Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

removed troj_generator i think...need help


  • Please log in to reply

#1
shadow23

shadow23

    New Member

  • Member
  • Pip
  • 1 posts
Hi, i'm new to this..... my computer runs slow after removing malware, i googled a programed called regseeker and used it, and i'm pretty sure i deleted things in the registry with that program that i need to run things.... computer runs slow after making changes to registry..i had regseeker because i tought i had malware in registry... i shouldnt of touched things in the registry because i didnt understand how it works and whats safe or not.... but now i understand a bit more about it from other sites and followed some instructions....after all that mess i went to windows recovery and it was off so that really sucks. Now im here downloaded the preporation programs from this site and followed the steps. i had mallware trojans...used the programs rebooted....log file for malwarebytes antimaleware now shows everything is clean...computer running still slow think i messed up my registry...here's log files of OTL, i have other logs from other programs if u need them hope someone can help thanks...

OTL.txt and extras.txt bellow :

OTL logfile created on: 10/24/2009 1:42:46 PM - Run 1
OTL by OldTimer - Version 3.0.22.1 Folder = C:\Users\Lionel\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18828)
Locale: | Country: | Language: | Date Format:

767.48 Mb Total Physical Memory | 301.14 Mb Available Physical Memory | 39.24% Memory free
1.76 Gb Paging File | 0.97 Gb Available in Paging File | 55.19% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 57.27 Gb Total Space | 29.03 Gb Free Space | 50.70% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: LIONEL-PC
Current User Name: Lionel
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2009/10/24 13:14:49 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Lionel\Downloads\OTL.exe
PRC - [2009/08/24 17:15:03 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/08/17 13:07:23 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009/08/17 13:07:17 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009/08/17 13:07:01 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009/08/17 13:04:21 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009/08/17 12:58:55 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009/01/26 15:31:10 | 01,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/12/29 05:49:50 | 02,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2008/01/19 04:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
PRC - [2008/01/19 04:33:39 | 00,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2006/12/19 10:30:26 | 00,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\Windows\System32\IoctlSvc.exe

========== Win32 Services (SafeList) ==========

SRV - [2009/08/17 13:07:17 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])
SRV - [2009/08/17 13:07:01 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])
SRV - [2009/08/17 13:04:21 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])
SRV - [2009/08/17 12:58:55 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])
SRV - [2009/01/26 15:31:10 | 01,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService [Auto | Running])
SRV - [2008/07/27 15:03:13 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2008/06/19 22:14:44 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2008/06/19 22:14:31 | 00,881,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2008/06/19 22:14:31 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2008/04/08 09:56:30 | 00,800,040 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService [On_Demand | Stopped])
SRV - [2008/01/22 11:13:26 | 00,275,752 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Stopped])
SRV - [2008/01/19 04:38:24 | 00,272,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])
SRV - [2008/01/19 04:36:53 | 01,013,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (Eventlog [Auto | Running])
SRV - [2008/01/19 04:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Running])
SRV - [2008/01/19 04:33:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])
SRV - [2006/12/19 10:30:26 | 00,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\Windows\System32\IoctlSvc.exe -- (PLFlash DeviceIoControl Service [Auto | Running])
SRV - [2006/11/02 09:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
SRV - [2006/11/02 09:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])

========== Modules (SafeList) ==========

MOD - [2009/10/24 13:14:49 | 00,521,728 | ---- | M] (OldTimer Tools) -- C:\Users\Lionel\Downloads\OTL.exe
MOD - [2008/01/19 04:26:34 | 01,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft...amp;ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...amp;ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn...st/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.microsoft...amp;ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn...st/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...amp;ar=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft...p...&ar=msnhome
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/iat/us_ca.aspx
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 20 69 CA FA 3F 36 CA 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Live Search"
FF - prefs.js..browser.search.defaulturl: "http://search.live.c...?FORM=IEFM1&q="
FF - prefs.js..browser.search.selectedEngine: "Live Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.ca"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20090918
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/09/17 03:02:15 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/10/22 18:06:29 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/10/22 18:06:25 | 00,000,000 | ---D | M]

[2009/04/06 11:59:15 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\mozilla\Extensions
[2008/12/04 14:27:29 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/04/06 11:59:15 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\mozilla\Extensions\[email protected]
[2009/10/23 14:34:14 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\mozilla\Firefox\Profiles\jq39hspv.default\extensions
[2009/09/17 16:57:11 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\mozilla\Firefox\Profiles\jq39hspv.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/10/21 12:52:55 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\mozilla\Firefox\Profiles\jq39hspv.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2009/10/21 12:52:54 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\mozilla\Firefox\Profiles\jq39hspv.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/02/19 14:34:51 | 00,001,632 | ---- | M] () -- C:\Users\Lionel\AppData\Roaming\Mozilla\FireFox\Profiles\jq39hspv.default\searchplugins\live-search.xml
[2009/10/23 16:01:48 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/10/22 18:06:26 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/08/24 17:15:25 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/08/24 17:15:26 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/05/01 18:02:48 | 01,044,480 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\libdivx.dll
[2007/04/10 17:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2009/08/14 17:48:51 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2009/05/12 15:46:20 | 01,650,992 | ---- | M] (DivX,Inc.) -- C:\Program Files\mozilla firefox\plugins\npdivx32.dll
[2008/12/10 21:33:34 | 00,098,304 | ---- | M] (DivX, Inc) -- C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll
[2009/08/24 17:15:27 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009/02/27 12:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009/05/01 18:02:48 | 00,200,704 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\ssldivx.dll
[2009/08/24 15:45:46 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml
[2009/08/24 15:45:46 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/08/24 15:45:46 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/08/24 15:45:46 | 00,002,344 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml
[2009/08/24 15:45:46 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/08/24 15:45:46 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/08/24 15:45:46 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml

O1 HOSTS File: (344090 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 11797 more lines...
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ClassicShell = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThemesTab = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskmgr = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoColorChoice = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoSizeChoice = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCPL = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoVisualStyleChoice = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: 57 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 57 domain(s) and sub-domain(s) not assigned to a zone.
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 24.222.0.94 24.222.0.95
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2006/09/18 18:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{207174b5-3fe3-11de-bbaf-000d875cb2c0}\Shell - "" = AutoRun
O33 - MountPoints2\{207174b5-3fe3-11de-bbaf-000d875cb2c0}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

NetSvcs: FastUserSwitchingCompatibility - Service key not found. File not found
NetSvcs: Ias - Service key not found. File not found
NetSvcs: Irmon - Service key not found. File not found
NetSvcs: Nla - Service key not found. File not found
NetSvcs: Ntmssvc - Service key not found. File not found
NetSvcs: NWCWorkstation - Service key not found. File not found
NetSvcs: Nwsapagent - Service key not found. File not found
NetSvcs: SRService - Service key not found. File not found
NetSvcs: Wmi - Service key not found. File not found
NetSvcs: WmdmPmSp - Service key not found. File not found
NetSvcs: LogonHours - Service key not found. File not found
NetSvcs: PCAudit - Service key not found. File not found
NetSvcs: helpsvc - Service key not found. File not found
NetSvcs: uploadmgr - Service key not found. File not found

========== Files/Folders - Created Within 14 Days ==========

[2009/10/23 08:28:53 | 00,000,000 | -H-D | C] -- C:\ProgramData\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
[2009/10/23 08:28:07 | 00,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2009/10/23 08:36:23 | 00,000,000 | ---D | C] -- C:\ProgramData\PC Tools
[2009/10/12 13:57:13 | 00,000,000 | ---D | C] -- C:\ProgramData\PlayFirst
[2009/10/10 19:17:49 | 00,000,000 | ---D | C] -- C:\ProgramData\vsosdk
[2009/10/12 09:04:43 | 00,000,000 | ---D | C] -- C:\Users\Lionel\AppData\Roaming\PlayFirst
[2009/10/20 08:57:45 | 00,000,000 | ---D | C] -- C:\Users\Lionel\AppData\Roaming\Smart PC Solutions
[2009/10/22 17:58:32 | 00,000,000 | ---D | C] -- C:\Users\Lionel\AppData\Local\Lunarsoft
[2009/10/23 12:47:28 | 00,000,000 | ---D | C] -- C:\Users\Lionel\AppData\Local\Temp
[2009/10/22 18:28:00 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009/10/22 17:28:35 | 00,000,000 | ---D | C] -- C:\Program Files\CleanUp!
[2009/10/12 09:01:30 | 00,000,000 | ---D | C] -- C:\Program Files\Diner Dash
[2009/10/12 13:56:21 | 00,000,000 | ---D | C] -- C:\Program Files\Dr Daisy Pet Vet
[2009/10/24 13:12:13 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2009/10/22 18:12:27 | 00,000,000 | ---D | C] -- C:\Program Files\ewido anti-malware
[2009/10/23 08:28:07 | 00,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2009/10/22 18:02:47 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/10/23 09:31:41 | 00,000,000 | ---D | C] -- C:\Program Files\Security Process Explorer
[2009/10/23 08:36:23 | 00,000,000 | ---D | C] -- C:\Program Files\ThreatFire
[2009/10/23 11:11:38 | 00,000,000 | ---D | C] -- C:\Program Files\trend micro
[2009/10/23 12:47:54 | 00,000,000 | ---D | C] -- C:\Windows\temp
[2009/10/23 12:47:54 | 00,000,000 | ---D | C] -- C:\Windows\Content.IE5
[2009/10/23 11:11:34 | 00,000,000 | ---D | C] -- C:\rsit
[2009/10/23 10:54:13 | 00,000,000 | ---D | C] -- C:\Rooter$
[2009/10/22 18:02:49 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/10/22 18:02:47 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/10/22 17:30:53 | 00,000,000 | ---D | C] -- C:\1smitRem
[2009/10/22 14:15:59 | 00,000,000 | ---D | C] -- C:\New Folder
[2009/10/22 14:05:55 | 00,000,000 | ---D | C] -- C:\HJTHIS
[2009/10/21 17:55:35 | 00,102,664 | ---- | C] (Trend Micro Inc.) -- C:\Windows\System32\drivers\tmcomm.sys
[2009/10/21 17:33:51 | 00,000,000 | ---D | C] -- C:\Users\Lionel\Desktop\New Folder
[2009/08/21 18:58:13 | 00,047,360 | ---- | C] (VSO Software) -- C:\Users\Lionel\AppData\Roaming\pcouffin.sys
[2007/04/09 13:32:58 | 00,034,816 | ---- | C] ( ) -- C:\Windows\System32\a3d.dll

========== Files - Modified Within 14 Days ==========

[2009/10/24 13:32:12 | 00,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/10/24 13:32:12 | 00,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/10/24 13:12:14 | 00,000,733 | ---- | M] () -- C:\Users\Lionel\Desktop\NTREGOPT.lnk
[2009/10/24 13:12:14 | 00,000,714 | ---- | M] () -- C:\Users\Lionel\Desktop\ERUNT.lnk
[2009/10/24 09:33:09 | 00,000,468 | ---- | M] () -- C:\Windows\tasks\RegCure Program Check.job
[2009/10/24 09:33:09 | 00,000,436 | ---- | M] () -- C:\Windows\tasks\MalwareRemovalBot System Startup.job
[2009/10/24 09:33:09 | 00,000,408 | ---- | M] () -- C:\Windows\tasks\RegCure Startup.job
[2009/10/24 09:33:03 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/10/24 09:32:59 | 90,892,634 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2009/10/24 09:32:17 | 00,001,356 | ---- | M] () -- C:\Users\Lionel\AppData\Local\d3d9caps.dat
[2009/10/24 09:32:03 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/10/24 09:31:57 | 80,483,9424 | -HS- | M] () -- C:\hiberfil.sys
[2009/10/23 19:29:17 | 00,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2009/10/23 19:29:15 | 00,028,160 | ---- | M] () -- C:\Users\Lionel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/10/23 19:25:52 | 00,000,067 | ---- | M] () -- C:\Windows\Easy Avi Divx Xvid to DVD Burner.INI
[2009/10/23 14:11:05 | 00,025,656 | ---- | M] () -- C:\Windows\System32\BMXCtrlState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx
[2009/10/23 14:11:05 | 00,025,656 | ---- | M] () -- C:\Windows\System32\BMXBkpCtrlState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx
[2009/10/23 14:11:05 | 00,016,544 | ---- | M] () -- C:\Windows\System32\BMXStateBkp-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx
[2009/10/23 14:11:05 | 00,016,544 | ---- | M] () -- C:\Windows\System32\BMXState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx
[2009/10/23 14:11:05 | 00,011,564 | ---- | M] () -- C:\Windows\System32\DVCState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx
[2009/10/23 14:08:00 | 00,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2009/10/23 13:09:08 | 00,008,142 | ---- | M] () -- C:\Users\Lionel\Documents\cc_20091023_130903.reg
[2009/10/23 13:02:34 | 00,049,736 | ---- | M] () -- C:\Users\Lionel\Documents\cc_20091023_130030.reg
[2009/10/22 18:28:01 | 00,001,670 | ---- | M] () -- C:\3CCleaner.lnk
[2009/10/22 18:06:32 | 00,001,724 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2009/10/22 16:50:44 | 00,005,523 | ---- | M] () -- C:\Users\Lionel\Documents\hijackthisnew
[2009/10/22 14:36:54 | 00,004,585 | ---- | M] () -- C:\Users\Lionel\Documents\hijackthisoct2209
[2009/10/21 17:54:17 | 00,102,664 | ---- | M] (Trend Micro Inc.) -- C:\Windows\System32\drivers\tmcomm.sys
[2009/10/20 11:56:38 | 00,344,090 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2009/10/19 16:14:33 | 00,000,671 | ---- | M] () -- C:\Users\Lionel\AppData\Roaming\vso_ts_preview.xml
[2009/10/18 03:02:00 | 00,000,402 | ---- | M] () -- C:\Windows\tasks\RegCure.job
[2009/10/16 11:01:15 | 00,000,144 | ---- | M] () -- C:\Windows\win.ini
[2009/10/12 13:56:31 | 00,000,841 | ---- | M] () -- C:\Users\Lionel\Desktop\Dr Daisy Pet Vet.lnk
[2009/10/12 09:01:36 | 00,000,611 | ---- | M] () -- C:\Users\Lionel\Desktop\Diner Dash.lnk

========== Files - No Company Name ==========
[2009/10/24 13:12:14 | 00,000,733 | ---- | C] () -- C:\Users\Lionel\Desktop\NTREGOPT.lnk
[2009/10/24 13:12:14 | 00,000,714 | ---- | C] () -- C:\Users\Lionel\Desktop\ERUNT.lnk
[2009/10/24 09:32:03 | 90,892,634 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2009/10/23 17:00:20 | 80,483,9424 | -HS- | C] () -- C:\hiberfil.sys
[2009/10/23 13:09:05 | 00,008,142 | ---- | C] () -- C:\Users\Lionel\Documents\cc_20091023_130903.reg
[2009/10/23 13:00:35 | 00,049,736 | ---- | C] () -- C:\Users\Lionel\Documents\cc_20091023_130030.reg
[2009/10/23 09:54:16 | 00,000,370 | ---- | C] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2009/10/22 18:28:01 | 00,001,670 | ---- | C] () -- C:\3CCleaner.lnk
[2009/10/22 16:50:44 | 00,005,523 | ---- | C] () -- C:\Users\Lionel\Documents\hijackthisnew
[2009/10/22 14:36:53 | 00,004,585 | ---- | C] () -- C:\Users\Lionel\Documents\hijackthisoct2209
[2009/10/12 13:56:31 | 00,000,841 | ---- | C] () -- C:\Users\Lionel\Desktop\Dr Daisy Pet Vet.lnk
[2009/10/12 09:01:36 | 00,000,611 | ---- | C] () -- C:\Users\Lionel\Desktop\Diner Dash.lnk
[2009/08/21 19:00:57 | 00,000,671 | ---- | C] () -- C:\Users\Lionel\AppData\Roaming\vso_ts_preview.xml
[2009/08/21 19:00:19 | 00,000,034 | ---- | C] () -- C:\Users\Lionel\AppData\Roaming\pcouffin.log
[2009/08/21 18:58:13 | 00,087,608 | ---- | C] () -- C:\Users\Lionel\AppData\Roaming\inst.exe
[2009/08/21 18:58:13 | 00,007,887 | ---- | C] () -- C:\Users\Lionel\AppData\Roaming\pcouffin.cat
[2009/08/21 18:58:13 | 00,001,144 | ---- | C] () -- C:\Users\Lionel\AppData\Roaming\pcouffin.inf
[2009/07/19 10:55:07 | 00,000,455 | ---- | C] () -- C:\Windows\wininit.ini
[2009/05/14 07:01:16 | 00,061,678 | ---- | C] () -- C:\Users\Lionel\AppData\Roaming\PFP120JPR.{PB
[2009/05/14 07:01:16 | 00,012,358 | ---- | C] () -- C:\Users\Lionel\AppData\Roaming\PFP120JCM.{PB
[2009/05/08 19:02:29 | 00,000,241 | ---- | C] () -- C:\Windows\QSync.INI
[2009/05/08 18:59:39 | 00,005,187 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2009/05/08 18:59:34 | 00,000,544 | ---- | C] () -- C:\Windows\_delis32.ini
[2009/05/08 18:59:00 | 00,147,456 | ---- | C] () -- C:\Windows\System32\MimicICM.dll
[2009/05/08 18:49:25 | 00,000,031 | ---- | C] () -- C:\Windows\warhead.ini
[2009/02/23 22:17:38 | 00,237,568 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2008/12/10 14:07:45 | 00,000,067 | ---- | C] () -- C:\Windows\Easy Avi Divx Xvid to DVD Burner.INI
[2008/12/10 13:04:43 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008/12/10 13:02:19 | 00,028,160 | ---- | C] () -- C:\Users\Lionel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/12/08 16:36:50 | 00,000,041 | -HS- | C] () -- C:\ProgramData\.zreglib
[2008/12/05 17:32:42 | 00,000,422 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2008/12/04 13:25:46 | 00,071,360 | ---- | C] () -- C:\Users\Lionel\AppData\Local\GDIPFONTCACHEV1.DAT
[2008/12/04 13:23:53 | 00,001,356 | ---- | C] () -- C:\Users\Lionel\AppData\Local\d3d9caps.dat
[2008/11/06 13:37:32 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/11/06 13:34:00 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest
[2008/11/06 13:34:00 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest
[2008/11/06 13:33:02 | 00,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll
[2007/04/12 09:10:28 | 00,105,728 | ---- | C] () -- C:\Windows\System32\APOMgrH.dll
[2007/04/09 13:55:14 | 00,097,785 | ---- | C] () -- C:\Windows\System32\instwdm.ini
[2007/04/09 13:55:14 | 00,000,054 | ---- | C] () -- C:\Windows\System32\ctzapxx.ini
[2007/04/09 13:33:50 | 00,043,520 | ---- | C] () -- C:\Windows\System32\CTBurst.dll
[2006/11/02 09:50:50 | 00,000,174 | -HS- | C] () -- C:\Program Files\desktop.ini
[2006/11/02 09:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 07:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 07:23:31 | 00,000,144 | ---- | C] () -- C:\Windows\win.ini
[2006/11/02 04:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/10/27 08:26:56 | 00,069,632 | ---- | C] () -- C:\Windows\System32\vuins32.dll
[2006/10/02 10:25:18 | 00,000,307 | ---- | C] () -- C:\Windows\System32\kill.ini
[2005/06/16 11:17:16 | 00,071,680 | ---- | C] () -- C:\Windows\System32\ctmmactl.dll
[1996/04/03 16:33:26 | 00,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys

========== LOP Check ==========

[2009/10/20 08:57:45 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming
[2009/10/16 19:43:53 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\Ahead
[2009/08/14 10:17:03 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\Corel
[2008/12/10 14:06:43 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\Download Manager
[2009/05/08 18:58:34 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\FotoWire
[2009/10/23 13:12:43 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\LimeWire
[2006/11/02 09:37:34 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\Media Center Programs
[2009/10/12 13:57:13 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\PlayFirst
[2009/10/20 08:57:45 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\Smart PC Solutions
[2009/10/23 13:12:43 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\UseNeXT
[2009/10/23 19:28:03 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\uTorrent
[2009/10/19 16:14:34 | 00,000,000 | ---D | M] -- C:\Users\Lionel\AppData\Roaming\Vso
[2009/10/23 14:08:00 | 00,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2009/10/24 09:33:09 | 00,000,436 | ---- | M] () -- C:\Windows\Tasks\MalwareRemovalBot System Startup.job
[2009/10/24 09:33:09 | 00,000,468 | ---- | M] () -- C:\Windows\Tasks\RegCure Program Check.job
[2009/10/24 09:33:09 | 00,000,408 | ---- | M] () -- C:\Windows\Tasks\RegCure Startup.job
[2009/10/18 03:02:00 | 00,000,402 | ---- | M] () -- C:\Windows\Tasks\RegCure.job
[2009/10/24 09:33:03 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009/10/23 14:10:34 | 00,032,606 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >

< %systemroot%\system32\eventlog.dll >

< %systemroot%\system32\scecli.dll >
[2008/01/19 04:36:19 | 00,177,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\scecli.dll

< %systemroot%\netlogon.dll >

< %systemroot%\system32\cngaudit.dll >
[2006/11/02 06:46:03 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\cngaudit.dll

< %systemroot%\system32\sceclt.dll >

< %systemroot%\ntelogon.dll >

< %systemroot%\system32\logevent.dll >

< %systemroot%\system32\drivers\iaStor.sys >

< %systemroot%\System32\drivers\nvstor.sys >
[2006/11/02 06:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvstor.sys

< %systemroot%\system32\drivers\atapi.sys >
[2008/01/19 04:41:30 | 00,021,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\atapi.sys

< %systemroot%\system32\drivers\IdeChnDr.sys >
< End of report >

OTL Extras logfile created on: 10/24/2009 1:42:46 PM - Run 1
OTL by OldTimer - Version 3.0.22.1 Folder = C:\Users\Lionel\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18828)
Locale: | Country: | Language: | Date Format:

767.48 Mb Total Physical Memory | 301.14 Mb Available Physical Memory | 39.24% Memory free
1.76 Gb Paging File | 0.97 Gb Available in Paging File | 55.19% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 57.27 Gb Total Space | 29.03 Gb Free Space | 50.70% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: LIONEL-PC
Current User Name: Lionel
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [edit] -- % File not found
regfile [merge] -- Reg Error: Key error.
regfile [print] -- % File not found
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-686331883-132826004-2477959630-1000]
"EnableNotifications" = 0
"EnableNotificationsRef" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{9D8DEA29-579F-4441-BC04-F85EF50F9B55}" = lport=2869 | protocol=6 | dir=in | app=system |
"{D37DE9A9-12F9-472D-9DA5-C87DC7419B9D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0206AD2B-3226-4AAC-BD2C-CFE5633D1E3C}" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe |
"{192CB575-39E1-4108-A60D-C949CD8C50B9}" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{1E52887B-11AB-4DDE-B165-F7101AEAAB81}" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe |
"{2426780E-8C9B-4E90-B1EB-97E939ACC484}" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{2E8B6E77-10B1-4AEE-9E4F-95CCBC6B7E9B}" = protocol=58 | dir=in | app=system |
"{2F6CB2B7-63FD-4764-9204-161F061D3078}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{3CAF013E-F058-44D7-8227-A409E93F5543}" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe |
"{412531EC-E035-4A1E-A7EE-08F32F494C56}" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{66F50F1B-2F07-49B5-BD74-498F15C07FEC}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{774A3415-FAA8-4C16-AD97-0622F023F28D}" = protocol=58 | dir=out | [email protected],-203 |
"{83F34630-19A8-4AA5-AD2B-386913BF6986}" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{9EDC907D-7B0A-4F78-A9B2-CCD23C0B08E5}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{C31ABDEF-E9E4-428F-B771-DF6788A2E8A5}" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe |
"TCP Query User{2740F53C-8C01-478E-8B00-EF801005EB38}C:\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"TCP Query User{435E87C5-0641-4809-B1E2-69930F8F1670}C:\program files\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files\ares\ares.exe |
"TCP Query User{78E2D586-14E7-4FDA-8847-CA4B1A3EEC15}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{BBBE2AFD-0C40-428B-86D9-325494B8177A}C:\program files\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files\ares\ares.exe |
"TCP Query User{FBE7C177-8679-4A63-9F9C-30B4AA29C3FB}C:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"UDP Query User{8263D519-5706-437A-8F90-3956BE4670C8}C:\program files\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files\ares\ares.exe |
"UDP Query User{AD8CCEFD-4F7B-495C-8ECE-72306D66987E}C:\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"UDP Query User{B995497B-FEB8-472C-A291-D90877DD4DA5}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{B99CF87D-C939-4594-B8F9-FA899E7EA174}C:\program files\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files\ares\ares.exe |
"UDP Query User{BFCF9A5C-1A3C-4DF1-8008-2427B0425A8F}C:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0AAA9C97-74D4-47CE-B089-0B147EF3553C}" = Windows Live Messenger
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2A1E27FF-BE53-45B4-950F-060236E98E3D}" = TMPGEnc Plus 2.5
"{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}" = Logitech SetPoint
"{359cfc0a-beb1-440d-95ba-cf63a86da34f}" = Nero Recode
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{56918C0C-0D87-4CA6-92BF-4975A43AC719}" = KhalInstallWrapper
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{595a3116-40bb-4e0f-a2e8-d7951da56270}" = NeroExpress
"{5A24DD7E-7B01-41AC-ADA8-F1776177A3BA}" = Logitech ImageStudio
"{62ac81f6-bdd3-4110-9d36-3e9eaab40999}" = Nero CoverDesigner
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}" = HP Photo and Imaging 2.0 - All-in-One Drivers
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.3.4.106e
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7748ac8c-18e3-43bb-959b-088faea16fb2}" = Nero StartSmart
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{8548973f-2967-4240-86c2-824fe6be3585}" = Nero 9 Trial
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}" = CDDRV_Installer
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{984F10FD-11FD-4BED-8163-92DB81E6A825}" = Logitech IM Video Companion
"{98EFD8F0-08DE-48DB-B922-A2EBAB711033}" = Nero 7 Ultra Edition
"{9e82b934-9a25-445b-b8df-8012808074ac}" = Nero PhotoSnap
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1.2
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B10D4952-97EA-401D-AF22-930BA7BE2A9B}" = UDISK Accessory
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{B376402D-58EA-45EA-BD50-DD924EB67A70}" = HP Memories Disc
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{C24B27DF-5621-4595-9E70-CB345ED0A674}" = AdwareAlert
"{C36E332D-1A46-44A3-940F-463689EAE08D}" = WordPerfect Office 12
"{c5a7cb6c-e76d-408f-ba0e-85605420fe9d}" = SoundTrax
"{C6CA8874-5F22-4AF0-9BE3-016BF299C536}" = Windows Live Essentials
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{d025a639-b9c9-417d-8531-208859000af8}" = NeroBurningROM
"{d9dcf92e-72eb-412d-ac71-3b01276e5f8b}" = Nero ShowTime
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"Ad-Aware" = Ad-Aware
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"avast!" = avast! Antivirus
"Build A Lot 3 Passport To Europe_is1" = Build A Lot 3 Passport To Europe
"Build-a-lot 4 Power Source_is1" = Build-a-lot 4 Power Source
"CCleaner" = CCleaner (remove only)
"CleanUp!" = CleanUp!
"Daniusoft Media Converter Pro_is1" = Daniusoft Media Converter Pro(Build 2.3.4.0)
"Diner Dash_is1" = Diner Dash
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"Dr Daisy Pet Vet_is1" = Dr Daisy Pet Vet
"DVD Decrypter" = DVD Decrypter (Remove Only)
"Easy Avi/Divx/Xvid to DVD Burner_is1" = Easy Avi/Divx/Xvid to DVD Burner 2.5.1
"ERUNT_is1" = ERUNT 1.1j
"EZ WMV TO AVI Converter_is1" = EZ WMV TO AVI Converter 3.30.0405
"Google Earth Pro 4.2" = Google Earth Pro 4.2
"Guitar Pro 5_is1" = Guitar Pro 5.2
"HijackThis" = HijackThis 1.99.1
"InstallShield_{2A1E27FF-BE53-45B4-950F-060236E98E3D}" = TMPGEnc Plus 2.5
"LimeWire" = LimeWire PRO 5.0.11
"Logitech Print Service" = Logitech Print Service
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.3)" = Mozilla Firefox (3.5.3)
"RealPlayer 6.0" = RealPlayer 7 Basic
"Security Process Explorer_is1" = Security Process Explorer 1.6
"Security Task Manager" = Security Task Manager 1.7g
"SpeedFan" = SpeedFan (remove only)
"VLC media player" = VLC media player 1.0.1
"VN_VUIns_Rhine_VIA" = VIA Rhine Family Fast Ethernet Adapter
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"Yahoo! Messenger" = Yahoo! Messenger

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 12/5/2008 4:48:04 PM | Computer Name = Lionel-PC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
E:\Setup\product\2200.msi failed, 00000017.

Error - 1/1/2009 7:20:29 PM | Computer Name = Lionel-PC | Source = avast! | ID = 33554522
Description = AAVM - initialization error: AavmStart: avworkInitialize failed, 0000A438.


[ Application Events ]
Error - 10/21/2009 4:55:16 PM | Computer Name = Lionel-PC | Source = Windows Search Service | ID = 3013
Description =

Error - 10/21/2009 4:55:18 PM | Computer Name = Lionel-PC | Source = Windows Search Service | ID = 3013
Description =

Error - 10/21/2009 4:55:18 PM | Computer Name = Lionel-PC | Source = Windows Search Service | ID = 3013
Description =

Error - 10/22/2009 4:01:20 PM | Computer Name = Lionel-PC | Source = EventSystem | ID = 4609
Description =

Error - 10/22/2009 5:04:31 PM | Computer Name = Lionel-PC | Source = Application Error | ID = 1000
Description = Faulting application setup.exe_Firefox, version 1.0.0.0, time stamp
0x47445bf9, faulting module ntdll.dll, version 6.0.6001.18000, time stamp 0x4791a7a6,
exception code 0xc0000005, fault offset 0x0000ebb8, process id 0x46c, application
start time 0x01ca535b227c8940.

Error - 10/22/2009 5:05:34 PM | Computer Name = Lionel-PC | Source = Application Error | ID = 1000
Description = Faulting application setup.exe_Firefox, version 1.0.0.0, time stamp
0x47445bf9, faulting module ntdll.dll, version 6.0.6001.18000, time stamp 0x4791a7a6,
exception code 0xc0000005, fault offset 0x0000ebb8, process id 0x558, application
start time 0x01ca535b49d28ee0.

Error - 10/22/2009 5:06:33 PM | Computer Name = Lionel-PC | Source = Application Error | ID = 1000
Description = Faulting application setup.exe_Firefox, version 1.0.0.0, time stamp
0x47445bf9, faulting module ntdll.dll, version 6.0.6001.18000, time stamp 0x4791a7a6,
exception code 0xc0000005, fault offset 0x0000ebb8, process id 0xd18, application
start time 0x01ca535b72d90690.

Error - 10/23/2009 7:32:33 AM | Computer Name = Lionel-PC | Source = Lavasoft Ad-Aware Service | ID = 0
Description =

Error - 10/23/2009 7:34:55 AM | Computer Name = Lionel-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 10/23/2009 7:34:55 AM | Computer Name = Lionel-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

[ Media Center Events ]
Error - 4/20/2009 1:27:51 PM | Computer Name = Lionel-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 6/10/2009 1:47:59 AM | Computer Name = Lionel-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 6/15/2009 11:00:32 AM | Computer Name = Lionel-PC | Source = Media Center Guide | ID = 0
Description = Event Info: ERROR: SqmApiWrapper.TimerRecord failed; Win32 GetLastError
returned 10000105 Process: DefaultDomain Object Name: Media Center Guide

Error - 7/10/2009 4:22:56 PM | Computer Name = Lionel-PC | Source = Media Center Guide | ID = 0
Description = Event Info: ERROR: SqmApiWrapper.TimerRecord failed; Win32 GetLastError
returned 10000105 Process: DefaultDomain Object Name: Media Center Guide

Error - 10/7/2009 4:36:38 PM | Computer Name = Lionel-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

[ System Events ]
Error - 4/24/2009 12:21:02 PM | Computer Name = Lionel-PC | Source = volmgr | ID = 262189
Description = The system could not sucessfully load the crash dump driver.

Error - 4/25/2009 9:07:09 AM | Computer Name = Lionel-PC | Source = volmgr | ID = 262189
Description = The system could not sucessfully load the crash dump driver.

Error - 4/25/2009 9:07:53 AM | Computer Name = Lionel-PC | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.100.11
on the Network Card with network address 000D875CB2C0.

Error - 4/25/2009 7:37:57 PM | Computer Name = Lionel-PC | Source = Dhcp | ID = 1002
Description = The IP address lease 24.222.148.191 for the Network Card with network
address 000D875CB2C0 has been denied by the DHCP server 192.168.100.1 (The DHCP
Server sent a DHCPNACK message).

Error - 4/26/2009 4:11:04 AM | Computer Name = Lionel-PC | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.100.11
on the Network Card with network address 000D875CB2C0.

Error - 4/26/2009 3:54:51 PM | Computer Name = Lionel-PC | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.100.11
on the Network Card with network address 000D875CB2C0.

Error - 4/28/2009 5:57:45 AM | Computer Name = Lionel-PC | Source = volmgr | ID = 262189
Description = The system could not sucessfully load the crash dump driver.

Error - 4/28/2009 5:59:36 AM | Computer Name = Lionel-PC | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.100.11
on the Network Card with network address 000D875CB2C0.

Error - 4/28/2009 6:11:04 AM | Computer Name = Lionel-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 7:09:53 AM on 4/28/2009 was unexpected.

Error - 4/29/2009 1:58:48 AM | Computer Name = Lionel-PC | Source = Dhcp | ID = 1002
Description = The IP address lease 24.224.185.6 for the Network Card with network
address 000D875CB2C0 has been denied by the DHCP server 192.168.100.1 (The DHCP
Server sent a DHCPNACK message).


< End of report >
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP