Possible malware virus computer very slow
#1
- Group: Member
- Posts: 9
- Joined: 09-December 09
Posted 03 September 2010 - 09:45 PM
#2
- Group: GeekU Moderator
- Posts: 55,570
- Joined: 31-May 06
Posted 04 September 2010 - 10:01 AM
Could you post the logs please with details of your problem
#3
- Group: Member
- Posts: 9
- Joined: 09-December 09
Posted 04 September 2010 - 02:01 PM
Extras.Txt (42.88K)
Number of downloads: 67
OTL.Txt (112.95K)
Number of downloads: 46Thanks for the quick response Essexboy, Problem: computer takes about 15 min to start up. Then it takes forever to go between web sites, and, when doing that, sometimes computer will say "computer not responding". Or, I have to restart the computer, start over. Also, going between documents, the same thing may happen, "computer not resonding",sometimes I wait 10 to 20 min for the document to come up, or I just restart the computer, start over...Here are the files..
OTL logfile created on: 8/31/2010 9:43:31 AM - Run 1
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Documents and Settings\Jim Rodrigues\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: enu | Date Format: M/d/yyyy
255.00 Mb Total Physical Memory | 29.00 Mb Available Physical Memory | 11.00% Memory free
690.00 Mb Paging File | 160.00 Mb Available in Paging File | 23.00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39.07 Gb Total Space | 5.58 Gb Free Space | 14.28% Space Free | Partition Type: NTFS
Drive D: | 39.07 Gb Total Space | 7.86 Gb Free Space | 20.12% Space Free | Partition Type: NTFS
Drive E: | 33.65 Gb Total Space | 33.55 Gb Free Space | 99.71% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: JIM
Current User Name: Jim Rodrigues
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Minimal
Quick Scan
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe (Brother Industries, Ltd.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Nuance Communications, Inc.)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
PRC - C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (Sony Corporation)
PRC - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe (Symantec Corporation)
PRC - C:\Program Files\Palm\HOTSYNC.EXE (Palm, Inc.)
PRC - C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
PRC - C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe (Roxio, Inc.)
PRC - C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe (Roxio, Inc.)
PRC - C:\Program Files\Microsoft Office\Office\OSA.EXE ()
========== Modules (SafeList) ==========
MOD - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll (RealPlayer)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\GdiPlus.dll (Microsoft Corporation)
MOD - C:\WINDOWS\SYSTEM32\msvcr71.dll (Microsoft Corporation)
MOD - C:\WINDOWS\SYSTEM32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\SYSTEM32\msvcp71.dll (Microsoft Corporation)
MOD - C:\Documents and Settings\Jim Rodrigues\Local Settings\Temp\IadHide5.dll (BackWeb)
========== Win32 Services (SafeList) ==========
SRV - (AppMgmt) -- C:\WINDOWS\System32\appmgmts.dll File not found
SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (LiveUpdate) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_0.EXE (Symantec Corporation)
SRV - (Automatic LiveUpdate Scheduler) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (Symantec Corporation)
SRV - (SymWSC) -- C:\Program Files\Common Files\Symantec Shared\Security Center\symwsc.exe (Symantec Corporation)
========== Driver Services (SafeList) ==========
DRV - (MRESP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS File not found
DRV - (MREMP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS File not found
DRV - (AvgTdiX) -- C:\WINDOWS\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgLdx86) -- C:\WINDOWS\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgMfx86) -- C:\WINDOWS\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (NuidFltr) -- C:\WINDOWS\SYSTEM32\DRIVERS\nuidfltr.sys (Microsoft Corporation)
DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (gameenum) -- C:\WINDOWS\SYSTEM32\DRIVERS\gameenum.sys (Microsoft Corporation)
DRV - (UsbDiag) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbbus.sys (LG Electronics Inc.)
DRV - (BrSerIf) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrSerIf.sys (Brother Industries Ltd.)
DRV - (nv) -- C:\WINDOWS\SYSTEM32\DRIVERS\nv4_mini.sys (NVIDIA Corporation)
DRV - (Cdralw2k) -- C:\WINDOWS\System32\drivers\cdralw2k.sys (Sonic Solutions)
DRV - (Cdr4_xp) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys (Sonic Solutions)
DRV - (BrUsbSer) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrScnUsb) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrScnUsb.sys (Brother Industries Ltd.)
DRV - (PalmUSBD) -- C:\WINDOWS\SYSTEM32\DRIVERS\PalmUSBD.sys (Palm, Inc.)
DRV - (P2k) -- C:\WINDOWS\SYSTEM32\DRIVERS\P2k.sys (Motorola Inc)
DRV - (cdrbsdrv) -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS (B.H.A Corporation)
DRV - (CDRPDACC) Quinnware CDDA Driver (by InfinaDyne) -- C:\Program Files\Quintessential Player\cdrpdacc.sys (Arrowkey)
DRV - (DVDVRRdr_xp) -- C:\WINDOWS\System32\drivers\DVDVRRdr_xp.sys (Roxio)
DRV - (WmHidLo) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmHidLo.sys (Logitech Inc.)
DRV - (WmFilter) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmFilter.sys (Logitech Inc.)
DRV - (WmBEnum) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmBEnum.sys (Logitech Inc.)
DRV - (WmVirHid) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmVirHid.sys (Logitech Inc.)
DRV - (WmXlCore) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmXlCore.sys (Logitech Inc.)
DRV - (es1371) Creative AudioPCI (ES1371,ES1373) (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\es1371mp.sys (Creative Technology Ltd.)
DRV - (papyjoy) -- C:\WINDOWS\system32\drivers\papyjoy.sys ()
DRV - (papycpu2) -- C:\WINDOWS\system32\drivers\papycpu2.sys ()
DRV - (cdrbsvsd) -- C:\WINDOWS\System32\drivers\cdrbsvsd.sys (B.H.A Co.,Ltd.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.harley-da...sp?locale=en_US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.msn.com"
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/07/20 09:11:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2009/11/30 16:09:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/03/17 15:48:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0\Extensions\\Components: C:\Program Files\Mozilla Firefox\Components [2010/03/17 15:47:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0\Extensions\\Plugins: C:\Program Files\Mozilla Firefox\Plugins [2010/06/02 16:28:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0.4\Extensions\\Components: C:\Program Files\Mozilla Firefox\Components [2010/03/17 15:47:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0.4\Extensions\\Plugins: C:\Program Files\Mozilla Firefox\Plugins [2010/06/02 16:28:09 | 000,000,000 | ---D | M]
[2004/11/29 14:50:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\Mozilla\Firefox\Profiles\ifb0y3fa.default\extensions
[2004/11/29 14:50:05 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Documents and Settings\Jim Rodrigues\Application Data\Mozilla\Firefox\Profiles\ifb0y3fa.default\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010/07/31 11:45:12 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/06/02 16:28:15 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/07/31 11:45:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2005/05/12 13:22:51 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions
[2005/05/12 13:22:51 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2005/05/11 13:28:00 | 000,094,208 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\BrandRes.dll
[2005/05/11 13:28:00 | 000,150,912 | ---- | M] (Full Circle Software, Inc.) -- C:\Program Files\Mozilla Firefox\components\fullsoft.dll
[2005/05/11 13:28:00 | 000,041,573 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jar50.dll
[2005/05/11 13:28:00 | 000,048,223 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jsd3250.dll
[2005/05/11 13:28:00 | 000,008,813 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\qfaservices.dll
[2005/05/11 13:28:00 | 000,159,335 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\xpinstal.dll
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2005/05/11 13:28:00 | 000,000,680 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.png
[2005/05/11 13:28:00 | 000,000,735 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.src
[2005/05/11 13:28:00 | 000,000,356 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.png
[2005/05/11 13:28:00 | 000,000,976 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.src
[2005/05/11 13:28:00 | 000,000,557 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dictionary.png
[2005/05/11 13:28:00 | 000,000,692 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dictionary.src
[2005/05/11 13:28:00 | 000,000,210 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.gif
[2005/05/11 13:28:00 | 000,001,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.src
[2005/05/11 13:28:00 | 000,001,076 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.gif
[2006/04/05 16:56:02 | 000,000,706 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.src
[2005/05/11 13:28:00 | 000,000,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.gif
[2005/05/11 13:28:00 | 000,001,098 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.src
O1 HOSTS File: ([2003/03/31 12:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - SITEguard - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [PPort11reminder] C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [RoxioAudioCentral] C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe (Roxio, Inc.)
O4 - HKLM..\Run: [RoxioEngineUtility] C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe (Roxio)
O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [SystemTray] C:\WINDOWS\System32\systray.exe (Microsoft Corporation)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [Start WingMan Profiler] File not found
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnceEx: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\KODAK Software Updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
O4 - Startup: C:\Documents and Settings\Jim Rodrigues\Start Menu\Programs\Startup\HotSync Manager.lnk = C:\Program Files\Palm\HOTSYNC.EXE (Palm, Inc.)
O4 - Startup: C:\Documents and Settings\Jim Rodrigues\Start Menu\Programs\Startup\Microsoft Find Fast.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE ()
O4 - Startup: C:\Documents and Settings\Jim Rodrigues\Start Menu\Programs\Startup\Office Startup.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE ()
O4 - Startup: C:\Documents and Settings\Jim Rodrigues\Start Menu\Programs\Startup\Picture Motion Browser Media Check Tool.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (Sony Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} http://v4.windowsupd...38136.914212963 (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\SYSTEM\dajava.cab (Reg Error: Key error.)
O16 - DPF: Internet Explorer Classes for Java file://C:\WINDOWS\SYSTEM\iejava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.238.64.12 68.238.128.12
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop WallPaper: C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/02/19 12:30:29 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - C:\WINDOWS\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: LanmanServer - File not found
NetSvcs: LanmanWorkstation - File not found
NetSvcs: Messenger - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: Ip6FwHlp - File not found
Drivers32: msacm.iac2 - C:\WINDOWS\SYSTEM32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\SYSTEM32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\WINDOWS\System32\LHACM.ACM (Microsoft Corporation)
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: VIDC.IV50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.VDOM - vdowave.drv File not found
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16902109354000384)
========== Files/Folders - Created Within 90 Days ==========
[2010/08/31 09:30:33 | 001,154,631 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/30 13:54:47 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 11:33:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jim Rodrigues\Desktop\8-30-2010
[2010/08/30 11:31:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jim Rodrigues\Desktop\ERUNT
[2010/08/30 11:00:20 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
[2010/07/15 14:55:04 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2006/10/22 13:22:00 | 000,208,896 | ---- | C] (NVIDIA Corporation) -- C:\Program Files\nvudisp.exe
[2005/10/16 16:44:05 | 005,581,144 | ---- | C] (SmartSoft ) -- C:\Program Files\smart-audio-converter-setup.exe
========== Files - Modified Within 90 Days ==========
[2010/08/31 09:47:02 | 000,000,366 | ---- | M] () -- C:\WINDOWS\tasks\Symantec NetDetect.job
[2010/08/31 09:41:42 | 064,128,344 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/08/31 09:30:41 | 001,154,631 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/31 09:19:06 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/08/31 09:17:25 | 000,896,177 | ---- | M] () -- C:\logfile
[2010/08/31 09:15:09 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/08/31 09:10:02 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Uninstall Expiration Reminder.job
[2010/08/31 09:07:24 | 000,013,746 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/08/31 09:06:34 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/08/31 09:04:45 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/08/31 09:04:44 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-448539723-1425521274-839522115-1004.job
[2010/08/31 09:04:29 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/08/31 09:04:19 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/08/31 09:04:16 | 267,968,512 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/30 13:54:49 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 12:23:04 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/30 11:34:47 | 000,000,465 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\NTREGOPT.lnk
[2010/08/30 11:34:47 | 000,000,446 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\ERUNT.lnk
[2010/08/30 11:06:03 | 014,942,208 | -H-- | M] () -- C:\Documents and Settings\Jim Rodrigues\NTUSER.DAT
[2010/08/30 11:06:03 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Jim Rodrigues\ntuser.ini
[2010/08/30 11:00:21 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
[2010/08/30 10:55:32 | 000,003,082 | ---- | M] () -- C:\WINDOWS\System32\affv11300p1now.sys
[2010/08/30 10:54:48 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-1425521274-839522115-1004.job
[2010/08/19 19:52:55 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Palm Desktop.lnk
[2010/08/19 19:52:17 | 000,000,494 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to log.lnk
[2010/08/19 17:42:29 | 000,000,452 | ---- | M] () -- C:\WINDOWS\tasks\EasyShare Registration Task.job
[2010/08/13 09:55:36 | 000,118,152 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/13 09:45:44 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/08/13 09:42:52 | 000,492,378 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/08/13 09:42:52 | 000,434,838 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/08/13 09:42:52 | 000,068,828 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/08/04 19:00:00 | 000,000,502 | ---- | M] () -- C:\WINDOWS\tasks\Tune-up Application Start.job
[2010/07/28 11:10:05 | 000,039,936 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/07/15 14:55:32 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010/07/15 14:55:04 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/07/15 14:47:22 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010/06/28 21:52:08 | 002,185,544 | -H-- | M] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\IconCache.db
========== Files Created - No Company Name ==========
[2010/08/30 12:22:57 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/30 11:31:57 | 000,000,465 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\NTREGOPT.lnk
[2010/08/30 11:31:57 | 000,000,446 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\ERUNT.lnk
[2010/08/19 19:52:55 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Palm Desktop.lnk
[2010/08/19 19:52:17 | 000,000,494 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to log.lnk
[2009/03/10 16:33:44 | 000,000,242 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini
[2009/03/10 16:33:44 | 000,000,093 | ---- | C] () -- C:\WINDOWS\brpcfx.ini
[2009/03/10 16:33:08 | 000,000,419 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2009/03/10 16:33:08 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2009/03/10 16:15:04 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\BrMuSNMP.dll
[2009/03/10 16:15:03 | 000,000,086 | ---- | C] () -- C:\WINDOWS\Brfaxrx.ini
[2009/03/10 16:11:39 | 000,031,567 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2007/12/31 20:41:30 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/12/20 10:14:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2006/10/31 13:07:48 | 000,031,223 | ---- | C] () -- C:\Program Files\nv4_disp.cat
[2006/10/22 13:22:00 | 005,133,510 | ---- | C] () -- C:\Program Files\NvCpl.dl_
[2006/10/22 13:22:00 | 004,885,354 | ---- | C] () -- C:\Program Files\data1.cab
[2006/10/22 13:22:00 | 004,823,557 | ---- | C] () -- C:\Program Files\nvDispS.dl_
[2006/10/22 13:22:00 | 003,139,676 | ---- | C] () -- C:\Program Files\nvDispSR.dl_
[2006/10/22 13:22:00 | 002,859,776 | ---- | C] () -- C:\Program Files\nvoglnt.dl_
[2006/10/22 13:22:00 | 002,539,985 | ---- | C] () -- C:\Program Files\nvViTvS.dl_
[2006/10/22 13:22:00 | 002,485,711 | ---- | C] () -- C:\Program Files\nv4_disp.dl_
[2006/10/22 13:22:00 | 002,208,186 | ---- | C] () -- C:\Program Files\nvViTvSR.dl_
[2006/10/22 13:22:00 | 002,167,877 | ---- | C] () -- C:\Program Files\nv4_mini.sy_
[2006/10/22 13:22:00 | 002,051,692 | ---- | C] () -- C:\Program Files\nvGameS.dl_
[2006/10/22 13:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/10/22 13:22:00 | 001,621,828 | ---- | C] () -- C:\Program Files\nvMoblSR.dl_
[2006/10/22 13:22:00 | 001,096,583 | ---- | C] () -- C:\Program Files\nvGameSR.dl_
[2006/10/22 13:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/10/22 13:22:00 | 000,886,722 | ---- | C] () -- C:\Program Files\nvwss.dl_
[2006/10/22 13:22:00 | 000,862,685 | ---- | C] () -- C:\Program Files\nvwdmcpl.dl_
[2006/10/22 13:22:00 | 000,751,259 | ---- | C] () -- C:\Program Files\nvwssr.dl_
[2006/10/22 13:22:00 | 000,667,613 | ---- | C] () -- C:\Program Files\nwiz.ex_
[2006/10/22 13:22:00 | 000,652,962 | ---- | C] () -- C:\Program Files\nview.dl_
[2006/10/22 13:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/10/22 13:22:00 | 000,574,838 | ---- | C] () -- C:\Program Files\nvMoblS.dl_
[2006/10/22 13:22:00 | 000,468,519 | ---- | C] () -- C:\Program Files\nvdspsch.ex_
[2006/10/22 13:22:00 | 000,459,544 | ---- | C] () -- C:\Program Files\engine32.cab
[2006/10/22 13:22:00 | 000,435,969 | ---- | C] () -- C:\Program Files\setup.ibt
[2006/10/22 13:22:00 | 000,431,959 | ---- | C] () -- C:\Program Files\nvcplui.ex_
[2006/10/22 13:22:00 | 000,336,370 | ---- | C] () -- C:\Program Files\nvwimg.dl_
[2006/10/22 13:22:00 | 000,321,411 | ---- | C] () -- C:\Program Files\nvcpluir.dl_
[2006/10/22 13:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/10/22 13:22:00 | 000,242,577 | ---- | C] () -- C:\Program Files\setup.inx
[2006/10/22 13:22:00 | 000,216,623 | ---- | C] () -- C:\Program Files\keystone.ex_
[2006/10/22 13:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006/10/22 13:22:00 | 000,204,593 | ---- | C] () -- C:\Program Files\nvappbar.ex_
[2006/10/22 13:22:00 | 000,199,911 | ---- | C] () -- C:\Program Files\nvshell.dl_
[2006/10/22 13:22:00 | 000,182,371 | ---- | C] () -- C:\Program Files\nvdsp.chm
[2006/10/22 13:22:00 | 000,176,756 | ---- | C] () -- C:\Program Files\setup.bmp
[2006/10/22 13:22:00 | 000,169,728 | ---- | C] () -- C:\Program Files\nvMccsSR.dl_
[2006/10/22 13:22:00 | 000,164,086 | ---- | C] () -- C:\Program Files\nvmccs.dl_
[2006/10/22 13:22:00 | 000,155,855 | ---- | C] () -- C:\Program Files\nvnt4cpl.dl_
[2006/10/22 13:22:00 | 000,154,401 | ---- | C] () -- C:\Program Files\NVCPL.HL_
[2006/10/22 13:22:00 | 000,153,971 | ---- | C] () -- C:\Program Files\nvexpbar.dl_
[2006/10/22 13:22:00 | 000,153,965 | ---- | C] () -- C:\Program Files\nvhwvid.dl_
[2006/10/22 13:22:00 | 000,104,248 | ---- | C] () -- C:\Program Files\nvcpl.chm
[2006/10/22 13:22:00 | 000,103,617 | ---- | C] () -- C:\Program Files\nvMccsS.dl_
[2006/10/22 13:22:00 | 000,099,664 | ---- | C] () -- C:\Program Files\nv3d.chm
[2006/10/22 13:22:00 | 000,097,305 | ---- | C] () -- C:\Program Files\nvapi.dl_
[2006/10/22 13:22:00 | 000,088,224 | ---- | C] () -- C:\Program Files\nvsvc32.ex_
[2006/10/22 13:22:00 | 000,086,259 | ---- | C] () -- C:\Program Files\NvColor.ex_
[2006/10/22 13:22:00 | 000,080,697 | ---- | C] () -- C:\Program Files\NVEPClnt.ex_
[2006/10/22 13:22:00 | 000,068,593 | ---- | C] () -- C:\Program Files\setup.skin
[2006/10/22 13:22:00 | 000,067,085 | ---- | C] () -- C:\Program Files\modes.txt
[2006/10/22 13:22:00 | 000,054,878 | ---- | C] () -- C:\Program Files\nvmob.chm
[2006/10/22 13:22:00 | 000,052,430 | ---- | C] () -- C:\Program Files\nv4_disp.inf
[2006/10/22 13:22:00 | 000,048,481 | ---- | C] () -- C:\Program Files\nvwddi.dl_
[2006/10/22 13:22:00 | 000,044,126 | ---- | C] () -- C:\Program Files\NvMCTray.dl_
[2006/10/22 13:22:00 | 000,037,427 | ---- | C] () -- C:\Program Files\nvcpl.cp_
[2006/10/22 13:22:00 | 000,037,359 | ---- | C] () -- C:\Program Files\nvwcplen.hl_
[2006/10/22 13:22:00 | 000,035,229 | ---- | C] () -- C:\Program Files\nvtuicpl.cp_
[2006/10/22 13:22:00 | 000,029,080 | ---- | C] () -- C:\Program Files\data1.hdr
[2006/10/22 13:22:00 | 000,023,552 | ---- | C] () -- C:\Program Files\nvcod.dl_
[2006/10/22 13:22:00 | 000,020,320 | ---- | C] () -- C:\Program Files\NvApps.xm_
[2006/10/22 13:22:00 | 000,017,056 | ---- | C] () -- C:\Program Files\NVDisp.nvu
[2006/10/22 13:22:00 | 000,010,405 | ---- | C] () -- C:\Program Files\NvwsApps.xm_
[2006/10/22 13:22:00 | 000,010,222 | ---- | C] () -- C:\Program Files\default.tv_
[2006/10/22 13:22:00 | 000,009,111 | ---- | C] () -- C:\Program Files\nvmccsrs.dl_
[2006/10/22 13:22:00 | 000,006,144 | ---- | C] () -- C:\Program Files\Finance.tv_
[2006/10/22 13:22:00 | 000,006,101 | ---- | C] () -- C:\Program Files\Advanced.tv_
[2006/10/22 13:22:00 | 000,005,857 | ---- | C] () -- C:\Program Files\DCC.tv_
[2006/10/22 13:22:00 | 000,005,661 | ---- | C] () -- C:\Program Files\CAD.tv_
[2006/10/22 13:22:00 | 000,000,862 | ---- | C] () -- C:\Program Files\setup.ini
[2006/10/22 13:22:00 | 000,000,512 | ---- | C] () -- C:\Program Files\data2.cab
[2006/10/22 13:22:00 | 000,000,510 | ---- | C] () -- C:\Program Files\layout.bin
[2006/10/22 13:22:00 | 000,000,431 | ---- | C] () -- C:\Program Files\setup.iss
[2006/10/10 17:24:37 | 032,923,352 | ---- | C] () -- C:\Program Files\avg75f_425a814.exe
[2006/08/31 16:06:21 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2006/07/21 21:56:05 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\imageCache.db
[2006/02/19 12:40:26 | 000,001,388 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\ViewerApp.dat
[2006/02/19 12:25:36 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2005/10/16 15:35:20 | 000,000,236 | ---- | C] () -- C:\WINDOWS\cdgrabber.ini
[2005/10/16 14:29:08 | 000,000,370 | ---- | C] () -- C:\WINDOWS\CDToMP3WAVMaker.ini
[2005/10/16 14:21:45 | 000,003,082 | ---- | C] () -- C:\WINDOWS\System32\affv11300p1now.sys
[2005/02/13 19:19:02 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu2.sys
[2005/02/13 19:19:01 | 000,001,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys
[2005/02/13 19:17:13 | 000,000,195 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2004/11/28 19:29:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QUICKI~1.INI
[2004/11/07 13:08:57 | 000,007,812 | ---- | C] () -- C:\WINDOWS\System32\visorusb.dll
[2004/09/19 18:03:19 | 000,000,214 | ---- | C] () -- C:\WINDOWS\raccalbk.ini
[2004/09/17 18:37:42 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll
[2004/07/03 15:42:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2004/07/03 15:37:07 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\CNMVS56.DLL
[2004/06/27 11:32:32 | 000,044,402 | ---- | C] () -- C:\WINDOWS\cdPlayer.ini
[2004/06/06 11:40:28 | 000,039,936 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/05/31 14:34:21 | 000,000,477 | ---- | C] () -- C:\WINDOWS\VTruck6.ini
[2004/05/31 14:32:36 | 000,000,419 | ---- | C] () -- C:\WINDOWS\VTruck5.ini
[2004/05/31 14:29:21 | 000,000,370 | ---- | C] () -- C:\WINDOWS\VTruck4.ini
[2004/05/31 14:09:57 | 000,000,390 | ---- | C] () -- C:\WINDOWS\VTruck3.ini
[2004/05/31 14:02:48 | 000,000,394 | ---- | C] () -- C:\WINDOWS\VTruck2.ini
[2004/05/31 13:58:33 | 000,000,513 | ---- | C] () -- C:\WINDOWS\VTruck1.ini
[2004/05/30 12:49:30 | 000,000,160 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004/05/30 12:49:30 | 000,000,022 | ---- | C] () -- C:\WINDOWS\exchng.ini
[2004/05/30 09:46:08 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004/05/29 21:02:20 | 000,012,327 | ---- | C] () -- C:\WINDOWS\IOS.INI
[2004/05/29 21:02:20 | 000,007,885 | ---- | C] () -- C:\WINDOWS\NETDET.INI
[2004/05/29 21:02:20 | 000,005,068 | ---- | C] () -- C:\WINDOWS\DELETEFI.INI
[2004/05/29 21:02:20 | 000,003,598 | ---- | C] () -- C:\WINDOWS\HTMLHELP.INI
[2004/05/29 21:02:20 | 000,000,865 | ---- | C] () -- C:\WINDOWS\DOSREP.INI
[2004/05/29 21:02:20 | 000,000,787 | ---- | C] () -- C:\WINDOWS\SCANREG.INI
[2004/05/29 21:02:20 | 000,000,225 | ---- | C] () -- C:\WINDOWS\TELEPHON.INI
[2004/05/29 21:02:20 | 000,000,120 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2004/05/29 21:02:20 | 000,000,060 | ---- | C] () -- C:\WINDOWS\POWERPNT.INI
[2004/05/29 21:02:20 | 000,000,054 | ---- | C] () -- C:\WINDOWS\WAVEMIX.INI
[2004/05/29 21:02:20 | 000,000,028 | ---- | C] () -- C:\WINDOWS\QTW.INI
[2004/05/29 21:02:20 | 000,000,026 | ---- | C] () -- C:\WINDOWS\MSOFFICE.INI
[2004/05/29 21:02:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\progman.ini
[2004/05/29 17:09:34 | 000,011,079 | -H-- | C] () -- C:\Program Files\folder.htt
[2004/05/29 17:03:38 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/08/07 14:01:52 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2003/07/28 14:19:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2003/07/28 14:19:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[1999/04/23 22:22:00 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\MEMBG.DLL
[1999/04/23 22:22:00 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ICMFILTER.DLL
[1996/11/21 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[1996/11/21 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\DOCOBJ.DLL
[1996/11/21 00:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\HLINKPRX.DLL
========== LOP Check ==========
[2009/09/29 17:00:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2009/11/30 16:09:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2009/03/10 16:11:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2009/02/25 18:18:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SITEguard
[2009/02/26 14:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\STOPzilla!
[2009/12/18 18:37:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2004/06/12 21:39:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\InterTrust
[2004/11/26 23:18:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\Leadertech
[2010/08/19 17:42:29 | 000,000,452 | ---- | M] () -- C:\WINDOWS\Tasks\EasyShare Registration Task.job
[2010/08/04 19:00:00 | 000,000,502 | ---- | M] () -- C:\WINDOWS\Tasks\Tune-up Application Start.job
[2010/08/31 09:10:02 | 000,000,258 | ---- | M] () -- C:\WINDOWS\Tasks\Uninstall Expiration Reminder.job
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2006/02/19 12:30:29 | 000,000,050 | ---- | M] () -- C:\AUTOEXEC.BAT
[2004/09/04 12:39:47 | 000,000,221 | RHS- | M] () -- C:\boot.ini
[2004/05/29 20:49:44 | 000,000,512 | -HS- | M] () -- C:\BOOTSECT.DOS
[2004/05/29 17:10:36 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2007/11/05 21:42:17 | 000,004,717 | -H-- | M] () -- C:\ffastun.ffa
[2007/11/05 21:42:17 | 000,548,864 | -H-- | M] () -- C:\ffastun.ffl
[2007/11/05 21:42:17 | 000,229,376 | -H-- | M] () -- C:\ffastun.ffo
[2007/11/05 21:42:17 | 001,585,152 | -H-- | M] () -- C:\ffastun0.ffx
[2007/11/06 19:41:52 | 000,548,864 | ---- | M] () -- C:\ffastunT.ffl
[2010/08/31 09:04:16 | 267,968,512 | -HS- | M] () -- C:\hiberfil.sys
[1999/04/23 22:22:00 | 000,222,390 | RHS- | M] () -- C:\IO.SYS
[2010/08/31 09:17:25 | 000,896,177 | ---- | M] () -- C:\logfile
[2006/07/04 10:26:33 | 000,009,466 | ---- | M] () -- C:\move_after.xml
[2006/07/04 10:26:33 | 000,009,466 | ---- | M] () -- C:\move_before.xml
[2004/05/29 17:07:06 | 000,001,685 | RHS- | M] () -- C:\MSDOS.SYS
[2004/09/04 12:28:08 | 000,047,564 | RHS- | M] () -- C:\ntdetect.com
[2008/10/12 17:56:46 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/08/31 09:43:05 | 479,105,024 | -HS- | M] () -- C:\pagefile.sys
[2004/05/30 12:03:58 | 625,000,000 | ---- | M] () -- C:\testfile.txt
< %systemroot%\Fonts\*.com >
[2006/04/18 16:39:28 | 000,026,040 | ---- | M] () -- C:\WINDOWS\FONTS\GlobalMonospace.CompositeFont
[2006/06/29 15:53:56 | 000,026,489 | ---- | M] () -- C:\WINDOWS\FONTS\GlobalSansSerif.CompositeFont
[2006/04/18 16:39:28 | 000,029,779 | ---- | M] () -- C:\WINDOWS\FONTS\GlobalSerif.CompositeFont
[2006/06/29 15:58:52 | 000,030,808 | ---- | M] () -- C:\WINDOWS\FONTS\GlobalUserInterface.CompositeFont
< %systemroot%\Fonts\*.dll >
< %systemroot%\Fonts\*.ini >
[2004/05/29 21:01:38 | 000,000,067 | -HS- | M] () -- C:\WINDOWS\FONTS\desktop.ini
< %systemroot%\Fonts\*.ini2 >
< %systemroot%\Fonts\*.exe >
< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
[2003/07/29 22:00:00 | 000,016,384 | ---- | M] (CANON INC.) -- C:\WINDOWS\SYSTEM32\spool\prtprocs\w32x86\CNMPD56.DLL
[2003/07/29 22:00:00 | 000,048,128 | ---- | M] (CANON INC.) -- C:\WINDOWS\SYSTEM32\spool\prtprocs\w32x86\CNMPP56.DLL
[2008/07/06 05:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SYSTEM32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2008/07/06 03:50:03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SYSTEM32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
< %systemroot%\REPAIR\*.bak1 >
< %systemroot%\REPAIR\*.ini >
< %systemroot%\system32\*.jpg >
< %systemroot%\*.jpg >
< %systemroot%\*.png >
< %systemroot%\*.scr >
[1999/04/23 22:22:00 | 000,091,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Channel Screen Saver.SCR
[2006/08/31 16:07:23 | 000,471,040 | ---- | M] (ScreenTime Media) -- C:\WINDOWS\H-D Cycle Insurance Screen Saver.scr
< %systemroot%\*._sy >
< %APPDATA%\Adobe\Update\*.* >
< %ALLUSERSPROFILE%\Favorites\*.* >
< %APPDATA%\Microsoft\*.* >
< %PROGRAMFILES%\*.* >
[2006/10/22 13:22:00 | 000,006,101 | ---- | M] () -- C:\Program Files\Advanced.tv_
[2006/10/10 17:24:40 | 032,923,352 | ---- | M] () -- C:\Program Files\avg75f_425a814.exe
[2006/10/22 13:22:00 | 000,005,661 | ---- | M] () -- C:\Program Files\CAD.tv_
[2006/10/22 13:22:00 | 004,885,354 | ---- | M] () -- C:\Program Files\data1.cab
[2006/10/22 13:22:00 | 000,029,080 | ---- | M] () -- C:\Program Files\data1.hdr
[2006/10/22 13:22:00 | 000,000,512 | ---- | M] () -- C:\Program Files\data2.cab
[2006/10/22 13:22:00 | 000,005,857 | ---- | M] () -- C:\Program Files\DCC.tv_
[2006/10/22 13:22:00 | 000,010,222 | ---- | M] () -- C:\Program Files\default.tv_
[2004/05/29 17:09:36 | 000,000,266 | -HS- | M] () -- C:\Program Files\desktop.ini
[2006/10/22 13:22:00 | 000,459,544 | ---- | M] () -- C:\Program Files\engine32.cab
[2006/10/22 13:22:00 | 000,006,144 | ---- | M] () -- C:\Program Files\Finance.tv_
[2004/05/29 17:09:36 | 000,011,079 | -H-- | M] () -- C:\Program Files\folder.htt
[2006/10/22 13:22:00 | 000,216,623 | ---- | M] () -- C:\Program Files\keystone.ex_
[2006/10/22 13:22:00 | 000,000,510 | ---- | M] () -- C:\Program Files\layout.bin
[2006/10/22 13:22:00 | 000,067,085 | ---- | M] () -- C:\Program Files\modes.txt
[2006/10/22 13:22:00 | 000,099,664 | ---- | M] () -- C:\Program Files\nv3d.chm
[2006/10/31 13:07:48 | 000,031,223 | ---- | M] () -- C:\Program Files\nv4_disp.cat
[2006/10/22 13:22:00 | 002,485,711 | ---- | M] () -- C:\Program Files\nv4_disp.dl_
[2006/10/22 13:22:00 | 000,052,430 | ---- | M] () -- C:\Program Files\nv4_disp.inf
[2006/10/22 13:22:00 | 002,167,877 | ---- | M] () -- C:\Program Files\nv4_mini.sy_
[2006/10/22 13:22:00 | 000,097,305 | ---- | M] () -- C:\Program Files\nvapi.dl_
[2006/10/22 13:22:00 | 000,204,593 | ---- | M] () -- C:\Program Files\nvappbar.ex_
[2006/10/22 13:22:00 | 000,020,320 | ---- | M] () -- C:\Program Files\NvApps.xm_
[2006/10/22 13:22:00 | 000,023,552 | ---- | M] () -- C:\Program Files\nvcod.dl_
[2006/10/22 13:22:00 | 000,086,259 | ---- | M] () -- C:\Program Files\NvColor.ex_
[2006/10/22 13:22:00 | 000,104,248 | ---- | M] () -- C:\Program Files\nvcpl.chm
[2006/10/22 13:22:00 | 000,037,427 | ---- | M] () -- C:\Program Files\nvcpl.cp_
[2006/10/22 13:22:00 | 005,133,510 | ---- | M] () -- C:\Program Files\NvCpl.dl_
[2006/10/22 13:22:00 | 000,154,401 | ---- | M] () -- C:\Program Files\NVCPL.HL_
[2006/10/22 13:22:00 | 000,431,959 | ---- | M] () -- C:\Program Files\nvcplui.ex_
[2006/10/22 13:22:00 | 000,321,411 | ---- | M] () -- C:\Program Files\nvcpluir.dl_
[2006/10/22 13:22:00 | 000,017,056 | ---- | M] () -- C:\Program Files\NVDisp.nvu
[2006/10/22 13:22:00 | 004,823,557 | ---- | M] () -- C:\Program Files\nvDispS.dl_
[2006/10/22 13:22:00 | 003,139,676 | ---- | M] () -- C:\Program Files\nvDispSR.dl_
[2006/10/22 13:22:00 | 000,182,371 | ---- | M] () -- C:\Program Files\nvdsp.chm
[2006/10/22 13:22:00 | 000,468,519 | ---- | M] () -- C:\Program Files\nvdspsch.ex_
[2006/10/22 13:22:00 | 000,080,697 | ---- | M] () -- C:\Program Files\NVEPClnt.ex_
[2006/10/22 13:22:00 | 000,153,971 | ---- | M] () -- C:\Program Files\nvexpbar.dl_
[2006/10/22 13:22:00 | 002,051,692 | ---- | M] () -- C:\Program Files\nvGameS.dl_
[2006/10/22 13:22:00 | 001,096,583 | ---- | M] () -- C:\Program Files\nvGameSR.dl_
[2006/10/22 13:22:00 | 000,153,965 | ---- | M] () -- C:\Program Files\nvhwvid.dl_
[2006/10/22 13:22:00 | 000,652,962 | ---- | M] () -- C:\Program Files\nview.dl_
[2006/10/22 13:22:00 | 000,164,086 | ---- | M] () -- C:\Program Files\nvmccs.dl_
[2006/10/22 13:22:00 | 000,009,111 | ---- | M] () -- C:\Program Files\nvmccsrs.dl_
[2006/10/22 13:22:00 | 000,103,617 | ---- | M] () -- C:\Program Files\nvMccsS.dl_
[2006/10/22 13:22:00 | 000,169,728 | ---- | M] () -- C:\Program Files\nvMccsSR.dl_
[2006/10/22 13:22:00 | 000,044,126 | ---- | M] () -- C:\Program Files\NvMCTray.dl_
[2006/10/22 13:22:00 | 000,054,878 | ---- | M] () -- C:\Program Files\nvmob.chm
[2006/10/22 13:22:00 | 000,574,838 | ---- | M] () -- C:\Program Files\nvMoblS.dl_
[2006/10/22 13:22:00 | 001,621,828 | ---- | M] () -- C:\Program Files\nvMoblSR.dl_
[2006/10/22 13:22:00 | 000,155,855 | ---- | M] () -- C:\Program Files\nvnt4cpl.dl_
[2006/10/22 13:22:00 | 002,859,776 | ---- | M] () -- C:\Program Files\nvoglnt.dl_
[2006/10/22 13:22:00 | 000,199,911 | ---- | M] () -- C:\Program Files\nvshell.dl_
[2006/10/22 13:22:00 | 000,088,224 | ---- | M] () -- C:\Program Files\nvsvc32.ex_
[2006/10/22 13:22:00 | 000,035,229 | ---- | M] () -- C:\Program Files\nvtuicpl.cp_
[2006/10/22 13:22:00 | 000,208,896 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\nvudisp.exe
[2006/10/22 13:22:00 | 002,539,985 | ---- | M] () -- C:\Program Files\nvViTvS.dl_
[2006/10/22 13:22:00 | 002,208,186 | ---- | M] () -- C:\Program Files\nvViTvSR.dl_
[2006/10/22 13:22:00 | 000,037,359 | ---- | M] () -- C:\Program Files\nvwcplen.hl_
[2006/10/22 13:22:00 | 000,048,481 | ---- | M] () -- C:\Program Files\nvwddi.dl_
[2006/10/22 13:22:00 | 000,862,685 | ---- | M] () -- C:\Program Files\nvwdmcpl.dl_
[2006/10/22 13:22:00 | 000,336,370 | ---- | M] () -- C:\Program Files\nvwimg.dl_
[2006/10/22 13:22:00 | 000,010,405 | ---- | M] () -- C:\Program Files\NvwsApps.xm_
[2006/10/22 13:22:00 | 000,886,722 | ---- | M] () -- C:\Program Files\nvwss.dl_
[2006/10/22 13:22:00 | 000,751,259 | ---- | M] () -- C:\Program Files\nvwssr.dl_
[2006/10/22 13:22:00 | 000,667,613 | ---- | M] () -- C:\Program Files\nwiz.ex_
[2006/10/22 13:22:00 | 000,176,756 | ---- | M] () -- C:\Program Files\setup.bmp
[2006/10/22 13:22:00 | 000,435,969 | ---- | M] () -- C:\Program Files\setup.ibt
[2006/10/22 13:22:00 | 000,000,862 | ---- | M] () -- C:\Program Files\setup.ini
[2006/10/22 13:22:00 | 000,242,577 | ---- | M] () -- C:\Program Files\setup.inx
[2006/10/22 13:22:00 | 000,000,431 | ---- | M] () -- C:\Program Files\setup.iss
[2006/10/22 13:22:00 | 000,068,593 | ---- | M] () -- C:\Program Files\setup.skin
[2005/10/16 16:44:45 | 005,581,144 | ---- | M] (SmartSoft ) -- C:\Program Files\smart-audio-converter-setup.exe
< %APPDATA%\Update\*.* >
< %systemroot%\*. /mp /s >
< %systemroot%\System32\config\*.sav >
[2004/05/29 20:53:44 | 000,094,208 | ---- | M] () -- C:\WINDOWS\SYSTEM32\config\default.sav
[2004/05/29 20:53:44 | 000,602,112 | ---- | M] () -- C:\WINDOWS\SYSTEM32\config\software.sav
[2004/05/29 20:53:44 | 000,389,120 | ---- | M] () -- C:\WINDOWS\SYSTEM32\config\system.sav
< %PROGRAMFILES%\bak. /s >
< %systemroot%\system32\bak. /s >
< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >
[2008/10/12 18:06:43 | 000,000,272 | -HS- | M] () -- C:\Documents and Settings\All Users\Start Menu\desktop.ini
< %systemroot%\system32\config\systemprofile\*.dat /x >
< %systemroot%\*.config >
< %systemroot%\system32\*.db >
< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2008/10/12 18:26:39 | 000,000,177 | -HS- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\desktop.ini
[2004/05/29 21:10:40 | 000,000,083 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
< %USERPROFILE%\Desktop\*.exe >
[2009/04/28 14:02:32 | 005,639,091 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\cdtomp3wavmaker.exe
[2010/08/30 12:23:04 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/31 09:30:41 | 001,154,631 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/30 13:54:49 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 11:00:21 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
< %PROGRAMFILES%\Common Files\*.* >
< %systemroot%\*.src >
< %systemroot%\install\*.* >
< %systemroot%\system32\DLL\*.* >
< %systemroot%\system32\HelpFiles\*.* >
< %systemroot%\system32\rundll\*.* >
< %systemroot%\winn32\*.* >
< %systemroot%\Java\*.* >
< %systemroot%\system32\test\*.* >
< %systemroot%\system32\Rundll32\*.* >
< %systemroot%\AppPatch\Custom\*.* >
< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >
< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >
< %PROGRAMFILES%\Internet Explorer\*.tmp >
< %PROGRAMFILES%\Internet Explorer\*.dat >
< %USERPROFILE%\My Documents\*.exe >
< %USERPROFILE%\*.exe >
< %systemroot%\ADDINS\*.* >
< %systemroot%\assembly\*.bak2 >
< %systemroot%\Config\*.* >
< %systemroot%\REPAIR\*.bak2 >
< %systemroot%\SECURITY\Database\*.sdb /x >
< %systemroot%\SYSTEM\*.bak2 >
< %systemroot%\Web\*.bak2 >
< %systemroot%\Driver Cache\*.* >
< %PROGRAMFILES%\Mozilla Firefox\0*.exe >
< %ProgramFiles%\Microsoft Common\*.* >
< %ProgramFiles%\TinyProxy. >
< %USERPROFILE%\Favorites\*.url /x >
[2008/10/12 18:26:39 | 000,000,213 | -HS- | M] () -- C:\Documents and Settings\Jim Rodrigues\Favorites\desktop.ini
[2004/05/30 12:59:13 | 000,000,427 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Favorites\My Documents.lnk
< %systemroot%\system32\*.bk >
< %systemroot%\*.te >
< %systemroot%\system32\system32\*.* >
< %ALLUSERSPROFILE%\*.dat /x >
< %systemroot%\system32\drivers\*.rmv >
< dir /b "%systemroot%\system32\*.exe" | find /i " " /c >
< dir /b "%systemroot%\*.exe" | find /i " " /c >
CQ100 Uninstaller.exe
< %PROGRAMFILES%\Microsoft\*.* >
< %systemroot%\System32\Wbem\proquota.exe >
< %PROGRAMFILES%\Mozilla Firefox\*.dat >
< %USERPROFILE%\Cookies\*.txt /x >
[2010/08/31 09:18:16 | 000,409,600 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Cookies\index.dat
< %SystemRoot%\system32\fonts\*.* >
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-08-13 16:46:24
< End of report >
#4
- Group: Member
- Posts: 9
- Joined: 09-December 09
Posted 04 September 2010 - 02:16 PM
here are the files.....not sure if Im doing this right...this quick reply does not allow me to attach files....
#5
- Group: GeekU Moderator
- Posts: 55,570
- Joined: 31-May 06
Posted 04 September 2010 - 03:25 PM
The main cause of your problem is this 255.00 Mb Total Physical Memory | 29.00 Mb Available Physical Memory | 11.00% Memory free basically your system is running out of memory, it is not helped by still having some Norton services still running. So lets see what magic I can perform to ease the situation
FIRST
Download and run the Norton Removal tool
NEXT
Run OTL
THEN
Download Startup Control Panel here
Instal and you will find a startup icon in the control panel - run this
Note : if you notice that some programs no longer run, you can enable them again by running Startup Control Panel, selecting the entry and choosing Run Now.
If you are in doubt with something, don't hesitate to ask
AND FINALLY
Download and run Puran Disc Defragmenter
Once you have completed this could you then rerun a fresh OTL scan and post the log, also let me know if you have noticed any improvement
FIRST
Download and run the Norton Removal tool
NEXT
Run OTL
- Under the Custom Scans/Fixes box at the bottom, paste in the following
Quote
:OTL
[2010/08/30 10:55:32 | 000,003,082 | ---- | M] () -- C:\WINDOWS\System32\affv11300p1now.sys
:Files
ipconfig /flushdns /c
:Commands
[purity]
[resethosts]
[emptytemp]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[Reboot]
- Then click the Run Fix button at the top
- Let the program run unhindered, reboot the PC when it is done
- Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
THEN
Download Startup Control Panel here
Instal and you will find a startup icon in the control panel - run this
- In the HKLM tab, you may disable (be careful --> "disable") all the entries except your security software
- In the HKCU tab, you may disable all entries.
- In the StartUp tab, you may disable all entries.
Note : if you notice that some programs no longer run, you can enable them again by running Startup Control Panel, selecting the entry and choosing Run Now.
If you are in doubt with something, don't hesitate to ask
AND FINALLY
Download and run Puran Disc Defragmenter
Once you have completed this could you then rerun a fresh OTL scan and post the log, also let me know if you have noticed any improvement
#6
- Group: Member
- Posts: 9
- Joined: 09-December 09
Posted 05 September 2010 - 09:30 PM
Essexboy, yes, definite improvement, only got one "computer not responding" this session. It appears that this computer just might almost be back to norman....Here are the other files you have requested. i hope I did everything that you requested...
Got the OTL file copied, it appears that the other,09052010 124330 file doesn't want to be copied...
OTL2.Txt (73.38K)
Number of downloads: 35
OTL logfile created on: 9/5/2010 2:06:13 PM - Run 2
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Documents and Settings\Jim Rodrigues\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: enu | Date Format: M/d/yyyy
255.00 Mb Total Physical Memory | 83.00 Mb Available Physical Memory | 32.00% Memory free
732.00 Mb Paging File | 176.00 Mb Available in Paging File | 24.00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39.07 Gb Total Space | 7.83 Gb Free Space | 20.05% Space Free | Partition Type: NTFS
Drive D: | 39.07 Gb Total Space | 7.86 Gb Free Space | 20.12% Space Free | Partition Type: NTFS
Drive E: | 33.65 Gb Total Space | 33.55 Gb Free Space | 99.71% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: JIM
Current User Name: Jim Rodrigues
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe (Brother Industries, Ltd.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Nuance Communications, Inc.)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
PRC - C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (Sony Corporation)
PRC - C:\Program Files\Palm\HOTSYNC.EXE (Palm, Inc.)
PRC - C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
PRC - C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe (Roxio, Inc.)
PRC - C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe (Roxio, Inc.)
PRC - C:\Program Files\Microsoft Office\Office\OSA.EXE ()
========== Modules (SafeList) ==========
MOD - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll (RealPlayer)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\GdiPlus.dll (Microsoft Corporation)
MOD - C:\WINDOWS\SYSTEM32\msvcr71.dll (Microsoft Corporation)
MOD - C:\WINDOWS\SYSTEM32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\SYSTEM32\msvcp71.dll (Microsoft Corporation)
MOD - C:\Documents and Settings\Jim Rodrigues\Local Settings\Temp\IadHide5.dll (BackWeb)
========== Win32 Services (SafeList) ==========
SRV - (Automatic LiveUpdate Scheduler) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe File not found
SRV - (AppMgmt) -- C:\WINDOWS\System32\appmgmts.dll File not found
SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (PuranDefrag) -- C:\WINDOWS\System32\PuranDefragS.exe (Puran Software)
========== Driver Services (SafeList) ==========
DRV - (MRESP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS File not found
DRV - (MREMP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS File not found
DRV - (AvgTdiX) -- C:\WINDOWS\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgLdx86) -- C:\WINDOWS\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgMfx86) -- C:\WINDOWS\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (NuidFltr) -- C:\WINDOWS\SYSTEM32\DRIVERS\nuidfltr.sys (Microsoft Corporation)
DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (gameenum) -- C:\WINDOWS\SYSTEM32\DRIVERS\gameenum.sys (Microsoft Corporation)
DRV - (UsbDiag) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbbus.sys (LG Electronics Inc.)
DRV - (BrSerIf) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrSerIf.sys (Brother Industries Ltd.)
DRV - (nv) -- C:\WINDOWS\SYSTEM32\DRIVERS\nv4_mini.sys (NVIDIA Corporation)
DRV - (Cdralw2k) -- C:\WINDOWS\System32\drivers\cdralw2k.sys (Sonic Solutions)
DRV - (Cdr4_xp) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys (Sonic Solutions)
DRV - (BrUsbSer) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrScnUsb) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrScnUsb.sys (Brother Industries Ltd.)
DRV - (PalmUSBD) -- C:\WINDOWS\SYSTEM32\DRIVERS\PalmUSBD.sys (Palm, Inc.)
DRV - (P2k) -- C:\WINDOWS\SYSTEM32\DRIVERS\P2k.sys (Motorola Inc)
DRV - (cdrbsdrv) -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS (B.H.A Corporation)
DRV - (CDRPDACC) Quinnware CDDA Driver (by InfinaDyne) -- C:\Program Files\Quintessential Player\cdrpdacc.sys (Arrowkey)
DRV - (DVDVRRdr_xp) -- C:\WINDOWS\System32\drivers\DVDVRRdr_xp.sys (Roxio)
DRV - (WmHidLo) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmHidLo.sys (Logitech Inc.)
DRV - (WmFilter) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmFilter.sys (Logitech Inc.)
DRV - (WmBEnum) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmBEnum.sys (Logitech Inc.)
DRV - (WmVirHid) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmVirHid.sys (Logitech Inc.)
DRV - (WmXlCore) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmXlCore.sys (Logitech Inc.)
DRV - (es1371) Creative AudioPCI (ES1371,ES1373) (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\es1371mp.sys (Creative Technology Ltd.)
DRV - (papyjoy) -- C:\WINDOWS\system32\drivers\papyjoy.sys ()
DRV - (papycpu2) -- C:\WINDOWS\system32\drivers\papycpu2.sys ()
DRV - (cdrbsvsd) -- C:\WINDOWS\System32\drivers\cdrbsvsd.sys (B.H.A Co.,Ltd.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.harley-da...sp?locale=en_US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.msn.com"
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/07/20 09:11:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2009/11/30 16:09:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/03/17 15:48:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0\Extensions\\Components: C:\Program Files\Mozilla Firefox\Components [2010/03/17 15:47:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0\Extensions\\Plugins: C:\Program Files\Mozilla Firefox\Plugins [2010/06/02 16:28:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0.4\Extensions\\Components: C:\Program Files\Mozilla Firefox\Components [2010/03/17 15:47:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0.4\Extensions\\Plugins: C:\Program Files\Mozilla Firefox\Plugins [2010/06/02 16:28:09 | 000,000,000 | ---D | M]
[2004/11/29 14:50:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\Mozilla\Firefox\Profiles\ifb0y3fa.default\extensions
[2004/11/29 14:50:05 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Documents and Settings\Jim Rodrigues\Application Data\Mozilla\Firefox\Profiles\ifb0y3fa.default\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010/07/31 11:45:12 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/06/02 16:28:15 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/07/31 11:45:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2005/05/12 13:22:51 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions
[2005/05/12 13:22:51 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2005/05/11 13:28:00 | 000,094,208 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\BrandRes.dll
[2005/05/11 13:28:00 | 000,150,912 | ---- | M] (Full Circle Software, Inc.) -- C:\Program Files\Mozilla Firefox\components\fullsoft.dll
[2005/05/11 13:28:00 | 000,041,573 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jar50.dll
[2005/05/11 13:28:00 | 000,048,223 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jsd3250.dll
[2005/05/11 13:28:00 | 000,008,813 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\qfaservices.dll
[2005/05/11 13:28:00 | 000,159,335 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\xpinstal.dll
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2005/05/11 13:28:00 | 000,000,680 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.png
[2005/05/11 13:28:00 | 000,000,735 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.src
[2005/05/11 13:28:00 | 000,000,356 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.png
[2005/05/11 13:28:00 | 000,000,976 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.src
[2005/05/11 13:28:00 | 000,000,557 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dictionary.png
[2005/05/11 13:28:00 | 000,000,692 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dictionary.src
[2005/05/11 13:28:00 | 000,000,210 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.gif
[2005/05/11 13:28:00 | 000,001,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.src
[2005/05/11 13:28:00 | 000,001,076 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.gif
[2006/04/05 16:56:02 | 000,000,706 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.src
[2005/05/11 13:28:00 | 000,000,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.gif
[2005/05/11 13:28:00 | 000,001,098 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.src
O1 HOSTS File: ([2010/09/05 12:44:24 | 000,000,098 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - SITEguard - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\RunOnceEx: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\KODAK Software Updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} http://v4.windowsupd...38136.914212963 (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\SYSTEM\dajava.cab (Reg Error: Key error.)
O16 - DPF: Internet Explorer Classes for Java file://C:\WINDOWS\SYSTEM\iejava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.238.64.12 68.238.128.12
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop WallPaper: C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/02/19 12:30:29 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/09/05 13:28:54 | 001,110,016 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranFD.exe
[2010/09/05 13:28:54 | 000,229,376 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefragS.exe
[2010/09/05 13:28:54 | 000,221,184 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDC.exe
[2010/09/05 13:28:54 | 000,212,992 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefrag.dll
[2010/09/05 13:28:54 | 000,107,008 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefragBT.exe
[2010/09/05 13:28:53 | 000,000,000 | ---D | C] -- C:\Program Files\Puran Defrag
[2010/09/05 13:08:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010/09/05 12:43:14 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/08/31 09:30:33 | 001,154,631 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/30 13:54:47 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 11:33:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jim Rodrigues\Desktop\8-30-2010
[2010/08/30 11:31:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jim Rodrigues\Desktop\ERUNT
[2010/08/30 11:00:20 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
[2006/10/22 13:22:00 | 000,208,896 | ---- | C] (NVIDIA Corporation) -- C:\Program Files\nvudisp.exe
[2005/10/16 16:44:05 | 005,581,144 | ---- | C] (SmartSoft ) -- C:\Program Files\smart-audio-converter-setup.exe
========== Files - Modified Within 30 Days ==========
[2010/09/05 14:12:00 | 000,000,366 | ---- | M] () -- C:\WINDOWS\tasks\Symantec NetDetect.job
[2010/09/05 14:10:00 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Uninstall Expiration Reminder.job
[2010/09/05 13:28:57 | 000,000,680 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\Puran Defrag.lnk
[2010/09/05 13:14:02 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/09/05 13:02:03 | 000,904,429 | ---- | M] () -- C:\logfile
[2010/09/05 13:00:41 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-448539723-1425521274-839522115-1004.job
[2010/09/05 13:00:39 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-1425521274-839522115-1004.job
[2010/09/05 12:49:21 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/09/05 12:48:57 | 000,013,746 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/09/05 12:48:09 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/09/05 12:47:52 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/09/05 12:47:34 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/09/05 12:47:25 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/09/05 12:47:22 | 267,968,512 | -HS- | M] () -- C:\hiberfil.sys
[2010/09/05 12:45:57 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Jim Rodrigues\ntuser.ini
[2010/09/05 12:45:56 | 014,942,208 | -H-- | M] () -- C:\Documents and Settings\Jim Rodrigues\NTUSER.DAT
[2010/09/05 12:44:24 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2010/09/05 11:28:01 | 064,339,327 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/09/04 14:00:00 | 000,000,502 | ---- | M] () -- C:\WINDOWS\tasks\Tune-up Application Start.job
[2010/08/31 09:30:41 | 001,154,631 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/30 13:54:49 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 12:23:04 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/30 11:34:47 | 000,000,465 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\NTREGOPT.lnk
[2010/08/30 11:34:47 | 000,000,446 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\ERUNT.lnk
[2010/08/30 11:00:21 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
[2010/08/30 10:55:32 | 000,003,082 | ---- | M] () -- C:\WINDOWS\System32\affv11300p1now.sys
[2010/08/19 19:52:55 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Palm Desktop.lnk
[2010/08/19 19:52:17 | 000,000,494 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to log.lnk
[2010/08/19 17:42:29 | 000,000,452 | ---- | M] () -- C:\WINDOWS\tasks\EasyShare Registration Task.job
[2010/08/13 09:55:36 | 000,118,152 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/13 09:45:44 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/08/13 09:42:52 | 000,492,378 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/08/13 09:42:52 | 000,434,838 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/08/13 09:42:52 | 000,068,828 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
========== Files Created - No Company Name ==========
[2010/09/05 13:28:57 | 000,000,680 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\Puran Defrag.lnk
[2010/09/05 13:08:25 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\Startup.cpl
[2010/08/30 12:22:57 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/30 11:31:57 | 000,000,465 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\NTREGOPT.lnk
[2010/08/30 11:31:57 | 000,000,446 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\ERUNT.lnk
[2010/08/19 19:52:55 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Palm Desktop.lnk
[2010/08/19 19:52:17 | 000,000,494 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to log.lnk
[2009/03/10 16:33:44 | 000,000,242 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini
[2009/03/10 16:33:44 | 000,000,093 | ---- | C] () -- C:\WINDOWS\brpcfx.ini
[2009/03/10 16:33:08 | 000,000,419 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2009/03/10 16:33:08 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2009/03/10 16:15:04 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\BrMuSNMP.dll
[2009/03/10 16:15:03 | 000,000,086 | ---- | C] () -- C:\WINDOWS\Brfaxrx.ini
[2009/03/10 16:11:39 | 000,031,567 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2007/12/31 20:41:30 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/12/20 10:14:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2006/10/31 13:07:48 | 000,031,223 | ---- | C] () -- C:\Program Files\nv4_disp.cat
[2006/10/22 13:22:00 | 005,133,510 | ---- | C] () -- C:\Program Files\NvCpl.dl_
[2006/10/22 13:22:00 | 004,885,354 | ---- | C] () -- C:\Program Files\data1.cab
[2006/10/22 13:22:00 | 004,823,557 | ---- | C] () -- C:\Program Files\nvDispS.dl_
[2006/10/22 13:22:00 | 003,139,676 | ---- | C] () -- C:\Program Files\nvDispSR.dl_
[2006/10/22 13:22:00 | 002,859,776 | ---- | C] () -- C:\Program Files\nvoglnt.dl_
[2006/10/22 13:22:00 | 002,539,985 | ---- | C] () -- C:\Program Files\nvViTvS.dl_
[2006/10/22 13:22:00 | 002,485,711 | ---- | C] () -- C:\Program Files\nv4_disp.dl_
[2006/10/22 13:22:00 | 002,208,186 | ---- | C] () -- C:\Program Files\nvViTvSR.dl_
[2006/10/22 13:22:00 | 002,167,877 | ---- | C] () -- C:\Program Files\nv4_mini.sy_
[2006/10/22 13:22:00 | 002,051,692 | ---- | C] () -- C:\Program Files\nvGameS.dl_
[2006/10/22 13:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/10/22 13:22:00 | 001,621,828 | ---- | C] () -- C:\Program Files\nvMoblSR.dl_
[2006/10/22 13:22:00 | 001,096,583 | ---- | C] () -- C:\Program Files\nvGameSR.dl_
[2006/10/22 13:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/10/22 13:22:00 | 000,886,722 | ---- | C] () -- C:\Program Files\nvwss.dl_
[2006/10/22 13:22:00 | 000,862,685 | ---- | C] () -- C:\Program Files\nvwdmcpl.dl_
[2006/10/22 13:22:00 | 000,751,259 | ---- | C] () -- C:\Program Files\nvwssr.dl_
[2006/10/22 13:22:00 | 000,667,613 | ---- | C] () -- C:\Program Files\nwiz.ex_
[2006/10/22 13:22:00 | 000,652,962 | ---- | C] () -- C:\Program Files\nview.dl_
[2006/10/22 13:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/10/22 13:22:00 | 000,574,838 | ---- | C] () -- C:\Program Files\nvMoblS.dl_
[2006/10/22 13:22:00 | 000,468,519 | ---- | C] () -- C:\Program Files\nvdspsch.ex_
[2006/10/22 13:22:00 | 000,459,544 | ---- | C] () -- C:\Program Files\engine32.cab
[2006/10/22 13:22:00 | 000,435,969 | ---- | C] () -- C:\Program Files\setup.ibt
[2006/10/22 13:22:00 | 000,431,959 | ---- | C] () -- C:\Program Files\nvcplui.ex_
[2006/10/22 13:22:00 | 000,336,370 | ---- | C] () -- C:\Program Files\nvwimg.dl_
[2006/10/22 13:22:00 | 000,321,411 | ---- | C] () -- C:\Program Files\nvcpluir.dl_
[2006/10/22 13:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/10/22 13:22:00 | 000,242,577 | ---- | C] () -- C:\Program Files\setup.inx
[2006/10/22 13:22:00 | 000,216,623 | ---- | C] () -- C:\Program Files\keystone.ex_
[2006/10/22 13:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006/10/22 13:22:00 | 000,204,593 | ---- | C] () -- C:\Program Files\nvappbar.ex_
[2006/10/22 13:22:00 | 000,199,911 | ---- | C] () -- C:\Program Files\nvshell.dl_
[2006/10/22 13:22:00 | 000,182,371 | ---- | C] () -- C:\Program Files\nvdsp.chm
[2006/10/22 13:22:00 | 000,176,756 | ---- | C] () -- C:\Program Files\setup.bmp
[2006/10/22 13:22:00 | 000,169,728 | ---- | C] () -- C:\Program Files\nvMccsSR.dl_
[2006/10/22 13:22:00 | 000,164,086 | ---- | C] () -- C:\Program Files\nvmccs.dl_
[2006/10/22 13:22:00 | 000,155,855 | ---- | C] () -- C:\Program Files\nvnt4cpl.dl_
[2006/10/22 13:22:00 | 000,154,401 | ---- | C] () -- C:\Program Files\NVCPL.HL_
[2006/10/22 13:22:00 | 000,153,971 | ---- | C] () -- C:\Program Files\nvexpbar.dl_
[2006/10/22 13:22:00 | 000,153,965 | ---- | C] () -- C:\Program Files\nvhwvid.dl_
[2006/10/22 13:22:00 | 000,104,248 | ---- | C] () -- C:\Program Files\nvcpl.chm
[2006/10/22 13:22:00 | 000,103,617 | ---- | C] () -- C:\Program Files\nvMccsS.dl_
[2006/10/22 13:22:00 | 000,099,664 | ---- | C] () -- C:\Program Files\nv3d.chm
[2006/10/22 13:22:00 | 000,097,305 | ---- | C] () -- C:\Program Files\nvapi.dl_
[2006/10/22 13:22:00 | 000,088,224 | ---- | C] () -- C:\Program Files\nvsvc32.ex_
[2006/10/22 13:22:00 | 000,086,259 | ---- | C] () -- C:\Program Files\NvColor.ex_
[2006/10/22 13:22:00 | 000,080,697 | ---- | C] () -- C:\Program Files\NVEPClnt.ex_
[2006/10/22 13:22:00 | 000,068,593 | ---- | C] () -- C:\Program Files\setup.skin
[2006/10/22 13:22:00 | 000,067,085 | ---- | C] () -- C:\Program Files\modes.txt
[2006/10/22 13:22:00 | 000,054,878 | ---- | C] () -- C:\Program Files\nvmob.chm
[2006/10/22 13:22:00 | 000,052,430 | ---- | C] () -- C:\Program Files\nv4_disp.inf
[2006/10/22 13:22:00 | 000,048,481 | ---- | C] () -- C:\Program Files\nvwddi.dl_
[2006/10/22 13:22:00 | 000,044,126 | ---- | C] () -- C:\Program Files\NvMCTray.dl_
[2006/10/22 13:22:00 | 000,037,427 | ---- | C] () -- C:\Program Files\nvcpl.cp_
[2006/10/22 13:22:00 | 000,037,359 | ---- | C] () -- C:\Program Files\nvwcplen.hl_
[2006/10/22 13:22:00 | 000,035,229 | ---- | C] () -- C:\Program Files\nvtuicpl.cp_
[2006/10/22 13:22:00 | 000,029,080 | ---- | C] () -- C:\Program Files\data1.hdr
[2006/10/22 13:22:00 | 000,023,552 | ---- | C] () -- C:\Program Files\nvcod.dl_
[2006/10/22 13:22:00 | 000,020,320 | ---- | C] () -- C:\Program Files\NvApps.xm_
[2006/10/22 13:22:00 | 000,017,056 | ---- | C] () -- C:\Program Files\NVDisp.nvu
[2006/10/22 13:22:00 | 000,010,405 | ---- | C] () -- C:\Program Files\NvwsApps.xm_
[2006/10/22 13:22:00 | 000,010,222 | ---- | C] () -- C:\Program Files\default.tv_
[2006/10/22 13:22:00 | 000,009,111 | ---- | C] () -- C:\Program Files\nvmccsrs.dl_
[2006/10/22 13:22:00 | 000,006,144 | ---- | C] () -- C:\Program Files\Finance.tv_
[2006/10/22 13:22:00 | 000,006,101 | ---- | C] () -- C:\Program Files\Advanced.tv_
[2006/10/22 13:22:00 | 000,005,857 | ---- | C] () -- C:\Program Files\DCC.tv_
[2006/10/22 13:22:00 | 000,005,661 | ---- | C] () -- C:\Program Files\CAD.tv_
[2006/10/22 13:22:00 | 000,000,862 | ---- | C] () -- C:\Program Files\setup.ini
[2006/10/22 13:22:00 | 000,000,512 | ---- | C] () -- C:\Program Files\data2.cab
[2006/10/22 13:22:00 | 000,000,510 | ---- | C] () -- C:\Program Files\layout.bin
[2006/10/22 13:22:00 | 000,000,431 | ---- | C] () -- C:\Program Files\setup.iss
[2006/10/10 17:24:37 | 032,923,352 | ---- | C] () -- C:\Program Files\avg75f_425a814.exe
[2006/08/31 16:06:21 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2006/07/21 21:56:05 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\imageCache.db
[2006/02/19 12:40:26 | 000,001,388 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\ViewerApp.dat
[2006/02/19 12:25:36 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2005/10/16 15:35:20 | 000,000,236 | ---- | C] () -- C:\WINDOWS\cdgrabber.ini
[2005/10/16 14:29:08 | 000,000,370 | ---- | C] () -- C:\WINDOWS\CDToMP3WAVMaker.ini
[2005/10/16 14:21:45 | 000,003,082 | ---- | C] () -- C:\WINDOWS\System32\affv11300p1now.sys
[2005/02/13 19:19:02 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu2.sys
[2005/02/13 19:19:01 | 000,001,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys
[2005/02/13 19:17:13 | 000,000,195 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2004/11/28 19:29:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QUICKI~1.INI
[2004/11/07 13:08:57 | 000,007,812 | ---- | C] () -- C:\WINDOWS\System32\visorusb.dll
[2004/09/19 18:03:19 | 000,000,214 | ---- | C] () -- C:\WINDOWS\raccalbk.ini
[2004/09/17 18:37:42 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll
[2004/07/03 15:42:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2004/07/03 15:37:07 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\CNMVS56.DLL
[2004/06/27 11:32:32 | 000,044,402 | ---- | C] () -- C:\WINDOWS\cdPlayer.ini
[2004/06/06 11:40:28 | 000,039,936 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/05/31 14:34:21 | 000,000,477 | ---- | C] () -- C:\WINDOWS\VTruck6.ini
[2004/05/31 14:32:36 | 000,000,419 | ---- | C] () -- C:\WINDOWS\VTruck5.ini
[2004/05/31 14:29:21 | 000,000,370 | ---- | C] () -- C:\WINDOWS\VTruck4.ini
[2004/05/31 14:09:57 | 000,000,390 | ---- | C] () -- C:\WINDOWS\VTruck3.ini
[2004/05/31 14:02:48 | 000,000,394 | ---- | C] () -- C:\WINDOWS\VTruck2.ini
[2004/05/31 13:58:33 | 000,000,513 | ---- | C] () -- C:\WINDOWS\VTruck1.ini
[2004/05/30 12:49:30 | 000,000,160 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004/05/30 12:49:30 | 000,000,022 | ---- | C] () -- C:\WINDOWS\exchng.ini
[2004/05/30 09:46:08 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004/05/29 21:02:20 | 000,012,327 | ---- | C] () -- C:\WINDOWS\IOS.INI
[2004/05/29 21:02:20 | 000,007,885 | ---- | C] () -- C:\WINDOWS\NETDET.INI
[2004/05/29 21:02:20 | 000,005,068 | ---- | C] () -- C:\WINDOWS\DELETEFI.INI
[2004/05/29 21:02:20 | 000,003,598 | ---- | C] () -- C:\WINDOWS\HTMLHELP.INI
[2004/05/29 21:02:20 | 000,000,865 | ---- | C] () -- C:\WINDOWS\DOSREP.INI
[2004/05/29 21:02:20 | 000,000,787 | ---- | C] () -- C:\WINDOWS\SCANREG.INI
[2004/05/29 21:02:20 | 000,000,225 | ---- | C] () -- C:\WINDOWS\TELEPHON.INI
[2004/05/29 21:02:20 | 000,000,120 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2004/05/29 21:02:20 | 000,000,060 | ---- | C] () -- C:\WINDOWS\POWERPNT.INI
[2004/05/29 21:02:20 | 000,000,054 | ---- | C] () -- C:\WINDOWS\WAVEMIX.INI
[2004/05/29 21:02:20 | 000,000,028 | ---- | C] () -- C:\WINDOWS\QTW.INI
[2004/05/29 21:02:20 | 000,000,026 | ---- | C] () -- C:\WINDOWS\MSOFFICE.INI
[2004/05/29 21:02:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\progman.ini
[2004/05/29 17:09:34 | 000,011,079 | -H-- | C] () -- C:\Program Files\folder.htt
[2004/05/29 17:03:38 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/08/07 14:01:52 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2003/07/28 14:19:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2003/07/28 14:19:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[1999/04/23 22:22:00 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\MEMBG.DLL
[1999/04/23 22:22:00 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ICMFILTER.DLL
[1996/11/21 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[1996/11/21 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\DOCOBJ.DLL
[1996/11/21 00:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\HLINKPRX.DLL
< End of report >
Got the OTL file copied, it appears that the other,09052010 124330 file doesn't want to be copied...
OTL2.Txt (73.38K)
Number of downloads: 35
OTL logfile created on: 9/5/2010 2:06:13 PM - Run 2
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Documents and Settings\Jim Rodrigues\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: enu | Date Format: M/d/yyyy
255.00 Mb Total Physical Memory | 83.00 Mb Available Physical Memory | 32.00% Memory free
732.00 Mb Paging File | 176.00 Mb Available in Paging File | 24.00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39.07 Gb Total Space | 7.83 Gb Free Space | 20.05% Space Free | Partition Type: NTFS
Drive D: | 39.07 Gb Total Space | 7.86 Gb Free Space | 20.12% Space Free | Partition Type: NTFS
Drive E: | 33.65 Gb Total Space | 33.55 Gb Free Space | 99.71% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: JIM
Current User Name: Jim Rodrigues
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe (Brother Industries, Ltd.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Nuance Communications, Inc.)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
PRC - C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (Sony Corporation)
PRC - C:\Program Files\Palm\HOTSYNC.EXE (Palm, Inc.)
PRC - C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
PRC - C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe (Roxio, Inc.)
PRC - C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe (Roxio, Inc.)
PRC - C:\Program Files\Microsoft Office\Office\OSA.EXE ()
========== Modules (SafeList) ==========
MOD - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll (RealPlayer)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\GdiPlus.dll (Microsoft Corporation)
MOD - C:\WINDOWS\SYSTEM32\msvcr71.dll (Microsoft Corporation)
MOD - C:\WINDOWS\SYSTEM32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\SYSTEM32\msvcp71.dll (Microsoft Corporation)
MOD - C:\Documents and Settings\Jim Rodrigues\Local Settings\Temp\IadHide5.dll (BackWeb)
========== Win32 Services (SafeList) ==========
SRV - (Automatic LiveUpdate Scheduler) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe File not found
SRV - (AppMgmt) -- C:\WINDOWS\System32\appmgmts.dll File not found
SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (PuranDefrag) -- C:\WINDOWS\System32\PuranDefragS.exe (Puran Software)
========== Driver Services (SafeList) ==========
DRV - (MRESP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS File not found
DRV - (MREMP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS File not found
DRV - (AvgTdiX) -- C:\WINDOWS\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgLdx86) -- C:\WINDOWS\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgMfx86) -- C:\WINDOWS\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (NuidFltr) -- C:\WINDOWS\SYSTEM32\DRIVERS\nuidfltr.sys (Microsoft Corporation)
DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (gameenum) -- C:\WINDOWS\SYSTEM32\DRIVERS\gameenum.sys (Microsoft Corporation)
DRV - (UsbDiag) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbbus.sys (LG Electronics Inc.)
DRV - (BrSerIf) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrSerIf.sys (Brother Industries Ltd.)
DRV - (nv) -- C:\WINDOWS\SYSTEM32\DRIVERS\nv4_mini.sys (NVIDIA Corporation)
DRV - (Cdralw2k) -- C:\WINDOWS\System32\drivers\cdralw2k.sys (Sonic Solutions)
DRV - (Cdr4_xp) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys (Sonic Solutions)
DRV - (BrUsbSer) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrScnUsb) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrScnUsb.sys (Brother Industries Ltd.)
DRV - (PalmUSBD) -- C:\WINDOWS\SYSTEM32\DRIVERS\PalmUSBD.sys (Palm, Inc.)
DRV - (P2k) -- C:\WINDOWS\SYSTEM32\DRIVERS\P2k.sys (Motorola Inc)
DRV - (cdrbsdrv) -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS (B.H.A Corporation)
DRV - (CDRPDACC) Quinnware CDDA Driver (by InfinaDyne) -- C:\Program Files\Quintessential Player\cdrpdacc.sys (Arrowkey)
DRV - (DVDVRRdr_xp) -- C:\WINDOWS\System32\drivers\DVDVRRdr_xp.sys (Roxio)
DRV - (WmHidLo) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmHidLo.sys (Logitech Inc.)
DRV - (WmFilter) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmFilter.sys (Logitech Inc.)
DRV - (WmBEnum) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmBEnum.sys (Logitech Inc.)
DRV - (WmVirHid) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmVirHid.sys (Logitech Inc.)
DRV - (WmXlCore) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmXlCore.sys (Logitech Inc.)
DRV - (es1371) Creative AudioPCI (ES1371,ES1373) (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\es1371mp.sys (Creative Technology Ltd.)
DRV - (papyjoy) -- C:\WINDOWS\system32\drivers\papyjoy.sys ()
DRV - (papycpu2) -- C:\WINDOWS\system32\drivers\papycpu2.sys ()
DRV - (cdrbsvsd) -- C:\WINDOWS\System32\drivers\cdrbsvsd.sys (B.H.A Co.,Ltd.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.harley-da...sp?locale=en_US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.msn.com"
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/07/20 09:11:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2009/11/30 16:09:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/03/17 15:48:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0\Extensions\\Components: C:\Program Files\Mozilla Firefox\Components [2010/03/17 15:47:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0\Extensions\\Plugins: C:\Program Files\Mozilla Firefox\Plugins [2010/06/02 16:28:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0.4\Extensions\\Components: C:\Program Files\Mozilla Firefox\Components [2010/03/17 15:47:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0.4\Extensions\\Plugins: C:\Program Files\Mozilla Firefox\Plugins [2010/06/02 16:28:09 | 000,000,000 | ---D | M]
[2004/11/29 14:50:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\Mozilla\Firefox\Profiles\ifb0y3fa.default\extensions
[2004/11/29 14:50:05 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Documents and Settings\Jim Rodrigues\Application Data\Mozilla\Firefox\Profiles\ifb0y3fa.default\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010/07/31 11:45:12 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/06/02 16:28:15 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/07/31 11:45:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2005/05/12 13:22:51 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions
[2005/05/12 13:22:51 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2005/05/11 13:28:00 | 000,094,208 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\BrandRes.dll
[2005/05/11 13:28:00 | 000,150,912 | ---- | M] (Full Circle Software, Inc.) -- C:\Program Files\Mozilla Firefox\components\fullsoft.dll
[2005/05/11 13:28:00 | 000,041,573 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jar50.dll
[2005/05/11 13:28:00 | 000,048,223 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jsd3250.dll
[2005/05/11 13:28:00 | 000,008,813 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\qfaservices.dll
[2005/05/11 13:28:00 | 000,159,335 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\xpinstal.dll
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2005/05/11 13:28:00 | 000,000,680 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.png
[2005/05/11 13:28:00 | 000,000,735 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.src
[2005/05/11 13:28:00 | 000,000,356 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.png
[2005/05/11 13:28:00 | 000,000,976 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.src
[2005/05/11 13:28:00 | 000,000,557 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dictionary.png
[2005/05/11 13:28:00 | 000,000,692 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dictionary.src
[2005/05/11 13:28:00 | 000,000,210 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.gif
[2005/05/11 13:28:00 | 000,001,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.src
[2005/05/11 13:28:00 | 000,001,076 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.gif
[2006/04/05 16:56:02 | 000,000,706 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.src
[2005/05/11 13:28:00 | 000,000,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.gif
[2005/05/11 13:28:00 | 000,001,098 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.src
O1 HOSTS File: ([2010/09/05 12:44:24 | 000,000,098 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - SITEguard - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\RunOnceEx: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\KODAK Software Updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} http://v4.windowsupd...38136.914212963 (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\SYSTEM\dajava.cab (Reg Error: Key error.)
O16 - DPF: Internet Explorer Classes for Java file://C:\WINDOWS\SYSTEM\iejava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.238.64.12 68.238.128.12
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop WallPaper: C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/02/19 12:30:29 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/09/05 13:28:54 | 001,110,016 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranFD.exe
[2010/09/05 13:28:54 | 000,229,376 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefragS.exe
[2010/09/05 13:28:54 | 000,221,184 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDC.exe
[2010/09/05 13:28:54 | 000,212,992 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefrag.dll
[2010/09/05 13:28:54 | 000,107,008 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefragBT.exe
[2010/09/05 13:28:53 | 000,000,000 | ---D | C] -- C:\Program Files\Puran Defrag
[2010/09/05 13:08:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010/09/05 12:43:14 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/08/31 09:30:33 | 001,154,631 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/30 13:54:47 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 11:33:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jim Rodrigues\Desktop\8-30-2010
[2010/08/30 11:31:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jim Rodrigues\Desktop\ERUNT
[2010/08/30 11:00:20 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
[2006/10/22 13:22:00 | 000,208,896 | ---- | C] (NVIDIA Corporation) -- C:\Program Files\nvudisp.exe
[2005/10/16 16:44:05 | 005,581,144 | ---- | C] (SmartSoft ) -- C:\Program Files\smart-audio-converter-setup.exe
========== Files - Modified Within 30 Days ==========
[2010/09/05 14:12:00 | 000,000,366 | ---- | M] () -- C:\WINDOWS\tasks\Symantec NetDetect.job
[2010/09/05 14:10:00 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Uninstall Expiration Reminder.job
[2010/09/05 13:28:57 | 000,000,680 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\Puran Defrag.lnk
[2010/09/05 13:14:02 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/09/05 13:02:03 | 000,904,429 | ---- | M] () -- C:\logfile
[2010/09/05 13:00:41 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-448539723-1425521274-839522115-1004.job
[2010/09/05 13:00:39 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-1425521274-839522115-1004.job
[2010/09/05 12:49:21 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/09/05 12:48:57 | 000,013,746 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/09/05 12:48:09 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/09/05 12:47:52 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/09/05 12:47:34 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/09/05 12:47:25 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/09/05 12:47:22 | 267,968,512 | -HS- | M] () -- C:\hiberfil.sys
[2010/09/05 12:45:57 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Jim Rodrigues\ntuser.ini
[2010/09/05 12:45:56 | 014,942,208 | -H-- | M] () -- C:\Documents and Settings\Jim Rodrigues\NTUSER.DAT
[2010/09/05 12:44:24 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2010/09/05 11:28:01 | 064,339,327 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/09/04 14:00:00 | 000,000,502 | ---- | M] () -- C:\WINDOWS\tasks\Tune-up Application Start.job
[2010/08/31 09:30:41 | 001,154,631 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/30 13:54:49 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 12:23:04 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/30 11:34:47 | 000,000,465 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\NTREGOPT.lnk
[2010/08/30 11:34:47 | 000,000,446 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\ERUNT.lnk
[2010/08/30 11:00:21 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
[2010/08/30 10:55:32 | 000,003,082 | ---- | M] () -- C:\WINDOWS\System32\affv11300p1now.sys
[2010/08/19 19:52:55 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Palm Desktop.lnk
[2010/08/19 19:52:17 | 000,000,494 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to log.lnk
[2010/08/19 17:42:29 | 000,000,452 | ---- | M] () -- C:\WINDOWS\tasks\EasyShare Registration Task.job
[2010/08/13 09:55:36 | 000,118,152 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/13 09:45:44 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/08/13 09:42:52 | 000,492,378 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/08/13 09:42:52 | 000,434,838 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/08/13 09:42:52 | 000,068,828 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
========== Files Created - No Company Name ==========
[2010/09/05 13:28:57 | 000,000,680 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\Puran Defrag.lnk
[2010/09/05 13:08:25 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\Startup.cpl
[2010/08/30 12:22:57 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/30 11:31:57 | 000,000,465 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\NTREGOPT.lnk
[2010/08/30 11:31:57 | 000,000,446 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\ERUNT.lnk
[2010/08/19 19:52:55 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Palm Desktop.lnk
[2010/08/19 19:52:17 | 000,000,494 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to log.lnk
[2009/03/10 16:33:44 | 000,000,242 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini
[2009/03/10 16:33:44 | 000,000,093 | ---- | C] () -- C:\WINDOWS\brpcfx.ini
[2009/03/10 16:33:08 | 000,000,419 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2009/03/10 16:33:08 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2009/03/10 16:15:04 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\BrMuSNMP.dll
[2009/03/10 16:15:03 | 000,000,086 | ---- | C] () -- C:\WINDOWS\Brfaxrx.ini
[2009/03/10 16:11:39 | 000,031,567 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2007/12/31 20:41:30 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/12/20 10:14:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2006/10/31 13:07:48 | 000,031,223 | ---- | C] () -- C:\Program Files\nv4_disp.cat
[2006/10/22 13:22:00 | 005,133,510 | ---- | C] () -- C:\Program Files\NvCpl.dl_
[2006/10/22 13:22:00 | 004,885,354 | ---- | C] () -- C:\Program Files\data1.cab
[2006/10/22 13:22:00 | 004,823,557 | ---- | C] () -- C:\Program Files\nvDispS.dl_
[2006/10/22 13:22:00 | 003,139,676 | ---- | C] () -- C:\Program Files\nvDispSR.dl_
[2006/10/22 13:22:00 | 002,859,776 | ---- | C] () -- C:\Program Files\nvoglnt.dl_
[2006/10/22 13:22:00 | 002,539,985 | ---- | C] () -- C:\Program Files\nvViTvS.dl_
[2006/10/22 13:22:00 | 002,485,711 | ---- | C] () -- C:\Program Files\nv4_disp.dl_
[2006/10/22 13:22:00 | 002,208,186 | ---- | C] () -- C:\Program Files\nvViTvSR.dl_
[2006/10/22 13:22:00 | 002,167,877 | ---- | C] () -- C:\Program Files\nv4_mini.sy_
[2006/10/22 13:22:00 | 002,051,692 | ---- | C] () -- C:\Program Files\nvGameS.dl_
[2006/10/22 13:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/10/22 13:22:00 | 001,621,828 | ---- | C] () -- C:\Program Files\nvMoblSR.dl_
[2006/10/22 13:22:00 | 001,096,583 | ---- | C] () -- C:\Program Files\nvGameSR.dl_
[2006/10/22 13:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/10/22 13:22:00 | 000,886,722 | ---- | C] () -- C:\Program Files\nvwss.dl_
[2006/10/22 13:22:00 | 000,862,685 | ---- | C] () -- C:\Program Files\nvwdmcpl.dl_
[2006/10/22 13:22:00 | 000,751,259 | ---- | C] () -- C:\Program Files\nvwssr.dl_
[2006/10/22 13:22:00 | 000,667,613 | ---- | C] () -- C:\Program Files\nwiz.ex_
[2006/10/22 13:22:00 | 000,652,962 | ---- | C] () -- C:\Program Files\nview.dl_
[2006/10/22 13:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/10/22 13:22:00 | 000,574,838 | ---- | C] () -- C:\Program Files\nvMoblS.dl_
[2006/10/22 13:22:00 | 000,468,519 | ---- | C] () -- C:\Program Files\nvdspsch.ex_
[2006/10/22 13:22:00 | 000,459,544 | ---- | C] () -- C:\Program Files\engine32.cab
[2006/10/22 13:22:00 | 000,435,969 | ---- | C] () -- C:\Program Files\setup.ibt
[2006/10/22 13:22:00 | 000,431,959 | ---- | C] () -- C:\Program Files\nvcplui.ex_
[2006/10/22 13:22:00 | 000,336,370 | ---- | C] () -- C:\Program Files\nvwimg.dl_
[2006/10/22 13:22:00 | 000,321,411 | ---- | C] () -- C:\Program Files\nvcpluir.dl_
[2006/10/22 13:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/10/22 13:22:00 | 000,242,577 | ---- | C] () -- C:\Program Files\setup.inx
[2006/10/22 13:22:00 | 000,216,623 | ---- | C] () -- C:\Program Files\keystone.ex_
[2006/10/22 13:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006/10/22 13:22:00 | 000,204,593 | ---- | C] () -- C:\Program Files\nvappbar.ex_
[2006/10/22 13:22:00 | 000,199,911 | ---- | C] () -- C:\Program Files\nvshell.dl_
[2006/10/22 13:22:00 | 000,182,371 | ---- | C] () -- C:\Program Files\nvdsp.chm
[2006/10/22 13:22:00 | 000,176,756 | ---- | C] () -- C:\Program Files\setup.bmp
[2006/10/22 13:22:00 | 000,169,728 | ---- | C] () -- C:\Program Files\nvMccsSR.dl_
[2006/10/22 13:22:00 | 000,164,086 | ---- | C] () -- C:\Program Files\nvmccs.dl_
[2006/10/22 13:22:00 | 000,155,855 | ---- | C] () -- C:\Program Files\nvnt4cpl.dl_
[2006/10/22 13:22:00 | 000,154,401 | ---- | C] () -- C:\Program Files\NVCPL.HL_
[2006/10/22 13:22:00 | 000,153,971 | ---- | C] () -- C:\Program Files\nvexpbar.dl_
[2006/10/22 13:22:00 | 000,153,965 | ---- | C] () -- C:\Program Files\nvhwvid.dl_
[2006/10/22 13:22:00 | 000,104,248 | ---- | C] () -- C:\Program Files\nvcpl.chm
[2006/10/22 13:22:00 | 000,103,617 | ---- | C] () -- C:\Program Files\nvMccsS.dl_
[2006/10/22 13:22:00 | 000,099,664 | ---- | C] () -- C:\Program Files\nv3d.chm
[2006/10/22 13:22:00 | 000,097,305 | ---- | C] () -- C:\Program Files\nvapi.dl_
[2006/10/22 13:22:00 | 000,088,224 | ---- | C] () -- C:\Program Files\nvsvc32.ex_
[2006/10/22 13:22:00 | 000,086,259 | ---- | C] () -- C:\Program Files\NvColor.ex_
[2006/10/22 13:22:00 | 000,080,697 | ---- | C] () -- C:\Program Files\NVEPClnt.ex_
[2006/10/22 13:22:00 | 000,068,593 | ---- | C] () -- C:\Program Files\setup.skin
[2006/10/22 13:22:00 | 000,067,085 | ---- | C] () -- C:\Program Files\modes.txt
[2006/10/22 13:22:00 | 000,054,878 | ---- | C] () -- C:\Program Files\nvmob.chm
[2006/10/22 13:22:00 | 000,052,430 | ---- | C] () -- C:\Program Files\nv4_disp.inf
[2006/10/22 13:22:00 | 000,048,481 | ---- | C] () -- C:\Program Files\nvwddi.dl_
[2006/10/22 13:22:00 | 000,044,126 | ---- | C] () -- C:\Program Files\NvMCTray.dl_
[2006/10/22 13:22:00 | 000,037,427 | ---- | C] () -- C:\Program Files\nvcpl.cp_
[2006/10/22 13:22:00 | 000,037,359 | ---- | C] () -- C:\Program Files\nvwcplen.hl_
[2006/10/22 13:22:00 | 000,035,229 | ---- | C] () -- C:\Program Files\nvtuicpl.cp_
[2006/10/22 13:22:00 | 000,029,080 | ---- | C] () -- C:\Program Files\data1.hdr
[2006/10/22 13:22:00 | 000,023,552 | ---- | C] () -- C:\Program Files\nvcod.dl_
[2006/10/22 13:22:00 | 000,020,320 | ---- | C] () -- C:\Program Files\NvApps.xm_
[2006/10/22 13:22:00 | 000,017,056 | ---- | C] () -- C:\Program Files\NVDisp.nvu
[2006/10/22 13:22:00 | 000,010,405 | ---- | C] () -- C:\Program Files\NvwsApps.xm_
[2006/10/22 13:22:00 | 000,010,222 | ---- | C] () -- C:\Program Files\default.tv_
[2006/10/22 13:22:00 | 000,009,111 | ---- | C] () -- C:\Program Files\nvmccsrs.dl_
[2006/10/22 13:22:00 | 000,006,144 | ---- | C] () -- C:\Program Files\Finance.tv_
[2006/10/22 13:22:00 | 000,006,101 | ---- | C] () -- C:\Program Files\Advanced.tv_
[2006/10/22 13:22:00 | 000,005,857 | ---- | C] () -- C:\Program Files\DCC.tv_
[2006/10/22 13:22:00 | 000,005,661 | ---- | C] () -- C:\Program Files\CAD.tv_
[2006/10/22 13:22:00 | 000,000,862 | ---- | C] () -- C:\Program Files\setup.ini
[2006/10/22 13:22:00 | 000,000,512 | ---- | C] () -- C:\Program Files\data2.cab
[2006/10/22 13:22:00 | 000,000,510 | ---- | C] () -- C:\Program Files\layout.bin
[2006/10/22 13:22:00 | 000,000,431 | ---- | C] () -- C:\Program Files\setup.iss
[2006/10/10 17:24:37 | 032,923,352 | ---- | C] () -- C:\Program Files\avg75f_425a814.exe
[2006/08/31 16:06:21 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2006/07/21 21:56:05 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\imageCache.db
[2006/02/19 12:40:26 | 000,001,388 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\ViewerApp.dat
[2006/02/19 12:25:36 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2005/10/16 15:35:20 | 000,000,236 | ---- | C] () -- C:\WINDOWS\cdgrabber.ini
[2005/10/16 14:29:08 | 000,000,370 | ---- | C] () -- C:\WINDOWS\CDToMP3WAVMaker.ini
[2005/10/16 14:21:45 | 000,003,082 | ---- | C] () -- C:\WINDOWS\System32\affv11300p1now.sys
[2005/02/13 19:19:02 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu2.sys
[2005/02/13 19:19:01 | 000,001,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys
[2005/02/13 19:17:13 | 000,000,195 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2004/11/28 19:29:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QUICKI~1.INI
[2004/11/07 13:08:57 | 000,007,812 | ---- | C] () -- C:\WINDOWS\System32\visorusb.dll
[2004/09/19 18:03:19 | 000,000,214 | ---- | C] () -- C:\WINDOWS\raccalbk.ini
[2004/09/17 18:37:42 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll
[2004/07/03 15:42:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2004/07/03 15:37:07 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\CNMVS56.DLL
[2004/06/27 11:32:32 | 000,044,402 | ---- | C] () -- C:\WINDOWS\cdPlayer.ini
[2004/06/06 11:40:28 | 000,039,936 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/05/31 14:34:21 | 000,000,477 | ---- | C] () -- C:\WINDOWS\VTruck6.ini
[2004/05/31 14:32:36 | 000,000,419 | ---- | C] () -- C:\WINDOWS\VTruck5.ini
[2004/05/31 14:29:21 | 000,000,370 | ---- | C] () -- C:\WINDOWS\VTruck4.ini
[2004/05/31 14:09:57 | 000,000,390 | ---- | C] () -- C:\WINDOWS\VTruck3.ini
[2004/05/31 14:02:48 | 000,000,394 | ---- | C] () -- C:\WINDOWS\VTruck2.ini
[2004/05/31 13:58:33 | 000,000,513 | ---- | C] () -- C:\WINDOWS\VTruck1.ini
[2004/05/30 12:49:30 | 000,000,160 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004/05/30 12:49:30 | 000,000,022 | ---- | C] () -- C:\WINDOWS\exchng.ini
[2004/05/30 09:46:08 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004/05/29 21:02:20 | 000,012,327 | ---- | C] () -- C:\WINDOWS\IOS.INI
[2004/05/29 21:02:20 | 000,007,885 | ---- | C] () -- C:\WINDOWS\NETDET.INI
[2004/05/29 21:02:20 | 000,005,068 | ---- | C] () -- C:\WINDOWS\DELETEFI.INI
[2004/05/29 21:02:20 | 000,003,598 | ---- | C] () -- C:\WINDOWS\HTMLHELP.INI
[2004/05/29 21:02:20 | 000,000,865 | ---- | C] () -- C:\WINDOWS\DOSREP.INI
[2004/05/29 21:02:20 | 000,000,787 | ---- | C] () -- C:\WINDOWS\SCANREG.INI
[2004/05/29 21:02:20 | 000,000,225 | ---- | C] () -- C:\WINDOWS\TELEPHON.INI
[2004/05/29 21:02:20 | 000,000,120 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2004/05/29 21:02:20 | 000,000,060 | ---- | C] () -- C:\WINDOWS\POWERPNT.INI
[2004/05/29 21:02:20 | 000,000,054 | ---- | C] () -- C:\WINDOWS\WAVEMIX.INI
[2004/05/29 21:02:20 | 000,000,028 | ---- | C] () -- C:\WINDOWS\QTW.INI
[2004/05/29 21:02:20 | 000,000,026 | ---- | C] () -- C:\WINDOWS\MSOFFICE.INI
[2004/05/29 21:02:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\progman.ini
[2004/05/29 17:09:34 | 000,011,079 | -H-- | C] () -- C:\Program Files\folder.htt
[2004/05/29 17:03:38 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/08/07 14:01:52 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2003/07/28 14:19:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2003/07/28 14:19:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[1999/04/23 22:22:00 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\MEMBG.DLL
[1999/04/23 22:22:00 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ICMFILTER.DLL
[1996/11/21 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[1996/11/21 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\DOCOBJ.DLL
[1996/11/21 00:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\HLINKPRX.DLL
< End of report >
#7
- Group: GeekU Moderator
- Posts: 55,570
- Joined: 31-May 06
Posted 06 September 2010 - 12:33 PM
Looking better but still tight What I would recommend is that you download the Crucial system scanner and run it to determine how much more RAM you can take, what type and rough cost. RAM is easy to fit, they have a step by step guide on the site
Run OTL
Please download Malwarebytes' Anti-Malware from Here.
Double Click mbam-setup.exe to install the application.
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.
Quote
255.00 Mb Total Physical Memory | 83.00 Mb Available Physical Memory | 32.00% Memory free
732.00 Mb Paging File | 176.00 Mb Available in Paging File | 24.00% Paging File free
732.00 Mb Paging File | 176.00 Mb Available in Paging File | 24.00% Paging File free
Run OTL
- Under the Custom Scans/Fixes box at the bottom, paste in the following
Quote
:OTL
SRV - (Automatic LiveUpdate Scheduler) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe File not found
[2010/09/05 14:12:00 | 000,000,366 | ---- | M] () -- C:\WINDOWS\tasks\Symantec NetDetect.job
:Commands
[purity]
[resethosts]
[emptytemp]
[EMPTYFLASH]
[CREATERESTOREPOINT]
[Reboot]
- Then click the Run Fix button at the top
- Let the program run unhindered, reboot the PC when it is done
- Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
Please download Malwarebytes' Anti-Malware from Here.Double Click mbam-setup.exe to install the application.
- Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
- If an update is found, it will download and install the latest version.
- Once the program has loaded, select "Perform Quick Scan", then click Scan.
- The scan may take some time to finish,so please be patient.
- When the scan is complete, click OK, then Show Results to view the results.
- Make sure that everything is checked, and click Remove Selected.
- When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
- The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
- Copy&Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.
#8
- Group: Member
- Posts: 9
- Joined: 09-December 09
Posted 08 September 2010 - 09:02 PM
Essexboy,here are the files you asked for..Thank you for your patience and help.
OTL logfile created on: 9/6/2010 3:28:53 PM - Run 3
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Documents and Settings\Jim Rodrigues\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: enu | Date Format: M/d/yyyy
255.00 Mb Total Physical Memory | 4.00 Mb Available Physical Memory | 2.00% Memory free
617.00 Mb Paging File | 119.00 Mb Available in Paging File | 19.00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39.07 Gb Total Space | 7.89 Gb Free Space | 20.20% Space Free | Partition Type: NTFS
Drive D: | 39.07 Gb Total Space | 7.86 Gb Free Space | 20.12% Space Free | Partition Type: NTFS
Drive E: | 33.65 Gb Total Space | 33.55 Gb Free Space | 99.71% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: JIM
Current User Name: Jim Rodrigues
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Minimal
Quick Scan
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
PRC - C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
========== Modules (SafeList) ==========
MOD - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\SYSTEM32\msscript.ocx (Microsoft Corporation)
MOD - C:\Documents and Settings\Jim Rodrigues\Local Settings\Temp\IadHide5.dll (BackWeb)
========== Win32 Services (SafeList) ==========
SRV - (AppMgmt) -- C:\WINDOWS\System32\appmgmts.dll File not found
SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (PuranDefrag) -- C:\WINDOWS\System32\PuranDefragS.exe (Puran Software)
========== Driver Services (SafeList) ==========
DRV - (MRESP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS File not found
DRV - (MREMP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS File not found
DRV - (AvgTdiX) -- C:\WINDOWS\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgLdx86) -- C:\WINDOWS\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgMfx86) -- C:\WINDOWS\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (NuidFltr) -- C:\WINDOWS\SYSTEM32\DRIVERS\nuidfltr.sys (Microsoft Corporation)
DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (gameenum) -- C:\WINDOWS\SYSTEM32\DRIVERS\gameenum.sys (Microsoft Corporation)
DRV - (UsbDiag) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbbus.sys (LG Electronics Inc.)
DRV - (BrSerIf) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrSerIf.sys (Brother Industries Ltd.)
DRV - (nv) -- C:\WINDOWS\SYSTEM32\DRIVERS\nv4_mini.sys (NVIDIA Corporation)
DRV - (Cdralw2k) -- C:\WINDOWS\System32\drivers\cdralw2k.sys (Sonic Solutions)
DRV - (Cdr4_xp) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys (Sonic Solutions)
DRV - (BrUsbSer) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrScnUsb) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrScnUsb.sys (Brother Industries Ltd.)
DRV - (PalmUSBD) -- C:\WINDOWS\SYSTEM32\DRIVERS\PalmUSBD.sys (Palm, Inc.)
DRV - (P2k) -- C:\WINDOWS\SYSTEM32\DRIVERS\P2k.sys (Motorola Inc)
DRV - (cdrbsdrv) -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS (B.H.A Corporation)
DRV - (CDRPDACC) Quinnware CDDA Driver (by InfinaDyne) -- C:\Program Files\Quintessential Player\cdrpdacc.sys (Arrowkey)
DRV - (DVDVRRdr_xp) -- C:\WINDOWS\System32\drivers\DVDVRRdr_xp.sys (Roxio)
DRV - (WmHidLo) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmHidLo.sys (Logitech Inc.)
DRV - (WmFilter) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmFilter.sys (Logitech Inc.)
DRV - (WmBEnum) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmBEnum.sys (Logitech Inc.)
DRV - (WmVirHid) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmVirHid.sys (Logitech Inc.)
DRV - (WmXlCore) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmXlCore.sys (Logitech Inc.)
DRV - (es1371) Creative AudioPCI (ES1371,ES1373) (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\es1371mp.sys (Creative Technology Ltd.)
DRV - (papyjoy) -- C:\WINDOWS\system32\drivers\papyjoy.sys ()
DRV - (papycpu2) -- C:\WINDOWS\system32\drivers\papycpu2.sys ()
DRV - (cdrbsvsd) -- C:\WINDOWS\System32\drivers\cdrbsvsd.sys (B.H.A Co.,Ltd.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.harley-da...sp?locale=en_US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.msn.com"
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/07/20 09:11:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2009/11/30 16:09:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/03/17 15:48:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0\Extensions\\Components: C:\Program Files\Mozilla Firefox\Components [2010/03/17 15:47:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0\Extensions\\Plugins: C:\Program Files\Mozilla Firefox\Plugins [2010/06/02 16:28:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0.4\Extensions\\Components: C:\Program Files\Mozilla Firefox\Components [2010/03/17 15:47:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0.4\Extensions\\Plugins: C:\Program Files\Mozilla Firefox\Plugins [2010/06/02 16:28:09 | 000,000,000 | ---D | M]
[2004/11/29 14:50:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\Mozilla\Firefox\Profiles\ifb0y3fa.default\extensions
[2004/11/29 14:50:05 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Documents and Settings\Jim Rodrigues\Application Data\Mozilla\Firefox\Profiles\ifb0y3fa.default\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010/07/31 11:45:12 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/06/02 16:28:15 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/07/31 11:45:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2005/05/12 13:22:51 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions
[2005/05/12 13:22:51 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2005/05/11 13:28:00 | 000,094,208 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\BrandRes.dll
[2005/05/11 13:28:00 | 000,150,912 | ---- | M] (Full Circle Software, Inc.) -- C:\Program Files\Mozilla Firefox\components\fullsoft.dll
[2005/05/11 13:28:00 | 000,041,573 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jar50.dll
[2005/05/11 13:28:00 | 000,048,223 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jsd3250.dll
[2005/05/11 13:28:00 | 000,008,813 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\qfaservices.dll
[2005/05/11 13:28:00 | 000,159,335 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\xpinstal.dll
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2005/05/11 13:28:00 | 000,000,680 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.png
[2005/05/11 13:28:00 | 000,000,735 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.src
[2005/05/11 13:28:00 | 000,000,356 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.png
[2005/05/11 13:28:00 | 000,000,976 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.src
[2005/05/11 13:28:00 | 000,000,557 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dictionary.png
[2005/05/11 13:28:00 | 000,000,692 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dictionary.src
[2005/05/11 13:28:00 | 000,000,210 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.gif
[2005/05/11 13:28:00 | 000,001,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.src
[2005/05/11 13:28:00 | 000,001,076 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.gif
[2006/04/05 16:56:02 | 000,000,706 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.src
[2005/05/11 13:28:00 | 000,000,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.gif
[2005/05/11 13:28:00 | 000,001,098 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.src
O1 HOSTS File: ([2010/09/06 15:15:52 | 000,000,098 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - SITEguard - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnceEx: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\KODAK Software Updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Status Monitor.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} http://v4.windowsupd...38136.914212963 (Reg Error: Key error.)
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} http://www.crucial.c.../cpcScanner.cab (Crucial cpcScan)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\SYSTEM\dajava.cab (Reg Error: Key error.)
O16 - DPF: Internet Explorer Classes for Java file://C:\WINDOWS\SYSTEM\iejava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.238.64.12 68.238.128.12
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop WallPaper: C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/02/19 12:30:29 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 90 Days ==========
[2010/09/05 13:28:54 | 001,110,016 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranFD.exe
[2010/09/05 13:28:54 | 000,229,376 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefragS.exe
[2010/09/05 13:28:54 | 000,221,184 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDC.exe
[2010/09/05 13:28:54 | 000,212,992 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefrag.dll
[2010/09/05 13:28:54 | 000,107,008 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefragBT.exe
[2010/09/05 13:28:53 | 000,000,000 | ---D | C] -- C:\Program Files\Puran Defrag
[2010/09/05 12:43:14 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/08/31 09:30:33 | 001,154,631 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/30 13:54:47 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 11:33:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jim Rodrigues\Desktop\8-30-2010
[2010/08/30 11:00:20 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
[2010/07/15 14:55:04 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2006/10/22 13:22:00 | 000,208,896 | ---- | C] (NVIDIA Corporation) -- C:\Program Files\nvudisp.exe
[2005/10/16 16:44:05 | 005,581,144 | ---- | C] (SmartSoft ) -- C:\Program Files\smart-audio-converter-setup.exe
========== Files - Modified Within 90 Days ==========
[2010/09/06 15:36:32 | 000,909,769 | ---- | M] () -- C:\logfile
[2010/09/06 15:25:47 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/09/06 15:25:24 | 000,013,746 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/09/06 15:24:32 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/09/06 15:24:19 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-448539723-1425521274-839522115-1004.job
[2010/09/06 15:24:15 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/09/06 15:23:53 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/09/06 15:23:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/09/06 15:23:38 | 267,968,512 | -HS- | M] () -- C:\hiberfil.sys
[2010/09/06 15:22:23 | 014,942,208 | -H-- | M] () -- C:\Documents and Settings\Jim Rodrigues\NTUSER.DAT
[2010/09/06 15:22:23 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Jim Rodrigues\ntuser.ini
[2010/09/06 15:15:52 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2010/09/06 15:14:03 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/09/06 15:10:00 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Uninstall Expiration Reminder.job
[2010/09/06 11:17:34 | 064,355,736 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/09/05 23:17:09 | 000,000,850 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Status Monitor.lnk
[2010/09/05 23:14:44 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-1425521274-839522115-1004.job
[2010/09/05 13:28:57 | 000,000,680 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\Puran Defrag.lnk
[2010/09/04 14:00:00 | 000,000,502 | ---- | M] () -- C:\WINDOWS\tasks\Tune-up Application Start.job
[2010/08/31 09:30:41 | 001,154,631 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/30 13:54:49 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 12:23:04 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/30 11:00:21 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
[2010/08/30 10:55:32 | 000,003,082 | ---- | M] () -- C:\WINDOWS\System32\affv11300p1now.sys
[2010/08/19 19:52:55 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Palm Desktop.lnk
[2010/08/19 19:52:17 | 000,000,494 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to log.lnk
[2010/08/19 17:42:29 | 000,000,452 | ---- | M] () -- C:\WINDOWS\tasks\EasyShare Registration Task.job
[2010/08/13 09:55:36 | 000,118,152 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/13 09:45:44 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/08/13 09:42:52 | 000,492,378 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/08/13 09:42:52 | 000,434,838 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/08/13 09:42:52 | 000,068,828 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/07/28 11:10:05 | 000,039,936 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/07/15 14:55:32 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010/07/15 14:55:04 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/07/15 14:47:22 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010/06/28 21:52:08 | 002,185,544 | -H-- | M] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\IconCache.db
========== Files Created - No Company Name ==========
[2010/09/05 14:16:46 | 000,000,850 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Status Monitor.lnk
[2010/09/05 13:28:57 | 000,000,680 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\Puran Defrag.lnk
[2010/09/05 13:08:25 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\Startup.cpl
[2010/08/30 12:22:57 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/19 19:52:55 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Palm Desktop.lnk
[2010/08/19 19:52:17 | 000,000,494 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to log.lnk
[2009/03/10 16:33:44 | 000,000,242 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini
[2009/03/10 16:33:44 | 000,000,093 | ---- | C] () -- C:\WINDOWS\brpcfx.ini
[2009/03/10 16:33:08 | 000,000,419 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2009/03/10 16:33:08 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2009/03/10 16:15:04 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\BrMuSNMP.dll
[2009/03/10 16:15:03 | 000,000,086 | ---- | C] () -- C:\WINDOWS\Brfaxrx.ini
[2009/03/10 16:11:39 | 000,031,567 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2007/12/31 20:41:30 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/12/20 10:14:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2006/10/31 13:07:48 | 000,031,223 | ---- | C] () -- C:\Program Files\nv4_disp.cat
[2006/10/22 13:22:00 | 005,133,510 | ---- | C] () -- C:\Program Files\NvCpl.dl_
[2006/10/22 13:22:00 | 004,885,354 | ---- | C] () -- C:\Program Files\data1.cab
[2006/10/22 13:22:00 | 004,823,557 | ---- | C] () -- C:\Program Files\nvDispS.dl_
[2006/10/22 13:22:00 | 003,139,676 | ---- | C] () -- C:\Program Files\nvDispSR.dl_
[2006/10/22 13:22:00 | 002,859,776 | ---- | C] () -- C:\Program Files\nvoglnt.dl_
[2006/10/22 13:22:00 | 002,539,985 | ---- | C] () -- C:\Program Files\nvViTvS.dl_
[2006/10/22 13:22:00 | 002,485,711 | ---- | C] () -- C:\Program Files\nv4_disp.dl_
[2006/10/22 13:22:00 | 002,208,186 | ---- | C] () -- C:\Program Files\nvViTvSR.dl_
[2006/10/22 13:22:00 | 002,167,877 | ---- | C] () -- C:\Program Files\nv4_mini.sy_
[2006/10/22 13:22:00 | 002,051,692 | ---- | C] () -- C:\Program Files\nvGameS.dl_
[2006/10/22 13:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/10/22 13:22:00 | 001,621,828 | ---- | C] () -- C:\Program Files\nvMoblSR.dl_
[2006/10/22 13:22:00 | 001,096,583 | ---- | C] () -- C:\Program Files\nvGameSR.dl_
[2006/10/22 13:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/10/22 13:22:00 | 000,886,722 | ---- | C] () -- C:\Program Files\nvwss.dl_
[2006/10/22 13:22:00 | 000,862,685 | ---- | C] () -- C:\Program Files\nvwdmcpl.dl_
[2006/10/22 13:22:00 | 000,751,259 | ---- | C] () -- C:\Program Files\nvwssr.dl_
[2006/10/22 13:22:00 | 000,667,613 | ---- | C] () -- C:\Program Files\nwiz.ex_
[2006/10/22 13:22:00 | 000,652,962 | ---- | C] () -- C:\Program Files\nview.dl_
[2006/10/22 13:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/10/22 13:22:00 | 000,574,838 | ---- | C] () -- C:\Program Files\nvMoblS.dl_
[2006/10/22 13:22:00 | 000,468,519 | ---- | C] () -- C:\Program Files\nvdspsch.ex_
[2006/10/22 13:22:00 | 000,459,544 | ---- | C] () -- C:\Program Files\engine32.cab
[2006/10/22 13:22:00 | 000,435,969 | ---- | C] () -- C:\Program Files\setup.ibt
[2006/10/22 13:22:00 | 000,431,959 | ---- | C] () -- C:\Program Files\nvcplui.ex_
[2006/10/22 13:22:00 | 000,336,370 | ---- | C] () -- C:\Program Files\nvwimg.dl_
[2006/10/22 13:22:00 | 000,321,411 | ---- | C] () -- C:\Program Files\nvcpluir.dl_
[2006/10/22 13:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/10/22 13:22:00 | 000,242,577 | ---- | C] () -- C:\Program Files\setup.inx
[2006/10/22 13:22:00 | 000,216,623 | ---- | C] () -- C:\Program Files\keystone.ex_
[2006/10/22 13:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006/10/22 13:22:00 | 000,204,593 | ---- | C] () -- C:\Program Files\nvappbar.ex_
[2006/10/22 13:22:00 | 000,199,911 | ---- | C] () -- C:\Program Files\nvshell.dl_
[2006/10/22 13:22:00 | 000,182,371 | ---- | C] () -- C:\Program Files\nvdsp.chm
[2006/10/22 13:22:00 | 000,176,756 | ---- | C] () -- C:\Program Files\setup.bmp
[2006/10/22 13:22:00 | 000,169,728 | ---- | C] () -- C:\Program Files\nvMccsSR.dl_
[2006/10/22 13:22:00 | 000,164,086 | ---- | C] () -- C:\Program Files\nvmccs.dl_
[2006/10/22 13:22:00 | 000,155,855 | ---- | C] () -- C:\Program Files\nvnt4cpl.dl_
[2006/10/22 13:22:00 | 000,154,401 | ---- | C] () -- C:\Program Files\NVCPL.HL_
[2006/10/22 13:22:00 | 000,153,971 | ---- | C] () -- C:\Program Files\nvexpbar.dl_
[2006/10/22 13:22:00 | 000,153,965 | ---- | C] () -- C:\Program Files\nvhwvid.dl_
[2006/10/22 13:22:00 | 000,104,248 | ---- | C] () -- C:\Program Files\nvcpl.chm
[2006/10/22 13:22:00 | 000,103,617 | ---- | C] () -- C:\Program Files\nvMccsS.dl_
[2006/10/22 13:22:00 | 000,099,664 | ---- | C] () -- C:\Program Files\nv3d.chm
[2006/10/22 13:22:00 | 000,097,305 | ---- | C] () -- C:\Program Files\nvapi.dl_
[2006/10/22 13:22:00 | 000,088,224 | ---- | C] () -- C:\Program Files\nvsvc32.ex_
[2006/10/22 13:22:00 | 000,086,259 | ---- | C] () -- C:\Program Files\NvColor.ex_
[2006/10/22 13:22:00 | 000,080,697 | ---- | C] () -- C:\Program Files\NVEPClnt.ex_
[2006/10/22 13:22:00 | 000,068,593 | ---- | C] () -- C:\Program Files\setup.skin
[2006/10/22 13:22:00 | 000,067,085 | ---- | C] () -- C:\Program Files\modes.txt
[2006/10/22 13:22:00 | 000,054,878 | ---- | C] () -- C:\Program Files\nvmob.chm
[2006/10/22 13:22:00 | 000,052,430 | ---- | C] () -- C:\Program Files\nv4_disp.inf
[2006/10/22 13:22:00 | 000,048,481 | ---- | C] () -- C:\Program Files\nvwddi.dl_
[2006/10/22 13:22:00 | 000,044,126 | ---- | C] () -- C:\Program Files\NvMCTray.dl_
[2006/10/22 13:22:00 | 000,037,427 | ---- | C] () -- C:\Program Files\nvcpl.cp_
[2006/10/22 13:22:00 | 000,037,359 | ---- | C] () -- C:\Program Files\nvwcplen.hl_
[2006/10/22 13:22:00 | 000,035,229 | ---- | C] () -- C:\Program Files\nvtuicpl.cp_
[2006/10/22 13:22:00 | 000,029,080 | ---- | C] () -- C:\Program Files\data1.hdr
[2006/10/22 13:22:00 | 000,023,552 | ---- | C] () -- C:\Program Files\nvcod.dl_
[2006/10/22 13:22:00 | 000,020,320 | ---- | C] () -- C:\Program Files\NvApps.xm_
[2006/10/22 13:22:00 | 000,017,056 | ---- | C] () -- C:\Program Files\NVDisp.nvu
[2006/10/22 13:22:00 | 000,010,405 | ---- | C] () -- C:\Program Files\NvwsApps.xm_
[2006/10/22 13:22:00 | 000,010,222 | ---- | C] () -- C:\Program Files\default.tv_
[2006/10/22 13:22:00 | 000,009,111 | ---- | C] () -- C:\Program Files\nvmccsrs.dl_
[2006/10/22 13:22:00 | 000,006,144 | ---- | C] () -- C:\Program Files\Finance.tv_
[2006/10/22 13:22:00 | 000,006,101 | ---- | C] () -- C:\Program Files\Advanced.tv_
[2006/10/22 13:22:00 | 000,005,857 | ---- | C] () -- C:\Program Files\DCC.tv_
[2006/10/22 13:22:00 | 000,005,661 | ---- | C] () -- C:\Program Files\CAD.tv_
[2006/10/22 13:22:00 | 000,000,862 | ---- | C] () -- C:\Program Files\setup.ini
[2006/10/22 13:22:00 | 000,000,512 | ---- | C] () -- C:\Program Files\data2.cab
[2006/10/22 13:22:00 | 000,000,510 | ---- | C] () -- C:\Program Files\layout.bin
[2006/10/22 13:22:00 | 000,000,431 | ---- | C] () -- C:\Program Files\setup.iss
[2006/10/10 17:24:37 | 032,923,352 | ---- | C] () -- C:\Program Files\avg75f_425a814.exe
[2006/08/31 16:06:21 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2006/07/21 21:56:05 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\imageCache.db
[2006/02/19 12:40:26 | 000,001,388 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\ViewerApp.dat
[2006/02/19 12:25:36 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2005/10/16 15:35:20 | 000,000,236 | ---- | C] () -- C:\WINDOWS\cdgrabber.ini
[2005/10/16 14:29:08 | 000,000,370 | ---- | C] () -- C:\WINDOWS\CDToMP3WAVMaker.ini
[2005/10/16 14:21:45 | 000,003,082 | ---- | C] () -- C:\WINDOWS\System32\affv11300p1now.sys
[2005/02/13 19:19:02 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu2.sys
[2005/02/13 19:19:01 | 000,001,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys
[2005/02/13 19:17:13 | 000,000,195 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2004/11/28 19:29:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QUICKI~1.INI
[2004/11/07 13:08:57 | 000,007,812 | ---- | C] () -- C:\WINDOWS\System32\visorusb.dll
[2004/09/19 18:03:19 | 000,000,214 | ---- | C] () -- C:\WINDOWS\raccalbk.ini
[2004/09/17 18:37:42 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll
[2004/07/03 15:42:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2004/07/03 15:37:07 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\CNMVS56.DLL
[2004/06/27 11:32:32 | 000,044,402 | ---- | C] () -- C:\WINDOWS\cdPlayer.ini
[2004/06/06 11:40:28 | 000,039,936 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/05/31 14:34:21 | 000,000,477 | ---- | C] () -- C:\WINDOWS\VTruck6.ini
[2004/05/31 14:32:36 | 000,000,419 | ---- | C] () -- C:\WINDOWS\VTruck5.ini
[2004/05/31 14:29:21 | 000,000,370 | ---- | C] () -- C:\WINDOWS\VTruck4.ini
[2004/05/31 14:09:57 | 000,000,390 | ---- | C] () -- C:\WINDOWS\VTruck3.ini
[2004/05/31 14:02:48 | 000,000,394 | ---- | C] () -- C:\WINDOWS\VTruck2.ini
[2004/05/31 13:58:33 | 000,000,513 | ---- | C] () -- C:\WINDOWS\VTruck1.ini
[2004/05/30 12:49:30 | 000,000,160 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004/05/30 12:49:30 | 000,000,022 | ---- | C] () -- C:\WINDOWS\exchng.ini
[2004/05/30 09:46:08 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004/05/29 21:02:20 | 000,012,327 | ---- | C] () -- C:\WINDOWS\IOS.INI
[2004/05/29 21:02:20 | 000,007,885 | ---- | C] () -- C:\WINDOWS\NETDET.INI
[2004/05/29 21:02:20 | 000,005,068 | ---- | C] () -- C:\WINDOWS\DELETEFI.INI
[2004/05/29 21:02:20 | 000,003,598 | ---- | C] () -- C:\WINDOWS\HTMLHELP.INI
[2004/05/29 21:02:20 | 000,000,865 | ---- | C] () -- C:\WINDOWS\DOSREP.INI
[2004/05/29 21:02:20 | 000,000,787 | ---- | C] () -- C:\WINDOWS\SCANREG.INI
[2004/05/29 21:02:20 | 000,000,225 | ---- | C] () -- C:\WINDOWS\TELEPHON.INI
[2004/05/29 21:02:20 | 000,000,120 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2004/05/29 21:02:20 | 000,000,060 | ---- | C] () -- C:\WINDOWS\POWERPNT.INI
[2004/05/29 21:02:20 | 000,000,054 | ---- | C] () -- C:\WINDOWS\WAVEMIX.INI
[2004/05/29 21:02:20 | 000,000,028 | ---- | C] () -- C:\WINDOWS\QTW.INI
[2004/05/29 21:02:20 | 000,000,026 | ---- | C] () -- C:\WINDOWS\MSOFFICE.INI
[2004/05/29 21:02:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\progman.ini
[2004/05/29 17:09:34 | 000,011,079 | -H-- | C] () -- C:\Program Files\folder.htt
[2004/05/29 17:03:38 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/08/07 14:01:52 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2003/07/28 14:19:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2003/07/28 14:19:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[1999/04/23 22:22:00 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\MEMBG.DLL
[1999/04/23 22:22:00 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ICMFILTER.DLL
[1996/11/21 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[1996/11/21 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\DOCOBJ.DLL
[1996/11/21 00:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\HLINKPRX.DLL
========== LOP Check ==========
[2009/09/29 17:00:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2009/11/30 16:09:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2009/03/10 16:11:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2009/02/25 18:18:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SITEguard
[2009/02/26 14:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\STOPzilla!
[2009/12/18 18:37:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2004/06/12 21:39:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\InterTrust
[2004/11/26 23:18:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\Leadertech
[2010/08/19 17:42:29 | 000,000,452 | ---- | M] () -- C:\WINDOWS\Tasks\EasyShare Registration Task.job
[2010/09/04 14:00:00 | 000,000,502 | ---- | M] () -- C:\WINDOWS\Tasks\Tune-up Application Start.job
[2010/09/06 15:10:00 | 000,000,258 | ---- | M] () -- C:\WINDOWS\Tasks\Uninstall Expiration Reminder.job
========== Purity Check ==========
< End of report >
OTL logfile created on: 9/6/2010 3:28:53 PM - Run 3
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Documents and Settings\Jim Rodrigues\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: enu | Date Format: M/d/yyyy
255.00 Mb Total Physical Memory | 4.00 Mb Available Physical Memory | 2.00% Memory free
617.00 Mb Paging File | 119.00 Mb Available in Paging File | 19.00% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39.07 Gb Total Space | 7.89 Gb Free Space | 20.20% Space Free | Partition Type: NTFS
Drive D: | 39.07 Gb Total Space | 7.86 Gb Free Space | 20.12% Space Free | Partition Type: NTFS
Drive E: | 33.65 Gb Total Space | 33.55 Gb Free Space | 99.71% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: JIM
Current User Name: Jim Rodrigues
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Minimal
Quick Scan
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
PRC - C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
========== Modules (SafeList) ==========
MOD - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\SYSTEM32\msscript.ocx (Microsoft Corporation)
MOD - C:\Documents and Settings\Jim Rodrigues\Local Settings\Temp\IadHide5.dll (BackWeb)
========== Win32 Services (SafeList) ==========
SRV - (AppMgmt) -- C:\WINDOWS\System32\appmgmts.dll File not found
SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (PuranDefrag) -- C:\WINDOWS\System32\PuranDefragS.exe (Puran Software)
========== Driver Services (SafeList) ==========
DRV - (MRESP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS File not found
DRV - (MREMP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS File not found
DRV - (AvgTdiX) -- C:\WINDOWS\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgLdx86) -- C:\WINDOWS\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgMfx86) -- C:\WINDOWS\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (NuidFltr) -- C:\WINDOWS\SYSTEM32\DRIVERS\nuidfltr.sys (Microsoft Corporation)
DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (gameenum) -- C:\WINDOWS\SYSTEM32\DRIVERS\gameenum.sys (Microsoft Corporation)
DRV - (UsbDiag) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\WINDOWS\SYSTEM32\DRIVERS\lgusbbus.sys (LG Electronics Inc.)
DRV - (BrSerIf) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrSerIf.sys (Brother Industries Ltd.)
DRV - (nv) -- C:\WINDOWS\SYSTEM32\DRIVERS\nv4_mini.sys (NVIDIA Corporation)
DRV - (Cdralw2k) -- C:\WINDOWS\System32\drivers\cdralw2k.sys (Sonic Solutions)
DRV - (Cdr4_xp) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys (Sonic Solutions)
DRV - (BrUsbSer) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrScnUsb) -- C:\WINDOWS\SYSTEM32\DRIVERS\BrScnUsb.sys (Brother Industries Ltd.)
DRV - (PalmUSBD) -- C:\WINDOWS\SYSTEM32\DRIVERS\PalmUSBD.sys (Palm, Inc.)
DRV - (P2k) -- C:\WINDOWS\SYSTEM32\DRIVERS\P2k.sys (Motorola Inc)
DRV - (cdrbsdrv) -- C:\WINDOWS\System32\drivers\CDRBSDRV.SYS (B.H.A Corporation)
DRV - (CDRPDACC) Quinnware CDDA Driver (by InfinaDyne) -- C:\Program Files\Quintessential Player\cdrpdacc.sys (Arrowkey)
DRV - (DVDVRRdr_xp) -- C:\WINDOWS\System32\drivers\DVDVRRdr_xp.sys (Roxio)
DRV - (WmHidLo) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmHidLo.sys (Logitech Inc.)
DRV - (WmFilter) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmFilter.sys (Logitech Inc.)
DRV - (WmBEnum) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmBEnum.sys (Logitech Inc.)
DRV - (WmVirHid) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmVirHid.sys (Logitech Inc.)
DRV - (WmXlCore) -- C:\WINDOWS\SYSTEM32\DRIVERS\WmXlCore.sys (Logitech Inc.)
DRV - (es1371) Creative AudioPCI (ES1371,ES1373) (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\es1371mp.sys (Creative Technology Ltd.)
DRV - (papyjoy) -- C:\WINDOWS\system32\drivers\papyjoy.sys ()
DRV - (papycpu2) -- C:\WINDOWS\system32\drivers\papycpu2.sys ()
DRV - (cdrbsvsd) -- C:\WINDOWS\System32\drivers\cdrbsvsd.sys (B.H.A Co.,Ltd.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.harley-da...sp?locale=en_US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.msn.com"
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/07/20 09:11:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2009/11/30 16:09:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/03/17 15:48:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0\Extensions\\Components: C:\Program Files\Mozilla Firefox\Components [2010/03/17 15:47:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0\Extensions\\Plugins: C:\Program Files\Mozilla Firefox\Plugins [2010/06/02 16:28:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0.4\Extensions\\Components: C:\Program Files\Mozilla Firefox\Components [2010/03/17 15:47:36 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 1.0.4\Extensions\\Plugins: C:\Program Files\Mozilla Firefox\Plugins [2010/06/02 16:28:09 | 000,000,000 | ---D | M]
[2004/11/29 14:50:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\Mozilla\Firefox\Profiles\ifb0y3fa.default\extensions
[2004/11/29 14:50:05 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Documents and Settings\Jim Rodrigues\Application Data\Mozilla\Firefox\Profiles\ifb0y3fa.default\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010/07/31 11:45:12 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/06/02 16:28:15 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/07/31 11:45:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2005/05/12 13:22:51 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions
[2005/05/12 13:22:51 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2005/05/11 13:28:00 | 000,094,208 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\BrandRes.dll
[2005/05/11 13:28:00 | 000,150,912 | ---- | M] (Full Circle Software, Inc.) -- C:\Program Files\Mozilla Firefox\components\fullsoft.dll
[2005/05/11 13:28:00 | 000,041,573 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jar50.dll
[2005/05/11 13:28:00 | 000,048,223 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jsd3250.dll
[2005/05/11 13:28:00 | 000,008,813 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\qfaservices.dll
[2005/05/11 13:28:00 | 000,159,335 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\xpinstal.dll
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2005/05/11 13:28:00 | 000,000,680 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.png
[2005/05/11 13:28:00 | 000,000,735 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.src
[2005/05/11 13:28:00 | 000,000,356 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.png
[2005/05/11 13:28:00 | 000,000,976 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.src
[2005/05/11 13:28:00 | 000,000,557 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dictionary.png
[2005/05/11 13:28:00 | 000,000,692 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\dictionary.src
[2005/05/11 13:28:00 | 000,000,210 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.gif
[2005/05/11 13:28:00 | 000,001,064 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.src
[2005/05/11 13:28:00 | 000,001,076 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.gif
[2006/04/05 16:56:02 | 000,000,706 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.src
[2005/05/11 13:28:00 | 000,000,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.gif
[2005/05/11 13:28:00 | 000,001,098 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.src
O1 HOSTS File: ([2010/09/06 15:15:52 | 000,000,098 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - SITEguard - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnceEx: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\KODAK Software Updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Status Monitor.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} http://v4.windowsupd...38136.914212963 (Reg Error: Key error.)
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} http://www.crucial.c.../cpcScanner.cab (Crucial cpcScan)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\SYSTEM\dajava.cab (Reg Error: Key error.)
O16 - DPF: Internet Explorer Classes for Java file://C:\WINDOWS\SYSTEM\iejava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.238.64.12 68.238.128.12
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop WallPaper: C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/02/19 12:30:29 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 90 Days ==========
[2010/09/05 13:28:54 | 001,110,016 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranFD.exe
[2010/09/05 13:28:54 | 000,229,376 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefragS.exe
[2010/09/05 13:28:54 | 000,221,184 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDC.exe
[2010/09/05 13:28:54 | 000,212,992 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefrag.dll
[2010/09/05 13:28:54 | 000,107,008 | ---- | C] (Puran Software) -- C:\WINDOWS\System32\PuranDefragBT.exe
[2010/09/05 13:28:53 | 000,000,000 | ---D | C] -- C:\Program Files\Puran Defrag
[2010/09/05 12:43:14 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/08/31 09:30:33 | 001,154,631 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/30 13:54:47 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 11:33:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jim Rodrigues\Desktop\8-30-2010
[2010/08/30 11:00:20 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
[2010/07/15 14:55:04 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2006/10/22 13:22:00 | 000,208,896 | ---- | C] (NVIDIA Corporation) -- C:\Program Files\nvudisp.exe
[2005/10/16 16:44:05 | 005,581,144 | ---- | C] (SmartSoft ) -- C:\Program Files\smart-audio-converter-setup.exe
========== Files - Modified Within 90 Days ==========
[2010/09/06 15:36:32 | 000,909,769 | ---- | M] () -- C:\logfile
[2010/09/06 15:25:47 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/09/06 15:25:24 | 000,013,746 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/09/06 15:24:32 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/09/06 15:24:19 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-448539723-1425521274-839522115-1004.job
[2010/09/06 15:24:15 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010/09/06 15:23:53 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/09/06 15:23:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/09/06 15:23:38 | 267,968,512 | -HS- | M] () -- C:\hiberfil.sys
[2010/09/06 15:22:23 | 014,942,208 | -H-- | M] () -- C:\Documents and Settings\Jim Rodrigues\NTUSER.DAT
[2010/09/06 15:22:23 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Jim Rodrigues\ntuser.ini
[2010/09/06 15:15:52 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2010/09/06 15:14:03 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010/09/06 15:10:00 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Uninstall Expiration Reminder.job
[2010/09/06 11:17:34 | 064,355,736 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/09/05 23:17:09 | 000,000,850 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Status Monitor.lnk
[2010/09/05 23:14:44 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-448539723-1425521274-839522115-1004.job
[2010/09/05 13:28:57 | 000,000,680 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\Puran Defrag.lnk
[2010/09/04 14:00:00 | 000,000,502 | ---- | M] () -- C:\WINDOWS\tasks\Tune-up Application Start.job
[2010/08/31 09:30:41 | 001,154,631 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Jim Rodrigues\Desktop\mbam-setup.exe
[2010/08/30 13:54:49 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe
[2010/08/30 12:23:04 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/30 11:00:21 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Rodrigues\Desktop\TFC.exe
[2010/08/30 10:55:32 | 000,003,082 | ---- | M] () -- C:\WINDOWS\System32\affv11300p1now.sys
[2010/08/19 19:52:55 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Palm Desktop.lnk
[2010/08/19 19:52:17 | 000,000,494 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to log.lnk
[2010/08/19 17:42:29 | 000,000,452 | ---- | M] () -- C:\WINDOWS\tasks\EasyShare Registration Task.job
[2010/08/13 09:55:36 | 000,118,152 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/13 09:45:44 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/08/13 09:42:52 | 000,492,378 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/08/13 09:42:52 | 000,434,838 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/08/13 09:42:52 | 000,068,828 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/07/28 11:10:05 | 000,039,936 | ---- | M] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/07/15 14:55:32 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010/07/15 14:55:04 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/07/15 14:47:22 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010/06/28 21:52:08 | 002,185,544 | -H-- | M] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\IconCache.db
========== Files Created - No Company Name ==========
[2010/09/05 14:16:46 | 000,000,850 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Status Monitor.lnk
[2010/09/05 13:28:57 | 000,000,680 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\Puran Defrag.lnk
[2010/09/05 13:08:25 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\Startup.cpl
[2010/08/30 12:22:57 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Desktop\gmer.exe
[2010/08/19 19:52:55 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Palm Desktop.lnk
[2010/08/19 19:52:17 | 000,000,494 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to log.lnk
[2009/03/10 16:33:44 | 000,000,242 | ---- | C] () -- C:\WINDOWS\Brpfx04a.ini
[2009/03/10 16:33:44 | 000,000,093 | ---- | C] () -- C:\WINDOWS\brpcfx.ini
[2009/03/10 16:33:08 | 000,000,419 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2009/03/10 16:33:08 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2009/03/10 16:15:04 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\BrMuSNMP.dll
[2009/03/10 16:15:03 | 000,000,086 | ---- | C] () -- C:\WINDOWS\Brfaxrx.ini
[2009/03/10 16:11:39 | 000,031,567 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2007/12/31 20:41:30 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/12/20 10:14:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2006/10/31 13:07:48 | 000,031,223 | ---- | C] () -- C:\Program Files\nv4_disp.cat
[2006/10/22 13:22:00 | 005,133,510 | ---- | C] () -- C:\Program Files\NvCpl.dl_
[2006/10/22 13:22:00 | 004,885,354 | ---- | C] () -- C:\Program Files\data1.cab
[2006/10/22 13:22:00 | 004,823,557 | ---- | C] () -- C:\Program Files\nvDispS.dl_
[2006/10/22 13:22:00 | 003,139,676 | ---- | C] () -- C:\Program Files\nvDispSR.dl_
[2006/10/22 13:22:00 | 002,859,776 | ---- | C] () -- C:\Program Files\nvoglnt.dl_
[2006/10/22 13:22:00 | 002,539,985 | ---- | C] () -- C:\Program Files\nvViTvS.dl_
[2006/10/22 13:22:00 | 002,485,711 | ---- | C] () -- C:\Program Files\nv4_disp.dl_
[2006/10/22 13:22:00 | 002,208,186 | ---- | C] () -- C:\Program Files\nvViTvSR.dl_
[2006/10/22 13:22:00 | 002,167,877 | ---- | C] () -- C:\Program Files\nv4_mini.sy_
[2006/10/22 13:22:00 | 002,051,692 | ---- | C] () -- C:\Program Files\nvGameS.dl_
[2006/10/22 13:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/10/22 13:22:00 | 001,621,828 | ---- | C] () -- C:\Program Files\nvMoblSR.dl_
[2006/10/22 13:22:00 | 001,096,583 | ---- | C] () -- C:\Program Files\nvGameSR.dl_
[2006/10/22 13:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/10/22 13:22:00 | 000,886,722 | ---- | C] () -- C:\Program Files\nvwss.dl_
[2006/10/22 13:22:00 | 000,862,685 | ---- | C] () -- C:\Program Files\nvwdmcpl.dl_
[2006/10/22 13:22:00 | 000,751,259 | ---- | C] () -- C:\Program Files\nvwssr.dl_
[2006/10/22 13:22:00 | 000,667,613 | ---- | C] () -- C:\Program Files\nwiz.ex_
[2006/10/22 13:22:00 | 000,652,962 | ---- | C] () -- C:\Program Files\nview.dl_
[2006/10/22 13:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/10/22 13:22:00 | 000,574,838 | ---- | C] () -- C:\Program Files\nvMoblS.dl_
[2006/10/22 13:22:00 | 000,468,519 | ---- | C] () -- C:\Program Files\nvdspsch.ex_
[2006/10/22 13:22:00 | 000,459,544 | ---- | C] () -- C:\Program Files\engine32.cab
[2006/10/22 13:22:00 | 000,435,969 | ---- | C] () -- C:\Program Files\setup.ibt
[2006/10/22 13:22:00 | 000,431,959 | ---- | C] () -- C:\Program Files\nvcplui.ex_
[2006/10/22 13:22:00 | 000,336,370 | ---- | C] () -- C:\Program Files\nvwimg.dl_
[2006/10/22 13:22:00 | 000,321,411 | ---- | C] () -- C:\Program Files\nvcpluir.dl_
[2006/10/22 13:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/10/22 13:22:00 | 000,242,577 | ---- | C] () -- C:\Program Files\setup.inx
[2006/10/22 13:22:00 | 000,216,623 | ---- | C] () -- C:\Program Files\keystone.ex_
[2006/10/22 13:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006/10/22 13:22:00 | 000,204,593 | ---- | C] () -- C:\Program Files\nvappbar.ex_
[2006/10/22 13:22:00 | 000,199,911 | ---- | C] () -- C:\Program Files\nvshell.dl_
[2006/10/22 13:22:00 | 000,182,371 | ---- | C] () -- C:\Program Files\nvdsp.chm
[2006/10/22 13:22:00 | 000,176,756 | ---- | C] () -- C:\Program Files\setup.bmp
[2006/10/22 13:22:00 | 000,169,728 | ---- | C] () -- C:\Program Files\nvMccsSR.dl_
[2006/10/22 13:22:00 | 000,164,086 | ---- | C] () -- C:\Program Files\nvmccs.dl_
[2006/10/22 13:22:00 | 000,155,855 | ---- | C] () -- C:\Program Files\nvnt4cpl.dl_
[2006/10/22 13:22:00 | 000,154,401 | ---- | C] () -- C:\Program Files\NVCPL.HL_
[2006/10/22 13:22:00 | 000,153,971 | ---- | C] () -- C:\Program Files\nvexpbar.dl_
[2006/10/22 13:22:00 | 000,153,965 | ---- | C] () -- C:\Program Files\nvhwvid.dl_
[2006/10/22 13:22:00 | 000,104,248 | ---- | C] () -- C:\Program Files\nvcpl.chm
[2006/10/22 13:22:00 | 000,103,617 | ---- | C] () -- C:\Program Files\nvMccsS.dl_
[2006/10/22 13:22:00 | 000,099,664 | ---- | C] () -- C:\Program Files\nv3d.chm
[2006/10/22 13:22:00 | 000,097,305 | ---- | C] () -- C:\Program Files\nvapi.dl_
[2006/10/22 13:22:00 | 000,088,224 | ---- | C] () -- C:\Program Files\nvsvc32.ex_
[2006/10/22 13:22:00 | 000,086,259 | ---- | C] () -- C:\Program Files\NvColor.ex_
[2006/10/22 13:22:00 | 000,080,697 | ---- | C] () -- C:\Program Files\NVEPClnt.ex_
[2006/10/22 13:22:00 | 000,068,593 | ---- | C] () -- C:\Program Files\setup.skin
[2006/10/22 13:22:00 | 000,067,085 | ---- | C] () -- C:\Program Files\modes.txt
[2006/10/22 13:22:00 | 000,054,878 | ---- | C] () -- C:\Program Files\nvmob.chm
[2006/10/22 13:22:00 | 000,052,430 | ---- | C] () -- C:\Program Files\nv4_disp.inf
[2006/10/22 13:22:00 | 000,048,481 | ---- | C] () -- C:\Program Files\nvwddi.dl_
[2006/10/22 13:22:00 | 000,044,126 | ---- | C] () -- C:\Program Files\NvMCTray.dl_
[2006/10/22 13:22:00 | 000,037,427 | ---- | C] () -- C:\Program Files\nvcpl.cp_
[2006/10/22 13:22:00 | 000,037,359 | ---- | C] () -- C:\Program Files\nvwcplen.hl_
[2006/10/22 13:22:00 | 000,035,229 | ---- | C] () -- C:\Program Files\nvtuicpl.cp_
[2006/10/22 13:22:00 | 000,029,080 | ---- | C] () -- C:\Program Files\data1.hdr
[2006/10/22 13:22:00 | 000,023,552 | ---- | C] () -- C:\Program Files\nvcod.dl_
[2006/10/22 13:22:00 | 000,020,320 | ---- | C] () -- C:\Program Files\NvApps.xm_
[2006/10/22 13:22:00 | 000,017,056 | ---- | C] () -- C:\Program Files\NVDisp.nvu
[2006/10/22 13:22:00 | 000,010,405 | ---- | C] () -- C:\Program Files\NvwsApps.xm_
[2006/10/22 13:22:00 | 000,010,222 | ---- | C] () -- C:\Program Files\default.tv_
[2006/10/22 13:22:00 | 000,009,111 | ---- | C] () -- C:\Program Files\nvmccsrs.dl_
[2006/10/22 13:22:00 | 000,006,144 | ---- | C] () -- C:\Program Files\Finance.tv_
[2006/10/22 13:22:00 | 000,006,101 | ---- | C] () -- C:\Program Files\Advanced.tv_
[2006/10/22 13:22:00 | 000,005,857 | ---- | C] () -- C:\Program Files\DCC.tv_
[2006/10/22 13:22:00 | 000,005,661 | ---- | C] () -- C:\Program Files\CAD.tv_
[2006/10/22 13:22:00 | 000,000,862 | ---- | C] () -- C:\Program Files\setup.ini
[2006/10/22 13:22:00 | 000,000,512 | ---- | C] () -- C:\Program Files\data2.cab
[2006/10/22 13:22:00 | 000,000,510 | ---- | C] () -- C:\Program Files\layout.bin
[2006/10/22 13:22:00 | 000,000,431 | ---- | C] () -- C:\Program Files\setup.iss
[2006/10/10 17:24:37 | 032,923,352 | ---- | C] () -- C:\Program Files\avg75f_425a814.exe
[2006/08/31 16:06:21 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2006/07/21 21:56:05 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\imageCache.db
[2006/02/19 12:40:26 | 000,001,388 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Application Data\ViewerApp.dat
[2006/02/19 12:25:36 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2005/10/16 15:35:20 | 000,000,236 | ---- | C] () -- C:\WINDOWS\cdgrabber.ini
[2005/10/16 14:29:08 | 000,000,370 | ---- | C] () -- C:\WINDOWS\CDToMP3WAVMaker.ini
[2005/10/16 14:21:45 | 000,003,082 | ---- | C] () -- C:\WINDOWS\System32\affv11300p1now.sys
[2005/02/13 19:19:02 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu2.sys
[2005/02/13 19:19:01 | 000,001,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys
[2005/02/13 19:17:13 | 000,000,195 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2004/11/28 19:29:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QUICKI~1.INI
[2004/11/07 13:08:57 | 000,007,812 | ---- | C] () -- C:\WINDOWS\System32\visorusb.dll
[2004/09/19 18:03:19 | 000,000,214 | ---- | C] () -- C:\WINDOWS\raccalbk.ini
[2004/09/17 18:37:42 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll
[2004/07/03 15:42:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2004/07/03 15:37:07 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\CNMVS56.DLL
[2004/06/27 11:32:32 | 000,044,402 | ---- | C] () -- C:\WINDOWS\cdPlayer.ini
[2004/06/06 11:40:28 | 000,039,936 | ---- | C] () -- C:\Documents and Settings\Jim Rodrigues\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/05/31 14:34:21 | 000,000,477 | ---- | C] () -- C:\WINDOWS\VTruck6.ini
[2004/05/31 14:32:36 | 000,000,419 | ---- | C] () -- C:\WINDOWS\VTruck5.ini
[2004/05/31 14:29:21 | 000,000,370 | ---- | C] () -- C:\WINDOWS\VTruck4.ini
[2004/05/31 14:09:57 | 000,000,390 | ---- | C] () -- C:\WINDOWS\VTruck3.ini
[2004/05/31 14:02:48 | 000,000,394 | ---- | C] () -- C:\WINDOWS\VTruck2.ini
[2004/05/31 13:58:33 | 000,000,513 | ---- | C] () -- C:\WINDOWS\VTruck1.ini
[2004/05/30 12:49:30 | 000,000,160 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004/05/30 12:49:30 | 000,000,022 | ---- | C] () -- C:\WINDOWS\exchng.ini
[2004/05/30 09:46:08 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004/05/29 21:02:20 | 000,012,327 | ---- | C] () -- C:\WINDOWS\IOS.INI
[2004/05/29 21:02:20 | 000,007,885 | ---- | C] () -- C:\WINDOWS\NETDET.INI
[2004/05/29 21:02:20 | 000,005,068 | ---- | C] () -- C:\WINDOWS\DELETEFI.INI
[2004/05/29 21:02:20 | 000,003,598 | ---- | C] () -- C:\WINDOWS\HTMLHELP.INI
[2004/05/29 21:02:20 | 000,000,865 | ---- | C] () -- C:\WINDOWS\DOSREP.INI
[2004/05/29 21:02:20 | 000,000,787 | ---- | C] () -- C:\WINDOWS\SCANREG.INI
[2004/05/29 21:02:20 | 000,000,225 | ---- | C] () -- C:\WINDOWS\TELEPHON.INI
[2004/05/29 21:02:20 | 000,000,120 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2004/05/29 21:02:20 | 000,000,060 | ---- | C] () -- C:\WINDOWS\POWERPNT.INI
[2004/05/29 21:02:20 | 000,000,054 | ---- | C] () -- C:\WINDOWS\WAVEMIX.INI
[2004/05/29 21:02:20 | 000,000,028 | ---- | C] () -- C:\WINDOWS\QTW.INI
[2004/05/29 21:02:20 | 000,000,026 | ---- | C] () -- C:\WINDOWS\MSOFFICE.INI
[2004/05/29 21:02:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\progman.ini
[2004/05/29 17:09:34 | 000,011,079 | -H-- | C] () -- C:\Program Files\folder.htt
[2004/05/29 17:03:38 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/08/07 14:01:52 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2003/07/28 14:19:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2003/07/28 14:19:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[1999/04/23 22:22:00 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\MEMBG.DLL
[1999/04/23 22:22:00 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ICMFILTER.DLL
[1996/11/21 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[1996/11/21 00:00:00 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\DOCOBJ.DLL
[1996/11/21 00:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\HLINKPRX.DLL
========== LOP Check ==========
[2009/09/29 17:00:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2009/11/30 16:09:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2009/03/10 16:11:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2009/02/25 18:18:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SITEguard
[2009/02/26 14:42:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\STOPzilla!
[2009/12/18 18:37:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2004/06/12 21:39:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\InterTrust
[2004/11/26 23:18:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Rodrigues\Application Data\Leadertech
[2010/08/19 17:42:29 | 000,000,452 | ---- | M] () -- C:\WINDOWS\Tasks\EasyShare Registration Task.job
[2010/09/04 14:00:00 | 000,000,502 | ---- | M] () -- C:\WINDOWS\Tasks\Tune-up Application Start.job
[2010/09/06 15:10:00 | 000,000,258 | ---- | M] () -- C:\WINDOWS\Tasks\Uninstall Expiration Reminder.job
========== Purity Check ==========
< End of report >
Attached File(s)
-
OTL3.Txt (75.24K)
Number of downloads: 28 -
mbam-log-2010-09-08 (19-37-52).txt (1K)
Number of downloads: 31
#9
- Group: GeekU Moderator
- Posts: 55,570
- Joined: 31-May 06
Posted 09 September 2010 - 11:30 AM
You are now clear of malware - but the only option open to you to increase your speed is to get some more RAM I am afraid
Looking at that I am a happy bunny
I will remove my tools now and give some recommendations, but I would like you to run for 24 hours or so and come back if you have any problems
Now the best part of the day ----- Your log now appears clean
A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset System Restore points:
Run OTL
Run OTL and hit the cleanup button. It will remove all the programmes we have used plus itself. MBAM can be uninstalled via control panel add/remove along with ERUNT. But they may be useful tools to keep
We will now confirm that your hidden files are set to that, as some of the tools I use will change that
SPRING CLEAN
Download and run Puran Disc Defragmenter
Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
It is critical to have both a firewall and anti virus to protect your system and to keep them updated.
To keep your operating system up to date visit
To learn more about how to protect yourself while on the internet read our little guide How did I get infected in the first place ?
Keep safe
Looking at that I am a happy bunny
I will remove my tools now and give some recommendations, but I would like you to run for 24 hours or so and come back if you have any problems
Now the best part of the day ----- Your log now appears clean
A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset System Restore points:
Run OTL
- Under the Custom Scans/Fixes box at the bottom, paste in the following
Quote
:Commands
[resethosts]
[purity]
[emptytemp]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[Reboot]
- Then click the Run Fix button at the top
- Let the program run unhindered, reboot the PC when it is done
Run OTL and hit the cleanup button. It will remove all the programmes we have used plus itself. MBAM can be uninstalled via control panel add/remove along with ERUNT. But they may be useful tools to keep
We will now confirm that your hidden files are set to that, as some of the tools I use will change that
- Click Start.
- Open My Computer.
- Select the Tools menu and click Folder Options.
- Select the View Tab.
- Under the Hidden files and folders heading select Do not show hidden files and folders.
- Click Yes to confirm.
- Click OK.
SPRING CLEAN
Download and run Puran Disc Defragmenter
Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
- SpywareBlaster to help prevent spyware from installing in the first place.
Malwarebytes. Run weekly to keep your system clean
It is critical to have both a firewall and anti virus to protect your system and to keep them updated.
To keep your operating system up to date visit
To learn more about how to protect yourself while on the internet read our little guide How did I get infected in the first place ?
Keep safe
#10
- Group: Member
- Posts: 9
- Joined: 09-December 09
Posted 10 September 2010 - 12:04 PM
Essexboy,
I would like to thank you for your time and effort with my computer issues. Without your expertise, I would have probably had to reformat my hardrive, and start over, or pay someone that I don't know to get rid of whatever the problem was. Been out of work for awhile, so that option was not going to happen for quite awhile. You folks do a great public service for those of us who are not that computer savy. I do have a couple of ?'s...what is 32.00% memory free, 732.00Mb paging file, 176.00Mb available paging file, and 24.00% paging file free...Is this all coming from my RAM,& or hardrive? Again sir, thank you so much for you time & patience, I will take care of the RAM issue, small price to pay... cheers : )
I would like to thank you for your time and effort with my computer issues. Without your expertise, I would have probably had to reformat my hardrive, and start over, or pay someone that I don't know to get rid of whatever the problem was. Been out of work for awhile, so that option was not going to happen for quite awhile. You folks do a great public service for those of us who are not that computer savy. I do have a couple of ?'s...what is 32.00% memory free, 732.00Mb paging file, 176.00Mb available paging file, and 24.00% paging file free...Is this all coming from my RAM,& or hardrive? Again sir, thank you so much for you time & patience, I will take care of the RAM issue, small price to pay... cheers : )
#11
- Group: GeekU Moderator
- Posts: 55,570
- Joined: 31-May 06
Posted 10 September 2010 - 12:25 PM
Quote
I do have a couple of ?'s...what is 32.00% memory free, 732.00Mb paging file, 176.00Mb available paging file, and 24.00% paging file free
The 32% memory free is how much RAM you have left to do all the tasks you wish to run
The paging file is an area of the hard drive where windows puts files if the memory starts to run out, not a very efficient way to do things as hard drive access speeds are a great deal slower than RAM access speeds, consequently your hard drive will be working hard most of the time as programmes are swapped in and out of memory. This is the main cause of your slowdowns and stuttering
Hope that makes sense
#12
- Group: Member
- Posts: 9
- Joined: 09-December 09
Posted 11 September 2010 - 09:59 PM
ok, I think I got that, so if I only have 32% memory left of RAM, where, or what is the rest being used for. Thanks again for your help with my computer.... : )
#13
- Group: GeekU Moderator
- Posts: 55,570
- Joined: 31-May 06
Posted 12 September 2010 - 03:46 AM
Quote
PRC - C:\Documents and Settings\Jim Rodrigues\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
PRC - C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
SRV - (Automatic LiveUpdate Scheduler) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe File not found
SRV - (AppMgmt) -- C:\WINDOWS\System32\appmgmts.dll File not found
SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe (Brother Industries, Ltd.)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
PRC - C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe ()
SRV - (Automatic LiveUpdate Scheduler) -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe File not found
SRV - (AppMgmt) -- C:\WINDOWS\System32\appmgmts.dll File not found
SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
We can clear some of them by doing the following
Download and run the Norton removal tool
THEN DO THIS
Download Startup Control Panel here
Instal and you will find a startup icon in the control panel - run this
- In the HKLM tab, you may disable (be careful --> "disable") all the entries except your security software
- In the HKCU tab, you may disable all entries.
- In the StartUp tab, you may disable all entries.
Note : if you notice that some programs no longer run, you can enable them again by running Startup Control Panel, selecting the entry and choosing Run Now.
If you are in doubt with something, don't hesitate to ask
Finaly consider changing AVG for a lighter antivirus programme
#14
- Group: GeekU Moderator
- Posts: 55,570
- Joined: 31-May 06
Posted 14 September 2010 - 01:53 PM
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.
If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.
Everyone else please begin a New Topic.
If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.
Everyone else please begin a New Topic.
Share this topic:
Page 1 of 1
