Ooh, sorry their lophat. Did as instructed. I already ran Malwarebyttes and it found about 30 infected files, that got deleted without a hitch.
Here are the other logs requested. Still seeing a bit of latency at times, but not sure it's just my overcrowded hard drives. LOL
Wow, the first one is like a book.
OTL logfile created on: 30/10/2009 3:39:06 PM - Run 1
OTL by OldTimer - Version 3.0.22.1 Folder = C:\Users\Tony\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16851)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy
1.87 Gb Total Physical Memory | 0.91 Gb Available Physical Memory | 48.62% Memory free
3.96 Gb Paging File | 2.91 Gb Available in Paging File | 73.45% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 366.35 Gb Total Space | 141.26 Gb Free Space | 38.56% Space Free | Partition Type: NTFS
Drive D: | 6.26 Gb Total Space | 0.88 Gb Free Space | 14.10% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 279.47 Gb Total Space | 133.91 Gb Free Space | 47.92% Space Free | Partition Type: NTFS
Computer Name: TONY-PC
Current User Name: Tony
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Processes (SafeList) ========== PRC - [2009/10/30 15:31:48 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Tony\Desktop\OTL.exe
PRC - [2009/10/28 11:14:39 | 00,788,368 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
PRC - [2009/10/28 11:14:37 | 01,179,232 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2009/10/28 10:49:54 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpdate.exe
PRC - [2009/06/05 13:39:22 | 00,292,136 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2009/06/05 13:39:14 | 00,541,992 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2009/06/05 11:48:14 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/04/24 13:55:27 | 00,634,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2009/04/24 11:23:43 | 00,301,568 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\ieuser.exe
PRC - [2009/03/02 23:29:26 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprvse.exe
PRC - [2009/02/19 00:33:08 | 00,809,488 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2009/02/19 00:28:52 | 00,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
PRC - [2008/12/18 23:00:09 | 00,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2008/12/12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/10/29 03:50:29 | 02,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2008/02/28 17:39:08 | 00,053,032 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe
PRC - [2008/02/28 17:38:58 | 01,440,552 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe
PRC - [2008/01/10 04:01:14 | 01,232,896 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
PRC - [2007/12/06 10:36:54 | 00,090,112 | ---- | M] () -- C:\Program Files\TeamViewer3\TeamViewer_Host.exe
PRC - [2007/11/01 23:35:23 | 01,252,232 | ---- | M] () -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
PRC - [2007/10/18 12:34:02 | 05,724,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
PRC - [2007/10/18 07:37:04 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.exe
PRC - [2007/07/07 12:59:52 | 01,006,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007/07/03 15:08:01 | 00,554,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
PRC - [2007/04/20 08:09:58 | 01,945,712 | ---- | M] (Acronis) -- C:\Program Files\Maxtor\MaxBlast\TimounterMonitor.exe
PRC - [2007/04/20 08:03:08 | 00,149,024 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Maxtor\Schedule2\schedhlp.exe
PRC - [2007/04/20 08:03:02 | 00,411,168 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Maxtor\Schedule2\schedul2.exe
PRC - [2007/04/20 07:59:30 | 01,169,720 | ---- | M] (Maxtor) -- C:\Program Files\Maxtor\MaxBlast\MaxBlastMonitor.exe
PRC - [2007/04/13 13:19:00 | 00,101,528 | ---- | M] () -- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
PRC - [2007/04/03 23:20:00 | 01,603,152 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2007/01/09 22:59:52 | 00,115,816 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2007/01/09 22:59:32 | 00,108,648 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2006/12/15 03:23:27 | 00,075,520 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
PRC - [2006/11/02 10:06:04 | 00,895,488 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
PRC - [2006/11/02 10:06:04 | 00,201,728 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2006/11/02 10:05:32 | 00,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehtray.exe
PRC - [2006/11/02 10:05:32 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehmsas.exe
PRC - [2006/11/02 10:05:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe
PRC - [2006/11/02 10:05:28 | 00,291,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe
PRC - [2006/11/02 07:16:02 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
PRC - [2006/11/02 07:15:50 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
PRC - [2006/10/19 18:22:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- c:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2006/10/10 14:14:10 | 00,034,520 | ---- | M] (Hewlett Packard) -- C:\Program Files\HP Connections\6811507\Program\HP Connections.exe
PRC - [2006/09/28 11:12:24 | 00,065,536 | ---- | M] (Hewlett-Packard Company) -- C:\hp\support\hpsysdrv.exe
PRC - [2006/09/20 14:35:16 | 00,046,736 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
PRC - [2005/02/17 03:41:42 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
========== Win32 Services (SafeList) ========== SRV - File not found -- -- (NMIndexingService [Disabled | Stopped])
SRV - [2009/10/28 11:14:37 | 01,179,232 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service [Auto | Running])
SRV - [2009/10/28 10:49:54 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate1ca57d15f52ed9a [Auto | Stopped])
SRV - [2009/06/05 13:39:14 | 00,541,992 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Running])
SRV - [2009/06/05 11:48:14 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])
SRV - [2009/04/27 16:37:32 | 00,182,768 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2009/02/19 00:30:20 | 00,121,360 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ [On_Demand | Stopped])
SRV - [2008/12/12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2008/02/28 17:39:08 | 00,053,032 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe -- (NeroRegInCDSrv [Auto | Running])
SRV - [2008/02/28 17:38:58 | 01,440,552 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe -- (InCDsrvR [Auto | Running])
SRV - [2007/12/06 10:36:54 | 00,090,112 | ---- | M] () -- C:\Program Files\TeamViewer3\TeamViewer_Host.exe -- (TeamViewer [Auto | Running])
SRV - [2007/11/28 20:51:10 | 00,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service [Auto | Stopped])
SRV - [2007/11/01 23:35:23 | 01,252,232 | ---- | M] () -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC [On_Demand | Running])
SRV - [2007/10/25 16:27:54 | 00,266,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc [On_Demand | Stopped])
SRV - [2007/10/18 12:31:54 | 00,098,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Stopped])
SRV - [2007/10/18 07:37:04 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.exe -- (XAudioService [Auto | Running])
SRV - [2007/08/24 06:59:20 | 00,068,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])
SRV - [2007/08/24 03:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2007/07/07 12:59:52 | 00,265,912 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])
SRV - [2007/07/03 15:08:01 | 02,983,280 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE -- (LiveUpdate [On_Demand | Stopped])
SRV - [2007/07/03 15:08:01 | 00,554,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler [Auto | Running])
SRV - [2007/04/20 08:03:02 | 00,411,168 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Maxtor\Schedule2\schedul2.exe -- (AcrSch2Svc [Auto | Running])
SRV - [2007/04/13 13:19:00 | 00,101,528 | ---- | M] () -- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE -- (IJPLMSVC [Auto | Running])
SRV - [2007/02/20 15:11:28 | 00,815,104 | ---- | M] (Hauppauge Computer Works) -- C:\Program Files\WinTV\HCWTVServer.exe -- (HauppaugeTVServer [On_Demand | Stopped])
SRV - [2007/01/09 22:59:32 | 00,108,648 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice Ex [Auto | Running])
SRV - [2007/01/09 22:59:32 | 00,108,648 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService [Auto | Running])
SRV - [2007/01/09 22:59:32 | 00,108,648 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr [Auto | Running])
SRV - [2007/01/09 22:59:32 | 00,108,648 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr [Auto | Running])
SRV - [2006/11/02 10:06:04 | 00,895,488 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Running])
SRV - [2006/11/02 10:06:02 | 00,741,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2006/11/02 10:06:02 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2006/11/02 10:06:00 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2006/11/02 10:05:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Running])
SRV - [2006/11/02 10:05:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])
SRV - [2006/11/02 10:05:28 | 00,291,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Running])
SRV - [2006/11/02 07:16:13 | 00,989,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (Eventlog [Auto | Running])
SRV - [2006/11/02 04:04:11 | 00,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2006/11/01 16:28:02 | 00,078,752 | R--- | M] (MicroVision Development, Inc.) -- c:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- (stllssvr [On_Demand | Stopped])
SRV - [2006/10/26 20:48:36 | 00,080,552 | ---- | M] (Symantec Corporation) -- c:\Program Files\Norton Internet Security\isPwdSvc.exe -- (ISPwdSvc [On_Demand | Stopped])
SRV - [2006/10/26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2006/10/19 18:22:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- c:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService [Auto | Running])
SRV - [2006/10/13 11:59:12 | 00,049,296 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost [On_Demand | Stopped])
SRV - [2006/09/20 14:35:16 | 00,046,736 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe -- (SymAppCore [Auto | Running])
========== Driver Services (SafeList) ========== DRV - [2009/09/23 10:25:23 | 00,064,288 | ---- | M] (Lavasoft AB) -- C:\Windows\system32\DRIVERS\Lbd.sys -- (Lbd [Boot | Running])
DRV - [2009/06/23 01:01:20 | 00,047,360 | ---- | M] (VSO Software) -- C:\Windows\System32\Drivers\pcouffin.sys -- (pcouffin [On_Demand | Running])
DRV - [2009/03/19 16:32:48 | 00,023,400 | ---- | M] (GEAR Software Inc.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])
DRV - [2008/12/18 23:43:48 | 00,037,392 | ---- | M] (Logitech, Inc.) -- C:\Windows\System32\DRIVERS\LMouFilt.Sys -- (LMouFilt [On_Demand | Running])
DRV - [2008/12/18 23:43:40 | 00,035,472 | ---- | M] (Logitech, Inc.) -- C:\Windows\System32\DRIVERS\LHidFilt.Sys -- (LHidFilt [On_Demand | Running])
DRV - [2008/12/18 23:43:06 | 00,020,240 | ---- | M] (Logitech, Inc.) -- C:\Windows\System32\DRIVERS\L8042Kbd.sys -- (L8042Kbd [On_Demand | Running])
DRV - [2008/05/08 05:05:18 | 00,266,752 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSXHWBS2.sys -- (HSXHWBS2 [On_Demand | Running])
DRV - [2008/05/08 05:04:16 | 00,661,504 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSX_CNXT.sys -- (winachsf [On_Demand | Running])
DRV - [2008/05/08 05:03:18 | 00,980,992 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSX_DP.sys -- (HSF_DP [On_Demand | Running])
DRV - [2008/02/28 17:38:58 | 00,040,360 | ---- | M] (Nero AG) -- C:\Windows\System32\drivers\InCDRm.sys -- (incdrm [System | Running])
DRV - [2008/02/28 17:38:48 | 00,128,424 | ---- | M] (Nero AG) -- C:\Windows\System32\drivers\InCDFs.sys -- (InCDfs [Disabled | Running])
DRV - [2008/02/28 17:38:48 | 00,038,952 | ---- | M] (Nero AG) -- C:\Windows\System32\drivers\InCDPass.sys -- (InCDPass [System | Running])
DRV - [2007/10/18 07:36:54 | 00,008,704 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.sys -- (XAudio [Auto | Running])
DRV - [2007/09/06 13:21:18 | 00,180,272 | ---- | M] (Symantec Corporation) -- C:\ProgramData\Symantec\Definitions\SymcData\idsdefs\20070906.002\IDSvix86.sys -- (IDSvix86 [System | Running])
DRV - [2007/08/30 05:30:00 | 00,395,312 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl [System | Running])
DRV - [2007/07/17 05:30:00 | 00,865,904 | ---- | M] (Symantec Corporation) -- C:\ProgramData\Symantec\Definitions\VirusDefs\20070910.022\NAVEX15.SYS -- (NAVEX15 [On_Demand | Stopped])
DRV - [2007/07/17 05:30:00 | 00,081,232 | ---- | M] (Symantec Corporation) -- C:\ProgramData\Symantec\Definitions\VirusDefs\20070910.022\NAVENG.SYS -- (NAVENG [On_Demand | Stopped])
DRV - [2007/07/07 18:29:47 | 00,392,320 | ---- | M] (Acronis) -- C:\Windows\system32\DRIVERS\timntr.sys -- (timounter [Boot | Running])
DRV - [2007/07/07 18:29:47 | 00,032,768 | ---- | M] (Acronis) -- C:\Windows\System32\DRIVERS\tifsfilt.sys -- (tifsfilter [Auto | Running])
DRV - [2007/07/07 18:29:44 | 00,120,992 | ---- | M] (Acronis) -- C:\Windows\system32\DRIVERS\snapman.sys -- (snapman [Boot | Running])
DRV - [2007/07/07 14:04:53 | 00,115,000 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\Drivers\SYMEVENT.SYS -- (SymEvent [On_Demand | Running])
DRV - [2007/07/06 21:15:00 | 07,568,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm [On_Demand | Running])
DRV - [2007/05/04 02:29:10 | 01,065,384 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvmfdx32.sys -- (NVENETFD [On_Demand | Running])
DRV - [2007/04/18 16:30:16 | 00,366,080 | ---- | M] (Hauppauge Computer Works, Inc) -- C:\Windows\System32\drivers\hcw18bda.sys -- (hcw18bda [On_Demand | Running])
DRV - [2007/03/27 17:11:42 | 00,276,792 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\Drivers\SRTSPL.SYS -- (SRTSPL [On_Demand | Stopped])
DRV - [2007/03/27 17:11:42 | 00,247,608 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\Drivers\SRTSP.SYS -- (SRTSP [On_Demand | Stopped])
DRV - [2007/03/27 17:11:42 | 00,025,400 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\Drivers\SRTSPX.SYS -- (SRTSPX [System | Running])
DRV - [2006/11/08 16:39:24 | 01,647,976 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2006/11/02 07:21:45 | 00,900,712 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
DRV - [2006/11/02 07:21:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
DRV - [2006/11/02 07:21:34 | 00,316,520 | ---- | M] (Emulex) -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
DRV - [2006/11/02 07:21:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
DRV - [2006/11/02 07:21:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
DRV - [2006/11/02 07:21:25 | 00,232,040 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV [Disabled | Stopped])
DRV - [2006/11/02 07:21:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
DRV - [2006/11/02 07:20:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
DRV - [2006/11/02 07:20:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
DRV - [2006/11/02 07:20:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
DRV - [2006/11/02 07:20:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
DRV - [2006/11/02 07:20:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
DRV - [2006/11/02 07:20:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
DRV - [2006/11/02 07:20:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
DRV - [2006/11/02 07:20:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
DRV - [2006/11/02 07:20:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
DRV - [2006/11/02 07:20:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor [Boot | Running])
DRV - [2006/11/02 07:20:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
DRV - [2006/11/02 07:20:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
DRV - [2006/11/02 07:20:10 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
DRV - [2006/11/02 07:20:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
DRV - [2006/11/02 07:20:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs [Disabled | Stopped])
DRV - [2006/11/02 07:20:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arc.sys -- (arc [Disabled | Stopped])
DRV - [2006/11/02 07:20:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
DRV - [2006/11/02 07:20:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
DRV - [2006/11/02 07:20:05 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
DRV - [2006/11/02 07:20:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
DRV - [2006/11/02 07:20:04 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
DRV - [2006/11/02 07:20:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
DRV - [2006/11/02 07:19:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x [Disabled | Stopped])
DRV - [2006/11/02 07:19:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
DRV - [2006/11/02 07:19:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
DRV - [2006/11/02 07:19:30 | 00,017,512 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
DRV - [2006/11/02 07:19:28 | 00,016,488 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
DRV - [2006/11/02 07:19:20 | 00,014,952 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
DRV - [2006/11/02 06:25:16 | 00,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\avc.sys -- (Avc [On_Demand | Stopped])
DRV - [2006/11/02 06:25:15 | 00,045,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\61883.sys -- (61883 [On_Demand | Stopped])
DRV - [2006/11/02 06:25:12 | 00,052,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\msdv.sys -- (MSDV [On_Demand | Stopped])
DRV - [2006/11/02 06:25:04 | 00,071,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Stopped])
DRV - [2006/11/02 05:55:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserid.sys -- (Brserid [Disabled | Stopped])
DRV - [2006/11/02 05:54:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer [On_Demand | Stopped])
DRV - [2006/11/02 05:54:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp [On_Demand | Stopped])
DRV - [2006/11/02 05:54:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo [On_Demand | Stopped])
DRV - [2006/11/02 05:54:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm [Disabled | Stopped])
DRV - [2006/11/02 05:54:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm [Disabled | Stopped])
DRV - [2006/11/02 05:06:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
DRV - [2006/11/02 05:00:54 | 00,117,760 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
DRV - [2006/11/02 04:07:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
DRV - [2006/10/24 10:10:22 | 00,185,744 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI [System | Running])
DRV - [2006/10/24 10:10:22 | 00,144,784 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\Drivers\SYMFW.SYS -- (SYMFW [On_Demand | Running])
DRV - [2006/10/24 10:10:22 | 00,038,928 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\Drivers\SYMIDS.SYS -- (SYMIDS [On_Demand | Running])
DRV - [2006/10/24 10:10:22 | 00,037,008 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\Drivers\SYMNDISV.SYS -- (SYMNDISV [On_Demand | Running])
DRV - [2006/10/24 10:10:22 | 00,026,384 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV [On_Demand | Running])
DRV - [2006/10/24 10:10:22 | 00,011,792 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\Drivers\SYMDNS.SYS -- (SYMDNS [On_Demand | Running])
DRV - [2006/10/06 10:56:16 | 00,406,672 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv [System | Running])
DRV - [2006/07/24 07:30:00 | 00,036,528 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2006/06/19 11:56:58 | 00,012,672 | ---- | M] (Conexant) -- C:\Windows\System32\DRIVERS\mdmxsdk.sys -- (mdmxsdk [Auto | Running])
DRV - [2005/12/12 13:57:00 | 00,019,072 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\System32\DRIVERS\PS2.sys -- (Ps2 [On_Demand | Stopped])
DRV - [2005/01/31 10:13:22 | 00,163,328 | ---- | M] () -- C:\Windows\System32\DRIVERS\LV532AV.SYS -- (PID_0920 [On_Demand | Running])
DRV - [2005/01/31 10:12:46 | 00,022,016 | ---- | M] (Logitech Inc.) -- C:\Windows\System32\drivers\lvusbsta.sys -- (LVUSBSta [On_Demand | Running])
========== Modules (SafeList) ========== MOD - [2009/10/30 15:31:48 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Tony\Desktop\OTL.exe
MOD - [2006/11/02 07:08:57 | 01,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktopIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://www.google.comIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.ebay.com/IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ========== FF - prefs.js..extensions.enabledItems: {66626640-6461-6E69-656C-6DFC6E746572}:1.0.2
FF - prefs.js..extensions.enabledItems: {9ADE2696-CCD4-4953-B248-0C5439FDCE22}:1.9.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.14
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.14\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/09/15 21:41:12 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.14\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/09/15 21:41:12 | 00,000,000 | ---D | M]
[2009/03/16 01:24:35 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\mozilla\Extensions
[2009/03/16 01:24:35 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/10/29 23:19:07 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\mozilla\Firefox\Profiles\9n6ylkx7.default\extensions
[2008/07/03 20:17:28 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\mozilla\Firefox\Profiles\9n6ylkx7.default\extensions\{66626640-6461-6E69-656C-6DFC6E746572}
[2007/07/07 23:31:18 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/09/15 21:41:12 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/03/16 01:24:29 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\talkback@mozilla.org
[2009/09/15 21:41:02 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/09/15 21:41:02 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2007/04/10 17:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2008/08/06 16:22:02 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2009/09/15 21:41:05 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2007/12/17 04:00:00 | 00,144,984 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2009/07/11 09:01:40 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/07/11 09:01:40 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/07/11 09:01:40 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/07/11 09:01:40 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/07/11 09:01:40 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/07/11 09:01:40 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/07/11 09:01:40 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2007/12/17 04:00:00 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2009/09/15 21:41:06 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml
[2009/09/15 21:41:06 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/09/15 21:41:06 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/09/15 21:41:06 | 00,002,343 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml
[2009/09/15 21:41:06 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/09/15 21:41:06 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/09/15 21:41:06 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml
O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll (Symantec Corporation)
O2 - BHO: (IeCatch5 Class) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\Jccatch.dll (FlashGet)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
O2 - BHO: (gFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll ()
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll File not found
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (FlashGet Bar) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files\FlashGet\fgiebar.dll (Amaze Soft)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Maxtor\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Maxtor\MaxBlast\TimounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [ccApp] c:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [FinePrint Dispatcher v5] C:\Windows\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe (FinePrint Software, LLC)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MaxBlastMonitor.exe] C:\Program Files\Maxtor\MaxBlast\MaxBlastMonitor.exe (Maxtor)
O4 - HKLM..\Run: [MSConfig] C:\Windows\System32\msconfig.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
O4 - HKCU..\Run: [MsnMsgr] C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe (Microsoft Corporation)
O4 - HKCU..\Run: [msnreg] C:\Users\Tony\AppData\Roaming [2009/08/22 00:02:03 | 00,000,000 | ---D | M]
O4 - HKCU..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Wnazihojiseciyop] C:\Users\Tony\AppData\Local\matbdor.DLL (Johnson-Grace Company)
O4 - HKLM..\RunOnce: [Launcher] C:\Windows\SMINST\launcher.exe (soft thinks)
O4 - HKCU..\RunOnce: [Shockwave Updater] C:\Windows\System32\Adobe\SHOCKW~1\SWHELP~3.EXE -Update -1100465 -Mozilla\4.0 ( File not found
O4 - Startup: C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm ()
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll File not found
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83}
http://upload.facebook.com/controls/2008.1...toUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E}
http://www.musicnotes.com/download/mnviewer.cab (Musicnotes Viewer)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700}
http://download.microsoft.com/download/C/0...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {27B05F9E-F6F4-11D3-BCB5-0050DA21A8D6}
https://cado.eservices.gov.nl.ca:8888/nplbwmup.cab (LibertyNET Content Viewer)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
http://fpdownload.macromedia.com/get/flash...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB}
http://tools.ebayimg.com/eps/wl/activex/eB...l_v1-0-29-0.cab (EPUImageControl Class)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab (Java Plug-in 1.5.0_11)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8}
http://3dlifeplayer.dl.3dvia.com/player/in...r_installer.exe (Virtools WebPlayer Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.2.1
O18 - Protocol\Handler\intu-qt2007 {026BF40D-BA05-467b-9F1F-AD0D7A3F5F11} - C:\Program Files\QuickTax 2007\ic2007pp.dll (Intuit Canada, a general partnership/une société en nom collectif.)
O18 - Protocol\Handler\intu-qt2008 {05E53CE9-66C8-4a9e-A99F-FDB7A8E7B596} - C:\Program Files\QuickTax 2008\ic2008pp.dll (Intuit Canada, a general partnership/une société en nom collectif.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (relog_ap) - C:\Windows\System32\relog_ap.dll (Acronis)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/05/30 15:56:50 | 00,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{20b5cbfe-8a1f-11dc-9303-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{20b5cbfe-8a1f-11dc-9303-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{257d403e-7d01-11dc-a577-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{257d403e-7d01-11dc-a577-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{73fe3e82-0c9a-11dd-9884-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{73fe3e82-0c9a-11dd-9884-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{7401ebbf-4bbb-11dc-a015-001a9212e3ff}\Shell\AutoRun\command - "" = K:\autorun.bat -- File not found
O33 - MountPoints2\{873b38bb-c837-11dc-a73a-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{873b38bb-c837-11dc-a73a-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{a61fb5dc-cd97-11dd-8229-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{a61fb5dc-cd97-11dd-8229-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{a750322d-dc59-11dc-b36e-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{a750322d-dc59-11dc-b36e-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{a7503b7f-dc59-11dc-b36e-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{a7503b7f-dc59-11dc-b36e-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{ab680f6e-76a5-11dc-b2dd-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{ab680f6e-76a5-11dc-b2dd-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{b0be988f-9f2f-11dc-ba75-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{b0be988f-9f2f-11dc-ba75-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{bb0a216a-866d-11dc-a969-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{bb0a216a-866d-11dc-a969-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{d666bbd8-a8fd-11dc-a75b-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{d666bbd8-a8fd-11dc-a75b-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\{f06999c9-6e67-11de-b296-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{f06999c9-6e67-11de-b296-001a9212e3ff}\Shell\AutoRun\command - "" = M:\infinidrive.exe -- File not found
O33 - MountPoints2\{fac381c4-9973-11dc-8cb3-001a9212e3ff}\Shell - "" = AutoRun
O33 - MountPoints2\{fac381c4-9973-11dc-8cb3-001a9212e3ff}\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O33 - MountPoints2\K\Shell - "" = AutoRun
O33 - MountPoints2\K\Shell\AutoRun\command - "" = K:\infinidrive.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\Windows\System32\lsdelete.exe ()
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found
========== Files/Folders - Created Within 30 Days ========== [2009/10/28 10:49:41 | 00,000,000 | -H-D | C] -- C:\ProgramData\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
[2009/10/27 22:42:38 | 00,000,000 | ---D | C] -- C:\Users\Tony\AppData\Local\{9ADE2696-CCD4-4953-B248-0C5439FDCE22}
[2009/10/08 11:37:03 | 00,000,000 | ---D | C] -- C:\Program Files\MSECache
[2009/10/30 15:31:40 | 00,521,728 | ---- | C] (OldTimer Tools) -- C:\Users\Tony\Desktop\OTL.exe
[2009/10/28 11:18:22 | 00,000,000 | ---D | C] -- C:\Users\Tony\Documents\Downloads
[2009/10/28 11:16:02 | 00,064,288 | ---- | C] (Lavasoft AB) -- C:\Windows\System32\drivers\Lbd.sys
[2009/10/28 11:15:52 | 00,093,360 | ---- | C] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2009/10/28 08:56:16 | 77,086,488 | ---- | C] (Lavasoft ) -- C:\Users\Tony\Desktop\Ad-AwareInstallation.exe
[2009/10/26 16:58:40 | 00,000,000 | ---D | C] -- C:\Users\Tony\Desktop\Soon
[2009/10/20 05:03:33 | 02,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2009/10/20 05:03:33 | 01,929,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuaueng.dll
[2009/10/20 05:03:33 | 00,053,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuauclt.exe
[2009/10/20 05:03:33 | 00,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2009/10/20 05:03:12 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2009/10/20 05:03:12 | 00,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2009/10/20 05:03:12 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2009/10/20 05:03:04 | 00,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2009/10/20 05:03:04 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2009/10/15 15:02:28 | 00,000,000 | ---D | C] -- C:\Users\Tony\Documents\invitation
[2009/10/03 02:00:23 | 00,195,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2007/07/10 16:50:48 | 00,047,360 | ---- | C] (VSO Software) -- C:\Users\Tony\AppData\Roaming\pcouffin.sys
[2007/07/07 12:54:22 | 00,175,104 | ---- | C] (VMware, Inc.) -- C:\Users\Tony\AppData\Local\ofokajomowap.dll
[2007/07/07 12:54:22 | 00,052,224 | ---- | C] (Johnson-Grace Company) -- C:\Users\Tony\AppData\Local\matbdor.dll
========== Files - Modified Within 30 Days ========== [2009/10/30 15:37:57 | 00,843,167 | ---- | M] () -- C:\Users\Tony\Desktop\SecurityCheck.exe
[2009/10/30 15:31:48 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Tony\Desktop\OTL.exe
[2009/10/30 15:27:37 | 00,050,688 | ---- | M] (Atribune.org) -- C:\Users\Tony\Desktop\ATF-Cleaner.exe
[2009/10/30 15:19:11 | 00,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2009/10/30 15:09:00 | 00,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2009/10/30 14:58:07 | 00,003,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/10/30 14:58:07 | 00,003,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/10/30 13:02:36 | 00,720,952 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/10/30 13:02:36 | 00,625,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/10/30 13:02:36 | 00,108,966 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/10/30 12:58:11 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/10/30 12:58:04 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/10/30 12:41:31 | 02,770,622 | -H-- | M] () -- C:\Users\Tony\AppData\Local\IconCache.db
[2009/10/29 23:33:15 | 00,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{B9F9BA20-01EA-4216-A418-EEA2A5CC3021}.job
[2009/10/28 11:15:47 | 00,093,360 | ---- | M] (Sunbelt Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2009/10/28 11:15:43 | 00,015,880 | ---- | M] () -- C:\Windows\System32\lsdelete.exe
[2009/10/28 10:51:07 | 00,001,973 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2009/10/28 10:49:39 | 00,001,009 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2009/10/28 08:56:20 | 77,086,488 | ---- | M] (Lavasoft ) -- C:\Users\Tony\Desktop\Ad-AwareInstallation.exe
[2009/10/27 22:42:40 | 00,000,000 | ---- | M] () -- C:\Users\Tony\AppData\Local\Mmojok.bin
[2009/10/27 22:42:39 | 00,000,120 | ---- | M] () -- C:\Users\Tony\AppData\Local\Pgekikanujuqod.dat
[2009/10/26 17:43:22 | 00,009,066 | ---- | M] () -- C:\Users\Tony\Desktop\pspbrwse.jbf
[2009/10/24 21:49:56 | 00,104,960 | ---- | M] () -- C:\Users\Tony\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/10/22 10:05:57 | 01,128,392 | ---- | M] () -- C:\Users\Tony\Desktop\Siding Installation.pdf
[2009/10/18 09:03:50 | 00,000,486 | ---- | M] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - Tony.job
[2009/10/16 12:36:16 | 00,059,591 | ---- | M] () -- C:\Users\Tony\Desktop\Soon.pdf
[2009/10/16 12:35:04 | 00,017,164 | ---- | M] () -- C:\Users\Tony\Desktop\soon.jpg
[2009/10/15 15:06:28 | 00,065,030 | ---- | M] () -- C:\Users\Tony\Desktop\soon60th.pdf
[2009/10/08 12:17:40 | 00,322,717 | ---- | M] () -- C:\Users\Tony\Desktop\resarchnl1.pdf
[2009/10/08 12:16:54 | 00,112,670 | ---- | M] () -- C:\Users\Tony\Desktop\resarchnl1.docx
[2009/10/08 10:07:16 | 00,871,257 | ---- | M] () -- C:\Users\Tony\Desktop\iPhone-Apps-New-Media-Life-Cycle-Analysis[1].pdf
[2009/10/06 14:29:50 | 00,026,112 | ---- | M] () -- C:\Users\Tony\Desktop\resignation.doc
[2009/10/01 13:10:06 | 00,780,163 | ---- | M] () -- C:\Users\Tony\Desktop\Sample%20Fat%20Burning%20Workout[1].pdf
[2009/10/01 13:07:46 | 01,840,950 | ---- | M] () -- C:\Users\Tony\Desktop\Turbulence_Training_4-Week_BWW[1].pdf
[2009/10/01 10:29:14 | 00,195,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
========== Files - No Company Name ==========[2009/10/30 15:32:02 | 00,843,167 | ---- | C] () -- C:\Users\Tony\Desktop\SecurityCheck.exe
[2009/10/28 12:21:33 | 00,015,880 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2009/10/28 11:04:20 | 00,000,886 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2009/10/28 11:04:19 | 00,000,882 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2009/10/28 10:51:07 | 00,001,973 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2009/10/28 10:49:39 | 00,001,009 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2009/10/28 08:59:51 | 02,770,622 | -H-- | C] () -- C:\Users\Tony\AppData\Local\IconCache.db
[2009/10/27 22:42:40 | 00,000,000 | ---- | C] () -- C:\Users\Tony\AppData\Local\Mmojok.bin
[2009/10/27 22:42:39 | 00,000,120 | ---- | C] () -- C:\Users\Tony\AppData\Local\Pgekikanujuqod.dat
[2009/10/26 17:43:22 | 00,009,066 | ---- | C] () -- C:\Users\Tony\Desktop\pspbrwse.jbf
[2009/10/22 10:05:57 | 01,128,392 | ---- | C] () -- C:\Users\Tony\Desktop\Siding Installation.pdf
[2009/10/16 12:36:15 | 00,059,591 | ---- | C] () -- C:\Users\Tony\Desktop\Soon.pdf
[2009/10/16 12:35:04 | 00,017,164 | ---- | C] () -- C:\Users\Tony\Desktop\soon.jpg
[2009/10/15 14:58:54 | 00,065,030 | ---- | C] () -- C:\Users\Tony\Desktop\soon60th.pdf
[2009/10/08 11:38:53 | 00,322,717 | ---- | C] () -- C:\Users\Tony\Desktop\resarchnl1.pdf
[2009/10/08 11:33:58 | 00,112,670 | ---- | C] () -- C:\Users\Tony\Desktop\resarchnl1.docx
[2009/10/08 10:07:16 | 00,871,257 | ---- | C] () -- C:\Users\Tony\Desktop\iPhone-Apps-New-Media-Life-Cycle-Analysis[1].pdf
[2009/10/06 14:29:49 | 00,026,112 | ---- | C] () -- C:\Users\Tony\Desktop\resignation.doc
[2009/10/01 13:10:06 | 00,780,163 | ---- | C] () -- C:\Users\Tony\Desktop\Sample%20Fat%20Burning%20Workout[1].pdf
[2009/10/01 13:07:46 | 01,840,950 | ---- | C] () -- C:\Users\Tony\Desktop\Turbulence_Training_4-Week_BWW[1].pdf
[2009/06/23 01:01:20 | 00,081,920 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\ezpinst.exe
[2009/06/22 21:59:56 | 00,001,041 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\vso_ts_preview.xml
[2009/03/31 12:45:58 | 00,000,253 | ---- | C] () -- C:\Windows\SIERRA.INI
[2009/01/24 15:30:45 | 00,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008/01/15 22:21:43 | 00,009,728 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll
[2007/09/13 22:33:35 | 00,000,056 | RHS- | C] () -- C:\Windows\System32\0C2D35BA00.sys
[2007/08/21 13:38:52 | 00,038,420 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\Microsoft Excel 97-2003.ADR
[2007/08/21 07:00:52 | 00,038,425 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\Comma Separated Values (DOS).ADR
[2007/07/28 23:10:10 | 00,000,088 | RHS- | C] () -- C:\Windows\System32\F3A1B96AE9.sys
[2007/07/28 23:10:09 | 00,020,752 | -HS- | C] () -- C:\Windows\System32\KGyGaAvL.sys
[2007/07/17 15:14:18 | 00,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2007/07/16 00:41:17 | 00,065,536 | ---- | C] () -- C:\Windows\System32\dmcrypto.dll
[2007/07/16 00:40:55 | 00,000,135 | ---- | C] () -- C:\Windows\ODBC.INI
[2007/07/16 00:40:54 | 00,159,744 | ---- | C] () -- C:\Windows\System32\hcwChDB.dll
[2007/07/16 00:40:34 | 00,002,296 | ---- | C] () -- C:\Windows\HCWPNP.INI
[2007/07/10 16:51:28 | 00,000,034 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\pcouffin.log
[2007/07/10 16:50:48 | 00,087,608 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\inst.exe
[2007/07/10 16:50:48 | 00,007,176 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\pcouffin.cat
[2007/07/10 16:50:48 | 00,001,144 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\pcouffin.inf
[2007/07/09 19:59:30 | 00,000,680 | ---- | C] () -- C:\Users\Tony\AppData\Local\d3d9caps.dat
[2007/07/07 20:58:33 | 00,237,568 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2007/07/07 16:32:02 | 00,024,206 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\UserTile.png
[2007/07/07 13:18:19 | 00,104,960 | ---- | C] () -- C:\Users\Tony\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/07/07 12:53:49 | 00,110,104 | ---- | C] () -- C:\Users\Tony\AppData\Local\GDIPFONTCACHEV1.DAT
[2007/05/30 15:50:38 | 00,066,048 | ---- | C] () -- C:\Windows\System32\hcwxds.dll
[2007/05/30 15:46:44 | 00,327,680 | ---- | C] () -- C:\Windows\System32\pythoncom24.dll
[2007/05/30 15:46:44 | 00,102,400 | ---- | C] () -- C:\Windows\System32\pywintypes24.dll
[2006/11/09 11:49:08 | 00,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2006/11/02 10:20:50 | 00,000,174 | -HS- | C] () -- C:\Program Files\desktop.ini
[2006/11/02 10:05:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 07:53:31 | 00,000,219 | ---- | C] () -- C:\Windows\win.ini
[2006/11/02 07:53:31 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 06:00:49 | 00,029,698 | ---- | C] () -- C:\Windows\System32\piltsys.dll
[2006/11/02 06:00:49 | 00,025,602 | ---- | C] () -- C:\Windows\System32\llpink_.dll
[2006/11/02 05:10:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/08/11 03:30:40 | 00,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2006/08/11 03:30:40 | 00,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[2005/01/31 10:13:22 | 00,163,328 | ---- | C] () -- C:\Windows\System32\drivers\LV532AV.SYS
[2005/01/31 08:37:58 | 00,009,255 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2004/09/16 17:54:26 | 03,375,104 | ---- | C] () -- C:\Windows\System32\qt-mt331.dll
[2003/10/05 02:02:00 | 00,107,520 | ---- | C] () -- C:\Windows\System32\bxCryptShell.dll
========== LOP Check ========== [2009/08/22 00:02:03 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming
[2007/07/09 23:23:14 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Ahead
[2007/07/11 02:26:28 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Business Logic
[2007/09/26 21:44:00 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Corel
[2008/01/15 22:44:31 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\DemoCreator
[2009/10/10 06:41:14 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\DVD Flick
[2009/01/19 02:21:51 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\dvdcss
[2009/08/26 18:24:06 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\eBookPro6
[2009/04/28 23:11:18 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\FileZilla
[2009/05/26 21:38:42 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Intuit Canada
[2006/11/02 10:07:34 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Media Center Programs
[2007/07/15 21:00:03 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\muvee Technologies
[2007/07/07 16:32:02 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\PeerNetworking
[2007/08/28 18:20:17 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\PPLive
[2007/07/09 10:40:20 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Roxio
[2008/01/30 16:23:50 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\salesforce.com
[2008/08/13 17:59:03 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\SopCast
[2007/12/12 19:16:13 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\TeamViewer
[2007/07/28 22:44:19 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Thinstall
[2009/10/24 23:25:44 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Vso
[2007/07/09 00:19:47 | 00,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\WinBatch
[2007/11/12 01:26:26 | 00,000,252 | ---- | M] () -- C:\Windows\Tasks\Check Updates for Windows Live Toolbar.job
[2009/10/30 15:19:11 | 00,000,882 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2009/10/30 15:09:00 | 00,000,886 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2009/10/18 09:03:50 | 00,000,486 | ---- | M] () -- C:\Windows\Tasks\Norton Internet Security - Run Full System Scan - Tony.job
[2009/10/30 12:58:11 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009/10/30 12:41:55 | 00,032,574 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009/10/29 23:33:15 | 00,000,416 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{B9F9BA20-01EA-4216-A418-EEA2A5CC3021}.job
========== Purity Check ========== < End of report >
Extras
OTL Extras logfile created on: 30/10/2009 3:39:06 PM - Run 1
OTL by OldTimer - Version 3.0.22.1 Folder = C:\Users\Tony\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16851)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy
1.87 Gb Total Physical Memory | 0.91 Gb Available Physical Memory | 48.62% Memory free
3.96 Gb Paging File | 2.91 Gb Available in Paging File | 73.45% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 366.35 Gb Total Space | 141.26 Gb Free Space | 38.56% Space Free | Partition Type: NTFS
Drive D: | 6.26 Gb Total Space | 0.88 Gb Free Space | 14.10% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 279.47 Gb Total Space | 133.91 Gb Free Space | 47.92% Space Free | Partition Type: NTFS
Computer Name: TONY-PC
Current User Name: Tony
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)
========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0D05CA39-9E27-4595-AD89-85C18A500BAA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{0D809ABA-126E-4D98-98E7-D457C446151B}" = lport=139 | protocol=6 | dir=in | app=system |
"{2CA55C33-727F-4E88-A53D-26BA492DA678}" = lport=445 | protocol=6 | dir=in | app=system |
"{4A263406-ACDD-42ED-A43B-8B9271AD80F7}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{606E001E-BE9C-4BBB-BE86-05DF9AE6861A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{9D90F976-553A-4264-B261-1A2C2D16DC1A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{A44267C9-368B-4590-96D7-F3D82B63EDA0}" = rport=445 | protocol=6 | dir=out | app=system |
"{A4706456-E6BA-4672-BB9C-D7EBB7C1C902}" = rport=137 | protocol=17 | dir=out | app=system |
"{B2F6A7D5-4C7E-44F5-9337-E8C27899E58C}" = rport=138 | protocol=17 | dir=out | app=system |
"{D30A102F-3547-477D-8440-5E7DCB09922D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D67832D6-4CBF-4AB6-A300-6371C53DC5EB}" = lport=137 | protocol=17 | dir=in | app=system |
"{EA985282-236C-4E58-AC80-C8716D17F316}" = rport=139 | protocol=6 | dir=out | app=system |
"{FFB9E510-E2D4-4423-BC02-9309DC26539A}" = lport=138 | protocol=17 | dir=in | app=system |
========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{068B6641-E8BF-4D37-84FA-ED50AABA8C88}" = protocol=6 | dir=in | app=c:\program files\pplive\pplive.exe |
"{086AB5C7-7737-417E-BF82-70E4DB6B3DA1}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{0FD08543-A0FF-453E-9C6A-BAD9705D010D}" = protocol=6 | dir=in | app=c:\program files\hp connections\6811507\program\hp connections.exe |
"{181287B1-2ACF-425F-BCF0-A93398587A5C}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{1FCBAA22-D70C-4C3A-BA94-4CB8DEA8040B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{2C9C4865-F044-4FE7-8CB5-B9E078885A6C}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{309F8691-5564-400C-8C03-9B152AABD0EA}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{30CD0501-2B10-4305-A7EE-FB437F88CDEE}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{332FE438-1A90-458D-A2C6-8549A5F3E45C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{45CAEAD4-D7D6-439E-B499-62BB0967368C}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{4758DAAB-284F-4D6C-BD23-C2C8437F2541}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{547CC6E1-3780-4D31-9147-F5FED82B2B36}" = dir=in | app=c:\program files\hp connections\6811507\program\hp connections |
"{57B9ADB9-7404-4C49-8DCC-5E4CD530487F}" = protocol=17 | dir=in | app=c:\program files\hp connections\6811507\program\hp connections.exe |
"{8597529D-71E5-4EE9-9798-46930C35E27E}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{86E94730-8A8F-435E-931E-82A687D0E0F5}" = dir=in | app=c:\program files\windows live\messenger\livecall.exe |
"{897CDD1A-9C1F-43B8-9673-33A95346622B}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{8B740B61-4624-4306-83CC-AE3929170205}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{91B6CA40-14C5-4BE9-9BF7-7A7CA6B71D40}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{9617A20B-EC70-44E8-A80B-40A10937D9DD}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{9E107C75-02BC-46BA-91CD-09A2CF0E2248}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{A7FB0987-A617-452F-AE3E-3E00F895EFB4}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{BBC5F322-63C0-43DA-9E0B-33B5196331A0}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{BEAAA012-B861-4ACB-A267-A2E79AB68E3B}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{CE4B02F0-B26E-480F-86B6-B8832AE943C1}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{D5142952-5D9E-482E-9FDA-1832E0B4C6CE}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe |
"{D7BF74BB-8A6C-4D3B-B19E-9221D71211FA}" = protocol=17 | dir=in | app=c:\program files\hp connections\6811507\program\hp connections.exe |
"{E13C19D1-0FD2-4F90-95A6-A4A8ADBD5AA1}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E476645E-6505-4F18-AC75-5BF1832277A8}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{EF534D78-9BDB-4DDD-B96B-A08BD973B650}" = protocol=6 | dir=in | app=c:\program files\hp connections\6811507\program\hp connections.exe |
"{F29B829F-3483-4FDC-B8A3-D55ABA9B5CC6}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F62F738C-289C-432C-A5A0-D6ABF4953EFF}" = protocol=17 | dir=in | app=c:\program files\pplive\pplive.exe |
"{FB28EDFF-1F51-4312-9B00-2F07A621AF20}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{FEC74F02-9825-4196-9A7D-8CC0968232D5}" = protocol=6 | dir=in | app=c:\program files\hp connections\6811507\program\hp connections.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0373779B-A362-4B2E-B8E9-7442F19F9394}" = HP Total Care Advisor
"{0394CDC8-FABD-4ed8-B104-03393876DFDF}" = Roxio Creator Tools
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0D397393-9B50-4c52-84D5-77E344289F87}" = Roxio Creator Data
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP3500_series" = Canon iP3500 series
"{11F93B4B-48F0-4A4E-AE77-DFA96A99664B}" = Roxio Creator EasyArchive
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{22EC35BD-F8F2-45EB-8DCB-1C7FB65D0A71}" = QuickTax 2007
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2D6ED011-055B-4041-B198-BB903827EBFB}" = Safari
"{2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2}" = SymNet
"{3040C551-A6B8-42EB-894A-B146E805B72A}" = Symantec Real Time Storage Protection Component
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{3248F0A8-6813-11D6-A77B-00B0D0150110}" = J2SE Runtime Environment 5.0 Update 11
"{341201D4-4F61-4ADB-987E-9CCE4D83A58D}" = Windows Live Toolbar Extension (Windows Live Toolbar)
"{3672B097-EA69-4bfe-B92F-29AE6D9D2B34}" = Norton Internet Security
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3B7E4C0D-98E9-45FA-A8D8-5F8D8F3A86C1}" = TaxFreeway 2007
"{3CCAD2EF-CFF2-4637-82AA-AABF370282D3}" = ccCommon
"{40F7AED3-0C7D-4582-99F6-484A515C73F2}" = HP Easy Setup - Frontend
"{48185814-A224-447A-81DA-71BD20580E1B}" = Norton Internet Security
"{4843B611-8FCB-4428-8C23-31D0A5EAE164}" = Norton Confidential Browser Component
"{4AB8665C-A730-4C65-8BB0-A314E7E1D23E}" = Salesforce Outlook Edition 3.2
"{4E868D3D-6EEB-4273-926C-2287236B5B79}" = 3DVIA player 5.0
"{508CE775-4BA4-4748-82DF-FE28DA9F03B0}" = Windows Live Messenger
"{55979C41-7D6A-49CC-B591-64AC1BBE2C8B}" = HP Picasso Media Center Add-In
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}" = Norton Internet Security
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5D601655-6D54-4384-B52C-17EC5385FBBD}" = iTunes
"{5E749AEB-5A19-43BA-BB20-3CBB37539FE4}" = Paint.NET v3.10
"{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
"{75E71ADD-042C-4F30-BFAC-A9EC42351313}" = Python 2.4.3
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.0.0.13
"{7745B7A9-F323-4BB9-9811-01BF57A028DA}" = Map Button (Windows Live Toolbar)
"{77772678-817F-4401-9301-ED1D01A8DA56}" = SPBBC 32bit
"{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}" = Windows Live Favorites for Windows Live Toolbar
"{78C496B9-5A6B-4692-8C2E-AFFFC34E4961}" = Jasc Paint Shop Pro Studio
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX
"{81A60A13-224D-4637-8203-3EAC03B121A4}" = Maxtor MaxBlast
"{830D8CBD-C668-49e2-A969-C2C2106332E0}" = Norton AntiVirus
"{8355F970-601D-442D-A79B-1D7DB4F24CAD}" = Apple Mobile Device Support
"{83FFCFC7-88C6-41c6-8752-958A45325C82}" = Roxio Creator Audio
"{8C6027FD-53DC-446D-BB75-CACD7028A134}" = HP Update
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{430971B1-C31E-45DA-81E0-72C095BAB72C}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{FAD8A83E-9BAC-4179-9268-A35948034D85}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00B2-0409-0000-0000000FF1CE}" = Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{FAD8A83E-9BAC-4179-9268-A35948034D85}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{9422C8EA-B0C6-4197-B8FC-DC797658CA00}" = Windows Live Sign-in Assistant
"{9A129ABC-A53A-4209-A21E-D5DEDFB7CCA8}" = Norton Protection Center
"{9DBA770F-BF73-4D39-B1DF-6035D95268FC}" = HP Customer Feedback
"{A27281BC-98AA-4DC8-AA39-20B9E27B1033}" = InCD Reader
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A5C4AD72-25FE-4899-B6DF-6D8DF63C93CF}" = Highlight Viewer (Windows Live Toolbar)
"{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}" = Windows Live installer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA0D2D5F-612B-45D3-8759-DA87206E5CC9}" = QuickTax 2008
"{AB5E289E-76BF-4251-9F3F-9B763F681AE0}" = HP Customer Experience Enhancements
"{AC76BA86-7AD7-1033-7B44-A70800000002}" = Adobe Reader 7.0.8
"{B7C61755-DB48-4003-948F-3D34DB8EAF69}" = MSRedist
"{B83A15A7-2BD5-4416-BC43-AF5F9A4B08A9}" = muvee autoProducer 5.0
"{BB406CEB-6207-4512-9BB2-89950DC9D6B6}_is1" = ConvertXtoDVD 2.0.16
"{C78EAC6F-7A73-452E-8134-DBB2165C5A68}" = QuickTime
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator Basic v9
"{D353CC51-430D-4C6F-9B7E-52003DA1E05A}" = Norton Confidential Web Protection Component
"{D5A145FC-D00C-4F1A-9119-EB4D9D659750}" = Windows Live Toolbar
"{D6DE02C7-1F47-11D4-9515-00105AE4B89A}" = Paint Shop Pro 7 Try And Buy
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DDBB28C8-B2AA-45A1-8DCE-059A798509FB}" = MobileMe Control Panel
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{DF29A0E2-DF76-4932-98A9-34B441F40486}" = Auction Sentry
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{E3EFA461-EB83-4C3B-9C47-2C1D58A01555}" = Norton Internet Security
"{E5EE9939-259F-4DE2-8023-5C49E16A4F43}" = Norton Internet Security
"{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}" = AppCore
"{F084395C-40FB-4DB3-981C-B51E74E1E83D}" = Smart Menus (Windows Live Toolbar)
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F4DB525F-A986-4249-B98B-42A8066251CA}" = AV
"{F94234DB-FD06-42C3-B88D-6FC4DC9F988C}" = HP Easy Setup - Core
"Ad-Aware" = Ad-Aware
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"AVI Splitter_is1" = AVI Splitter
"CANONIJPLM100" = PIXMA Extended Survey Program
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1" = Soft Data Fax Modem with SmartCP
"CryptoMite" = CryptoMite 2.0x
"DVD Decrypter" = DVD Decrypter (Remove Only)
"DVD Flick_is1" = DVD Flick 1.3.0.6
"DVD Shrink_is1" = DVD Shrink 3.2
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Elecard Codec SDK G4 1.2.1.90504 Eval" = Elecard Codec SDK G4 Eval
"ENTERPRISE" = Microsoft Office Enterprise 2007
"FinePrint" = FinePrint
"FlashGet(JetCar)" = FlashGet(JetCar)
"Google Chrome" = Google Chrome
"Hauppauge WinTV" = Hauppauge WinTV
"Hauppauge WinTV Radio" = Hauppauge WinTV Radio
"Hauppauge WinTV Scheduler" = Hauppauge WinTV Scheduler
"Hauppauge WinTV TV Services" = Hauppauge WinTV TV Services
"Hauppauge WinTV2000" = Hauppauge WinTV2000
"HijackThis" = HijackThis 2.0.2
"HPOOVClient-6811507 Uninstaller" = HP Connections (remove only)
"LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.0.14)" = Mozilla Firefox (3.0.14)
"NVIDIA Drivers" = NVIDIA Drivers
"Okoker All Video Converter&Burner Pro_is1" = Okoker All Video Converter&Burner Pro 4.7
"PC-Doctor 5 for Windows" = Hardware Diagnostic Tools
"PPLive" = PPLive 1.8
"Quick Screen Recorder 1.5_is1" = Quick Screen Recorder 1.5
"RealAlt_is1" = Real Alternative 1.7.0
"SopCast" = SopCast 1.1.2
"SymSetup.{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}" = Norton Internet Security (Symantec Corporation)
"TeamViewer 3" = TeamViewer 3
"VLC media player" = VideoLAN VLC media player 0.8.6c
"WildTangent hpdesktop Master Uninstall" = My HP Games
"Windows Live Toolbar" = Windows Live Toolbar
"WinRAR archiver" = WinRAR archiver
========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"FileZilla Client" = FileZilla Client 3.2.4.1
========== Last 10 Event Log Errors ========== [ Application Events ]
Error - 13/08/2008 11:03:30 AM | Computer Name = Tony-PC | Source = MsiInstaller | ID = 11706
Description =
Error - 13/08/2008 11:03:30 AM | Computer Name = Tony-PC | Source = MsiInstaller | ID = 1024
Description =
Error - 28/08/2008 9:56:24 PM | Computer Name = Tony-PC | Source = Application Error | ID = 1000
Description = Faulting application firefox.exe, version 1.8.20080.4669, time stamp
0x486b7b35, faulting module firefox.exe, version 1.8.20080.4669, time stamp 0x486b7b35,
exception code 0xc0000005, fault offset 0x00252a84, process id 0x1134, application
start time 0x01c909797d1d97fb.
Error - 30/08/2008 5:46:11 PM | Computer Name = Tony-PC | Source = Automatic LiveUpdate Scheduler | ID = 101
Description = Information Level: error Initialization of the COM subsystem failed.
Error code: 0x8007041D
Error - 03/09/2008 7:33:19 PM | Computer Name = Tony-PC | Source = Application Hang | ID = 1002
Description = The program vlc.exe version 0.8.6.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Problem Reports and Solutions control panel. Process
ID: 1064 Start Time: 01c90e1d58f6185b Termination Time: 10
Error - 03/09/2008 7:34:57 PM | Computer Name = Tony-PC | Source = Application Hang | ID = 1002
Description = The program vlc.exe version 0.8.6.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Problem Reports and Solutions control panel. Process
ID: 1450 Start Time: 01c90e1d95ed8c2b Termination Time: 16
Error - 05/09/2008 8:02:32 PM | Computer Name = Tony-PC | Source = Application Error | ID = 1000
Description = Faulting application vlc.exe, version 0.8.6.0, time stamp 0x4675098d,
faulting module libwxwidgets_plugin.dll, version 0.0.0.0, time stamp 0x46750990,
exception code 0xc0000005, fault offset 0x0011b2f9, process id 0x16e8, application
start time 0x01c90fb3912c3d36.
Error - 06/09/2008 12:08:24 AM | Computer Name = Tony-PC | Source = Application Error | ID = 1000
Description = Faulting application vlc.exe, version 0.8.6.0, time stamp 0x4675098d,
faulting module libvlc.dll, version 0.0.0.0, time stamp 0x4675098d, exception code
0xc0000005, fault offset 0x0001b812, process id 0xcb4, application start time 0x01c90fd60357de66.
Error - 06/09/2008 2:54:46 AM | Computer Name = Tony-PC | Source = Application Error | ID = 1000
Description = Faulting application vlc.exe, version 0.8.6.0, time stamp 0x4675098d,
faulting module libvlc.dll, version 0.0.0.0, time stamp 0x4675098d, exception code
0xc0000005, fault offset 0x0001b82a, process id 0xd3c, application start time 0x01c90fed6307fef6.
Error - 06/09/2008 6:24:02 PM | Computer Name = Tony-PC | Source = Application Error | ID = 1000
Description = Faulting application wmplayer.exe, version 11.0.6000.6344, time stamp
0x46e5f12e, faulting module hcw_mcl2ad.ax, version 1.0.2.60524, time stamp 0x45126815,
exception code 0xc0000094, fault offset 0x000056b5, process id 0x147c, application
start time 0x01c9106f42aa19a0.
[ Media Center Events ]
Error - 16/04/2008 3:05:50 PM | Computer Name = Tony-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.
Error - 01/05/2008 10:54:19 PM | Computer Name = Tony-PC | Source = Recording | ID = 19
Description = The recording schedule has been corrupted and was automatically deleted
on 05/02/2008 00:24:19. You may need to reschedule your recordings.
[ System Events ]
Error - 27/10/2009 10:23:09 PM | Computer Name = Tony-PC | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS does not contain an IRQ for the device in PCI slot
2, function 0. Please contact your system vendor for technical assistance.
Error - 27/10/2009 10:23:09 PM | Computer Name = Tony-PC | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS does not contain an IRQ for the device in PCI slot
4, function 0. Please contact your system vendor for technical assistance.
Error - 27/10/2009 10:25:11 PM | Computer Name = Tony-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 28/10/2009 7:31:13 AM | Computer Name = Tony-PC | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS does not contain an IRQ for the device in PCI slot
2, function 0. Please contact your system vendor for technical assistance.
Error - 28/10/2009 7:31:13 AM | Computer Name = Tony-PC | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS does not contain an IRQ for the device in PCI slot
4, function 0. Please contact your system vendor for technical assistance.
Error - 30/10/2009 11:12:55 AM | Computer Name = Tony-PC | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS does not contain an IRQ for the device in PCI slot
2, function 0. Please contact your system vendor for technical assistance.
Error - 30/10/2009 11:12:55 AM | Computer Name = Tony-PC | Source = ACPI | ID = 327686
Description = IRQARB: ACPI BIOS does not contain an IRQ for the device in PCI slot
4, function 0. Please contact your system vendor for technical assistance.
Error - 30/10/2009 11:13:46 AM | Computer Name = Tony-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 30/10/2009 11:28:04 AM | Computer Name = Tony-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 12:56:13 PM on 30/10/2009 was unexpected.
Error - 30/10/2009 11:28:21 AM | Computer Name = Tony-PC | Source = Service Control Manager | ID = 7000
Description =
< End of report >
Results of screen317's Security Check version 0.99.0
Windows Vista (UAC is enabled)
Out of date service pack!! ``````````````````````````````
Antivirus/Firewall Check: Windows Firewall Disabled!
Norton AntiVirus
Norton Internet Security (Symantec Corporation)
Norton Internet Security
Norton Internet Security
Norton Internet Security
Norton Internet Security
Norton Internet Security
Antivirus out of date! (On Access scanning
disabled!)
``````````````````````````````
Anti-malware/Other Utilities Check: Ad-Aware
HijackThis 2.0.2
Adobe Flash Player 10
Adobe Reader 7.0.8
Out of date Adobe Reader installed! ``````````````````````````````
Process Check:
objlist.exe by Laurent Norton ccSvcHst.exe
Windows Defender MSASCui.exe
Ad-Aware AAWService.exe is disabled! Ad-Aware AAWTray.exe is disabled! ``````````````````````````````
DNS Vulnerability Check: GOOD! (Not vulnerable to DNS cache poisoning)
`````````End of Log```````````