OTL logfile created on: 12/7/2009 12:09:48 PM - Run 1
OTL by OldTimer - Version 3.1.11.8 Folder = C:\Documents and Settings\COLABUTTERFLY24\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
511.01 Mb Total Physical Memory | 226.61 Mb Available Physical Memory | 44.35% Memory free
1.22 Gb Paging File | 0.97 Gb Available in Paging File | 79.70% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37.27 Gb Total Space | 5.85 Gb Free Space | 15.70% Space Free | Partition Type: NTFS
Drive D: | 633.38 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 74.50 Gb Total Space | 42.75 Gb Free Space | 57.39% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: NICOLA
Current User Name: COLABUTTERFLY24
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan
========== Processes (SafeList) ========== PRC - [2009/12/07 09:51:41 | 00,537,088 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\OTL.exe
PRC - [2009/12/06 22:31:55 | 00,060,928 | ---- | M] () -- C:\WINDOWS\system32\winupdate86.exe
PRC - [2009/07/09 06:45:43 | 00,487,424 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\sp_rsser.exe
PRC - [2008/09/10 17:40:06 | 00,289,576 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2008/09/10 17:39:48 | 00,536,872 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2008/09/10 16:50:26 | 00,116,040 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2008/08/29 10:18:44 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/04/13 19:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/01/11 04:02:00 | 00,113,664 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Documents and Settings\All Users.WINDOWS\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
PRC - [2006/11/02 20:40:12 | 00,174,656 | ---- | M] () -- C:\WINDOWS\system32\PSIService.exe
PRC - [2006/10/18 20:05:26 | 00,204,288 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2005/02/22 15:32:14 | 00,038,912 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2003/05/02 09:53:38 | 00,057,344 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\SBAudigy LS\Surround Mixer\CTSysVol.exe
PRC - [1999/12/13 01:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE
========== Modules (SafeList) ========== MOD - [2009/12/07 09:51:41 | 00,537,088 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\OTL.exe
MOD - [2009/09/07 09:57:40 | 00,092,672 | -HS- | M] () -- C:\WINDOWS\system32\fivipute.dll
MOD - [2009/08/29 16:47:21 | 00,052,736 | -HS- | M] () -- C:\WINDOWS\system32\dapavama.dll
MOD - [2003/07/16 15:48:47 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\umdmxfrm.dll
MOD - [2003/07/16 15:44:24 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\serwvdrv.dll
========== Win32 Services (SafeList) ========== SRV - File not found -- -- (Siiapdaccma)
SRV - [2009/07/09 06:45:43 | 00,487,424 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2008/09/10 17:39:48 | 00,536,872 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2008/09/10 16:50:26 | 00,116,040 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2008/08/29 10:18:44 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2007/01/19 12:54:14 | 00,097,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Messenger\usnsvc.exe -- (usnjsvc)
SRV - [2007/01/11 04:02:00 | 00,113,664 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Documents and Settings\All Users.WINDOWS\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE -- (EPSON_PM_RPCV4_01) EPSON V3 Service4(01)
SRV - [2006/11/02 20:40:12 | 00,174,656 | ---- | M] () -- C:\WINDOWS\system32\PSIService.exe -- (ProtexisLicensing)
SRV - [2005/05/25 10:44:30 | 00,069,632 | ---- | M] (Adobe Systems) -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
SRV - [2005/02/22 15:32:14 | 00,038,912 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2004/10/22 03:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/03/18 15:55:48 | 00,065,536 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [1999/12/13 01:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE -- (Creative Service for CDROM Access)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ========== FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "
http://www.msn.com/"FF - prefs.js..extensions.enabledItems: {75623d5d-4683-402a-b610-ac4bab767c86}:3.0.1
FF - prefs.js..extensions.enabledItems:
[email protected]:1.3
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/17 21:21:03 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/11/22 21:07:14 | 00,000,000 | ---D | M]
[2009/10/11 13:04:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Extensions
[2009/10/11 13:04:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Extensions\
[email protected][2009/12/06 22:12:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\extensions
[2009/09/01 10:21:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\extensions\{75623d5d-4683-402a-b610-ac4bab767c86}
[2009/08/05 16:34:40 | 00,002,172 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\bing.xml
[2009/08/05 16:38:07 | 00,002,262 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\compare-hotel-rates.xml
[2009/12/05 20:51:10 | 00,002,243 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\cooklegr-recipes.xml
[2009/08/05 16:38:28 | 00,000,939 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\dictionary.xml
[2009/08/05 16:38:41 | 00,011,394 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\discount-electronics.xml
[2009/08/05 17:34:38 | 00,001,352 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\epicurious.xml
[2009/08/05 16:36:34 | 00,001,850 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\gocook-recipe-search.xml
[2009/08/05 17:33:26 | 00,001,245 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\goodguide.xml
[2009/08/05 16:43:20 | 00,001,626 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\mozilla-add-ons.xml
[2009/11/30 15:02:33 | 00,002,291 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\surf-canyon.xml
[2009/08/05 16:36:18 | 00,002,679 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Mozilla\Firefox\Profiles\awryoa60.default\searchplugins\wal-mart.xml
[2009/12/07 07:11:58 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2006/07/31 13:41:00 | 00,364,544 | ---- | M] (BrightStreet.com) -- C:\Program Files\Mozilla Firefox\plugins\NPcol305.dll
[2003/11/18 13:37:32 | 00,241,664 | ---- | M] (Musicnotes, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npmusicn.dll
[2008/10/15 13:32:41 | 00,221,184 | ---- | M] (CNN) -- C:\Program Files\Mozilla Firefox\plugins\NPTURNMED.dll
[2009/09/21 12:24:16 | 00,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml
O1 HOSTS File: (23 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {5BED3930-2E9E-76D8-BACC-80DF2188D455} - No CLSID value found.
O4 - HKLM..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy LS\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
O4 - HKLM..\Run: [ridurisaw] C:\WINDOWS\System32\fivipute.DLL ()
O4 - HKLM..\Run: [SpywareTerminator] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com)
O4 - HKLM..\Run: [winupdate86.exe] C:\WINDOWS\system32\winupdate86.exe ()
O4 - HKCU..\Run: [] File not found
O4 - HKCU..\Run: [ccleaner] G:\PROGRAM FILES\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKCU..\Run: [SmartPCSchedule] G:\PROGRAM FILES\Smart PC\SmartPCSchedule.exe (Smart PC Solutions)
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\COLABUTTERFLY24\Start Menu\Programs\Startup\LimeWire On Startup.lnk = G:\PROGRAM FILES\LimeWire\LimeWire.exe (Lime Wire, LLC)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Main present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetActiveDesktop = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\npjpi160_02.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - Reg Error: Key error. File not found
O9 - Extra Button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - File not found
O9 - Extra Button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - File not found
O9 - Extra Button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: blackplanet.com ([www] * in Trusted sites)
O15 - HKCU\..Trusted Domains: 2 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED}
https://activatemyfi...IOS/tgctlcm.cab (Reg Error: Key error.)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089}
http://office.micros...tes/ieawsdc.cab (Reg Error: Key error.)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}
http://a1540.g.akama...ex/qtplugin.cab (QuickTime Object)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700}
http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3}
http://a516.g.akamai...cat-no-eula.cab (Citrix ICA Client)
O16 - DPF: {54823A9D-6BAE-11D5-B519-0050BA2413EB}
http://www.gocyberli...xp/CheckDVD.cab (Reg Error: Key error.)
O16 - DPF: {70522FA2-4656-11D5-B0E9-0050DAC24E8F}
http://cc.iwon.com/c..._12_1,0,2,5.exe (Reg Error: Key error.)
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB}
http://www.worldwinn...ed/wwlaunch.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A}
http://lads.myspace....ceUploader2.cab (MySpace Uploader Control)
O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_11)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: Microsoft XML Parser for Java file:///C:/WINDOWS/Java/classes/xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (dapavama.dll) - C:\WINDOWS\System32\dapavama.dll ()
O20 - AppInit_DLLs: (c:\windows\system32\fivipute.dll) - C:\WINDOWS\system32\fivipute.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: System - (csfoi.exe) - File not found
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\winlogon86.exe) - C:\WINDOWS\system32\winlogon86.exe ()
O21 - SSODL: foguzaney - {490ef895-29da-4ce3-8c19-775f4af60895} - C:\WINDOWS\system32\fivipute.dll ()
O22 - SharedTaskScheduler: {490ef895-29da-4ce3-8c19-775f4af60895} - jugezatag - C:\WINDOWS\system32\fivipute.dll ()
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2003/08/14 18:02:08 | 00,000,041 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{5eaff326-b4b8-11dc-8a77-0080ad7a5ac8}\Shell - "" = AutoRun
O33 - MountPoints2\{5eaff326-b4b8-11dc-8a77-0080ad7a5ac8}\Shell\AutoRun - "" = Auto&Play
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2004/12/13 02:35:57 | 00,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
MsConfig - StartUpFolder: C:^Documents and Settings^All Users.WINDOWS^Start Menu^Programs^Startup^Nikon Monitor.lnk - C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe - (Nikon Corporation)
MsConfig - StartUpReg:
EPSON Stylus CX9400Fax Series - hkey= - key= - File not found
MsConfig - StartUpReg:
VerizonServicepoint.exe - hkey= - key= - C:\Program Files\Verizon\VSP\VerizonServicepoint.exe File not found
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 0
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: UploadMgr - Service
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
ActiveX: {0291E591-EA41-4c82-8106-3DC6CE7F7664} -
ActiveX: {02f78298-8af6-495c-9ecb-b6ae68678186} - KB867282
ActiveX: {03F998B2-0E00-11D3-A498-00104B6EB52E} - Viewpoint Media Player
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Microsoft VM
ActiveX: {0A136513-5648-538B-A76E-45C561CE8A78} - Vector Graphics Rendering (VML)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} - Viewpoint Media Player
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {233C1507-6A77-46A4-9443-F871F945D258} - Adobe Shockwave Director 11.0
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Adobe Shockwave Director 11.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} -
ActiveX: {347B0667-C7ED-429B-BDE3-CC8D3BACAA31} -
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - Microsoft DirectX
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5f3c70b3-ac2f-432c-8f9c-1624df61f54f} - Microsoft Data Access Components KB870669
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {839117ee-2132-4bae-a56a-42b50204c9b9} - KB889293
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {A17E30C4-A9BA-11D4-8673-60DB54C10000} -
ActiveX: {A2E877DB-771B-4EB0-A15B-94F5E93FF484} - Outlook Express
ActiveX: {AA218328-0EA8-4D70-8972-E987A9190FF4} -
ActiveX: {B508B3F1-A24A-32C0-B310-85786919EF28} - .NET Framework
ActiveX: {BAC01377-73DD-4796-854D-2A8997E3D68A} - Yahoo! Photos Drag-Drop Uploader 1v6
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {DAA94A2A-2A8D-4D3B-9DB8-56FBECED082D} - Microsoft .NET Framework 1.1 Security Update (KB953297)
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - Reg Error: Value error.
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {f5173cf0-1dfb-4978-8e50-a90169ee7ca9} - Q823353
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
ActiveX: Microsoft Base Smart Card Crypto Provider Package -
Drivers32: MSACM.G723 - C:\WINDOWS\System32\G723.ACM (Intel Corporation)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corp.)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.voxacm160 - C:\WINDOWS\System32\vct3216.acm (Voxware, Inc.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.HFYU - C:\WINDOWS\System32\HUFFYUV.DLL (Disappearing Inc.)
Drivers32: vidc.I263 - C:\WINDOWS\System32\i263_32.drv (Intel Corporation)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: VIDC.WMV3 - C:\WINDOWS\System32\wmv9vcm.dll (Microsoft Corporation)
Drivers32: wave - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)
========== Files/Folders - Created Within 14 Days ========== [2009/12/07 11:59:51 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\COLABUTTERFLY24\Recent
[2009/12/07 11:40:31 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/12/07 11:05:22 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\HJTInstall.exe
[2009/12/07 10:13:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Malwarebytes
[2009/12/07 10:13:21 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/12/07 10:06:01 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009/12/07 09:51:41 | 00,537,088 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\OTL.exe
[2009/12/07 09:46:55 | 00,021,504 | ---- | C] (Doug Knox) -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\SysRestorePoint.exe
[2009/12/07 09:46:22 | 00,343,040 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\TFC.exe
[2009/12/07 06:52:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\SmitfraudFix
[2009/12/06 23:37:44 | 00,000,000 | -HSD | C] -- C:\Config.Msi
[2009/11/25 16:01:45 | 00,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2006/12/27 19:32:03 | 00,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\pcouffin.sys
[2004/12/13 00:07:38 | 00,065,536 | ---- | C] ( ) -- C:\WINDOWS\System32\A3d.dll
[2004/10/10 22:44:02 | 00,036,963 | R--- | C] (Cypress Semiconductor) -- C:\Program Files\Common Files\SM1updtr.dll
[2001/08/23 07:00:00 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\Program Files\Common Files\msado25.tlb
========== Files - Modified Within 14 Days ========== [2009/12/07 12:17:47 | 00,006,456 | -H-- | M] () -- C:\WINDOWS\System32\zesahimo
[2009/12/07 12:00:10 | 00,000,296 | ---- | M] () -- C:\WINDOWS\tasks\urenmrgl.job
[2009/12/07 11:59:50 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\41.exe
[2009/12/07 11:59:47 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\AVR10.exe
[2009/12/07 11:59:43 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\winhelper86.dll
[2009/12/07 11:59:34 | 00,002,854 | ---- | M] () -- C:\WINDOWS\System32\critical_warning.html
[2009/12/07 11:58:59 | 00,013,758 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/12/07 11:58:33 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/12/07 11:58:26 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/12/07 11:41:46 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15724.exe
[2009/12/07 11:40:32 | 00,001,739 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\HijackThis.lnk
[2009/12/07 11:21:40 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19169.exe
[2009/12/07 11:05:23 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\HJTInstall.exe
[2009/12/07 11:01:37 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26500.exe
[2009/12/07 10:41:33 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6334.exe
[2009/12/07 10:21:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18467.exe
[2009/12/07 10:05:02 | 00,000,515 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\NTREGOPT.lnk
[2009/12/07 10:05:02 | 00,000,502 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\ERUNT.lnk
[2009/12/07 09:58:19 | 09,437,184 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\NTUSER.DAT
[2009/12/07 09:58:19 | 00,000,278 | -HS- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\ntuser.ini
[2009/12/07 09:51:41 | 00,537,088 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\OTL.exe
[2009/12/07 09:46:56 | 00,021,504 | ---- | M] (Doug Knox) -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\SysRestorePoint.exe
[2009/12/07 09:46:23 | 00,343,040 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\TFC.exe
[2009/12/07 09:03:00 | 00,000,316 | ---- | M] () -- C:\WINDOWS\tasks\SystemTuneUp Maintenance.job
[2009/12/07 07:24:13 | 03,244,812 | -H-- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Local Settings\Application Data\IconCache.db
[2009/12/07 06:47:34 | 01,872,472 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\SmitfraudFix.exe
[2009/12/07 06:34:06 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4827.exe
[2009/12/07 06:14:04 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11942.exe
[2009/12/07 05:54:01 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\2995.exe
[2009/12/07 05:33:59 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\491.exe
[2009/12/07 05:13:56 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9961.exe
[2009/12/07 04:53:53 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16827.exe
[2009/12/07 04:33:51 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23281.exe
[2009/12/07 04:13:47 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28145.exe
[2009/12/07 03:53:45 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\5705.exe
[2009/12/07 03:33:43 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24464.exe
[2009/12/07 03:30:00 | 00,000,378 | ---- | M] () -- C:\WINDOWS\tasks\ErrorSmart Scheduled Scan.job
[2009/12/07 03:13:40 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26962.exe
[2009/12/07 02:53:36 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\29358.exe
[2009/12/07 02:33:34 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11478.exe
[2009/12/07 00:05:57 | 00,548,348 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/12/07 00:05:57 | 00,100,654 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/12/06 23:29:23 | 00,161,384 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/12/06 22:31:55 | 00,060,928 | ---- | M] () -- C:\WINDOWS\System32\winupdate86.exe
[2009/12/06 22:31:55 | 00,060,928 | ---- | M] () -- C:\WINDOWS\System32\winlogon86.exe
[2009/12/04 18:44:46 | 03,512,808 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\My Documents\SAVii iNC-4 Fingahz Up_Prod.By Jay Nari_.mp3
[2009/12/04 11:29:49 | 00,483,520 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/12/04 02:06:27 | 00,024,064 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\My Documents\Work cited.doc
[2009/12/04 01:45:27 | 00,031,232 | ---- | M] () -- C:\Documents and Settings\COLABUTTERFLY24\My Documents\Love Kimbl1.doc
[2009/12/03 21:06:56 | 00,000,001 | -HS- | M] () -- C:\WINDOWS\System32\vihevavi.dll
[2009/11/30 10:00:10 | 00,001,519 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Greeting Card Factory Express.lnk
[2009/11/28 21:23:43 | 00,002,137 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\iTunes.lnk
========== Files Created - No Company Name ========== [2009/12/07 11:40:31 | 00,001,739 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\HijackThis.lnk
[2009/12/07 10:05:02 | 00,000,515 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\NTREGOPT.lnk
[2009/12/07 10:05:02 | 00,000,502 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\ERUNT.lnk
[2009/12/07 06:47:29 | 01,872,472 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Desktop\SmitfraudFix.exe
[2009/12/07 06:34:06 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4827.exe
[2009/12/07 06:14:04 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11942.exe
[2009/12/07 05:54:01 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\2995.exe
[2009/12/07 05:33:59 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\491.exe
[2009/12/07 05:13:56 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9961.exe
[2009/12/07 04:53:53 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16827.exe
[2009/12/07 04:33:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23281.exe
[2009/12/07 04:13:47 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28145.exe
[2009/12/07 03:53:45 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\5705.exe
[2009/12/07 03:33:43 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24464.exe
[2009/12/07 03:13:40 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26962.exe
[2009/12/07 02:53:36 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\29358.exe
[2009/12/07 02:33:34 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11478.exe
[2009/12/07 00:13:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15724.exe
[2009/12/06 23:53:40 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19169.exe
[2009/12/06 23:33:32 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26500.exe
[2009/12/06 23:13:03 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6334.exe
[2009/12/06 22:53:00 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18467.exe
[2009/12/06 22:32:57 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\41.exe
[2009/12/06 22:32:53 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\AVR10.exe
[2009/12/06 22:32:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\winhelper86.dll
[2009/12/06 22:32:20 | 00,002,854 | ---- | C] () -- C:\WINDOWS\System32\critical_warning.html
[2009/12/06 22:32:08 | 00,060,928 | ---- | C] () -- C:\WINDOWS\System32\winupdate86.exe
[2009/12/06 22:32:08 | 00,060,928 | ---- | C] () -- C:\WINDOWS\System32\winlogon86.exe
[2009/12/04 18:43:58 | 03,512,808 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\My Documents\SAVii iNC-4 Fingahz Up_Prod.By Jay Nari_.mp3
[2009/12/04 02:04:47 | 00,024,064 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\My Documents\Work cited.doc
[2009/12/04 01:30:58 | 00,031,232 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\My Documents\Love Kimbl1.doc
[2009/12/03 21:06:56 | 00,000,001 | -HS- | C] () -- C:\WINDOWS\System32\vihevavi.dll
[2009/11/30 20:29:13 | 00,000,296 | ---- | C] () -- C:\WINDOWS\tasks\urenmrgl.job
[2009/09/07 09:57:40 | 00,092,672 | -HS- | C] () -- C:\WINDOWS\System32\fivipute.dll
[2009/09/07 09:57:40 | 00,038,400 | -HS- | C] () -- C:\WINDOWS\System32\mibevilo.dll
[2009/09/06 21:57:30 | 00,038,912 | -HS- | C] () -- C:\WINDOWS\System32\diyobela.dll
[2009/09/05 21:07:21 | 00,038,400 | -HS- | C] () -- C:\WINDOWS\System32\rujafimo.dll
[2009/09/05 09:07:14 | 00,092,672 | -HS- | C] () -- C:\WINDOWS\System32\rasawofu.dll
[2009/09/05 09:07:14 | 00,039,424 | -HS- | C] () -- C:\WINDOWS\System32\tuvujuka.dll
[2009/09/04 21:06:55 | 00,091,648 | -HS- | C] () -- C:\WINDOWS\System32\zizarino.dll
[2009/09/04 21:06:55 | 00,038,912 | -HS- | C] () -- C:\WINDOWS\System32\towozoha.dll
[2009/09/04 09:06:52 | 00,092,160 | -HS- | C] () -- C:\WINDOWS\System32\veketaha.dll
[2009/09/04 09:06:52 | 00,038,400 | -HS- | C] () -- C:\WINDOWS\System32\vufosesa.dll
[2009/09/03 21:06:42 | 00,000,001 | -HS- | C] () -- C:\WINDOWS\System32\vetagama.dll
[2009/09/03 21:06:41 | 00,038,400 | -HS- | C] () -- C:\WINDOWS\System32\tubesola.dll
[2009/09/03 09:06:25 | 00,038,912 | -HS- | C] () -- C:\WINDOWS\System32\repeseza.dll
[2009/09/02 21:05:57 | 00,038,400 | -HS- | C] () -- C:\WINDOWS\System32\yenagafi.dll
[2009/09/02 09:05:55 | 00,038,400 | -HS- | C] () -- C:\WINDOWS\System32\rimolodo.dll
[2009/09/01 20:29:42 | 00,038,912 | -HS- | C] () -- C:\WINDOWS\System32\kazepala.dll
[2009/09/01 08:29:16 | 00,039,424 | -HS- | C] () -- C:\WINDOWS\System32\sosikavo.dll
[2009/08/31 20:29:11 | 00,092,160 | -HS- | C] () -- C:\WINDOWS\System32\sizehawi.dll
[2009/08/31 20:29:11 | 00,061,952 | -HS- | C] () -- C:\WINDOWS\System32\huposufi.dll
[2009/08/31 20:29:11 | 00,039,424 | -HS- | C] () -- C:\WINDOWS\System32\peritohu.dll
[2009/08/30 08:29:21 | 00,038,400 | -HS- | C] () -- C:\WINDOWS\System32\nonomaso.dll
[2009/08/29 16:47:21 | 00,052,736 | -HS- | C] () -- C:\WINDOWS\System32\risowupa.dll
[2009/08/29 16:47:21 | 00,052,736 | -HS- | C] () -- C:\WINDOWS\System32\kiropevu.dll
[2009/08/29 16:47:21 | 00,052,736 | -HS- | C] () -- C:\WINDOWS\System32\dapavama.dll
[2009/08/29 16:46:48 | 00,094,208 | -HS- | C] () -- C:\WINDOWS\System32\fekabota.dll
[2009/08/29 16:46:48 | 00,052,736 | -HS- | C] () -- C:\WINDOWS\System32\pihuzura.dll
[2009/08/29 16:46:48 | 00,039,424 | -HS- | C] () -- C:\WINDOWS\System32\wirijepi.dll
[2009/08/28 15:36:52 | 00,093,696 | -HS- | C] () -- C:\WINDOWS\System32\pagapobo.dll
[2009/08/28 15:36:52 | 00,039,424 | -HS- | C] () -- C:\WINDOWS\System32\gukehere.dll
[2009/03/29 11:21:37 | 00,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Plug-In Settings
[2009/03/29 11:21:37 | 00,000,268 | RH-- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Pick Bass
[2009/03/29 11:21:37 | 00,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PKP_DLdu.DAT
[2009/03/17 11:04:12 | 00,142,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2008/03/12 13:23:03 | 00,001,028 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\WavCodec.wff
[2008/02/19 16:21:08 | 00,000,044 | ---- | C] () -- C:\WINDOWS\EPSCX9400Fax.ini
[2008/01/22 22:06:47 | 00,000,080 | RHS- | C] () -- C:\WINDOWS\System32\C6CCBAB1DD.dll
[2008/01/07 18:53:23 | 00,000,088 | RHS- | C] () -- C:\WINDOWS\System32\DDB1BACCC6.sys
[2008/01/07 18:53:22 | 00,002,828 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2007/08/25 17:07:44 | 00,000,031 | ---- | C] () -- C:\WINDOWS\CTWave32.ini
[2007/07/30 19:11:56 | 00,000,050 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2007/07/30 18:10:31 | 00,000,011 | ---- | C] () -- C:\WINDOWS\PrintWorkShop2007.ini
[2007/02/22 13:57:40 | 00,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2007/01/19 17:18:28 | 00,000,014 | ---- | C] () -- C:\WINDOWS\System32\SysEngine2.SYS
[2007/01/07 14:33:21 | 02,255,360 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2007/01/07 14:33:21 | 00,395,776 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2007/01/07 14:33:21 | 00,262,144 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll
[2007/01/07 14:33:21 | 00,112,640 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll
[2007/01/07 01:10:04 | 00,027,136 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/12/27 22:44:05 | 00,000,125 | -HS- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\.zreglib
[2006/12/27 19:33:11 | 00,000,033 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\pcouffin.log
[2006/12/27 19:32:04 | 00,087,608 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\ezpinst.exe
[2006/12/27 19:32:03 | 00,007,824 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\pcouffin.cat
[2006/12/27 19:32:03 | 00,001,144 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\pcouffin.inf
[2006/12/27 03:22:14 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006/08/11 21:45:20 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/08/11 21:43:10 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006/08/11 21:43:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/08/11 21:43:00 | 01,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006/08/11 21:43:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/08/11 21:43:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006/08/11 21:43:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/08/10 12:08:36 | 00,006,188 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\GdiplusUpgrade_MSIApproach_Wrapper.log
[2006/08/10 12:08:36 | 00,000,206 | ---- | C] () -- C:\WINDOWS\HPGdiPlus.ini
[2006/07/20 14:37:08 | 00,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2006/05/02 17:26:01 | 00,000,445 | R--- | C] () -- C:\WINDOWS\System32\iconcfg.ini
[2006/04/26 13:59:56 | 00,000,011 | ---- | C] () -- C:\WINDOWS\PrintWorkShop2006.ini
[2006/04/19 08:46:41 | 00,001,747 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\QTSBandwidthCache
[2005/12/29 14:41:39 | 00,000,138 | ---- | C] () -- C:\Documents and Settings\COLABUTTERFLY24\Local Settings\Application Data\fusioncache.dat
[2005/12/29 00:06:25 | 00,001,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\zpmodemnt.sys
[2005/12/26 14:20:38 | 00,007,207 | R--- | C] () -- C:\WINDOWS\Disktool.INI
[2005/12/26 14:20:38 | 00,006,399 | R--- | C] () -- C:\WINDOWS\fwupgrade.ini
[2005/12/26 14:20:38 | 00,003,677 | R--- | C] () -- C:\WINDOWS\PlaySnd.INI
[2005/12/20 13:50:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Unsetup.INI
[2005/12/17 16:01:08 | 00,002,720 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2005/11/26 23:29:34 | 00,000,509 | ---- | C] () -- C:\Program Files\Copy of Yahoo!.lnk
[2005/11/26 21:47:32 | 00,000,509 | ---- | C] () -- C:\Program Files\Yahoo!
[2005/11/18 17:39:08 | 00,000,092 | ---- | C] () -- C:\WINDOWS\System32\ftdiun2k.ini
[2005/09/18 01:04:17 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\avisynth.dll
[2005/09/16 01:48:52 | 00,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2005/09/08 08:10:55 | 00,000,867 | ---- | C] () -- C:\WINDOWS\tecut.dll
[2005/08/11 12:47:38 | 00,000,023 | ---- | C] () -- C:\WINDOWS\MixBKS.INI
[2005/08/09 17:13:31 | 00,831,488 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2005/08/09 17:13:31 | 00,159,744 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2005/08/06 17:37:41 | 00,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2005/06/10 11:34:03 | 00,000,045 | ---- | C] () -- C:\WINDOWS\IEFFEJPP.ini
[2005/03/18 14:38:35 | 00,000,004 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2005/03/17 20:25:20 | 00,000,024 | ---- | C] () -- C:\WINDOWS\atid.ini
[2005/03/06 14:25:44 | 00,021,830 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\hpzinstall.log
[2005/03/04 21:17:10 | 00,002,036 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2005/01/07 15:13:13 | 00,000,044 | ---- | C] () -- C:\WINDOWS\liveup.ini
[2005/01/05 00:00:06 | 00,000,083 | ---- | C] () -- C:\WINDOWS\MadWare.INI
[2005/01/02 16:05:01 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004/12/13 00:17:20 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2004/12/13 00:14:41 | 00,503,808 | ---- | C] () -- C:\WINDOWS\System32\InetIPLPX.dll
[2004/12/13 00:14:41 | 00,491,520 | ---- | C] () -- C:\WINDOWS\System32\InetIPLP5.dll
[2004/12/13 00:14:40 | 00,524,288 | ---- | C] () -- C:\WINDOWS\System32\InetIPLA6.dll
[2004/12/13 00:14:40 | 00,516,096 | ---- | C] () -- C:\WINDOWS\System32\InetIPLM6.dll
[2004/12/13 00:14:40 | 00,512,000 | ---- | C] () -- C:\WINDOWS\System32\InetIPLP6.dll
[2004/12/13 00:14:40 | 00,495,616 | ---- | C] () -- C:\WINDOWS\System32\InetIPLM5.dll
[2004/12/13 00:14:40 | 00,020,480 | ---- | C] () -- C:\WINDOWS\System32\InetIPL.dll
[2004/12/13 00:14:40 | 00,019,968 | ---- | C] () -- C:\WINDOWS\System32\Cpuinf32.dll
[2004/12/13 00:14:22 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2004/12/13 00:09:38 | 00,000,231 | ---- | C] () -- C:\WINDOWS\AC3API.INI
[2004/12/13 00:08:37 | 00,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004/12/13 00:07:39 | 00,060,416 | ---- | C] () -- C:\WINDOWS\System32\P17.dll
[2004/12/13 00:07:39 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\P17CPI.dll
[2004/12/13 00:07:39 | 00,045,359 | ---- | C] () -- C:\WINDOWS\System32\LudaP17.ini
[2004/12/13 00:07:39 | 00,000,029 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2004/12/13 00:07:38 | 00,000,194 | ---- | C] () -- C:\WINDOWS\System32\KILL.INI
[2004/12/13 00:07:34 | 00,000,072 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
[2004/11/20 15:25:52 | 00,029,807 | ---- | C] () -- C:\Program Files\SoundClickinfoPic
[2003/07/24 09:05:04 | 00,032,768 | ---- | C] () -- C:\WINDOWS\System32\NS_ProWrite_RTF.dll
[2002/05/07 11:04:24 | 00,002,021 | ---- | C] () -- C:\WINDOWS\System32\vrupdate.ini
[1997/08/28 09:53:10 | 00,027,648 | ---- | C] () -- C:\WINDOWS\System32\mapirtf.dll
========== LOP Check ========== [2006/04/25 13:08:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Avery
[2008/02/19 18:32:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Borland
[2009/03/29 11:21:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\EnterNHelp
[2008/02/19 16:47:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\EPSON
[2007/12/03 14:18:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Escape From Paradise
[2009/03/29 11:21:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Font Book
[2006/12/16 20:14:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\GameHouse
[2006/03/24 04:32:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\grim bore atom mess
[2007/07/05 14:46:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Legacy Interactive
[2007/07/30 19:10:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Napster
[2008/03/12 12:46:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\NCH Swift Sound
[2009/03/29 11:24:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Nikon
[2007/06/22 20:53:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PlayFirst
[2006/11/03 20:37:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PlayTime
[2007/06/23 22:24:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sandlot Games
[2006/09/19 20:38:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\SkillJam
[2004/12/18 18:18:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony
[2009/12/07 06:38:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spyware Terminator
[2009/06/27 09:03:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP
[2009/03/29 11:21:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Ultima_T15
[2004/12/27 23:41:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\VBouncer
[2007/12/03 13:31:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Viewpoint
[2008/07/22 12:23:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\YAHOO
[2009/09/16 10:03:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[2009/12/01 00:59:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Amazon
[2008/08/18 13:55:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\ContentGuard
[2007/01/07 13:17:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\CopyToDvd
[2008/12/04 15:25:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\DMCache
[2006/04/11 17:12:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\eFax Messenger
[2008/02/28 10:56:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\EPSON
[2009/04/09 12:05:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\ErrorSmart
[2007/02/07 21:40:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Gaijin Ent
[2009/08/17 14:56:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\GetRightToGo
[2006/11/02 22:00:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\ICAClient
[2007/07/29 14:56:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Image Zone Express
[2006/09/22 09:34:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Leadertech
[2005/12/29 18:59:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\MSNInstaller
[2008/03/16 11:09:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\NCH Swift Sound
[2007/08/25 16:33:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\NetMedia Providers
[2007/07/26 20:39:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Netscape
[2009/06/22 17:46:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Nikon
[2008/08/16 23:46:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Panasonic
[2007/06/22 20:53:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\PlayFirst
[2007/08/22 21:15:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Pogo Games
[2007/07/29 14:15:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Printer Info Cache
[2007/08/25 16:33:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Publish Providers
[2007/06/23 22:23:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Sandlot Games
[2007/12/05 14:02:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Serif
[2006/03/06 21:09:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Simple Star
[2006/12/27 22:45:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\SlySoft
[2008/08/18 14:48:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Smart PC Solutions
[2009/12/07 10:24:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Spyware Terminator
[2007/08/31 17:02:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\tunebite
[2009/04/08 09:23:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\URSoft
[2008/08/18 13:55:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Vso
[2009/06/10 22:33:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\W Photo Studio Viewer
[2006/09/22 09:28:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\COLABUTTERFLY24\Application Data\Walgreens
[2009/12/07 03:30:00 | 00,000,378 | ---- | M] () -- C:\WINDOWS\Tasks\ErrorSmart Scheduled Scan.job
[2009/12/07 09:03:00 | 00,000,316 | ---- | M] () -- C:\WINDOWS\Tasks\SystemTuneUp Maintenance.job
[2009/12/07 12:00:10 | 00,000,296 | ---- | M] () -- C:\WINDOWS\Tasks\urenmrgl.job
========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*.exe >[2005/01/15 20:56:29 | 00,200,704 | ---- | M] () -- C:\rdmspeech_installer.exe
< MD5 for: AGP440.SYS >[2008/04/13 13:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 13:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2004/08/04 01:07:41 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys
[2004/08/04 01:07:41 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\ReinstallBackups\0032\DriverFiles\i386\AGP440.SYS
< MD5 for: ATAPI.SYS >[2008/04/13 13:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 13:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/04 00:59:42 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
< MD5 for: EVENTLOG.DLL >[2008/04/13 19:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 19:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll
[2004/08/04 02:56:42 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
< MD5 for: NETLOGON.DLL >[2008/04/13 19:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 19:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\netlogon.dll
[2004/08/04 02:56:44 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
< MD5 for: SCECLI.DLL >[2004/08/04 02:56:44 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008/04/13 19:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 19:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll
< %systemroot%\*. /mp /s > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2009-11-25 21:03:52
========== Files - Unicode (All) ==========[2009/05/26 10:46:27 | 00,000,040 | ---- | M] ()(C:\WINDOWS\System32\????????????????????4???????????????????????) -- C:\WINDOWS\System32\㩃停潲牧浡䘠汩獥噜牥穩湯噜牥穩湯䤠瑮牥敮⁴敓畣楲祴匠極整卜晡䍥湯敮瑣䍜湯楦屧噘敩潣普杩
[2009/05/26 10:46:27 | 00,000,040 | ---- | C] ()(C:\WINDOWS\System32\????????????????????4???????????????????????) -- C:\WINDOWS\System32\㩃停潲牧浡䘠汩獥噜牥穩湯噜牥穩湯䤠瑮牥敮⁴敓畣楲祴匠極整卜晡䍥湯敮瑣䍜湯楦屧噘敩潣普杩
========== Alternate Data Streams ========== @Alternate Data Stream - 216 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:CB0EB1DE
@Alternate Data Stream - 216 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:9E3E060F
@Alternate Data Stream - 216 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:8DA9DB01
@Alternate Data Stream - 216 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:496D1709
@Alternate Data Stream - 211 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:BE64143E
@Alternate Data Stream - 205 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:5433DBEF
@Alternate Data Stream - 204 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:453190EC
@Alternate Data Stream - 202 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:3766E957
@Alternate Data Stream - 201 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:CE6885F1
@Alternate Data Stream - 196 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:FDCAE7B5
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:E965A533
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:7FC64998
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:B3D74A13
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:D31BE97C
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:4B7BEAFF
< End of report >
OTL Extras logfile created on: 12/7/2009 12:09:49 PM - Run 1
OTL by OldTimer - Version 3.1.11.8 Folder = C:\Documents and Settings\COLABUTTERFLY24\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
511.01 Mb Total Physical Memory | 226.61 Mb Available Physical Memory | 44.35% Memory free
1.22 Gb Paging File | 0.97 Gb Available in Paging File | 79.70% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37.27 Gb Total Space | 5.85 Gb Free Space | 15.70% Space Free | Partition Type: NTFS
Drive D: | 633.38 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 74.50 Gb Total Space | 42.75 Gb Free Space | 57.39% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: NICOLA
Current User Name: COLABUTTERFLY24
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan
========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found
========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "G:\PROGRAM FILES\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "G:\PROGRAM FILES\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 1
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 1
"AntiVirusOverride" = 1
"FirewallOverride" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\MSN Messenger\msncall.exe" = C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) -- File not found
"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Yahoo!\Messenger\YPager.exe" = C:\Program Files\Yahoo!\Messenger\YPager.exe:*:Enabled:Yahoo! Messenger -- File not found
"C:\Program Files\Yahoo!\Messenger\YServer.exe" = C:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server -- File not found
"C:\Program Files\support.com\bin\tgcmd.exe" = C:\Program Files\support.com\bin\tgcmd.exe:*:Disabled:Support.com Scheduler and Command Dispatcher -- File not found
"C:\Program Files\LimeWire\LimeWire 4.2.5\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire 4.2.5\LimeWire.exe:*:Enabled:LimeWire -- File not found
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found
"C:\Program Files\Common Files\AOL\1111109439\EE\AOLServiceHost.exe" = C:\Program Files\Common Files\AOL\1111109439\EE\AOLServiceHost.exe:*:Disabled:AOL -- File not found
"C:\Program Files\Common Files\AOL\Loader\aolload.exe" = C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Application Loader -- (America Online, Inc.)
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL -- File not found
"C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe" = C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe:*:Enabled:AOLTsMon -- File not found
"C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe" = C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe:*:Enabled:AOLTopSpeed -- File not found
"C:\Program Files\Common Files\AOL\1117514150\EE\AOLServiceHost.exe" = C:\Program Files\Common Files\AOL\1117514150\EE\AOLServiceHost.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\AOL\System Information\sinf.exe" = C:\Program Files\Common Files\AOL\System Information\sinf.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\AOL\AOL Spyware Protection\AOLSP Scheduler.exe" = C:\Program Files\Common Files\AOL\AOL Spyware Protection\AOLSP Scheduler.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\AOL\AOL Spyware Protection\asp.exe" = C:\Program Files\Common Files\AOL\AOL Spyware Protection\asp.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\AolCoach\en_en\player\AOLNySEV.exe" = C:\Program Files\Common Files\AolCoach\en_en\player\AOLNySEV.exe:*:Enabled:AOL -- File not found
"C:\Program Files\MSN\MSNCoreFiles\msn6.exe" = C:\Program Files\MSN\MSNCoreFiles\msn6.exe:*:Disabled:msn -- File not found
"C:\Program Files\HP\HP Software Update\HPWUCli.exe" = C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:HP Software Update Client -- File not found
"C:\WINDOWS\system32\dxdiag.exe" = C:\WINDOWS\system32\dxdiag.exe:*:Enabled:Microsoft DirectX Diagnostic Tool -- (Microsoft Corporation)
"C:\WINDOWS\system32\dpnsvr.exe" = C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server -- (Microsoft Corporation)
"C:\Program Files\InterVideo\DVD7\WinDVD.exe" = C:\Program Files\InterVideo\DVD7\WinDVD.exe:*:Enabled:WinDVD -- File not found
"C:\Program Files\Real\RealPlayer\realplay.exe" = C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer -- File not found
"C:\Program Files\Cartoon Network\To The Eds-treme\PowerPlay.exe" = C:\Program Files\Cartoon Network\To The Eds-treme\PowerPlay.exe:*:Enabled:Macromedia Projector -- File not found
"C:\Program Files\CallWave\IAM.exe" = C:\Program Files\CallWave\IAM.exe:*:Enabled:CallWave -- File not found
"C:\Program Files\iMesh Applications\iMesh6\iMesh6.exe" = C:\Program Files\iMesh Applications\iMesh6\iMesh6.exe:*:Enabled:iMesh 6 -- File not found
"C:\Program Files\BearShare\BearShare.exe" = C:\Program Files\BearShare\BearShare.exe:*:Disabled:BearShare -- File not found
"C:\StubInstaller.exe" = C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer -- File not found
"C:\Program Files\MSN Messenger\msncall.exe" = C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) -- File not found
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- File not found
"G:\PROGRAM FILES\LimeWire\LimeWire.exe" = G:\PROGRAM FILES\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC)
"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- (Microsoft Corporation)
"G:\PROGRAM FILES\TurboTax Deluxe 2006\32bit\ttax.exe" = G:\PROGRAM FILES\TurboTax Deluxe 2006\32bit\ttax.exe:LocalSubNet:Enabled:TurboTax -- File not found
"G:\PROGRAM FILES\TurboTax Deluxe 2006\32bit\updatemgr.exe" = G:\PROGRAM FILES\TurboTax Deluxe 2006\32bit\updatemgr.exe:LocalSubNet:Enabled:TurboTax Update Manager -- File not found
"G:\PROGRAM FILES\BitDownload\BitDownload.exe" = G:\PROGRAM FILES\BitDownload\BitDownload.exe:*:Enabled:Warez3 -- File not found
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"G:\PROGRAM FILES\Veoh\VeohClient.exe" = G:\PROGRAM FILES\Veoh\VeohClient.exe:*:Enabled:Veoh Client -- (Veoh Networks)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)
"G:\PROGRAM FILES\Yahoo!\Messenger\YahooMessenger.exe" = G:\PROGRAM FILES\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\WINDOWS\explorer.exe" = C:\WINDOWS\explorer.exe:*:Enabled:Explorer -- (Microsoft Corporation)
"C:\WINDOWS\system32\logon.scr" = C:\WINDOWS\system32\logon.scr:*:Enabled:logon -- (Microsoft Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{011A2240-08DF-45BB-AA4E-1A78637CCF80}" = RPS CRT
"{01C5A10F-AD9B-405B-853A-6659841A1242}" = Microsoft SQL Server 2008 Policies
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{0405E51E-9582-4207-8F38-AC44201D3808}" = VeohTV BETA
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{11F1920A-56A2-4642-B6E0-3B31A12C9288}" = Dell Solution Center
"{13515135-48BB-4184-8C1F-2FAE0138E200}" = TBS WMP Plug-in
"{15D91706-6ADF-44CF-9D7D-FF2D8ACD2C6F}" = LS_HSI
"{1CA2E5E4-F4FE-44B4-95E9-77523FB95838}" = EPSON Stylus CX9400Fax Series Scanner Driver Update
"{2020045B-8DCF-4449-8D5C-EB5BA37440F1}" = Microsoft SQL Server 2008 Management Studio
"{258749E2-3A46-42B1-9A01-BF977AA06FAC}" = RPS CRT
"{2A2766A4-6AE4-11D4-AC8E-52544C1966EE}" = Backup Dell-Installed Programs
"{2A38B5AA-EA84-4F87-9937-2FB23982243A}" = Sonic Foundry ACID 4.0
"{3248F0A8-6813-11D6-A77B-00B0D0150110}" = J2SE Runtime Environment 5.0 Update 11
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java™ SE Runtime Environment 6 Update 1
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java™ 6 Update 2
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3D047C15-C859-45F7-81CE-F2681778069B}" = iPod for Windows 2006-01-10
"{41B9E2CF-0B3F-442A-B5B3-592A4A355634}" = iTunes
"{4A6F34E2-09E5-4616-B227-4A26A488A6F9}" = Microsoft SQL Server 2008 Common Files
"{4F44B5AE-82A6-4A8A-A3E3-E24D489728E3}" = Microsoft SQL Server 2008 Native Client
"{5421155F-B033-49DB-9B33-8F80F233D4D5}" = GdiplusUpgrade
"{571700F0-DB9D-4B3A-B03D-35A14BB5939F}" = Windows Live Messenger
"{5D5B9E6A-344C-4976-95AB-ABBDC648E5DA}" = Microsoft IntelliType Pro 5.2
"{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}" = Windows Genuine Advantage v1.3.0254.0
"{64635543-70E7-436D-8D6D-4A721595029E}" = Microsoft IntelliPoint 5.2
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6EECB283-E65F-40EF-86D3-D51BF02A8D43}" = Microsoft Office Converter Pack
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}" = Bonjour
"{8DC42D05-680B-41B0-8878-6C14D24602DB}" = QuickTime
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{91130409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Small Business
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}" = Microsoft SQL Server Database Publishing Wizard 1.3
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{AA9768AA-FF0B-4C66-A085-31E934F77841}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1033-7B44-A71000000002}" = Adobe Reader 7.1.0
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{BA4DA261-CB60-4690-B202-44998DFC6986}" = Microsoft SQL Server 2008 Setup Support Files
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEB481CC-F57C-4397-81A0-DADD22257047}" = Sound Blaster Audigy LS
"{D03E7B00-CA85-4684-9321-1888873C34BD}" = ArcSoft PhotoImpression 6
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{E8BC3608-61A8-4DB3-A6E8-3B67B36448DE}" = Greeting Card Factory Express
"{E9757890-7EC5-46C8-99AB-B00F07B6525C}" = Nikon Transfer
"{F5E87B12-3C27-452F-8E78-21D42164FD83}" = Microsoft SQL Server 2008 Management Objects
"{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}" = HighMAT Extension to Microsoft Windows XP CD Writing Wizard
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"CCleaner" = CCleaner (remove only)
"Citrix ICA Web Client" = MetaFrame Presentation Server Web Client for Win32
"EPSON Printer and Utilities" = EPSON Printer Software
"EPSON Scanner" = EPSON Scan
"ERUNT_is1" = ERUNT 1.1j
"FTDICOMM" = FTDI USB Serial Converter Drivers
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"InstallShield_{13515135-48BB-4184-8C1F-2FAE0138E200}" = TBS WMP Plug-in
"LimeWire" = LimeWire 5.3.6
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft SQL Server 10" = Microsoft SQL Server 2008
"Microsoft SQL Server 10 Release" = Microsoft SQL Server 2008
"Mozilla Firefox (3.5.5)" = Mozilla Firefox (3.5.5)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"Silent Package Run-Time Sample" = EPSON CX9400 User's Guide
"Spyware Terminator_is1" = Spyware Terminator
"Verizon Online Help and Support" = Verizon Online Help and Support
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"WebCyberCoach_wtrb" = WebCyberCoach 3.2 Dell
"Windows Media Encoder 7" = Windows Media Encoder 7.1
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMCSetup" = Windows Media Connect
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Yahoo! Messenger" = Yahoo! Messenger
========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"a2a3ca395ba564f5" = CakeBoss
========== Last 10 Event Log Errors ========== [ Application Events ]
Error - 12/1/2009 12:12:42 AM | Computer Name = NICOLA | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 7.0.6000.16915, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.
Error - 12/1/2009 2:04:16 AM | Computer Name = NICOLA | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 7.0.6000.16915, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.
Error - 12/2/2009 10:33:53 AM | Computer Name = NICOLA | Source = Application Hang | ID = 1002
Description = Hanging application escndv.exe, version 3.2.1.1, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.
Error - 12/4/2009 6:39:07 PM | Computer Name = NICOLA | Source = Microsoft Office 10 | ID = 1000
Description = Faulting application mspub.exe, version 10.0.6842.0, faulting module
mso.dll, version 10.0.6856.0, fault address 0x00009270.
Error - 12/6/2009 11:36:11 PM | Computer Name = NICOLA | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 1.9.1.3593, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.
Error - 12/7/2009 12:08:40 AM | Computer Name = NICOLA | Source = Application Hang | ID = 1002
Description = Hanging application explorer.exe, version 6.0.2900.5512, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.
Error - 12/7/2009 8:08:24 AM | Computer Name = NICOLA | Source = MsiInstaller | ID = 11704
Description = Product: Microsoft ASP.NET MVC 1.0 -- Error 1704. An installation
for Microsoft SQL Server 2008 Management Studio is currently suspended. You must
undo the changes made by that installation to continue. Do you want to undo those
changes?
Error - 12/7/2009 8:12:21 AM | Computer Name = NICOLA | Source = MsiInstaller | ID = 11712
Description = Product: Microsoft ASP.NET MVC 1.0 -- Error 1712. One or more of the
files required to restore your computer to its previous state could not be found.
Restoration will not be possible.
Error - 12/7/2009 11:10:48 AM | Computer Name = NICOLA | Source = MsiInstaller | ID = 11706
Description = Product: Microsoft Office XP Small Business -- Error 1706. Setup cannot
find the required files. Check your connection to the network, or CD-ROM drive.
For other potential solutions to this problem, see G:\PROGRAM FILES\Office10\1033\SETUP.HLP.
Error - 12/7/2009 11:14:39 AM | Computer Name = NICOLA | Source = MsiInstaller | ID = 11706
Description = Product: Microsoft Office XP Small Business -- Error 1706. Setup cannot
find the required files. Check your connection to the network, or CD-ROM drive.
For other potential solutions to this problem, see G:\PROGRAM FILES\Office10\1033\SETUP.HLP.
[ System Events ]
Error - 12/7/2009 11:00:02 AM | Computer Name = NICOLA | Source = Service Control Manager | ID = 7000
Description = The SMI Win XP Factory Driver service failed to start due to the following
error: %%2
Error - 12/7/2009 11:00:02 AM | Computer Name = NICOLA | Source = Service Control Manager | ID = 7000
Description = The Security Services Driver (x86) service failed to start due to
the following error: %%2
Error - 12/7/2009 11:10:34 AM | Computer Name = NICOLA | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service wuauserv with
arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error - 12/7/2009 11:11:32 AM | Computer Name = NICOLA | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service wuauserv with
arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error - 12/7/2009 11:18:31 AM | Computer Name = NICOLA | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service wuauserv with
arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error - 12/7/2009 11:23:16 AM | Computer Name = NICOLA | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service wuauserv with
arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error - 12/7/2009 12:08:42 PM | Computer Name = NICOLA | Source = DCOM | ID = 10005
Description = DCOM got error "%1058" attempting to start the service wuauserv with
arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error - 12/7/2009 12:58:50 PM | Computer Name = NICOLA | Source = Service Control Manager | ID = 7000
Description = The EMS Inter-Link driver V3.0 service failed to start due to the
following error: %%1058
Error - 12/7/2009 12:58:50 PM | Computer Name = NICOLA | Source = Service Control Manager | ID = 7000
Description = The SMI Win XP Factory Driver service failed to start due to the following
error: %%2
Error - 12/7/2009 12:58:50 PM | Computer Name = NICOLA | Source = Service Control Manager | ID = 7000
Description = The Security Services Driver (x86) service failed to start due to
the following error: %%2
< End of report >
Edited by Colabutterfly, 07 December 2009 - 11:36 AM.
This topic is locked
Sign In
Create Account
