Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Windows 7 can't update


  • Please log in to reply

#1
cainmolloy

cainmolloy

    Member

  • Member
  • PipPip
  • 42 posts
does anybody have a pacific fix for this.
Q: how do you add exceptions to firewall.

To correct the problem, you might need to add the Windows Update website addresses to the blocking program's exceptions or "allow" list or allow Windows Update Service to connect to the Internet through port 80 and port 443 how do I do this.

I also added a OTL log to be checked is this the right place. Thanks.


OTL logfile created on: 10/12/2009 1:13:46 PM - Run 2
OTL by OldTimer - Version 3.0.20.0 Folder = C:\Users\Cain\Downloads
Ultimate Edition (Version = 6.1.7100) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7100.0)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465.76 Gb Total Space | 399.71 Gb Free Space | 85.82% Space Free | Partition Type: NTFS
Drive D: | 2.74 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 372.59 Gb Total Space | 195.27 Gb Free Space | 52.41% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: CAIN-PC
Current User Name: Cain
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2009/10/12 13:12:19 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:\Users\Cain\Downloads\OTL.exe
PRC - [2009/10/12 11:16:59 | 02,007,320 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2009/10/12 11:16:59 | 01,053,976 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2009/10/12 11:16:59 | 00,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2009/10/12 11:16:59 | 00,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2009/10/12 11:16:59 | 00,597,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2009/10/12 11:16:59 | 00,502,040 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2009/10/12 11:16:58 | 00,826,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2009/10/12 11:16:58 | 00,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2009/09/08 22:09:42 | 00,305,440 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2009/09/08 22:09:30 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2009/09/05 02:54:42 | 00,417,792 | ---- | M] (Apple Inc.) -- G:\Program Files\QuickTime\QTTask.exe
PRC - [2009/07/25 05:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/07/10 14:59:22 | 00,195,072 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
PRC - [2009/07/09 13:22:18 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/04/22 16:19:35 | 00,349,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe
PRC - [2009/04/22 16:19:35 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/04/22 16:19:30 | 01,174,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
PRC - [2009/04/22 16:19:30 | 00,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\snmp.exe
PRC - [2009/04/22 16:19:20 | 03,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe
PRC - [2009/04/22 16:19:12 | 00,157,184 | ---- | M] (Microsoft Corporation) -- c:\program files\windows defender\MpCmdRun.exe
PRC - [2009/04/22 16:19:12 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mqsvc.exe
PRC - [2009/04/22 16:19:02 | 02,607,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2009/04/21 15:39:16 | 24,264,488 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe
PRC - [2009/04/21 15:39:16 | 00,077,360 | R--- | M] (Skype Technologies) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe
PRC - [2009/04/05 07:04:35 | 00,129,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
PRC - [2009/02/06 18:02:14 | 00,109,056 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2008/12/12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/05/17 05:31:00 | 00,118,784 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
PRC - [2008/05/13 19:07:24 | 00,080,392 | ---- | M] () -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
PRC - [2008/01/22 19:35:52 | 00,103,808 | ---- | M] () -- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
PRC - [2008/01/11 18:50:16 | 00,030,312 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
PRC - [2007/09/14 03:50:00 | 01,603,152 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2006/11/20 21:59:20 | 02,397,792 | ---- | M] (Venturi Wireless) -- C:\Program Files\Venturi Client\Client\ventc.exe
PRC - [2006/11/20 21:59:06 | 00,910,984 | ---- | M] (Venturi Wireless) -- C:\Program Files\Venturi Client\Configurator\ventcfg.exe

