Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Possible infection, slow performance and random problems

Started by rabidturtle2501 , Jul 10 2010 04:30 PM

  • Please log in to reply

#1
rabidturtle2501
Posted 10 July 2010 - 04:30 PM

rabidturtle2501

    Member

  • Member
  • PipPip
  • 29 posts
I started out in the Hardware forum because I assumed at first that my hard drive was just about to die, but I wanted to make sure it's not a virus before replacing anything. My first thread in Hardware is here: http://www.geekstogo...il-t281122.html

When I power on the computer, it sits for quite a while on the HP logo screen before moving to the Windows logo. Firefox seems to be particularly affected, so I'm having to use Opera. I can't get into Disk Management as mentioned on the first thread, and when I try to right click on anything Windows Explorer usually crashes. Norton 360 also would not update, and will not even open now. GMER will not generate a log file, and giving me two error messages which I'll attach screenshots of. I'm also posting a screenshot of the dialog box that pops up after the scan runs. Any help would be appreciated!

MBAM logfile:

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4300

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

7/10/2010 1:45:09 PM
mbam-log-2010-07-10 (13-45-09).txt

Scan type: Quick scan
Objects scanned: 125571
Time elapsed: 9 minute(s), 5 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


---

OTL.txt:

OTL logfile created on: 7/10/2010 4:03:21 PM - Run 1
OTL by OldTimer - Version 3.2.9.0 Folder = C:\Users\Philbert\Desktop\fixit
64bit- An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 53.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 76.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 456.19 Gb Total Space | 217.88 Gb Free Space | 47.76% Space Free | Partition Type: NTFS
Drive D: | 9.57 Gb Total Space | 1.29 Gb Free Space | 13.47% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive L: | 596.17 Gb Total Space | 63.54 Gb Free Space | 10.66% Space Free | Partition Type: NTFS

Computer Name: BEBOP
Current User Name: Philbert
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/07/10 16:02:05 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Philbert\Desktop\fixit\OTL.exe
PRC - [2010/06/21 03:23:34 | 000,173,352 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
PRC - [2010/04/03 16:59:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010/02/25 19:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton 360\Engine\4.2.0.12\ccsvchst.exe
PRC - [2009/10/23 12:31:44 | 000,401,920 | ---- | M] (Amazon.com) -- C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe
PRC - [2009/07/13 20:14:42 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe


========== Modules (SafeList) ==========

MOD - [2010/07/10 16:02:05 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Philbert\Desktop\fixit\OTL.exe
MOD - [2010/04/01 09:57:36 | 000,015,056 | ---- | M] (McAfee, Inc.) -- c:\Program Files (x86)\McAfee\SiteAdvisor\sahook.dll
MOD - [2009/07/13 20:16:16 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll
MOD - [2009/07/13 20:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009/07/13 20:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/02/11 16:38:11 | 001,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2009/10/06 14:53:54 | 005,520,680 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Windows\SysNative\Wacom_Tablet.exe -- (TabletServiceWacom)
SRV:64bit: - [2009/07/13 20:41:56 | 000,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2009/07/13 20:41:54 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\StorSvc.dll -- (StorSvc)
SRV:64bit: - [2009/07/13 20:41:53 | 001,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 20:40:24 | 000,689,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2009/07/13 20:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2010/06/21 03:23:34 | 000,173,352 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe -- (TeamViewer5)
SRV - [2010/04/03 16:59:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010/03/26 11:16:04 | 000,110,312 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe -- (McAfee SiteAdvisor Service)
SRV - [2010/02/25 19:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files (x86)\Norton 360\Engine\4.2.0.12\ccSvcHst.exe -- (N360)
SRV - [2010/02/11 15:06:10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/10/23 12:31:44 | 000,401,920 | ---- | M] (Amazon.com) [Auto | Running] -- C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe -- (Amazon Download Agent)
SRV - [2007/03/20 16:41:24 | 000,153,792 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe -- (Adobe Version Cue CS3)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\pdihwctl.sys -- (PDIHWCTL)
DRV:64bit: - [2010/05/05 23:01:59 | 000,451,120 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symtdiv.sys -- (SYMTDIv)
DRV:64bit: - [2010/04/29 00:03:51 | 000,150,064 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\ironx64.sys -- (SymIRON)
DRV:64bit: - [2010/04/27 16:39:53 | 000,173,104 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2010/04/21 22:02:20 | 000,221,232 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symefa64.sys -- (SymEFA)
DRV:64bit: - [2010/04/21 21:29:51 | 000,505,392 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2010/04/21 21:29:51 | 000,032,304 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV:64bit: - [2010/03/04 21:43:00 | 000,346,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010/02/25 19:22:52 | 000,615,040 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\cchpx64.sys -- (ccHP)
DRV:64bit: - [2010/02/03 20:40:47 | 000,433,200 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symds64.sys -- (SymDS)
DRV:64bit: - [2010/01/24 23:32:24 | 000,018,216 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacmoumonitor.sys -- (wacmoumonitor)
DRV:64bit: - [2009/11/04 03:58:42 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d) MS Hardware Device Detection Driver (HID)
DRV:64bit: - [2009/10/16 20:11:36 | 000,028,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\point64k.sys -- (Point64)
DRV:64bit: - [2009/07/31 01:12:56 | 000,339,744 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
DRV:64bit: - [2009/07/13 20:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/13 20:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 20:45:55 | 000,200,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV:64bit: - [2009/07/13 20:45:55 | 000,046,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV:64bit: - [2009/07/13 20:45:55 | 000,034,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 18:42:58 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV:64bit: - [2009/07/13 18:42:44 | 000,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV:64bit: - [2009/07/13 18:24:27 | 000,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2009/06/10 15:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 15:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/20 12:54:06 | 000,015,656 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacomvhid.sys -- (wacomvhid)
DRV:64bit: - [2009/05/18 16:17:08 | 000,034,152 | R--- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/05/09 01:14:20 | 000,015,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nuidfltr.sys -- (NuidFltr)
DRV:64bit: - [2009/03/02 14:12:18 | 000,011,576 | ---- | M] (Samsung Electronics) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\SSPORT.SYS -- (SSPORT)
DRV:64bit: - [2009/03/02 14:12:14 | 000,053,816 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\DGIVECP.SYS -- (DgiVecp)
DRV:64bit: - [2007/02/16 11:12:36 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacommousefilter.sys -- (wacommousefilter)
DRV:64bit: - [2005/12/13 17:53:40 | 000,007,808 | ---- | M] (GretagMacbeth LLC) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SeqCal.sys -- (SeqCal)
DRV - [2010/05/31 11:46:02 | 001,773,104 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\VirusDefs\20100702.021\EX64.SYS -- (NAVEX15)
DRV - [2010/05/31 11:46:02 | 000,475,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2010/05/31 11:46:02 | 000,132,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010/05/31 11:46:02 | 000,117,808 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\VirusDefs\20100702.021\ENG64.SYS -- (NAVENG)
DRV - [2010/05/28 14:33:18 | 000,463,408 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\IPSDefs\20100701.001\IDSviA64.sys -- (IDSVia64)
DRV - [2010/05/22 13:16:04 | 000,942,640 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\Definitions\BASHDefs\20100619.001\BHDrvx64.sys -- (BHDrvx64)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 50 4B E0 63 0E B4 CA 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Urban Dictionary"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.bbc.co.uk/"
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: [email protected]:2.0.2
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.6.1
FF - prefs.js..extensions.enabledItems: {2fa4ed95-0317-4c6a-a74c-5f3e3912c1f9}:2.1.072
FF - prefs.js..extensions.enabledItems: {477c4c36-24eb-11da-94d4-00e08161165f}:2.7.6
FF - prefs.js..extensions.enabledItems: {5F590AA2-1221-4113-A6F4-A4BB62414FAC}:0.45.6.20100202.1
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:1.9.9.97
FF - prefs.js..extensions.enabledItems: {AE93811A-5C9A-4d34-8462-F7B864FC4696}:3.64
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.7.3
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.1
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1

FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files (x86)\McAfee\SiteAdvisor [2010/06/01 13:22:19 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\IPSFFPlgn\ [2010/06/01 13:49:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.1.0.32\coFFPlgn\ [2010/04/27 16:40:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/06/27 23:49:43 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/06/27 23:49:43 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.5\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2010/06/19 21:45:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.5\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins

[2010/05/31 15:03:35 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\Mozilla\Extensions
[2010/05/31 15:03:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Philbert\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2009/11/02 23:25:07 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\Mozilla\Extensions\[email protected]
[2010/07/10 15:26:16 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions
[2010/06/23 21:21:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2010/04/13 17:38:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions\{2fa4ed95-0317-4c6a-a74c-5f3e3912c1f9}
[2010/06/16 13:59:40 | 000,000,000 | ---D | M] (Grab and Drag) -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions\{477c4c36-24eb-11da-94d4-00e08161165f}
[2010/04/12 00:06:06 | 000,000,000 | ---D | M] (SmoothWheel (mozdev.org)) -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions\{5F590AA2-1221-4113-A6F4-A4BB62414FAC}
[2010/06/25 12:34:37 | 000,000,000 | ---D | M] (NoScript) -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2010/06/06 14:52:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010/04/23 15:41:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions\{AE93811A-5C9A-4d34-8462-F7B864FC4696}
[2010/04/15 21:18:47 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010/04/09 09:39:07 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2010/05/31 15:06:09 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\extensions\[email protected]
[2010/06/30 16:17:01 | 000,002,006 | ---- | M] () -- C:\Users\Philbert\AppData\Roaming\Mozilla\Firefox\Profiles\a3onr9d9.default\searchplugins\urban-dictionary.xml
[2010/06/06 14:52:59 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/02/11 20:09:33 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010/04/24 12:55:20 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/04/12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/21 23:52:47 | 000,075,208 | ---- | M] (Foxit Software Company) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll

O1 HOSTS File: ([2009/06/10 16:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\4.2.0.12\coieplg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\4.2.0.12\ipsbho.dll (Symantec Corporation)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\4.2.0.12\coieplg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\4.2.0.12\coieplg.dll (Symantec Corporation)
O4:64bit: - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [KONICA MINOLTA PagePro 1400W STD] C:\Windows\SysNative\MSTMON_Y.EXE (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
O4 - HKLM..\Run: [Adobe_ID0EYTHM] C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [AdobeBridge] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Philbert\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Philbert\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/11/23 23:27:13 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: aux - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: midi - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: midimapper - midimap.dll (Microsoft Corporation)
Drivers32:64bit: mixer - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: msacm.imaadpcm - imaadp32.acm (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: msacm.msadpcm - msadp32.acm (Microsoft Corporation)
Drivers32:64bit: msacm.msg711 - msg711.acm (Microsoft Corporation)
Drivers32:64bit: msacm.msgsm610 - msgsm32.acm (Microsoft Corporation)
Drivers32:64bit: vidc.i420 - iyuv_32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.iyuv - iyuv_32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.mrle - msrle32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.msvc - msvidc32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.uyvy - msyuv.dll (Microsoft Corporation)
Drivers32:64bit: vidc.yuy2 - msyuv.dll (Microsoft Corporation)
Drivers32:64bit: vidc.yvu9 - tsbyuv.dll (Microsoft Corporation)
Drivers32:64bit: vidc.yvyu - msyuv.dll (Microsoft Corporation)
Drivers32:64bit: wave - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: wavemapper - msacm32.drv (Microsoft Corporation)
Drivers32: aux - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: midi - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: midimapper - C:\Windows\SysWow64\midimap.dll (Microsoft Corporation)
Drivers32: mixer - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: msacm.imaadpcm - C:\Windows\SysWow64\imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.msadpcm - C:\Windows\SysWow64\msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - C:\Windows\SysWow64\msg711.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - C:\Windows\SysWow64\msgsm32.acm (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.i420 - C:\Windows\SysWow64\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.iyuv - C:\Windows\SysWow64\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.mrle - C:\Windows\SysWow64\msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msvc - C:\Windows\SysWow64\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.uyvy - C:\Windows\SysWow64\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: vidc.yuy2 - C:\Windows\SysWow64\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yvu9 - C:\Windows\SysWow64\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.yvyu - C:\Windows\SysWow64\msyuv.dll (Microsoft Corporation)
Drivers32: wave - C:\Windows\SysWow64\wdmaud.drv (Microsoft Corporation)
Drivers32: wavemapper - C:\Windows\SysWow64\msacm32.drv (Microsoft Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 90 Days ==========

[2010/07/10 14:13:51 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\ZipGenius
[2010/07/10 14:13:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ZipGenius 6
[2010/07/10 13:30:36 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\Malwarebytes
[2010/07/10 13:30:26 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/07/10 13:30:25 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/07/10 13:30:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/07/10 13:30:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/07/10 13:27:43 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/07/10 13:26:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ERUNT
[2010/07/10 11:24:26 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Desktop\fixit
[2010/07/02 14:25:58 | 000,000,000 | ---D | C] -- C:\ProgramData\NCH Swift Sound
[2010/07/02 14:25:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NCH Swift Sound
[2010/07/02 14:25:31 | 000,481,480 | ---- | C] (NCH Software) -- C:\Users\Philbert\Desktop\burnsetup.exe
[2010/07/02 14:22:17 | 000,573,960 | ---- | C] (Western Digital Corporation ) -- C:\Users\Philbert\Desktop\WinDlg.exe
[2010/07/01 16:24:30 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Desktop\from phone
[2010/07/01 11:56:25 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Documents\Financial Aid
[2010/06/27 11:04:16 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\TeamViewer
[2010/06/27 11:04:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2010/06/25 04:20:24 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Desktop\Raws
[2010/06/23 15:18:38 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Documents\Anki
[2010/06/23 15:18:37 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\.anki
[2010/06/23 15:18:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Anki
[2010/06/23 14:09:01 | 000,000,000 | ---D | C] -- C:\Photoshop Extras
[2010/06/23 14:05:02 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Documents\Finances
[2010/06/23 13:50:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Easy Cash Manager
[2010/06/23 12:04:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Western Digital Corporation
[2010/06/17 22:20:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2010/06/12 23:05:23 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\SecondLife
[2010/06/12 23:05:23 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Local\SecondLife
[2010/06/12 23:04:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SecondLifeViewer2
[2010/06/10 19:54:03 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\de.makesoft.twhirl.0EA062BC275E7ED1E6EC3762EFFD73C7158ADF33.1
[2010/06/10 19:16:20 | 000,064,616 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2010/06/10 19:16:20 | 000,056,424 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2010/06/10 15:00:32 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Desktop\CIB
[2010/06/09 22:21:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2010/06/09 22:21:34 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\SystemRequirementsLab
[2010/06/08 16:50:00 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Documents\FAFSA
[2010/06/08 16:26:41 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\Foxit Software
[2010/06/08 08:32:43 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Desktop\Merriam-Webster Editors
[2010/06/06 14:52:45 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\DVDVideoSoftIEHelpers
[2010/06/02 15:56:53 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Adobe
[2010/05/31 19:06:56 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\vlc
[2010/05/31 19:06:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2010/05/31 15:03:33 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\Thunderbird
[2010/05/31 15:03:33 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Local\Thunderbird
[2010/05/31 15:03:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
[2010/05/31 12:17:03 | 000,505,392 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtsp64.sys
[2010/05/31 12:17:03 | 000,451,120 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symtdiv.sys
[2010/05/31 12:17:03 | 000,433,200 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symds64.sys
[2010/05/31 12:17:03 | 000,221,232 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symefa64.sys
[2010/05/31 12:17:03 | 000,150,064 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\ironx64.sys
[2010/05/31 12:17:03 | 000,032,304 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtspx64.sys
[2010/05/31 12:17:02 | 000,615,040 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\cchpx64.sys
[2010/05/31 12:16:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\N360x64\0402000.00C
[2010/05/06 17:48:02 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Documents\legal info
[2010/05/03 12:30:17 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Documents\misc from WindowsOld
[2010/05/03 12:28:37 | 000,000,000 | R--D | C] -- C:\Users\Philbert\Documents\_Notes
[2010/05/03 12:07:56 | 000,000,000 | ---D | C] -- C:\Media Player Classic
[2010/05/03 12:03:29 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\Media Player Classic
[2010/05/01 16:43:15 | 001,185,280 | ---- | C] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\Windows\SysNative\MSTMON_Y.DLL
[2010/05/01 16:43:15 | 000,269,312 | ---- | C] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\Windows\SysNative\MSTMON_Y.EXE
[2010/05/01 16:43:15 | 000,225,792 | ---- | C] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\Windows\SysNative\MUINST_Y.EXE
[2010/05/01 16:43:15 | 000,119,296 | ---- | C] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\Windows\SysNative\MSPOOL_Y.DLL
[2010/05/01 16:43:15 | 000,050,688 | ---- | C] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\Windows\SysNative\MTAG32_Y.DLL
[2010/05/01 16:43:14 | 000,144,384 | ---- | C] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\Windows\SysNative\MLMON__Y.DLL
[2010/05/01 16:43:14 | 000,107,008 | ---- | C] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\Windows\SysNative\MGDI32_Y.DLL
[2010/05/01 16:43:14 | 000,093,184 | ---- | C] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\Windows\SysNative\MCMM___Y.DLL
[2010/05/01 16:43:14 | 000,076,800 | ---- | C] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\Windows\SysNative\MICM___Y.DLL
[2010/05/01 16:43:14 | 000,059,392 | ---- | C] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) -- C:\Windows\SysNative\MIMF32_Y.DLL
[2010/04/28 19:19:06 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Local\CrashDumps
[2010/04/27 17:03:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
[2010/04/27 16:40:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2010/04/27 16:39:58 | 000,173,104 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2010/04/27 16:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2010/04/27 16:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2010/04/27 16:39:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\N360x64
[2010/04/27 16:39:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton 360
[2010/04/27 16:39:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2010/04/27 16:39:18 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2010/04/27 16:39:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[2010/04/27 16:34:01 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Documents\Amazon Downloads
[2010/04/27 16:34:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Amazon
[2010/04/27 16:33:52 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Amazon Games & Software
[2010/04/27 16:33:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Amazon
[2010/04/26 21:38:12 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Documents\funny
[2010/04/26 17:25:19 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Local\Apple Computer
[2010/04/26 17:19:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Winamp
[2010/04/26 16:59:34 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Documents\Any Video Converter
[2010/04/26 16:59:16 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\AnvSoft
[2010/04/26 16:59:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AnvSoft
[2010/04/26 16:49:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2010/04/26 16:49:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Real
[2010/04/26 16:49:31 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\Real
[2010/04/26 16:39:59 | 000,000,000 | ---D | C] -- C:\Users\Philbert\Documents\Converted
[2010/04/26 16:39:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Deskshare
[2010/04/26 16:39:33 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Local\Xenocode
[2010/04/26 16:39:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xvid
[2010/04/24 20:48:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2010/04/24 20:46:09 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Local\RssBandit
[2010/04/24 20:46:08 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Local\NewsComponents
[2010/04/24 20:45:50 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\RssBandit
[2010/04/24 20:31:03 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Local\Snarfware
[2010/04/24 20:30:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Snarfware
[2010/04/19 16:55:22 | 000,000,000 | ---D | C] -- C:\Users\Philbert\AppData\Roaming\OpenOffice.org
[2010/04/19 15:46:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JRE
[2010/04/19 15:45:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 3

========== Files - Modified Within 90 Days ==========

[2010/07/10 16:07:38 | 001,125,164 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\Cat.DB
[2010/07/10 16:04:34 | 005,505,024 | -HS- | M] () -- C:\Users\Philbert\NTUSER.DAT
[2010/07/10 15:42:56 | 000,000,056 | ---- | M] () -- C:\Users\Philbert\AppData\Roaming\mainhst.zgh
[2010/07/10 15:33:00 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3896630410-2756448662-2535567421-1001UA.job
[2010/07/10 14:20:13 | 000,022,334 | ---- | M] () -- C:\Users\Philbert\Desktop\gmer error.JPG
[2010/07/10 14:15:07 | 001,157,131 | -H-- | M] () -- C:\Users\Philbert\AppData\Local\IconCache.db
[2010/07/10 14:13:36 | 000,001,095 | ---- | M] () -- C:\Users\Public\Desktop\ZipGenius 6.lnk
[2010/07/10 14:00:11 | 000,013,456 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/07/10 14:00:11 | 000,013,456 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/07/10 13:52:11 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/07/10 13:52:09 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/07/10 13:50:58 | 2414,755,840 | -HS- | M] () -- C:\hiberfil.sys
[2010/07/10 13:33:00 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3896630410-2756448662-2535567421-1001Core.job
[2010/07/10 13:30:32 | 000,001,015 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/07/10 13:26:45 | 000,000,930 | ---- | M] () -- C:\Users\Philbert\Desktop\NTREGOPT.lnk
[2010/07/10 13:26:44 | 000,000,911 | ---- | M] () -- C:\Users\Philbert\Desktop\ERUNT.lnk
[2010/07/02 18:59:56 | 009,877,714 | ---- | M] () -- C:\Users\Philbert\Documents\Firefox 3.6.6 (en-US) - 2010-07-02.pcv
[2010/07/02 14:25:48 | 000,001,211 | ---- | M] () -- C:\Users\Public\Desktop\Express Burn Disc Burning Software.lnk
[2010/07/02 14:25:31 | 000,481,480 | ---- | M] (NCH Software) -- C:\Users\Philbert\Desktop\burnsetup.exe
[2010/07/02 14:22:42 | 000,001,290 | ---- | M] () -- C:\Users\Public\Desktop\Data Lifeguard Diagnostic for Windows.lnk
[2010/07/02 14:18:06 | 000,548,625 | ---- | M] () -- C:\Users\Philbert\Desktop\windlg_121.zip
[2010/06/27 14:36:49 | 068,033,880 | ---- | M] () -- C:\Users\Philbert\Desktop\Bryce.tif
[2010/06/27 14:34:27 | 076,343,544 | ---- | M] () -- C:\Users\Philbert\Desktop\Lenore.tif
[2010/06/27 11:04:13 | 000,001,168 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 5.lnk
[2010/06/25 04:35:09 | 000,713,888 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/06/25 04:35:09 | 000,615,122 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/06/25 04:35:09 | 000,103,496 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/06/24 07:41:34 | 000,080,444 | ---- | M] () -- C:\Users\Philbert\Desktop\JNOE-7GSAQJ_R7_EN.pdf
[2010/06/23 15:18:15 | 000,000,746 | ---- | M] () -- C:\Users\Philbert\Desktop\Anki.lnk
[2010/06/23 14:14:44 | 000,000,859 | ---- | M] () -- C:\Users\Philbert\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2010/06/23 14:14:41 | 000,000,835 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2010/06/23 14:07:19 | 000,001,070 | ---- | M] () -- C:\Users\Philbert\Desktop\Easy Cash Manager.lnk
[2010/06/23 12:30:51 | 000,000,017 | ---- | M] () -- C:\Users\Philbert\AppData\Local\resmon.resmoncfg
[2010/06/15 13:55:41 | 000,115,512 | ---- | M] () -- C:\Users\Philbert\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/06/12 23:05:20 | 000,001,138 | ---- | M] () -- C:\Users\Public\Desktop\Second Life Viewer 2.lnk
[2010/06/12 16:22:52 | 000,142,024 | ---- | M] () -- C:\Users\Philbert\Desktop\deploma.JPG
[2010/06/09 22:34:50 | 003,297,600 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/06/06 15:09:45 | 006,994,051 | ---- | M] () -- C:\Users\Philbert\Desktop\Bill Cosby Drugs.flv
[2010/06/06 14:52:40 | 000,001,245 | ---- | M] () -- C:\Users\Philbert\Desktop\DVDVideoSoft Free Studio.lnk
[2010/06/06 11:38:08 | 001,683,896 | ---- | M] () -- C:\Users\Philbert\Desktop\screenclean.swf.swf
[2010/05/31 19:06:23 | 000,001,072 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2010/05/31 15:03:28 | 000,002,011 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2010/05/14 01:40:03 | 000,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\isolate.ini
[2010/05/05 23:01:59 | 000,451,120 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symtdiv.sys
[2010/05/05 23:01:43 | 000,001,473 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symnetv.inf
[2010/05/05 23:01:43 | 000,001,445 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symnet.inf
[2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/04/29 15:39:28 | 000,024,664 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/04/29 00:03:51 | 000,150,064 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\ironx64.sys
[2010/04/29 00:03:51 | 000,007,402 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\iron.cat
[2010/04/29 00:03:51 | 000,000,771 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\iron.inf
[2010/04/28 17:53:02 | 000,000,000 | -H-- | M] () -- C:\Users\Philbert\Documents\Default.rdp
[2010/04/27 16:39:53 | 000,173,104 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2010/04/27 16:39:53 | 000,007,440 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2010/04/27 16:39:53 | 000,000,854 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2010/04/26 03:18:45 | 000,007,829 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symefa64.cat
[2010/04/24 20:31:00 | 000,001,075 | ---- | M] () -- C:\Users\Philbert\Desktop\Snarfer.LNK
[2010/04/24 06:31:04 | 000,003,373 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symefa.inf
[2010/04/21 22:02:20 | 000,221,232 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symefa64.sys
[2010/04/21 21:29:51 | 000,505,392 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtsp64.sys
[2010/04/21 21:29:51 | 000,032,304 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtspx64.sys
[2010/04/21 21:29:51 | 000,007,414 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtspx64.cat
[2010/04/21 21:29:51 | 000,001,421 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtspx64.inf
[2010/04/21 21:29:50 | 000,007,410 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtsp64.cat
[2010/04/21 21:29:50 | 000,001,437 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtsp64.inf

========== Files Created - No Company Name ==========

[2010/07/10 14:20:12 | 000,022,334 | ---- | C] () -- C:\Users\Philbert\Desktop\gmer error.JPG
[2010/07/10 14:14:32 | 000,293,376 | ---- | C] () -- C:\Users\Philbert\Desktop\gmer.exe
[2010/07/10 14:14:05 | 000,000,056 | ---- | C] () -- C:\Users\Philbert\AppData\Roaming\mainhst.zgh
[2010/07/10 14:13:35 | 000,001,095 | ---- | C] () -- C:\Users\Public\Desktop\ZipGenius 6.lnk
[2010/07/10 13:30:32 | 000,001,015 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/07/10 13:26:44 | 000,000,930 | ---- | C] () -- C:\Users\Philbert\Desktop\NTREGOPT.lnk
[2010/07/10 13:26:44 | 000,000,911 | ---- | C] () -- C:\Users\Philbert\Desktop\ERUNT.lnk
[2010/07/02 18:59:52 | 009,877,714 | ---- | C] () -- C:\Users\Philbert\Documents\Firefox 3.6.6 (en-US) - 2010-07-02.pcv
[2010/07/02 14:25:48 | 000,001,211 | ---- | C] () -- C:\Users\Public\Desktop\Express Burn Disc Burning Software.lnk
[2010/07/02 14:22:42 | 000,001,290 | ---- | C] () -- C:\Users\Public\Desktop\Data Lifeguard Diagnostic for Windows.lnk
[2010/07/02 14:18:06 | 000,548,625 | ---- | C] () -- C:\Users\Philbert\Desktop\windlg_121.zip
[2010/06/27 14:36:46 | 068,033,880 | ---- | C] () -- C:\Users\Philbert\Desktop\Bryce.tif
[2010/06/27 14:34:21 | 076,343,544 | ---- | C] () -- C:\Users\Philbert\Desktop\Lenore.tif
[2010/06/27 11:04:12 | 000,001,168 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 5.lnk
[2010/06/24 07:41:30 | 000,080,444 | ---- | C] () -- C:\Users\Philbert\Desktop\JNOE-7GSAQJ_R7_EN.pdf
[2010/06/23 15:18:15 | 000,000,746 | ---- | C] () -- C:\Users\Philbert\Desktop\Anki.lnk
[2010/06/23 14:07:19 | 000,001,070 | ---- | C] () -- C:\Users\Philbert\Desktop\Easy Cash Manager.lnk
[2010/06/23 12:30:51 | 000,000,017 | ---- | C] () -- C:\Users\Philbert\AppData\Local\resmon.resmoncfg
[2010/06/13 14:00:58 | 000,000,859 | ---- | C] () -- C:\Users\Philbert\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2010/06/13 14:00:55 | 000,000,835 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2010/06/12 23:05:19 | 000,001,138 | ---- | C] () -- C:\Users\Public\Desktop\Second Life Viewer 2.lnk
[2010/06/12 11:36:27 | 000,142,024 | ---- | C] () -- C:\Users\Philbert\Desktop\deploma.JPG
[2010/06/10 19:16:20 | 000,009,832 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2010/06/06 15:06:28 | 006,994,051 | ---- | C] () -- C:\Users\Philbert\Desktop\Bill Cosby Drugs.flv
[2010/06/06 11:38:07 | 001,683,896 | ---- | C] () -- C:\Users\Philbert\Desktop\screenclean.swf.swf
[2010/06/01 08:32:47 | 001,125,164 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\Cat.DB
[2010/05/31 19:06:23 | 000,001,072 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2010/05/31 15:03:27 | 000,002,011 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2010/05/31 12:17:03 | 000,007,829 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symefa64.cat
[2010/05/31 12:17:03 | 000,007,787 | R--- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symnetv64.cat
[2010/05/31 12:17:03 | 000,007,414 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtspx64.cat
[2010/05/31 12:17:03 | 000,007,410 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtsp64.cat
[2010/05/31 12:17:03 | 000,007,406 | R--- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symds64.cat
[2010/05/31 12:17:03 | 000,007,368 | R--- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symnet64.cat
[2010/05/31 12:17:03 | 000,003,373 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symefa.inf
[2010/05/31 12:17:03 | 000,002,793 | R--- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symds.inf
[2010/05/31 12:17:03 | 000,001,473 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symnetv.inf
[2010/05/31 12:17:03 | 000,001,445 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\symnet.inf
[2010/05/31 12:17:03 | 000,001,437 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtsp64.inf
[2010/05/31 12:17:03 | 000,001,421 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\srtspx64.inf
[2010/05/31 12:17:03 | 000,000,771 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\iron.inf
[2010/05/31 12:17:02 | 000,007,402 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\iron.cat
[2010/05/31 12:17:02 | 000,007,358 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\cchpx64.cat
[2010/05/31 12:17:02 | 000,001,838 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\cchpx64.inf
[2010/05/31 12:16:47 | 000,000,172 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\0402000.00C\isolate.ini
[2010/05/01 16:43:15 | 000,016,596 | ---- | C] () -- C:\Windows\MSTMON_Y.INI
[2010/05/01 16:43:15 | 000,012,795 | ---- | C] () -- C:\Windows\SysNative\MSTMON_Y.HLP
[2010/05/01 16:43:15 | 000,012,244 | ---- | C] () -- C:\Windows\MSUMLT_Y.INI
[2010/05/01 16:43:15 | 000,003,150 | ---- | C] () -- C:\Windows\SysNative\MUNZ___Y.UNM
[2010/05/01 16:43:15 | 000,000,560 | ---- | C] () -- C:\Windows\SysNative\MSTMON_Y.CNT
[2010/05/01 16:43:14 | 000,685,414 | ---- | C] () -- C:\Windows\SysNative\MLEDL__Y.PRN
[2010/05/01 16:43:14 | 000,678,746 | ---- | C] () -- C:\Windows\SysNative\MLEDA__Y.PRN
[2010/05/01 16:43:14 | 000,055,296 | ---- | C] () -- C:\Windows\SysNative\MCOINS_Y.DLL
[2010/04/28 17:53:02 | 000,000,000 | -H-- | C] () -- C:\Users\Philbert\Documents\Default.rdp
[2010/04/27 16:39:58 | 000,007,440 | ---- | C] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2010/04/27 16:39:58 | 000,000,854 | ---- | C] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2010/04/26 16:39:18 | 000,815,104 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010/04/26 16:39:18 | 000,180,224 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010/04/26 16:39:18 | 000,077,824 | ---- | C] () -- C:\Windows\SysWow64\xvid.ax
[2010/04/24 20:31:00 | 000,001,075 | ---- | C] () -- C:\Users\Philbert\Desktop\Snarfer.LNK
[2010/03/17 20:25:46 | 000,210,944 | ---- | C] () -- C:\Windows\SysWow64\MSVCRT10.DLL
[2009/11/06 11:58:04 | 000,178,975 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2009/10/23 18:58:59 | 002,463,976 | ---- | C] () -- C:\Windows\SysWow64\NPSWF32.dll
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 16:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/02/06 18:55:49 | 000,000,008 | RHS- | C] () -- C:\Windows\neoqaz2.dll

========== LOP Check ==========

[2010/06/27 23:49:13 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\.anki
[2010/04/26 16:59:16 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\AnvSoft
[2010/02/16 00:28:01 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\Bullzip
[2010/06/10 19:54:03 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\de.makesoft.twhirl.0EA062BC275E7ED1E6EC3762EFFD73C7158ADF33.1
[2010/06/06 14:52:45 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\DVDVideoSoftIEHelpers
[2010/02/04 15:45:13 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\EPSON
[2009/11/02 23:25:06 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\Flickr
[2009/11/21 23:53:11 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\Foxit
[2010/06/08 16:26:41 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\Foxit Software
[2009/11/21 23:29:30 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\HDRsoft
[2010/04/19 16:55:22 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\OpenOffice.org
[2010/03/16 09:30:31 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\Opera
[2010/04/24 20:47:11 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\RssBandit
[2010/06/12 23:05:50 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\SecondLife
[2010/06/09 22:21:55 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\SystemRequirementsLab
[2010/06/27 11:37:35 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\TeamViewer
[2010/05/31 15:03:35 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\Thunderbird
[2010/07/10 14:14:36 | 000,000,000 | ---D | M] -- C:\Users\Philbert\AppData\Roaming\ZipGenius
[2010/06/28 08:34:45 | 000,032,550 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.* >
[2009/10/11 13:51:08 | 000,039,868 | ---- | M] () -- C:\aaw7boot.log
[2007/11/23 23:27:13 | 000,000,074 | ---- | M] () -- C:\autoexec.bat
[2009/07/13 20:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr
[2009/10/23 01:41:37 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2006/09/18 16:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys
[2010/07/10 13:50:58 | 2414,755,840 | -HS- | M] () -- C:\hiberfil.sys
[2009/01/31 11:53:02 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2009/01/31 11:53:02 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010/07/10 13:50:59 | 3219,677,184 | -HS- | M] () -- C:\pagefile.sys

< %systemroot%\system32\*.wt >

< %systemroot%\system32\*.ruy >

< %systemroot%\Fonts\*.com >
[2009/07/14 00:32:31 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2009/07/14 00:32:31 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2009/07/14 00:32:31 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2009/07/14 00:32:31 | 000,043,318 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >
[2009/06/10 15:49:50 | 000,000,065 | ---- | M] () -- C:\Windows\Fonts\desktop.ini

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\system32\spool\prtprocs\w32x86\*.tmp >

< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.scr >

< %systemroot%\*._sy >

< %APPDATA%\Adobe\Update\*.* >

< %ALLUSERSPROFILE%\Favorites\*.* >

< %APPDATA%\Microsoft\*.* >

< %PROGRAMFILES%\*.dat >

< %APPDATA%\Update\*.* >

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\user32.dll /md5 >
[2009/07/13 20:11:24 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=E8B0FFC209E504CB7E79FC24E6C085F0 -- C:\Windows\SysWOW64\user32.dll

< %systemroot%\system32\ws2_32.dll /md5 >
[2009/07/13 20:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll

< %systemroot%\system32\ws2help.dll /md5 >
[2009/07/13 20:11:26 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=808AABDF9337312195CAFF76D1804786 -- C:\Windows\SysWOW64\ws2help.dll

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >

========== Alternate Data Streams ==========

@Alternate Data Stream - 8 bytes -> C:\Windows:
@Alternate Data Stream - 60 bytes -> C:\Windows\SysWow64\MSVCRT10.DLL:AFP_AfpInfo
@Alternate Data Stream - 60 bytes -> C:\Windows\system32\MSVCRT10.DLL:AFP_AfpInfo
< End of report >


Extras.txt

OTL Extras logfile created on: 7/10/2010 4:04:36 PM - Run 1
OTL by OldTimer - Version 3.2.9.0 Folder = C:\Users\Philbert\Desktop\fixit
64bit- An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 53.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 76.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 456.19 Gb Total Space | 217.88 Gb Free Space | 47.76% Space Free | Partition Type: NTFS
Drive D: | 9.57 Gb Total Space | 1.29 Gb Free Space | 13.47% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive L: | 596.17 Gb Total Space | 63.54 Gb Free Space | 10.66% Space Free | Partition Type: NTFS

Computer Name: BEBOP
Current User Name: Philbert
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64
"{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{37EA4EB5-2C4D-40CC-9EB1-762F1711ECDE}" = Adobe Photoshop Lightroom 2.2 64-bit
"{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64
"{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64
"{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4
"{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4
"{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64
"{C74A84EC-7C5F-4C36-A4A6-381E516D643B}" = Microsoft IntelliPoint 7.0
"{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit)
"{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"Bullzip PDF Printer_is1" = Bullzip PDF Printer 4.0.0.463
"KONICA MINOLTA PagePro 1400W" = KONICA MINOLTA PagePro 1400W
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"WinRAR archiver" = WinRAR archiver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1BDC1AB0-2677-4593-8F94-329F7CA8F670}" = Adobe Creative Suite 3 Design Premium
"{1D58229F-C505-45CA-8223-F35F3A34B963}" = Adobe Version Cue CS3 Server
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java™ 6 Update 20
"{26A24AE4-039D-4CA4-87B4-2F83216018F0}" = Java™ 6 Update 18
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}" = McAfee SiteAdvisor
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1" = Data Lifeguard Diagnostic for Windows 1.21
"{52232EF4-CC12-4C21-ABCF-ADB79618302D}" = Adobe Soundbooth CS4 Codecs
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{561968FD-56A1-49FD-9ED0-F55482C7C5BC}" = Adobe Media Encoder CS4 Exporter
"{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}" = Adobe Creative Suite 4 Master Collection
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6ADD0603-16EF-400D-9F9E-486432835002}" = OpenOffice.org 3.2
"{6B708481-748A-4EB4-97C1-CD386244FF77}" = Adobe MotionPicture Color Files
"{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}" = AHV content for Acrobat and Flash
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{8186FF34-D389-4B7E-9A2F-C197585BCFBD}" = Adobe Media Encoder CS4 Importer
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A1C962E2-2426-49C6-A38B-9A07E40D607C}" = Microsoft Games for Windows - LIVE
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B671CBFD-4109-4D35-9252-3062D3CCB7B2}" = Adobe SING CS3
"{B7F560B3-6EFF-4026-A982-843895A41149}" = Adobe BridgeTalk Plugin CS3
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BC4F8E84-5E29-49EC-B4E7-E6F9CB50986C}" = Adobe Flash Player 9 ActiveX
"{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C441297F-C9F2-4177-9D5F-1B10F0358E32}" = Opera 10.54
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C5BD220A-EFE8-48A5-B70E-9503D535FACE}" = Adobe WAS CS3
"{C8BA6802-38DA-43F9-8ACB-73161C277C9A}" = Adobe Setup
"{C938BE91-3BB5-4B84-9EF6-88F0505D0038}" = Adobe Premiere Pro CS4 Third Party Content
"{CB3F8375-B600-4B9F-83C9-238ED1E583FD}" = Adobe InDesign CS3
"{CC23FF9A-989C-4DEB-8970-50E6E4862315}" = EOSInfo
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}" = Adobe Setup
"{EA7B3CC4-366D-4CF6-8350-FD7A7034116E}" = Adobe InDesign CS3 Icon Handler
"{EC3B598C-1151-4191-B5B4-A9072ADE6259}_is1" = ZipGenius 6 (6.3.1.2590)
"{F08E8D2E-F132-4742-9C87-D5FF223A016A}" = Adobe Illustrator CS3
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FB2A5FCC-B81B-48C2-A009-7804694D83E9}" = Adobe Encore CS4 Codecs
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Adobe_498b43b77cac072081a5692bfc52804" = Add or Remove Adobe Creative Suite 3 Design Premium
"Adobe_b2d6abde968e6f277ddbfd501383e02" = Adobe Creative Suite 4 Master Collection
"Amazon Games & Software Downloader_is1" = Amazon Games & Software Downloader
"Anki" = Anki
"Any Video Converter_is1" = Any Video Converter 3.0.5
"Dynamic-Photo HDR 4_is1" = Dynamic-Photo HDR 4.6
"Easy Cash Manager" = Easy Cash Manager
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EPSON Scanner" = EPSON Scan
"ERUNT_is1" = ERUNT 1.1j
"ExpressBurn" = Express Burn Disc Burning Software
"FastStone Image Viewer" = FastStone Image Viewer 3.9
"Flickr Uploadr" = Flickr Uploadr 3.2.1
"FLV Player" = FLV Player 2.0 (build 25)
"Foxit Reader" = Foxit Reader
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.3
"Free Invoicer_is1" = Free Invoicer
"Free Studio_is1" = Free Studio version 4.4
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.5
"GPL Ghostscript Lite_is1" = GPL Ghostscript Lite 8.70
"Histogram Express Free Trial_is1" = Histogram Express 1.0 Free Trial
"i1ColorPoint 1.0" = i1ColorPoint 1.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.6)" = Mozilla Firefox (3.6.6)
"Mozilla Thunderbird (3.0.5)" = Mozilla Thunderbird (3.0.5)
"N360" = Norton 360
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"RescuePRO-3.0" = RescuePRO 3.3
"Samsung ML-2510 Series" = Samsung ML-2510 Series
"SecondLifeViewer2" = SecondLifeViewer2 (remove only)
"Snarfer" = Snarfer
"SystemRequirementsLab" = System Requirements Lab
"TeamViewer 5" = TeamViewer 5
"Uninstall_is1" = Uninstall 1.0.0.1
"VLC media player" = VLC media player 1.0.5
"Wacom Tablet Driver" = Wacom Tablet
"Wacom WebTabletPlugin for IE" = WebTablet IE Plugin
"Wacom WebTabletPlugin for Netscape" = WebTablet Netscape Plugin
"Xvid_is1" = Xvid 1.2.1 final uninstall

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 7/1/2010 8:22:44 PM | Computer Name = bebop | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files (x86)\Adobe\adobe
premiere pro cs4\MPEGHDVExport.exe". Dependent Assembly Plug-ins&#x5c;Common&#x5c;TSStrider,type="win32",version="1.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 7/2/2010 12:17:00 PM | Computer Name = bebop | Source = TabletServiceWacom | ID = 0
Description =

Error - 7/2/2010 12:17:02 PM | Computer Name = bebop | Source = Application Error | ID = 1000
Description = Faulting application name: Wacom_Tablet.exe, version: 6.1.2.4, time
stamp: 0x4acbbadd Faulting module name: Wacom_Tablet.exe, version: 6.1.2.4, time
stamp: 0x4acbbadd Exception code: 0xc0000005 Fault offset: 0x0000000000238340 Faulting
process id: 0x4d4 Faulting application start time: 0x01cb1a02000937e0 Faulting application
path: C:\Windows\system32\Wacom_Tablet.exe Faulting module path: C:\Windows\system32\Wacom_Tablet.exe
Report
Id: 3edf4ea0-85f5-11df-b5a0-00226bbeba55

Error - 7/2/2010 3:43:48 PM | Computer Name = bebop | Source = Application Hang | ID = 1002
Description = The program firefox.exe version 1.9.2.3828 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 183c Start
Time: 01cb1a1c665d7758 Termination Time: 7 Application Path: C:\Program Files (x86)\Mozilla
Firefox\firefox.exe Report Id: 6c43aa01-8611-11df-9bfd-00226bbeba55

Error - 7/2/2010 6:49:30 PM | Computer Name = bebop | Source = Application Hang | ID = 1002
Description = The program Explorer.EXE version 6.1.7600.16450 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: d24 Start
Time: 01cb1a37a0036e70 Termination Time: 16 Application Path: C:\Windows\Explorer.EXE

Report
Id: 0fb494a1-862c-11df-8e3e-00226bbeba55

Error - 7/2/2010 7:53:15 PM | Computer Name = bebop | Source = Application Hang | ID = 1002
Description = The program Explorer.EXE version 6.1.7600.16450 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: cf8 Start
Time: 01cb1a3b12ded850 Termination Time: 75 Application Path: C:\Windows\Explorer.EXE

Report
Id: f7660561-8634-11df-b97a-00226bbeba55

Error - 7/10/2010 12:50:48 PM | Computer Name = bebop | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files (x86)\Adobe\adobe
premiere pro cs4\MPEGHDVExport.exe". Dependent Assembly Plug-ins&#x5c;Common&#x5c;TSStrider,type="win32",version="1.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 7/10/2010 3:11:17 PM | Computer Name = bebop | Source = Application Hang | ID = 1002
Description = The program explorer.exe version 6.1.7600.16450 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 190c Start
Time: 01cb2063586da170 Termination Time: 16 Application Path: C:\Windows\explorer.exe

Report
Id: e7c0edc9-8c56-11df-96e3-00226bbeba55

Error - 7/10/2010 3:16:53 PM | Computer Name = bebop | Source = TabletServiceWacom | ID = 0
Description =

Error - 7/10/2010 4:41:23 PM | Computer Name = bebop | Source = Application Hang | ID = 1002
Description = The program Explorer.EXE version 6.1.7600.16450 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1a28 Start
Time: 01cb206441e82758 Termination Time: 0 Application Path: C:\Windows\Explorer.EXE

Report
Id: 7ec751d9-8c63-11df-96e3-00226bbeba55

[ System Events ]
Error - 4/27/2010 11:32:06 PM | Computer Name = bebop | Source = Service Control Manager | ID = 7016
Description = The NVIDIA Stereoscopic 3D Driver Service service has reported an
invalid current state 0.

Error - 4/28/2010 5:24:36 PM | Computer Name = bebop | Source = Service Control Manager | ID = 7000
Description = The DgiVecp service failed to start due to the following error: %%20

Error - 4/28/2010 5:24:37 PM | Computer Name = bebop | Source = Service Control Manager | ID = 7000
Description = The PDIHWCTL service failed to start due to the following error: %%2

Error - 4/28/2010 5:31:47 PM | Computer Name = bebop | Source = Service Control Manager | ID = 7016
Description = The NVIDIA Stereoscopic 3D Driver Service service has reported an
invalid current state 0.

Error - 4/28/2010 5:33:17 PM | Computer Name = bebop | Source = Service Control Manager | ID = 7000
Description = The DgiVecp service failed to start due to the following error: %%20

Error - 4/28/2010 5:33:19 PM | Computer Name = bebop | Source = Service Control Manager | ID = 7000
Description = The PDIHWCTL service failed to start due to the following error: %%2

Error - 4/28/2010 5:48:13 PM | Computer Name = bebop | Source = Service Control Manager | ID = 7016
Description = The NVIDIA Stereoscopic 3D Driver Service service has reported an
invalid current state 0.

Error - 4/28/2010 5:49:30 PM | Computer Name = bebop | Source = Service Control Manager | ID = 7000
Description = The DgiVecp service failed to start due to the following error: %%20

Error - 4/28/2010 5:49:32 PM | Computer Name = bebop | Source = Service Control Manager | ID = 7000
Description = The PDIHWCTL service failed to start due to the following error: %%2

Error - 4/28/2010 6:40:28 PM | Computer Name = bebop | Source = Service Control Manager | ID = 7016
Description = The NVIDIA Stereoscopic 3D Driver Service service has reported an
invalid current state 0.


< End of report >

Attached Thumbnails

  • gmer_error.JPG
  • gmer_error2.JPG
  • gmer_finished.JPG

  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP