Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

AVAST SANDBOX

Started by msbug , Mar 22 2011 07:12 AM

  • This topic is locked This topic is locked

#1
msbug
Posted 22 March 2011 - 07:12 AM

msbug

    Member

  • Member
  • PipPipPip
  • 163 posts
I uninstalled AVG and installed Avast. It will take me a little to get use to Avast. When I log on to my computer this message from Avast comes up:

You are opening an application that may be potentially unsafe, we strongly recommend opening this application in the virtual environment of the Avast Sandbox to avoid any risk to your computer.
c:\program files\SIFXINST\SIFXINST Opened by windows.exe

What do I do?

When I did my first scans, I had wins32 Hot Bar and Wins32 Zawangi. That is gone now. I don't know how my AVG and Malwarebytes ever allowed those on.

But I was trying to read about the above and am not sure if it's suppose to be there or not?

Thanks.
  • 0

Advertisements

#2
Essexboy
Posted 22 March 2011 - 12:33 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi there I might as well help you here ...

With regards to Avast what you are seeing is the Autosandbox at work.. With this if a file is downloaded from the internet or from a USB Avast will query whether you want to run it in a virtual system to ensure it is not bad.. However, if you are happy with the programme then there is a drop down box where you can add it to the trusted list of programmes and you will not be asked again

So lets see what you have

Download OTL to your Desktop
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Select All Users
  • Under the Custom Scan box paste this in

    netsvcs
    %SYSTEMDRIVE%\*.exe
    /md5start
    explorer.exe
    winlogon.exe
    Userinit.exe
    svchost.exe
    /md5stop
    %systemroot%\*. /mp /s
    CREATERESTOREPOINT

  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Post both logs

  • 0

#3
msbug
Posted 22 March 2011 - 01:35 PM

msbug

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 163 posts
I hope I did this right, am attaching them. Didn't know if you wanted them attached or copied here.

OTL logfile created on: 3/22/2011 3:18:20 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Owner\My Documents\Downloads
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,013.00 Mb Total Physical Memory | 528.00 Mb Available Physical Memory | 52.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 88.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 228.28 Gb Total Space | 196.04 Gb Free Space | 85.88% Space Free | Partition Type: NTFS
Drive D: | 4.59 Gb Total Space | 2.23 Gb Free Space | 48.61% Space Free | Partition Type: FAT32

Computer Name: DEBEVE | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/03/22 15:17:35 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\My Documents\Downloads\OTL.exe
PRC - [2011/02/23 10:04:20 | 003,451,496 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/02/23 10:04:19 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2010/11/24 18:13:41 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/05/20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/10/23 08:50:35 | 000,046,640 | R--- | M] (AOL LLC) -- C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
PRC - [2006/09/25 20:52:48 | 000,050,736 | ---- | M] (America Online, Inc.) -- C:\Program Files\Common Files\AOL\1135264480\EE\aolsoftware.exe
PRC - [2005/12/22 11:10:30 | 000,172,032 | ---- | M] (New Boundary Technologies, Inc.) -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
PRC - [2005/07/25 15:25:18 | 000,491,520 | ---- | M] ( ) -- C:\WINDOWS\system32\lxcgcoms.exe
PRC - [2005/07/21 02:07:22 | 000,200,704 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark 2300 Series\lxcgmon.exe
PRC - [2004/11/15 19:04:32 | 000,135,168 | ---- | M] (Alcor Micro, Corp.) -- C:\Program Files\Digital Media Reader\shwiconEM.exe
PRC - [2004/10/15 16:54:14 | 000,100,016 | ---- | M] (America Online, Inc) -- C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
PRC - [2004/10/15 16:54:12 | 000,046,768 | ---- | M] (America Online Inc) -- C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe
PRC - [2004/09/21 15:10:12 | 000,550,400 | ---- | M] () -- C:\WINDOWS\mHotkey.exe
PRC - [2004/03/03 00:24:50 | 005,576,704 | ---- | M] (Chicony) -- C:\WINDOWS\CNYHKey.exe


========== Modules (SafeList) ==========

MOD - [2011/03/22 15:17:35 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\My Documents\Downloads\OTL.exe
MOD - [2011/02/23 10:04:17 | 000,197,208 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2006/08/25 11:45:55 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
MOD - [2002/09/26 07:07:02 | 000,005,120 | ---- | M] () -- C:\WINDOWS\HKCYDLL.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/02/23 10:04:19 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/05/20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2009/09/23 16:37:30 | 000,051,168 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus®
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2006/10/23 08:50:35 | 000,046,640 | R--- | M] (AOL LLC) [Auto | Running] -- C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe -- (AOL ACS)
SRV - [2005/12/22 11:10:30 | 000,172,032 | ---- | M] (New Boundary Technologies, Inc.) [Auto | Running] -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -- (PrismXL)
SRV - [2005/07/25 15:25:18 | 000,491,520 | ---- | M] ( ) [On_Demand | Running] -- C:\WINDOWS\System32\lxcgcoms.exe -- (lxcg_device)
SRV - [2004/10/15 16:54:14 | 000,100,016 | ---- | M] (America Online, Inc) [Auto | Running] -- C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe -- (AOL TopSpeedMonitor)


========== Driver Services (SafeList) ==========

DRV - [2011/02/23 09:56:55 | 000,371,544 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/02/23 09:56:45 | 000,301,528 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/02/23 09:55:49 | 000,049,240 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/02/23 09:55:47 | 000,102,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/02/23 09:55:10 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/02/23 09:54:57 | 000,030,680 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/02/23 09:54:55 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/05/20 16:27:24 | 000,030,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nx6000.sys -- (MSHUSBVideo)
DRV - [2008/01/13 01:18:11 | 000,008,552 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2005/12/23 11:47:45 | 000,044,288 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2005/06/28 06:28:00 | 000,349,856 | R--- | M] (SMC Networks, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\2862WICB.sys -- (SMC2862W)
DRV - [2005/04/27 14:45:08 | 000,300,672 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) High Definition Audio Driver (WDM)
DRV - [2005/04/04 12:01:34 | 000,035,712 | ---- | M] (Sonic Focus, Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sfng32.sys -- (sfng32)
DRV - [2004/11/15 21:41:54 | 000,036,804 | ---- | M] (Alcor Micro Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Sunkfilt.sys -- (SunkFilt)
DRV - [2004/11/10 21:30:18 | 000,024,832 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2004/06/17 18:56:22 | 000,220,032 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2004/06/17 18:55:38 | 000,685,056 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2004/06/17 18:55:04 | 001,041,536 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2003/01/10 17:13:04 | 000,033,588 | R--- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
DRV - [2001/08/17 09:49:32 | 000,019,968 | ---- | M] (Macronix International Co., Ltd. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mxnic.sys -- (mxnic)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?fr=fp-yie8
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\URLSearchHook: *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\URLSearchHook: *{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..browser.search.selectedEngine: "Yahoo! Search"
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {23ad39a3-36e7-4d8e-92d2-ba116ee32c45}:1.0.4
FF - prefs.js..extensions.enabledItems: [email protected]:20110101

FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/03/21 22:54:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/15 03:49:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/03/02 10:33:42 | 000,000,000 | ---D | M]

[2008/09/12 19:26:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Extensions
[2011/03/22 14:35:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions
[2010/11/16 16:09:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/02/14 00:44:48 | 000,000,000 | ---D | M] (Swoosty SEO Tools) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{23ad39a3-36e7-4d8e-92d2-ba116ee32c45}
[2008/09/12 14:48:16 | 000,000,000 | ---D | M] (Yuku) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{53A01AC4-9238-453c-990B-D4C5D4220FF2}(2)
[2008/09/12 14:48:12 | 000,000,000 | ---D | M] (Firefox Companion for eBay) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{62760FD6-B943-48C9-AB09-F99C6FE96088}(2)
[2008/09/12 14:48:15 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2)
[2009/12/05 22:36:13 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2008/09/12 14:46:19 | 000,000,000 | ---D | M] (mediaplayerconnectivity) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{84b24861-62f6-364b-eba5-2e5e2061d7e6}(2)
[2009/12/05 22:36:14 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/10/27 23:56:09 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus®)) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2008/10/21 19:12:08 | 000,000,000 | ---D | M] (Move Media Player) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\[email protected]
[2009/12/05 22:37:44 | 000,000,000 | ---D | M] (YesScript) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\[email protected]
[2010/04/03 13:15:08 | 000,005,511 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\searchplugins\foodtv.xml
[2008/06/21 02:33:13 | 000,000,908 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\searchplugins\IMDB.xml
[2011/03/22 14:35:43 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/12/07 08:22:54 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010/11/17 22:48:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/03/21 22:54:55 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2010/11/17 22:48:40 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2009/11/19 17:16:28 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
[2010/11/17 22:48:39 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/19 17:16:29 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll

O1 HOSTS File: ([2004/08/04 15:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll ()
O2 - BHO: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found.
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CHotkey] C:\WINDOWS\mHotkey.exe ()
O4 - HKLM..\Run: [HostManager] C:\Program Files\Common Files\AOL\1135264480\EE\aolsoftware.exe (America Online, Inc.)
O4 - HKLM..\Run: [ledpointer] C:\WINDOWS\CNYHKey.exe (Chicony)
O4 - HKLM..\Run: [LXCGCATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.DLL ()
O4 - HKLM..\Run: [lxcgmon.exe] C:\Program Files\Lexmark 2300 Series\lxcgmon.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [Pure Networks Port Magic] C:\Program Files\Pure Networks\Port Magic\PortAOL.exe (Pure Networks, Inc.)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [SunKistEM] C:\Program Files\Digital Media Reader\shwiconEM.exe (Alcor Micro, Corp.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled [2009/12/09 00:52:56 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Install Pending Files.LNK = C:\Program Files\SIFXINST\SIFXINST.EXE (New Boundary Technologies, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: everythinglv.com ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: harristeeter.com ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: imdb.com/help/show_leaf?enablecookies ([www] https in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.ma...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\yinsthelper.dll (YInstStarter Class)
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.micros...ntent/opuc3.cab (Office Update Installation Engine)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1229556528546 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_02)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ent/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/26 14:04:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004/09/13 12:15:24 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ]
O32 - AutoRun File - [2003/08/08 17:24:26 | 000,000,045 | -HS- | M] () - D:\autorun.inf.aug.8 -- [ FAT32 ]
O33 - MountPoints2\D\Shell - "" = AutoRun
O33 - MountPoints2\D\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\D\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (56027131116781568)

========== Files/Folders - Created Within 30 Days ==========

[2011/03/22 08:51:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Owner\Recent
[2011/03/21 22:55:10 | 000,301,528 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/03/21 22:55:10 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/03/21 22:55:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2011/03/21 22:55:08 | 000,049,240 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/03/21 22:55:08 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/03/21 22:55:07 | 000,371,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/03/21 22:55:07 | 000,102,232 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/03/21 22:55:07 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/03/21 22:55:06 | 000,030,680 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/03/21 22:54:54 | 000,190,016 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/03/21 22:54:54 | 000,040,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/03/21 22:54:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011/03/21 22:54:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2006/11/16 14:39:24 | 001,183,744 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgserv.dll
[2006/11/16 14:39:24 | 001,134,592 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgusb1.dll
[2006/11/16 14:39:24 | 000,372,736 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgih.exe
[2006/11/16 14:39:24 | 000,155,648 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgprox.dll
[2006/11/16 14:39:24 | 000,114,688 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgpplc.dll
[2006/11/16 14:39:23 | 000,704,512 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcomc.dll
[2006/11/16 14:39:23 | 000,491,520 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcoms.exe
[2006/11/16 14:39:23 | 000,483,328 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcglmpm.dll
[2006/11/16 14:39:23 | 000,413,696 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcomm.dll
[2006/03/31 05:01:16 | 000,218,112 | ---- | C] (Soeperman Enterprises Ltd.) -- C:\Program Files\HijackThis.exe

========== Files - Modified Within 30 Days ==========

[2011/03/22 10:11:18 | 000,004,454 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\wklnhst.dat
[2011/03/22 08:58:14 | 000,444,028 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/03/22 08:58:14 | 000,071,904 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/03/22 08:54:26 | 000,001,170 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/03/22 08:54:03 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/03/22 08:54:02 | 1062,776,832 | -HS- | M] () -- C:\hiberfil.sys
[2011/03/22 08:52:14 | 000,011,730 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20110322_085200.reg
[2011/03/22 08:50:19 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/03/21 22:55:10 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/03/21 22:55:07 | 000,002,625 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/03/20 10:37:26 | 001,771,465 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hellraiser.JPG
[2011/03/20 10:26:38 | 001,688,793 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\iknowjack2.JPG
[2011/03/20 10:25:44 | 001,690,835 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\iknowjack1.JPG
[2011/03/20 10:23:56 | 001,577,656 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley5a.JPG
[2011/03/20 10:22:58 | 001,695,118 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley5.JPG
[2011/03/20 10:16:14 | 001,824,518 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley4a.JPG
[2011/03/20 10:15:24 | 001,715,115 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley4.JPG
[2011/03/20 10:11:14 | 001,671,013 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley3a.JPG
[2011/03/20 10:09:52 | 001,681,264 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley3.JPG
[2011/03/20 10:06:54 | 001,710,862 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley2a.JPG
[2011/03/20 10:05:44 | 001,749,293 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley2.JPG
[2011/03/20 10:04:00 | 001,592,941 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley1a.JPG
[2011/03/20 10:02:40 | 001,760,188 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley1.JPG
[2011/03/20 09:14:24 | 001,794,773 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\sexdrugs.JPG
[2011/03/20 08:56:50 | 001,711,086 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rollingstones2.JPG
[2011/03/20 08:56:22 | 001,755,162 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rollingstones1.JPG
[2011/03/20 08:51:30 | 001,581,879 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\alligator2.JPG
[2011/03/20 08:51:14 | 001,720,147 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\alligator1.JPG
[2011/03/20 08:39:34 | 001,713,774 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\beatles2.JPG
[2011/03/20 08:38:56 | 001,762,172 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\beatles1.JPG
[2011/03/20 08:34:02 | 001,743,445 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\avenged.JPG
[2011/03/20 08:29:48 | 001,739,661 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\divine.JPG
[2011/03/20 05:39:10 | 001,507,096 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skydisc2.JPG
[2011/03/20 05:38:52 | 001,592,499 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skydisc3.JPG
[2011/03/20 05:37:22 | 001,704,301 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skydisc1.JPG
[2011/03/19 09:44:10 | 000,870,128 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\mcs.rma
[2011/03/19 09:44:10 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\048BF8
[2011/03/17 10:31:42 | 001,276,425 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\omega3.JPG
[2011/03/17 10:29:44 | 001,755,521 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\omega1.JPG
[2011/03/17 10:04:38 | 001,683,397 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\mr softee frisbee.JPG
[2011/03/17 09:56:16 | 001,661,329 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\linus blanket.JPG
[2011/03/16 05:03:52 | 001,466,335 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\candy1.JPG
[2011/03/16 05:02:38 | 001,527,903 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\candy2.JPG
[2011/03/16 04:55:46 | 000,936,574 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelpend2.JPG
[2011/03/16 04:55:26 | 000,881,017 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelpend1.JPG
[2011/03/13 06:42:42 | 000,932,167 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\morgan1.JPG
[2011/03/13 06:42:34 | 000,939,872 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\morgan2.JPG
[2011/03/13 04:33:38 | 001,035,178 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dopey2.JPG
[2011/03/13 04:30:48 | 000,912,038 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dopey1.JPG
[2011/03/13 03:36:04 | 000,885,631 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\maltese1.JPG
[2011/03/13 03:35:50 | 000,885,839 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\maltese2.JPG
[2011/03/13 03:27:26 | 000,825,961 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\omega2a.JPG
[2011/03/13 03:21:20 | 000,948,798 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelcoin2.JPG
[2011/03/13 03:21:14 | 000,916,051 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angel2.JPG
[2011/03/13 03:19:46 | 000,959,827 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelcoin1.JPG
[2011/03/13 03:19:40 | 000,947,102 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angel1.JPG
[2011/03/13 03:10:06 | 000,938,934 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\shell2.JPG
[2011/03/13 03:09:38 | 001,025,067 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\shell1.JPG
[2011/03/13 03:07:00 | 000,916,574 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\marcasite x.JPG
[2011/03/13 02:57:52 | 000,895,681 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chief ring1.JPG
[2011/03/13 02:55:48 | 000,868,332 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnetcab1.JPG
[2011/03/13 02:55:36 | 000,908,027 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnetcab2.JPG
[2011/03/13 02:50:44 | 000,935,215 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\invictacuff1.JPG
[2011/03/13 02:50:28 | 000,896,804 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\invictacuff2.JPG
[2011/03/13 02:50:10 | 001,039,114 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\invictacuff3.JPG
[2011/03/13 02:48:12 | 000,939,375 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\kisspin.JPG
[2011/03/13 02:46:48 | 001,003,014 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chief ring2.JPG
[2011/03/13 02:38:48 | 000,900,896 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley100a.JPG
[2011/03/13 02:38:40 | 000,875,742 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley100b.JPG
[2011/03/13 02:37:00 | 000,929,513 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\10gram2a.JPG
[2011/03/13 02:36:06 | 000,918,380 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\10gram1a.JPG
[2011/03/09 10:17:45 | 000,012,528 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20110309_091741.reg
[2011/03/02 10:40:02 | 000,007,646 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20110302_093957.reg
[2011/03/02 06:33:36 | 000,865,371 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\10gram1.JPG
[2011/02/27 08:12:14 | 000,992,201 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hersheywhite.JPG
[2011/02/27 08:11:32 | 001,033,865 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hersheyblack.JPG
[2011/02/27 07:50:16 | 000,939,575 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chakram1.JPG
[2011/02/27 07:49:22 | 000,973,340 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chakram2.JPG
[2011/02/27 07:49:14 | 001,030,958 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chakram3.JPG
[2011/02/27 07:48:12 | 000,873,821 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\agate1.JPG
[2011/02/27 07:47:50 | 000,824,653 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\agate2.JPG
[2011/02/27 07:28:18 | 000,795,222 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets3.JPG
[2011/02/27 07:27:34 | 001,042,692 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets4.JPG
[2011/02/27 07:19:18 | 000,939,380 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets2.JPG
[2011/02/27 07:17:52 | 000,872,890 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets1.JPG
[2011/02/24 08:14:44 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2011/02/23 10:04:21 | 000,040,648 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/02/23 10:04:17 | 000,190,016 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/02/23 09:56:55 | 000,371,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/02/23 09:56:45 | 000,301,528 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/02/23 09:55:49 | 000,049,240 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/02/23 09:55:47 | 000,102,232 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/02/23 09:55:44 | 000,096,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/02/23 09:55:10 | 000,025,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/02/23 09:54:57 | 000,030,680 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/02/23 09:54:55 | 000,019,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/02/22 09:54:08 | 001,109,768 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\punisher.JPG
[2011/02/22 09:44:32 | 001,114,192 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skullsnake3.JPG
[2011/02/22 09:44:02 | 000,999,429 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skullsnake2.JPG
[2011/02/22 09:43:42 | 001,104,649 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skullsnake1.JPG
[2011/02/22 09:39:38 | 001,121,393 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\jimi.JPG
[2011/02/22 09:27:06 | 001,048,925 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\batmanbox.JPG
[2011/02/22 09:14:56 | 000,946,777 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\grumpy3.JPG
[2011/02/22 09:13:34 | 000,826,305 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\grumpy1.JPG
[2011/02/22 09:12:12 | 001,038,189 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\grumpy2.JPG
[2011/02/22 09:08:02 | 000,992,421 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\WITCH3.JPG
[2011/02/22 09:06:44 | 000,865,492 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\snow back.JPG
[2011/02/22 09:06:12 | 000,843,162 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\witch.JPG
[2011/02/22 09:04:58 | 000,993,928 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\WITCH2.JPG

========== Files Created - No Company Name ==========

[2011/03/22 08:52:13 | 000,011,730 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20110322_085200.reg
[2011/03/21 22:55:10 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/03/21 00:44:07 | 001,771,465 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hellraiser.JPG
[2011/03/20 23:10:39 | 001,577,656 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley5a.JPG
[2011/03/20 23:10:36 | 001,695,118 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley5.JPG
[2011/03/20 23:10:30 | 001,824,518 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley4a.JPG
[2011/03/20 23:10:26 | 001,715,115 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley4.JPG
[2011/03/20 23:10:23 | 001,671,013 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley3a.JPG
[2011/03/20 23:10:20 | 001,681,264 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley3.JPG
[2011/03/20 23:10:16 | 001,710,862 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley2a.JPG
[2011/03/20 23:10:13 | 001,749,293 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley2.JPG
[2011/03/20 23:10:09 | 001,592,941 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley1a.JPG
[2011/03/20 23:10:05 | 001,760,188 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley1.JPG
[2011/03/20 23:04:33 | 001,581,879 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\alligator2.JPG
[2011/03/20 23:04:29 | 001,720,147 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\alligator1.JPG
[2011/03/20 23:03:25 | 001,688,793 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\iknowjack2.JPG
[2011/03/20 23:03:21 | 001,690,835 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\iknowjack1.JPG
[2011/03/20 22:59:29 | 001,794,773 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\sexdrugs.JPG
[2011/03/20 22:59:15 | 001,711,086 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rollingstones2.JPG
[2011/03/20 22:59:10 | 001,755,162 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rollingstones1.JPG
[2011/03/20 22:58:26 | 001,713,774 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\beatles2.JPG
[2011/03/20 22:58:22 | 001,762,172 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\beatles1.JPG
[2011/03/20 22:57:03 | 001,739,661 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\divine.JPG
[2011/03/20 22:56:36 | 001,743,445 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\avenged.JPG
[2011/03/20 19:25:12 | 000,916,051 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angel2.JPG
[2011/03/20 19:25:09 | 000,947,102 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angel1.JPG
[2011/03/20 19:23:45 | 000,825,961 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\omega2a.JPG
[2011/03/20 19:22:56 | 001,276,425 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\omega3.JPG
[2011/03/20 19:22:52 | 001,755,521 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\omega1.JPG
[2011/03/20 19:12:06 | 001,592,499 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skydisc3.JPG
[2011/03/20 19:12:02 | 001,507,096 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skydisc2.JPG
[2011/03/20 19:11:56 | 001,704,301 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skydisc1.JPG
[2011/03/17 23:25:02 | 000,936,574 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelpend2.JPG
[2011/03/17 23:24:58 | 000,881,017 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelpend1.JPG
[2011/03/17 23:20:09 | 001,527,903 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\candy2.JPG
[2011/03/17 23:20:05 | 001,466,335 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\candy1.JPG
[2011/03/17 23:18:05 | 001,683,397 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\mr softee frisbee.JPG
[2011/03/17 23:17:47 | 001,661,329 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\linus blanket.JPG
[2011/03/13 19:52:17 | 000,948,798 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelcoin2.JPG
[2011/03/13 19:52:12 | 000,959,827 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelcoin1.JPG
[2011/03/13 19:49:13 | 000,929,513 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\10gram2a.JPG
[2011/03/13 19:49:09 | 000,918,380 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\10gram1a.JPG
[2011/03/13 19:46:52 | 000,865,371 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\10gram1.JPG
[2011/03/13 19:45:57 | 000,875,742 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley100b.JPG
[2011/03/13 19:45:54 | 000,900,896 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley100a.JPG
[2011/03/13 19:31:44 | 000,939,872 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\morgan2.JPG
[2011/03/13 19:31:41 | 000,932,167 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\morgan1.JPG
[2011/03/13 19:30:15 | 001,035,178 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dopey2.JPG
[2011/03/13 19:30:11 | 000,912,038 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dopey1.JPG
[2011/03/13 19:26:46 | 000,885,839 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\maltese2.JPG
[2011/03/13 19:26:41 | 000,885,631 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\maltese1.JPG
[2011/03/13 19:25:11 | 000,916,574 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\marcasite x.JPG
[2011/03/13 19:24:54 | 000,938,934 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\shell2.JPG
[2011/03/13 19:24:50 | 001,025,067 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\shell1.JPG
[2011/03/13 19:23:52 | 000,896,804 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\invictacuff2.JPG
[2011/03/13 19:23:48 | 001,039,114 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\invictacuff3.JPG
[2011/03/13 19:23:43 | 000,935,215 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\invictacuff1.JPG
[2011/03/13 19:22:54 | 000,939,375 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\kisspin.JPG
[2011/03/13 19:21:53 | 000,908,027 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnetcab2.JPG
[2011/03/13 19:21:49 | 000,868,332 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnetcab1.JPG
[2011/03/13 19:20:36 | 000,895,681 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chief ring1.JPG
[2011/03/13 19:20:31 | 001,003,014 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chief ring2.JPG
[2011/03/09 10:17:43 | 000,012,528 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20110309_091741.reg
[2011/03/02 10:40:01 | 000,007,646 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20110302_093957.reg
[2011/02/27 20:31:00 | 000,824,653 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\agate2.JPG
[2011/02/27 20:30:57 | 000,873,821 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\agate1.JPG
[2011/02/27 20:28:37 | 000,992,201 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hersheywhite.JPG
[2011/02/27 20:28:04 | 001,033,865 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hersheyblack.JPG
[2011/02/27 20:27:27 | 001,030,958 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chakram3.JPG
[2011/02/27 20:27:23 | 000,973,340 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chakram2.JPG
[2011/02/27 20:27:19 | 000,939,575 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chakram1.JPG
[2011/02/27 20:23:59 | 000,795,222 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets3.JPG
[2011/02/27 20:23:55 | 001,042,692 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets4.JPG
[2011/02/27 20:23:52 | 000,939,380 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets2.JPG
[2011/02/27 20:23:48 | 000,872,890 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets1.JPG
[2011/02/24 08:14:01 | 000,002,347 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader 9.lnk
[2011/02/24 08:14:01 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2011/02/22 23:16:54 | 000,946,777 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\grumpy3.JPG
[2011/02/22 23:16:49 | 001,038,189 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\grumpy2.JPG
[2011/02/22 23:16:44 | 000,826,305 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\grumpy1.JPG
[2011/02/22 22:36:18 | 000,992,421 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\WITCH3.JPG
[2011/02/22 22:36:15 | 000,993,928 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\WITCH2.JPG
[2011/02/22 22:30:27 | 000,865,492 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\snow back.JPG
[2011/02/22 22:29:57 | 000,843,162 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\witch.JPG
[2011/02/22 21:14:04 | 000,916,628 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\flyingpig.JPG
[2011/02/22 21:12:06 | 001,048,925 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\batmanbox.JPG
[2011/02/22 21:11:34 | 001,121,393 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\jimi.JPG
[2011/02/22 21:09:42 | 001,109,768 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\punisher.JPG
[2011/02/22 21:09:26 | 001,114,192 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skullsnake3.JPG
[2011/02/22 21:09:22 | 000,999,429 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skullsnake2.JPG
[2011/02/22 21:09:18 | 001,104,649 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skullsnake1.JPG
[2011/02/20 20:47:27 | 000,923,852 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset12.JPG
[2011/02/20 20:47:23 | 000,909,432 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset11.JPG
[2011/02/20 20:47:17 | 000,905,658 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset10.JPG
[2011/02/20 20:47:12 | 000,941,762 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset8.JPG
[2011/02/20 20:47:08 | 000,945,510 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset7.JPG
[2011/02/20 20:47:05 | 000,911,083 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset6.JPG
[2011/02/20 20:47:01 | 000,935,908 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset9.JPG
[2011/02/20 20:46:57 | 000,939,672 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset5.JPG
[2011/02/20 20:46:54 | 000,942,267 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset4.JPG
[2011/02/20 20:46:51 | 000,925,980 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset3.JPG
[2011/02/20 20:46:47 | 000,931,017 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset2.JPG
[2011/02/20 20:46:42 | 001,078,662 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset1.JPG
[2010/12/07 08:23:44 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010/11/17 01:30:46 | 000,403,816 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2008/12/27 20:30:36 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\048BF8
[2008/12/27 20:30:35 | 000,870,128 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\mcs.rma
[2006/11/16 14:39:24 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxcgvs.dll
[2006/08/16 21:08:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MSDraw.ini
[2006/06/04 22:54:12 | 000,810,283 | ---- | C] () -- C:\Program Files\DSC00235.JPG
[2006/05/14 22:11:57 | 000,002,560 | ---- | C] () -- C:\WINDOWS\_MSRSTRT.EXE
[2006/05/14 11:26:56 | 000,002,956 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2006/04/01 18:17:54 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2006/02/09 09:19:10 | 000,003,609 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2006/01/18 07:02:48 | 000,000,044 | ---- | C] () -- C:\WINDOWS\liveup.ini
[2006/01/13 10:26:49 | 000,000,004 | ---- | C] () -- C:\WINDOWS\Pix1111.dat
[2006/01/11 17:03:56 | 000,003,384 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/12/30 12:43:20 | 000,000,427 | ---- | C] () -- C:\WINDOWS\COOK'N5.INI
[2005/12/29 10:06:06 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2005/12/28 10:45:10 | 000,017,920 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/12/27 22:06:02 | 000,004,454 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\wklnhst.dat
[2005/12/22 11:56:50 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXPRMON.DLL
[2005/12/22 11:56:50 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\LXPMONUI.DLL
[2005/12/22 11:14:31 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2005/12/22 11:13:49 | 000,532,544 | ---- | C] () -- C:\WINDOWS\PIC.dll
[2005/12/22 11:13:48 | 000,550,400 | ---- | C] () -- C:\WINDOWS\mHotkey.exe
[2005/12/22 11:13:48 | 000,049,152 | ---- | C] () -- C:\WINDOWS\CNYUSB.dll
[2005/12/22 11:13:48 | 000,011,776 | ---- | C] () -- C:\WINDOWS\HIDMNT.dll
[2005/12/22 11:13:48 | 000,005,120 | ---- | C] () -- C:\WINDOWS\HKCYDLL.dll
[2005/12/22 11:13:48 | 000,000,360 | ---- | C] () -- C:\WINDOWS\CNYHKey.ini
[2005/12/22 11:13:39 | 000,000,004 | ---- | C] () -- C:\WINDOWS\Pix11.dat
[2005/12/22 11:10:30 | 000,471,298 | ---- | C] () -- C:\WINDOWS\wallpg.exe
[2005/12/22 11:09:16 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/12/22 10:49:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2005/12/22 10:48:45 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2005/12/22 10:48:45 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2005/12/22 10:48:41 | 000,005,151 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2005/12/22 10:48:36 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/12/22 10:48:29 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2005/12/22 10:47:59 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2005/12/22 10:47:59 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2005/12/22 10:46:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2005/12/22 10:46:17 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/27 06:50:59 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/08/27 05:54:47 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\HotlineClient.exe
[2004/08/26 14:07:50 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004/08/26 14:01:37 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004/08/26 12:12:43 | 000,001,266 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004/08/26 12:12:43 | 000,000,498 | ---- | C] () -- C:\WINDOWS\System32\emver.ini
[2004/08/26 12:12:10 | 000,444,028 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/26 12:12:10 | 000,071,904 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/26 06:54:56 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/26 06:54:01 | 000,208,104 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2003/01/07 19:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2005/12/22 11:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator.DEBEVE\Application Data\SampleView
[2011/03/21 22:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2008/06/24 21:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ludia
[2007/09/19 17:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MailFrontier
[2006/03/31 22:38:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Napster
[2011/03/22 01:06:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2007/12/09 09:43:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2005/12/22 11:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\SampleView
[2009/12/08 22:44:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Auslogics
[2009/06/01 23:39:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009/12/06 00:52:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Grisoft
[2006/06/04 22:09:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Leadertech
[2008/06/24 21:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Ludia
[2005/12/22 11:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\SampleView
[2010/07/06 18:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Template
[2007/03/08 22:13:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Viewpoint
[2007/06/14 18:24:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Walgreens

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >
[2007/01/08 22:40:37 | 000,010,920 | ---- | M] () -- C:\aolconnfix.exe


< MD5 for: EXPLORER.EXE >
[2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\explorer.exe
[2007/06/13 07:26:03 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=7712DF0CDDE3A5AC89843E61CD5B3658 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\explorer.exe
[2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\system32\dllcache\explorer.exe
[2004/08/04 15:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\My Backup -- 05-12-22 0750AM\WINDOWS\explorer.exe
[2004/08/04 15:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\My Backup -- 05-12-22 0750AM\WINDOWS\system32\dllcache\explorer.exe
[2004/08/04 15:00:00 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe

< MD5 for: SVCHOST.EXE >
[2008/04/13 20:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\svchost.exe
[2004/08/04 15:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\My Backup -- 05-12-22 0750AM\WINDOWS\system32\dllcache\svchost.exe
[2004/08/04 15:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\My Backup -- 05-12-22 0750AM\WINDOWS\system32\svchost.exe
[2004/08/04 15:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
[2004/08/04 15:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2004/08/04 15:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\system32\svchost.exe

< MD5 for: USERINIT.EXE >
[2004/08/04 15:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\My Backup -- 05-12-22 0750AM\WINDOWS\system32\dllcache\userinit.exe
[2004/08/04 15:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\My Backup -- 05-12-22 0750AM\WINDOWS\system32\userinit.exe
[2004/08/04 15:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2004/08/04 15:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\system32\dllcache\userinit.exe
[2004/08/04 15:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\system32\userinit.exe
[2008/04/13 20:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004/08/04 15:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\My Backup -- 05-12-22 0750AM\WINDOWS\system32\dllcache\winlogon.exe
[2004/08/04 15:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\My Backup -- 05-12-22 0750AM\WINDOWS\system32\winlogon.exe
[2004/08/04 15:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2004/08/04 15:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004/08/04 15:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\system32\winlogon.exe
[2008/04/13 20:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\winlogon.exe

< %systemroot%\*. /mp /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 95 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34

< End of report >

Attached Files

  • Attached File  Extras.Txt   41.29KB   175 downloads
  • Attached File  OTL.Txt   120.84KB   120 downloads

  • 0

#4
Essexboy
Posted 22 March 2011 - 01:47 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Doesn't look to bad - a few strays to go ... When you update to SP3 what errors do you get when you try to connect to the net ?