========== Win32 Services (SafeList) ==========

SRV - [2009/10/12 11:16:59 | 00,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc [Auto | Running])
SRV - [2009/10/12 11:16:58 | 00,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd [Auto | Running])
SRV - [2009/09/08 22:09:30 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Running])
SRV - [2009/07/09 13:22:18 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])
SRV - [2009/06/04 11:53:02 | 00,066,048 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\NOS\bin\getPlus_HelperSvc.exe -- (getPlus® Helper [On_Demand | Stopped])
SRV - [2009/05/16 18:00:36 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service [On_Demand | Stopped])
SRV - [2009/05/11 17:51:06 | 00,068,096 | ---- | M] () -- C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service [On_Demand | Stopped])
SRV - [2009/05/09 11:34:46 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate1c9d03df5df7288 [Auto | Stopped])
SRV - [2009/04/22 16:22:25 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwansvc.dll -- (WwanSvc [On_Demand | Stopped])
SRV - [2009/04/22 16:22:15 | 01,086,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (eventlog [Auto | Running])
SRV - [2009/04/22 16:22:12 | 00,151,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc [On_Demand | Stopped])
SRV - [2009/04/22 16:22:10 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\umpo.dll -- (Power [Auto | Running])
SRV - [2009/04/22 16:22:07 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\themeservice.dll -- (Themes [Auto | Running])
SRV - [2009/04/22 16:22:02 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify [On_Demand | Stopped])
SRV - [2009/04/22 16:21:49 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc [On_Demand | Stopped])
SRV - [2009/04/22 16:21:46 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper [Unknown | Running])
SRV - [2009/04/22 16:21:43 | 00,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider [On_Demand | Running])
SRV - [2009/04/22 16:21:42 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc [On_Demand | Running])
SRV - [2009/04/22 16:21:42 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc [On_Demand | Running])
SRV - [2009/04/22 16:21:42 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg [On_Demand | Stopped])
SRV - [2009/04/22 16:21:40 | 01,004,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\peerdistsvc.dll -- (PeerDistSvc [On_Demand | Stopped])
SRV - [2009/04/22 16:20:52 | 00,680,448 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])
SRV - [2009/04/22 16:20:46 | 00,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener [On_Demand | Running])
SRV - [2009/04/22 16:20:40 | 00,396,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (WAS [On_Demand | Running])
SRV - [2009/04/22 16:20:40 | 00,396,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (W3SVC [Auto | Running])
SRV - [2009/04/22 16:20:30 | 00,797,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll -- (FontCache [On_Demand | Stopped])
SRV - [2009/04/22 16:20:14 | 00,252,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore.dll -- (Dhcp [Auto | Running])
SRV - [2009/04/22 16:20:13 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\defragsvc.dll -- (defragsvc [On_Demand | Stopped])
SRV - [2009/04/22 16:19:55 | 00,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bdesvc.dll -- (BDESVC [Unknown | Stopped])
SRV - [2009/04/22 16:19:54 | 00,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AxInstSV.dll -- (AxInstSV [On_Demand | Stopped])
SRV - [2009/04/22 16:19:51 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc [On_Demand | Stopped])
SRV - [2009/04/22 16:19:50 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetsrv\apphostsvc.dll -- (AppHostSvc [Auto | Running])
SRV - [2009/04/22 16:19:43 | 01,124,352 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [Auto | Stopped])
SRV - [2009/04/22 16:19:30 | 00,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\snmp.exe -- (SNMP [Auto | Running])
SRV - [2009/04/22 16:19:20 | 03,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe -- (sppsvc [Auto | Running])
SRV - [2009/04/22 16:19:12 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mqsvc.exe -- (MSMQ [Auto | Running])
SRV - [2009/04/22 16:19:00 | 00,556,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])
SRV - [2009/04/22 16:19:00 | 00,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
SRV - [2009/04/05 07:05:06 | 00,067,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2009/04/05 07:04:57 | 00,043,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2009/04/05 07:04:35 | 00,129,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Auto | Running])
SRV - [2009/04/05 07:04:34 | 00,879,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009/02/06 18:02:14 | 00,109,056 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon [Auto | Running])
SRV - [2008/12/12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2008/05/17 05:31:00 | 00,118,784 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe -- (nvsvc [Auto | Running])
SRV - [2008/05/13 19:07:24 | 00,080,392 | ---- | M] () -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service [Auto | Running])
SRV - [2008/01/22 19:35:52 | 00,103,808 | ---- | M] () -- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE -- (IJPLMSVC [Auto | Running])
SRV - [2008/01/11 18:50:16 | 00,030,312 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe -- (BcmSqlStartupSvc [Auto | Running])
SRV - [2006/11/20 21:59:20 | 02,397,792 | ---- | M] (Venturi Wireless) -- C:\Program Files\Venturi Client\Client\ventc.exe -- (VenturiClient [Auto | Running])
SRV - [2006/10/26 20:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006/10/26 15:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2006/04/14 11:07:20 | 28,933,976 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$MSSMLBIZ [On_Demand | Stopped])
SRV - [2006/04/14 11:05:58 | 00,240,416 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser [Disabled | Stopped])
SRV - [2006/04/14 11:04:54 | 00,087,840 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter [On_Demand | Stopped])
SRV - [2005/10/14 04:50:20 | 00,045,272 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe -- (MSSQLServerADHelper [Disabled | Stopped])

