Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

plz help ---

Started by damddrew , Jan 23 2010 10:06 AM

  • Please log in to reply

#1
damddrew
Posted 23 January 2010 - 10:06 AM

damddrew

    Member

  • Member
  • PipPip
  • 32 posts
ok, im gonna try this as requested:
otl.txt:
OTL logfile created on: 1/23/2010 10:34:09 AM - Run 2
OTL by OldTimer - Version 3.1.26.0 Folder = C:\0~ Chrome DLs
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

759.00 Mb Total Physical Memory | 399.00 Mb Available Physical Memory | 53.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 69.00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 127.99 Gb Total Space | 31.20 Gb Free Space | 24.38% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 549.82 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive J: | 97.66 Gb Total Space | 58.84 Gb Free Space | 60.25% Space Free | Partition Type: NTFS
Drive K: | 72.44 Gb Total Space | 68.19 Gb Free Space | 94.13% Space Free | Partition Type: NTFS

Computer Name: DEM-AZ4N0N4DL9W
Current User Name: ~MichianaCatz420~
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/01/23 10:22:03 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\0~ Chrome DLs\OTL.exe
PRC - [2009/12/08 14:25:28 | 00,093,320 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2009/11/18 12:47:14 | 01,243,088 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\pctsTray.exe
PRC - [2009/11/10 10:28:08 | 00,112,592 | ---- | M] (Threat Expert Ltd.) -- C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe
PRC - [2009/11/06 14:29:22 | 01,141,712 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\pctsSvc.exe
PRC - [2009/10/30 11:18:16 | 00,359,624 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\pctsAuxs.exe
PRC - [2009/10/29 06:54:44 | 01,218,008 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2009/10/27 11:19:46 | 00,895,696 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MpfSrv.exe
PRC - [2009/09/23 07:36:06 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009/09/16 10:22:08 | 00,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\Mcshield.exe
PRC - [2009/09/16 09:28:38 | 00,606,736 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe
PRC - [2009/07/16 03:54:38 | 00,163,144 | ---- | M] (TuneUp Software GmbH) -- C:\Program Files\TuneUp Utilities 2009\MemOptimizer.exe
PRC - [2009/07/10 00:26:20 | 00,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe
PRC - [2009/07/08 11:54:34 | 00,359,952 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
PRC - [2009/07/07 19:10:02 | 02,482,848 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
PRC - [2008/04/13 19:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/06/01 17:22:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2002/10/16 21:56:00 | 00,176,128 | ---- | M] (Executive Software International, Inc.) -- C:\Program Files\Executive Software\DiskeeperLite\DKService.exe


========== Modules (SafeList) ==========

MOD - [2010/01/23 10:22:03 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\0~ Chrome DLs\OTL.exe
MOD - [2009/10/30 11:18:16 | 00,147,024 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\PCTGMhk.dll
MOD - [2009/09/09 22:54:58 | 00,155,184 | ---- | M] (PC Tools) -- C:\Program Files\Spyware Doctor\smum32.dll
MOD - [2006/06/01 17:22:00 | 01,466,368 | ---- | M] () -- C:\WINDOWS\system32\nview.dll
MOD - [2006/06/01 17:22:00 | 01,019,904 | ---- | M] () -- C:\WINDOWS\system32\nvwimg.dll
MOD - [2006/06/01 17:22:00 | 00,081,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvwddi.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (0229271256128357mcinstcleanup) McAfee Application Installer Cleanup (0229271256128357)
SRV - [2010/01/04 07:51:04 | 00,604,488 | ---- | M] (TuneUp Software) [Disabled | Stopped] -- C:\WINDOWS\system32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)
SRV - [2010/01/04 07:50:59 | 00,361,288 | ---- | M] (TuneUp Software) [Disabled | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009/12/08 14:25:28 | 00,093,320 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2009/11/10 10:28:08 | 00,112,592 | ---- | M] (Threat Expert Ltd.) [Auto | Running] -- C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe -- (Browser Defender Update Service)
SRV - [2009/11/06 14:29:22 | 01,141,712 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Spyware Doctor\pctsSvc.exe -- (sdCoreService)
SRV - [2009/10/30 11:18:16 | 00,359,624 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\Spyware Doctor\pctsAuxs.exe -- (sdAuxService)
SRV - [2009/10/27 11:19:46 | 00,895,696 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MPF\MPFSrv.exe -- (MpfService)
SRV - [2009/09/28 09:42:50 | 00,109,056 | ---- | M] (ArcSoft Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2009/09/23 07:36:06 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009/09/16 11:23:32 | 00,365,072 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2009/09/16 10:22:08 | 00,144,704 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\McAfee\VirusScan\Mcshield.exe -- (McShield)
SRV - [2009/09/16 09:28:38 | 00,606,736 | ---- | M] (McAfee, Inc.) [On_Demand | Running] -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe -- (McSysmon)
SRV - [2009/08/13 17:19:10 | 00,346,112 | ---- | M] (J. River, Inc.) [Disabled | Stopped] -- C:\Program Files\J River\Media Center 14\JRService.exe -- (Media Center 14 Service)
SRV - [2009/07/15 04:48:20 | 00,029,000 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2009/07/10 00:26:20 | 00,865,832 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSC\mcmscsvc.exe -- (mcmscsvc)
SRV - [2009/07/08 11:54:34 | 00,359,952 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe -- (McProxy)
SRV - [2009/07/07 19:10:02 | 02,482,848 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe -- (McNASvc)
SRV - [2008/11/09 15:48:14 | 00,602,392 | ---- | M] (Yahoo! Inc.) [Disabled | Stopped] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2006/06/01 17:22:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2006/03/03 21:03:10 | 00,069,632 | ---- | M] (HP) [On_Demand | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2003/07/28 12:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2002/10/16 21:56:00 | 00,176,128 | ---- | M] (Executive Software International, Inc.) [Auto | Running] -- C:\Program Files\Executive Software\DiskeeperLite\DKService.exe -- (Diskeeper)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://att.net
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.c...//www.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "yahoo.com"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3
FF - prefs.js..extensions.enabledItems: {4176DFF4-4698-11DE-BEEB-45DA55D89593}:0.6.18
FF - prefs.js..extensions.enabledItems: {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}:3.0
FF - prefs.js..extensions.enabledItems: [email protected]:1.11.6
FF - prefs.js..extensions.enabledItems: [email protected]:3.1.0
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.0
FF - prefs.js..extensions.enabledItems: [email protected]:7
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..extensions.enabledItems: [email protected]:0.66
FF - prefs.js..extensions.enabledItems: {3EC9C995-8072-4fc0-953E-4F30620D17F3}:2.0.0.4


FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2010/01/13 10:02:12 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{B728AB94-9BC7-49b7-B76A-422BB31B2FD0}: C:\Program Files\ArcSoft\Media Converter for Philips\Internet Video Downloader\Plugin_FireFox [2009/11/27 18:40:28 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/01/18 18:39:04 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/01/18 18:39:04 | 00,000,000 | ---D | M]

[2010/01/01 14:52:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Mozilla\Extensions
[2010/01/20 17:18:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Mozilla\Firefox\Profiles\tsdcme50.default\extensions
[2010/01/01 15:09:11 | 00,000,000 | ---D | M] (WeatherBug) -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Mozilla\Firefox\Profiles\tsdcme50.default\extensions\{3EC9C995-8072-4fc0-953E-4F30620D17F3}
[2010/01/01 15:10:34 | 00,000,000 | ---D | M] (AniWeather) -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Mozilla\Firefox\Profiles\tsdcme50.default\extensions\{4176DFF4-4698-11DE-BEEB-45DA55D89593}
[2010/01/15 23:38:19 | 00,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Mozilla\Firefox\Profiles\tsdcme50.default\extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}
[2010/01/10 19:52:17 | 00,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Mozilla\Firefox\Profiles\tsdcme50.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/01/10 19:52:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Mozilla\Firefox\Profiles\tsdcme50.default\extensions\[email protected]
[2010/01/15 12:29:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Mozilla\Firefox\Profiles\tsdcme50.default\extensions\[email protected]
[2010/01/15 23:38:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Mozilla\Firefox\Profiles\tsdcme50.default\extensions\[email protected]
[2010/01/01 14:51:43 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/11/19 17:16:28 | 00,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
[2010/01/11 16:19:22 | 00,075,208 | ---- | M] (Foxit Software Company) -- C:\Program Files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
[2009/11/19 17:16:29 | 00,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll

O1 HOSTS File: ([2010/01/12 04:04:24 | 00,000,773 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.255.255.255 serial.alcohol-soft.com
O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (no name) - AutorunsDisabled - No CLSID value found.
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Sigma Team Toolbar) - {5A089BCD-C7F1-4064-8702-F58D8BD5D61F} - C:\Program Files\Sigma_Team\tbSig0.dll (Conduit Ltd.)
O4 - HKLM..\Run: [ISTray] C:\Program Files\Spyware Doctor\pctsTray.exe (PC Tools)
O4 - HKLM..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKCU..\Run: [TuneUp MemOptimizer] C:\Program Files\TuneUp Utilities 2009\MemOptimizer.exe (TuneUp Software GmbH)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled [2009/12/11 01:53:40 | 00,000,000 | -H-D | M]
O4 - Startup: C:\Documents and Settings\~MichianaCatz420~\Start Menu\Programs\Startup\AutorunsDisabled [2010/01/10 18:43:00 | 00,000,000 | -H-D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogOff = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MaxRecentDocs = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWinKeys = 1
O8 - Extra context menu item: DiaryOne: Save full text - C:\Program Files\DiaryOne\Script\fullcatcher.htm ()
O8 - Extra context menu item: DiaryOne: Save selected text - C:\Program Files\DiaryOne\Script\catcher.htm ()
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.appl...ex/qtplugin.cab (QuickTime Object)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AutorunsDisabled: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop Components:0 () -
O24 - Desktop WallPaper: C:\Documents and Settings\~MichianaCatz420~\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\~MichianaCatz420~\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/09/17 21:12:47 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009/09/29 03:35:22 | 00,000,097 | R--- | M] () - I:\Autorun.inf -- [ CDFS ]
O33 - MountPoints2\{1a9213cc-c753-11de-bbd2-0011091c1fc9}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{d74936a7-a6a6-11de-bb64-0011091c1fc9}\Shell - "" = AutoRun
O33 - MountPoints2\{d74936a7-a6a6-11de-bb64-0011091c1fc9}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\I\Shell - "" = AutoRun
O33 - MountPoints2\I\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\Zombie_Shooter2_Setup.exe -- [2009/09/29 03:35:22 | 57,279,0744 | R--- | M] (Sigma Team )
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2009/09/17 21:12:25 | 00,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (66431431693303808)

========== Files/Folders - Created Within 14 Days ==========

[2010/01/23 10:05:55 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\~MichianaCatz420~\Recent
[2010/01/19 09:33:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\~MichianaCatz420~\Local Settings\Application Data\Yahoo!
[2010/01/18 18:39:07 | 00,230,808 | R--- | C] (Coupons, Inc.) -- C:\WINDOWS\System32\cpnprt2.cid
[2010/01/18 18:38:53 | 00,000,000 | ---D | C] -- C:\Program Files\Coupons
[2010/01/17 22:37:54 | 00,000,000 | ---D | C] -- C:\tmpDownload
[2010/01/15 16:31:19 | 00,000,000 | ---D | C] -- C:\Program Files\thriXXX
[2010/01/13 17:38:02 | 00,000,000 | ---D | C] -- C:\_OTL
[2010/01/13 16:39:07 | 00,000,000 | ---D | C] -- C:\Program Files\Executive Software
[2010/01/12 15:15:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\~MichianaCatz420~\My Documents\Zombie Shooter 2 Saves
[2010/01/12 15:07:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\~MichianaCatz420~\Local Settings\Application Data\Sigma_Team
[2010/01/12 15:07:10 | 00,000,000 | ---D | C] -- C:\Program Files\Sigma_Team
[2010/01/12 14:59:26 | 00,000,000 | ---D | C] -- C:\Program Files\Sigma Team
[2010/01/12 04:01:29 | 00,000,000 | ---D | C] -- C:\Program Files\Alcohol Soft
[2010/01/11 16:19:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Foxit
[2010/01/11 16:19:37 | 00,000,000 | ---D | C] -- C:\Program Files\Foxit Software
[2010/01/11 15:13:12 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010/01/11 09:28:44 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared
[2010/01/11 09:27:56 | 00,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010/01/11 09:27:53 | 00,000,000 | ---D | C] -- C:\Program Files\Real
[2010/01/11 09:27:48 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2010/01/11 09:27:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010/01/11 09:25:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Real
[2010/01/10 20:11:16 | 00,000,000 | ---D | C] -- C:\Inetpub
[2010/01/09 22:19:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\iwin
[2010/01/09 18:02:28 | 00,000,000 | ---D | C] -- C:\Program Files\Super Internet TV
[2010/01/04 10:18:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2010/01/01 18:23:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\PC Tools
[2009/11/27 18:38:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2009/09/26 14:33:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Application Data\J River
[2009/09/24 12:46:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\SACore
[2009/09/23 20:47:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2009/09/18 10:34:47 | 00,047,360 | -H-- | C] (VSO Software) -- C:\Documents and Settings\~MichianaCatz420~\Application Data\pcouffin.sys
[2009/09/17 22:58:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\J River
[2009/09/17 21:16:09 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2009/09/17 21:16:08 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2009/09/17 21:16:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2006/02/19 03:28:56 | 00,012,288 | ---- | C] (Hewlett-Packard Development Company, L.P.) -- C:\WINDOWS\Fonts\RandFont.dll

========== Files - Modified Within 14 Days ==========

[2010/01/23 10:30:35 | 05,242,880 | ---- | M] () -- C:\Documents and Settings\~MichianaCatz420~\ntuser.dat
[2010/01/23 10:07:51 | 00,000,436 | ---- | M] () -- C:\WINDOWS\tasks\Auslogics Boost Speed Disk Defrag Start On Windows Logon.job
[2010/01/23 10:02:40 | 00,067,736 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/01/23 10:02:25 | 00,018,177 | ---- | M] () -- C:\WINDOWS\System32\Config.MPF
[2010/01/23 10:02:04 | 00,000,510 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2010/01/23 09:59:26 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/01/23 09:59:21 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/01/23 07:01:30 | 00,000,178 | -HS- | M] () -- C:\Documents and Settings\~MichianaCatz420~\ntuser.ini
[2010/01/22 12:46:38 | 00,000,446 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{EB6D3F49-6A5F-47EA-BA6C-9DA2A34DF747}.job
[2010/01/22 01:54:17 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/01/20 14:20:30 | 00,000,642 | ---- | M] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\bob.lnk
[2010/01/18 23:57:12 | 00,000,614 | ---- | M] () -- C:\WINDOWS\tasks\Auslogics Boost Speed Disk Defrag Console Defragmentation.job
[2010/01/18 18:39:07 | 00,230,808 | R--- | M] (Coupons, Inc.) -- C:\WINDOWS\System32\cpnprt2.cid
[2010/01/18 12:03:45 | 00,000,383 | ---- | M] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\net vidz.lnk
[2010/01/18 11:32:04 | 00,000,504 | ---- | M] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\GoGear flicks.lnk
[2010/01/17 08:14:27 | 00,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2010/01/14 13:08:03 | 00,073,248 | ---- | M] () -- C:\Documents and Settings\~MichianaCatz420~\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/01/13 17:46:12 | 00,244,720 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/01/13 16:40:19 | 00,000,767 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Diskeeper Lite.lnk
[2010/01/12 17:36:21 | 00,000,489 | ---- | M] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\TnT.lnk
[2010/01/12 15:06:57 | 00,000,891 | ---- | M] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\Zombie Shooter 2.lnk
[2010/01/12 04:05:37 | 00,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Alcohol 120%.lnk
[2010/01/12 03:49:44 | 00,715,248 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/01/12 01:30:18 | 02,377,428 | ---- | M] () -- C:\Documents and Settings\~MichianaCatz420~\My Documents\AutoRuns.arn
[2010/01/11 16:19:40 | 00,000,883 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Foxit Reader.lnk
[2010/01/11 15:49:53 | 01,612,426 | -H-- | M] () -- C:\Documents and Settings\~MichianaCatz420~\Local Settings\Application Data\IconCache.db
[2010/01/11 15:13:17 | 00,001,548 | ---- | M] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\CCleaner.lnk
[2010/01/11 09:27:56 | 00,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010/01/10 19:45:08 | 00,000,210 | -HS- | M] () -- C:\boot.ini
[2010/01/09 18:02:30 | 00,000,720 | ---- | M] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\Super Internet TV.lnk
[2010/01/09 13:36:43 | 00,000,364 | ---- | M] () -- C:\WINDOWS\tasks\McDefragTask.job
[2010/01/09 13:35:58 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

========== Files Created - No Company Name ==========

[2010/01/23 07:11:46 | 00,293,376 | ---- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\gmer.exe
[2010/01/20 14:20:30 | 00,000,642 | ---- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\bob.lnk
[2010/01/18 12:01:37 | 00,000,383 | ---- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\net vidz.lnk
[2010/01/18 11:30:36 | 00,000,504 | ---- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\GoGear flicks.lnk
[2010/01/13 16:40:18 | 00,000,767 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Diskeeper Lite.lnk
[2010/01/12 17:36:27 | 00,000,489 | ---- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\TnT.lnk
[2010/01/12 15:06:57 | 00,000,891 | ---- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\Zombie Shooter 2.lnk
[2010/01/12 04:04:24 | 00,001,819 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Alcohol 120%.lnk
[2010/01/12 03:49:43 | 00,715,248 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/01/11 16:19:40 | 00,000,883 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Foxit Reader.lnk
[2010/01/11 15:13:17 | 00,001,548 | ---- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\CCleaner.lnk
[2010/01/09 18:02:30 | 00,000,720 | ---- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Desktop\Super Internet TV.lnk
[2010/01/08 11:12:05 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010/01/08 11:12:03 | 00,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010/01/08 11:12:03 | 00,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010/01/08 11:12:01 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010/01/08 11:12:00 | 00,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010/01/08 10:39:05 | 00,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010/01/03 13:00:05 | 00,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll
[2010/01/03 13:00:04 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\AVEQT.dll
[2010/01/01 18:27:13 | 00,767,952 | ---- | C] () -- C:\WINDOWS\BDTSupport.dll
[2009/12/20 10:01:01 | 00,271,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009/12/20 10:01:00 | 00,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009/11/09 07:04:57 | 00,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll
[2009/11/04 22:39:00 | 00,003,068 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2009/11/02 22:05:42 | 00,000,057 | ---- | C] () -- C:\WINDOWS\DcmLtbox-WS.ini
[2009/10/14 06:35:37 | 00,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2009/09/28 12:51:34 | 00,000,140 | ---- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Local Settings\Application Data\fusioncache.dat
[2009/09/26 13:42:45 | 00,018,508 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2009/09/18 10:55:36 | 00,000,668 | -H-- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Application Data\vso_ts_preview.xml
[2009/09/18 10:34:59 | 00,000,034 | -H-- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Application Data\pcouffin.log
[2009/09/18 10:34:47 | 00,087,608 | -H-- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Application Data\inst.exe
[2009/09/18 10:34:47 | 00,007,887 | -H-- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Application Data\pcouffin.cat
[2009/09/18 10:34:47 | 00,001,144 | -H-- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Application Data\pcouffin.inf
[2009/09/18 09:45:46 | 00,074,752 | ---- | C] () -- C:\Documents and Settings\~MichianaCatz420~\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/09/17 22:24:29 | 00,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2009/08/23 20:00:02 | 01,481,728 | ---- | C] () -- C:\WINDOWS\System32\LegitCheckControl.dll
[2009/08/23 20:00:02 | 00,190,976 | ---- | C] () -- C:\WINDOWS\System32\WgaLogon.dll
[2009/08/03 00:21:54 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2009/08/03 00:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009/08/03 00:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2009/08/03 00:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2009/08/03 00:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009/08/03 00:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2009/08/03 00:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2009/08/03 00:21:54 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2009/08/03 00:21:52 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2009/08/03 00:21:52 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2009/03/03 12:18:04 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2008/05/16 14:01:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008/05/16 14:01:00 | 01,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008/05/16 14:01:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008/05/16 14:01:00 | 00,835,728 | ---- | C] () -- C:\WINDOWS\System32\nvcuda.dll
[2008/05/16 14:01:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008/05/16 14:01:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008/05/16 14:01:00 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2007/09/27 10:51:02 | 00,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 00,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 00,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2006/06/01 17:22:00 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2001/08/23 07:00:00 | 00,015,730 | ---- | C] () -- C:\WINDOWS\System32\nigle03m.dll
[2001/07/07 03:00:00 | 00,003,399 | ---- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
[1999/03/09 15:23:00 | 00,222,928 | ---- | C] () -- C:\WINDOWS\System32\lobas09.dll
[1998/01/13 03:52:30 | 00,047,104 | ---- | C] () -- C:\WINDOWS\System32\lotrn13.dll
[1997/11/13 15:23:00 | 00,031,008 | ---- | C] () -- C:\WINDOWS\System32\ivtrn09.dll
[1997/02/01 15:23:00 | 00,000,058 | ---- | C] () -- C:\WINDOWS\loss613.ini
[1997/02/01 15:23:00 | 00,000,058 | ---- | C] () -- C:\WINDOWS\loss09.ini
[1996/07/08 15:23:00 | 00,000,038 | ---- | C] () -- C:\WINDOWS\loidp13.ini
[1994/07/24 15:23:00 | 00,014,928 | ---- | C] () -- C:\WINDOWS\System32\wingen.drv
[1994/04/06 15:23:00 | 00,000,462 | ---- | C] () -- C:\WINDOWS\lodbf13.ini

========== LOP Check ==========

[2009/10/02 20:33:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alawar Stargaze
[2009/11/19 20:18:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Becky Brogan
[2009/09/18 14:07:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Fighters
[2009/09/26 23:06:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Flood Light Games
[2010/01/07 18:57:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst
[2010/01/23 10:20:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/09/17 23:06:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2009/09/26 15:17:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Zabersoft
[2009/09/17 23:05:14 | 00,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
[2009/12/27 22:42:03 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\.purple
[2009/09/27 15:49:34 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\5imyshow.Ltd
[2009/12/20 10:01:15 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Aspyr
[2009/12/10 16:10:35 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Auslogics
[2009/12/28 15:16:22 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\BirthdayCountdown.7037BCEB1D9B9E08CF2688EBB2CCCEBE7184CEA7.1
[2009/09/19 19:35:52 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Desktop Maestro
[2009/12/05 04:09:34 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\EurekaLog
[2009/09/26 23:06:08 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Flood Light Games
[2010/01/11 16:19:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Foxit
[2009/10/20 17:17:46 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Freezetag
[2009/11/23 18:27:40 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\gtk-2.0
[2009/10/17 08:59:54 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\HdO Adventure
[2009/11/12 09:53:32 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\ImgBurn
[2009/09/17 22:49:13 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\J River
[2009/10/06 09:25:13 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\JAM Software
[2010/01/17 20:55:14 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\LimeWire
[2009/11/23 13:38:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\mjusbsp
[2010/01/07 18:57:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\PlayFirst
[2009/11/24 10:33:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\SecondLife
[2010/01/03 01:54:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Sony
[2009/11/15 06:52:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\SystemRequirementsLab
[2009/12/14 20:23:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Thinstall
[2009/09/17 23:07:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\TuneUp Software
[2009/10/31 06:58:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\URSoft
[2010/01/03 13:07:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Vso
[2009/11/14 11:09:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Windows Desktop Search
[2009/11/23 22:49:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\~MichianaCatz420~\Application Data\Windows Search
[2010/01/23 10:02:04 | 00,000,510 | ---- | M] () -- C:\WINDOWS\Tasks\1-Click Maintenance.job
[2010/01/18 23:57:12 | 00,000,614 | ---- | M] () -- C:\WINDOWS\Tasks\Auslogics Boost Speed Disk Defrag Console Defragmentation.job
[2010/01/23 10:07:51 | 00,000,436 | ---- | M] () -- C:\WINDOWS\Tasks\Auslogics Boost Speed Disk Defrag Start On Windows Logon.job
[2010/01/09 13:36:43 | 00,000,364 | ---- | M] () -- C:\WINDOWS\Tasks\McDefragTask.job
[2010/01/01 01:00:06 | 00,000,342 | ---- | M] () -- C:\WINDOWS\Tasks\McQcTask.job
[2010/01/22 12:46:38 | 00,000,446 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{EB6D3F49-6A5F-47EA-BA6C-9DA2A34DF747}.job

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: AGP440.SYS >
[2004/08/04 01:05:44 | 18,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2009/09/25 07:05:32 | 23,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004/08/04 01:05:44 | 18,738,937 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:AGP440.sys
[2009/09/25 07:05:32 | 23,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 13:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 13:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2002/08/29 03:50:10 | 10,158,890 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp1.cab:atapi.sys
[2004/08/04 01:05:44 | 18,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2009/09/25 07:05:32 | 23,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2002/08/29 03:50:10 | 10,158,890 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp1.cab:atapi.sys
[2004/08/04 01:05:44 | 18,738,937 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp2.cab:atapi.sys
[2009/09/25 07:05:32 | 23,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 13:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 13:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2008/04/13 19:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 19:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: NETLOGON.DLL >
[2008/04/13 19:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 19:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2008/04/13 19:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 19:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

========== Alternate Data Streams ==========

@Alternate Data Stream - 189 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:21F11E8D
@Alternate Data Stream - 163 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 163 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0295CBF7
@Alternate Data Stream - 158 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5F7539FF
@Alternate Data Stream - 142 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C46995DA
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0D786AE3
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:13EDD51B
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A8ADE5D8
< End of report >

extras.txt:
OTL Extras logfile created on: 1/13/2010 4:46:16 PM - Run 1
OTL by OldTimer - Version 3.1.20.1 Folder = C:\0~ Chrome DLs
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

759.00 Mb Total Physical Memory | 146.00 Mb Available Physical Memory | 19.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 48.00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 127.99 Gb Total Space | 33.87 Gb Free Space | 26.46% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 549.82 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive J: | 97.66 Gb Total Space | 58.84 Gb Free Space | 60.25% Space Free | Partition Type: NTFS
Drive K: | 72.44 Gb Total Space | 68.19 Gb Free Space | 94.13% Space Free | Partition Type: NTFS

Computer Name: DEM-AZ4N0N4DL9W
Current User Name: ~MichianaCatz420~
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: On
File Age = 1 Day
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1723:TCP" = 1723:TCP:*:Enabled:@xpsp2res.dll,-22015
"1701:UDP" = 1701:UDP:*:Enabled:@xpsp2res.dll,-22016
"500:UDP" = 500:UDP:*:Enabled:@xpsp2res.dll,-22017

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1723:TCP" = 1723:TCP:*:Enabled:@xpsp2res.dll,-22015
"1701:UDP" = 1701:UDP:*:Enabled:@xpsp2res.dll,-22016
"500:UDP" = 500:UDP:*:Enabled:@xpsp2res.dll,-22017

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe" = C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent -- (McAfee, Inc.)
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC)
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe -- ()
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe -- ( )
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Documents and Settings\~MichianaCatz420~\Application Data\mjusbsp\magicJack.exe" = C:\Documents and Settings\~MichianaCatz420~\Application Data\mjusbsp\magicJack.exe:*:Enabled:magicJack -- (magicJack L.P.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0A65A3BD-54B5-4d0d-B084-7688507813F5}" = SlideShow
"{113EECD6-9A04-11D4-811D-00805F923B86}" = Lotus NotesSQL 3.01 driver
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{15C0AF59-4877-49B6-B8C6-A61CE54515F5}" = cp_OnlineProjectsConfig
"{1AD7FFF3-B4CE-4745-9D6B-DE1AE4D53EAA}" = OstroSoft SMTP Component
"{1DBB1B09-8A5C-4CEA-8623-3EE473D4530E}" = SMV Converter Tool 3.0
"{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java™ 6 Update 16
"{2F58D60D-2BFD-4467-9B4D-64E7355C329D}" = Sonic_PrimoSDK
"{33BF0960-DBA3-4187-B6CC-C969FCFA2D25}" = SkinsHP1
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{363790D2-DA98-41DD-9C9F-69FA36B169DE}" = PanoStandAlone
"{41E776A5-9B12-416D-9A12-B4F7B044EBED}" = CP_Package_Basic1
"{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm
"{4BB781A4-0C2B-4BA6-96C2-90FB81A7F28C}" = MyJAL MediaPAL
"{4EA684E9-5C81-4033-A696-3019EC57AC3A}" = HPProductAssistant
"{536D6172-7453-7569-7465-392E38300409}" = Lotus SmartSuite - English
"{53EE9E42-CECB-4C92-BF76-9CA65DAF8F1C}" = FullDPAppQFolder
"{55A29068-F2CE-456C-9148-C869879E2357}" = TuneUp Utilities 2009
"{5809E7CF-4DCF-11D4-9875-00105ACE7734}" = Logitech MouseWare 9.79.1
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{66910000-8B30-4973-A159-6371345AFFA5}" = WebReg
"{6696D9A4-28A8-4F5A-8E9A-2E8974C8C39C}" = RandMap
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{68763C27-235D-4165-A961-FDEA228CE504}" = AiOSoftwareNPI
"{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{736C803C-DD3B-4015-BC51-AFB9E67B9076}" = Readme
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.2.1.55b
"{7C03270C-4FAB-4F5C-B10D-52FEDA190790}" = DocumentViewerQFolder
"{8331C3EA-0C91-43AA-A4D4-27221C631139}" = Status
"{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8A4CE7FD-9657-4B06-9943-E1819F3D5D67}" = DocProc
"{8CE4E6E9-9D55-43FB-9DDB-688C976BFC05}" = Unload
"{90850409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{996512CF-F35B-48DE-9291-557FA5316967}" = ScannerCopy
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A29800BA-0BF1-4E63-9F31-DF05A87F4104}" = InstantShareDevices
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A3F60446-48FB-48A8-B5FC-BB3430AEF806}" = Diskeeper Lite
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{B2157760-AA3C-4E2E-BFE6-D20BC52495D9}" = cp_PosterPrintConfig
"{B6286A44-7505-471A-A72B-04EC2DB2F442}" = CueTour
"{B69CFE29-FD03-4E0A-87A7-6ED97F98E5B3}" = CP_Panorama1Config
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B89657B0-FEC2-6133-CE06-1E71520674DE}" = Birthday Countdown
"{BD07B7AA-DAD6-427B-AC5B-AAAD26720EEA}" = Sony Photo Go 1.0
"{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}" = HP Photosmart, Officejet and Deskjet 7.0.A
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1C6767D-B395-43CB-BF99-051B58B86DA6}" = PhotoGallery
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{C7F54CF8-D6FB-4E0A-93A3-E68AE0D6C476}" = SolutionCenter
"{C8753E28-2680-49BF-BD48-DD38FD086EFE}" = AiO_Scan_CDA
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC8E0363-B20C-4792-8A1C-8DF5E01B68A6}" = GoGear VIBE Device Manager
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DBC20735-34E6-4E97-A9E5-2066B66B243D}" = TrayApp
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E10C3EC0-7706-4DCB-B9AC-FC0538ED74A4}" = Windows Genuine Advantage Validation v1.9.40.0 Cracked V3
"{E623BB3F-F7ED-4148-BEB5-A0D1DB28B4DE}" = Media Converter for Philips
"{ED2C557E-9C18-41FF-B58E-A05EEF0B3B5F}" = CP_CalendarTemplates1
"{F157460F-720E-482f-8625-AD7843891E5F}" = InstantShareDevicesMFC
"{F3760724-B29D-465B-BC53-E5D72095BCC4}" = Scan
"{F6076EF9-08E1-442F-B6A2-BFB61B295A14}" = Fax_CDA
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FB15E224-67C3-491F-9F5C-F257BC418412}" = Destinations
"{FBB980B0-63F8-4B48-8D65-90F1D9F81D9F}" = NewCopy_CDA
"{FE7E1DD7-EBCE-4696-ADE2-22BDBF2372DA}" = DocumentViewer
"7-Zip" = 7-Zip 4.59 alpha 3
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Allok Video to DVD Burner_is1" = Allok Video to DVD Burner 2.5.0320
"BirthdayCountdown.7037BCEB1D9B9E08CF2688EBB2CCCEBE7184CEA7.1" = Birthday Countdown
"Browser Defender_is1" = Browser Defender 2.0.6.11
"CCleaner" = CCleaner
"DiaryOne_is1" = DiaryOne 6.63
"DVD Shrink_is1" = DVD Shrink 3.2
"ERUNT_is1" = ERUNT 1.1j
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"Foxit Reader" = Foxit Reader
"'Full Speed' Internet Booster + Performance Tests3.3" = 'Full Speed' Internet Booster + Performance Tests
"GNU Aspell_is1" = GNU Aspell 0.50-3
"GTK 2.0" = GTK+ Runtime 2.14.7 rev a (remove only)
"HP Document Viewer" = HP Document Viewer 7.0
"HP Imaging Device Functions" = HP Imaging Device Functions 7.0
"HP Photo & Imaging" = HP Photosmart Premier Software 6.5
"HP Solution Center & Imaging Support Tools" = HP Solution Center 7.0
"HPOCR" = OCR Software by I.R.I.S 7.0
"ie8" = Windows Internet Explorer 8
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.6.1 (Full)
"LimeWire" = LimeWire 4.18.2
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Media Center 14" = Media Center 14
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.7)" = Mozilla Firefox (3.5.7)
"MSC" = McAfee SecurityCenter
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"RealPlayer 12.0" = RealPlayer
"Sigma Team Toolbar" = Sigma Team Toolbar
"Spyware Doctor" = Spyware Doctor 7.0
"Super Internet TV (Free Edition)_is1" = Super Internet TV v8.0 (Free Edition)
"SystemRequirementsLab" = System Requirements Lab
"UltraISO_is1" = UltraISO Premium V9.35
"Uninstall Expert_is1" = Uninstall Expert 3.0.1.2103
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Messenger" = Yahoo! Messenger
"Yahoo! Software Update" = Yahoo! Software Update
"Zombie Shooter 2_is1" = Zombie Shooter 2 v 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"FamilySearch Indexing (www.familysearchindexing.org)" = FamilySearch Indexing (www.familysearchindexing.org)
"Google Chrome" = Google Chrome
"Move Media Player" = Move Media Player

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1/12/2010 3:58:12 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 2456 (0x998) Thread address : 0x7C90E514 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\IsoCdRom0\Zombie_Shooter2_Setup.exe
by C:\Program Files\UltraISO\UltraISO.exe 4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0)
7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)

Error - 1/12/2010 4:01:48 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 348 (0x15c) Thread address : 0x026BEF02 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\IsoCdRom0\Zombie_Shooter2_Setup.exe
by C:\Program Files\UltraISO\UltraISO.exe 4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0)
7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)

Error - 1/12/2010 5:58:45 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 1612 (0x64c) Thread address : 0x7C90E514 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\HarddiskVolume1\0~ CHROME DLS\DAZZLE
DRIVERS\STUDIO_PLUS_VISTA_INSTALLER.EXE by C:\Program Files\Spyware Doctor\pctsSvc.exe

4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)


Error - 1/12/2010 7:51:46 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 1/13/2010 1:43:23 AM | Computer Name = DEM-AZ4N0N4DL9W | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 2216 (0x8a8) Thread address : 0x7C90E514 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\HarddiskVolume1\0~ CHROME DLS\DAZZLE
DRIVERS\STUDIO_PLUS_VISTA_INSTALLER.EXE by C:\Program Files\Spyware Doctor\pctsSvc.exe

4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)


Error - 1/13/2010 11:02:31 AM | Computer Name = DEM-AZ4N0N4DL9W | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 1/13/2010 11:05:27 AM | Computer Name = DEM-AZ4N0N4DL9W | Source = WmiAdapter | ID = 4099
Description = Open of service failed.

Error - 1/13/2010 4:16:39 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = JavaQuickStarterService | ID = 1
Description =

Error - 1/13/2010 4:55:46 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = PerfNet | ID = 2004
Description = Unable to open the Server service. Server performance data will not
be returned. Error code returned is in data DWORD 0.

Error - 1/13/2010 5:49:10 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 1656 (0x678) Thread address : 0x7C90E514 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\IsoCdRom0\Zombie_Shooter2_Setup.exe
by C:\0~ Chrome DLs\OTL.exe 4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0)

5006(0)(0) 5004(0)(0)

[ System Events ]
Error - 1/12/2010 7:54:02 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = Service Control Manager | ID = 7022
Description = The Windows Image Acquisition (WIA) service hung on starting.

Error - 1/13/2010 1:43:46 AM | Computer Name = DEM-AZ4N0N4DL9W | Source = Service Control Manager | ID = 7031
Description = The McAfee Real-time Scanner service terminated unexpectedly. It
has done this 1 time(s). The following corrective action will be taken in 60000
milliseconds: Restart the service.

Error - 1/13/2010 11:04:47 AM | Computer Name = DEM-AZ4N0N4DL9W | Source = Service Control Manager | ID = 7022
Description = The Windows Image Acquisition (WIA) service hung on starting.

Error - 1/13/2010 11:05:29 AM | Computer Name = DEM-AZ4N0N4DL9W | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the WMI Performance Adapter
service to connect.

Error - 1/13/2010 11:05:29 AM | Computer Name = DEM-AZ4N0N4DL9W | Source = Service Control Manager | ID = 7000
Description = The WMI Performance Adapter service failed to start due to the following
error: %%1053

Error - 1/13/2010 4:16:35 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = Service Control Manager | ID = 7031
Description = The McAfee Network Agent service terminated unexpectedly. It has
done this 1 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 1/13/2010 4:16:36 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = Service Control Manager | ID = 7034
Description = The PC Tools Auxiliary Service service terminated unexpectedly. It
has done this 1 time(s).

Error - 1/13/2010 4:16:40 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = Service Control Manager | ID = 7034
Description = The McAfee Services service terminated unexpectedly. It has done
this 1 time(s).

Error - 1/13/2010 4:58:03 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = Service Control Manager | ID = 7022
Description = The Windows Image Acquisition (WIA) service hung on starting.

Error - 1/13/2010 5:49:13 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = Service Control Manager | ID = 7031
Description = The McAfee Real-time Scanner service terminated unexpectedly. It
has done this 1 time(s). The following corrective action will be taken in 60000
milliseconds: Restart the service.

[ TuneUp Events ]
Error - 1/6/2010 3:54:04 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "full": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-01-06 14:54:04', '\device\harddiskvolume1\program
files\'full speed' internet booster + performance tests\fullspeed.exe','3172',0)

Error - 1/6/2010 10:58:54 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "full": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-01-06 21:58:54', '\device\harddiskvolume1\program
files\'full speed' internet booster + performance tests\fullspeed.exe','3744',0)

Error - 1/6/2010 11:01:43 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "full": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-01-06 22:01:43', '\device\harddiskvolume1\program
files\'full speed' internet booster + performance tests\fullspeed.exe','676',0)

Error - 1/7/2010 5:14:34 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "full": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-01-07 16:14:34', '\device\harddiskvolume1\program
files\'full speed' internet booster + performance tests\fullspeed.exe','3864',0)

Error - 1/7/2010 5:15:10 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "full": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-01-07 16:15:10', '\device\harddiskvolume1\program
files\'full speed' internet booster + performance tests\fullspeed.exe','3420',0)

Error - 1/7/2010 5:15:41 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "full": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-01-07 16:15:41', '\device\harddiskvolume1\program
files\'full speed' internet booster + performance tests\fullspeed.exe','3784',0)

Error - 1/8/2010 2:20:00 AM | Computer Name = DEM-AZ4N0N4DL9W | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "full": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-01-08 01:20:00', '\device\harddiskvolume1\program
files\'full speed' internet booster + performance tests\fullspeed.exe','2668',0)

Error - 1/8/2010 2:20:25 AM | Computer Name = DEM-AZ4N0N4DL9W | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "full": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-01-08 01:20:25', '\device\harddiskvolume1\program
files\'full speed' internet booster + performance tests\fullspeed.exe','3500',0)

Error - 1/8/2010 9:00:13 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "full": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-01-08 20:00:13', '\device\harddiskvolume1\program
files\'full speed' internet booster + performance tests\fullspeed.exe','2564',0)

Error - 1/8/2010 9:03:03 PM | Computer Name = DEM-AZ4N0N4DL9W | Source = TuneUp Program Statistics | ID = 131840
Description = SQL Error: near "full": syntax error; when executing SQL: INSERT INTO
ActiveApps (Started, Exe, ProcID, Resumed) VALUES ('2010-01-08 20:03:03', '\device\harddiskvolume1\program
files\'full speed' internet booster + performance tests\fullspeed.exe','1472',0)


< End of report >

if u need more, plz ask ... any help appreciated. TYTYTY
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP