I hope someone can help. I keep getting a variety of trojans and viruses infecting my Dell Inspiron 6400 laptop. I can find and fix them with Mcafee or Malwarebytes or Spybot (they find different things to each other, usually) but infections spring back very quickly. It doesn't seem to matter whether I'm using the internet or not, so I guess there are some hidden things on my machine which download random nasties in the background. There are some favourites - oops1.exe keeps appearing, for instance. For a while I kept getting a "generic win32 has encountered a problem and must close" message, coupled with the laptop sparodically disconnecting from the internet and a failure to find the internal speakers, though this hasn't popped up in the last couple of days.
If someone can help with clearing the machine out, and offering advice on keeping it clean, that would be fantastic.
Here is an OTL log I ran last night:
OTL logfile created on: 06/01/2011 00:43:14 - Run 1
OTL by OldTimer - Version 3.2.20.1 Folder = C:\Documents and Settings\Emma Nelder\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 59.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 217.11 Gb Total Space | 69.55 Gb Free Space | 32.03% Space Free | Partition Type: NTFS
Drive D: | 12.55 Gb Total Space | 12.38 Gb Free Space | 98.66% Space Free | Partition Type: NTFS
Computer Name: EMMA | User Name: Emma Nelder | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/01/06 00:42:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Emma Nelder\Desktop\OTL.exe
PRC - [2010/10/27 19:17:52 | 000,207,424 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
PRC - [2010/10/03 22:43:16 | 000,767,208 | ---- | M] (Trusteer Ltd.) -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
PRC - [2010/08/25 10:27:44 | 000,309,824 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
PRC - [2010/08/13 17:51:04 | 000,030,192 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
PRC - [2010/05/19 23:20:44 | 012,776,728 | ---- | M] () -- C:\Program Files\RegCure\RegCure.exe
PRC - [2010/04/16 07:33:40 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/03/18 10:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2009/03/05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/03/04 14:52:58 | 000,202,016 | R--- | M] (SupportSoft, Inc.) -- C:\Program Files\O2\bin\sprtsvc.exe
PRC - [2009/03/04 14:52:22 | 000,202,016 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\O2\bin\sprtcmd.exe
PRC - [2008/05/22 20:50:00 | 000,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan Enterprise\mcshield.exe
PRC - [2008/05/22 20:50:00 | 000,111,952 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan Enterprise\shstat.exe
PRC - [2008/05/22 20:50:00 | 000,054,608 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan Enterprise\vstskmgr.exe
PRC - [2008/04/14 00:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/10/25 16:37:32 | 002,178,832 | ---- | M] () -- C:\Program Files\Logitech\QuickCam\Quickcam.exe
PRC - [2007/10/25 16:33:22 | 000,563,984 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
PRC - [2007/10/25 16:32:58 | 000,407,824 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2007/10/25 15:06:00 | 000,086,016 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\Mctray.exe
PRC - [2007/10/25 10:05:40 | 000,136,512 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\naPrdMgr.exe
PRC - [2007/10/25 10:04:56 | 000,136,512 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\UdaterUI.exe
PRC - [2007/10/25 10:03:28 | 000,103,744 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe
PRC - [2007/10/19 13:19:22 | 000,141,848 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2007/10/19 13:17:28 | 000,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
PRC - [2007/06/24 19:17:54 | 000,068,856 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2007/04/13 16:20:22 | 000,097,432 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe
PRC - [2007/04/04 01:50:00 | 001,603,152 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2006/09/11 15:47:38 | 000,026,112 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\realplay.exe
PRC - [2006/07/16 20:29:54 | 000,389,120 | ---- | M] (Gteko Ltd.) -- C:\Program Files\Dell Support\DSAgnt.exe
PRC - [2006/04/06 13:57:54 | 000,380,928 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\QuickSet\NicConfigSvc.exe
PRC - [2006/03/24 22:30:44 | 000,282,624 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\stsystra.exe
PRC - [2005/06/10 09:44:02 | 000,081,920 | ---- | M] (InstallShield Software Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
PRC - [2005/02/23 14:57:24 | 000,057,344 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Mixer\CTSVolFE.exe
PRC - [2005/01/27 00:02:00 | 000,086,016 | ---- | M] () -- C:\Program Files\Dell\Media Experience\DMXLauncher.exe
PRC - [2003/10/29 01:06:00 | 000,024,576 | ---- | M] (BVRP Software) -- C:\Program Files\Digital Line Detect\DLG.exe
========== Modules (SafeList) ==========
MOD - [2011/01/06 00:42:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Emma Nelder\Desktop\OTL.exe
MOD - [2010/08/23 16:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2009/03/04 14:52:40 | 000,116,000 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\O2\bin\sprthook.dll
MOD - [2008/04/14 00:12:01 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcp60.dll
MOD - [2007/10/19 13:19:10 | 000,109,080 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcInj.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt)
SRV - [2010/10/03 22:43:16 | 000,767,208 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe -- (RapportMgmtService)
SRV - [2010/08/13 17:51:04 | 000,030,192 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager-051210-111108)
SRV - [2010/04/16 07:33:40 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/03/18 10:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2009/03/04 14:52:58 | 000,202,016 | R--- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\O2\bin\sprtsvc.exe -- (sprtsvc_O2) SupportSoft Sprocket Service (O2)
SRV - [2008/05/22 20:50:00 | 000,144,704 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\McAfee\VirusScan Enterprise\mcshield.exe -- (McShield)
SRV - [2008/05/22 20:50:00 | 000,054,608 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\McAfee\VirusScan Enterprise\vstskmgr.exe -- (McTaskManager)
SRV - [2007/10/25 10:03:28 | 000,103,744 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe -- (McAfeeFramework)
SRV - [2007/10/19 13:21:16 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)
SRV - [2007/10/19 13:19:22 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007/10/19 13:17:28 | 000,186,904 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer)
SRV - [2007/07/27 05:39:32 | 000,382,320 | ---- | M] (SupportSoft, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe -- (SupportSoft RemoteAssist)
SRV - [2007/04/13 16:20:22 | 000,097,432 | ---- | M] () [Auto | Running] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2006/05/01 08:34:00 | 000,262,217 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe -- (WLANKEEPER) Intel®
SRV - [2006/05/01 08:22:42 | 000,540,745 | ---- | M] (Intel Corporation ) [On_Demand | Stopped] -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe -- (S24EventMonitor) Intel®
SRV - [2006/05/01 08:20:52 | 000,114,753 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe -- (EvtEng) Intel®
SRV - [2006/05/01 08:20:26 | 000,217,164 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe -- (RegSrvc) Intel®
SRV - [2006/04/06 13:57:54 | 000,380,928 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\QuickSet\NicConfigSvc.exe -- (NICCONFIGSVC)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
DRV - File not found [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\wusoc.sys -- (qsryxq)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\PavSRK.sys -- (PavSRK.sys)
DRV - File not found [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\ncyyvqao.sys -- (ilgecs)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\COMFiltr.sys -- (ComFiltr)
DRV - [2010/10/03 22:54:04 | 000,034,792 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\19917\RapportCerberus_19917.sys -- (RapportCerberus_19917)
DRV - [2010/10/03 22:43:44 | 000,169,320 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys -- (RapportPG)
DRV - [2010/10/03 22:43:44 | 000,059,240 | ---- | M] (Trusteer Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\RapportKELL.sys -- (RapportKELL)
DRV - [2009/02/19 13:22:52 | 000,127,744 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ArcHlp.sys -- (archlp)
DRV - [2008/07/16 09:43:16 | 000,160,648 | ---- | M] (PC Tools) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\pctfw2.sys -- (pctfw2)
DRV - [2008/05/22 20:50:00 | 000,174,952 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2008/05/22 20:50:00 | 000,072,936 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2008/05/22 20:50:00 | 000,064,232 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2008/05/22 20:50:00 | 000,052,104 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\mfetdik.sys -- (mfetdik)
DRV - [2008/05/22 20:50:00 | 000,033,960 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2008/05/22 20:50:00 | 000,031,816 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Program Files\McAfee\VirusScan Enterprise\mferkdk.sys -- (mferkdk)
DRV - [2008/04/13 18:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/13 18:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2008/04/13 18:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2008/04/13 16:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/10/19 13:16:30 | 002,109,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (LVcKap)
DRV - [2007/10/11 18:59:24 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2007/10/11 18:59:02 | 002,142,488 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (LVMVDrv)
DRV - [2007/05/11 03:10:50 | 000,034,704 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio)
DRV - [2007/05/09 01:59:40 | 000,036,496 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb)
DRV - [2007/03/05 06:00:04 | 000,027,792 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BlueletSCOAudio.sys -- (BlueletSCOAudio)
DRV - [2007/03/05 05:59:04 | 000,018,320 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btnetdrv.sys -- (BT)
DRV - [2007/03/05 05:56:18 | 000,035,600 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\BTHidMgr.sys -- (BTHidMgr)
DRV - [2007/03/05 05:55:12 | 000,020,880 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\vbtenum.sys -- (BTHidEnum)
DRV - [2007/03/05 05:53:18 | 000,044,304 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr)
DRV - [2007/03/05 05:52:18 | 000,034,448 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VComm.sys -- (VComm)
DRV - [2006/11/21 22:41:18 | 000,022,416 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Program Files\IVT Corporation\BlueSoleil\device\Win2k\BTNetFilter.sys -- (BTNetFilter)
DRV - [2006/11/10 19:48:02 | 000,040,352 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2006/11/10 19:43:16 | 000,933,536 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LV302V32.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)
DRV - [2006/11/10 19:43:16 | 000,013,344 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter)
DRV - [2006/09/11 15:47:41 | 000,008,552 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2006/05/01 08:52:02 | 000,013,568 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2006/04/26 22:13:04 | 001,429,632 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w39n51.sys -- (w39n51) Intel®
DRV - [2006/03/24 22:34:30 | 001,156,648 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2006/03/08 17:35:10 | 000,191,872 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2006/01/10 11:07:58 | 000,004,864 | ---- | M] (GTek Technologies Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2005/10/14 14:40:18 | 000,307,968 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2005/10/14 14:40:18 | 000,051,328 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2005/10/14 14:40:18 | 000,028,544 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2005/08/30 17:59:00 | 000,094,000 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdm.sys -- (ss_mdm)
DRV - [2005/08/30 17:58:56 | 000,008,304 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdfl.sys -- (ss_mdfl)
DRV - [2005/08/30 17:57:18 | 000,058,320 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bus.sys -- (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM)
DRV - [2005/08/12 16:50:46 | 000,016,128 | ---- | M] (Dell Inc) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS -- (APPDRV)
DRV - [2005/08/05 15:32:16 | 000,045,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2005/07/22 02:02:12 | 001,035,008 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005/07/22 02:01:08 | 000,201,600 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2005/07/22 02:01:00 | 000,717,952 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2005/02/23 13:58:56 | 000,011,776 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc)
DRV - [2004/12/06 00:05:00 | 000,100,603 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnudfa.sys -- (tfsnudfa)
DRV - [2004/12/06 00:05:00 | 000,098,714 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnudf.sys -- (tfsnudf)
DRV - [2004/12/06 00:05:00 | 000,086,586 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnifs.sys -- (tfsnifs)
DRV - [2004/12/06 00:05:00 | 000,034,843 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsncofs.sys -- (tfsncofs)
DRV - [2004/12/06 00:05:00 | 000,025,883 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnboio.sys -- (tfsnboio)
DRV - [2004/12/06 00:05:00 | 000,015,227 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnopio.sys -- (tfsnopio)
DRV - [2004/12/06 00:05:00 | 000,006,363 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnpool.sys -- (tfsnpool)
DRV - [2004/12/06 00:05:00 | 000,004,123 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsndrct.sys -- (tfsndrct)
DRV - [2004/12/06 00:05:00 | 000,002,239 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsndres.sys -- (tfsndres)
DRV - [2004/12/01 02:22:00 | 000,087,488 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\drvmcdb.sys -- (drvmcdb)
DRV - [2004/11/23 01:56:00 | 000,040,480 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\drvnddm.sys -- (drvnddm)
DRV - [2004/08/03 21:29:56 | 001,897,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2004/07/14 10:29:04 | 000,005,627 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\sscdbhk5.sys -- (sscdbhk5)
DRV - [2004/07/14 10:28:50 | 000,023,545 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\ssrtln.sys -- (ssrtln)
DRV - [2004/02/13 15:46:00 | 000,017,153 | ---- | M] (Dell Inc) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\omci.sys -- (omci)
DRV - [2001/08/17 13:07:44 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2001/08/17 13:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001/08/17 13:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001/08/17 13:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001/08/17 13:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2001/08/17 12:52:22 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2001/08/17 12:52:20 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2001/08/17 12:52:20 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2001/08/17 12:52:18 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2001/08/17 12:52:16 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2001/08/17 12:52:12 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2001/08/17 12:52:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2001/08/17 12:51:58 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2001/08/17 12:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2001/08/17 12:51:54 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=4060911
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=4060911
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.co.uk/ig/dell?hl=en&client=dell-usuk&channel=uk&ibd=4060911
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bbc.co.uk/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8074
========== FireFox ==========
FF - prefs.js..network.proxy.autoconfig_url: "http://wwwcache.bris....uk/autoconfig"
FF - prefs.js..network.proxy.autoconfig_url: "http://wwwcache.bris....uk/autoconfig"
FF - prefs.js..network.proxy.autoconfig_url: "http://wwwcache.bris....uk/autoconfig"
FF - prefs.js..network.proxy.autoconfig_url: "http://wwwcache.bris....uk/autoconfig"
FF - prefs.js..browser.startup.homepage: "http://flvdirect.iamwired.net/"
FF - prefs.js..browser.search.selectedEngine: "Search"
FF - prefs.js..keyword.URL: "http://flvdirect.iam...c=tops&search="
FF - prefs.js..keyword.enabled: true
FF - prefs.js..browser.search.defaultenginename: "Search"
FF - prefs.js..browser.search.defaulturl: "http://flvdirect.iam...c=tops&search="
FF - prefs.js..network.proxy.autoconfig_url: "http://wwwcache.bris....uk/autoconfig"
FF - prefs.js..network.proxy.autoconfig_url: "http://wwwcache.bris....uk/autoconfig"
FF - HKLM\software\mozilla\Firefox\extensions\\{8779B4BC-1A5D-4E0E-B83B-171D20F2236D}: C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\{8779B4BC-1A5D-4E0E-B83B-171D20F2236D} [2010/07/27 07:18:43 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{387D07D6-5CF8-44EB-AECB-C4B4A82A9511}: C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\{387D07D6-5CF8-44EB-AECB-C4B4A82A9511} [2010/12/13 16:18:40 | 000,000,000 | ---D | M]
[2010/05/20 16:24:03 | 000,000,266 | ---- | M] () -- C:\Documents and Settings\Emma Nelder\Application Data\Mozilla\Firefox\Profiles\2w0v2hf2.default\searchplugins\Search.xml
O1 HOSTS File: ([2009/01/23 17:23:52 | 000,000,736 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {1ed61cb2-86f5-82b1-b5d1-e81934c7bfbe} - No CLSID value found.
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (EWPBrowseObject Class) - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll ()
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll (McAfee, Inc.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll (Dell Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [CTSVolFE.exe] C:\Program Files\Creative\Mixer\CTSVolFE.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe ()
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe ()
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe ()
O4 - HKLM..\Run: [McAfeeUpdaterUI] C:\Program Files\McAfee\Common Framework\UdaterUI.exe (McAfee, Inc.)
O4 - HKLM..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe (McAfee, Inc.)
O4 - HKLM..\Run: [O2] C:\Program Files\O2\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [ShStatEXE] C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE (McAfee, Inc.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKCU..\Run: [DellSupport] C:\Program Files\Dell Support\DSAgnt.exe (Gteko Ltd.)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe (Adobe Systems Incorporated)
O4 - HKCU..\RunOnce: [Shockwave Updater] C:\WINDOWS\System32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103471 -Mozilla\4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident\4.0; GTB0.0; Mozilla\4.0 ( File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe (BVRP Software)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Main present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableProfileQuota = 1
O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebo...toUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} http://www.musicnote...ad/mnviewer.cab (Musicnotes Viewer)
O16 - DPF: {1288683E-8FB1-46E3-AF62-9BB668505759} http://www.wireless....der_activex.ocx (xc_loader_activex.cntMain)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.ma...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {17D667BA-5675-4AAB-9221-08B9379384D4} http://cdnimg.piczo....st_uploader.cab (Image Uploader Control)
O16 - DPF: {483912CF-8995-4434-AD61-6163756E05DF} http://download.live...tivex/AXTNS.ocx (AXTNS Control)
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://download.mcaf...01/mcinsctl.cab (Reg Error: Key error.)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onec...lscbase8942.cab (Windows Live Safety Center Base Module)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx...owserPlugin.cab (Reg Error: Key error.)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebo...oUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {8EF9626B-2251-4C5E-BD17-D5F3E0E98B03} http://www.wireless....der_activex.ocx (xc_loader_activex.cntMain)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} http://www.sibelius....tiveXPlugin.cab (ScorchPlugin Class)
O16 - DPF: {BF6BBE9A-0656-4598-A0CD-32DAC03959B5} http://www.tescophot...opcuploader.cab (Image Uploader 3.0 Control)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Program Files\aiDrdaMtjÞ”™Ëyhlgyfgg.exe\yhlgyfgg.exe) - C:\Program Files\aiDrdaMtjÞ”™Ëyhlgyfgg.exe\yhlgyfgg.exe File not found
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Emma Nelder\Application Data\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Emma Nelder\Application Data\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp
O29 - HKLM SecurityProviders - (mcmvxqyx.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/10 12:04:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/01/06 00:42:18 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Emma Nelder\Desktop\OTL.exe
[2011/01/01 05:08:44 | 000,000,000 | ---D | C] -- C:\Program Files\ert
[2010/12/30 06:27:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Emma Nelder\Recent
[2010/12/29 23:50:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Start Menu\Programs\Scanner
[2010/12/25 21:58:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\My Documents\My Received Files
[2010/12/25 19:46:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Loypfa
[2010/12/25 19:46:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Alpob
[2010/12/25 14:43:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Oxdy
[2010/12/25 14:43:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Ivenny
[2010/12/25 09:39:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Erxoun
[2010/12/25 09:39:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Cyan
[2010/12/23 16:22:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Miuly
[2010/12/23 16:22:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Avtyib
[2010/12/22 17:31:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Ibkyf
[2010/12/22 17:31:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Wiyh
[2010/12/21 15:21:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\AdobeUM
[2010/12/21 15:13:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Ylbu
[2010/12/21 15:13:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Onra
[2010/12/21 10:09:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Boepp
[2010/12/18 10:05:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Uropy
[2010/12/18 10:05:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Isgeat
[2010/12/16 21:55:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Uxaf
[2010/12/16 21:55:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Exci
[2010/12/16 21:26:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Adobe
[2010/12/14 23:58:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Sun
[2010/12/14 21:28:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Umquxy
[2010/12/14 21:28:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Idxycy
[2010/12/14 09:48:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Edazg
[2010/12/13 22:22:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Yqaff
[2010/12/13 22:22:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Ulneiw
[2010/12/13 16:18:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\{387D07D6-5CF8-44EB-AECB-C4B4A82A9511}
[2010/12/13 13:04:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\My Documents\Pictures - Digital Camera
[2010/12/13 09:29:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Duoh
[2010/12/12 10:57:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Saze
[2010/12/12 10:57:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Duegid
[2010/12/12 10:18:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Myce
[2010/12/12 10:18:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Kazyu
[2010/12/12 09:52:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Kiadqy
[2010/12/12 09:52:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Egewop
[2010/12/12 09:52:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Tuaw
[2010/12/12 09:52:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Imuhc
[2010/12/12 08:12:10 | 000,000,000 | ---D | C] -- C:\Program Files\qwert
[2010/12/12 08:12:08 | 000,000,000 | ---D | C] -- C:\Program Files\qwers
[2010/12/12 00:38:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Ungod
[2010/12/12 00:38:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Application Data\Soac
[2010/12/12 00:38:22 | 000,000,000 | ---D | C] -- C:\Program Files\qwer
[2010/12/12 00:38:17 | 000,000,000 | ---D | C] -- C:\Program Files\aiDrdaMtjÞ”™Ëyhlgyfgg.exe
[2010/12/10 15:19:25 | 000,680,288 | ---- | C] (ScreenTime Media) -- C:\WINDOWS\System32\Doctor-Who-2010-Series.scr
[2010/12/10 15:19:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Screentime
[2010/12/10 15:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\Screentime
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[10 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Emma Nelder\My Documents\*.tmp files -> C:\Documents and Settings\Emma Nelder\My Documents\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/01/06 00:42:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Emma Nelder\Desktop\OTL.exe
[2011/01/06 00:17:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/06 00:11:41 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/01/06 00:09:07 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/06 00:09:04 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\RegCure Startup.job
[2011/01/06 00:09:04 | 000,000,292 | -H-- | M] () -- C:\WINDOWS\tasks\38480230.job
[2011/01/06 00:08:50 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/01/06 00:08:44 | 2137,456,640 | -HS- | M] () -- C:\hiberfil.sys
[2011/01/05 23:35:21 | 000,000,434 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{F0A36E4F-8866-4030-B42F-1A4DE747284D}.job
[2011/01/05 14:02:02 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/01/04 10:25:25 | 000,303,624 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/01/04 10:21:49 | 000,000,049 | ---- | M] () -- C:\WINDOWS\kh7ptSJh
[2011/01/04 10:21:49 | 000,000,044 | ---- | M] () -- C:\WINDOWS\JJvvDR
[2011/01/04 10:21:49 | 000,000,043 | ---- | M] () -- C:\WINDOWS\YpDSJy
[2011/01/04 10:21:49 | 000,000,043 | ---- | M] () -- C:\WINDOWS\2Uk4Omx
[2011/01/04 10:21:49 | 000,000,042 | ---- | M] () -- C:\WINDOWS\nvCd6if3w
[2011/01/04 10:21:49 | 000,000,040 | ---- | M] () -- C:\WINDOWS\AdSXd
[2011/01/04 10:21:49 | 000,000,039 | ---- | M] () -- C:\WINDOWS\5G58LL14A
[2011/01/04 10:21:49 | 000,000,035 | ---- | M] () -- C:\WINDOWS\fITo5SKO
[2011/01/04 10:21:49 | 000,000,033 | ---- | M] () -- C:\WINDOWS\E78qDIH
[2011/01/04 10:21:49 | 000,000,032 | ---- | M] () -- C:\WINDOWS\OQ3G8wK
[2011/01/04 10:21:49 | 000,000,032 | ---- | M] () -- C:\WINDOWS\1DG6BCm
[2011/01/04 10:21:49 | 000,000,031 | ---- | M] () -- C:\WINDOWS\QD8HB
[2011/01/04 10:21:49 | 000,000,030 | ---- | M] () -- C:\WINDOWS\qDgOR
[2011/01/04 10:21:49 | 000,000,030 | ---- | M] () -- C:\WINDOWS\C62hiui
[2011/01/04 10:21:49 | 000,000,029 | ---- | M] () -- C:\WINDOWS\kBAie
[2011/01/04 10:21:49 | 000,000,028 | ---- | M] () -- C:\WINDOWS\u4XNSwghot
[2011/01/04 10:21:49 | 000,000,027 | ---- | M] () -- C:\WINDOWS\ruqvTxBnU
[2011/01/04 10:21:49 | 000,000,026 | ---- | M] () -- C:\WINDOWS\hUcwRlUJ
[2011/01/04 10:21:46 | 000,000,047 | ---- | M] () -- C:\WINDOWS\slVqcQews
[2011/01/04 10:21:46 | 000,000,046 | ---- | M] () -- C:\WINDOWS\IWwDT
[2011/01/04 10:21:46 | 000,000,045 | ---- | M] () -- C:\WINDOWS\fXxE7bT
[2011/01/04 10:21:46 | 000,000,045 | ---- | M] () -- C:\WINDOWS\8VDa7CXl
[2011/01/04 10:21:46 | 000,000,044 | ---- | M] () -- C:\WINDOWS\vQpJrTcBQF
[2011/01/04 10:21:46 | 000,000,041 | ---- | M] () -- C:\WINDOWS\Wrx6EWy5NX
[2011/01/04 10:21:46 | 000,000,041 | ---- | M] () -- C:\WINDOWS\NEjhJ
[2011/01/04 10:21:46 | 000,000,039 | ---- | M] () -- C:\WINDOWS\U3fOBPUBc
[2011/01/04 10:21:46 | 000,000,038 | ---- | M] () -- C:\WINDOWS\O5AtO
[2011/01/04 10:21:46 | 000,000,038 | ---- | M] () -- C:\WINDOWS\lolVp8E2Sq
[2011/01/04 10:21:46 | 000,000,037 | ---- | M] () -- C:\WINDOWS\i7JEeABY
[2011/01/04 10:21:46 | 000,000,037 | ---- | M] () -- C:\WINDOWS\22BMW7
[2011/01/04 10:21:46 | 000,000,036 | ---- | M] () -- C:\WINDOWS\IxigT
[2011/01/04 10:21:46 | 000,000,035 | ---- | M] () -- C:\WINDOWS\InU5UjE
[2011/01/04 10:21:46 | 000,000,035 | ---- | M] () -- C:\WINDOWS\4tqPC3lA
[2011/01/04 10:21:46 | 000,000,034 | ---- | M] () -- C:\WINDOWS\RehIFV
[2011/01/04 10:21:46 | 000,000,034 | ---- | M] () -- C:\WINDOWS\jwdbJS7
[2011/01/04 10:21:46 | 000,000,034 | ---- | M] () -- C:\WINDOWS\6JJRwDUT
[2011/01/04 10:21:46 | 000,000,033 | ---- | M] () -- C:\WINDOWS\QVVVN
[2011/01/04 10:21:46 | 000,000,033 | ---- | M] () -- C:\WINDOWS\myAcFSqAAJ
[2011/01/04 10:21:46 | 000,000,033 | ---- | M] () -- C:\WINDOWS\5nyf1fEa
[2011/01/04 10:21:46 | 000,000,031 | ---- | M] () -- C:\WINDOWS\63Cp1Oet
[2011/01/04 10:21:46 | 000,000,031 | ---- | M] () -- C:\WINDOWS\5Wa87L
[2011/01/04 10:21:46 | 000,000,029 | ---- | M] () -- C:\WINDOWS\XYOHDo
[2011/01/04 10:21:46 | 000,000,028 | ---- | M] () -- C:\WINDOWS\kipV83i
[2011/01/04 10:21:46 | 000,000,027 | ---- | M] () -- C:\WINDOWS\GJgrd
[2011/01/04 10:21:46 | 000,000,027 | ---- | M] () -- C:\WINDOWS\FgoHg
[2011/01/04 10:21:44 | 000,000,044 | ---- | M] () -- C:\WINDOWS\sNYXsj
[2011/01/04 10:21:44 | 000,000,037 | ---- | M] () -- C:\WINDOWS\7gLkamXCV
[2011/01/04 10:21:44 | 000,000,031 | ---- | M] () -- C:\WINDOWS\cG5Hstso
[2011/01/04 10:21:43 | 000,000,048 | ---- | M] () -- C:\WINDOWS\OyLaFpY
[2011/01/04 10:21:43 | 000,000,046 | ---- | M] () -- C:\WINDOWS\KG5olI
[2011/01/04 10:21:43 | 000,000,045 | ---- | M] () -- C:\WINDOWS\KSj8pJ
[2011/01/04 10:21:43 | 000,000,045 | ---- | M] () -- C:\WINDOWS\Jj7rN
[2011/01/04 10:21:43 | 000,000,042 | ---- | M] () -- C:\WINDOWS\3jKGcwC
[2011/01/04 10:21:43 | 000,000,041 | ---- | M] () -- C:\WINDOWS\LeHXF
[2011/01/04 10:21:43 | 000,000,040 | ---- | M] () -- C:\WINDOWS\v6OmO
[2011/01/04 10:21:43 | 000,000,040 | ---- | M] () -- C:\WINDOWS\egE75Sxs
[2011/01/04 10:21:43 | 000,000,039 | ---- | M] () -- C:\WINDOWS\OqM5GLT
[2011/01/04 10:21:43 | 000,000,038 | ---- | M] () -- C:\WINDOWS\VoTElV
[2011/01/04 10:21:43 | 000,000,036 | ---- | M] () -- C:\WINDOWS\NJUaq4
[2011/01/04 10:21:43 | 000,000,036 | ---- | M] () -- C:\WINDOWS\E1cotQ5ms
[2011/01/04 10:21:43 | 000,000,034 | ---- | M] () -- C:\WINDOWS\VAGuFigpQh
[2011/01/04 10:21:43 | 000,000,034 | ---- | M] () -- C:\WINDOWS\noxvIPvM8
[2011/01/04 10:21:43 | 000,000,033 | ---- | M] () -- C:\WINDOWS\y78eJvW
[2011/01/04 10:21:43 | 000,000,032 | ---- | M] () -- C:\WINDOWS\lBYMDKb
[2011/01/04 10:21:43 | 000,000,031 | ---- | M] () -- C:\WINDOWS\Lixec7
[2011/01/04 10:21:43 | 000,000,031 | ---- | M] () -- C:\WINDOWS\IKTrTG
[2011/01/04 10:21:43 | 000,000,030 | ---- | M] () -- C:\WINDOWS\nhj8qXLov
[2011/01/04 10:21:43 | 000,000,030 | ---- | M] () -- C:\WINDOWS\GnFLPKDtyK
[2011/01/04 10:21:43 | 000,000,029 | ---- | M] () -- C:\WINDOWS\APpT6oqFk
[2011/01/04 10:21:43 | 000,000,028 | ---- | M] () -- C:\WINDOWS\e6JaP
[2011/01/04 10:21:43 | 000,000,027 | ---- | M] () -- C:\WINDOWS\bVIeGoH
[2011/01/04 10:21:41 | 000,000,047 | ---- | M] () -- C:\WINDOWS\X2VUkW
[2011/01/04 10:21:41 | 000,000,047 | ---- | M] () -- C:\WINDOWS\otJuGY
[2011/01/04 10:21:41 | 000,000,047 | ---- | M] () -- C:\WINDOWS\3Pa3wiYfqd
[2011/01/04 10:21:41 | 000,000,044 | ---- | M] () -- C:\WINDOWS\VXIEcq
[2011/01/04 10:21:41 | 000,000,042 | ---- | M] () -- C:\WINDOWS\pfS2Um
[2011/01/04 10:21:41 | 000,000,040 | ---- | M] () -- C:\WINDOWS\Jtd8F
[2011/01/04 10:21:41 | 000,000,039 | ---- | M] () -- C:\WINDOWS\t8NAq
[2011/01/04 10:21:41 | 000,000,038 | ---- | M] () -- C:\WINDOWS\LmkGgkiF
[2011/01/04 10:21:41 | 000,000,037 | ---- | M] () -- C:\WINDOWS\gJhLQHw8
[2011/01/04 10:21:41 | 000,000,036 | ---- | M] () -- C:\WINDOWS\Tx7Wm3eg
[2011/01/04 10:21:41 | 000,000,036 | ---- | M] () -- C:\WINDOWS\NWGnE5
[2011/01/04 10:21:41 | 000,000,035 | ---- | M] () -- C:\WINDOWS\j5MHLUC
[2011/01/04 10:21:41 | 000,000,035 | ---- | M] () -- C:\WINDOWS\GCRklH23
[2011/01/04 10:21:41 | 000,000,034 | ---- | M] () -- C:\WINDOWS\xwgRvKN2dT
[2011/01/04 10:21:41 | 000,000,032 | ---- | M] () -- C:\WINDOWS\YmH1HIPww
[2011/01/04 10:21:41 | 000,000,032 | ---- | M] () -- C:\WINDOWS\awW5Ltxpf
[2011/01/04 10:21:41 | 000,000,031 | ---- | M] () -- C:\WINDOWS\thNrSB2V
[2011/01/04 10:21:41 | 000,000,031 | ---- | M] () -- C:\WINDOWS\EjLkeU
[2011/01/04 10:21:41 | 000,000,029 | ---- | M] () -- C:\WINDOWS\uH2whCXiG
[2011/01/04 10:21:41 | 000,000,029 | ---- | M] () -- C:\WINDOWS\lRvp8qsw
[2011/01/04 10:21:41 | 000,000,029 | ---- | M] () -- C:\WINDOWS\JfKDsowR
[2011/01/04 10:21:41 | 000,000,029 | ---- | M] () -- C:\WINDOWS\birbkGtK
[2011/01/04 10:21:41 | 000,000,029 | ---- | M] () -- C:\WINDOWS\ax8uM4r7LP
[2011/01/04 10:21:41 | 000,000,028 | ---- | M] () -- C:\WINDOWS\Usf1ElUGS
[2011/01/04 10:21:41 | 000,000,028 | ---- | M] () -- C:\WINDOWS\Fd5jCgjD
[2011/01/04 10:21:41 | 000,000,028 | ---- | M] () -- C:\WINDOWS\dUAU1UB
[2011/01/04 10:13:40 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/01/03 17:00:01 | 000,000,402 | ---- | M] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2011/01/03 12:00:00 | 000,000,374 | ---- | M] () -- C:\WINDOWS\tasks\PerfectOptimizer_home.job
[2011/01/02 20:34:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\jx6b6bucz4x987sj87zgw63fxbs0qigk.ini
[2011/01/01 02:21:21 | 000,060,928 | ---- | M] () -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/12/29 21:55:46 | 000,000,260 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2010/12/29 21:02:13 | 000,069,518 | ---- | M] () -- C:\Documents and Settings\Emma Nelder\My Documents\cc_20101229_210204.reg
[2010/12/29 19:40:27 | 000,000,120 | ---- | M] () -- C:\WINDOWS\Wqesojudoya.dat
[2010/12/29 09:55:48 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Qmodehoko.bin
[2010/12/28 20:29:48 | 000,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/12/14 12:18:59 | 000,000,712 | ---- | M] () -- C:\Documents and Settings\Emma Nelder\My Documents\GHremoval.bat
[2010/12/13 17:34:30 | 000,019,456 | ---- | M] () -- C:\Documents and Settings\Emma Nelder\My Documents\365.doc
[2010/12/12 04:32:01 | 000,000,354 | ---- | M] () -- C:\WINDOWS\tasks\Driver Robot.job
[2010/12/12 04:21:25 | 000,000,384 | ---- | M] () -- C:\WINDOWS\tasks\RegCure.job
[2010/12/10 15:19:25 | 000,680,288 | ---- | M] (ScreenTime Media) -- C:\WINDOWS\System32\Doctor-Who-2010-Series.scr
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[10 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Emma Nelder\My Documents\*.tmp files -> C:\Documents and Settings\Emma Nelder\My Documents\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/01/04 10:11:30 | 000,001,355 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011/01/02 23:22:54 | 2137,456,640 | -HS- | C] () -- C:\hiberfil.sys
[2011/01/02 20:34:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\jx6b6bucz4x987sj87zgw63fxbs0qigk.ini
[2011/01/02 20:34:47 | 000,000,049 | ---- | C] () -- C:\WINDOWS\kh7ptSJh
[2011/01/02 20:34:47 | 000,000,048 | ---- | C] () -- C:\WINDOWS\OyLaFpY
[2011/01/02 20:34:47 | 000,000,047 | ---- | C] () -- C:\WINDOWS\slVqcQews
[2011/01/02 20:34:47 | 000,000,047 | ---- | C] () -- C:\WINDOWS\3Pa3wiYfqd
[2011/01/02 20:34:47 | 000,000,046 | ---- | C] () -- C:\WINDOWS\KG5olI
[2011/01/02 20:34:47 | 000,000,046 | ---- | C] () -- C:\WINDOWS\IWwDT
[2011/01/02 20:34:47 | 000,000,045 | ---- | C] () -- C:\WINDOWS\KSj8pJ
[2011/01/02 20:34:47 | 000,000,045 | ---- | C] () -- C:\WINDOWS\Jj7rN
[2011/01/02 20:34:47 | 000,000,045 | ---- | C] () -- C:\WINDOWS\fXxE7bT
[2011/01/02 20:34:47 | 000,000,045 | ---- | C] () -- C:\WINDOWS\8VDa7CXl
[2011/01/02 20:34:47 | 000,000,044 | ---- | C] () -- C:\WINDOWS\vQpJrTcBQF
[2011/01/02 20:34:47 | 000,000,044 | ---- | C] () -- C:\WINDOWS\sNYXsj
[2011/01/02 20:34:47 | 000,000,044 | ---- | C] () -- C:\WINDOWS\JJvvDR
[2011/01/02 20:34:47 | 000,000,043 | ---- | C] () -- C:\WINDOWS\YpDSJy
[2011/01/02 20:34:47 | 000,000,043 | ---- | C] () -- C:\WINDOWS\2Uk4Omx
[2011/01/02 20:34:47 | 000,000,042 | ---- | C] () -- C:\WINDOWS\nvCd6if3w
[2011/01/02 20:34:47 | 000,000,042 | ---- | C] () -- C:\WINDOWS\3jKGcwC
[2011/01/02 20:34:47 | 000,000,041 | ---- | C] () -- C:\WINDOWS\Wrx6EWy5NX
[2011/01/02 20:34:47 | 000,000,041 | ---- | C] () -- C:\WINDOWS\NEjhJ
[2011/01/02 20:34:47 | 000,000,041 | ---- | C] () -- C:\WINDOWS\LeHXF
[2011/01/02 20:34:47 | 000,000,040 | ---- | C] () -- C:\WINDOWS\v6OmO
[2011/01/02 20:34:47 | 000,000,040 | ---- | C] () -- C:\WINDOWS\egE75Sxs
[2011/01/02 20:34:47 | 000,000,040 | ---- | C] () -- C:\WINDOWS\AdSXd
[2011/01/02 20:34:47 | 000,000,039 | ---- | C] () -- C:\WINDOWS\U3fOBPUBc
[2011/01/02 20:34:47 | 000,000,039 | ---- | C] () -- C:\WINDOWS\OqM5GLT
[2011/01/02 20:34:47 | 000,000,039 | ---- | C] () -- C:\WINDOWS\5G58LL14A
[2011/01/02 20:34:47 | 000,000,038 | ---- | C] () -- C:\WINDOWS\VoTElV
[2011/01/02 20:34:47 | 000,000,038 | ---- | C] () -- C:\WINDOWS\O5AtO
[2011/01/02 20:34:47 | 000,000,038 | ---- | C] () -- C:\WINDOWS\lolVp8E2Sq
[2011/01/02 20:34:47 | 000,000,037 | ---- | C] () -- C:\WINDOWS\i7JEeABY
[2011/01/02 20:34:47 | 000,000,037 | ---- | C] () -- C:\WINDOWS\gJhLQHw8
[2011/01/02 20:34:47 | 000,000,037 | ---- | C] () -- C:\WINDOWS\7gLkamXCV
[2011/01/02 20:34:47 | 000,000,037 | ---- | C] () -- C:\WINDOWS\22BMW7
[2011/01/02 20:34:47 | 000,000,036 | ---- | C] () -- C:\WINDOWS\NJUaq4
[2011/01/02 20:34:47 | 000,000,036 | ---- | C] () -- C:\WINDOWS\IxigT
[2011/01/02 20:34:47 | 000,000,036 | ---- | C] () -- C:\WINDOWS\E1cotQ5ms
[2011/01/02 20:34:47 | 000,000,035 | ---- | C] () -- C:\WINDOWS\InU5UjE
[2011/01/02 20:34:47 | 000,000,035 | ---- | C] () -- C:\WINDOWS\fITo5SKO
[2011/01/02 20:34:47 | 000,000,035 | ---- | C] () -- C:\WINDOWS\4tqPC3lA
[2011/01/02 20:34:47 | 000,000,034 | ---- | C] () -- C:\WINDOWS\VAGuFigpQh
[2011/01/02 20:34:47 | 000,000,034 | ---- | C] () -- C:\WINDOWS\RehIFV
[2011/01/02 20:34:47 | 000,000,034 | ---- | C] () -- C:\WINDOWS\noxvIPvM8
[2011/01/02 20:34:47 | 000,000,034 | ---- | C] () -- C:\WINDOWS\jwdbJS7
[2011/01/02 20:34:47 | 000,000,034 | ---- | C] () -- C:\WINDOWS\6JJRwDUT
[2011/01/02 20:34:47 | 000,000,033 | ---- | C] () -- C:\WINDOWS\y78eJvW
[2011/01/02 20:34:47 | 000,000,033 | ---- | C] () -- C:\WINDOWS\QVVVN
[2011/01/02 20:34:47 | 000,000,033 | ---- | C] () -- C:\WINDOWS\myAcFSqAAJ
[2011/01/02 20:34:47 | 000,000,033 | ---- | C] () -- C:\WINDOWS\E78qDIH
[2011/01/02 20:34:47 | 000,000,033 | ---- | C] () -- C:\WINDOWS\5nyf1fEa
[2011/01/02 20:34:47 | 000,000,032 | ---- | C] () -- C:\WINDOWS\OQ3G8wK
[2011/01/02 20:34:47 | 000,000,032 | ---- | C] () -- C:\WINDOWS\lBYMDKb
[2011/01/02 20:34:47 | 000,000,032 | ---- | C] () -- C:\WINDOWS\1DG6BCm
[2011/01/02 20:34:47 | 000,000,031 | ---- | C] () -- C:\WINDOWS\QD8HB
[2011/01/02 20:34:47 | 000,000,031 | ---- | C] () -- C:\WINDOWS\Lixec7
[2011/01/02 20:34:47 | 000,000,031 | ---- | C] () -- C:\WINDOWS\IKTrTG
[2011/01/02 20:34:47 | 000,000,031 | ---- | C] () -- C:\WINDOWS\EjLkeU
[2011/01/02 20:34:47 | 000,000,031 | ---- | C] () -- C:\WINDOWS\cG5Hstso
[2011/01/02 20:34:47 | 000,000,031 | ---- | C] () -- C:\WINDOWS\63Cp1Oet
[2011/01/02 20:34:47 | 000,000,031 | ---- | C] () -- C:\WINDOWS\5Wa87L
[2011/01/02 20:34:47 | 000,000,030 | ---- | C] () -- C:\WINDOWS\qDgOR
[2011/01/02 20:34:47 | 000,000,030 | ---- | C] () -- C:\WINDOWS\nhj8qXLov
[2011/01/02 20:34:47 | 000,000,030 | ---- | C] () -- C:\WINDOWS\GnFLPKDtyK
[2011/01/02 20:34:47 | 000,000,030 | ---- | C] () -- C:\WINDOWS\C62hiui
[2011/01/02 20:34:47 | 000,000,029 | ---- | C] () -- C:\WINDOWS\XYOHDo
[2011/01/02 20:34:47 | 000,000,029 | ---- | C] () -- C:\WINDOWS\lRvp8qsw
[2011/01/02 20:34:47 | 000,000,029 | ---- | C] () -- C:\WINDOWS\kBAie
[2011/01/02 20:34:47 | 000,000,029 | ---- | C] () -- C:\WINDOWS\APpT6oqFk
[2011/01/02 20:34:47 | 000,000,028 | ---- | C] () -- C:\WINDOWS\u4XNSwghot
[2011/01/02 20:34:47 | 000,000,028 | ---- | C] () -- C:\WINDOWS\kipV83i
[2011/01/02 20:34:47 | 000,000,028 | ---- | C] () -- C:\WINDOWS\e6JaP
[2011/01/02 20:34:47 | 000,000,027 | ---- | C] () -- C:\WINDOWS\ruqvTxBnU
[2011/01/02 20:34:47 | 000,000,027 | ---- | C] () -- C:\WINDOWS\GJgrd
[2011/01/02 20:34:47 | 000,000,027 | ---- | C] () -- C:\WINDOWS\FgoHg
[2011/01/02 20:34:47 | 000,000,027 | ---- | C] () -- C:\WINDOWS\bVIeGoH
[2011/01/02 20:34:47 | 000,000,026 | ---- | C] () -- C:\WINDOWS\hUcwRlUJ
[2011/01/02 20:34:46 | 000,000,047 | ---- | C] () -- C:\WINDOWS\X2VUkW
[2011/01/02 20:34:46 | 000,000,047 | ---- | C] () -- C:\WINDOWS\otJuGY
[2011/01/02 20:34:46 | 000,000,044 | ---- | C] () -- C:\WINDOWS\VXIEcq
[2011/01/02 20:34:46 | 000,000,042 | ---- | C] () -- C:\WINDOWS\pfS2Um
[2011/01/02 20:34:46 | 000,000,040 | ---- | C] () -- C:\WINDOWS\Jtd8F
[2011/01/02 20:34:46 | 000,000,039 | ---- | C] () -- C:\WINDOWS\t8NAq
[2011/01/02 20:34:46 | 000,000,038 | ---- | C] () -- C:\WINDOWS\LmkGgkiF
[2011/01/02 20:34:46 | 000,000,036 | ---- | C] () -- C:\WINDOWS\Tx7Wm3eg
[2011/01/02 20:34:46 | 000,000,036 | ---- | C] () -- C:\WINDOWS\NWGnE5
[2011/01/02 20:34:46 | 000,000,035 | ---- | C] () -- C:\WINDOWS\j5MHLUC
[2011/01/02 20:34:46 | 000,000,035 | ---- | C] () -- C:\WINDOWS\GCRklH23
[2011/01/02 20:34:46 | 000,000,034 | ---- | C] () -- C:\WINDOWS\xwgRvKN2dT
[2011/01/02 20:34:46 | 000,000,032 | ---- | C] () -- C:\WINDOWS\YmH1HIPww
[2011/01/02 20:34:46 | 000,000,032 | ---- | C] () -- C:\WINDOWS\awW5Ltxpf
[2011/01/02 20:34:46 | 000,000,031 | ---- | C] () -- C:\WINDOWS\thNrSB2V
[2011/01/02 20:34:46 | 000,000,029 | ---- | C] () -- C:\WINDOWS\uH2whCXiG
[2011/01/02 20:34:46 | 000,000,029 | ---- | C] () -- C:\WINDOWS\JfKDsowR
[2011/01/02 20:34:46 | 000,000,029 | ---- | C] () -- C:\WINDOWS\birbkGtK
[2011/01/02 20:34:46 | 000,000,029 | ---- | C] () -- C:\WINDOWS\ax8uM4r7LP
[2011/01/02 20:34:46 | 000,000,028 | ---- | C] () -- C:\WINDOWS\Usf1ElUGS
[2011/01/02 20:34:46 | 000,000,028 | ---- | C] () -- C:\WINDOWS\Fd5jCgjD
[2011/01/02 20:34:46 | 000,000,028 | ---- | C] () -- C:\WINDOWS\dUAU1UB
[2010/12/29 21:02:09 | 000,069,518 | ---- | C] () -- C:\Documents and Settings\Emma Nelder\My Documents\cc_20101229_210204.reg
[2010/12/14 12:19:08 | 000,000,712 | ---- | C] () -- C:\Documents and Settings\Emma Nelder\My Documents\GHremoval.bat
[2010/05/18 03:01:12 | 001,634,304 | ---- | C] () -- C:\WINDOWS\System32\d-L-_2CD1_H.dll
[2010/04/28 16:41:04 | 000,001,112 | -HS- | C] () -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\VVcku64agTJJ
[2010/04/28 16:41:04 | 000,001,112 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\VVcku64agTJJ
[2010/04/23 08:15:24 | 000,001,444 | -HS- | C] () -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\Mi715R2
[2010/04/23 08:15:24 | 000,001,444 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\Mi715R2
[2010/04/16 08:36:28 | 000,016,316 | -HS- | C] () -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\018LBPw26q64R
[2010/04/16 08:36:28 | 000,016,316 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\018LBPw26q64R
[2010/04/12 22:34:57 | 000,015,054 | -HS- | C] () -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\V8i44CYn52
[2010/04/12 22:34:57 | 000,015,054 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\V8i44CYn52
[2010/03/05 17:18:25 | 000,004,562 | -HS- | C] () -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\2Y04MW11w
[2010/03/04 17:51:11 | 000,011,668 | -HS- | C] () -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\deQagCc75
[2010/02/26 17:25:16 | 000,018,432 | ---- | C] () -- C:\Documents and Settings\Emma Nelder\Application Data\5c9c.exe
[2010/01/31 12:55:45 | 000,000,030 | ---- | C] () -- C:\WINDOWS\WAR2R.INI
[2009/12/04 23:04:26 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009/12/04 23:04:26 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009/12/03 23:08:59 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009/10/18 12:14:37 | 000,127,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\ArcHlp.sys
[2009/10/15 21:11:05 | 000,000,173 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2009/10/02 15:20:51 | 000,019,639 | ---- | C] () -- C:\Program Files\Common Files\qysyno.dll
[2009/10/02 15:20:51 | 000,017,438 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\oludije.ban
[2009/10/02 15:20:51 | 000,014,531 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ycapymej.ban
[2009/10/02 15:20:51 | 000,013,680 | ---- | C] () -- C:\Program Files\Common Files\kumiceqa.com
[2009/10/01 13:34:26 | 000,000,014 | ---- | C] () -- C:\Documents and Settings\Emma Nelder\Application Data\iniasd.txt
[2009/09/25 14:07:40 | 000,000,728 | ---- | C] () -- C:\WINDOWS\{4507868A-A9CD-4ECC-BD54-0EAB6EE81D42}_WiseFW.ini
[2009/01/23 17:32:51 | 000,000,280 | ---- | C] () -- C:\WINDOWS\System32\epoPGPsdk.dll.sig
[2008/12/01 17:26:37 | 000,000,140 | -H-- | C] () -- C:\Documents and Settings\Emma Nelder\Application Data\lakerda1967.sys
[2008/12/01 17:26:17 | 000,010,584 | ---- | C] () -- C:\Documents and Settings\Emma Nelder\Application Data\docXConverter (3).ini
[2007/10/11 18:59:24 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys
[2007/02/04 21:43:25 | 002,067,140 | R--- | C] () -- C:\WINDOWS\System32\avcodec.dll
[2006/12/28 15:38:46 | 000,042,594 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2006/10/01 13:53:02 | 000,000,056 | RHS- | C] () -- C:\WINDOWS\System32\606D16E445.sys
[2006/09/20 19:16:15 | 000,060,928 | ---- | C] () -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/09/16 19:25:47 | 000,000,088 | RHS- | C] () -- C:\WINDOWS\System32\45E4166D60.sys
[2006/09/15 22:23:05 | 000,000,077 | ---- | C] () -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\FASTWiz.log
[2006/09/15 22:21:15 | 000,000,748 | ---- | C] () -- C:\Documents and Settings\Emma Nelder\Application Data\wklnhst.dat
[2006/09/15 22:13:41 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/09/15 12:57:17 | 000,000,134 | ---- | C] () -- C:\Documents and Settings\Emma Nelder\Local Settings\Application Data\fusioncache.dat
[2006/09/15 11:55:42 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2006/09/11 15:57:31 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/09/11 15:44:50 | 000,712,704 | ---- | C] () -- C:\WINDOWS\System32\DellSystemRestore.dll
[2006/09/11 15:42:19 | 000,000,260 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/09/11 15:38:36 | 000,000,004 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\QSLLPSVCShare
[2006/09/11 14:28:50 | 000,016,480 | ---- | C] () -- C:\WINDOWS\System32\rixdicon.dll
[2006/09/11 14:28:44 | 000,000,474 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/06/01 22:10:25 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005/04/09 16:04:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2004/08/10 12:12:05 | 000,000,780 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/10 12:01:18 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/08/10 11:57:52 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[1999/01/22 18:46:56 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
[1998/01/12 08:00:00 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\REGOBJ.DLL
========== LOP Check ==========
[2010/02/10 16:55:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth
[2007/08/25 14:20:26 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2010/10/28 08:33:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJPLM
[2009/01/23 18:57:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
[2009/01/24 18:30:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverCure
[2009/09/21 10:34:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2009/01/23 18:57:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic
[2010/05/25 14:30:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RegCure
[2006/09/15 22:17:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SBT
[2010/12/10 15:19:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Screentime
[2008/02/03 15:40:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SongbirdVLC
[2009/09/25 14:08:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft
[2009/10/27 10:08:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/08/14 16:20:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Trusteer
[2006/09/11 15:48:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2009/09/13 10:42:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2010/04/04 16:02:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009/12/11 18:46:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2011/01/01 01:40:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Alpob
[2010/12/01 14:00:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Anzeuz
[2011/01/01 01:40:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Avtyib
[2009/09/16 20:49:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\BBCiPlayerDesktop.61DB7A798358575D6A969CCD73DDBBD723A6DA9D.1
[2010/12/30 06:23:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Biniiz
[2010/12/29 20:01:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Boepp
[2011/01/01 01:40:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Cyan
[2009/01/24 14:34:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Cyrusoft
[2009/01/23 18:58:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\DriverCure
[2010/12/12 10:57:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Duegid
[2010/12/30 06:23:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Duoh
[2010/12/14 10:18:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Edazg
[2010/12/12 09:52:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Egewop
[2010/12/13 18:18:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Ehure
[2010/12/25 09:39:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Erxoun
[2010/12/16 21:55:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Exci
[2010/03/07 19:06:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Facebook
[2010/03/05 17:29:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Facebook(2)
[2010/11/30 01:09:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Fiezk
[2010/12/30 06:23:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Ibkyf
[2010/12/30 06:23:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Idxycy
[2010/12/12 09:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Imuhc
[2010/12/29 21:55:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Inbeox
[2010/12/18 10:05:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Isgeat
[2011/01/01 01:40:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Ivenny
[2010/12/12 10:18:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Kazyu
[2010/12/12 09:52:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Kiadqy
[2006/09/17 19:40:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Leadertech
[2007/09/30 21:31:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\LimeWire
[2010/12/25 19:46:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Loypfa
[2010/11/30 01:09:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Meib
[2010/12/23 16:22:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Miuly
[2006/09/15 21:49:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\MSNInstaller
[2010/12/06 19:51:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Muqi
[2010/12/12 23:07:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Myce
[2011/01/01 01:40:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Onra
[2010/12/25 14:43:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Oxdy
[2010/12/29 20:49:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Pyzog
[2008/02/03 15:49:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Qtrax1
[2008/08/23 23:25:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Samsung
[2010/12/12 10:57:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Saze
[2010/12/12 00:38:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Soac
[2007/12/18 22:44:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Template
[2010/08/14 16:24:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Trusteer
[2010/12/12 09:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Tuaw
[2010/12/01 14:00:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Ukni
[2010/12/13 22:22:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Ulneiw
[2011/01/01 01:40:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Umquxy
[2010/12/12 00:38:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Ungod
[2011/01/01 01:40:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Uropy
[2010/12/26 23:24:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\uTorrent
[2011/01/01 01:40:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Uxaf
[2009/01/17 13:28:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Viewpoint
[2010/12/29 21:55:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Voomqo
[2010/12/29 21:55:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Wiyh
[2010/12/06 19:51:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Xiywi
[2010/12/30 06:23:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Ylabbu
[2010/12/21 15:13:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Ylbu
[2010/12/13 21:17:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Ynuza
[2011/01/05 20:28:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Emma Nelder\Application Data\Yqaff
[2011/01/06 00:09:04 | 000,000,292 | -H-- | M] () -- C:\WINDOWS\Tasks\38480230.job
[2010/12/12 04:32:01 | 000,000,354 | ---- | M] () -- C:\WINDOWS\Tasks\Driver Robot.job
[2011/01/03 12:00:00 | 000,000,374 | ---- | M] () -- C:\WINDOWS\Tasks\PerfectOptimizer_home.job
[2011/01/03 17:00:01 | 000,000,402 | ---- | M] () -- C:\WINDOWS\Tasks\RegCure Program Check.job
[2011/01/06 00:09:04 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\RegCure Startup.job
[2010/12/12 04:21:25 | 000,000,384 | ---- | M] () -- C:\WINDOWS\Tasks\RegCure.job
[2011/01/05 23:35:21 | 000,000,434 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{F0A36E4F-8866-4030-B42F-1A4DE747284D}.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 148 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
< End of report >
OTL Extras logfile created on: 06/01/2011 00:43:14 - Run 1
OTL by OldTimer - Version 3.2.20.1 Folder = C:\Documents and Settings\Emma Nelder\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 59.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 217.11 Gb Total Space | 69.55 Gb Free Space | 32.03% Space Free | Partition Type: NTFS
Drive D: | 12.55 Gb Total Space | 12.38 Gb Free Space | 98.66% Space Free | Partition Type: NTFS
Computer Name: EMMA | User Name: Emma Nelder | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
"DisableMonitoring" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
"DisableMonitoring" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DoNotAllowExceptions" = 0
"DisableNotifications" = 1
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"45538:TCP" = 45538:TCP:*:Enabled:LimeWire
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL -- File not found
"C:\Program Files\AOL 9.0\waol.exe" = C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL -- File not found
"C:\Program Files\MSN Messenger\msncall.exe" = C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) -- File not found
"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- File not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL -- File not found
"C:\Program Files\AOL 9.0\waol.exe" = C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL -- File not found
"C:\Program Files\MSN Messenger\msncall.exe" = C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) -- File not found
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Kontiki\KService.exe" = C:\Program Files\Kontiki\KService.exe:*:Enabled:Delivery Manager Service -- File not found
"C:\Program Files\McAfee\Common Framework\FrameworkService.exe" = C:\Program Files\McAfee\Common Framework\FrameworkService.exe:*:Enabled:McAfee Framework Service -- (McAfee, Inc.)
"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- File not found
"C:\Program Files\O2\agent\bin\bcont.exe" = C:\Program Files\O2\agent\bin\bcont.exe:*:Enabled:bcont.exe -- (SupportSoft, Inc.)
"C:\Program Files\O2\bin\wificfg.exe" = C:\Program Files\O2\bin\wificfg.exe:*:Enabled:sprtcmd.exe -- (SupportSoft, Inc.)
"C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe" = C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe:*:Enabled:ssrc.exe -- (SupportSoft, Inc.)
"C:\Program Files\O2\agent\bin\bcont_nm.exe" = C:\Program Files\O2\agent\bin\bcont_nm.exe:*:Enabled:bcont_nm.exe -- (SupportSoft, Inc.)
"C:\Program Files\Real\RealPlayer\realplay.exe" = C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer -- (RealNetworks, Inc.)
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe" = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil -- (IVT Corporation.)
"C:\Documents and Settings\Emma Nelder\Application Data\5c9c.exe" = C:\Documents and Settings\Emma Nelder\Application Data\5c9c.exe:*:Enabled:Win32load -- ()
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00010409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 SR-1 Professional
"{00040409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 SR-1 Disc 2
"{01521746-02A6-4A72-00BD-A285DF6B80C6}" = The Sims 2 University
"{06BE8AFD-A8E2-4B63-BAE7-287016D16ACB}" = mSSO
"{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic RecordNow Data
"{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}" = mLogView
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP3500_series" = Canon iP3500 series
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4300" = Canon iP4300
"{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}" = Sonic DLA
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1D3C662A-F6C6-4767-A788-7AA43A9A1317}" = ARTEuro
"{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}" = Rapport
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD LE
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{23FB368F-1399-4EAC-817C-4B83ECBE3D83}" = mProSafe
"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java™ 6 Update 15
"{26E1BFB0-E87E-4696-9F89-B467F01F81E5}" = Broadcom Management Programs
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java™ SE Runtime Environment 6 Update 1
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java™ 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java™ 6 Update 7
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35725FBC-A136-4A46-9F29-091759D9BB93}" = MVision
"{35C03C04-3F1F-42C2-A989-A757EE691F65}" = McAfee VirusScan Enterprise
"{3846E811-639D-4DE1-844B-30491C0A6C0C}" = Dell Support 3.2
"{3E9D596A-61D4-4239-BD19-2DB984D2A16F}" = mIWA
"{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = URL Assistant
"{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{41888B21-922B-4241-4594-EF1E6828A72B}" = BBC iPlayer Desktop
"{438BB9B4-65FE-4626-91D9-A8F57B18001D}" = Bluesoleil2.6.0.8 Release 070517
"{4507868A-A9CD-4ECC-BD54-0EAB6EE81D42}" = O2 Broadband Assistant
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{4817189D-1785-4627-A33C-39FD90919300}" = The Sims 2 Pets
"{49D687E5-6784-431B-A0A2-2F23B8CC5A1B}" = mHlpDell
"{553255F3-78FD-40F1-A6F8-6882140265FE}" = Apple Application Support
"{5ECB3A3C-980B-4D12-9724-25DCB07A1F47}" = iTunes
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{63DB9CCD-2B56-4217-9A3D-507AC78320CA}" = mWMI
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD 5.7
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6BDD9CE6-D0A6-478A-BAD3-BA6945E89EB0}" = The Sims 2 Family Fun Stuff
"{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
"{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = The Sims 2
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72DF62BD-FF36-424E-AA5F-D89BAFF2C249}" = RollerCoaster Tycoon 2
"{74F7662C-B1DB-489E-A8AC-07A06B24978B}" = Dell System Restore
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7B3577F5-1D82-4C9B-008B-69D026FD8BCA}" = The Sims 2 Open For Business
"{7F142D56-3326-11D5-B229-002078017FBF}" = Modem Helper
"{87F6C83D-F949-4d14-B5CB-DC8C75F8932D}" = The Sims™ 2 FreeTime
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A253629-0511-4854-8B4E-46E57E66005C}" = Bonjour
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel® Graphics Media Accelerator Driver
"{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}" = mPfMgr
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90B0D222-8C21-4B35-9262-53B042F18AF9}" = mPfWiz
"{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}" = Logitech QuickCam
"{94658027-9F16-4509-BBD7-A59FE57C3023}" = mZConfig
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9CC89556-3578-48DD-8408-04E66EBEF401}" = mXML
"{9DE1BE03-AFE2-4CDB-BFEB-D06D736CD01A}" = Apple Mobile Device Support
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic RecordNow Audio
"{AC0EE5B0-A8FB-4D0A-AF03-2EDC518F841B}" = Dell Media Experience
"{AC76BA86-7AD7-1033-7B44-A70800000002}" = Adobe Reader 7.0.8
"{AEEB3643-71DE-414d-9E3F-1159177FE211}" = Office Animation Runtime
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{AF6841FE-7A9D-45C1-ACE8-1BE7F2F6A027}" = ArcSoft TotalMedia Extreme
"{AFFC90AE-A34A-4198-A3EC-95E1D074FE2B}" = Mulberry
"{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic RecordNow Copy
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{B6F5B704-06D3-4687-90F3-6195304AD755}" = The Sims™ 2 Apartment Life
"{BE8913B7-B2C4-48BE-8A26-84390FF4F231}" = DMX Update
"{BEF726DD-4037-4214-8C6A-E625C02D2870}" = Logitech Audio Echo Cancellation Component
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio
"{C5074CC4-0E26-4716-A307-960272A90040}" = QuickSet
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CECFDD53-35DB-4235-9363-7964A0C88E0E}" = Samsung PC Studio
"{D2988E9B-C73F-422C-AD4B-A66EBE257120}" = MCU
"{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}" = The Sims™ 2 Seasons
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{E646DCF0-5A68-11D5-B229-002078017FBF}" = Digital Line Detect
"{E81667C6-2856-46D6-ABEA-6A2F42166779}" = mCore
"{EA516024-D84D-41F1-814F-83175A6188F2}" = Logitech Video Enumerator
"{EAA38532-7AD0-4f78-918A-4F4F02096ECE}" = The Sims™ 2 Celebration! Stuff
"{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer
"{F04CAFE3-D52F-4EFC-A1E8-316BD4C525D6}" = NTI Shadow
"{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}" = mMHouse
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F248ADFA-64E0-4b03-8A83-059078BED6A0}" = The Sims™ 2 Bon Voyage
"{F6090A17-0967-4A8A-B3C3-422A1B514D49}" = mDrWiFi
"{F7529650-B9DB-481B-0089-A2AC3C2821C1}" = The Sims 2 Nightlife
"{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}" = mWlsSafe
"7-Zip" = 7-Zip 4.65
"ABC Amber LIT Converter" = ABC Amber LIT Converter
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"AviSynth" = AviSynth 2.5
"BBCiPlayerDesktop.61DB7A798358575D6A969CCD73DDBBD723A6DA9D.1" = BBC iPlayer Desktop
"Canon iP3500 series User Registration" = Canon iP3500 series User Registration
"Canon iP4300 User Registration" = Canon iP4300 User Registration
"Canon Setup Utility 2.3" = Canon Setup Utility 2.3
"CANONIJPLM100" = PIXMA Extended Survey Program
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3" = Conexant HDA D110 MDC V.92 Modem
"Connection Manager" = Microsoft Connection Manager
"Doctor-Who-2010-Series" = Doctor-Who-2010-Series Screen Saver
"docXConverter3_is1" = docXConverter 3.1.2
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Easy-WebPrint" = Easy-WebPrint
"ExpressBurn" = Express Burn
"Google Desktop" = Google Desktop
"Google Video Converter_is1" = Google Video Converter 4.0.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"legacyqcam_10.40" = Logitech Legacy USB Camera Driver Package
"lvdrivers_11.50" = Logitech QuickCam Driver Package
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MediaNavigation.CDLabelPrint" = CD-LabelPrint
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MIXERLITE" = Mixer
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Prism" = Prism Video Converter
"ProInst" = Intel® PROSet/Wireless Software
"Rapport_msi" = Rapport
"RealPlayer 6.0" = RealPlayer Basic
"RegCure" = RegCure
"RollerCoaster Tycoon Setup" = Roll
"Rundll Errors Fix Wizard_is1" = Rundll Errors Fix Wizard
"SAMSUNG CDMA Modem" = SAMSUNG CDMA Modem Driver Set
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SearchAssist" = SearchAssist
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"tunnel" = tunnel Screen Saver
"ViewpointMediaPlayer" = Viewpoint Media Player
"Vodafone 804SS USB driver" = Vodafone 804SS USB driver Software
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xvid_is1" = Xvid 1.2.2 final uninstall
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Facebook Plug-In" = Facebook Plug-In
"uTorrent" = µTorrent
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 05/01/2011 16:14:51 | Computer Name = EMMA | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2000
Error - 05/01/2011 16:14:52 | Computer Name = EMMA | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 05/01/2011 16:14:52 | Computer Name = EMMA | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 3969
Error - 05/01/2011 16:14:52 | Computer Name = EMMA | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 3969
Error - 05/01/2011 16:14:54 | Computer Name = EMMA | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 05/01/2011 16:14:54 | Computer Name = EMMA | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 5953
Error - 05/01/2011 16:14:54 | Computer Name = EMMA | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 5953
Error - 05/01/2011 16:14:56 | Computer Name = EMMA | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 05/01/2011 16:14:56 | Computer Name = EMMA | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 7906
Error - 05/01/2011 16:14:56 | Computer Name = EMMA | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 7906
[ System Events ]
Error - 04/01/2011 06:25:48 | Computer Name = EMMA | Source = NetBT | ID = 4311
Description = Initialization failed because the driver device could not be created.
Error - 04/01/2011 06:25:48 | Computer Name = EMMA | Source = NetBT | ID = 4311
Description = Initialization failed because the driver device could not be created.
Error - 04/01/2011 06:25:48 | Computer Name = EMMA | Source = NetBT | ID = 4311
Description = Initialization failed because the driver device could not be created.
Error - 05/01/2011 20:09:09 | Computer Name = EMMA | Source = NetBT | ID = 4311
Description = Initialization failed because the driver device could not be created.
Error - 05/01/2011 20:09:09 | Computer Name = EMMA | Source = NetBT | ID = 4311
Description = Initialization failed because the driver device could not be created.
Error - 05/01/2011 20:09:09 | Computer Name = EMMA | Source = NetBT | ID = 4311
Description = Initialization failed because the driver device could not be created.
Error - 05/01/2011 20:09:09 | Computer Name = EMMA | Source = NetBT | ID = 4311
Description = Initialization failed because the driver device could not be created.
Error - 05/01/2011 20:09:09 | Computer Name = EMMA | Source = NetBT | ID = 4311
Description = Initialization failed because the driver device could not be created.
Error - 05/01/2011 20:09:09 | Computer Name = EMMA | Source = NetBT | ID = 4311
Description = Initialization failed because the driver device could not be created.
Error - 05/01/2011 20:09:09 | Computer Name = EMMA | Source = NetBT | ID = 4311
Description = Initialization failed because the driver device could not be created.
< End of report >
Thanks!
Emma
Edited by Emma&Pat, 06 January 2011 - 10:17 AM.
Sign In
Create Account