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=localhost:7171

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.com.au/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.unwired.com.au/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ninemsn.com.au/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-au
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 5F 26 1E E8 E9 D8 C9 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=localhost:7171

========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: "Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...rchSource=3&q="
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.com.au/"
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1
FF - prefs.js..extensions.enabledItems: 6
FF - prefs.js..extensions.enabledItems: 2
FF - prefs.js..extensions.enabledItems: 29
FF - prefs.js..extensions.enabledItems: {ddb7e7f0-96e4-11dd-ad8b-0800200c9a66}:1.0.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}:2.2.0.9
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3
FF - prefs.js..keyword.URL: "http://search.condui...rchSource=2&q="
FF - prefs.js..network.proxy.http: "localhost"
FF - prefs.js..network.proxy.http_port: 7171
FF - prefs.js..network.proxy.type: 4

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/04/22 19:55:53 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2009/10/12 11:16:58 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/09/14 12:02:52 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/10/11 13:59:21 | 00,000,000 | ---D | M]

[2009/06/24 13:34:48 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\mozilla\Extensions
[2009/05/06 17:43:30 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/10/12 11:24:52 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\mozilla\Firefox\Profiles\0jtvr7je.default\extensions
[2009/06/24 13:34:49 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\mozilla\Firefox\Profiles\0jtvr7je.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/07/28 23:53:57 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\mozilla\Firefox\Profiles\0jtvr7je.default\extensions\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}
[2009/07/22 11:24:06 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\mozilla\Firefox\Profiles\0jtvr7je.default\extensions\{ddb7e7f0-96e4-11dd-ad8b-0800200c9a66}
[2009/07/04 19:52:59 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\mozilla\Firefox\Profiles\0jtvr7je.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2008/11/24 15:50:50 | 00,000,838 | ---- | M] () -- C:\Users\Cain\AppData\Roaming\Mozilla\FireFox\Profiles\0jtvr7je.default\searchplugins\conduit.xml
[2009/10/11 13:59:22 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/09/11 11:07:47 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/10/11 13:59:22 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009/09/11 11:07:46 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/09/11 11:07:46 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/05/02 08:02:48 | 01,044,480 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\libdivx.dll
[2007/04/10 18:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2009/07/25 05:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2009/05/13 05:46:20 | 01,650,992 | ---- | M] (DivX,Inc.) -- C:\Program Files\mozilla firefox\plugins\npdivx32.dll
[2009/05/19 09:41:32 | 00,098,304 | ---- | M] (DivX, Inc) -- C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll
[2009/02/06 13:44:28 | 01,447,296 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll
[2009/09/11 11:07:46 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2006/10/26 21:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2007/03/22 19:23:30 | 00,017,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL
[2009/02/27 13:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009/09/14 12:02:52 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/09/14 12:02:52 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/09/14 12:02:52 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/09/14 12:02:52 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/09/14 12:02:52 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/09/14 12:02:52 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/09/14 12:02:52 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2009/06/04 11:53:02 | 00,031,944 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\mozilla firefox\plugins\np_gp.dll
[2009/05/02 08:02:48 | 00,200,704 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\ssldivx.dll
[2009/07/16 05:10:00 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml
[2009/07/16 05:10:00 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/07/16 05:10:00 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/07/16 05:10:00 | 00,002,344 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml
[2009/07/16 05:10:00 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/07/16 05:10:00 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/07/16 05:10:00 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml

O1 HOSTS File: (36 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 69.46.228.174 www.hotelsdrink.info
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (C:\Windows\system32\vi6zl.dll) - {A249BC15-23F2-42AD-F4E4-00AAC39C0004} - C:\Windows\System32\vi6zl.dll File not found
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - G:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - G:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [calc] C:\Windows\System32\calc.DLL File not found
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [QuickTime Task] G:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [svchost] C:\Users\Cain\Localdir\svchost.exe File not found
O4 - HKLM..\Run: [Venturi Configurator] C:\Program Files\Venturi Client\Configurator\ventcfg.exe (Venturi Wireless)
O4 - HKCU..\Run: [calc] C:\Windows\SERVIC~2\LOCALS~1\ntuser.DLL File not found
O4 - HKCU..\Run: [Login Software 2009] C:\Users\Cain\AppData\Local\Temp\l5p12m.exe File not found
O4 - HKCU..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKCU..\Run: [SmileyApp] C:\Program Files\DoubleD\GamingHarbor Toolbar\4.1.4.20920\stbapp.exe File not found
O4 - HKCU..\Run: [Windows Update] C:\Windows\System32\Updater.exe (sdfasdf)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O8 - Extra context menu item: Append to existing PDF - G:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to Adobe PDF - G:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to existing PDF - G:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to Adobe PDF - G:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to existing PDF - G:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to Adobe PDF - G:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to existing PDF - G:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - G:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Translate with &Babylon - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll File not found
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\System32\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 220.101.191.16 220.101.191.17 125.63.255.11 125.63.255.74
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\microsoft shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\microsoft shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\Windows\System32\dmstyle32.dll) - C:\Windows\System32\dmstyle32.dll File not found
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\befffacd: DllName - C:\Windows\system32\befffacd.dll - C:\Windows\System32\befffacd.dll File not found
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/03/21 02:42:25 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2007/11/08 22:45:13 | 00,000,000 | ---- | M] () - G:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

NetSvcs: FastUserSwitchingCompatibility - Service key not found. File not found
NetSvcs: Ias - Service key not found. File not found
NetSvcs: Irmon - Service key not found. File not found
NetSvcs: Nla - Service key not found. File not found
NetSvcs: Ntmssvc - Service key not found. File not found
NetSvcs: NWCWorkstation - Service key not found. File not found
NetSvcs: Nwsapagent - Service key not found. File not found
NetSvcs: SRService - Service key not found. File not found
NetSvcs: Wmi - Service key not found. File not found
NetSvcs: WmdmPmSp - Service key not found. File not found
NetSvcs: LogonHours - Service key not found. File not found
NetSvcs: PCAudit - Service key not found. File not found
NetSvcs: helpsvc - Service key not found. File not found
NetSvcs: uploadmgr - Service key not found. File not found
NetSvcs: BDESVC - C:\Windows\System32\bdesvc.dll (Microsoft Corporation)
NetSvcs: Themes - C:\Windows\System32\themeservice.dll (Microsoft Corporation)

========== Files/Folders - Created Within 14 Days ==========

[2009/10/12 11:16:58 | 00,000,000 | ---D | C] -- C:\ProgramData\avg9
[2009/10/10 16:44:03 | 00,000,000 | ---D | C] -- C:\Users\Cain\AppData\Roaming\vlc
[2009/10/07 23:29:10 | 00,000,000 | ---D | C] -- C:\Users\Cain\AppData\Local\WinAVI
[4 C:\Users\Cain\Desktop\*.tmp files]
[2009/10/12 11:16:58 | 00,000,000 | ---D | C] -- C:\Program Files\AVG
[2009/10/07 23:29:07 | 00,000,000 | ---D | C] -- C:\Program Files\WinAVI Video Converter
[2009/10/12 11:17:10 | 00,000,000 | -H-D | C] -- C:\$AVG
[2009/10/12 11:17:09 | 00,356,616 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys
[2009/10/12 11:17:09 | 00,161,672 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgrkx86.sys
[2009/10/12 11:17:09 | 00,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
[2009/10/12 11:17:06 | 00,333,192 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2009/10/12 11:17:06 | 00,028,424 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2009/10/12 11:17:05 | 00,000,000 | ---D | C] -- C:\Windows\System32\drivers\Avg
[2009/10/11 14:07:58 | 00,000,000 | ---D | C] -- C:\Windows\System32\msmq
[2009/10/10 13:34:13 | 00,163,840 | ---- | C] (sdfasdf) -- C:\Windows\System32\Updater.exe
[2009/10/10 12:41:22 | 04,411,392 | ---- | C] (Gabest) -- C:\Users\Cain\Desktop\mplayerc.exe
[2009/10/09 14:37:01 | 00,000,000 | ---D | C] -- C:\Users\Cain\Desktop\AuthorScript_1.tmp
[2009/10/09 14:34:27 | 00,000,000 | ---D | C] -- C:\Users\Cain\Desktop\AuthorScript.tmp
[2009/09/30 15:20:14 | 00,000,000 | ---D | C] -- C:\Users\Cain\Desktop\Temp
[2009/09/30 15:20:14 | 00,000,000 | ---D | C] -- C:\Users\Cain\Desktop\skins
[2009/09/30 15:20:14 | 00,000,000 | ---D | C] -- C:\Users\Cain\Desktop\logs
[2009/09/30 15:20:14 | 00,000,000 | ---D | C] -- C:\Users\Cain\Desktop\Incoming
[2009/09/30 15:20:14 | 00,000,000 | ---D | C] -- C:\Users\Cain\Desktop\config

========== Files - Modified Within 14 Days ==========

[1 C:\Windows\*.tmp files]
[4 C:\Users\Cain\Desktop\*.tmp files]
[2009/10/12 12:55:00 | 00,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2009/10/12 11:55:00 | 00,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2009/10/12 11:41:22 | 00,014,048 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009/10/12 11:41:22 | 00,014,048 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009/10/12 11:36:13 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/10/12 11:26:45 | 00,815,684 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/10/12 11:26:45 | 00,693,974 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/10/12 11:26:45 | 00,132,274 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/10/12 11:20:13 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/10/12 11:19:39 | 26,160,57856 | -HS- | M] () -- C:\hiberfil.sys
[2009/10/12 11:18:29 | 04,242,698 | -H-- | M] () -- C:\Users\Cain\AppData\Local\IconCache.db
[2009/10/12 11:18:24 | 42,697,912 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2009/10/12 11:18:15 | 00,492,629 | ---- | M] () -- C:\Windows\System32\drivers\Avg\miniavi.avg
[2009/10/12 11:18:15 | 00,023,744 | ---- | M] () -- C:\Windows\System32\drivers\Avg\microavi.avg
[2009/10/12 11:17:09 | 00,356,616 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys
[2009/10/12 11:17:09 | 00,161,672 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgrkx86.sys
[2009/10/12 11:17:09 | 00,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
[2009/10/12 11:17:09 | 00,001,812 | ---- | M] () -- C:\Users\Public\Desktop\AVG 9.0.lnk
[2009/10/12 11:17:06 | 00,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2009/10/12 11:17:06 | 00,113,461 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm
[2009/10/12 11:17:06 | 00,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2009/10/12 11:17:05 | 06,061,540 | ---- | M] () -- C:\Windows\System32\drivers\Avg\avi7.avg
[2009/10/11 20:05:57 | 36,842,1874 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2009/10/11 14:13:00 | 00,000,472 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily).job
[2009/10/11 13:56:54 | 00,147,456 | ---- | M] (Info-ZIP) -- C:\Windows\System32\vbzip10.dll
[2009/10/11 11:36:17 | 00,009,155 | ---- | M] () -- C:\Users\Cain\Documents\S C. invoice 0040.rtf
[2009/10/10 22:06:10 | 18,527,244 | ---- | M] () -- C:\Users\Cain\Documents\vlc-1.0.2-win32.exe
[2009/10/10 16:43:35 | 00,001,024 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2009/10/10 15:10:57 | 00,002,540 | -H-- | M] () -- C:\aaw7boot.cmd
[2009/10/10 14:58:14 | 00,025,194 | ---- | M] () -- C:\Users\Cain\Documents\Photo0091.jpg
[2009/10/10 14:57:30 | 00,030,930 | ---- | M] () -- C:\Users\Cain\Documents\Photo0090.jpg
[2009/10/10 13:34:24 | 00,000,974 | -HS- | M] () -- C:\Users\Cain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\scandisk.lnk
[2009/10/10 13:34:13 | 00,163,840 | ---- | M] (sdfasdf) -- C:\Windows\System32\Updater.exe
[2009/10/10 12:01:49 | 00,001,863 | ---- | M] () -- C:\Users\Cain\Desktop\LimeWire 4.16.6.lnk
[2009/10/09 14:37:35 | 03,169,866 | ---- | M] () -- C:\Users\Cain\Desktop\OMD7910.MPG
[2009/10/09 14:34:48 | 09,448,554 | ---- | M] () -- C:\Users\Cain\Desktop\OMD3F24.MPG
[2009/10/09 14:34:35 | 03,169,866 | ---- | M] () -- C:\Users\Cain\Desktop\OMD21B4.MPG
[2009/10/07 23:29:07 | 00,000,971 | ---- | M] () -- C:\Users\Cain\Desktop\WinAVI Video Converter .lnk
[2009/10/07 23:28:54 | 00,003,082 | ---- | M] () -- C:\Windows\System32\affv208325p1now.sys
[2009/10/07 10:55:47 | 00,002,140 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2009/10/04 18:49:51 | 01,536,512 | ---- | M] () -- C:\Users\Cain\Documents\Photos of Ford GLi.doc

========== Files - No Company Name ==========
[2009/10/12 11:17:09 | 00,001,812 | ---- | C] () -- C:\Users\Public\Desktop\AVG 9.0.lnk
[2009/10/12 11:17:06 | 00,113,461 | ---- | C] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm
[2009/10/12 11:17:05 | 42,697,912 | ---- | C] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2009/10/12 11:17:05 | 06,061,540 | ---- | C] () -- C:\Windows\System32\drivers\Avg\avi7.avg
[2009/10/12 11:17:05 | 00,492,629 | ---- | C] () -- C:\Windows\System32\drivers\Avg\miniavi.avg
[2009/10/12 11:17:05 | 00,023,744 | ---- | C] () -- C:\Windows\System32\drivers\Avg\microavi.avg
[2009/10/11 20:05:57 | 36,842,1874 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2009/10/11 13:29:54 | 00,001,319 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
[2009/10/11 13:29:54 | 00,001,223 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.exe.lnk
[2009/10/11 11:36:17 | 00,009,155 | ---- | C] () -- C:\Users\Cain\Documents\S C. invoice 0040.rtf
[2009/10/10 22:00:09 | 18,527,244 | ---- | C] () -- C:\Users\Cain\Documents\vlc-1.0.2-win32.exe
[2009/10/10 16:33:42 | 00,001,024 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2009/10/10 14:58:13 | 00,025,194 | ---- | C] () -- C:\Users\Cain\Documents\Photo0091.jpg
[2009/10/10 14:57:30 | 00,030,930 | ---- | C] () -- C:\Users\Cain\Documents\Photo0090.jpg
[2009/10/10 14:52:40 | 00,002,540 | -H-- | C] () -- C:\aaw7boot.cmd
[2009/10/10 14:13:24 | 00,000,472 | ---- | C] () -- C:\Windows\tasks\Ad-Aware Update (Daily).job
[2009/10/10 13:34:24 | 00,000,974 | -HS- | C] () -- C:\Users\Cain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\scandisk.lnk
[2009/10/10 12:01:49 | 00,001,863 | ---- | C] () -- C:\Users\Cain\Desktop\LimeWire 4.16.6.lnk
[2009/10/09 14:37:01 | 03,169,866 | ---- | C] () -- C:\Users\Cain\Desktop\OMD7910.MPG
[2009/10/09 14:34:35 | 09,448,554 | ---- | C] () -- C:\Users\Cain\Desktop\OMD3F24.MPG
[2009/10/09 14:34:27 | 03,169,866 | ---- | C] () -- C:\Users\Cain\Desktop\OMD21B4.MPG
[2009/10/07 23:29:07 | 00,000,971 | ---- | C] () -- C:\Users\Cain\Desktop\WinAVI Video Converter .lnk
[2009/10/07 23:28:54 | 00,003,082 | ---- | C] () -- C:\Windows\System32\affv208325p1now.sys
[2009/10/04 18:46:18 | 01,536,512 | ---- | C] () -- C:\Users\Cain\Documents\Photos of Ford GLi.doc
[2009/09/15 01:17:05 | 04,242,698 | -H-- | C] () -- C:\Users\Cain\AppData\Local\IconCache.db
[2009/09/14 13:47:35 | 00,000,017 | ---- | C] () -- C:\Users\Cain\AppData\Local\resmon.resmoncfg
[2009/09/02 16:55:28 | 00,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2009/09/02 12:22:02 | 00,010,240 | ---- | C] () -- C:\Users\Cain\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/06/24 22:06:20 | 00,109,680 | ---- | C] () -- C:\Users\Cain\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/06/24 13:48:47 | 00,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/06/08 13:35:33 | 00,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2009/06/02 22:40:56 | 00,005,493 | -HS- | C] () -- C:\Users\Cain\AppData\Roaming\02000000795418dd603C.manifest
[2009/06/02 22:40:56 | 00,001,798 | -HS- | C] () -- C:\Users\Cain\AppData\Roaming\02000000795418dd603P.manifest
[2009/06/02 22:40:56 | 00,000,513 | -HS- | C] () -- C:\Users\Cain\AppData\Roaming\02000000795418dd603O.manifest
[2009/06/02 22:40:56 | 00,000,011 | -HS- | C] () -- C:\Users\Cain\AppData\Roaming\02000000795418dd603S.manifest
[2009/05/29 17:52:26 | 00,204,800 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2009/05/16 15:27:00 | 00,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2009/04/22 19:14:13 | 00,000,174 | -HS- | C] () -- C:\Program Files\desktop.ini
[2009/04/22 16:58:02 | 00,000,578 | ---- | C] () -- C:\Windows\win.ini
[2009/04/22 16:58:02 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2009/04/22 14:50:07 | 00,073,216 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/04/22 14:40:32 | 00,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/04/22 14:08:39 | 00,021,584 | ---- | C] () -- C:\Windows\System32\drivers\atapi.sys
[2007/09/04 13:56:10 | 00,164,352 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2007/02/05 21:05:26 | 00,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2005/10/14 21:56:50 | 00,921,600 | ---- | C] () -- C:\Windows\System32\VorbisEnc.dll
[2005/10/14 21:56:50 | 00,761,856 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2005/10/14 21:56:50 | 00,344,064 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2005/10/14 21:56:50 | 00,237,568 | ---- | C] () -- C:\Windows\System32\OggDS.dll
[2005/10/14 21:56:50 | 00,188,416 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2005/10/14 21:56:50 | 00,045,056 | ---- | C] () -- C:\Windows\System32\ogg.dll
[2005/10/14 21:56:48 | 03,223,552 | ---- | C] () -- C:\Windows\System32\libavcodec.dll
[2005/10/14 21:56:48 | 00,540,672 | ---- | C] () -- C:\Windows\System32\libmplayer.dll
[2005/10/14 21:56:48 | 00,266,240 | ---- | C] () -- C:\Windows\System32\TomsMoComp_ff.dll
[2005/10/14 21:56:48 | 00,094,208 | ---- | C] () -- C:\Windows\System32\libmpeg2_ff.dll
[2005/10/14 21:56:48 | 00,077,824 | ---- | C] () -- C:\Windows\System32\MMSwitch.dll
[2003/01/07 16:05:08 | 00,002,695 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI

========== LOP Check ==========

[2009/10/12 11:17:22 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming
[2009/06/24 13:34:43 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Ableton
[2009/06/24 13:34:44 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Ahead
[2009/06/28 14:13:12 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Any Video Converter
[2009/07/02 00:07:28 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Arcsoft
[2009/06/24 13:34:44 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Babylon
[2009/07/26 15:55:25 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Canon
[2009/06/24 13:34:44 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\CyberLink
[2009/06/24 13:34:44 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\GetRightToGo
[2009/10/12 10:41:45 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\LimeWire
[2009/04/22 21:24:12 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Media Center Programs
[2009/09/05 16:34:53 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Opera
[2009/06/30 16:27:15 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Skinux
[2009/10/10 15:09:30 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Uniblue
[2009/09/30 16:31:04 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\UseNeXT
[2009/06/24 13:34:50 | 00,000,000 | ---D | M] -- C:\Users\Cain\AppData\Roaming\Win7codecs
[2009/10/11 14:13:00 | 00,000,472 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Daily).job
[2009/09/11 22:45:52 | 00,000,398 | ---- | M] () -- C:\Windows\Tasks\EasyShare Registration Task.job
[2009/10/12 11:55:00 | 00,000,882 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2009/10/12 12:55:00 | 00,000,886 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2009/10/12 11:20:13 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009/09/03 12:50:05 | 00,032,656 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >

< %systemroot%\system32\eventlog.dll >

< %systemroot%\system32\scecli.dll >
[2009/04/22 16:21:47 | 00,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\scecli.dll

< %systemroot%\netlogon.dll >

< %systemroot%\system32\cngaudit.dll >
[2009/04/22 16:20:04 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\cngaudit.dll

< %systemroot%\system32\sceclt.dll >

< %systemroot%\ntelogon.dll >

< %systemroot%\system32\logevent.dll >

========== Alternate Data Streams ==========

@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:3F2D0C0C
< End of report >
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP