Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

trojan agent 2 and generic 19

Started by jasonmflatt , Sep 30 2010 10:11 PM

  • This topic is locked This topic is locked

#16
jasonmflatt
Posted 01 October 2010 - 07:52 AM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
i am on another lap top just trying to find a flash drive
  • 0

Advertisements

#17
jasonmflatt
Posted 01 October 2010 - 09:11 AM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
i have a flash drive and i downloaded the flash drive program and rebooted the other computer. next step?
  • 0

#18
maliprog
Posted 01 October 2010 - 09:37 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi jasonmflatt,

If you have another PC and USB memory then do Step 1 from my post number 13.

After that Download OTL program on clean PC and transfer it on infected PC by USB memory. Please copy OTL from USB memory to desktop and run it as I instructed you in post number 2.

If you don't understand something please ask me.
  • 0

#19
jasonmflatt
Posted 01 October 2010 - 09:44 AM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
how do i paste that stuff into the usb drive.. the text you wanted me to run w otl scan?
  • 0

#20
jasonmflatt
Posted 01 October 2010 - 09:50 AM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
i saved it in note pad and onto usb flash dive i pasted it in otl custom scan space and running scan now
  • 0

#21
maliprog
Posted 01 October 2010 - 09:52 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi jasonmflatt,

Good job :D ! I'm waiting your OTL logs now.
  • 0

#22
jasonmflatt
Posted 01 October 2010 - 10:00 AM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
ok saved ill post in a minute thanks
  • 0

#23
jasonmflatt
Posted 01 October 2010 - 10:03 AM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
OTL Extras logfile created on: 10/1/2010 11:55:31 AM - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = D:\
64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 83.00% Memory free
8.00 Gb Paging File | 8.00 Gb Available in Paging File | 94.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283.40 Gb Total Space | 184.78 Gb Free Space | 65.20% Space Free | Partition Type: NTFS
Drive D: | 1.91 Gb Total Space | 1.91 Gb Free Space | 99.95% Space Free | Partition Type: FAT
Drive E: | 14.65 Gb Total Space | 5.56 Gb Free Space | 37.95% Space Free | Partition Type: NTFS
Drive F: | 4.27 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ANGELOSDAD-PC
Current User Name: angelosdad
Logged in as Administrator.

Current Boot Mode: SafeMode
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" ()
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l ()
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"AutoUpdateDisableNotify" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{E38D3C01-B26B-4ADB-8F4D-9FC5A3437ED5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{E3D3A1E5-E9BA-49C0-83FB-CB8446795B98}" = lport=2869 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{072B34AE-7EBE-4D4D-A916-B3156512C4B1}" = protocol=6 | dir=in | app=c:\program files (x86)\deepinvent\mailstore home\mailstorelocal.exe |
"{1175371C-66A0-4369-B35E-5F9831403675}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\pdvddxsrv.exe |
"{1B747F13-C8C0-437A-9230-6CD7F3718B92}" = dir=in | app=c:\program files (x86)\avg\avg9\avgupd.exe |
"{3E96A7E9-FE94-4C38-A5C9-13D497188A66}" = protocol=17 | dir=in | app=c:\users\angelosdad\appdata\roaming\dropbox\bin\dropbox.exe |
"{428FDAAB-DF1A-415A-A2B1-C0FFFDFDECA5}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{65DA6EB2-DBC6-4E0C-A86D-8E174116C847}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{7AE6119E-6632-4C9A-ACCC-2E9D150CFE3A}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{8E932C38-EC36-4275-8382-C1AA8339AB52}" = dir=in | app=c:\program files (x86)\avg\avg9\avgnsa.exe |
"{90707B70-9FC9-4D89-817D-12C748CCAAD7}" = protocol=6 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{90A18E3F-6FD7-4E14-8AB9-7340C9A5B101}" = protocol=6 | dir=in | app=c:\program files (x86)\dell video chat\dellvideochat.exe |
"{974B24CB-E13D-4CBD-ACFC-26E5AF5066E1}" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{A7705F9E-3782-4138-96ED-EDEE7C730470}" = protocol=17 | dir=in | app=c:\program files (x86)\deepinvent\mailstore home\mailstorelocal.exe |
"{A84D1948-42FE-4F0A-B478-336E67C7E2C0}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{B291ACDB-C7A1-42B3-A282-BAE269808712}" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{BF07B282-B1C7-4637-BD55-4350441815C3}" = dir=in | app=c:\program files (x86)\avg\avg9\avgemc.exe |
"{C131CA74-27AD-47D0-B685-60934A081167}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\powerdvd.exe |
"{CD536EAA-DAC2-49A2-BC18-9199E00D901D}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{D10D1133-B620-4FD9-AF55-18E964C3A973}" = protocol=6 | dir=in | app=c:\users\angelosdad\appdata\roaming\dropbox\bin\dropbox.exe |
"{DD7EB7E2-E317-4960-AC6D-4FA4DE1B217B}" = protocol=17 | dir=in | app=c:\program files (x86)\dell video chat\dellvideochat.exe |
"{E40A3CE7-CC00-427D-940C-7918874DBFFC}" = protocol=17 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"TCP Query User{5A6ADCFB-CBD2-47D3-8D45-F2C5D7271AFE}C:\program files (x86)\yahoo!\messenger\yahoomessenger.exe" = protocol=6 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"TCP Query User{61D33690-A725-4691-900B-AA80752463B7}C:\program files (x86)\dell video chat\dellvideochat.exe" = protocol=6 | dir=in | app=c:\program files (x86)\dell video chat\dellvideochat.exe |
"TCP Query User{EDF5C741-810E-4571-AE07-BAA92C798BFB}C:\users\angelosdad\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\angelosdad\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{48477F57-78EE-4337-A6F4-043FB5A1D2CF}C:\program files (x86)\yahoo!\messenger\yahoomessenger.exe" = protocol=17 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"UDP Query User{5FAD8AF3-8A95-4D18-9052-E6D4B221C231}C:\program files (x86)\dell video chat\dellvideochat.exe" = protocol=17 | dir=in | app=c:\program files (x86)\dell video chat\dellvideochat.exe |
"UDP Query User{B953E818-A559-4064-82F4-F7E575CD73AD}C:\users\angelosdad\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\angelosdad\appdata\local\google\chrome\application\chrome.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{23170F69-40C1-2702-0465-000001000000}" = 7-Zip 4.65 (x64 edition)
"{35C2BB76-B80A-4E3B-A9BE-CF7F23651F33}" = WD SmartWare
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95C9C76F-ECF3-40FA-94F8-5DDFB6BAF40D}" = Microsoft Security Essentials
"{9EFC40E3-5F31-4F75-8445-286273F74D8E}" = Apple Mobile Device Support
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad
"{A5F59952-475D-4DCC-BEAD-C216FC68E05C}" = iTunes
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DAE239CE-EB9D-4EB3-B0D4-528D6BAA48FD}" = Bonjour
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F6CB42B9-F033-4152-8813-FF11DA8E6A78}" = Dell Dock
"Broadcom 802.11 Application" = Dell Wireless WLAN Card Utility
"Creative OA009" = Integrated Webcam Driver (1.00.02.0825)
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{020D8396-D6D9-4B53-A9A1-83C47E2E27AA}" = Windows Live Call
"{053C30EA-D4C6-47A0-8537-8D231D9BE873}" = DELL0703
"{06E6E30D-B498-442F-A943-07DE41D7F785}" = Microsoft Search Enhancement Pack
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data
"{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE
"{0AAA9C97-74D4-47CE-B089-0B147EF3553C}" = Windows Live Messenger
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{171E6C1E-B5FC-11DF-B115-005056C00008}" = Google Earth Plug-in
"{181BC2F9-973B-455C-A479-200FF55A6E41}" = Petfinder Sync
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java™ 6 Update 18
"{2B4C7E1E-E446-4740-ADB5-9842E742EE8A}" = Windows Live Toolbar
"{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{415B2719-AD3A-4944-B404-C472DB6085B3}" = Cisco EAP-FAST Module
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}" = Junk Mail filter update
"{63C1109E-D977-49ED-BCE3-D00D0BF187D6}" = Windows Live Mail
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}" = Cisco PEAP Module
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A92E5C5-0578-443D-91F3-92ECE5F2CAE2}" = Windows Live Writer
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio
"{7456BBA3-642F-4E59-9F89-7639977D7C39}" = Cozi
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{83770D14-21B9-44B3-8689-F7B523F94560}" = Cisco LEAP Module
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{9422C8EA-B0C6-4197-B8FC-DC797658CA00}" = Windows Live Sign-in Assistant
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{9EDE7573-F2B0-4FAC-8928-A7E9381BCB91}" = ArcSoft MediaImpression for Kodak
"{A16B3EA2-8798-4960-8D8B-18D3149AD617}" = OpenOffice.org 3.1
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{AC76BA86-7AD7-5760-0000-900000000003}" = Japanese Fonts Support For Adobe Reader 9
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B607C354-CD79-4D22-86D1-92DC94153F42}" = Apple Application Support
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = Western Digital USB 3.0 Host Controller Driver
"{D9D754A1-EAC5-406C-A28B-C49B1E846711}" = Windows Live Essentials
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F47C37A4-7189-430A-B81D-739FF8A7A554}" = Consumer In-Home Service Agreement
"{F69E83CF-B440-43F8-89E6-6EA80712109B}" = Windows Live Communications Platform
"{F73A5B18-EB75-4B2C-B32D-9457576E2417}" = Windows Live Photo Gallery
"{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}" = Windows Live Sync
"3ivx MPEG-4 5.0.3" = 3ivx MPEG-4 5.0.3 (remove only)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"AVG9Uninstall" = AVG Free 9.0
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Dell Video Chat" = Dell Video Chat
"Dell Webcam Central" = Dell Webcam Central
"InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = Western Digital USB 3.0 Host Controller Driver
"MailStore Home_is1" = MailStore Home 4.0.2.3684
"Mozilla Thunderbird (3.1.4)" = Mozilla Thunderbird (3.1.4)
"Picasa 3" = Picasa 3
"VLC media player" = VLC media player 1.0.3
"WildTangent dell Master Uninstall" = WildTangent Games
"WinLiveSuite_Wave3" = Windows Live Essentials
"Yahoo! Messenger" = Yahoo! Messenger

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"ActiveTouchMeetingClient" = WebEx
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 9/29/2010 2:11:42 PM | Computer Name = angelosdad-PC | Source = Application Error | ID = 1000
Description = Faulting application chrome.exe, version 0.0.0.0, time stamp 0x4c98293e,
faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code
0xc0000005, fault offset 0x02c60005, process id 0x18e0, application start time 0x01cb6001b61f9520.

Error - 9/29/2010 2:41:11 PM | Computer Name = angelosdad-PC | Source = WinMgmt | ID = 10
Description =

Error - 9/29/2010 3:30:00 PM | Computer Name = angelosdad-PC | Source = EventSystem | ID = 4621
Description =

Error - 9/29/2010 3:37:18 PM | Computer Name = angelosdad-PC | Source = EventSystem | ID = 4609
Description =

Error - 9/29/2010 3:37:40 PM | Computer Name = angelosdad-PC | Source = WinMgmt | ID = 10
Description =

Error - 9/29/2010 3:39:05 PM | Computer Name = angelosdad-PC | Source = Application Error | ID = 1000
Description = Faulting application chrome.exe, version 0.0.0.0, time stamp 0x4c98293e,
faulting module chrome.dll, version 6.0.472.63, time stamp 0x4c982907, exception
code 0x80000003, fault offset 0x000c958c, process id 0x670, application start time
0x01cb600df8769f17.

Error - 9/29/2010 3:39:40 PM | Computer Name = angelosdad-PC | Source = Application Error | ID = 1000
Description = Faulting application chrome.exe, version 0.0.0.0, time stamp 0x4c98293e,
faulting module chrome.dll, version 6.0.472.63, time stamp 0x4c982907, exception
code 0x80000003, fault offset 0x000c958c, process id 0x6e4, application start time
0x01cb600e0ebb9c37.

Error - 9/29/2010 3:58:12 PM | Computer Name = angelosdad-PC | Source = WinMgmt | ID = 10
Description =

Error - 9/29/2010 4:17:24 PM | Computer Name = angelosdad-PC | Source = WinMgmt | ID = 10
Description =

Error - 9/29/2010 4:32:18 PM | Computer Name = angelosdad-PC | Source = WinMgmt | ID = 10
Description =

[ Broadcom Wireless LAN Events ]
Error - 9/17/2010 4:44:42 PM | Computer Name = angelosdad-PC | Source = WLAN-Tray | ID = 0
Description = 16:44:42, Fri, Sep 17, 10 Error - Unable to gain access to user store


Error - 9/29/2010 5:06:24 PM | Computer Name = angelosdad-PC | Source = WLAN-Tray | ID = 0
Description = 17:06:24, Wed, Sep 29, 10 Error - Unable to gain access to user store


Error - 10/1/2010 7:41:07 AM | Computer Name = angelosdad-PC | Source = WLAN-Tray | ID = 0
Description = 07:41:07, Fri, Oct 01, 10 Error - Unable to gain access to user store


[ System Events ]
Error - 10/1/2010 11:27:57 AM | Computer Name = angelosdad-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 10/1/2010 11:27:57 AM | Computer Name = angelosdad-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 10/1/2010 11:27:57 AM | Computer Name = angelosdad-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 10/1/2010 11:27:57 AM | Computer Name = angelosdad-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 10/1/2010 11:27:57 AM | Computer Name = angelosdad-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 10/1/2010 11:27:57 AM | Computer Name = angelosdad-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 10/1/2010 11:28:23 AM | Computer Name = angelosdad-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 10/1/2010 11:28:23 AM | Computer Name = angelosdad-PC | Source = DCOM | ID = 10005
Description =

Error - 10/1/2010 11:28:24 AM | Computer Name = angelosdad-PC | Source = Service Control Manager | ID = 7001
Description =

Error - 10/1/2010 11:28:24 AM | Computer Name = angelosdad-PC | Source = DCOM | ID = 10005
Description =


< End of report >
  • 0

#24
jasonmflatt
Posted 01 October 2010 - 10:04 AM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
OTL logfile created on: 10/1/2010 11:55:31 AM - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = D:\
64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 83.00% Memory free
8.00 Gb Paging File | 8.00 Gb Available in Paging File | 94.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283.40 Gb Total Space | 184.78 Gb Free Space | 65.20% Space Free | Partition Type: NTFS
Drive D: | 1.91 Gb Total Space | 1.91 Gb Free Space | 99.95% Space Free | Partition Type: FAT
Drive E: | 14.65 Gb Total Space | 5.56 Gb Free Space | 37.95% Space Free | Partition Type: NTFS
Drive F: | 4.27 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ANGELOSDAD-PC
Current User Name: angelosdad
Logged in as Administrator.

Current Boot Mode: SafeMode
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/10/01 11:14:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\OTL.scr


========== Modules (SafeList) ==========

MOD - [2010/10/01 11:14:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\OTL.scr
MOD - [2010/07/15 09:52:28 | 000,125,280 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgse.dll
MOD - [2010/03/04 14:54:51 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vbscript.dll
MOD - [2009/12/31 16:37:35 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d08d7da0442a985d\msvcr80.dll
MOD - [2009/12/31 16:37:35 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d08d7da0442a985d\msvcp80.dll
MOD - [2009/12/23 08:43:08 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wintrust.dll
MOD - [2009/12/08 21:19:44 | 000,094,208 | ---- | M] (Dropbox, Inc.) -- C:\Users\angelosdad\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll
MOD - [2009/06/10 08:11:29 | 002,386,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WMVCORE.DLL
MOD - [2009/05/01 00:26:24 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msshsq.dll
MOD - [2009/04/30 23:58:36 | 000,712,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WindowsCodecs.dll
MOD - [2009/04/28 21:13:20 | 000,499,712 | ---- | M] (Microsoft Corporation) -- C:\Users\angelosdad\AppData\Roaming\Dropbox\bin\msvcp71.dll
MOD - [2009/03/03 00:36:24 | 000,615,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\fastprox.dll
MOD - [2008/11/27 00:35:06 | 001,748,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\GdiPlus.dll
MOD - [2008/10/21 23:57:30 | 000,241,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\PortableDeviceApi.dll
MOD - [2008/03/03 20:34:38 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Users\angelosdad\AppData\Roaming\Dropbox\bin\msvcr71.dll
MOD - [2008/01/20 22:52:09 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll
MOD - [2008/01/20 22:51:41 | 002,537,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wpdshext.dll
MOD - [2008/01/20 22:51:37 | 000,244,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\audiodev.dll
MOD - [2008/01/20 22:51:37 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WMASF.DLL
MOD - [2008/01/20 22:51:11 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntshrui.dll
MOD - [2008/01/20 22:51:11 | 000,183,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\duser.dll
MOD - [2008/01/20 22:51:09 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cscapi.dll
MOD - [2008/01/20 22:51:04 | 000,188,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wbemdisp.dll
MOD - [2008/01/20 22:51:03 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdsapi.dll
MOD - [2008/01/20 22:51:00 | 000,326,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\actxprxy.dll
MOD - [2008/01/20 22:50:47 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntlanman.dll
MOD - [2008/01/20 22:50:12 | 000,242,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rsaenh.dll
MOD - [2008/01/20 22:50:04 | 000,225,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\SLC.dll
MOD - [2008/01/20 22:50:01 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2008/01/20 22:49:32 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ExplorerFrame.dll
MOD - [2008/01/20 22:49:29 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dnsapi.dll
MOD - [2008/01/20 22:49:12 | 000,376,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sxs.dll
MOD - [2008/01/20 22:48:37 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imagehlp.dll
MOD - [2008/01/20 22:48:31 | 000,798,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dbghelp.dll
MOD - [2008/01/20 22:48:21 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\thumbcache.dll
MOD - [2008/01/20 22:48:14 | 000,357,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbemcomn.dll
MOD - [2008/01/20 22:48:12 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wmiutils.dll
MOD - [2008/01/20 22:48:12 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wbemsvc.dll
MOD - [2008/01/20 22:48:12 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\wbemprox.dll
MOD - [2008/01/20 22:48:06 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll
MOD - [2008/01/20 22:47:54 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\syncui.dll
MOD - [2008/01/20 22:47:40 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\synceng.dll
MOD - [2006/11/02 11:02:33 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\linkinfo.dll
MOD - [2006/11/02 11:01:41 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\davclnt.dll
MOD - [2006/11/02 05:46:04 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\drprov.dll
MOD - [2006/11/02 04:33:06 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\normaliz.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/02/26 08:59:22 | 000,130,048 | ---- | M] (WDC) [Auto | Stopped] -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe -- (WDDMService)
SRV:64bit: - [2008/12/22 06:35:16 | 000,032,768 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysNative\WLTRYSVC.EXE -- (wltrysvc)
SRV:64bit: - [2008/12/18 14:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Stopped] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV:64bit: - [2008/12/15 00:13:46 | 000,281,600 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_cce24a4c\STacSV64.exe -- (STacSV)
SRV:64bit: - [2008/12/15 00:13:30 | 000,088,576 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_cce24a4c\AESTSr64.exe -- (AESTFilters)
SRV:64bit: - [2008/01/20 22:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2006/11/02 07:16:05 | 000,046,592 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysNative\rundll32.exe -- (yksvc)
SRV - [2010/07/21 08:05:12 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010/07/15 09:52:29 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/05/14 11:00:26 | 000,249,136 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2010/04/19 10:25:38 | 000,430,152 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\AVG\AVG9\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2010/03/18 14:27:14 | 001,020,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 14:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2010/01/31 21:49:23 | 000,020,376 | ---- | M] (WebEx Communications, Inc.) [Auto | Stopped] -- C:\Windows\SysWOW64\atashost.exe -- (atashost)
SRV - [2009/06/16 08:58:08 | 000,020,480 | ---- | M] (Memeo) [Auto | Stopped] -- C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe -- (WDSmartWareBackgroundService)
SRV - [2009/01/26 16:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Stopped] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/11/03 19:15:32 | 000,242,424 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2008/05/07 18:41:14 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ivusb.sys -- (ivusb)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ipinip.sys -- (IpInIp)
DRV:64bit: - [2010/07/15 09:52:36 | 000,317,520 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\avgtdia.sys -- (AvgTdiA)
DRV:64bit: - [2010/07/15 09:51:55 | 000,269,904 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\avgldx64.sys -- (AvgLdx64)
DRV:64bit: - [2010/06/02 09:09:43 | 000,035,536 | ---- | M] () [File_System | System | Stopped] -- C:\Windows\SysNative\Drivers\avgmfx64.sys -- (AvgMfx64)
DRV:64bit: - [2009/05/18 15:17:08 | 000,034,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2008/12/22 06:34:48 | 000,022,520 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BCM42RLY.sys -- (BCM42RLY)
DRV:64bit: - [2008/12/17 05:22:04 | 001,526,776 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\bcmwl664.sys -- (BCM43XX)
DRV:64bit: - [2008/12/15 00:13:56 | 000,472,064 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\stwrt64.sys -- (STHDA)
DRV:64bit: - [2008/12/09 01:12:36 | 008,036,160 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\igdkmd64.sys -- (igfx)
DRV:64bit: - [2008/12/08 01:32:48 | 000,068,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTSTOR64.SYS -- (RTSTOR)
DRV:64bit: - [2008/09/04 01:29:22 | 000,199,728 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2008/09/03 04:44:22 | 000,307,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\OA009Vid.sys -- (OA009Vid)
DRV:64bit: - [2008/09/03 04:44:22 | 000,168,864 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\OA009Ufd.sys -- (OA009Ufd)
DRV:64bit: - [2008/09/01 06:19:24 | 000,392,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\yk60x64.sys -- (yukonx64)
DRV:64bit: - [2008/09/01 06:15:58 | 000,395,288 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iastor.sys -- (iaStor)
DRV:64bit: - [2008/01/20 22:46:55 | 000,317,952 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\e1e6032e.sys -- (e1express) Intel®
DRV:64bit: - [2007/11/14 04:00:00 | 000,053,488 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2006/11/02 03:48:50 | 002,488,320 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (R300)
DRV:64bit: - [2006/09/18 17:36:24 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\Wbem\ntfs.mof -- (Ntfs)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/USCON/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.4\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2010/10/01 09:25:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.4\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins

[2009/12/31 17:11:41 | 000,000,000 | ---D | M] -- C:\Users\angelosdad\AppData\Roaming\Mozilla\Extensions
[2009/12/31 17:11:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\angelosdad\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}

O1 HOSTS File: ([2006/09/18 17:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Windows\SysNative\WLTRAY.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe ()
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe ()
O4:64bit: - HKLM..\Run: [MSSE] c:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe ()
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files (x86)\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Western Digital\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - Startup: C:\Users\angelosdad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = C:\Program Files (x86)\Dell\DellDock\DellDock.exe File not found
O4 - Startup: C:\Users\angelosdad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O9:64bit: - Extra Button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (Apple Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files (x86)\Bonjour\ExplorerPlugin.dll (Apple Inc.)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.15.1
O18:64bit: - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
O20:64bit: - AppInit_DLLs: (avgrssta.dll) - C:\Windows\SysNative\avgrssta.dll ()
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll ()
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\boombox_1920x1200.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\boombox_1920x1200.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/10/01 10:57:52 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ FAT ]
O33 - MountPoints2\{1dc7f396-3b25-11df-a11e-0023ae32b24e}\Shell\AutoRun\command - "" = D:\Setup_FlipShare.exe -- File not found
O33 - MountPoints2\{1dc7f396-3b25-11df-a11e-0023ae32b24e}\Shell\Setup FlipShare\command - "" = D:\Setup_FlipShare.exe -- File not found
O33 - MountPoints2\{56398120-915c-11df-96c7-0023ae32b24e}\Shell - "" = AutoRun
O33 - MountPoints2\{56398120-915c-11df-96c7-0023ae32b24e}\Shell\AutoRun\command - "" = D:\MI.exe -- File not found
O33 - MountPoints2\{b5be2948-f64e-11de-af72-0023ae32b24e}\Shell - "" = AutoRun
O33 - MountPoints2\{b5be2948-f64e-11de-af72-0023ae32b24e}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found
O33 - MountPoints2\{dad66b9e-0467-11df-bf73-0023ae32b24e}\Shell - "" = AutoRun
O33 - MountPoints2\{dad66b9e-0467-11df-bf73-0023ae32b24e}\Shell\AutoRun\command - "" = G:\WD SmartWare.exe -- File not found
O33 - MountPoints2\D\Shell - "" = AutoRun
O33 - MountPoints2\D\Shell\AutoRun\command - "" = D:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 90 Days ==========

[2010/10/01 08:53:18 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\angelosdad\Desktop\OTL.scr
[2010/09/30 16:32:05 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010/09/30 16:31:50 | 000,000,000 | ---D | C] -- C:\714d18bcd8404fd7adc5
[2010/09/07 18:12:07 | 000,000,000 | ---D | C] -- C:\Users\angelosdad\Desktop\backyard
[2010/09/07 18:11:13 | 000,000,000 | ---D | C] -- C:\Users\angelosdad\Desktop\dog yard
[2010/09/05 11:24:34 | 000,000,000 | ---D | C] -- C:\Users\angelosdad\Desktop\sept 10 donations
[2010/09/05 11:24:18 | 000,000,000 | ---D | C] -- C:\Users\angelosdad\Desktop\sept 10 sales
[2010/08/04 10:42:32 | 000,000,000 | ---D | C] -- C:\Users\angelosdad\Desktop\august donations
[2010/08/04 10:42:20 | 000,000,000 | ---D | C] -- C:\Users\angelosdad\Desktop\august sales
[2010/07/18 09:57:39 | 000,022,784 | ---- | C] (Arcsoft, Inc.) -- C:\Windows\SysWow64\drivers\afc.sys
[2010/07/16 10:24:28 | 000,000,000 | ---D | C] -- C:\Users\angelosdad\Desktop\petsmart grant

========== Files - Modified Within 90 Days ==========

[2010/10/01 11:52:55 | 002,097,152 | -HS- | M] () -- C:\Users\angelosdad\ntuser.dat
[2010/10/01 11:29:26 | 000,703,388 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/10/01 11:29:26 | 000,603,516 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/10/01 11:29:26 | 000,103,586 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/10/01 11:26:43 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/10/01 11:17:00 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/10/01 11:17:00 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/10/01 10:56:00 | 000,000,928 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3864948535-1786709824-341672353-1000UA.job
[2010/10/01 09:48:35 | 065,511,158 | ---- | M] () -- C:\Windows\SysNative\drivers\Avg\incavi.avm
[2010/10/01 09:39:14 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/10/01 09:39:14 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/10/01 08:53:56 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\angelosdad\Desktop\OTL.scr
[2010/10/01 07:39:17 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/09/30 23:12:13 | 000,524,288 | -HS- | M] () -- C:\Users\angelosdad\ntuser.dat{7d0a3e40-cc08-11df-b300-0023ae32b24e}.TMContainer00000000000000000001.regtrans-ms
[2010/09/30 23:12:13 | 000,065,536 | -HS- | M] () -- C:\Users\angelosdad\ntuser.dat{7d0a3e40-cc08-11df-b300-0023ae32b24e}.TM.blf
[2010/09/30 16:32:10 | 000,000,944 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010/09/30 12:07:50 | 000,871,941 | ---- | M] () -- C:\Users\angelosdad\Desktop\mayer.pdf
[2010/09/30 11:49:48 | 000,039,332 | ---- | M] () -- C:\Users\angelosdad\Desktop\siobhan.jpg
[2010/09/30 11:32:27 | 000,032,211 | ---- | M] () -- C:\Users\angelosdad\Desktop\fiona.jpg
[2010/09/30 11:29:53 | 000,027,878 | ---- | M] () -- C:\Users\angelosdad\Desktop\deuce3.gif
[2010/09/30 11:29:45 | 000,029,064 | ---- | M] () -- C:\Users\angelosdad\Desktop\Deuce2.gif
[2010/09/30 11:29:35 | 000,041,846 | ---- | M] () -- C:\Users\angelosdad\Desktop\Deuce1.gif
[2010/09/30 11:21:44 | 000,030,341 | ---- | M] () -- C:\Users\angelosdad\Desktop\quinn3.gif
[2010/09/30 11:21:35 | 000,030,839 | ---- | M] () -- C:\Users\angelosdad\Desktop\quinn2.gif
[2010/09/30 11:21:25 | 000,040,182 | ---- | M] () -- C:\Users\angelosdad\Desktop\quinn.gif
[2010/09/29 16:55:29 | 000,524,288 | -HS- | M] () -- C:\Users\angelosdad\ntuser.dat{7d0a3e40-cc08-11df-b300-0023ae32b24e}.TMContainer00000000000000000002.regtrans-ms
[2010/09/29 16:43:00 | 000,524,288 | -HS- | M] () -- C:\Users\angelosdad\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000001.regtrans-ms
[2010/09/29 16:43:00 | 000,065,536 | -HS- | M] () -- C:\Users\angelosdad\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TM.blf
[2010/09/29 00:15:12 | 000,378,631 | ---- | M] () -- C:\Users\angelosdad\Desktop\Kizzy.jpg
[2010/09/28 22:17:11 | 000,148,291 | ---- | M] () -- C:\Users\angelosdad\Desktop\swayplays.jpg
[2010/09/28 15:14:41 | 000,102,042 | ---- | M] () -- C:\Users\angelosdad\Desktop\bully rally2010.pdf
[2010/09/26 11:15:29 | 000,067,241 | ---- | M] () -- C:\Users\angelosdad\Desktop\PIT BULL PROPOSED ORDINANCE.pdf
[2010/09/25 22:26:50 | 002,223,483 | ---- | M] () -- C:\Users\angelosdad\Desktop\2011 calendar.pdf
[2010/09/25 22:17:10 | 000,147,349 | ---- | M] () -- C:\Users\angelosdad\Desktop\sway4.jpg
[2010/09/25 11:13:11 | 000,178,001 | ---- | M] () -- C:\Users\angelosdad\Desktop\brother.jpg
[2010/09/25 11:12:58 | 000,178,001 | ---- | M] () -- C:\Users\angelosdad\Desktop\brothers.jpg
[2010/09/24 10:55:39 | 000,061,790 | ---- | M] () -- C:\Users\angelosdad\Desktop\charlie and Riley.. sisters.jpg
[2010/09/23 07:56:24 | 000,002,069 | ---- | M] () -- C:\Users\angelosdad\Desktop\Google Chrome.lnk
[2010/09/22 22:44:36 | 000,025,034 | ---- | M] () -- C:\Users\angelosdad\Desktop\sway3.gif
[2010/09/22 22:44:27 | 000,033,062 | ---- | M] () -- C:\Users\angelosdad\Desktop\sway2.gif
[2010/09/22 13:45:04 | 000,213,778 | ---- | M] () -- C:\Users\angelosdad\Desktop\Breda.jpg
[2010/09/22 00:17:21 | 000,021,563 | ---- | M] () -- C:\Users\angelosdad\Desktop\angcarm.jpg
[2010/09/21 23:49:27 | 000,048,465 | ---- | M] () -- C:\Users\angelosdad\Desktop\maddie.jpg
[2010/09/21 14:39:07 | 000,707,283 | ---- | M] () -- C:\Users\angelosdad\Desktop\IRIS.pdf
[2010/09/21 10:40:56 | 000,047,983 | ---- | M] () -- C:\Users\angelosdad\Desktop\daddy and Lena girl.jpg
[2010/09/20 15:56:00 | 000,000,876 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3864948535-1786709824-341672353-1000Core.job
[2010/09/20 09:22:15 | 000,530,130 | ---- | M] () -- C:\Users\angelosdad\Desktop\sopk
[2010/09/18 09:39:51 | 000,049,411 | ---- | M] () -- C:\Users\angelosdad\Desktop\kelly.jpg
[2010/09/18 09:39:28 | 000,071,418 | ---- | M] () -- C:\Users\angelosdad\Desktop\sway.jpg
[2010/09/18 09:39:06 | 000,061,065 | ---- | M] () -- C:\Users\angelosdad\Desktop\Una.jpg
[2010/09/18 09:38:43 | 000,058,979 | ---- | M] () -- C:\Users\angelosdad\Desktop\kev.jpg
[2010/09/18 03:56:40 | 000,002,031 | ---- | M] () -- C:\Users\angelosdad\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/09/15 21:40:45 | 000,687,540 | ---- | M] () -- C:\Users\angelosdad\Desktop\bully w9.jpg
[2010/09/15 21:34:37 | 000,016,188 | ---- | M] () -- C:\Users\angelosdad\Desktop\parrot.jpg
[2010/09/13 11:26:20 | 000,174,282 | ---- | M] () -- C:\Users\angelosdad\Desktop\assholecop.jpg
[2010/09/11 20:08:38 | 000,085,175 | ---- | M] () -- C:\Users\angelosdad\Desktop\bobby.jpg
[2010/09/11 19:50:16 | 000,223,101 | ---- | M] () -- C:\Users\angelosdad\Desktop\erf.jpg
[2010/09/08 09:42:09 | 000,045,524 | ---- | M] () -- C:\Users\angelosdad\Desktop\rayme.gif
[2010/09/03 13:37:10 | 000,009,274 | ---- | M] () -- C:\Users\angelosdad\AppData\Roaming\wklnhst.dat
[2010/09/02 18:52:22 | 000,679,714 | ---- | M] () -- C:\Users\angelosdad\Desktop\breeud3.JPG
[2010/09/02 18:52:01 | 001,238,389 | ---- | M] () -- C:\Users\angelosdad\Desktop\breeud2.JPG
[2010/09/02 18:51:46 | 000,006,860 | ---- | M] () -- C:\Users\angelosdad\Desktop\breeud1.jpg
[2010/09/02 09:46:09 | 000,073,216 | ---- | M] () -- C:\Users\angelosdad\Desktop\letterhead.doc
[2010/08/13 18:34:09 | 000,001,942 | ---- | M] () -- C:\Users\Public\Desktop\PetFinder Sync.lnk
[2010/08/12 21:34:37 | 000,790,016 | ---- | M] () -- C:\Users\angelosdad\Desktop\ARF Transport Request (2).doc
[2010/08/12 03:31:14 | 000,298,048 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/08/02 12:55:38 | 000,144,384 | ---- | M] () -- C:\Users\angelosdad\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/07/29 00:15:01 | 002,085,528 | ---- | M] () -- C:\Users\angelosdad\Desktop\SARaugust2010a.pdf
[2010/07/28 13:08:35 | 000,069,632 | ---- | M] () -- C:\Users\angelosdad\Desktop\hull letter.doc
[2010/07/26 12:55:52 | 000,790,016 | ---- | M] () -- C:\Users\angelosdad\Desktop\ARF Transport Request (1).doc
[2010/07/21 23:59:19 | 000,225,275 | ---- | M] () -- C:\Users\angelosdad\Desktop\evanandme.jpg
[2010/07/18 11:13:38 | 000,103,424 | ---- | M] () -- C:\Users\angelosdad\Desktop\Cleary application.doc
[2010/07/18 09:58:38 | 000,001,952 | ---- | M] () -- C:\Users\Public\Desktop\Media Impression for Kodak.lnk
[2010/07/15 09:52:36 | 000,317,520 | ---- | M] () -- C:\Windows\SysNative\drivers\avgtdia.sys
[2010/07/15 09:52:35 | 000,013,048 | ---- | M] () -- C:\Windows\SysNative\avgrssta.dll
[2010/07/15 09:51:55 | 000,269,904 | ---- | M] () -- C:\Windows\SysNative\drivers\avgldx64.sys
[2010/07/14 10:39:30 | 000,055,296 | ---- | M] () -- C:\Users\angelosdad\Desktop\donation receipt print.doc
[2010/07/14 10:34:23 | 000,002,137 | ---- | M] () -- C:\Users\angelosdad\Desktop\ChipIn Participants.csv
[2010/07/13 12:55:22 | 000,145,965 | ---- | M] () -- C:\Users\angelosdad\Desktop\Untitled.jpg
[2010/07/13 12:53:59 | 000,324,431 | ---- | M] () -- C:\Users\angelosdad\Desktop\501c3.jpg

========== Files Created - No Company Name ==========

[2010/09/30 13:56:55 | 000,000,944 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010/09/30 12:07:50 | 000,871,941 | ---- | C] () -- C:\Users\angelosdad\Desktop\mayer.pdf
[2010/09/30 11:49:48 | 000,039,332 | ---- | C] () -- C:\Users\angelosdad\Desktop\siobhan.jpg
[2010/09/30 11:32:27 | 000,032,211 | ---- | C] () -- C:\Users\angelosdad\Desktop\fiona.jpg
[2010/09/30 11:29:53 | 000,027,878 | ---- | C] () -- C:\Users\angelosdad\Desktop\deuce3.gif
[2010/09/30 11:29:45 | 000,029,064 | ---- | C] () -- C:\Users\angelosdad\Desktop\Deuce2.gif
[2010/09/30 11:29:35 | 000,041,846 | ---- | C] () -- C:\Users\angelosdad\Desktop\Deuce1.gif
[2010/09/30 11:21:43 | 000,030,341 | ---- | C] () -- C:\Users\angelosdad\Desktop\quinn3.gif
[2010/09/30 11:21:34 | 000,030,839 | ---- | C] () -- C:\Users\angelosdad\Desktop\quinn2.gif
[2010/09/30 11:21:25 | 000,040,182 | ---- | C] () -- C:\Users\angelosdad\Desktop\quinn.gif
[2010/09/29 16:55:29 | 000,524,288 | -HS- | C] () -- C:\Users\angelosdad\ntuser.dat{7d0a3e40-cc08-11df-b300-0023ae32b24e}.TMContainer00000000000000000002.regtrans-ms
[2010/09/29 16:55:29 | 000,524,288 | -HS- | C] () -- C:\Users\angelosdad\ntuser.dat{7d0a3e40-cc08-11df-b300-0023ae32b24e}.TMContainer00000000000000000001.regtrans-ms
[2010/09/29 16:55:29 | 000,065,536 | -HS- | C] () -- C:\Users\angelosdad\ntuser.dat{7d0a3e40-cc08-11df-b300-0023ae32b24e}.TM.blf
[2010/09/29 00:14:57 | 000,378,631 | ---- | C] () -- C:\Users\angelosdad\Desktop\Kizzy.jpg
[2010/09/28 22:17:10 | 000,148,291 | ---- | C] () -- C:\Users\angelosdad\Desktop\swayplays.jpg
[2010/09/28 15:14:41 | 000,102,042 | ---- | C] () -- C:\Users\angelosdad\Desktop\bully rally2010.pdf
[2010/09/26 11:15:29 | 000,067,241 | ---- | C] () -- C:\Users\angelosdad\Desktop\PIT BULL PROPOSED ORDINANCE.pdf
[2010/09/25 22:26:50 | 002,223,483 | ---- | C] () -- C:\Users\angelosdad\Desktop\2011 calendar.pdf
[2010/09/25 22:17:09 | 000,147,349 | ---- | C] () -- C:\Users\angelosdad\Desktop\sway4.jpg
[2010/09/25 11:13:11 | 000,178,001 | ---- | C] () -- C:\Users\angelosdad\Desktop\brother.jpg
[2010/09/25 11:12:58 | 000,178,001 | ---- | C] () -- C:\Users\angelosdad\Desktop\brothers.jpg
[2010/09/24 10:55:38 | 000,061,790 | ---- | C] () -- C:\Users\angelosdad\Desktop\charlie and Riley.. sisters.jpg
[2010/09/22 22:44:36 | 000,025,034 | ---- | C] () -- C:\Users\angelosdad\Desktop\sway3.gif
[2010/09/22 22:44:27 | 000,033,062 | ---- | C] () -- C:\Users\angelosdad\Desktop\sway2.gif
[2010/09/22 13:45:03 | 000,213,778 | ---- | C] () -- C:\Users\angelosdad\Desktop\Breda.jpg
[2010/09/22 00:17:21 | 000,021,563 | ---- | C] () -- C:\Users\angelosdad\Desktop\angcarm.jpg
[2010/09/21 23:49:26 | 000,048,465 | ---- | C] () -- C:\Users\angelosdad\Desktop\maddie.jpg
[2010/09/21 14:39:07 | 000,707,283 | ---- | C] () -- C:\Users\angelosdad\Desktop\IRIS.pdf
[2010/09/21 10:40:56 | 000,047,983 | ---- | C] () -- C:\Users\angelosdad\Desktop\daddy and Lena girl.jpg
[2010/09/20 09:22:14 | 000,530,130 | ---- | C] () -- C:\Users\angelosdad\Desktop\sopk
[2010/09/18 09:39:51 | 000,049,411 | ---- | C] () -- C:\Users\angelosdad\Desktop\kelly.jpg
[2010/09/18 09:39:28 | 000,071,418 | ---- | C] () -- C:\Users\angelosdad\Desktop\sway.jpg
[2010/09/18 09:39:06 | 000,061,065 | ---- | C] () -- C:\Users\angelosdad\Desktop\Una.jpg
[2010/09/18 09:38:43 | 000,058,979 | ---- | C] () -- C:\Users\angelosdad\Desktop\kev.jpg
[2010/09/15 21:40:45 | 000,687,540 | ---- | C] () -- C:\Users\angelosdad\Desktop\bully w9.jpg
[2010/09/15 21:34:37 | 000,016,188 | ---- | C] () -- C:\Users\angelosdad\Desktop\parrot.jpg
[2010/09/15 07:56:55 | 000,295,424 | ---- | C] () -- C:\Windows\SysNative\MP4SDECD.DLL
[2010/09/15 07:56:55 | 000,267,776 | ---- | C] () -- C:\Windows\SysNative\spoolsv.exe
[2010/09/15 07:56:52 | 000,975,360 | ---- | C] () -- C:\Windows\SysNative\inetcomm.dll
[2010/09/15 07:56:51 | 000,622,080 | ---- | C] () -- C:\Windows\SysNative\usp10.dll
[2010/09/13 11:26:19 | 000,174,282 | ---- | C] () -- C:\Users\angelosdad\Desktop\assholecop.jpg
[2010/09/11 20:08:38 | 000,085,175 | ---- | C] () -- C:\Users\angelosdad\Desktop\bobby.jpg
[2010/09/11 19:43:40 | 000,223,101 | ---- | C] () -- C:\Users\angelosdad\Desktop\erf.jpg
[2010/09/08 09:42:07 | 000,045,524 | ---- | C] () -- C:\Users\angelosdad\Desktop\rayme.gif
[2010/09/02 18:52:21 | 000,679,714 | ---- | C] () -- C:\Users\angelosdad\Desktop\breeud3.JPG
[2010/09/02 18:52:01 | 001,238,389 | ---- | C] () -- C:\Users\angelosdad\Desktop\breeud2.JPG
[2010/09/02 18:51:45 | 000,006,860 | ---- | C] () -- C:\Users\angelosdad\Desktop\breeud1.jpg
[2010/08/12 21:34:33 | 000,790,016 | ---- | C] () -- C:\Users\angelosdad\Desktop\ARF Transport Request (2).doc
[2010/08/11 07:52:07 | 001,420,176 | ---- | C] () -- C:\Windows\SysNative\drivers\tcpip.sys
[2010/08/11 07:52:04 | 000,462,848 | ---- | C] () -- C:\Windows\SysNative\drivers\srv.sys
[2010/08/11 07:52:04 | 000,174,592 | ---- | C] () -- C:\Windows\SysNative\drivers\srv2.sys
[2010/08/11 07:52:03 | 000,050,688 | ---- | C] () -- C:\Windows\SysNative\rtutils.dll
[2010/08/11 07:52:02 | 002,749,952 | ---- | C] () -- C:\Windows\SysNative\win32k.sys
[2010/08/11 07:52:01 | 004,675,976 | ---- | C] () -- C:\Windows\SysNative\ntoskrnl.exe
[2010/08/11 07:51:55 | 001,875,456 | ---- | C] () -- C:\Windows\SysNative\msxml3.dll
[2010/08/11 07:51:53 | 005,691,904 | ---- | C] () -- C:\Windows\SysNative\mshtml.dll
[2010/08/11 07:51:49 | 001,426,944 | ---- | C] () -- C:\Windows\SysNative\urlmon.dll
[2010/08/11 07:51:48 | 007,006,208 | ---- | C] () -- C:\Windows\SysNative\ieframe.dll
[2010/08/11 07:51:48 | 001,032,704 | ---- | C] () -- C:\Windows\SysNative\wininet.dll
[2010/08/11 07:51:47 | 001,129,984 | ---- | C] () -- C:\Windows\SysNative\mstime.dll
[2010/08/11 07:51:47 | 000,758,784 | ---- | C] () -- C:\Windows\SysNative\mshtmled.dll
[2010/08/11 07:51:47 | 000,485,376 | ---- | C] () -- C:\Windows\SysNative\html.iec
[2010/08/11 07:51:47 | 000,480,256 | ---- | C] () -- C:\Windows\SysNative\iedkcs32.dll
[2010/08/11 07:51:47 | 000,267,776 | ---- | C] () -- C:\Windows\SysNative\ieaksie.dll
[2010/08/11 07:51:47 | 000,249,856 | ---- | C] () -- C:\Windows\SysNative\iepeers.dll
[2010/08/11 07:51:46 | 001,383,424 | ---- | C] () -- C:\Windows\SysNative\mshtml.tlb
[2010/08/11 07:51:46 | 000,580,608 | ---- | C] () -- C:\Windows\SysNative\msfeeds.dll
[2010/08/11 07:51:46 | 000,422,400 | ---- | C] () -- C:\Windows\SysNative\ieapfltr.dll
[2010/08/11 07:51:46 | 000,375,296 | ---- | C] () -- C:\Windows\SysNative\iertutil.dll
[2010/08/11 07:51:46 | 000,208,896 | ---- | C] () -- C:\Windows\SysNative\occache.dll
[2010/08/11 07:51:46 | 000,086,528 | ---- | C] () -- C:\Windows\SysNative\ieencode.dll
[2010/08/11 07:51:46 | 000,032,256 | ---- | C] () -- C:\Windows\SysNative\jsproxy.dll
[2010/08/11 07:51:43 | 000,343,040 | ---- | C] () -- C:\Windows\SysNative\schannel.dll
[2010/08/03 07:52:13 | 012,898,304 | ---- | C] () -- C:\Windows\SysNative\shell32.dll
[2010/07/29 00:15:01 | 002,085,528 | ---- | C] () -- C:\Users\angelosdad\Desktop\SARaugust2010a.pdf
[2010/07/28 12:59:18 | 000,069,632 | ---- | C] () -- C:\Users\angelosdad\Desktop\hull letter.doc
[2010/07/26 12:52:01 | 000,790,016 | ---- | C] () -- C:\Users\angelosdad\Desktop\ARF Transport Request (1).doc
[2010/07/21 23:56:11 | 000,225,275 | ---- | C] () -- C:\Users\angelosdad\Desktop\evanandme.jpg
[2010/07/18 11:13:34 | 000,103,424 | ---- | C] () -- C:\Users\angelosdad\Desktop\Cleary application.doc
[2010/07/18 09:58:38 | 000,001,952 | ---- | C] () -- C:\Users\Public\Desktop\Media Impression for Kodak.lnk
[2010/07/15 09:52:35 | 000,013,048 | ---- | C] () -- C:\Windows\SysNative\avgrssta.dll
[2010/07/14 10:34:20 | 000,002,137 | ---- | C] () -- C:\Users\angelosdad\Desktop\ChipIn Participants.csv
[2010/07/13 12:55:22 | 000,145,965 | ---- | C] () -- C:\Users\angelosdad\Desktop\Untitled.jpg
[2010/07/13 12:53:59 | 000,324,431 | ---- | C] () -- C:\Users\angelosdad\Desktop\501c3.jpg
[2010/02/08 21:41:30 | 000,000,680 | ---- | C] () -- C:\Users\angelosdad\AppData\Local\d3d9caps.dat
[2010/01/24 11:12:42 | 000,023,888 | ---- | C] () -- C:\Users\angelosdad\AppData\Roaming\UserTile.png
[2010/01/05 18:19:00 | 000,009,274 | ---- | C] () -- C:\Users\angelosdad\AppData\Roaming\wklnhst.dat
[2009/12/31 17:46:16 | 000,144,384 | ---- | C] () -- C:\Users\angelosdad\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/02/19 02:33:34 | 000,446,352 | ---- | C] () -- C:\Windows\SysWow64\OpenQuicktimeLib.dll
[2008/01/20 22:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2008/01/20 22:49:49 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll

========== LOP Check ==========

[2010/09/30 14:18:17 | 000,032,624 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%*.* >
[2008/01/20 22:50:15 | 000,333,203 | RHS- | M] () -- C:\bootmgr
[2008/06/24 06:22:20 | 000,546,872 | ---- | M] (Microsoft Corporation) -- C:\bootmgr.efi
[2009/05/01 00:34:19 | 000,003,456 | RH-- | M] () -- C:\dell.sdr
[2006/12/02 00:37:14 | 000,904,704 | ---- | M] (Microsoft Corporation) -- C:\msdia80.dll
[2010/10/01 11:26:04 | 274,145,279 | -HS- | M] () -- C:\pagefile.sys

< %systemroot%system32*.wt >

< %systemroot%system32*.ruy >

< %systemroot%Fonts*.com >

< %systemroot%Fonts*.dll >

< %systemroot%Fonts*.ini >

< %systemroot%Fonts*.ini2 >

< %systemroot%Fonts*.exe >

< %systemroot%system32spoolprtprocsw32x86*.* >

< %systemroot%REPAIR*.bak1 >

< %systemroot%REPAIR*.ini >

< %systemroot%system32*.jpg >

< %systemroot%*.jpg >

< %systemroot%*.png >

< %systemroot%*.scr >
[2008/12/04 23:55:20 | 000,307,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\WLXPGSS.SCR

< %systemroot%*._sy >

< %APPDATA%AdobeUpdate*.* >

< %ALLUSERSPROFILE%Favorites*.* >

< %APPDATA%Microsoft*.* >

< %PROGRAMFILES%*.* >
[2008/01/20 23:21:59 | 000,000,174 | -HS- | M] () -- C:\Program Files (x86)\desktop.ini

< %APPDATA%Update*.* >

< %systemroot%*. /mp /s >

< %systemroot%System32config*.sav >

< %PROGRAMFILES%|bak;true;false;false /fp >

< %systemroot%system32|bak;true;false;false /fp >

< %ALLUSERSPROFILE%Start Menu*.lnk /x >

< %systemroot%system32configsystemprofile*.dat /x >
[2009/04/30 22:00:51 | 000,044,255 | ---- | M] () -- C:\Windows\bcmwl.log
[2008/01/20 22:49:18 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2010/10/01 11:26:43 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/05/01 00:34:19 | 000,000,012 | ---- | M] () -- C:\Windows\csup.txt
[2009/04/30 22:08:27 | 000,000,075 | RHS- | M] () -- C:\Windows\CT4CET.bin
[2008/09/03 04:44:24 | 000,102,912 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\CtDrvIns.exe
[2010/01/07 09:05:20 | 000,523,692 | ---- | M] () -- C:\Windows\dd_ATL80SP1_KB973923MSI40CE.txt
[2010/01/07 09:05:20 | 000,011,680 | ---- | M] () -- C:\Windows\dd_ATL80SP1_KB973923UI40CE.txt
[2010/01/07 09:06:48 | 000,218,966 | ---- | M] () -- C:\Windows\dd_ATL90SP1_KB973924MSI420B.txt
[2010/01/07 09:06:48 | 000,011,632 | ---- | M] () -- C:\Windows\dd_ATL90SP1_KB973924UI420B.txt
[2009/04/30 22:39:02 | 000,031,419 | ---- | M] () -- C:\Windows\DirectX.log
[2009/04/30 22:59:18 | 000,004,506 | ---- | M] () -- C:\Windows\DtcInstall.log
[2009/05/01 00:22:30 | 003,080,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2008/01/20 22:48:58 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\fveupdate.exe
[2008/01/20 22:50:57 | 000,734,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\HelpPane.exe
[2006/11/02 07:15:53 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\hh.exe
[2006/09/19 07:41:43 | 000,008,328 | ---- | M] () -- C:\Windows\HomePremium.xml
[2010/06/09 00:42:33 | 542,808,587 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2006/11/02 04:26:50 | 000,043,131 | ---- | M] () -- C:\Windows\mib.bin
[2006/09/18 17:30:24 | 000,001,405 | ---- | M] () -- C:\Windows\msdfmap.ini
[2008/01/20 22:47:53 | 000,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\notepad.exe
[2010/10/01 11:52:37 | 000,524,074 | ---- | M] () -- C:\Windows\ntbtlog.txt
[2008/09/03 04:44:28 | 000,004,212 | ---- | M] () -- C:\Windows\OA009.uns
[2008/09/03 04:44:28 | 000,032,768 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\OA009Cfg.exe
[2009/04/30 21:57:27 | 000,065,536 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_OEMHelpCustomization.dpx
[2009/04/30 21:57:27 | 000,196,608 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_OEMHelpCustomization.perf
[2009/04/30 21:57:27 | 070,451,200 | ---- | M] () -- C:\Windows\ocsetup_install_OEMHelpCustomization.etl
[2010/04/01 09:26:52 | 000,039,700 | ---- | M] () -- C:\Windows\PFRO.log
[2008/01/20 22:49:53 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\regedit.exe
[2010/07/18 09:56:53 | 000,179,815 | ---- | M] () -- C:\Windows\setupact.log
[2006/11/02 11:21:59 | 000,000,094 | ---- | M] () -- C:\Windows\SETUPAPI.LOG
[2006/11/02 11:27:10 | 000,000,000 | ---- | M] () -- C:\Windows\setuperr.log
[2008/01/20 22:49:02 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2006/09/18 17:44:42 | 000,000,219 | ---- | M] () -- C:\Windows\system.ini
[2009/04/30 16:42:32 | 000,003,652 | ---- | M] () -- C:\Windows\TSSysprep.log
[2006/11/02 11:02:26 | 000,094,784 | ---- | M] (Twain Working Group) -- C:\Windows\twain.dll
[2006/11/02 11:02:26 | 000,050,688 | ---- | M] (Twain Working Group) -- C:\Windows\twain_32.dll
[2006/11/02 11:02:26 | 000,049,680 | ---- | M] (Twain Working Group) -- C:\Windows\twunk_16.exe
[2006/11/02 11:02:26 | 000,031,232 | ---- | M] (Twain Working Group) -- C:\Windows\twunk_32.exe
[2010/03/30 05:29:44 | 000,000,225 | ---- | M] () -- C:\Windows\win.ini
[2008/01/20 23:21:59 | 000,000,749 | RH-- | M] () -- C:\Windows\WindowsShell.Manifest
[2010/10/01 08:29:59 | 001,820,199 | ---- | M] () -- C:\Windows\WindowsUpdate.log
[2006/11/02 05:45:57 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\winhlp32.exe
[2008/12/04 23:55:20 | 000,307,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\WLXPGSS.SCR
[2006/11/02 11:04:27 | 000,316,640 | ---- | M] () -- C:\Windows\WMSysPr9.prx
[2009/04/30 22:18:07 | 000,001,468 | ---- | M] () -- C:\Windows\xpsp1hfm.log

< %systemroot%*.config >

< %systemroot%system32*.db >

< HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsWindowsUpdateAU >

< HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionWindowsUpdateAuto UpdateResultsInstall|LastSuccessTime /rs >
< End of report >
  • 0

#25
jasonmflatt
Posted 01 October 2010 - 10:10 AM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
is that what you needed from me
  • 0

Advertisements

#26
maliprog
Posted 01 October 2010 - 10:19 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi jasonmflatt,

That's it! Please be patient now.
  • 0

#27
jasonmflatt
Posted 01 October 2010 - 10:22 AM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
thanks..
  • 0

#28
jasonmflatt
Posted 01 October 2010 - 11:21 AM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
ill be back in 1 hr..
  • 0

#29
jasonmflatt
Posted 01 October 2010 - 01:22 PM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
im here
  • 0

#30
jasonmflatt
Posted 01 October 2010 - 02:52 PM

jasonmflatt

    Member

  • Topic Starter
  • Member
  • PipPip
  • 47 posts
says gmer has found any changes
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP