I have been reading the forum for advice and have followed some of the instuctions alread given
I Reset my proxy and downloaded OTL and scan txt and will post below
could some please advise where i go from here
Thx
Tracey
OTL logfile created on: 19/10/2010 4:38:04 PM - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Users\tracey\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18975)
Locale: 00000C09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 43.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 67.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 116.44 Gb Total Space | 76.76 Gb Free Space | 65.93% Space Free | Partition Type: NTFS
Drive D: | 106.68 Gb Total Space | 106.65 Gb Free Space | 99.97% Space Free | Partition Type: NTFS
Computer Name: TRACEY-PC | User Name: tracey | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 90 Days
========== Processes (SafeList) ==========
PRC - C:\Users\tracey\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
PRC - C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe (Google Inc.)
PRC - C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG8\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG8\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\AsScrPro.exe (ASUS)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\P4G\BatteryLife.exe (ATK)
PRC - C:\Program Files\ASUS\SmartLogon\sensorsrv.exe (ASUS)
PRC - C:\Program Files\ASUS\Splendid\ACMON.exe (ATK)
PRC - C:\Windows\System32\agrsmsvc.exe (Agere Systems)
PRC - C:\Program Files\ATK Hotkey\HControl.exe (ATK0100)
PRC - C:\Program Files\ATK Hotkey\WDC.exe ()
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Program Files\ATK Hotkey\ATKOSD.exe ()
PRC - C:\Program Files\ASUS\ASUS Live Update\ALU.exe ()
PRC - C:\Program Files\ATK Hotkey\MsgTranAgt.exe ()
PRC - C:\Program Files\ATK Hotkey\AsLdrSrv.exe ()
PRC - C:\Program Files\ASUS\ATK Media\GPSWatch.exe ( )
PRC - C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
PRC - C:\Program Files\ATK Hotkey\KBFiltr.exe ()
PRC - C:\Program Files\ATKGFNEX\GFNEXSrv.exe ()
PRC - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe ()
PRC - C:\Program Files\Wireless Console 2\wcourier.exe ()
PRC - C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUSTeK Computer INC.)
PRC - C:\Windows\System32\ACEngSvr.exe (ASUSTeK)
========== Modules (SafeList) ==========
MOD - C:\Users\tracey\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
MOD - C:\Windows\System32\WindowsCodecs.dll (Microsoft Corporation)
MOD - C:\Windows\System32\networkexplorer.dll (Microsoft Corporation)
MOD - C:\Windows\System32\SLC.dll (Microsoft Corporation)
MOD - C:\Windows\System32\msshsq.dll (Microsoft Corporation)
MOD - C:\Windows\System32\EhStorShell.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cscapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\rsaenh.dll (Microsoft Corporation)
MOD - C:\Windows\System32\duser.dll (Microsoft Corporation)
MOD - C:\Windows\System32\actxprxy.dll (Microsoft Corporation)
MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)
MOD - C:\Windows\System32\thumbcache.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (GoogleDesktopManager-051210-111108) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (avg8wd) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (ASLDRService) -- C:\Program Files\ATK Hotkey\AsLdrSrv.exe ()
SRV - (ATKGFNEXSrv) -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe ()
SRV - (spmgr) -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe ()
========== Driver Services (SafeList) ==========
DRV - (NwlnkFwd) -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- C:\Windows\System32\DRIVERS\nwlnkflt.sys File not found
DRV - (IpInIp) -- C:\Windows\System32\DRIVERS\ipinip.sys File not found
DRV - (rcmirror) -- C:\Windows\System32\drivers\rcmirror.sys (Windows ® Win 7 DDK provider)
DRV - (AvgLdx86) -- C:\Windows\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgMfx86) -- C:\Windows\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgTdiX) -- C:\Windows\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (massfilter) -- C:\Windows\System32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (nvsmu) -- C:\Windows\System32\drivers\nvsmu.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\Windows\System32\drivers\nvmfdx32.sys (NVIDIA Corporation)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (kbfiltr) -- C:\Windows\System32\drivers\kbfiltr.sys ( )
DRV - (UsbserFilt) -- C:\Windows\System32\drivers\usbser_lowerfltj.sys (Windows ® Codename Longhorn DDK provider)
DRV - (nmwcdc) -- C:\Windows\System32\drivers\ccdcmbo.sys (Nokia)
DRV - (upperdev) -- C:\Windows\System32\drivers\usbser_lowerflt.sys (Windows ® Codename Longhorn DDK provider)
DRV - (nmwcd) -- C:\Windows\System32\drivers\ccdcmb.sys (Nokia)
DRV - (ZTEusbser6k) -- C:\Windows\System32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\Windows\System32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (SNP2UVC) USB2.0 PC Camera (SNP2UVC) -- C:\Windows\System32\drivers\snp2uvc.sys ()
DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel® -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (WSDPrintDevice) -- C:\Windows\System32\drivers\WSDPrint.sys (Microsoft Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (ghaio) -- C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys ()
DRV - (ASMMAP) -- C:\Program Files\ATKGFNEX\ASMMAP.sys ()
DRV - (MTsensor) -- C:\Windows\System32\drivers\ATKACPI.sys (ATK0100)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (smserial) -- C:\Windows\System32\drivers\smserial.sys (Motorola Inc.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (yukonwlh) -- C:\Windows\System32\drivers\yk60x86.sys (Marvell)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.co...=ASUS&bmod=ASUS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co...=ASUS&bmod=ASUS
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.co...=ASUS&bmod=ASUS
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ninemsn.com.au/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-au
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E0 DB C7 45 EB 69 CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:50370
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/03/08 17:56:17 | 000,000,000 | ---D | M]
O1 HOSTS File: ([2006/09/19 08:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ASUS Camera ScreenSaver] C:\Windows\AsScrProlog.exe ()
O4 - HKLM..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe (ASUS)
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
F3 - HKCU WinNT: Load - (C:\Users\tracey\AppData\Local\Temp\dwm.exe) - C:\Users\tracey\AppData\Local\Temp\dwm.exe File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll (Google Inc.)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKCU\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...r/ultrashim.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (AVGRSSTX.DLL) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - AppInit_DLLs: (C:\PROGRA~1\GOOGLE\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKCU Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKCU Winlogon: Shell - (C:\Users\tracey\AppData\Roaming\Microsoft\Windows\shell.exe) - C:\Users\tracey\AppData\Roaming\Microsoft\Windows\shell.exe File not found
O24 - Desktop WallPaper: C:\Users\tracey\Pictures\Picasa Edits\picasabackground.bmp
O24 - Desktop BackupWallPaper: C:\Users\tracey\Pictures\Picasa Edits\picasabackground.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/19 08:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.siren - C:\Windows\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: wave2 - C:\Windows\System32\serwvdrv.dll (Microsoft Corporation)
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfPf - Driver
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} -
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 90 Days ==========
[2010/10/19 16:31:53 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Users\tracey\Desktop\OTL.exe
[2010/10/19 11:27:44 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2010/10/19 11:27:44 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2010/10/19 11:27:40 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2010/10/19 11:09:12 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2010/10/19 09:55:09 | 000,000,000 | ---D | C] -- C:\Users\tracey\Desktop\danny 8 birthday
[2010/09/05 12:16:26 | 000,000,000 | ---D | C] -- C:\Program Files\Lexia Reading UK
[2010/08/09 17:34:29 | 000,000,000 | ---D | C] -- C:\Users\tracey\AppData\Roaming\Malwarebytes
[2010/08/09 17:34:20 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010/08/09 17:34:19 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010/08/09 17:34:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/08/09 17:34:18 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2008/06/03 17:41:51 | 000,015,928 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys
[1 C:\Users\tracey\Documents\*.tmp files -> C:\Users\tracey\Documents\*.tmp -> ]
========== Files - Modified Within 90 Days ==========
[2010/10/19 16:31:58 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Users\tracey\Desktop\OTL.exe
[2010/10/19 16:30:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/10/19 16:29:42 | 000,609,196 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/10/19 16:29:42 | 000,108,672 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/10/19 16:28:53 | 000,055,302 | ---- | M] () -- C:\ProgramData\nvModes.001
[2010/10/19 16:26:57 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2010/10/19 16:24:42 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/10/19 16:24:42 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/10/19 16:24:36 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/10/19 16:24:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/10/19 14:38:04 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2010/10/19 11:34:34 | 000,370,440 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/10/19 09:18:13 | 066,545,451 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2010/10/19 07:15:44 | 000,055,302 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2010/10/17 08:49:26 | 000,014,017 | ---- | M] () -- C:\Users\tracey\Documents\Personal budget1.xlsx
[2010/10/08 21:34:53 | 000,009,352 | ---- | M] () -- C:\Users\tracey\Documents\MATHEW.TAX
[2010/10/08 21:29:52 | 000,009,584 | ---- | M] () -- C:\Users\tracey\Documents\MATHEW.BAK
[2010/10/08 21:04:06 | 000,010,008 | ---- | M] () -- C:\Users\tracey\Documents\KC.TAX
[2010/10/08 20:56:00 | 000,009,048 | ---- | M] () -- C:\Users\tracey\Documents\KC.BAK
[2010/09/27 13:00:43 | 000,011,320 | ---- | M] () -- C:\Users\tracey\Documents\DARREN.TAX
[2010/09/27 12:57:16 | 000,001,801 | ---- | M] () -- C:\Users\tracey\Desktop\e-tax 2010.lnk
[2010/09/27 12:50:58 | 000,010,200 | ---- | M] () -- C:\Users\tracey\Documents\DARREN.BAK
[2010/09/23 17:25:59 | 000,001,978 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2010/09/22 09:54:11 | 000,011,825 | ---- | M] () -- C:\Users\tracey\Documents\Daniel would like for.docx
[2010/09/22 09:30:07 | 000,002,080 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010/09/17 09:33:02 | 000,000,165 | -H-- | M] () -- C:\Users\tracey\Documents\~$Personal budget1.xlsx
[2010/09/14 13:27:16 | 000,009,448 | ---- | M] () -- C:\Users\tracey\Documents\SHERRI.TAX
[2010/09/14 13:26:42 | 000,009,448 | ---- | M] () -- C:\Users\tracey\Documents\SHERRI.BAK
[2010/09/06 13:36:45 | 000,082,584 | ---- | M] () -- C:\Users\tracey\Documents\MATTY.TAX
[2010/09/06 13:34:21 | 000,081,792 | ---- | M] () -- C:\Users\tracey\Documents\MATTY.BAK
[2010/09/05 12:21:42 | 000,000,836 | ---- | M] () -- C:\Users\tracey\Desktop\j.lnk
[2010/08/26 18:16:50 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
[2010/08/23 20:12:08 | 000,000,086 | -H-- | M] () -- C:\Users\tracey\Documents\.picasa.ini
[2010/08/19 10:19:55 | 000,014,353 | ---- | M] () -- C:\Users\tracey\Documents\Professional.docx
[2010/08/19 10:19:27 | 000,059,497 | ---- | M] () -- C:\Users\tracey\Documents\Tracey Kenny resume.docx
[2010/08/11 20:43:38 | 000,010,768 | ---- | M] () -- C:\Users\tracey\Documents\GOODY.TAX
[2010/08/11 20:35:53 | 000,009,424 | ---- | M] () -- C:\Users\tracey\Documents\GOODY.BAK
[2010/08/10 23:23:04 | 000,051,185 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2219.JPG
[2010/08/10 23:23:04 | 000,043,851 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2224.JPG
[2010/08/10 23:23:03 | 000,060,260 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2186.JPG
[2010/08/10 23:23:02 | 000,056,005 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2154.JPG
[2010/08/10 23:23:02 | 000,053,518 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2149.JPG
[2010/08/10 23:23:01 | 000,046,159 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2114.JPG
[2010/08/10 23:23:00 | 000,082,794 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2087.JPG
[2010/08/10 23:23:00 | 000,049,934 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2111.JPG
[2010/08/10 23:22:59 | 000,046,325 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2080.JPG
[2010/08/10 23:22:58 | 000,069,873 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2066.JPG
[2010/08/10 23:22:58 | 000,052,352 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2079.JPG
[2010/08/10 23:22:57 | 000,050,547 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2054.JPG
[2010/08/10 23:22:56 | 000,035,207 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2001.JPG
[2010/08/10 23:22:56 | 000,022,643 | ---- | M] () -- C:\Users\tracey\Documents\IMG_2016.JPG
[2010/08/10 23:22:55 | 000,043,106 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1984.JPG
[2010/08/10 23:22:54 | 000,063,067 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1957.JPG
[2010/08/10 23:22:54 | 000,051,954 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1850.JPG
[2010/08/10 23:22:53 | 000,036,827 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1842.JPG
[2010/08/10 23:22:52 | 000,047,407 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1732.JPG
[2010/08/10 23:22:52 | 000,032,333 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1745.JPG
[2010/08/10 23:22:51 | 000,055,372 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1701.JPG
[2010/08/10 23:22:50 | 000,040,808 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1691.JPG
[2010/08/10 23:22:50 | 000,040,769 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1672.JPG
[2010/08/10 23:22:49 | 000,051,415 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1468.JPG
[2010/08/10 23:22:48 | 000,048,880 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1444.JPG
[2010/08/10 23:22:48 | 000,034,149 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1414.JPG
[2010/08/10 23:22:47 | 000,033,257 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1411.JPG
[2010/08/10 23:22:46 | 000,062,786 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1389.JPG
[2010/08/10 23:22:46 | 000,062,649 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1378.JPG
[2010/08/10 23:22:45 | 000,061,556 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1376.JPG
[2010/08/10 23:22:44 | 000,072,133 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1373.JPG
[2010/08/10 23:22:44 | 000,064,966 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1374.JPG
[2010/08/10 23:22:43 | 000,056,032 | ---- | M] () -- C:\Users\tracey\Documents\IMG_1362.JPG
[2010/08/09 17:34:22 | 000,000,825 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/09 10:49:33 | 000,000,950 | ---- | M] () -- C:\Users\tracey\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/08/07 13:39:58 | 000,158,215 | ---- | M] () -- C:\Users\tracey\Documents\trans2.docx
[2010/08/07 13:03:42 | 000,196,997 | ---- | M] () -- C:\Users\tracey\Documents\transcript.docx
[2010/08/06 20:16:01 | 000,272,870 | ---- | M] () -- C:\Users\tracey\Documents\school uniform.docx
[2010/08/06 19:09:34 | 000,030,722 | ---- | M] () -- C:\Users\tracey\Documents\image201008060002.jpg
[2010/07/29 10:23:34 | 000,010,104 | ---- | M] () -- C:\Users\tracey\Documents\JESS.TAX
[2010/07/24 10:27:35 | 000,029,184 | ---- | M] () -- C:\Users\tracey\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/07/23 20:45:08 | 000,009,032 | ---- | M] () -- C:\Users\tracey\Documents\JESS.BAK
[1 C:\Users\tracey\Documents\*.tmp files -> C:\Users\tracey\Documents\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/09/27 19:55:30 | 000,009,584 | ---- | C] () -- C:\Users\tracey\Documents\MATHEW.BAK
[2010/09/27 19:55:30 | 000,009,352 | ---- | C] () -- C:\Users\tracey\Documents\MATHEW.TAX
[2010/09/27 13:01:45 | 000,010,008 | ---- | C] () -- C:\Users\tracey\Documents\KC.TAX
[2010/09/27 13:01:45 | 000,009,048 | ---- | C] () -- C:\Users\tracey\Documents\KC.BAK
[2010/09/22 09:30:07 | 000,002,080 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010/09/21 19:11:42 | 000,011,825 | ---- | C] () -- C:\Users\tracey\Documents\Daniel would like for.docx
[2010/09/17 09:33:02 | 000,000,165 | -H-- | C] () -- C:\Users\tracey\Documents\~$Personal budget1.xlsx
[2010/09/06 13:14:57 | 000,082,584 | ---- | C] () -- C:\Users\tracey\Documents\MATTY.TAX
[2010/09/06 13:14:57 | 000,081,792 | ---- | C] () -- C:\Users\tracey\Documents\MATTY.BAK
[2010/09/05 12:21:42 | 000,000,836 | ---- | C] () -- C:\Users\tracey\Desktop\j.lnk
[2010/09/03 16:34:27 | 000,009,448 | ---- | C] () -- C:\Users\tracey\Documents\SHERRI.TAX
[2010/09/03 16:34:27 | 000,009,448 | ---- | C] () -- C:\Users\tracey\Documents\SHERRI.BAK
[2010/08/26 18:16:50 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
[2010/08/23 20:11:14 | 000,000,086 | -H-- | C] () -- C:\Users\tracey\Documents\.picasa.ini
[2010/08/11 17:19:16 | 000,014,353 | ---- | C] () -- C:\Users\tracey\Documents\Professional.docx
[2010/08/11 11:36:22 | 000,010,768 | ---- | C] () -- C:\Users\tracey\Documents\GOODY.TAX
[2010/08/11 11:36:22 | 000,009,424 | ---- | C] () -- C:\Users\tracey\Documents\GOODY.BAK
[2010/08/10 23:23:04 | 000,043,851 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2224.JPG
[2010/08/10 23:23:03 | 000,051,185 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2219.JPG
[2010/08/10 23:23:02 | 000,060,260 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2186.JPG
[2010/08/10 23:23:02 | 000,056,005 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2154.JPG
[2010/08/10 23:23:01 | 000,053,518 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2149.JPG
[2010/08/10 23:23:00 | 000,049,934 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2111.JPG
[2010/08/10 23:23:00 | 000,046,159 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2114.JPG
[2010/08/10 23:22:59 | 000,082,794 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2087.JPG
[2010/08/10 23:22:58 | 000,052,352 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2079.JPG
[2010/08/10 23:22:58 | 000,046,325 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2080.JPG
[2010/08/10 23:22:57 | 000,069,873 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2066.JPG
[2010/08/10 23:22:56 | 000,050,547 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2054.JPG
[2010/08/10 23:22:56 | 000,022,643 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2016.JPG
[2010/08/10 23:22:55 | 000,035,207 | ---- | C] () -- C:\Users\tracey\Documents\IMG_2001.JPG
[2010/08/10 23:22:54 | 000,063,067 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1957.JPG
[2010/08/10 23:22:54 | 000,043,106 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1984.JPG
[2010/08/10 23:22:53 | 000,051,954 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1850.JPG
[2010/08/10 23:22:52 | 000,036,827 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1842.JPG
[2010/08/10 23:22:52 | 000,032,333 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1745.JPG
[2010/08/10 23:22:51 | 000,047,407 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1732.JPG
[2010/08/10 23:22:50 | 000,055,372 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1701.JPG
[2010/08/10 23:22:50 | 000,040,808 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1691.JPG
[2010/08/10 23:22:49 | 000,040,769 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1672.JPG
[2010/08/10 23:22:48 | 000,051,415 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1468.JPG
[2010/08/10 23:22:48 | 000,048,880 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1444.JPG
[2010/08/10 23:22:47 | 000,034,149 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1414.JPG
[2010/08/10 23:22:46 | 000,062,786 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1389.JPG
[2010/08/10 23:22:46 | 000,033,257 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1411.JPG
[2010/08/10 23:22:45 | 000,062,649 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1378.JPG
[2010/08/10 23:22:44 | 000,064,966 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1374.JPG
[2010/08/10 23:22:44 | 000,061,556 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1376.JPG
[2010/08/10 23:22:43 | 000,072,133 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1373.JPG
[2010/08/10 23:22:41 | 000,056,032 | ---- | C] () -- C:\Users\tracey\Documents\IMG_1362.JPG
[2010/08/09 17:34:22 | 000,000,825 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/09 10:42:17 | 000,057,667 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2010/08/07 13:06:03 | 000,158,215 | ---- | C] () -- C:\Users\tracey\Documents\trans2.docx
[2010/08/07 13:03:42 | 000,196,997 | ---- | C] () -- C:\Users\tracey\Documents\transcript.docx
[2010/08/06 20:15:59 | 000,272,870 | ---- | C] () -- C:\Users\tracey\Documents\school uniform.docx
[2010/08/06 19:09:34 | 000,030,722 | ---- | C] () -- C:\Users\tracey\Documents\image201008060002.jpg
[2010/07/23 10:03:02 | 000,010,104 | ---- | C] () -- C:\Users\tracey\Documents\JESS.TAX
[2010/07/23 10:03:02 | 000,009,032 | ---- | C] () -- C:\Users\tracey\Documents\JESS.BAK
[2010/07/04 17:39:44 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/03/08 16:54:34 | 000,011,640 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2010/01/18 16:38:46 | 000,010,496 | ---- | C] () -- C:\Windows\System32\rcmirror.dll
[2009/09/17 16:33:42 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/02/06 20:46:45 | 000,000,204 | ---- | C] () -- C:\Windows\MYOBP.INI
[2009/02/06 20:46:45 | 000,000,041 | ---- | C] () -- C:\Windows\MYOB.INI
[2009/02/06 20:18:22 | 000,000,663 | ---- | C] () -- C:\Windows\openrda.ini
[2009/02/06 20:17:53 | 000,000,000 | ---- | C] () -- C:\Windows\drvxl32.INI
[2009/02/06 20:17:52 | 000,000,000 | ---- | C] () -- C:\Windows\drvwd32.INI
[2008/12/25 15:17:54 | 000,055,302 | ---- | C] () -- C:\ProgramData\nvModes.001
[2008/12/25 13:52:08 | 000,055,302 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2008/12/25 11:49:12 | 000,029,184 | ---- | C] () -- C:\Users\tracey\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/04/23 17:02:39 | 000,000,010 | ---- | C] () -- C:\Windows\System32\ABLKSR.ini
[2008/04/01 18:13:57 | 001,807,744 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2007/05/09 18:16:39 | 000,028,160 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys
[2006/11/02 23:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 18:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/05/05 18:26:00 | 000,335,872 | ---- | C] () -- C:\Windows\System32\ctreestd.dll
[2006/03/09 13:57:59 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2000/01/31 08:02:00 | 000,047,104 | ---- | C] () -- C:\Windows\System32\Wh2Robo.dll
========== LOP Check ==========
[2010/10/19 16:22:35 | 000,032,616 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2006/09/19 08:43:36 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2009/04/11 17:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr
[2008/04/23 17:27:52 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2007/06/23 00:48:58 | 000,000,018 | ---- | M] () -- C:\CC21.txt
[2006/09/19 08:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys
[2008/10/26 08:00:34 | 000,019,535 | ---- | M] () -- C:\devlist.txt
[2008/09/08 13:34:43 | 001,048,576 | RH-- | M] () -- C:\F5GL.BIN
[2008/09/09 19:47:57 | 000,000,013 | ---- | M] () -- C:\F5GL_VISTA.10
[2008/10/26 08:00:26 | 000,000,009 | ---- | M] () -- C:\Finish.log
[2008/10/26 07:04:44 | 000,000,481 | ---- | M] () -- C:\igoogle_log.txt
[2008/10/06 14:46:41 | 000,000,021 | ---- | M] () -- C:\msapp2.LOG
[2008/08/08 18:22:19 | 000,000,030 | ---- | M] () -- C:\NERO.LOG
[2008/07/04 15:35:34 | 000,000,021 | ---- | M] () -- C:\NIS2008.TXT
[2007/03/16 10:18:45 | 000,000,025 | ---- | M] () -- C:\OFFICE2007_C.TXT
[2010/10/19 16:23:41 | 2191,986,688 | -HS- | M] () -- C:\pagefile.sys
[2008/10/25 18:53:32 | 000,000,105 | ---- | M] () -- C:\Pass.txt
[2008/08/18 21:58:09 | 000,002,561 | ---- | M] () -- C:\Patch.LOG
[2008/04/30 01:30:30 | 000,000,020 | ---- | M] () -- C:\READER_C.TXT
[2008/09/09 19:47:57 | 000,000,006 | ---- | M] () -- C:\RECOVERY.DAT
[2008/10/26 07:35:35 | 000,000,780 | ---- | M] () -- C:\RHDSetup.log
[2008/10/26 07:51:29 | 000,000,163 | ---- | M] () -- C:\setup.log
[2006/05/16 11:22:24 | 000,000,005 | ---- | M] () -- C:\store.log
[2008/10/26 06:37:14 | 000,000,166 | ---- | M] () -- C:\SumHidd.txt
[2008/10/26 06:36:11 | 000,000,098 | ---- | M] () -- C:\SumOS.txt
[2008/08/01 09:40:18 | 000,000,021 | ---- | M] () -- C:\V552.txt
< %systemroot%\Fonts\*.com >
[2006/11/02 23:37:12 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2006/11/02 23:37:12 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2006/11/02 23:37:12 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2010/10/19 11:18:56 | 000,037,665 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont
< %systemroot%\Fonts\*.dll >
< %systemroot%\Fonts\*.ini >
[2006/09/19 08:37:34 | 000,000,065 | ---- | M] () -- C:\Windows\Fonts\desktop.ini
< %systemroot%\Fonts\*.ini2 >
< %systemroot%\Fonts\*.exe >
< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
[2006/11/02 20:46:04 | 000,032,768 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\spool\prtprocs\w32x86\EP0NPP01.DLL
[2009/04/16 14:08:20 | 000,312,832 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\hpfpp70v.dll
[2006/11/02 23:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll
[2006/10/26 19:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
< %systemroot%\REPAIR\*.bak1 >
< %systemroot%\REPAIR\*.ini >
< %systemroot%\system32\*.jpg >
< %systemroot%\*.jpg >
[2008/10/26 07:53:52 | 000,036,368 | ---- | M] () -- C:\Windows\AsCD_Stage370.jpg
< %systemroot%\*.png >
< %systemroot%\*.scr >
< %systemroot%\*._sy >
< %APPDATA%\Adobe\Update\*.* >
< %ALLUSERSPROFILE%\Favorites\*.* >
< %APPDATA%\Microsoft\*.* >
[2010/10/19 07:32:47 | 000,019,738 | ---- | M] () -- C:\Users\tracey\AppData\Roaming\Microsoft\stor.cfg
< %PROGRAMFILES%\*.* >
[2008/01/21 13:43:21 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini
< %APPDATA%\Update\*.* >
< %systemroot%\*. /mp /s >
< %systemroot%\System32\config\*.sav >
[2008/01/21 14:14:18 | 016,846,848 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2008/01/21 14:14:08 | 000,106,496 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2008/01/21 14:14:18 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006/11/02 21:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006/11/02 21:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV
< %PROGRAMFILES%\bak. /s >
< %systemroot%\system32\bak. /s >
< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >
< %systemroot%\system32\config\systemprofile\*.dat /x >
< %systemroot%\*.config >
< %systemroot%\system32\*.db >
< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2010/08/09 10:49:33 | 000,000,286 | -HS- | M] () -- C:\Users\tracey\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini
< %USERPROFILE%\Desktop\*.exe >
[2010/10/19 16:31:58 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Users\tracey\Desktop\OTL.exe
< %PROGRAMFILES%\Common Files\*.* >
< %systemroot%\*.src >
< %systemroot%\install\*.* >
< %systemroot%\system32\DLL\*.* >
< %systemroot%\system32\HelpFiles\*.* >
< %systemroot%\system32\rundll\*.* >
< %systemroot%\winn32\*.* >
< %systemroot%\Java\*.* >
< %systemroot%\system32\test\*.* >
< %systemroot%\system32\Rundll32\*.* >
< %systemroot%\AppPatch\Custom\*.* >
< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >
< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >
< %PROGRAMFILES%\Internet Explorer\*.tmp >
< %PROGRAMFILES%\Internet Explorer\*.dat >
< %USERPROFILE%\My Documents\*.exe >
< %USERPROFILE%\*.exe >
< %systemroot%\ADDINS\*.* >
< %systemroot%\assembly\*.bak2 >
< %systemroot%\Config\*.* >
< %systemroot%\REPAIR\*.bak2 >
< %systemroot%\SECURITY\Database\*.sdb /x >
[2010/10/19 11:37:07 | 000,008,192 | ---- | M] () -- C:\Windows\security\database\edb.chk
[2010/10/19 11:36:37 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edb.log
[2010/10/19 11:36:36 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edbres00001.jrs
[2010/10/19 11:36:37 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edbres00002.jrs
[2010/10/19 11:36:36 | 001,048,576 | ---- | M] () -- C:\Windows\security\database\edbtmp.log
[2010/10/19 11:36:37 | 001,056,768 | ---- | M] () -- C:\Windows\security\database\tmp.edb
< %systemroot%\SYSTEM\*.bak2 >
< %systemroot%\Web\*.bak2 >
< %systemroot%\Driver Cache\*.* >
< %PROGRAMFILES%\Mozilla Firefox\0*.exe >
< %ProgramFiles%\Microsoft Common\*.* >
< %ProgramFiles%\TinyProxy. >
< %USERPROFILE%\Favorites\*.url /x >
[2008/12/25 06:39:31 | 000,000,402 | -HS- | M] () -- C:\Users\tracey\Favorites\desktop.ini
< %systemroot%\system32\*.bk >
< %systemroot%\*.te >
< %systemroot%\system32\system32\*.* >
< %ALLUSERSPROFILE%\*.dat /x >
[2010/03/25 17:11:51 | 000,011,640 | ---- | M] () -- C:\ProgramData\hpzinstall.log
[2010/10/19 16:28:53 | 000,055,302 | ---- | M] () -- C:\ProgramData\nvModes.001
< %systemroot%\system32\drivers\*.rmv >
< dir /b "%systemroot%\system32\*.exe" | find /i " " /c >
< dir /b "%systemroot%\*.exe" | find /i " " /c >
ASUS Camera ScreenSaver Uninstaller.exe
ASUS Camera ScreenSaver.exe
< %PROGRAMFILES%\Microsoft\*.* >
< %systemroot%\System32\Wbem\proquota.exe >
< %PROGRAMFILES%\Mozilla Firefox\*.dat >
< %USERPROFILE%\Cookies\*.txt /x >
< %SystemRoot%\system32\fonts\*.* >
< %systemroot%\system32\winlog\*.* >
< %systemroot%\system32\Language\*.* >
< %systemroot%\system32\Settings\*.* >
< %systemroot%\system32\*.quo >
< %SYSTEMROOT%\AppPatch\*.exe >
< %SYSTEMROOT%\inf\*.exe >
< %SYSTEMROOT%\Installer\*.exe >
< %systemroot%\system32\config\*.bak2 >
< %systemroot%\system32\Computers\*.* >
< %SystemRoot%\system32\Sound\*.* >
< %SystemRoot%\system32\SpecialImg\*.* >
< %SystemRoot%\system32\code\*.* >
< %SystemRoot%\system32\draft\*.* >
< %SystemRoot%\system32\MSSSys\*.* >
< %ProgramFiles%\Javascript\*.* >
< %systemroot%\pchealth\helpctr\System\*.exe /s >
< %systemroot%\Web\*.exe >
< %systemroot%\system32\msn\*.* >
< %systemroot%\system32\*.tro >
< %AppData%\Microsoft\Installer\msupdates\*.* >
< %ProgramFiles%\Messenger\*.exe >
< %systemroot%\system32\systhem32\*.* >
< %systemroot%\system\*.exe >
< %USERPROFILE%\Templates\*.tmp >
< %SYSTEMDRIVE%\explorexxx.exe\*.* >
< %Windir%\Installer\*.tmp >
[7 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
< %systemroot%\System32\*.xco >
< %ProgramFiles%\system32\*.* >
< %systemroot%\System32\windos\*.* >
< %SystemRoot%\system32\sandbox\*.* >
< %SystemRoot%\system32\*.amo >
< %SystemRoot%\system32\Windows Live\*.* >
< %ProgramFiles%\logs\*.* >
< %ProgramFiles%\Bifrost\*.* >
< %SystemRoot%\system32\*.goo >
< %systemroot%\system32\IME\*.* >
< %systemroot%\BackUp\*.* >
< %systemroot%\system32\*.ico >
[2006/09/19 08:31:55 | 000,107,620 | ---- | M] () -- C:\Windows\System32\acwizard.ico
< %systemroot%\system\*.dat >
< %systemroot%\system\*.exe >
< %AppData%\Macromedia\Common\*.* >
< %SYSTEMDRIVE%\dir\*.* /s >
< %systemroot%\system32\ras\*.exe >
< %SYSTEMDRIVE%\MFILES\*.* >
< %SYSTEMDRIVE%\mDNSRespon.exe\*.* >
< %systemroot%\system32\services\*.* >
< %systemroot%\Spooler\*.* >
< %ProgramFiles%\system32\*.* >
< %systemroot%\system32\Setup\*.dll /x >
< %systemroot%\system32\*.mine >
< %SYSTEMDRIVE%\cleansweep.exe\*.* >
< %systemroot%\system32\ras\*.dll >
< %systemroot%\system32\ras\*.drv >
< %systemroot%\*.iq >
< %systemroot%\system32\XP\*.* >
< %SYSTEMDRIVE%\Extracted\*.* >
< %systemroot%\system32\windows\*.* >
< %systemroot%\logs\*.* >
< %SYSTEMDRIVE%\Win.Msi\*.* >
< %systemroot%\regedit\*.* >
< %systemroot%\system32\skype\*.* >
< %AppData%\Adobe\dlluplwin25\*.* >
< %UserProfile%\*.dat >
[2010/10/19 16:43:53 | 003,932,160 | -HS- | M] () -- C:\Users\tracey\NTUSER.DAT
< %UserProfile%\*.dll >
< %systemroot%\system32\*.sxo >
< %SYSTEMDRIVE%\Gazma\*.* /s >
< %systemroot%\system32\spynet\*.* >
< %systemroot%\system32\System\*.* >
< %appdata%\Microsoft\Windows\*.* >
< %systemroot%\system32\WinDir\*.* >
< %systemroot%\_\*.* >
< %systemroot%\system32\windows32\*.* >
< %ProgramFiles%\win\*.* >
< %AppData%\Microsoft\CD Burning\*.* >
< %systemroot%\*.cab >
< %systemroot%\K.Backup\*.* >
< %ProgramFiles%\Massenger\*.* >
< %systemroot%\System32\*.doc >
< %systemroot%\Office12\*.* >
< %systemroot%\System32\Rundl32.exe\*.* >
< %ProgramFiles%\yahoo.net\*.* >
< %systemroot%\system32\*.igo >
< %systemroot%\*.rew >
< %systemroot%\System32\spool\DRIVERS\W32X86\3\*.exe >
< %USERPROFILE%\.COMMgr\*.* >
< %USERPROFILE%\Desktop\*.bat >
< %PROGRAMFILES%\Common Files\Real\visualizations\*.* >
< %PROGRAMFILES%\Internet Explorer\*.Jmp >
< %PROGRAMFILES%\Windows NT\system\*.dll >
< %systemroot%\system32\*.ext >
[2010/03/18 15:18:29 | 000,000,000 | ---- | M] () -- C:\Windows\System32\file.ext
< %systemroot%\system32\Com\*.cfg >
< %systemroot%\system32\btz\*.* >
< %systemroot%\system32\EMP\*.* >
< %systemroot%\system32\expo\*.* >
< %systemroot%\system32\inet2\*.* >
< %systemroot%\system32\xrem\*.* >
< %ProgramFiles%\Microsoft\*.* >
< %systemroot%\usgwmt\*.* >
< %ProgramFiles%\B\*.* >
< %SYSTEMDRIVE%\lspp\*.* >
< %systemroot%\Kral\*.* >
< %SYSTEMDRIVE%\windowsdvd.exe\*.* >
< %systemroot%\system32\*.ipo >
< %SYSTEMDRIVE%\usxxxxxxxx.exe\*.* >
< %systemroot%\system32\*.mof >
< %systemroot%\*.atm >
< %systemroot%\system32\svhost\*.* >
< %ProgramFiles%\system32\*.* >
< %ProgramFiles%\Docmentt\*.* >
< %systemroot%\Help\*.vbs >
< %ProgramFiles%\Windows WinSxs\*.* /s >
< %ProgramFiles%\Outlook Express\IDT\*.* /s >
< %ProgramFiles%\Microsoft Office\365\*.* /s >
< %ProgramFiles%\Windows Live\*.* >
< %systemroot%\system32\win32\*.* >
< %SYSTEMDRIVE%\RECYCLER\*.* >
< %systemroot%\Fresh1\*.* >
< %ProgramFiles%\Kekj\*.* /s >
< %systemroot%\GDU\*.* >
< %systemroot%\KA\*.* >
< %systemroot%\R\*.* >
< %systemroot%\system32\*.fyo >
< %USERPROFILE%\System\*.* >
< %systemroot%\Source\*.* >
< %systemroot%\system32\ac\*.* >
< %ProgramFiles%\MSDN\*.* >
< %AppData%\AdobeUM\winvcldll54\*.* /s >
< %ProgramFiles%\Internet Explorer\*.ico >
< %systemroot%\system32\*.ojo >
< %systemroot%\system32\d323s\*.* >
< %systemroot%\system32\re\*.* >
< %UserProfile%\Microsoft\*.dll >
< %UserProfile%\Microsoft\*.log >
< %systemroot%\Bios\*.* >
< %ProgramFiles%\Spool\*.* >
< %ProgramFiles%\promp3\*.* >
< %SYSTEMDRIVE%\Driver\*.* /s >
< %SYSTEMDRIVE%\inetserver.exe\*.* >
< %systemroot%\java\trustlib\*.* >
< %ProgramFiles%\Common Files\designer\*.exe >
< %ProgramFiles%\*. >
[2008/10/26 07:55:40 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2010/08/21 07:37:36 | 000,000,000 | ---D | M] -- C:\Program Files\ASUS
[2008/10/26 07:41:50 | 000,000,000 | ---D | M] -- C:\Program Files\Atheros
[2008/10/26 07:13:18 | 000,000,000 | ---D | M] -- C:\Program Files\ATK Hotkey
[2008/10/26 07:47:49 | 000,000,000 | ---D | M] -- C:\Program Files\ATKGFNEX
[2008/10/26 07:13:54 | 000,000,000 | ---D | M] -- C:\Program Files\ATKOSD2
[2009/04/18 09:33:02 | 000,000,000 | ---D | M] -- C:\Program Files\AVG
[2008/10/26 07:41:33 | 000,000,000 | ---D | M] -- C:\Program Files\Cisco
[2010/07/04 17:37:00 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2008/10/26 06:15:19 | 000,000,000 | ---D | M] -- C:\Program Files\CyberLink
[2008/10/26 07:33:15 | 000,000,000 | ---D | M] -- C:\Program Files\Dolby
[2008/10/26 07:48:21 | 000,000,000 | ---D | M] -- C:\Program Files\Downloaded Installations
[2009/11/15 11:46:12 | 000,000,000 | ---D | M] -- C:\Program Files\DVD Shrink
[2010/09/27 12:57:16 | 000,000,000 | ---D | M] -- C:\Program Files\etax2010
[2010/09/22 09:29:29 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2010/03/18 15:27:05 | 000,000,000 | ---D | M] -- C:\Program Files\HP
[2009/03/10 19:47:07 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2010/10/19 11:30:41 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2010/01/14 15:22:55 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2010/09/05 12:24:26 | 000,000,000 | ---D | M] -- C:\Program Files\Lexia Reading UK
[2010/10/04 17:14:38 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/11/11 09:16:51 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft
[2006/11/02 23:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2009/06/26 23:00:18 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2009/11/11 09:18:51 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Sync Framework
[2009/11/18 07:53:20 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2010/06/26 08:12:11 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2010/10/19 11:30:44 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2006/11/02 23:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2009/02/08 03:01:56 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2008/10/26 07:40:08 | 000,000,000 | ---D | M] -- C:\Program Files\Multimedia Card Reader
[2009/02/06 20:14:58 | 000,000,000 | ---D | M] -- C:\Program Files\MYOB
[2008/10/26 07:51:51 | 000,000,000 | ---D | M] -- C:\Program Files\P4G
[2008/10/26 07:31:18 | 000,000,000 | ---D | M] -- C:\Program Files\Realtek
[2006/11/02 23:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2010/07/04 17:37:31 | 000,000,000 | R--D | M] -- C:\Program Files\Skype
[2008/10/26 07:38:14 | 000,000,000 | ---D | M] -- C:\Program Files\Synaptics
[2009/10/05 08:30:45 | 000,000,000 | ---D | M] -- C:\Program Files\Telstra Turbo Connection Manager
[2006/11/03 00:01:55 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2010/10/19 11:30:45 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Calendar
[2010/10/19 11:30:40 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Collaboration
[2010/10/19 11:30:31 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2010/10/19 11:30:40 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2009/11/11 09:19:23 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
[2009/01/01 22:15:13 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live Favorites
[2009/11/11 09:16:36 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live SkyDrive
[2009/11/11 09:19:20 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live Toolbar
[2010/10/19 11:30:45 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2010/10/19 11:30:41 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2006/11/02 23:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2010/10/19 11:30:37 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Gallery
[2010/10/19 11:30:41 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2008/10/26 07:45:34 | 000,000,000 | ---D | M] -- C:\Program Files\Wireless Console 2
< %systemroot%\system32\*.tso >
< %ALLUSERSPROFILE%\Documents\Server\*.* >
< %systemroot%\*.pif >
[2006/09/19 08:43:58 | 000,000,707 | ---- | M] () -- C:\Windows\_default.pif
< %systemroot%\system32\n7533\*.* >
< %systemroot%\Us18336\*.* >
< %systemroot%\system32\*.zip >
< %systemroot%\system32\*.wgo >
< %systemroot%\system32\dllcache\*.com >
< %systemroot%\system32\dllchache\*.* >
< %systemroot%\system32\038840\*.* >
< %systemroot%\system32\13E92A\*.* >
< %systemroot%\system32\1CB5AD\*.* >
< %systemroot%\system32\52682A\*.* >
< %USERPROFILE%\My Documents\*.htm >
< %SYSTEMDRIVE%\Mr_CF\*.* >
< %USERPROFILE%\My Documents\*.dll >
< %USERPROFILE%\My Documents\*.ccc >
< %systemroot%\system32\Sis\*.* >
< %systemroot%\Microsft\*.* >
< %SYSTEMDRIVE%\driverwinx.exe\*.* >
< %systemroot%\BifroXx\*.* >
< %SYSTEMDRIVE%\TSTP\*.* >
< %systemroot%\winsn\*.* >
< %ProgramFiles%\windata\*.* >
< %SYSTEMDRIVE%\msixxxxxxx.exe\*.* >
< %systemroot%\system32\*.sao >
< %systemroot%\system32\*.iem >
< %systemroot%\system32\*.mdd >
< %systemroot%\system32\*.wlo >
< %systemroot%\system32\*.skn >
< %SYSTEMDRIVE%\Winup\*.* >
< %SYSTEMDRIVE%\test\*.* >
< %systemroot%\system32\med\*.* >
< %systemroot%\Bifrost\*.* >
< %systemroot%\system32\explorer.exe\*.* >
< %UserProfile%\UserData\*.dat /x >
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-10-19 00:22:00
< End of report >
OTL Extras logfile created on: 19/10/2010 4:38:04 PM - Run 1
OTL by OldTimer - Version 3.2.15.2 Folder = C:\Users\tracey\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18975)
Locale: 00000C09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 43.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 67.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 116.44 Gb Total Space | 76.76 Gb Free Space | 65.93% Space Free | Partition Type: NTFS
Drive D: | 106.68 Gb Total Space | 106.65 Gb Free Space | 99.97% Space Free | Partition Type: NTFS
Computer Name: TRACEY-PC | User Name: tracey | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 90 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 0
"InternetSettingsDisableNotify" = 0
"AutoUpdateDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1E0A4DF7-592D-42A1-AD51-8BE3DC3E3F7B}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3689DCAA-EA3A-4B26-9A20-F3DCBCE89CD6}" = lport=137 | protocol=17 | dir=in | app=system |
"{4230F56F-EC66-414A-8AF5-E76A7CEBF21C}" = rport=137 | protocol=17 | dir=out | app=system |
"{515092EF-FEF1-4123-88C7-1B06E1863B59}" = rport=138 | protocol=17 | dir=out | app=system |
"{51D15ADB-5293-4104-A9E5-EAE5B7BF3084}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{53A4CEC4-3ACF-4CC5-BA1E-9823D9DA8145}" = rport=445 | protocol=6 | dir=out | app=system |
"{6985DB5C-7D0E-45B6-A7C4-EC6E733AF275}" = lport=445 | protocol=6 | dir=in | app=system |
"{765E6FB0-C0E6-45BE-A61D-2690ABD3B6E9}" = lport=138 | protocol=17 | dir=in | app=system |
"{7DC23294-AF29-46E4-A3A5-84D993E27110}" = rport=427 | protocol=17 | dir=in | svc=hpslpsvc | app=c:\windows\system32\svchost.exe |
"{897DC58D-818C-4D47-BFAB-9D345CAD69EA}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{BA746E6C-3A64-4B10-AADC-566F93E6C3CC}" = rport=139 | protocol=6 | dir=out | app=system |
"{E5C9ED3A-2137-4F76-9082-F92A166F7721}" = lport=139 | protocol=6 | dir=in | app=system |
"{FCB2EED8-EB31-4C3B-8DFB-47EF3856E9CE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0DACD1D9-6A12-414C-B812-7790577DC7B9}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{10BE7C60-B6F9-41B1-9BFC-0AA6A6B1F60A}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{4195E34A-D12B-4BF1-BF2E-CAE32FE6FE5C}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{45DC4A56-DEB1-4DA3-B6A9-BA3C597DBC27}" = dir=in | app=e:\setup\hpznui01.exe |
"{49DAFEB5-FE34-4151-98B2-C5214D48E7C4}" = protocol=58 | dir=in | [email protected],-28545 |
"{4DDC3FAB-141E-489B-8B16-D657EF0000F3}" = dir=in | app=c:\program files\avg\avg8\avgnsx.exe |
"{5A3583F6-6371-47EE-A71D-54B7370A3F33}" = protocol=1 | dir=out | [email protected],-28544 |
"{5DE05E09-A6A9-4150-A175-9C546F8CA186}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{6CEC1251-E591-4929-9D5A-723ABDDC5039}" = protocol=58 | dir=out | [email protected],-28546 |
"{6DD61252-D62A-483B-B964-5AB173F692F7}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{97C0E42F-ED30-42C5-805E-5160B673E8BB}" = protocol=1 | dir=in | [email protected],-28543 |
"{A794B6F9-0DDC-4737-B3A9-EC7225A4411F}" = dir=in | app=c:\program files\avg\avg8\avgupd.exe |
"TCP Query User{2FE6DACF-9ED3-4B15-B7CF-0A0E30AA609A}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{4E5EF9C7-C1F2-4120-919E-16D992659AFE}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{23089D12-E459-48B9-A7D5-C8B6A2C3A58E}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{A2F68B5A-2085-43B3-8977-17DE72BE0AF1}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07FB17D8-7DB6-4F06-80C4-8BE1719CB6A1}" = hpWLPGInstaller
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{0A8C7880-F199-4807-ABD4-6E695B71A3D7}" = e-tax 2009
"{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}" = LightScribe System Software 1.14.17.1
"{139B0FFA-187E-4BA1-BCA6-6B56B2B6AB8C}" = ATK Media
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java™ 6 Update 12
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{2862A3C1-0CD9-4D8B-A28C-8C337D4DD5EB}" = Express Gate
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{341201D4-4F61-4ADB-987E-9CCE4D83A58D}" = Windows Live Toolbar Extension (Windows Live Toolbar)
"{3912D529-02BC-4CA8-B5ED-0D0C20EB6003}" = ATK Hotkey
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{415B2719-AD3A-4944-B404-C472DB6085B3}" = Cisco EAP-FAST Module
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{57B15AD4-8C9D-4164-82BB-E33D8644E757}" = ASUS InstantFun
"{5A320CD8-D712-4339-BCC3-87311FD162CB}" = D5500
"{5C1DB4ED-E9B4-402D-BB14-D75D97D6C1A6}" = ATKOSD2
"{6283B16A-66AE-48F9-BCA5-9EABDAE1790B}" = MYOB Accounting Plus v18 ED
"{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}" = NB Probe
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}" = Cisco PEAP Module
"{68A10D12-0D0F-4212-BDE6-D87FAD32A8FA}" = SmartWebPrinting
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{7059BDA7-E1DB-442C-B7A1-6144596720A4}" = HP Update
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75247E38-5C9B-45D6-ADF8-E11CB56B4990}" = Network
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}" = Windows Live Favorites for Windows Live Toolbar
"{78EA684E-97ED-4F0C-8E13-BAF78D5BFE14}" = HP Deskjet D5500 Driver Software 13.0 Rel .6
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{83770D14-21B9-44B3-8689-F7B523F94560}" = Cisco LEAP Module
"{83F73CB1-7705-49D1-9852-84D839CA2A45}" = Wireless Console 2
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}" = 32 Bit HP CIO Components Installer
"{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}" = Telstra Turbo Connection Manager
"{9422C8EA-B0C6-4197-B8FC-DC797658CA00}" = Windows Live Sign-in Assistant
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear eXtreme
"{A23E5590-6799-437B-9723-2627BA800B6F}" = Dolby Control Center
"{A5C4AD72-25FE-4899-B6DF-6D8DF63C93CF}" = Highlight Viewer (Windows Live Toolbar)
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A81200000003}" = Adobe Reader 8.1.2
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{C75CDBA2-3C86-481e-BD10-BDDA758F9DFF}" = hpPrintProjects
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D1565BD9-6E66-4292-90C6-5FC70A98A428}" = MYOB ODBC Direct v8 AUS
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{DA41F9E9-B878-467F-95E7-27E4D1943533}" = Multimedia Card Reader
"{DE10AB76-4756-4913-BE25-55D1C1051F9A}" = WinFlash
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{EC23E72A-3E5D-4F0F-B5FB-C6945D1580C5}" = DJ_SF_06_D5500_SW_Min
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{F084395C-40FB-4DB3-981C-B51E74E1E83D}" = Smart Menus (Windows Live Toolbar)
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{FBE569CA-BFEB-4E57-A674-F94D938E1AEF}" = e-tax 2010
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"Asus_Camera_ScreenSaver" = Asus_Camera_ScreenSaver
"AVG8Uninstall" = AVG 8.5
"Google Chrome" = Google Chrome
"Google Desktop" = Google Desktop
"Google Updater" = Google Updater
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Print Projects" = HP Print Projects 1.0
"HP Smart Web Printing" = HP Smart Web Printing 4.5
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{6283B16A-66AE-48F9-BCA5-9EABDAE1790B}" = MYOB Accounting Plus v18 ED
"InstallShield_{D1565BD9-6E66-4292-90C6-5FC70A98A428}" = MYOB ODBC Direct v8 AUS
"Lexia Reading UK 6.0.2" = Lexia Reading UK
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"NVIDIA Drivers" = NVIDIA Drivers
"Picasa 3" = Picasa 3
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"USB 2.0 1.3M UVC WebCam" = USB 2.0 1.3M UVC WebCam
"USB Mass Storage Filter Driver" = Multimedia Card Reader
"WinLiveSuite_Wave3" = Windows Live Essentials
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dulux MyColour4" = Dulux MyColour4
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 8/10/2010 6:02:28 AM | Computer Name = tracey-PC | Source = WinMgmt | ID = 10
Description =
Error - 9/10/2010 9:23:53 PM | Computer Name = tracey-PC | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.6001.18943 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 15c4 Start Time: 01cb6744eb660580 Termination Time: 0
Error - 10/10/2010 1:28:02 AM | Computer Name = tracey-PC | Source = Google Update | ID = 20
Description =
Error - 10/10/2010 2:28:02 AM | Computer Name = tracey-PC | Source = Google Update | ID = 20
Description =
Error - 10/10/2010 3:28:01 AM | Computer Name = tracey-PC | Source = Google Update | ID = 20
Description =
Error - 11/10/2010 4:34:34 PM | Computer Name = tracey-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 11/10/2010 4:35:29 PM | Computer Name = tracey-PC | Source = WinMgmt | ID = 10
Description =
Error - 12/10/2010 4:44:37 PM | Computer Name = tracey-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =
Error - 12/10/2010 4:45:31 PM | Computer Name = tracey-PC | Source = WinMgmt | ID = 10
Description =
Error - 12/10/2010 10:57:32 PM | Computer Name = tracey-PC | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18943, time stamp
0x4c25813d, faulting module ntdll.dll, version 6.0.6001.18000, time stamp 0x4791a7a6,
exception code 0xc0000005, fault offset 0x000681cb, process id 0x1430, application
start time 0x01cb6a822d689d59.
[ System Events ]
Error - 18/10/2010 8:39:13 PM | Computer Name = tracey-PC | Source = bowser | ID = 8003
Description =
Error - 18/10/2010 8:39:20 PM | Computer Name = tracey-PC | Source = Service Control Manager | ID = 7022
Description =
Error - 18/10/2010 11:37:44 PM | Computer Name = tracey-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 12:25:34 PM on 19/10/2010 was unexpected.
Error - 18/10/2010 11:38:59 PM | Computer Name = tracey-PC | Source = DCOM | ID = 10016
Description =
Error - 18/10/2010 11:40:15 PM | Computer Name = tracey-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 19/10/2010 12:59:40 AM | Computer Name = tracey-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 3:21:08 PM on 19/10/2010 was unexpected.
Error - 19/10/2010 1:00:59 AM | Computer Name = tracey-PC | Source = DCOM | ID = 10016
Description =
Error - 19/10/2010 1:02:10 AM | Computer Name = tracey-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 19/10/2010 1:25:41 AM | Computer Name = tracey-PC | Source = DCOM | ID = 10016
Description =
Error - 19/10/2010 1:26:15 AM | Computer Name = tracey-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
< End of report >
Sign In
Create Account
