Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Internet problems


  • Please log in to reply

#1
JLib19

JLib19

    Member

  • Member
  • PipPip
  • 16 posts
Programs such as Windows Media Player, any virus update programs, or any games that need to connect to the internet can't. At first I thought it was a Firewall issue, but after having somone on this forum walk me through all the steps, we figured it is not Firewall related. He showed me the Malware/ Spyware cleaning program and I ran a sweep. It found one item and removed it but it did not solve my problem. Here is the log:

Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Database version: 3930

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

4/9/2010 1:50:21 AM
mbam-log-2010-04-09 (01-50-21).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|I:\|)
Objects scanned: 266776
Time elapsed: 28 minute(s), 26 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


He sent me here to see if anyone can help me. Thank you for your help!!
Here a link to the thread I started and the help I received.

http://www.geekstogo...ng-t272991.html
  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,178 posts
  • MVP
Let's see your GMER and OTL logs that you should have gotten from steps 4 and 5 of the guide.

Ron
  • 0

#3
JLib19

JLib19

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
The file I had to save as ark.txt completed the scan, but when I open TFC.exe, a box pops up and says that the program couldn't be accessed because of an issue with system32. It still scanned however, but the log is empty.

OTL Log:

OTL logfile created on: 4/24/2010 3:32:52 PM - Run 1
OTL by OldTimer - Version 3.2.2.0 Folder = C:\Users\Boypul Titmouse\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

6.00 Gb Total Physical Memory | 5.00 Gb Available Physical Memory | 80.00% Memory free
11.00 Gb Paging File | 10.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 584.07 Gb Total Space | 515.08 Gb Free Space | 88.19% Space Free | Partition Type: NTFS
Drive D: | 12.00 Gb Total Space | 2.18 Gb Free Space | 18.16% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BOYPULTITMOUSE
Current User Name: Boypul Titmouse
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/04/24 15:30:27 | 000,562,688 | ---- | M] (OldTimer Tools) -- C:\Users\Boypul Titmouse\Desktop\OTL.exe
PRC - [2009/11/16 17:00:24 | 000,020,376 | ---- | M] (WebEx Communications, Inc.) -- C:\Windows\SysWOW64\atashost.exe
PRC - [2009/08/05 16:45:22 | 000,206,120 | ---- | M] (CyberLink) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
PRC - [2009/07/23 23:45:52 | 000,128,296 | ---- | M] (CyberLink Corp.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
PRC - [2009/06/03 15:35:16 | 000,430,080 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe
PRC - [2009/05/26 04:36:13 | 000,656,896 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
PRC - [2008/11/20 13:47:28 | 000,062,768 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe


========== Modules (SafeList) ==========

MOD - [2010/04/24 15:30:27 | 000,562,688 | ---- | M] (OldTimer Tools) -- C:\Users\Boypul Titmouse\Desktop\OTL.exe
MOD - [2009/07/13 21:15:07 | 000,486,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll
MOD - [2009/07/13 21:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/03/30 19:55:15 | 001,255,736 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\SysNative\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV:64bit: - [2009/07/13 21:41:59 | 000,229,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wwansvc.dll -- (WwanSvc)
SRV:64bit: - [2009/07/13 21:41:56 | 000,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbiosrvc.dll -- (WbioSrvc)
SRV:64bit: - [2009/07/13 21:41:56 | 000,163,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpo.dll -- (Power)
SRV:64bit: - [2009/07/13 21:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2009/07/13 21:41:54 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sppuinotify.dll -- (sppuinotify)
SRV:64bit: - [2009/07/13 21:41:54 | 000,029,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sensrsvc.dll -- (SensrSvc)
SRV:64bit: - [2009/07/13 21:41:53 | 000,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\pnrpsvc.dll -- (PNRPsvc)
SRV:64bit: - [2009/07/13 21:41:53 | 000,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\pnrpsvc.dll -- (p2pimsvc)
SRV:64bit: - [2009/07/13 21:41:53 | 000,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\provsvc.dll -- (HomeGroupProvider)
SRV:64bit: - [2009/07/13 21:41:53 | 000,067,072 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper)
SRV:64bit: - [2009/07/13 21:41:53 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 21:41:18 | 000,231,936 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ListSvc.dll -- (HomeGroupListener)
SRV:64bit: - [2009/07/13 21:40:54 | 001,127,936 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\FntCache.dll -- (FontCache)
SRV:64bit: - [2009/07/13 21:40:28 | 000,314,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2009/07/13 21:40:28 | 000,291,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\defragsvc.dll -- (defragsvc)
SRV:64bit: - [2009/07/13 21:40:13 | 000,083,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\bthserv.dll -- (bthserv)
SRV:64bit: - [2009/07/13 21:40:10 | 000,100,864 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\SysNative\bdesvc.dll -- (BDESVC)
SRV:64bit: - [2009/07/13 21:40:05 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AxInstSv.dll -- (AxInstSV)
SRV:64bit: - [2009/07/13 21:40:01 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appidsvc.dll -- (AppIDSvc)
SRV:64bit: - [2009/07/13 21:39:51 | 001,503,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbengine.exe -- (wbengine)
SRV:64bit: - [2009/07/13 21:39:28 | 003,524,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\sppsvc.exe -- (sppsvc)
SRV:64bit: - [2009/07/13 21:39:11 | 000,689,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FXSSVC.exe -- (Fax)
SRV:64bit: - [2009/03/27 14:10:16 | 000,016,896 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agr64svc.exe -- (AgereModemAudio)
SRV - [2010/03/22 15:51:54 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus®
SRV - [2009/11/16 17:00:24 | 000,020,376 | ---- | M] (WebEx Communications, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\atashost.exe -- (atashost)
SRV - [2009/08/21 16:04:00 | 000,117,640 | R--- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\ccSvcHst.exe -- (Norton Internet Security)
SRV - [2009/07/13 23:20:14 | 000,000,000 | ---D | M] [On_Demand | Stopped] -- C:\Windows\Vss -- (VSS)
SRV - [2009/07/13 23:20:14 | 000,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)
SRV - [2009/07/13 21:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/13 21:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 16:30:11 | 000,061,056 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2009/06/10 16:39:58 | 000,089,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2009/05/22 14:02:20 | 000,250,616 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2009/11/25 16:30:28 | 000,303,616 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2009/11/25 16:30:25 | 000,035,328 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2009/11/09 12:40:08 | 000,172,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2009/11/04 02:58:42 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d) MS Hardware Device Detection Driver (USB)
DRV:64bit: - [2009/08/21 16:04:01 | 000,476,720 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NISx64\1007000.01E\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2009/08/21 16:04:01 | 000,402,992 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\NISx64\1007000.01E\SymEFA64.sys -- (SymEFA)
DRV:64bit: - [2009/08/21 16:04:01 | 000,278,576 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1007000.01E\symtdi.sys -- (SYMTDI)
DRV:64bit: - [2009/08/21 16:04:01 | 000,120,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1007000.01E\symfw.sys -- (SYMFW)
DRV:64bit: - [2009/08/21 16:04:01 | 000,056,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1007000.01E\symndisv.sys -- (SYMNDISV)
DRV:64bit: - [2009/08/21 16:04:01 | 000,032,304 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1007000.01E\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV:64bit: - [2009/08/21 16:04:01 | 000,031,280 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SymIMV.sys -- (SymIM)
DRV:64bit: - [2009/08/21 16:04:00 | 000,583,296 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1007000.01E\cchpx64.sys -- (ccHP)
DRV:64bit: - [2009/08/21 16:04:00 | 000,334,384 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1007000.01E\BHDrvx64.sys -- (BHDrvx64)
DRV:64bit: - [2009/08/13 15:20:46 | 001,209,856 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2009/07/31 00:12:56 | 000,339,744 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
DRV:64bit: - [2009/07/13 21:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/13 21:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,153,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:48:04 | 000,014,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy)
DRV:64bit: - [2009/07/13 21:47:49 | 000,055,376 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fsdepends.sys -- (FsDepends)
DRV:64bit: - [2009/07/13 21:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 21:45:56 | 000,022,096 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wimmount.sys -- (WIMMount)
DRV:64bit: - [2009/07/13 21:45:55 | 000,217,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhdmp.sys -- (vhdmp)
DRV:64bit: - [2009/07/13 21:45:55 | 000,036,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 21:45:46 | 000,214,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\rdyboost.sys -- (rdyboost)
DRV:64bit: - [2009/07/13 21:45:45 | 000,050,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pcw.sys -- (pcw)
DRV:64bit: - [2009/07/13 21:43:14 | 000,460,504 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\cng.sys -- (CNG)
DRV:64bit: - [2009/07/13 21:43:13 | 000,223,448 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fvevol.sys -- (fvevol)
DRV:64bit: - [2009/07/13 20:17:46 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpbus.sys -- (rdpbus)
DRV:64bit: - [2009/07/13 20:16:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV:64bit: - [2009/07/13 20:10:24 | 000,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV:64bit: - [2009/07/13 20:09:26 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\wfplwf.sys -- (WfpLwf)
DRV:64bit: - [2009/07/13 20:08:13 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndiscap.sys -- (NdisCap)
DRV:64bit: - [2009/07/13 20:07:28 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vwifimp.sys -- (vwifimp)
DRV:64bit: - [2009/07/13 20:07:22 | 000,059,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vwififlt.sys -- (vwififlt)
DRV:64bit: - [2009/07/13 20:07:21 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vwifibus.sys -- (vwifibus)
DRV:64bit: - [2009/07/13 20:07:13 | 000,227,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\1394ohci.sys -- (1394ohci)
DRV:64bit: - [2009/07/13 20:06:52 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\umpass.sys -- (UmPass)
DRV:64bit: - [2009/07/13 20:06:24 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV:64bit: - [2009/07/13 20:05:37 | 000,112,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf)
DRV:64bit: - [2009/07/13 20:02:08 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MTConfig.sys -- (MTConfig)
DRV:64bit: - [2009/07/13 20:00:34 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CompositeBus.sys -- (CompositeBus)
DRV:64bit: - [2009/07/13 20:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\beep.sys -- (Beep)
DRV:64bit: - [2009/07/13 19:52:39 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\appid.sys -- (AppID)
DRV:64bit: - [2009/07/13 19:50:17 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\SysNative\drivers\scfilter.sys -- (scfilter)
DRV:64bit: - [2009/07/13 19:37:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\discache.sys -- (discache)
DRV:64bit: - [2009/07/13 19:31:06 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidbatt.sys -- (HidBatt)
DRV:64bit: - [2009/07/13 19:31:03 | 000,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CmBatt.sys -- (CmBatt)
DRV:64bit: - [2009/07/13 19:27:17 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi)
DRV:64bit: - [2009/07/13 19:19:25 | 000,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdppm.sys -- (AmdPPM)
DRV:64bit: - [2009/06/10 16:35:38 | 000,707,072 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr7364.sys -- (netr7364)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/25 05:38:20 | 000,966,144 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
DRV:64bit: - [2009/05/08 21:14:24 | 000,033,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\point64k.sys -- (Point64)
DRV:64bit: - [2009/05/08 21:14:18 | 000,015,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nuidfltr.sys -- (NuidFltr)
DRV - [2009/08/21 16:04:00 | 001,461,808 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090713.024\EX64.SYS -- (NAVEX15)
DRV - [2009/08/21 16:04:00 | 000,475,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2009/08/21 16:04:00 | 000,397,360 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090712.001\IDSvia64.sys -- (IDSVia64)
DRV - [2009/08/21 16:04:00 | 000,136,752 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090713.024\ENG64.SYS -- (NAVENG)
DRV - [2009/08/21 16:04:00 | 000,131,632 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/13 21:16:02 | 000,014,336 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysWOW64\netbios.dll -- (NetBIOS)
DRV - [2009/06/10 17:28:14 | 000,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
DRV - [2009/06/10 17:15:18 | 000,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...a...buy&pf=cndt
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...a...buy&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...a...buy&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...a...buy&pf=cndt

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...a...buy&pf=cndt
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = aol.com
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (hpBHO Class) - {ABD3B5E1-B268-407B-A150-2641DAB8D898} - C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll (AOL Products)
O2 - BHO: (Microsoft Live Search Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (Microsoft Live Search Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\CoIEPlg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\CoIEPlg.dll (Symantec Corporation)
O4:64bit: - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [itype] C:\Program Files\Microsoft IntelliType Pro\itype.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ()
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [HP Remote Solution] C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe ()
O4 - HKLM..\Run: [hpsysdrv] c:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard)
O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKCU..\Run: [Aim] C:\Program Files (x86)\AIM\aim.exe (AOL LLC)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: adobe.com ([get] http in Trusted sites)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebo...oUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (get_atlcom Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 205.188.146.145
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - Reg Error: Key error. File not found
O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\CoIEPlg.dll (Symantec Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs:64bit: Ias - C:\Windows\SysNative\ias [2009/07/13 23:20:14 | 000,000,000 | ---D | M]
NetSvcs:64bit: Irmon - C:\Windows\SysNative\irmon.dll (Microsoft Corporation)
NetSvcs:64bit: Wmi - C:\Windows\SysNative\wmi.dll (Microsoft Corporation)
NetSvcs:64bit: Themes - C:\Windows\SysNative\themeservice.dll (Microsoft Corporation)
NetSvcs:64bit: BDESVC - C:\Windows\SysNative\bdesvc.dll (Microsoft Corporation)
NetSvcs: Ias - C:\Windows\SysWOW64\ias.dll (Microsoft Corporation)
NetSvcs: Wmi - C:\Windows\SysWOW64\wmi.dll (Microsoft Corporation)
OTL cannot create restorepoints on Vista OSs!

========== Files/Folders - Created Within 90 Days ==========

[2010/04/24 15:30:17 | 000,562,688 | ---- | C] (OldTimer Tools) -- C:\Users\Boypul Titmouse\Desktop\OTL.exe
[2010/04/08 03:43:34 | 000,444,416 | ---- | C] (OldTimer Tools) -- C:\Users\Boypul Titmouse\Desktop\TFC.exe
[2010/04/08 03:43:28 | 000,000,000 | ---D | C] -- C:\Users\Boypul Titmouse\AppData\Roaming\Malwarebytes
[2010/04/08 03:43:22 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/04/08 03:43:21 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/04/08 03:43:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/04/08 03:43:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/04/08 03:43:02 | 005,918,768 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Boypul Titmouse\Desktop\mbam-setup.exe
[2010/04/04 23:07:20 | 000,000,000 | ---D | C] -- C:\Users\Boypul Titmouse\Desktop\show
[2010/04/02 20:55:10 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2010/04/01 22:58:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2010/04/01 22:58:11 | 000,000,000 | -H-D | C] -- C:\VritualRoot
[2010/04/01 22:56:54 | 000,000,000 | ---D | C] -- C:\ProgramData\COMODO
[2010/04/01 22:13:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Avg7
[2010/04/01 21:39:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010/04/01 21:39:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/04/01 21:38:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010/03/30 19:55:16 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2010/03/30 19:55:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2010/03/29 21:48:12 | 000,000,000 | ---D | C] -- C:\Users\Boypul Titmouse\Desktop\GMHockey2009Eng
[2010/03/27 12:55:12 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2010/03/26 00:38:46 | 067,164,502 | ---- | C] (GM Hockey Zone ) -- C:\Users\Boypul Titmouse\Documents\ImagesPackeng.exe
[2010/03/21 20:04:18 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Softwrap
[2010/03/21 20:04:18 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Fonts
[2010/03/21 20:04:18 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Config
[2010/03/21 20:03:46 | 000,000,000 | ---D | C] -- C:\GMHockey2009Eng
[2010/03/21 20:02:46 | 102,873,125 | ---- | C] (Logique Eclectic ) -- C:\Users\Boypul Titmouse\Desktop\setup.exe
[2010/03/05 23:32:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\directx
[2010/03/05 23:13:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Divine Divinity
[2010/02/24 22:03:10 | 000,000,000 | ---D | C] -- C:\Users\Boypul Titmouse\Desktop\Moonlight Album
[2010/02/20 00:14:27 | 000,000,000 | R--D | C] -- C:\Users\Boypul Titmouse\Documents\Scanned Documents
[2010/02/20 00:14:27 | 000,000,000 | ---D | C] -- C:\Users\Boypul Titmouse\Documents\Fax
[2010/02/12 20:50:42 | 000,000,000 | ---D | C] -- C:\Users\Boypul Titmouse\AppData\Local\MicroVision Applications
[2010/02/12 20:45:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SureThing Shared
[2010/02/12 20:45:24 | 000,000,000 | ---D | C] -- C:\Windows\MVUNINST
[2010/02/12 20:45:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Memorex exPressit Label Design Studio
[2010/02/11 15:13:49 | 000,000,000 | ---D | C] -- C:\ProgramData\NOS
[2010/02/11 15:13:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NOS
[2010/02/08 21:42:17 | 000,000,000 | ---D | C] -- C:\Users\Boypul Titmouse\AppData\Roaming\AccurateRip
[2010/02/08 21:42:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Illustrate

========== Files - Modified Within 90 Days ==========

[2010/04/24 15:33:05 | 001,835,008 | -HS- | M] () -- C:\Users\Boypul Titmouse\NTUSER.DAT
[2010/04/24 15:30:27 | 000,562,688 | ---- | M] (OldTimer Tools) -- C:\Users\Boypul Titmouse\Desktop\OTL.exe
[2010/04/24 15:15:36 | 000,015,568 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/04/24 15:15:36 | 000,015,568 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/04/24 15:14:22 | 000,713,888 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/04/24 15:14:22 | 000,615,122 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/04/24 15:14:22 | 000,103,496 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/04/24 15:11:04 | 000,284,915 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\gmer.zip
[2010/04/24 15:08:27 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl
[2010/04/24 15:08:23 | 000,000,374 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForBoypul Titmouse.job
[2010/04/24 15:08:23 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/04/24 15:08:21 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/04/24 15:08:11 | 334,942,207 | -HS- | M] () -- C:\hiberfil.sys
[2010/04/24 15:07:38 | 002,592,444 | -H-- | M] () -- C:\Users\Boypul Titmouse\AppData\Local\IconCache.db
[2010/04/23 23:22:22 | 000,015,102 | ---- | M] () -- C:\Users\Boypul Titmouse\AppData\Roaming\wklnhst.dat
[2010/04/23 23:22:22 | 000,011,776 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\my resume.wps
[2010/04/11 20:23:13 | 000,011,776 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\PTD Album.wps
[2010/04/11 20:19:15 | 000,010,240 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\J-Lib Shows.wps
[2010/04/11 20:16:43 | 000,002,645 | ---- | M] () -- C:\Users\Public\Documents\Global.sw2
[2010/04/08 03:43:42 | 000,444,416 | ---- | M] (OldTimer Tools) -- C:\Users\Boypul Titmouse\Desktop\TFC.exe
[2010/04/08 03:43:24 | 000,001,011 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/04/08 03:43:10 | 005,918,768 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Boypul Titmouse\Desktop\mbam-setup.exe
[2010/04/07 00:26:40 | 000,240,440 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\hockey.png
[2010/04/07 00:26:25 | 000,365,754 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\beatles.png
[2010/04/07 00:17:01 | 000,001,964 | ---- | M] () -- C:\Users\Public\Desktop\CSI-Miami.lnk
[2010/04/02 20:33:12 | 000,098,851 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\firewall.jpg
[2010/04/02 20:32:58 | 000,130,101 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\firewall.png
[2010/04/01 23:04:27 | 000,248,672 | ---- | M] () -- C:\Windows\SysNative\drivers\sfi.dat
[2010/04/01 13:49:39 | 000,002,027 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 6.0.lnk
[2010/03/31 01:18:42 | 000,019,968 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\LibertiJustin.doc
[2010/03/30 00:46:30 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/03/30 00:45:56 | 000,024,664 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/03/27 12:57:09 | 000,398,824 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/03/27 11:31:57 | 000,109,864 | ---- | M] () -- C:\Users\Boypul Titmouse\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/03/26 00:38:54 | 067,164,502 | ---- | M] (GM Hockey Zone ) -- C:\Users\Boypul Titmouse\Documents\ImagesPackeng.exe
[2010/03/25 02:06:09 | 000,018,362 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\f_scott.docx
[2010/03/25 02:05:47 | 000,027,136 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\f_scott.wps
[2010/03/24 14:06:04 | 000,010,752 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\journals.wps
[2010/03/21 20:04:20 | 000,000,000 | -H-- | M] () -- C:\Windows\SwSys2.bmp
[2010/03/21 20:04:20 | 000,000,000 | -H-- | M] () -- C:\Windows\SwSys1.bmp
[2010/03/21 20:04:06 | 000,000,713 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\Editor.lnk
[2010/03/21 20:04:06 | 000,000,674 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\GMHockey2009Eng.lnk
[2010/03/21 20:03:36 | 102,873,125 | ---- | M] (Logique Eclectic ) -- C:\Users\Boypul Titmouse\Desktop\setup.exe
[2010/03/21 00:50:02 | 000,009,216 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\Second Album.wps
[2010/03/15 12:54:31 | 000,001,159 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\Divine Divinity.lnk
[2010/03/12 22:40:55 | 000,023,552 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\mid term.wps
[2010/03/10 23:28:53 | 000,013,824 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\sphinx.wps
[2010/03/10 23:05:20 | 000,012,099 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\sphinx.docx
[2010/03/05 23:13:19 | 000,000,065 | ---- | M] () -- C:\Windows\WININIT.INI
[2010/03/05 20:33:12 | 000,221,334 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\moonlight inside inside.std
[2010/03/05 20:32:22 | 000,118,353 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\mvstcdxx.lst
[2010/03/05 20:32:00 | 000,289,038 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\smelly2.png
[2010/03/05 02:22:39 | 000,009,728 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\poe.wps
[2010/03/04 14:07:59 | 000,009,728 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\next show.wps
[2010/03/01 17:21:17 | 000,014,848 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\resume.wps
[2010/02/27 15:17:22 | 000,074,044 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\smelly.png
[2010/02/26 14:49:21 | 000,120,230 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\poopoop.std
[2010/02/26 14:47:42 | 000,177,779 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\poop2.png
[2010/02/26 14:34:20 | 000,031,606 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\poop.png
[2010/02/26 14:25:34 | 000,033,059 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\moonlight inside 2.png
[2010/02/26 14:12:01 | 000,096,970 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\moonlight inside2.png
[2010/02/25 15:33:54 | 000,024,149 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\moonlight inside.png
[2010/02/25 15:29:39 | 000,016,545 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\moonlight inside 2.std
[2010/02/25 14:19:32 | 000,009,728 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\Moonlight.wps
[2010/02/21 01:35:57 | 000,160,528 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\moon3.jpg
[2010/02/21 01:15:23 | 000,146,414 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\moonlight.std
[2010/02/18 00:11:52 | 000,020,992 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\the lesson.wps
[2010/02/17 23:02:21 | 000,010,418 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\sylvia.docx
[2010/02/17 00:41:58 | 000,088,139 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\better_or_verse.zip
[2010/02/12 21:23:08 | 000,079,259 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\mvstcdxx.lst
[2010/02/12 21:21:41 | 000,146,348 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\moonlight.std
[2010/02/12 21:20:28 | 000,159,928 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\moon2.jpg
[2010/02/12 21:03:36 | 000,163,931 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\Untitled.png
[2010/02/12 21:00:49 | 000,106,809 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\moon.jpg
[2010/02/12 20:46:54 | 000,001,155 | ---- | M] () -- C:\Users\Public\Desktop\Memorex exPressit.lnk
[2010/02/12 12:50:54 | 000,009,216 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\pussy.wps
[2010/02/12 11:17:35 | 000,804,485 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\MOONLIGHT.pdf
[2010/02/12 10:53:28 | 000,009,728 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\buck live.wps
[2010/02/12 10:13:06 | 000,102,912 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\aid.wps
[2010/02/08 21:41:45 | 005,640,880 | ---- | M] () -- C:\Windows\SysWow64\SpoonUninstall.exe
[2010/02/08 21:38:04 | 000,002,240 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\Digging Deeper - Shortcut.lnk
[2010/02/08 21:38:00 | 000,002,157 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\At Ease - Shortcut.lnk
[2010/02/08 21:32:38 | 000,002,179 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\Two Fools - Shortcut.lnk
[2010/02/08 21:32:31 | 000,002,262 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\The Twisted Tree - Shortcut.lnk
[2010/02/08 21:31:23 | 000,002,157 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\For You - Shortcut.lnk
[2010/02/08 13:53:58 | 000,009,728 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\TV show song.wps
[2010/02/04 02:55:53 | 000,009,728 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\jlib recordings.wps
[2010/02/02 14:14:01 | 000,010,240 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\Loretta Card 2.wps
[2010/02/02 14:03:26 | 000,788,480 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\Loretta Card.wps
[2010/01/30 13:24:03 | 000,009,728 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\covers to learn.wps
[2010/01/29 23:34:48 | 000,009,728 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\dreams.wps
[2010/01/28 17:54:25 | 000,010,240 | ---- | M] () -- C:\Users\Boypul Titmouse\Desktop\BWN Bio.wps
[2010/01/26 14:12:40 | 000,009,728 | ---- | M] () -- C:\Users\Boypul Titmouse\Documents\online.wps

========== Files Created - No Company Name ==========

[2010/04/24 15:10:59 | 000,284,915 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\gmer.zip
[2010/04/22 13:56:27 | 000,011,776 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\my resume.wps
[2010/04/08 03:43:24 | 000,001,011 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/04/07 00:18:06 | 000,240,440 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\hockey.png
[2010/04/07 00:16:55 | 000,365,754 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\beatles.png
[2010/04/02 20:33:11 | 000,098,851 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\firewall.jpg
[2010/04/02 20:32:25 | 000,130,101 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\firewall.png
[2010/04/01 22:56:37 | 000,248,672 | ---- | C] () -- C:\Windows\SysNative\drivers\sfi.dat
[2010/03/31 01:18:41 | 000,019,968 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\LibertiJustin.doc
[2010/03/30 20:21:16 | 000,006,136 | ---- | C] () -- C:\Windows\SysNative\drivers\nvphy.bin
[2010/03/24 22:05:25 | 000,027,136 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\f_scott.wps
[2010/03/24 21:49:18 | 000,018,362 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\f_scott.docx
[2010/03/24 14:06:04 | 000,010,752 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\journals.wps
[2010/03/24 01:26:18 | 000,011,776 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\PTD Album.wps
[2010/03/21 20:04:20 | 000,002,645 | ---- | C] () -- C:\Users\Public\Documents\Global.sw2
[2010/03/21 20:04:20 | 000,000,000 | -H-- | C] () -- C:\Windows\SwSys2.bmp
[2010/03/21 20:04:20 | 000,000,000 | -H-- | C] () -- C:\Windows\SwSys1.bmp
[2010/03/21 20:04:06 | 000,000,713 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\Editor.lnk
[2010/03/21 20:04:06 | 000,000,674 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\GMHockey2009Eng.lnk
[2010/03/12 00:39:29 | 000,023,552 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\mid term.wps
[2010/03/10 23:13:17 | 000,013,824 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\sphinx.wps
[2010/03/10 23:05:18 | 000,012,099 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\sphinx.docx
[2010/03/05 23:32:12 | 000,001,159 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\Divine Divinity.lnk
[2010/03/05 23:13:19 | 000,000,065 | ---- | C] () -- C:\Windows\WININIT.INI
[2010/03/05 20:33:12 | 000,221,334 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\moonlight inside inside.std
[2010/03/05 02:22:39 | 000,009,728 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\poe.wps
[2010/03/04 14:07:59 | 000,009,728 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\next show.wps
[2010/02/27 15:40:53 | 000,289,038 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\smelly2.png
[2010/02/27 15:17:22 | 000,074,044 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\smelly.png
[2010/02/26 14:49:21 | 000,120,230 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\poopoop.std
[2010/02/26 14:45:38 | 000,177,779 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\poop2.png
[2010/02/26 14:34:20 | 000,031,606 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\poop.png
[2010/02/26 14:25:34 | 000,033,059 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\moonlight inside 2.png
[2010/02/26 14:12:01 | 000,096,970 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\moonlight inside2.png
[2010/02/25 15:27:48 | 000,016,545 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\moonlight inside 2.std
[2010/02/25 14:40:14 | 000,024,149 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\moonlight inside.png
[2010/02/21 01:35:57 | 000,160,528 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\moon3.jpg
[2010/02/21 01:15:23 | 000,146,414 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\moonlight.std
[2010/02/17 23:02:19 | 000,010,418 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\sylvia.docx
[2010/02/17 15:16:10 | 000,020,992 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\the lesson.wps
[2010/02/17 00:41:56 | 000,088,139 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\better_or_verse.zip
[2010/02/12 21:23:08 | 000,079,259 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\mvstcdxx.lst
[2010/02/12 21:21:41 | 000,146,348 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\moonlight.std
[2010/02/12 21:11:30 | 000,159,928 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\moon2.jpg
[2010/02/12 21:06:09 | 000,118,353 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\mvstcdxx.lst
[2010/02/12 21:03:36 | 000,163,931 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\Untitled.png
[2010/02/12 21:01:36 | 000,106,809 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\moon.jpg
[2010/02/12 20:46:54 | 000,001,155 | ---- | C] () -- C:\Users\Public\Desktop\Memorex exPressit.lnk
[2010/02/12 12:44:10 | 000,009,216 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\pussy.wps
[2010/02/12 11:17:26 | 000,804,485 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\MOONLIGHT.pdf
[2010/02/12 10:53:28 | 000,009,728 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\buck live.wps
[2010/02/12 10:13:05 | 000,102,912 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\aid.wps
[2010/02/08 21:42:16 | 005,640,880 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall.exe
[2010/02/08 21:38:04 | 000,002,240 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\Digging Deeper - Shortcut.lnk
[2010/02/08 21:38:00 | 000,002,157 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\At Ease - Shortcut.lnk
[2010/02/08 21:32:38 | 000,002,179 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\Two Fools - Shortcut.lnk
[2010/02/08 21:32:31 | 000,002,262 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\The Twisted Tree - Shortcut.lnk
[2010/02/08 21:31:23 | 000,002,157 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\For You - Shortcut.lnk
[2010/02/08 12:43:37 | 000,009,728 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\TV show song.wps
[2010/02/06 19:44:31 | 000,000,374 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForBoypul Titmouse.job
[2010/02/04 02:55:52 | 000,009,728 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\jlib recordings.wps
[2010/02/02 14:14:01 | 000,010,240 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\Loretta Card 2.wps
[2010/02/02 14:03:04 | 000,788,480 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\Loretta Card.wps
[2010/02/02 13:40:16 | 000,009,216 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\Second Album.wps
[2010/01/29 23:34:48 | 000,009,728 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\dreams.wps
[2010/01/28 17:28:02 | 000,010,240 | ---- | C] () -- C:\Users\Boypul Titmouse\Desktop\BWN Bio.wps
[2010/01/26 14:12:40 | 000,009,728 | ---- | C] () -- C:\Users\Boypul Titmouse\Documents\online.wps
[2010/01/20 02:16:31 | 000,000,000 | ---- | C] () -- C:\Windows\setup32.INI
[2009/12/05 00:13:18 | 000,120,832 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll
[2009/11/07 18:10:57 | 000,069,632 | ---- | C] () -- C:\Windows\SysWow64\xmltok.dll
[2009/11/07 18:10:57 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\xmlparse.dll
[2009/07/15 20:50:42 | 000,013,312 | ---- | C] () -- C:\Windows\LPRES.DLL
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2005/06/01 03:10:00 | 000,001,383 | ---- | C] () -- C:\Windows\SysWow64\WLAN.INI

========== LOP Check ==========

[2010/01/18 00:34:41 | 000,000,000 | ---D | M] -- C:\Users\Boypul Titmouse\AppData\Roaming\acccore
[2009/11/06 21:24:49 | 000,000,000 | ---D | M] -- C:\Users\Boypul Titmouse\AppData\Roaming\iWin
[2009/11/06 21:02:00 | 000,000,000 | ---D | M] -- C:\Users\Boypul Titmouse\AppData\Roaming\PictureMover
[2009/11/06 22:36:36 | 000,000,000 | ---D | M] -- C:\Users\Boypul Titmouse\AppData\Roaming\Rock Manager
[2009/11/11 23:19:26 | 000,000,000 | ---D | M] -- C:\Users\Boypul Titmouse\AppData\Roaming\Template
[2009/11/06 21:23:38 | 000,000,000 | ---D | M] -- C:\Users\Boypul Titmouse\AppData\Roaming\WildTangent
[2009/12/31 20:24:43 | 000,000,552 | ---- | M] () -- C:\Windows\Tasks\PCDRScheduledMaintenance.job
[2009/07/14 01:08:49 | 000,012,414 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: AGP440.SYS >
[2009/07/13 21:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/13 21:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/13 21:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: EVENTLOG.DLL >
[2007/05/18 00:34:04 | 000,007,216 | ---- | M] () MD5=C2A279A458A06DE2C83D842AA042B5A8 -- C:\Program Files (x86)\Cyberlink\PowerDirector\EventLog.dll

< MD5 for: IASTORV.SYS >
[2009/07/13 21:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/13 21:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: NETLOGON.DLL >
[2009/07/13 21:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009/07/13 21:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009/07/13 21:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009/07/13 21:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 21:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/13 21:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2009/07/13 21:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtmsft.dll
[2009/07/13 21:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtrans.dll
[2009/08/29 02:59:32 | 011,406,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\wmp.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\drivers\*.sys /90 >
[2010/03/30 00:46:30 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
< End of report >
  • 0

#4
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,178 posts
  • MVP
I see avg7 on your PC. If you have attempted to install the ancient avg7 it's no wonder it doesn't work. I don't think 7 worked on 64bit systems. AVG9 is out now and it will work tho I prefer Avast. Also I see Comodo Firewall and Norton/Symantec. Norton usually comes with its own firewall so there is no point in having Comodo.

Is Norton/Symantec a paid up subscription or just a trial?

Uninstall AVG7, Comodo, Microsoft Security Essentials.

Post the Extras log that was also generated in step 5.

Ron
  • 0

#5
JLib19

JLib19

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
Extras log:

OTL Extras logfile created on: 4/24/2010 3:32:52 PM - Run 1
OTL by OldTimer - Version 3.2.2.0 Folder = C:\Users\Boypul Titmouse\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

6.00 Gb Total Physical Memory | 5.00 Gb Available Physical Memory | 80.00% Memory free
11.00 Gb Paging File | 10.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 584.07 Gb Total Space | 515.08 Gb Free Space | 88.19% Space Free | Partition Type: NTFS
Drive D: | 12.00 Gb Total Space | 2.18 Gb Free Space | 18.16% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BOYPULTITMOUSE
Current User Name: Boypul Titmouse
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{26280024-DFB7-4967-90DB-7F9C6660D01E}" = HP MediaSmart SmartMenu
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{850C7AF6-7376-464D-A69C-E8419EC7ACA7}" = Microsoft IntelliType Pro 7.0
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C74A84EC-7C5F-4C36-A4A6-381E516D643B}" = Microsoft IntelliPoint 7.0
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"LSI Soft Modem" = LSI PCI-SV92EX Soft Modem
"NVIDIA Drivers" = NVIDIA Drivers
"OfficeTrial" = Microsoft Office Home and Student 60 day trial
"PC-Doctor for Windows" = Hardware Diagnostic Tools

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{1896E712-2B3D-45eb-BCE9-542742A51032}" = PictureMover
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite Deluxe
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
"{266F34CA-580F-4615-80FE-BDFBD56B748F}" = School Tycoon
"{26A24AE4-039D-4CA4-87B4-2F83216019FF}" = Java™ 6 Update 19
"{3023EBDA-BF1B-4831-B347-E5018555F26E}" = HP MediaSmart Movie Themes
"{37D59F62-2FC7-412D-AA55-3D0E6A9BD9C7}" = Microsoft Live Search Toolbar
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{4241D2E3-7499-49A5-B92C-F26054427F5A}" = Rock Manager
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = PowerRecover
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4F46FDB9-B906-47BF-B3D5-C62E01B3C5EE}" = HP Support Assistant
"{5B295588-59C1-4386-9F85-BB4BEDCB0D22}" = HP Customer Experience Enhancements
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}" = Battlefield 1942
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{778DBCBC-68F4-479E-B14F-4BF708454B90}" = NHL Eastside Hockey Manager 2005
"{7F86D49A-BF7B-4CC9-B809-F7F7C81C12F1}" = CSI-Miami
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{92B59710-5225-11DE-72AE-0068B1F02CD6}" = Baseball Mogul 2010
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A3071D0-B51E-11DD-72AE-01EFE8642CD6}" = Baseball Mogul 2009
"{9DEF9686-CCB2-47B7-BF83-B49EA21FA016}" = HP MediaSmart Demo
"{AC76BA86-7AD7-1033-7B44-A00000000001}" = Adobe Reader 6.0.1
"{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video
"{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}" = HP Advisor
"{B8AC1A89-FFD1-4F97-8051-E505A160F562}" = HP Odometer
"{B9A03B7B-E0FF-4FB3-BA83-762E58A1B0AA}" = HP Support Information
"{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}" = Activate Norton Online Backup
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C611CF88-969D-43E6-A877-D6D6439DD081}" = HP Remote Solution
"{C7EEF2B9-8C16-4A04-B98D-B1A952A47E55}" = Linksys Wireless-G USB Network Adapter
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{D46D081B-F60E-467E-A7C4-117B70D76731}" = HP Update
"{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
"{DD6C316A-FE75-4FBB-9D22-4C1920232B72}" = LightScribe System Software
"{DF802C05-4660-418c-970C-B988ADB1D316}" = Microsoft Live Search Toolbar
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E9E34215-82EF-4909-BE2F-F581F0DC9062}" = DirectX for Managed Code Update (Summer 2004)
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}" = HP Setup
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"AIM_7" = AIM 7
"BitLord" = BitLord 1.1
"Divine Divinity" = Divine Divinity
"GMHockey2009Eng_is1" = GMHockey2009Eng
"Homepage Protection" = Homepage Protection
"HP Remote Solution" = HP Remote Solution
"ImagesPack_is1" = Images Pack
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite Deluxe
"InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}" = HP MediaSmart Movie Themes
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MVApplication1" = Memorex exPressit Label Design Studio
"NIS" = Norton Internet Security
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"ST6UNST #1" = Quest Hockey Sim - Version 2009.07.30
"Tabloid Tycoon" = Tabloid Tycoon
"Where in the World Is Carmen Sandiego? Treasures of Knowledge" = Where in the World Is Carmen Sandiego? Treasures of Knowledge
"WildTangent hp Master Uninstall" = HP Games

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 12/27/2009 12:56:59 PM | Computer Name = BoypulTitmouse | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7600.16385 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 764 Start
Time: 01ca87137a049ee0 Termination Time: 62 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id: d65174a1-f308-11de-8209-90e6ba240cb6

Error - 1/3/2010 12:36:14 AM | Computer Name = BoypulTitmouse | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7600.16385 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: f84 Start
Time: 01ca8c2b7a966740 Termination Time: 0 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id:

Error - 1/3/2010 9:37:41 PM | Computer Name = BoypulTitmouse | Source = Application Error | ID = 1000
Description = Faulting application name: iexplore.exe, version: 8.0.7600.16385,
time stamp: 0x4a5bc69e Faulting module name: Flash10c.ocx, version: 10.0.32.18, time
stamp: 0x4a613d79 Exception code: 0xc0000005 Fault offset: 0x000e94ac Faulting process
id: 0x161c Faulting application start time: 0x01ca8cde5a8db850 Faulting application
path: C:\Program Files (x86)\Internet Explorer\iexplore.exe Faulting module path:
C:\Windows\SysWow64\Macromed\Flash\Flash10c.ocx Report Id: bf339e50-f8d1-11de-8209-90e6ba240cb6

Error - 1/6/2010 1:21:07 AM | Computer Name = BoypulTitmouse | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7600.16385 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 80 Start
Time: 01ca8e8b7d064650 Termination Time: 31 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id: 47e46dd1-fa83-11de-8209-90e6ba240cb6

Error - 1/12/2010 7:11:03 PM | Computer Name = BoypulTitmouse | Source = Application Hang | ID = 1002
Description = The program QuickTimePlayer.exe version 7.60.92.0 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: e28 Start
Time: 01ca93dc52ac7310 Termination Time: 6 Application Path: C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe

Report
Id: bb4906e1-ffcf-11de-aca4-90e6ba240cb6

Error - 1/17/2010 11:56:03 PM | Computer Name = BoypulTitmouse | Source = Application Error | ID = 1000
Description = Faulting application name: iexplore.exe, version: 8.0.7600.16385,
time stamp: 0x4a5bc69e Faulting module name: Flash10c.ocx, version: 10.0.32.18, time
stamp: 0x4a613d79 Exception code: 0xc0000005 Fault offset: 0x001579a2 Faulting process
id: 0xbe4 Faulting application start time: 0x01ca97f161a87940 Faulting application
path: C:\Program Files (x86)\Internet Explorer\iexplore.exe Faulting module path:
C:\Windows\SysWow64\Macromed\Flash\Flash10c.ocx Report Id: 654adf60-03e5-11df-aca4-90e6ba240cb6

Error - 2/17/2010 12:42:37 AM | Computer Name = BoypulTitmouse | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7600.16385 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: efc Start
Time: 01caaf8b66dfb3e0 Termination Time: 0 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id: dc260281-1b7e-11df-98bf-90e6ba240cb6

Error - 2/17/2010 3:35:56 PM | Computer Name = BoypulTitmouse | Source = Application Error | ID = 1000
Description = Faulting application name: iexplore.exe, version: 8.0.7600.16385,
time stamp: 0x4a5bc69e Faulting module name: Flash10c.ocx, version: 10.0.32.18, time
stamp: 0x4a613d79 Exception code: 0xc0000005 Fault offset: 0x001579a2 Faulting process
id: 0xce8 Faulting application start time: 0x01cab008573c5880 Faulting application
path: C:\Program Files (x86)\Internet Explorer\iexplore.exe Faulting module path:
C:\Windows\SysWow64\Macromed\Flash\Flash10c.ocx Report Id: aa784c20-1bfb-11df-98bf-90e6ba240cb6

Error - 2/17/2010 3:36:36 PM | Computer Name = BoypulTitmouse | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7600.16385 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: c38 Start
Time: 01cab0072eb9ab20 Termination Time: 0 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id: bed94701-1bfb-11df-98bf-90e6ba240cb6

Error - 3/25/2010 1:55:13 AM | Computer Name = BoypulTitmouse | Source = Application Error | ID = 1000
Description = Faulting application name: iexplore.exe, version: 8.0.7600.16385,
time stamp: 0x4a5bc69e Faulting module name: gp.ocx_unloaded, version: 0.0.0.0, time
stamp: 0x4b2640f3 Exception code: 0xc0000005 Fault offset: 0x6e810c11 Faulting process
id: 0x1378 Faulting application start time: 0x01cacbbcba4c5f90 Faulting application
path: C:\Program Files (x86)\Internet Explorer\iexplore.exe Faulting module path:
gp.ocx Report Id: fa350dc8-37d2-11df-ab5c-90e6ba240cb6

[ System Events ]
Error - 4/3/2010 2:33:22 PM | Computer Name = BoypulTitmouse | Source = Service Control Manager | ID = 7000
Description = The atksgt service failed to start due to the following error: %%577

Error - 4/3/2010 2:33:22 PM | Computer Name = BoypulTitmouse | Source = Service Control Manager | ID = 7000
Description = The lirsgt service failed to start due to the following error: %%577

Error - 4/3/2010 2:33:38 PM | Computer Name = BoypulTitmouse | Source = Service Control Manager | ID = 7024
Description = The HomeGroup Listener service terminated with service-specific error
%%-2147023143.

Error - 4/4/2010 10:46:18 PM | Computer Name = BoypulTitmouse | Source = Service Control Manager | ID = 7000
Description = The atksgt service failed to start due to the following error: %%577

Error - 4/4/2010 10:46:18 PM | Computer Name = BoypulTitmouse | Source = Service Control Manager | ID = 7000
Description = The lirsgt service failed to start due to the following error: %%577

Error - 4/7/2010 12:03:00 AM | Computer Name = BoypulTitmouse | Source = Service Control Manager | ID = 7000
Description = The atksgt service failed to start due to the following error: %%577

Error - 4/7/2010 12:03:01 AM | Computer Name = BoypulTitmouse | Source = Service Control Manager | ID = 7000
Description = The lirsgt service failed to start due to the following error: %%577

Error - 4/8/2010 3:43:45 AM | Computer Name = BoypulTitmouse | Source = Service Control Manager | ID = 7034
Description = The WebEx Service Host for Support Center service terminated unexpectedly.
It has done this 1 time(s).

Error - 4/9/2010 2:05:57 AM | Computer Name = BoypulTitmouse | Source = Service Control Manager | ID = 7000
Description = The atksgt service failed to start due to the following error: %%577

Error - 4/9/2010 2:05:57 AM | Computer Name = BoypulTitmouse | Source = Service Control Manager | ID = 7000
Description = The lirsgt service failed to start due to the following error: %%577


< End of report >
  • 0

#6
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,178 posts
  • MVP
I see flash errors in your extras log. It's taking down your IE but that's not your main problem.

Norton Internet Security comes with its own 2-way firewall which I'm pretty sure is blocking your other programs from getting to the Internet. The so-called user manual on the Symantec site is too vague to be of any use so you are going to have to use the Symantec help to figure it out. If it's a trial that came with the PC then the simplest method is just to uninstall the program. Download and install Avast free instead.

http://www.avast.com...avast-home.html

Ron
  • 0

#7
JLib19

JLib19

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
I restarted Norton Internet Security and everything connects to the internet now!! Thank you!! I've been trying to fix this for about 6 months now. Figures it was something rather simple!!
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP