program Files\TalkSwitch\TalkSwitch Configuration 6.12\TSAutoUpdate.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe
C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmNotify.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat.exe
C:\Users\Tif\Desktop\dds.scr
C:\Windows\system32\conhost.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.ca/
uInternet Settings,ProxyOverride = *.local
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: TmIEPlugInBHO Class: {1ca1377b-dc1d-4a52-9585-6e06050fac53} - c:\program files\trend micro\client server security agent\bho\1009\TmIEPlg.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg10\avgssie.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - c:\program files\windows live\companion\companioncore.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~1\micros~1\office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [SysTrayApp] c:\program files\idt\wdm\sttray.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [IntelWirelessWiMAX] "c:\program files\intel\wimax\bin\WiMAXCU.exe" /tasktray /nosplash
mRun: [WavXMgr] c:\program files\wave systems corp\services manager\docmgr\bin\WavXDocMgr.exe
mRun: [USCService] c:\program files\dell\dell controlpoint\security manager\BcmDeviceAndTaskStatusService.exe
mRun: [Dell Webcam Central] "c:\program files\dell webcam\dell webcam central\WebcamDell2.exe" /mode2
mRun: [RemoteControl9] "c:\program files\cyberlink\powerdvd9\PDVD9Serv.exe"
mRun: [PDVD9LanguageShortcut] "c:\program files\cyberlink\powerdvd9\language\Language.exe"
mRun: [<NO NAME>]
mRun: [RoxWatchTray] "c:\program files\common files\roxio shared\oem\12.0\sharedcom\RoxWatchTray12OEM.exe"
mRun: [Desktop Disc Tool] "c:\program files\roxio\oem\roxio burn\RoxioBurnLauncher.exe"
mRun: [OfficeScanNT Monitor] "c:\program files\trend micro\client server security agent\pccntmon.exe" -HideWindow
mRun: [Intuit SyncManager] c:\program files\common files\intuit\sync\IntuitSyncManager.exe startup
mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
mRun: [MFNetworkScanUtility] c:\program files\canon\canon mf network scan utility\CNMFSUT.EXE
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [AdobeCS4ServiceManager] "c:\program files\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin
mRun: [Adobe Acrobat Speed Launcher] "c:\program files\adobe\acrobat 9.0\acrobat\Acrobat_sl.exe"
mRun: [Acrobat Assistant 8.0] "c:\program files\adobe\acrobat 9.0\acrobat\Acrotray.exe"
mRun: [Adobe_ID0ENQBO] c:\progra~1\common~1\adobe\adobev~1\server\bin\VERSIO~2.EXE
mRun: [TSM_AutoUpdate] c:\program files\talkswitch\talkswitch configuration 6.12\TSAutoUpdate.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRunOnce: [Malwarebytes' Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
StartupFolder: c:\users\tif\appdata\roaming\micros~1\windows\startm~1\programs\startup\talksw~1.lnk - c:\program files\talkswitch\talkswitch configuration 6.12\TSAutoUpdate.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\dellsy~1.lnk - c:\program files\dell\dell system manager\DCPSysMgr.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickb~1.lnk - c:\program files\common files\intuit\quickbooks\qbupdate\qbupdate.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\rprosc~1.lnk - r:\retail\rpro\Schedule.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\tdmnot~1.lnk - c:\program files\wave systems corp\trusted drive manager\TdmNotify.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\micros~1\office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: intu-help-qb2 - {84D77A00-41B5-4b8b-8ADF-86486D72E749} - c:\program files\intuit\quickbooks 2011\HelpAsyncPluggableProtocol.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - c:\program files\trend micro\client server security agent\bho\1009\TmIEPlg.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: igfxcui - igfxdev.dll
LSA: Authentication Packages = msv1_0 wvauth
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2010-9-13 25680]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2010-9-7 26064]
R0 stdflt;Disk Filter Driver for Accelerometer;c:\windows\system32\drivers\stdfltn.sys [2011-1-23 17072]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2010-12-8 251728]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2010-9-7 34384]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2010-11-12 299984]
R1 tmlwf;Trend Micro NDIS 6.0 Filter Driver;c:\windows\system32\drivers\tmlwf.sys [2009-7-15 146448]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
R2 AESTFilters;Andrea ST Filters Service;c:\program files\idt\wdm\AEstSrv.exe [2011-1-23 81920]
R2 ATService;AuthenTec Fingerprint Service;c:\program files\fingerprint sensor\AtService.exe [2010-5-10 1803584]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg10\avgwdsvc.exe [2010-10-22 265400]
R2 BrcmMgmtAgent;Broadcom Management Agent;c:\program files\broadcom\mgmtagent\BrcmMgmtAgent.exe [2009-11-4 114688]
R2 dcpsysmgrsvc;Dell System Manager Service;c:\program files\dell\dell system manager\DCPSysMgrSvc.exe [2010-8-24 388464]
R2 DMAgent;Intel® PROSet/Wireless WiMAX Red Bend Device Management Service;c:\program files\intel\wimax\bin\DMAgent.exe [2010-6-7 356352]
R2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [2011-3-1 99896]
R2 InstallFilterService;FF Install Filter Service;c:\program files\stmicroelectronics\accelerometerp11\InstallFilterService.exe [2011-1-23 60928]
R2 risdpcie;risdpcie;c:\windows\system32\drivers\risdpe86.sys [2011-1-23 59904]
R2 svcGenericHost;Trend Micro Client/Server Security Agent;c:\program files\trend micro\client server security agent\hostedagent\svcGenericHost.exe [2010-7-5 45056]
R2 TeamViewer6;TeamViewer 6;c:\program files\teamviewer\version6\TeamViewer_Service.exe [2011-3-7 2296696]
R2 TmFilter;Trend Micro Filter;c:\program files\trend micro\client server security agent\TmXPFlt.sys [2010-5-11 230928]
R2 TmPreFilter;Trend Micro PreFilter;c:\program files\trend micro\client server security agent\tmpreflt.sys [2010-5-11 36368]
R2 tmwfp;Trend Micro WFP Callout Driver;c:\windows\system32\drivers\tmwfp.sys [2009-7-15 283152]
R2 TSUDPLogger;Talkswitch UDP Logger Service;c:\program files\talkswitch\udplogger\UDPLogger.exe [2010-10-1 193808]
R2 WiMAXAppSrv;Intel® PROSet/Wireless WiMAX Service;c:\program files\intel\wimax\bin\AppSrv.exe [2010-6-7 1372160]
R3 Acceler;Accelerometer Service;c:\windows\system32\drivers\Accelern.sys [2011-1-23 42672]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2010-8-3 123472]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2010-8-3 30288]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2010-8-3 21072]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2011-1-23 274984]
R3 bpenum;bpenum;c:\windows\system32\drivers\bpenum.sys [2011-1-23 56832]
R3 bpmp;Intel(R) Centrino(R) WiMAX 6050 Series;c:\windows\system32\drivers\bpmp.sys [2011-1-23 144896]
R3 bpusb;bpusb;c:\windows\system32\drivers\bpusb.sys [2011-1-23 69120]
R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [2011-1-23 274472]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\drivers\btwl2cap.sys [2011-1-23 33320]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\drivers\CtClsFlt.sys [2011-1-23 144576]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2011-1-23 132480]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\drivers\IntcDAud.sys [2011-1-23 246272]
R3 osppsvc;Office Software Protection Platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4640000]
R3 TmPfw;Trend Micro Client/Server Security Agent Personal Firewall;c:\program files\trend micro\client server security agent\TmPfw.exe [2009-7-15 497008]
R3 TmProxy;Trend Micro Client/Server Security Agent Proxy Service;c:\program files\trend micro\client server security agent\TmProxy.exe [2009-7-15 689416]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg10\identity protection\agent\bin\AVGIDSAgent.exe [2011-1-6 6128720]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files\common files\roxio shared\oem\12.0\sharedcom\RoxWatch12OEM.exe [2010-9-4 219632]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files\common files\adobe\adobe version cue cs4\server\bin\VersionCueCS4.exe [2008-8-15 284016]
S3 CtAudDrv;Provides advanced audio effects for audio devices.;c:\windows\system32\drivers\CtAudDrv.sys [2011-1-23 134144]
S3 mvusbews;USB EWS Device;c:\windows\system32\drivers\mvusbews.sys [2011-3-1 17408]
S3 NETwNs32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\drivers\NETwNs32.sys [2011-1-23 6814720]
S3 rimspci;rimspci;c:\windows\system32\drivers\rimspe86.sys [2011-1-23 48640]
S3 rixdpcie;rixdpcie;c:\windows\system32\drivers\rixdpe86.sys [2011-1-23 38912]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files\common files\roxio shared\oem\12.0\sharedcom\RoxMediaDB12OEM.exe [2010-9-4 1116656]
S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992]
S3 tmevtmgr;tmevtmgr;c:\windows\system32\drivers\tmevtmgr.sys [2009-7-6 50704]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2011-2-11 1343400]
S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]
.
=============== Created Last 30 ================
.
2011-03-31 03:55:36 -------- d-----w- c:\windows\system32\wbem\Logs
2011-03-31 03:45:26 -------- d-----w- c:\users\tif\appdata\roaming\Malwarebytes
2011-03-31 03:45:22 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-03-31 03:45:20 -------- d-----w- c:\progra~2\Malwarebytes
2011-03-31 03:45:17 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-03-31 03:45:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-03-31 03:31:18 -------- d-----w- c:\program files\Temp File Cleaner DB Toolbar
2011-03-31 03:31:08 -------- d-----w- c:\program files\Temp File Cleaner
2011-03-16 18:10:57 206336 ----a-w- c:\windows\system32\VIC32.DLL
2011-03-13 17:09:17 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
2011-03-13 17:09:17 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
2011-03-13 17:09:17 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2011-03-13 17:09:17 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2011-03-13 17:09:17 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2011-03-13 17:09:17 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2011-03-13 17:09:17 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2011-03-13 17:08:56 -------- d-----w- c:\users\tif\appdata\local\Apple
2011-03-09 23:45:44 -------- d-----w- c:\users\tif\appdata\local\ElevatedDiagnostics
2011-03-09 22:31:51 -------- d-----w- c:\users\tif\appdata\roaming\TeamViewer
2011-03-09 16:19:44 802304 ----a-w- c:\windows\system32\FntCache.dll
2011-03-09 16:19:44 739840 ----a-w- c:\windows\system32\d2d1.dll
2011-03-09 16:19:44 1074176 ----a-w- c:\windows\system32\DWrite.dll
2011-03-09 16:19:43 850432 ----a-w- c:\windows\system32\sbe.dll
2011-03-09 16:19:43 642048 ----a-w- c:\windows\system32\CPFilters.dll
2011-03-09 16:19:43 534528 ----a-w- c:\windows\system32\EncDec.dll
2011-03-09 16:19:43 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2011-03-09 16:19:40 2690560 ----a-w- c:\windows\system32\mstscax.dll
2011-03-09 16:19:40 1034240 ----a-w- c:\windows\system32\mstsc.exe
2011-03-07 18:12:22 -------- d-----w- c:\program files\TeamViewer
2011-03-07 18:10:55 -------- d-----w- C:\Program Downloads
2011-03-01 16:46:23 -------- d-sh--w- c:\windows\ftpcache
2011-03-01 16:41:22 99896 ----a-w- c:\windows\system32\HPSIsvc.exe
2011-03-01 16:41:16 69632 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\HP1100PP.dll
2011-03-01 16:41:16 1511424 ----a-w- c:\windows\system32\HP1100SM.EXE
2011-03-01 16:41:16 147456 ----a-w- c:\windows\system32\HP1100LM.DLL
2011-03-01 16:38:25 284160 ----a-w- c:\windows\system32\mvhlewsi.DLL
2011-03-01 16:38:23 -------- d-----w- c:\program files\HP
2011-03-01 16:38:22 17408 ----a-w- c:\windows\system32\drivers\mvusbews.sys
2011-03-01 16:38:21 81920 ----a-w- c:\windows\system32\mvusbews.dll
2011-03-01 16:38:21 47104 ----a-w- c:\windows\system32\HP1100SMs.dll
.
==================== Find3M ====================
.
2011-02-18 20:36:58 4184352 ----a-w- c:\windows\system32\usbaaplrc.dll
2011-02-02 22:11:20 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-01-23 18:37:12 29480 ----a-w- c:\windows\system32\msxml3a.dll
2011-01-23 18:37:11 505128 ----a-w- c:\windows\system32\msvcp71.dll
2011-01-23 18:37:11 353576 ----a-w- c:\windows\system32\msvcr71.dll
2011-01-07 07:31:10 442880 ----a-w- c:\windows\system32\XpsPrint.dll
2011-01-07 07:31:10 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-01-07 07:27:11 34304 ----a-w- c:\windows\system32\atmlib.dll
2011-01-07 05:33:11 294400 ----a-w- c:\windows\system32\atmfd.dll
2011-01-05 05:37:33 428032 ----a-w- c:\windows\system32\vbscript.dll
2011-01-05 03:37:38 2329088 ----a-w- c:\windows\system32\win32k.sys
.
============= FINISH: 0:12:59.07 ===============

-----------------------------------

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 10/02/2011 2:39:17 PM
System Uptime: 30/03/2011 8:58:23 PM (4 hours ago)
.
Motherboard: Dell Inc. | | 09M4GV
Processor: Intel(R) Core(TM) i7 CPU M 640 @ 2.80GHz | CPU 1 | 2800/533mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 232 GiB total, 169.946 GiB free.
D: is CDROM (UDF)
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Intel(R) Centrino(R) Advanced-N 6250 AGN
Device ID: PCI\VEN_8086&DEV_0087&SUBSYS_13218086&REV_5E\4&10DDBBEB&0&00E1
Manufacturer: Intel Corporation
Name: Intel(R) Centrino(R) Advanced-N 6250 AGN
PNP Device ID: PCI\VEN_8086&DEV_0087&SUBSYS_13218086&REV_5E\4&10DDBBEB&0&00E1
Service: NETwNs32
.
==== System Restore Points ===================
.
RP31: 21/02/2011 6:09:21 PM - Scheduled Checkpoint
RP32: 23/02/2011 6:46:15 PM - Windows Update
RP33: 04/03/2011 1:01:47 PM - Scheduled Checkpoint
RP34: 09/03/2011 9:58:57 PM - Windows Update
RP35: 13/03/2011 1:09:27 PM - Installed iTunes
RP36: 17/03/2011 1:49:27 PM - Windows Update
RP37: 25/03/2011 1:44:44 PM - Scheduled Checkpoint
RP38: 25/03/2011 3:19:02 PM - Windows Update
RP39: 29/03/2011 9:53:36 PM - Windows Update
.
==== Installed Programs ======================
.
AccelerometerP11
Acrobat.com
Adobe Acrobat 9 Pro - English, Français, Deutsch
Adobe AIR
Adobe Anchor Service CS4
Adobe Asset Services CS4
Adobe Bridge CS4
Adobe CMaps CS4
Adobe Color - Photoshop Specific CS4
Adobe Color EU Extra Settings CS4
Adobe Color JA Extra Settings CS4
Adobe Color NA Recommended Settings CS4
Adobe Color Video Profiles CS CS4
Adobe Creative Suite 4 Design Premium
Adobe CSI CS4
Adobe Default Language CS4
Adobe Device Central CS4
Adobe Dreamweaver CS4
Adobe Drive CS4
Adobe Dynamiclink Support
Adobe ExtendScript Toolkit CS4
Adobe Extension Manager CS4
Adobe Fireworks CS4
Adobe Flash CS4
Adobe Flash CS4 Extension - Flash Lite STI en
Adobe Flash CS4 STI-en
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Fonts All
Adobe Illustrator CS4
Adobe InDesign CS4
Adobe InDesign CS4 Application Feature Set Files (Roman)
Adobe InDesign CS4 Common Base Files
Adobe InDesign CS4 Icon Handler
Adobe Linguistics CS4
Adobe Media Encoder CS4
Adobe Media Encoder CS4 Importer
Adobe Media Player
Adobe Output Module
Adobe PDF Library Files CS4
Adobe Photoshop CS4
Adobe Photoshop CS4 Support
Adobe Reader 9.4.0
Adobe Search for Help
Adobe Service Manager Extension
Adobe Setup
Adobe SGM CS4
Adobe SING CS4
Adobe Type Support CS4
Adobe Update Manager CS4
Adobe Version Cue CS4 Server
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS4
AdobeColorCommonSetCMYK
AdobeColorCommonSetRGB
Apple Application Support
Apple Mobile Device Support
Apple Software Update
AuthenTec Fingerprint Software
AVG 2011
BioAPI Framework
Bonjour
Broadcom NetXtreme-I Netlink Driver and Management Installer
Canon MF Toolbox 4.9.1.1.mf09
Canon MF8300 Series
CLEAR™ WiMAX Tutorial
Connect
CyberLink PowerDVD 9.5
D3DX10
Definition update for Microsoft Office 2010 (KB982726)
Dell Control Point
Dell ControlPoint Security Manager
Dell Edoc Viewer
Dell Embassy Trust Suite by Wave Systems
Dell Security Device Driver Pack
Dell System Manager
Dell Touchpad
Dell Webcam Central
DirectX 9 Runtime
Document Manager Lite
EMBASSY Security Center
EMBASSY Security Setup
ESC Home Page Plugin
Gemalto
HP LaserJet Professional P1100-P1560-P1600 Series
HP Smart Web Printing 4.60
Intel PROSet Wireless
Intel(R) Graphics Media Accelerator Driver
Intel(R) PROSet/Wireless WiFi Software
Intel® PROSet/Wireless WiMAX Software
Java Auto Updater
Java(TM) 6 Update 23
Junk Mail filter update
kuler
Malwarebytes' Anti-Malware
Mesh Runtime
Messenger Companion
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Home and Business 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Single Image 2010
Microsoft Office Word MUI (English) 2010
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
NTRU TCG Software Stack
O2Micro OZ776 SCR Driver
PDF Settings CS4
Photoshop Camera Raw
PhotoShowExpress
Pixel Bender Toolkit
Preboot Manager
Private Information Manager
QuickBooks
QuickBooks Pro 2011
QuickTime
Roxio Activation Module
Roxio BackOnTrack
Roxio Burn
Roxio Creator Starter
Roxio Express Labeler 3
Roxio File Backup
Security Update for Microsoft Office 2010 (KB2289078)
Security Update for Microsoft Office 2010 (KB2289161)
Security Update for Microsoft Publisher 2010 (KB2409055)
Security Update for Microsoft Word 2010 (KB2345000)
Security Wizards
SmartWebPrinting
Sonic CinePlayer Decoder Pack
Suite Shared Configuration CS4
SupportSoft Assisted Service
TalkSwitch 6.12
TalkSwitch USB Driver 2.0
TeamViewer 6
Temp File Cleaner
Trend Micro Client/Server Security Agent
Trusted Drive Manager
Update for Microsoft Office 2010 (KB2202188)
Update for Microsoft Office 2010 (KB2413186)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft OneNote 2010 (KB2493983)
Update for Microsoft Outlook Social Connector (KB2289116)
UPEK TouchChip Fingerprint Reader
Visual C++ 8.0 ATL (x86) WinSXS MSM Beta2
Visual C++ 8.0 ATL.Policy (x86) WinSXS MSM Beta2
Visual C++ 8.0 CRT (x86) WinSXS MSM Beta2
Visual C++ 8.0 CRT.Policy (x86) WinSXS MSM Beta2
Visual C++ 8.0 MFC (x86) WinSXS MSM Beta2
Visual C++ 8.0 MFC.Policy (x86) WinSXS MSM Beta2
Wave Infrastructure Installer
Wave Support Software
WIDCOMM Bluetooth Software
Windows Driver Package - AuthenTec Inc. (ATSwpWDF) Biometric (05/13/2009 8.4.2.0)
Windows Driver Package - Dell Inc. PBADRV System (09/11/2009 1.0.1.6)
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinRAS 2011.01vf
.
==== Event Viewer Messages From Past Week ========
.
30/03/2011 9:01:28 PM, Error: Microsoft-Windows-WMPNSS-Service [14353] - A media delivery engine with ID '0' was not initialized due to error '0x800700b7' when adding the URL 'http://+:10243/WMPNSSv4/2251002978/'. Restart your computer, and then restart the WMPNetworkSvc service. If the problem persists, reinstall Windows Media Player if possible.
30/03/2011 9:01:28 PM, Error: Microsoft-Windows-WMPNSS-Service [14349] - A new media server was not initialized because the Windows Media Delivery Engine did not initialize due to error '0x800700b7'. Restart your computer, and then restart the WMPNetworkSvc service. If the problem persists, reinstall Windows Media Player if possible.
30/03/2011 8:58:49 PM, Error: Service Control Manager [7001] - The NTRU TSS v1.2.1.29 TCS service depends on the TPM Base Services service which failed to start because of the following error: The operation completed successfully.
.
==== End Of File ===========================

Broni · Mar 31, 2011

Unfortunately, AVG has been plagued recently with false positives.

In any case, you're running two AV programs, TrendMicro and AVG.
One of them has to go.
I strongly recommend, AVG goes.
Use AVG Remover to uninstall it: http://www.avg.com/us-en/download-tools

cdnnala1 · Mar 31, 2011

Thanks Broni. Does this mean for sure that it's a false positive? I have never used Trend Micro, actually I didn't even know it was on the computer until the AVG warning came up, it must have come pre-installed on my Dell laptop.

I followed the 8-step process and posted the logs, do they indicate anything is amiss?

Broni · Mar 31, 2011

I don't see anything malicious in your logs, but....

Please run a free online scan with the ESET Online Scanner

Disable your antivirus program

Tick the box next to YES, I accept the Terms of Use

Click Start

Accept any security warnings from your browser.

Check Scan archives

Click Start

ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.

When the scan completes, push List of found threats

Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.

cdnnala1 · Apr 1, 2011

I ran ESET and a complete Housecall scan and both came up with 0 infections.

Should I uninstall AVG and try installing Avast and running it?

Broni · Apr 1, 2011

I'd suggest so.
Make sure, you use AVG Remover: http://www.avg.com/us-en/download-tools

TechSpot

Welcome to TechSpot

Avg finds Win32/Heur in Trend Micro Temp Files - False Positive?

cdnnala1 Newcomer, in training

cdnnala1 Newcomer, in training

Broni Malware Annihilator Posts: 40,022 +187

cdnnala1 Newcomer, in training

Broni Malware Annihilator Posts: 40,022 +187

cdnnala1 Newcomer, in training

Broni Malware Annihilator Posts: 40,022 +187

Add New Comment

	TechSpot Members Login or sign up for free, it takes about 30 seconds.			You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.