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
    O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - No CLSID value found.
    O2 - BHO: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
    O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
    O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
    O3 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
    O3 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
    O3 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
    O33 - MountPoints2\D\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480


    :Files
    ipconfig /flushdns /c

    :Commands
    [purity]
    [resethosts]
    [emptytemp]
    [EMPTYFLASH]
    [CREATERESTOREPOINT]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

  • 0

#5
msbug
Posted 22 March 2011 - 02:10 PM

msbug

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 163 posts
I have tried 3 times to install SP3 and it hangs up my internet making the page time out or not load. So I uninstall it. The last time I had to do a restore to previous time to uninstall it.

When I rebooted after the fix of OTL I still get that unsafe file, is that suppose to be on my Gateway computer, or does it have something to do with the trojans I removed? If it is suppose to be on there then should I say it is safe on Avast?

Here is the rescan:

OTL logfile created on: 3/22/2011 4:02:18 PM - Run 3
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Owner\My Documents\Downloads
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,013.00 Mb Total Physical Memory | 614.00 Mb Available Physical Memory | 61.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 228.28 Gb Total Space | 195.89 Gb Free Space | 85.81% Space Free | Partition Type: NTFS
Drive D: | 4.59 Gb Total Space | 2.23 Gb Free Space | 48.61% Space Free | Partition Type: FAT32

Computer Name: DEBEVE | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/03/22 15:17:35 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\My Documents\Downloads\OTL.exe
PRC - [2011/02/23 10:04:20 | 003,451,496 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/02/23 10:04:19 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2010/05/20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/10/23 08:50:35 | 000,046,640 | R--- | M] (AOL LLC) -- C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
PRC - [2006/09/25 20:52:48 | 000,050,736 | ---- | M] (America Online, Inc.) -- C:\Program Files\Common Files\AOL\1135264480\EE\aolsoftware.exe
PRC - [2005/12/22 11:10:30 | 000,172,032 | ---- | M] (New Boundary Technologies, Inc.) -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
PRC - [2005/07/25 15:25:18 | 000,491,520 | ---- | M] ( ) -- C:\WINDOWS\system32\lxcgcoms.exe
PRC - [2005/07/21 02:07:22 | 000,200,704 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark 2300 Series\lxcgmon.exe
PRC - [2004/11/15 19:04:32 | 000,135,168 | ---- | M] (Alcor Micro, Corp.) -- C:\Program Files\Digital Media Reader\shwiconEM.exe
PRC - [2004/10/15 16:54:14 | 000,100,016 | ---- | M] (America Online, Inc) -- C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
PRC - [2004/10/15 16:54:12 | 000,046,768 | ---- | M] (America Online Inc) -- C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe
PRC - [2004/09/21 15:10:12 | 000,550,400 | ---- | M] () -- C:\WINDOWS\mHotkey.exe
PRC - [2004/03/03 00:24:50 | 005,576,704 | ---- | M] (Chicony) -- C:\WINDOWS\CNYHKey.exe


========== Modules (SafeList) ==========

MOD - [2011/03/22 15:17:35 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\My Documents\Downloads\OTL.exe
MOD - [2011/02/23 10:04:17 | 000,197,208 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2006/08/25 11:45:55 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/02/23 10:04:19 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/05/20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2009/09/23 16:37:30 | 000,051,168 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus®
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2006/10/23 08:50:35 | 000,046,640 | R--- | M] (AOL LLC) [Auto | Running] -- C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe -- (AOL ACS)
SRV - [2005/12/22 11:10:30 | 000,172,032 | ---- | M] (New Boundary Technologies, Inc.) [Auto | Running] -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -- (PrismXL)
SRV - [2005/07/25 15:25:18 | 000,491,520 | ---- | M] ( ) [On_Demand | Running] -- C:\WINDOWS\System32\lxcgcoms.exe -- (lxcg_device)
SRV - [2004/10/15 16:54:14 | 000,100,016 | ---- | M] (America Online, Inc) [Auto | Running] -- C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe -- (AOL TopSpeedMonitor)


========== Driver Services (SafeList) ==========

DRV - [2011/02/23 09:56:55 | 000,371,544 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/02/23 09:56:45 | 000,301,528 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/02/23 09:55:49 | 000,049,240 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/02/23 09:55:47 | 000,102,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/02/23 09:55:10 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/02/23 09:54:57 | 000,030,680 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/02/23 09:54:55 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/05/20 16:27:24 | 000,030,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nx6000.sys -- (MSHUSBVideo)
DRV - [2008/01/13 01:18:11 | 000,008,552 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2005/12/23 11:47:45 | 000,044,288 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2005/06/28 06:28:00 | 000,349,856 | R--- | M] (SMC Networks, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\2862WICB.sys -- (SMC2862W)
DRV - [2005/04/27 14:45:08 | 000,300,672 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) High Definition Audio Driver (WDM)
DRV - [2005/04/04 12:01:34 | 000,035,712 | ---- | M] (Sonic Focus, Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sfng32.sys -- (sfng32)
DRV - [2004/11/15 21:41:54 | 000,036,804 | ---- | M] (Alcor Micro Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Sunkfilt.sys -- (SunkFilt)
DRV - [2004/11/10 21:30:18 | 000,024,832 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2004/06/17 18:56:22 | 000,220,032 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2004/06/17 18:55:38 | 000,685,056 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2004/06/17 18:55:04 | 001,041,536 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2003/01/10 17:13:04 | 000,033,588 | R--- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
DRV - [2001/08/17 09:49:32 | 000,019,968 | ---- | M] (Macronix International Co., Ltd. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mxnic.sys -- (mxnic)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?fr=fp-yie8
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\URLSearchHook: *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\URLSearchHook: *{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..browser.search.selectedEngine: "Yahoo! Search"
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {23ad39a3-36e7-4d8e-92d2-ba116ee32c45}:1.0.4
FF - prefs.js..extensions.enabledItems: [email protected]:20110101

FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/03/21 22:54:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/15 03:49:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/03/02 10:33:42 | 000,000,000 | ---D | M]

[2008/09/12 19:26:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Extensions
[2011/03/22 14:35:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions
[2010/11/16 16:09:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/02/14 00:44:48 | 000,000,000 | ---D | M] (Swoosty SEO Tools) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{23ad39a3-36e7-4d8e-92d2-ba116ee32c45}
[2008/09/12 14:48:16 | 000,000,000 | ---D | M] (Yuku) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{53A01AC4-9238-453c-990B-D4C5D4220FF2}(2)
[2008/09/12 14:48:12 | 000,000,000 | ---D | M] (Firefox Companion for eBay) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{62760FD6-B943-48C9-AB09-F99C6FE96088}(2)
[2008/09/12 14:48:15 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2)
[2009/12/05 22:36:13 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2008/09/12 14:46:19 | 000,000,000 | ---D | M] (mediaplayerconnectivity) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{84b24861-62f6-364b-eba5-2e5e2061d7e6}(2)
[2009/12/05 22:36:14 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/10/27 23:56:09 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus®)) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2008/10/21 19:12:08 | 000,000,000 | ---D | M] (Move Media Player) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\[email protected]
[2009/12/05 22:37:44 | 000,000,000 | ---D | M] (YesScript) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\[email protected]
[2010/04/03 13:15:08 | 000,005,511 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\searchplugins\foodtv.xml
[2008/06/21 02:33:13 | 000,000,908 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\searchplugins\IMDB.xml
[2011/03/22 14:35:43 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/12/07 08:22:54 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010/11/17 22:48:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/03/21 22:54:55 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2010/11/17 22:48:40 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2009/11/19 17:16:28 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
[2010/11/17 22:48:39 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/19 17:16:29 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll

O1 HOSTS File: ([2011/03/22 15:51:26 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll ()
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll ()
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CHotkey] C:\WINDOWS\mHotkey.exe ()
O4 - HKLM..\Run: [HostManager] C:\Program Files\Common Files\AOL\1135264480\EE\aolsoftware.exe (America Online, Inc.)
O4 - HKLM..\Run: [ledpointer] C:\WINDOWS\CNYHKey.exe (Chicony)
O4 - HKLM..\Run: [LXCGCATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.DLL ()
O4 - HKLM..\Run: [lxcgmon.exe] C:\Program Files\Lexmark 2300 Series\lxcgmon.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [Pure Networks Port Magic] C:\Program Files\Pure Networks\Port Magic\PortAOL.exe (Pure Networks, Inc.)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [SunKistEM] C:\Program Files\Digital Media Reader\shwiconEM.exe (Alcor Micro, Corp.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled [2009/12/09 00:52:56 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Install Pending Files.LNK = C:\Program Files\SIFXINST\SIFXINST.EXE (New Boundary Technologies, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: everythinglv.com ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: harristeeter.com ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: imdb.com/help/show_leaf?enablecookies ([www] https in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.ma...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\yinsthelper.dll (YInstStarter Class)
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.micros...ntent/opuc3.cab (Office Update Installation Engine)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1229556528546 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_02)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ent/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/26 14:04:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004/09/13 12:15:24 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ]
O32 - AutoRun File - [2003/08/08 17:24:26 | 000,000,045 | -HS- | M] () - D:\autorun.inf.aug.8 -- [ FAT32 ]
O33 - MountPoints2\{7e2b48a7-72ff-11da-8d48-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{7e2b48a7-72ff-11da-8d48-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{7e2b48a7-72ff-11da-8d48-806d6172696f}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/03/22 15:51:18 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/03/22 08:51:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Owner\Recent
[2011/03/21 22:55:10 | 000,301,528 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/03/21 22:55:10 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/03/21 22:55:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2011/03/21 22:55:08 | 000,049,240 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/03/21 22:55:08 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/03/21 22:55:07 | 000,371,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/03/21 22:55:07 | 000,102,232 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/03/21 22:55:07 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/03/21 22:55:06 | 000,030,680 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/03/21 22:54:54 | 000,190,016 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/03/21 22:54:54 | 000,040,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/03/21 22:54:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011/03/21 22:54:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2006/11/16 14:39:24 | 001,183,744 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgserv.dll
[2006/11/16 14:39:24 | 001,134,592 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgusb1.dll
[2006/11/16 14:39:24 | 000,372,736 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgih.exe
[2006/11/16 14:39:24 | 000,155,648 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgprox.dll
[2006/11/16 14:39:24 | 000,114,688 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgpplc.dll
[2006/11/16 14:39:23 | 000,704,512 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcomc.dll
[2006/11/16 14:39:23 | 000,491,520 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcoms.exe
[2006/11/16 14:39:23 | 000,483,328 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcglmpm.dll
[2006/11/16 14:39:23 | 000,413,696 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcomm.dll
[2006/03/31 05:01:16 | 000,218,112 | ---- | C] (Soeperman Enterprises Ltd.) -- C:\Program Files\HijackThis.exe

========== Files - Modified Within 30 Days ==========

[2011/03/22 15:57:23 | 000,444,028 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/03/22 15:57:23 | 000,071,904 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/03/22 15:53:27 | 000,001,170 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/03/22 15:53:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/03/22 15:53:11 | 1062,776,832 | -HS- | M] () -- C:\hiberfil.sys
[2011/03/22 15:51:26 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2011/03/22 10:11:18 | 000,004,454 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\wklnhst.dat
[2011/03/22 08:52:14 | 000,011,730 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20110322_085200.reg
[2011/03/22 08:50:19 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/03/21 22:55:10 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/03/21 22:55:07 | 000,002,625 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/03/20 10:37:26 | 001,771,465 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hellraiser.JPG
[2011/03/20 10:26:38 | 001,688,793 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\iknowjack2.JPG
[2011/03/20 10:25:44 | 001,690,835 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\iknowjack1.JPG
[2011/03/20 10:23:56 | 001,577,656 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley5a.JPG
[2011/03/20 10:22:58 | 001,695,118 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley5.JPG
[2011/03/20 10:16:14 | 001,824,518 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley4a.JPG
[2011/03/20 10:15:24 | 001,715,115 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley4.JPG
[2011/03/20 10:11:14 | 001,671,013 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley3a.JPG
[2011/03/20 10:09:52 | 001,681,264 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley3.JPG
[2011/03/20 10:06:54 | 001,710,862 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley2a.JPG
[2011/03/20 10:05:44 | 001,749,293 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley2.JPG
[2011/03/20 10:04:00 | 001,592,941 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley1a.JPG
[2011/03/20 10:02:40 | 001,760,188 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley1.JPG
[2011/03/20 09:14:24 | 001,794,773 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\sexdrugs.JPG
[2011/03/20 08:56:50 | 001,711,086 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rollingstones2.JPG
[2011/03/20 08:56:22 | 001,755,162 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rollingstones1.JPG
[2011/03/20 08:51:30 | 001,581,879 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\alligator2.JPG
[2011/03/20 08:51:14 | 001,720,147 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\alligator1.JPG
[2011/03/20 08:39:34 | 001,713,774 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\beatles2.JPG
[2011/03/20 08:38:56 | 001,762,172 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\beatles1.JPG
[2011/03/20 08:34:02 | 001,743,445 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\avenged.JPG
[2011/03/20 08:29:48 | 001,739,661 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\divine.JPG
[2011/03/20 05:39:10 | 001,507,096 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skydisc2.JPG
[2011/03/20 05:38:52 | 001,592,499 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skydisc3.JPG
[2011/03/20 05:37:22 | 001,704,301 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skydisc1.JPG
[2011/03/19 09:44:10 | 000,870,128 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\mcs.rma
[2011/03/19 09:44:10 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\048BF8
[2011/03/17 10:31:42 | 001,276,425 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\omega3.JPG
[2011/03/17 10:29:44 | 001,755,521 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\omega1.JPG
[2011/03/17 10:04:38 | 001,683,397 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\mr softee frisbee.JPG
[2011/03/17 09:56:16 | 001,661,329 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\linus blanket.JPG
[2011/03/16 05:03:52 | 001,466,335 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\candy1.JPG
[2011/03/16 05:02:38 | 001,527,903 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\candy2.JPG
[2011/03/16 04:55:46 | 000,936,574 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelpend2.JPG
[2011/03/16 04:55:26 | 000,881,017 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelpend1.JPG
[2011/03/13 06:42:42 | 000,932,167 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\morgan1.JPG
[2011/03/13 06:42:34 | 000,939,872 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\morgan2.JPG
[2011/03/13 04:33:38 | 001,035,178 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dopey2.JPG
[2011/03/13 04:30:48 | 000,912,038 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dopey1.JPG
[2011/03/13 03:36:04 | 000,885,631 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\maltese1.JPG
[2011/03/13 03:35:50 | 000,885,839 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\maltese2.JPG
[2011/03/13 03:27:26 | 000,825,961 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\omega2a.JPG
[2011/03/13 03:21:20 | 000,948,798 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelcoin2.JPG
[2011/03/13 03:21:14 | 000,916,051 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angel2.JPG
[2011/03/13 03:19:46 | 000,959,827 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelcoin1.JPG
[2011/03/13 03:19:40 | 000,947,102 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angel1.JPG
[2011/03/13 03:10:06 | 000,938,934 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\shell2.JPG
[2011/03/13 03:09:38 | 001,025,067 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\shell1.JPG
[2011/03/13 03:07:00 | 000,916,574 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\marcasite x.JPG
[2011/03/13 02:57:52 | 000,895,681 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chief ring1.JPG
[2011/03/13 02:55:48 | 000,868,332 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnetcab1.JPG
[2011/03/13 02:55:36 | 000,908,027 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnetcab2.JPG
[2011/03/13 02:50:44 | 000,935,215 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\invictacuff1.JPG
[2011/03/13 02:50:28 | 000,896,804 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\invictacuff2.JPG
[2011/03/13 02:50:10 | 001,039,114 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\invictacuff3.JPG
[2011/03/13 02:48:12 | 000,939,375 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\kisspin.JPG
[2011/03/13 02:46:48 | 001,003,014 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chief ring2.JPG
[2011/03/13 02:38:48 | 000,900,896 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley100a.JPG
[2011/03/13 02:38:40 | 000,875,742 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley100b.JPG
[2011/03/13 02:37:00 | 000,929,513 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\10gram2a.JPG
[2011/03/13 02:36:06 | 000,918,380 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\10gram1a.JPG
[2011/03/09 10:17:45 | 000,012,528 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20110309_091741.reg
[2011/03/02 10:40:02 | 000,007,646 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20110302_093957.reg
[2011/03/02 06:33:36 | 000,865,371 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\10gram1.JPG
[2011/02/27 08:12:14 | 000,992,201 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hersheywhite.JPG
[2011/02/27 08:11:32 | 001,033,865 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hersheyblack.JPG
[2011/02/27 07:50:16 | 000,939,575 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chakram1.JPG
[2011/02/27 07:49:22 | 000,973,340 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chakram2.JPG
[2011/02/27 07:49:14 | 001,030,958 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chakram3.JPG
[2011/02/27 07:48:12 | 000,873,821 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\agate1.JPG
[2011/02/27 07:47:50 | 000,824,653 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\agate2.JPG
[2011/02/27 07:28:18 | 000,795,222 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets3.JPG
[2011/02/27 07:27:34 | 001,042,692 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets4.JPG
[2011/02/27 07:19:18 | 000,939,380 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets2.JPG
[2011/02/27 07:17:52 | 000,872,890 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets1.JPG
[2011/02/24 08:14:44 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2011/02/23 10:04:21 | 000,040,648 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/02/23 10:04:17 | 000,190,016 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/02/23 09:56:55 | 000,371,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/02/23 09:56:45 | 000,301,528 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/02/23 09:55:49 | 000,049,240 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/02/23 09:55:47 | 000,102,232 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/02/23 09:55:44 | 000,096,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/02/23 09:55:10 | 000,025,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/02/23 09:54:57 | 000,030,680 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/02/23 09:54:55 | 000,019,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/02/22 09:54:08 | 001,109,768 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\punisher.JPG
[2011/02/22 09:44:32 | 001,114,192 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skullsnake3.JPG
[2011/02/22 09:44:02 | 000,999,429 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skullsnake2.JPG
[2011/02/22 09:43:42 | 001,104,649 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skullsnake1.JPG
[2011/02/22 09:39:38 | 001,121,393 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\jimi.JPG
[2011/02/22 09:27:06 | 001,048,925 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\batmanbox.JPG
[2011/02/22 09:14:56 | 000,946,777 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\grumpy3.JPG
[2011/02/22 09:13:34 | 000,826,305 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\grumpy1.JPG
[2011/02/22 09:12:12 | 001,038,189 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\grumpy2.JPG
[2011/02/22 09:08:02 | 000,992,421 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\WITCH3.JPG
[2011/02/22 09:06:44 | 000,865,492 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\snow back.JPG
[2011/02/22 09:06:12 | 000,843,162 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\witch.JPG
[2011/02/22 09:04:58 | 000,993,928 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\WITCH2.JPG

========== Files Created - No Company Name ==========

[2011/03/22 08:52:13 | 000,011,730 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20110322_085200.reg
[2011/03/21 22:55:10 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/03/21 00:44:07 | 001,771,465 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hellraiser.JPG
[2011/03/20 23:10:39 | 001,577,656 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley5a.JPG
[2011/03/20 23:10:36 | 001,695,118 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley5.JPG
[2011/03/20 23:10:30 | 001,824,518 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley4a.JPG
[2011/03/20 23:10:26 | 001,715,115 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley4.JPG
[2011/03/20 23:10:23 | 001,671,013 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley3a.JPG
[2011/03/20 23:10:20 | 001,681,264 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley3.JPG
[2011/03/20 23:10:16 | 001,710,862 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley2a.JPG
[2011/03/20 23:10:13 | 001,749,293 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley2.JPG
[2011/03/20 23:10:09 | 001,592,941 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley1a.JPG
[2011/03/20 23:10:05 | 001,760,188 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley1.JPG
[2011/03/20 23:04:33 | 001,581,879 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\alligator2.JPG
[2011/03/20 23:04:29 | 001,720,147 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\alligator1.JPG
[2011/03/20 23:03:25 | 001,688,793 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\iknowjack2.JPG
[2011/03/20 23:03:21 | 001,690,835 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\iknowjack1.JPG
[2011/03/20 22:59:29 | 001,794,773 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\sexdrugs.JPG
[2011/03/20 22:59:15 | 001,711,086 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rollingstones2.JPG
[2011/03/20 22:59:10 | 001,755,162 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rollingstones1.JPG
[2011/03/20 22:58:26 | 001,713,774 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\beatles2.JPG
[2011/03/20 22:58:22 | 001,762,172 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\beatles1.JPG
[2011/03/20 22:57:03 | 001,739,661 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\divine.JPG
[2011/03/20 22:56:36 | 001,743,445 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\avenged.JPG
[2011/03/20 19:25:12 | 000,916,051 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angel2.JPG
[2011/03/20 19:25:09 | 000,947,102 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angel1.JPG
[2011/03/20 19:23:45 | 000,825,961 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\omega2a.JPG
[2011/03/20 19:22:56 | 001,276,425 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\omega3.JPG
[2011/03/20 19:22:52 | 001,755,521 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\omega1.JPG
[2011/03/20 19:12:06 | 001,592,499 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skydisc3.JPG
[2011/03/20 19:12:02 | 001,507,096 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skydisc2.JPG
[2011/03/20 19:11:56 | 001,704,301 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skydisc1.JPG
[2011/03/17 23:25:02 | 000,936,574 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelpend2.JPG
[2011/03/17 23:24:58 | 000,881,017 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelpend1.JPG
[2011/03/17 23:20:09 | 001,527,903 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\candy2.JPG
[2011/03/17 23:20:05 | 001,466,335 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\candy1.JPG
[2011/03/17 23:18:05 | 001,683,397 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\mr softee frisbee.JPG
[2011/03/17 23:17:47 | 001,661,329 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\linus blanket.JPG
[2011/03/13 19:52:17 | 000,948,798 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelcoin2.JPG
[2011/03/13 19:52:12 | 000,959,827 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelcoin1.JPG
[2011/03/13 19:49:13 | 000,929,513 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\10gram2a.JPG
[2011/03/13 19:49:09 | 000,918,380 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\10gram1a.JPG
[2011/03/13 19:46:52 | 000,865,371 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\10gram1.JPG
[2011/03/13 19:45:57 | 000,875,742 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley100b.JPG
[2011/03/13 19:45:54 | 000,900,896 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley100a.JPG
[2011/03/13 19:31:44 | 000,939,872 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\morgan2.JPG
[2011/03/13 19:31:41 | 000,932,167 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\morgan1.JPG
[2011/03/13 19:30:15 | 001,035,178 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dopey2.JPG
[2011/03/13 19:30:11 | 000,912,038 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dopey1.JPG
[2011/03/13 19:26:46 | 000,885,839 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\maltese2.JPG
[2011/03/13 19:26:41 | 000,885,631 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\maltese1.JPG
[2011/03/13 19:25:11 | 000,916,574 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\marcasite x.JPG
[2011/03/13 19:24:54 | 000,938,934 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\shell2.JPG
[2011/03/13 19:24:50 | 001,025,067 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\shell1.JPG
[2011/03/13 19:23:52 | 000,896,804 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\invictacuff2.JPG
[2011/03/13 19:23:48 | 001,039,114 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\invictacuff3.JPG
[2011/03/13 19:23:43 | 000,935,215 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\invictacuff1.JPG
[2011/03/13 19:22:54 | 000,939,375 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\kisspin.JPG
[2011/03/13 19:21:53 | 000,908,027 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnetcab2.JPG
[2011/03/13 19:21:49 | 000,868,332 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnetcab1.JPG
[2011/03/13 19:20:36 | 000,895,681 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chief ring1.JPG
[2011/03/13 19:20:31 | 001,003,014 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chief ring2.JPG
[2011/03/09 10:17:43 | 000,012,528 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20110309_091741.reg
[2011/03/02 10:40:01 | 000,007,646 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20110302_093957.reg
[2011/02/27 20:31:00 | 000,824,653 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\agate2.JPG
[2011/02/27 20:30:57 | 000,873,821 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\agate1.JPG
[2011/02/27 20:28:37 | 000,992,201 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hersheywhite.JPG
[2011/02/27 20:28:04 | 001,033,865 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hersheyblack.JPG
[2011/02/27 20:27:27 | 001,030,958 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chakram3.JPG
[2011/02/27 20:27:23 | 000,973,340 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chakram2.JPG
[2011/02/27 20:27:19 | 000,939,575 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chakram1.JPG
[2011/02/27 20:23:59 | 000,795,222 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets3.JPG
[2011/02/27 20:23:55 | 001,042,692 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets4.JPG
[2011/02/27 20:23:52 | 000,939,380 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets2.JPG
[2011/02/27 20:23:48 | 000,872,890 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets1.JPG
[2011/02/24 08:14:01 | 000,002,347 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader 9.lnk
[2011/02/24 08:14:01 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2011/02/22 23:16:54 | 000,946,777 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\grumpy3.JPG
[2011/02/22 23:16:49 | 001,038,189 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\grumpy2.JPG
[2011/02/22 23:16:44 | 000,826,305 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\grumpy1.JPG
[2011/02/22 22:36:18 | 000,992,421 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\WITCH3.JPG
[2011/02/22 22:36:15 | 000,993,928 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\WITCH2.JPG
[2011/02/22 22:30:27 | 000,865,492 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\snow back.JPG
[2011/02/22 22:29:57 | 000,843,162 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\witch.JPG
[2011/02/22 21:14:04 | 000,916,628 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\flyingpig.JPG
[2011/02/22 21:12:06 | 001,048,925 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\batmanbox.JPG
[2011/02/22 21:11:34 | 001,121,393 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\jimi.JPG
[2011/02/22 21:09:42 | 001,109,768 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\punisher.JPG
[2011/02/22 21:09:26 | 001,114,192 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skullsnake3.JPG
[2011/02/22 21:09:22 | 000,999,429 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skullsnake2.JPG
[2011/02/22 21:09:18 | 001,104,649 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skullsnake1.JPG
[2011/02/20 20:47:27 | 000,923,852 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset12.JPG
[2011/02/20 20:47:23 | 000,909,432 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset11.JPG
[2011/02/20 20:47:17 | 000,905,658 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset10.JPG
[2011/02/20 20:47:12 | 000,941,762 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset8.JPG
[2011/02/20 20:47:08 | 000,945,510 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset7.JPG
[2011/02/20 20:47:05 | 000,911,083 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset6.JPG
[2011/02/20 20:47:01 | 000,935,908 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset9.JPG
[2011/02/20 20:46:57 | 000,939,672 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset5.JPG
[2011/02/20 20:46:54 | 000,942,267 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset4.JPG
[2011/02/20 20:46:51 | 000,925,980 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset3.JPG
[2011/02/20 20:46:47 | 000,931,017 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset2.JPG
[2011/02/20 20:46:42 | 001,078,662 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset1.JPG
[2010/12/07 08:23:44 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010/11/17 01:30:46 | 000,403,816 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2008/12/27 20:30:36 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\048BF8
[2008/12/27 20:30:35 | 000,870,128 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\mcs.rma
[2006/11/16 14:39:24 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxcgvs.dll
[2006/08/16 21:08:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MSDraw.ini
[2006/06/04 22:54:12 | 000,810,283 | ---- | C] () -- C:\Program Files\DSC00235.JPG
[2006/05/14 22:11:57 | 000,002,560 | ---- | C] () -- C:\WINDOWS\_MSRSTRT.EXE
[2006/05/14 11:26:56 | 000,002,956 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2006/04/01 18:17:54 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2006/02/09 09:19:10 | 000,003,609 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2006/01/18 07:02:48 | 000,000,044 | ---- | C] () -- C:\WINDOWS\liveup.ini
[2006/01/13 10:26:49 | 000,000,004 | ---- | C] () -- C:\WINDOWS\Pix1111.dat
[2006/01/11 17:03:56 | 000,003,384 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/12/30 12:43:20 | 000,000,427 | ---- | C] () -- C:\WINDOWS\COOK'N5.INI
[2005/12/29 10:06:06 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2005/12/28 10:45:10 | 000,017,920 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/12/27 22:06:02 | 000,004,454 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\wklnhst.dat
[2005/12/22 11:56:50 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXPRMON.DLL
[2005/12/22 11:56:50 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\LXPMONUI.DLL
[2005/12/22 11:14:31 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2005/12/22 11:13:49 | 000,532,544 | ---- | C] () -- C:\WINDOWS\PIC.dll
[2005/12/22 11:13:48 | 000,550,400 | ---- | C] () -- C:\WINDOWS\mHotkey.exe
[2005/12/22 11:13:48 | 000,049,152 | ---- | C] () -- C:\WINDOWS\CNYUSB.dll
[2005/12/22 11:13:48 | 000,011,776 | ---- | C] () -- C:\WINDOWS\HIDMNT.dll
[2005/12/22 11:13:48 | 000,005,120 | ---- | C] () -- C:\WINDOWS\HKCYDLL.dll
[2005/12/22 11:13:48 | 000,000,360 | ---- | C] () -- C:\WINDOWS\CNYHKey.ini
[2005/12/22 11:13:39 | 000,000,004 | ---- | C] () -- C:\WINDOWS\Pix11.dat
[2005/12/22 11:10:30 | 000,471,298 | ---- | C] () -- C:\WINDOWS\wallpg.exe
[2005/12/22 11:09:16 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/12/22 10:49:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2005/12/22 10:48:45 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2005/12/22 10:48:45 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2005/12/22 10:48:41 | 000,005,151 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2005/12/22 10:48:36 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/12/22 10:48:29 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2005/12/22 10:47:59 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2005/12/22 10:47:59 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2005/12/22 10:46:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2005/12/22 10:46:17 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/27 06:50:59 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/08/27 05:54:47 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\HotlineClient.exe
[2004/08/26 14:07:50 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004/08/26 14:01:37 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004/08/26 12:12:43 | 000,001,266 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004/08/26 12:12:43 | 000,000,498 | ---- | C] () -- C:\WINDOWS\System32\emver.ini
[2004/08/26 12:12:10 | 000,444,028 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/26 12:12:10 | 000,071,904 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/26 06:54:56 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/26 06:54:01 | 000,208,104 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2003/01/07 19:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2005/12/22 11:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator.DEBEVE\Application Data\SampleView
[2011/03/21 22:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2008/06/24 21:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ludia
[2007/09/19 17:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MailFrontier
[2006/03/31 22:38:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Napster
[2011/03/22 01:06:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2007/12/09 09:43:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2005/12/22 11:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\SampleView
[2009/12/08 22:44:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Auslogics
[2009/06/01 23:39:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009/12/06 00:52:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Grisoft
[2006/06/04 22:09:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Leadertech
[2008/06/24 21:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Ludia
[2005/12/22 11:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\SampleView
[2010/07/06 18:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Template
[2007/03/08 22:13:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Viewpoint
[2007/06/14 18:24:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Walgreens

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 95 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34

< End of report >
  • 0

#6
Essexboy
Posted 22 March 2011 - 02:30 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
That programme is normally used by manufacturers for bulk installing programmes - so it has been on your computer from the start. It allows remote management. I can remove it for you, as it is no longer of use to you .. If you are agreeable then run the fix below

Reference the internet problem, when you go online then the pages time out and show not displayed.

Do your antivirus programme and windows allow updates even whilst that is happening ?

Was the update itself done from windows update or was it by downloading the full install package ?

Finally what firewall/Antivirus were you using at your last attempt ?

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
    SRV - [2005/12/22 11:10:30 | 000,172,032 | ---- | M] (New Boundary Technologies, Inc.) [Auto | Running] -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -- (PrismXL)
    IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\URLSearchHook: *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
    IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\URLSearchHook: *{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
    IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
    IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
    IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
    O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Install Pending Files.LNK = C:\Program Files\SIFXINST\SIFXINST.EXE (New Boundary Technologies, Inc.)


    :Files
    ipconfig /flushdns /c
    C:\Program Files\SIFXINST
    C:\Program Files\Common Files\New Boundary

    :Commands
    [purity]
    [resethosts]
    [emptytemp]
    [EMPTYFLASH]
    [CREATERESTOREPOINT]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

  • 0

#7
msbug
Posted 22 March 2011 - 02:42 PM

msbug

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 163 posts
I was using AVG 8.5. I did the download from the windows update site.

Did the fix and it is not popping up now. Thank you.

OTL logfile created on: 3/22/2011 4:47:33 PM - Run 4
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Owner\My Documents\Downloads
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,013.00 Mb Total Physical Memory | 562.00 Mb Available Physical Memory | 55.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 87.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 228.28 Gb Total Space | 195.92 Gb Free Space | 85.82% Space Free | Partition Type: NTFS
Drive D: | 4.59 Gb Total Space | 2.23 Gb Free Space | 48.61% Space Free | Partition Type: FAT32

Computer Name: DEBEVE | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/03/22 15:17:35 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\My Documents\Downloads\OTL.exe
PRC - [2011/02/23 10:04:20 | 003,451,496 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/02/23 10:04:19 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2010/05/20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2007/06/13 06:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/10/23 08:50:35 | 000,046,640 | R--- | M] (AOL LLC) -- C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
PRC - [2006/09/25 20:52:48 | 000,050,736 | ---- | M] (America Online, Inc.) -- C:\Program Files\Common Files\AOL\1135264480\EE\aolsoftware.exe
PRC - [2005/07/25 15:25:18 | 000,491,520 | ---- | M] ( ) -- C:\WINDOWS\system32\lxcgcoms.exe
PRC - [2005/07/21 02:07:22 | 000,200,704 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark 2300 Series\lxcgmon.exe
PRC - [2004/11/15 19:04:32 | 000,135,168 | ---- | M] (Alcor Micro, Corp.) -- C:\Program Files\Digital Media Reader\shwiconEM.exe
PRC - [2004/10/15 16:54:14 | 000,100,016 | ---- | M] (America Online, Inc) -- C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
PRC - [2004/10/15 16:54:12 | 000,046,768 | ---- | M] (America Online Inc) -- C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe
PRC - [2004/09/21 15:10:12 | 000,550,400 | ---- | M] () -- C:\WINDOWS\mHotkey.exe
PRC - [2004/03/03 00:24:50 | 005,576,704 | ---- | M] (Chicony) -- C:\WINDOWS\CNYHKey.exe


========== Modules (SafeList) ==========

MOD - [2011/03/22 15:17:35 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\My Documents\Downloads\OTL.exe
MOD - [2011/02/23 10:04:17 | 000,197,208 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2006/08/25 11:45:55 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/02/23 10:04:19 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/05/20 16:27:24 | 000,139,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2009/09/23 16:37:30 | 000,051,168 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus®
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2006/10/23 08:50:35 | 000,046,640 | R--- | M] (AOL LLC) [Auto | Running] -- C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe -- (AOL ACS)
SRV - [2005/07/25 15:25:18 | 000,491,520 | ---- | M] ( ) [On_Demand | Running] -- C:\WINDOWS\System32\lxcgcoms.exe -- (lxcg_device)
SRV - [2004/10/15 16:54:14 | 000,100,016 | ---- | M] (America Online, Inc) [Auto | Running] -- C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe -- (AOL TopSpeedMonitor)


========== Driver Services (SafeList) ==========

DRV - [2011/02/23 09:56:55 | 000,371,544 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/02/23 09:56:45 | 000,301,528 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/02/23 09:55:49 | 000,049,240 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/02/23 09:55:47 | 000,102,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/02/23 09:55:10 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/02/23 09:54:57 | 000,030,680 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/02/23 09:54:55 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/05/20 16:27:24 | 000,030,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nx6000.sys -- (MSHUSBVideo)
DRV - [2008/01/13 01:18:11 | 000,008,552 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2005/12/23 11:47:45 | 000,044,288 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2005/06/28 06:28:00 | 000,349,856 | R--- | M] (SMC Networks, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\2862WICB.sys -- (SMC2862W)
DRV - [2005/04/27 14:45:08 | 000,300,672 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) High Definition Audio Driver (WDM)
DRV - [2005/04/04 12:01:34 | 000,035,712 | ---- | M] (Sonic Focus, Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sfng32.sys -- (sfng32)
DRV - [2004/11/15 21:41:54 | 000,036,804 | ---- | M] (Alcor Micro Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Sunkfilt.sys -- (SunkFilt)
DRV - [2004/11/10 21:30:18 | 000,024,832 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2004/06/17 18:56:22 | 000,220,032 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2004/06/17 18:55:38 | 000,685,056 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2004/06/17 18:55:04 | 001,041,536 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2003/01/10 17:13:04 | 000,033,588 | R--- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
DRV - [2001/08/17 09:49:32 | 000,019,968 | ---- | M] (Macronix International Co., Ltd. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mxnic.sys -- (mxnic)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?fr=fp-yie8
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..browser.search.selectedEngine: "Yahoo! Search"
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {23ad39a3-36e7-4d8e-92d2-ba116ee32c45}:1.0.4
FF - prefs.js..extensions.enabledItems: [email protected]:20110101

FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/03/21 22:54:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/15 03:49:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/03/02 10:33:42 | 000,000,000 | ---D | M]

[2008/09/12 19:26:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Extensions
[2011/03/22 14:35:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions
[2010/11/16 16:09:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/02/14 00:44:48 | 000,000,000 | ---D | M] (Swoosty SEO Tools) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{23ad39a3-36e7-4d8e-92d2-ba116ee32c45}
[2008/09/12 14:48:16 | 000,000,000 | ---D | M] (Yuku) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{53A01AC4-9238-453c-990B-D4C5D4220FF2}(2)
[2008/09/12 14:48:12 | 000,000,000 | ---D | M] (Firefox Companion for eBay) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{62760FD6-B943-48C9-AB09-F99C6FE96088}(2)
[2008/09/12 14:48:15 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2)
[2009/12/05 22:36:13 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2008/09/12 14:46:19 | 000,000,000 | ---D | M] (mediaplayerconnectivity) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{84b24861-62f6-364b-eba5-2e5e2061d7e6}(2)
[2009/12/05 22:36:14 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/10/27 23:56:09 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus®)) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2008/10/21 19:12:08 | 000,000,000 | ---D | M] (Move Media Player) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\[email protected]
[2009/12/05 22:37:44 | 000,000,000 | ---D | M] (YesScript) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\extensions\[email protected]
[2010/04/03 13:15:08 | 000,005,511 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\searchplugins\foodtv.xml
[2008/06/21 02:33:13 | 000,000,908 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\2u55g8c4.default\searchplugins\IMDB.xml
[2011/03/22 14:35:43 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/12/07 08:22:54 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010/11/17 22:48:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/03/21 22:54:55 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2010/11/17 22:48:40 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2009/11/19 17:16:28 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
[2010/11/17 22:48:39 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009/11/19 17:16:29 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll

O1 HOSTS File: ([2011/03/22 16:43:48 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll ()
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll ()
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CHotkey] C:\WINDOWS\mHotkey.exe ()
O4 - HKLM..\Run: [HostManager] C:\Program Files\Common Files\AOL\1135264480\EE\aolsoftware.exe (America Online, Inc.)
O4 - HKLM..\Run: [ledpointer] C:\WINDOWS\CNYHKey.exe (Chicony)
O4 - HKLM..\Run: [LXCGCATS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.DLL ()
O4 - HKLM..\Run: [lxcgmon.exe] C:\Program Files\Lexmark 2300 Series\lxcgmon.exe (Lexmark International, Inc.)
O4 - HKLM..\Run: [Pure Networks Port Magic] C:\Program Files\Pure Networks\Port Magic\PortAOL.exe (Pure Networks, Inc.)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [SunKistEM] C:\Program Files\Digital Media Reader\shwiconEM.exe (Alcor Micro, Corp.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled [2009/12/09 00:52:56 | 000,000,000 | -H-D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: CDRAutoRun = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: everythinglv.com ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: harristeeter.com ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-1648610163-4111014109-2383940249-1003\..Trusted Domains: imdb.com/help/show_leaf?enablecookies ([www] https in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.ma...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\yinsthelper.dll (YInstStarter Class)
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.micros...ntent/opuc3.cab (Office Update Installation Engine)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1229556528546 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_02)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ent/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/26 14:04:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004/09/13 12:15:24 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ]
O32 - AutoRun File - [2003/08/08 17:24:26 | 000,000,045 | -HS- | M] () - D:\autorun.inf.aug.8 -- [ FAT32 ]
O33 - MountPoints2\{7e2b48a7-72ff-11da-8d48-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{7e2b48a7-72ff-11da-8d48-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{7e2b48a7-72ff-11da-8d48-806d6172696f}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/03/22 15:51:18 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/03/22 08:51:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Owner\Recent
[2011/03/21 22:55:10 | 000,301,528 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/03/21 22:55:10 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/03/21 22:55:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2011/03/21 22:55:08 | 000,049,240 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/03/21 22:55:08 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/03/21 22:55:07 | 000,371,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/03/21 22:55:07 | 000,102,232 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/03/21 22:55:07 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/03/21 22:55:06 | 000,030,680 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/03/21 22:54:54 | 000,190,016 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/03/21 22:54:54 | 000,040,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/03/21 22:54:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011/03/21 22:54:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2006/11/16 14:39:24 | 001,183,744 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgserv.dll
[2006/11/16 14:39:24 | 001,134,592 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgusb1.dll
[2006/11/16 14:39:24 | 000,372,736 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgih.exe
[2006/11/16 14:39:24 | 000,155,648 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgprox.dll
[2006/11/16 14:39:24 | 000,114,688 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgpplc.dll
[2006/11/16 14:39:23 | 000,704,512 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcomc.dll
[2006/11/16 14:39:23 | 000,491,520 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcoms.exe
[2006/11/16 14:39:23 | 000,483,328 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcglmpm.dll
[2006/11/16 14:39:23 | 000,413,696 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcomm.dll
[2006/03/31 05:01:16 | 000,218,112 | ---- | C] (Soeperman Enterprises Ltd.) -- C:\Program Files\HijackThis.exe

========== Files - Modified Within 30 Days ==========

[2011/03/22 16:49:53 | 000,444,028 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/03/22 16:49:53 | 000,071,904 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/03/22 16:46:03 | 000,001,170 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/03/22 16:45:40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/03/22 16:45:39 | 1062,776,832 | -HS- | M] () -- C:\hiberfil.sys
[2011/03/22 16:43:48 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2011/03/22 10:11:18 | 000,004,454 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\wklnhst.dat
[2011/03/22 08:52:14 | 000,011,730 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20110322_085200.reg
[2011/03/22 08:50:19 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/03/21 22:55:10 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/03/21 22:55:07 | 000,002,625 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/03/20 10:37:26 | 001,771,465 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hellraiser.JPG
[2011/03/20 10:26:38 | 001,688,793 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\iknowjack2.JPG
[2011/03/20 10:25:44 | 001,690,835 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\iknowjack1.JPG
[2011/03/20 10:23:56 | 001,577,656 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley5a.JPG
[2011/03/20 10:22:58 | 001,695,118 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley5.JPG
[2011/03/20 10:16:14 | 001,824,518 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley4a.JPG
[2011/03/20 10:15:24 | 001,715,115 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley4.JPG
[2011/03/20 10:11:14 | 001,671,013 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley3a.JPG
[2011/03/20 10:09:52 | 001,681,264 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley3.JPG
[2011/03/20 10:06:54 | 001,710,862 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley2a.JPG
[2011/03/20 10:05:44 | 001,749,293 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley2.JPG
[2011/03/20 10:04:00 | 001,592,941 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley1a.JPG
[2011/03/20 10:02:40 | 001,760,188 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley1.JPG
[2011/03/20 09:14:24 | 001,794,773 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\sexdrugs.JPG
[2011/03/20 08:56:50 | 001,711,086 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rollingstones2.JPG
[2011/03/20 08:56:22 | 001,755,162 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\rollingstones1.JPG
[2011/03/20 08:51:30 | 001,581,879 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\alligator2.JPG
[2011/03/20 08:51:14 | 001,720,147 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\alligator1.JPG
[2011/03/20 08:39:34 | 001,713,774 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\beatles2.JPG
[2011/03/20 08:38:56 | 001,762,172 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\beatles1.JPG
[2011/03/20 08:34:02 | 001,743,445 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\avenged.JPG
[2011/03/20 08:29:48 | 001,739,661 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\divine.JPG
[2011/03/20 05:39:10 | 001,507,096 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skydisc2.JPG
[2011/03/20 05:38:52 | 001,592,499 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skydisc3.JPG
[2011/03/20 05:37:22 | 001,704,301 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skydisc1.JPG
[2011/03/19 09:44:10 | 000,870,128 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\mcs.rma
[2011/03/19 09:44:10 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\048BF8
[2011/03/17 10:31:42 | 001,276,425 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\omega3.JPG
[2011/03/17 10:29:44 | 001,755,521 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\omega1.JPG
[2011/03/17 10:04:38 | 001,683,397 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\mr softee frisbee.JPG
[2011/03/17 09:56:16 | 001,661,329 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\linus blanket.JPG
[2011/03/16 05:03:52 | 001,466,335 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\candy1.JPG
[2011/03/16 05:02:38 | 001,527,903 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\candy2.JPG
[2011/03/16 04:55:46 | 000,936,574 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelpend2.JPG
[2011/03/16 04:55:26 | 000,881,017 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelpend1.JPG
[2011/03/13 06:42:42 | 000,932,167 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\morgan1.JPG
[2011/03/13 06:42:34 | 000,939,872 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\morgan2.JPG
[2011/03/13 04:33:38 | 001,035,178 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dopey2.JPG
[2011/03/13 04:30:48 | 000,912,038 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\dopey1.JPG
[2011/03/13 03:36:04 | 000,885,631 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\maltese1.JPG
[2011/03/13 03:35:50 | 000,885,839 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\maltese2.JPG
[2011/03/13 03:27:26 | 000,825,961 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\omega2a.JPG
[2011/03/13 03:21:20 | 000,948,798 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelcoin2.JPG
[2011/03/13 03:21:14 | 000,916,051 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angel2.JPG
[2011/03/13 03:19:46 | 000,959,827 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angelcoin1.JPG
[2011/03/13 03:19:40 | 000,947,102 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\angel1.JPG
[2011/03/13 03:10:06 | 000,938,934 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\shell2.JPG
[2011/03/13 03:09:38 | 001,025,067 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\shell1.JPG
[2011/03/13 03:07:00 | 000,916,574 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\marcasite x.JPG
[2011/03/13 02:57:52 | 000,895,681 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chief ring1.JPG
[2011/03/13 02:55:48 | 000,868,332 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnetcab1.JPG
[2011/03/13 02:55:36 | 000,908,027 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnetcab2.JPG
[2011/03/13 02:50:44 | 000,935,215 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\invictacuff1.JPG
[2011/03/13 02:50:28 | 000,896,804 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\invictacuff2.JPG
[2011/03/13 02:50:10 | 001,039,114 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\invictacuff3.JPG
[2011/03/13 02:48:12 | 000,939,375 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\kisspin.JPG
[2011/03/13 02:46:48 | 001,003,014 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chief ring2.JPG
[2011/03/13 02:38:48 | 000,900,896 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley100a.JPG
[2011/03/13 02:38:40 | 000,875,742 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\harley100b.JPG
[2011/03/13 02:37:00 | 000,929,513 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\10gram2a.JPG
[2011/03/13 02:36:06 | 000,918,380 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\10gram1a.JPG
[2011/03/09 10:17:45 | 000,012,528 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20110309_091741.reg
[2011/03/02 10:40:02 | 000,007,646 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\cc_20110302_093957.reg
[2011/03/02 06:33:36 | 000,865,371 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\10gram1.JPG
[2011/02/27 08:12:14 | 000,992,201 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hersheywhite.JPG
[2011/02/27 08:11:32 | 001,033,865 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\hersheyblack.JPG
[2011/02/27 07:50:16 | 000,939,575 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chakram1.JPG
[2011/02/27 07:49:22 | 000,973,340 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chakram2.JPG
[2011/02/27 07:49:14 | 001,030,958 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\chakram3.JPG
[2011/02/27 07:48:12 | 000,873,821 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\agate1.JPG
[2011/02/27 07:47:50 | 000,824,653 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\agate2.JPG
[2011/02/27 07:28:18 | 000,795,222 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets3.JPG
[2011/02/27 07:27:34 | 001,042,692 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets4.JPG
[2011/02/27 07:19:18 | 000,939,380 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets2.JPG
[2011/02/27 07:17:52 | 000,872,890 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\garnets1.JPG
[2011/02/24 08:14:44 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2011/02/23 10:04:21 | 000,040,648 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/02/23 10:04:17 | 000,190,016 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/02/23 09:56:55 | 000,371,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/02/23 09:56:45 | 000,301,528 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/02/23 09:55:49 | 000,049,240 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/02/23 09:55:47 | 000,102,232 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/02/23 09:55:44 | 000,096,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/02/23 09:55:10 | 000,025,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/02/23 09:54:57 | 000,030,680 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/02/23 09:54:55 | 000,019,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/02/22 09:54:08 | 001,109,768 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\punisher.JPG
[2011/02/22 09:44:32 | 001,114,192 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skullsnake3.JPG
[2011/02/22 09:44:02 | 000,999,429 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skullsnake2.JPG
[2011/02/22 09:43:42 | 001,104,649 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\skullsnake1.JPG
[2011/02/22 09:39:38 | 001,121,393 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\jimi.JPG
[2011/02/22 09:27:06 | 001,048,925 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\batmanbox.JPG
[2011/02/22 09:14:56 | 000,946,777 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\grumpy3.JPG
[2011/02/22 09:13:34 | 000,826,305 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\grumpy1.JPG
[2011/02/22 09:12:12 | 001,038,189 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\grumpy2.JPG
[2011/02/22 09:08:02 | 000,992,421 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\WITCH3.JPG
[2011/02/22 09:06:44 | 000,865,492 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\snow back.JPG
[2011/02/22 09:06:12 | 000,843,162 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\witch.JPG
[2011/02/22 09:04:58 | 000,993,928 | ---- | M] () -- C:\Documents and Settings\Owner\My Documents\WITCH2.JPG

========== Files Created - No Company Name ==========

[2011/03/22 08:52:13 | 000,011,730 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20110322_085200.reg
[2011/03/21 22:55:10 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/03/21 00:44:07 | 001,771,465 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hellraiser.JPG
[2011/03/20 23:10:39 | 001,577,656 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley5a.JPG
[2011/03/20 23:10:36 | 001,695,118 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley5.JPG
[2011/03/20 23:10:30 | 001,824,518 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley4a.JPG
[2011/03/20 23:10:26 | 001,715,115 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley4.JPG
[2011/03/20 23:10:23 | 001,671,013 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley3a.JPG
[2011/03/20 23:10:20 | 001,681,264 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley3.JPG
[2011/03/20 23:10:16 | 001,710,862 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley2a.JPG
[2011/03/20 23:10:13 | 001,749,293 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley2.JPG
[2011/03/20 23:10:09 | 001,592,941 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley1a.JPG
[2011/03/20 23:10:05 | 001,760,188 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley1.JPG
[2011/03/20 23:04:33 | 001,581,879 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\alligator2.JPG
[2011/03/20 23:04:29 | 001,720,147 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\alligator1.JPG
[2011/03/20 23:03:25 | 001,688,793 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\iknowjack2.JPG
[2011/03/20 23:03:21 | 001,690,835 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\iknowjack1.JPG
[2011/03/20 22:59:29 | 001,794,773 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\sexdrugs.JPG
[2011/03/20 22:59:15 | 001,711,086 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rollingstones2.JPG
[2011/03/20 22:59:10 | 001,755,162 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\rollingstones1.JPG
[2011/03/20 22:58:26 | 001,713,774 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\beatles2.JPG
[2011/03/20 22:58:22 | 001,762,172 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\beatles1.JPG
[2011/03/20 22:57:03 | 001,739,661 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\divine.JPG
[2011/03/20 22:56:36 | 001,743,445 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\avenged.JPG
[2011/03/20 19:25:12 | 000,916,051 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angel2.JPG
[2011/03/20 19:25:09 | 000,947,102 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angel1.JPG
[2011/03/20 19:23:45 | 000,825,961 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\omega2a.JPG
[2011/03/20 19:22:56 | 001,276,425 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\omega3.JPG
[2011/03/20 19:22:52 | 001,755,521 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\omega1.JPG
[2011/03/20 19:12:06 | 001,592,499 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skydisc3.JPG
[2011/03/20 19:12:02 | 001,507,096 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skydisc2.JPG
[2011/03/20 19:11:56 | 001,704,301 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skydisc1.JPG
[2011/03/17 23:25:02 | 000,936,574 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelpend2.JPG
[2011/03/17 23:24:58 | 000,881,017 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelpend1.JPG
[2011/03/17 23:20:09 | 001,527,903 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\candy2.JPG
[2011/03/17 23:20:05 | 001,466,335 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\candy1.JPG
[2011/03/17 23:18:05 | 001,683,397 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\mr softee frisbee.JPG
[2011/03/17 23:17:47 | 001,661,329 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\linus blanket.JPG
[2011/03/13 19:52:17 | 000,948,798 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelcoin2.JPG
[2011/03/13 19:52:12 | 000,959,827 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\angelcoin1.JPG
[2011/03/13 19:49:13 | 000,929,513 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\10gram2a.JPG
[2011/03/13 19:49:09 | 000,918,380 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\10gram1a.JPG
[2011/03/13 19:46:52 | 000,865,371 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\10gram1.JPG
[2011/03/13 19:45:57 | 000,875,742 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley100b.JPG
[2011/03/13 19:45:54 | 000,900,896 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\harley100a.JPG
[2011/03/13 19:31:44 | 000,939,872 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\morgan2.JPG
[2011/03/13 19:31:41 | 000,932,167 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\morgan1.JPG
[2011/03/13 19:30:15 | 001,035,178 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dopey2.JPG
[2011/03/13 19:30:11 | 000,912,038 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\dopey1.JPG
[2011/03/13 19:26:46 | 000,885,839 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\maltese2.JPG
[2011/03/13 19:26:41 | 000,885,631 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\maltese1.JPG
[2011/03/13 19:25:11 | 000,916,574 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\marcasite x.JPG
[2011/03/13 19:24:54 | 000,938,934 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\shell2.JPG
[2011/03/13 19:24:50 | 001,025,067 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\shell1.JPG
[2011/03/13 19:23:52 | 000,896,804 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\invictacuff2.JPG
[2011/03/13 19:23:48 | 001,039,114 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\invictacuff3.JPG
[2011/03/13 19:23:43 | 000,935,215 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\invictacuff1.JPG
[2011/03/13 19:22:54 | 000,939,375 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\kisspin.JPG
[2011/03/13 19:21:53 | 000,908,027 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnetcab2.JPG
[2011/03/13 19:21:49 | 000,868,332 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnetcab1.JPG
[2011/03/13 19:20:36 | 000,895,681 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chief ring1.JPG
[2011/03/13 19:20:31 | 001,003,014 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chief ring2.JPG
[2011/03/09 10:17:43 | 000,012,528 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20110309_091741.reg
[2011/03/02 10:40:01 | 000,007,646 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\cc_20110302_093957.reg
[2011/02/27 20:31:00 | 000,824,653 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\agate2.JPG
[2011/02/27 20:30:57 | 000,873,821 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\agate1.JPG
[2011/02/27 20:28:37 | 000,992,201 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hersheywhite.JPG
[2011/02/27 20:28:04 | 001,033,865 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\hersheyblack.JPG
[2011/02/27 20:27:27 | 001,030,958 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chakram3.JPG
[2011/02/27 20:27:23 | 000,973,340 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chakram2.JPG
[2011/02/27 20:27:19 | 000,939,575 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\chakram1.JPG
[2011/02/27 20:23:59 | 000,795,222 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets3.JPG
[2011/02/27 20:23:55 | 001,042,692 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets4.JPG
[2011/02/27 20:23:52 | 000,939,380 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets2.JPG
[2011/02/27 20:23:48 | 000,872,890 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\garnets1.JPG
[2011/02/24 08:14:01 | 000,002,347 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader 9.lnk
[2011/02/24 08:14:01 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2011/02/22 23:16:54 | 000,946,777 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\grumpy3.JPG
[2011/02/22 23:16:49 | 001,038,189 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\grumpy2.JPG
[2011/02/22 23:16:44 | 000,826,305 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\grumpy1.JPG
[2011/02/22 22:36:18 | 000,992,421 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\WITCH3.JPG
[2011/02/22 22:36:15 | 000,993,928 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\WITCH2.JPG
[2011/02/22 22:30:27 | 000,865,492 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\snow back.JPG
[2011/02/22 22:29:57 | 000,843,162 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\witch.JPG
[2011/02/22 21:14:04 | 000,916,628 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\flyingpig.JPG
[2011/02/22 21:12:06 | 001,048,925 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\batmanbox.JPG
[2011/02/22 21:11:34 | 001,121,393 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\jimi.JPG
[2011/02/22 21:09:42 | 001,109,768 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\punisher.JPG
[2011/02/22 21:09:26 | 001,114,192 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skullsnake3.JPG
[2011/02/22 21:09:22 | 000,999,429 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skullsnake2.JPG
[2011/02/22 21:09:18 | 001,104,649 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\skullsnake1.JPG
[2011/02/20 20:47:27 | 000,923,852 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset12.JPG
[2011/02/20 20:47:23 | 000,909,432 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset11.JPG
[2011/02/20 20:47:17 | 000,905,658 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset10.JPG
[2011/02/20 20:47:12 | 000,941,762 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset8.JPG
[2011/02/20 20:47:08 | 000,945,510 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset7.JPG
[2011/02/20 20:47:05 | 000,911,083 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset6.JPG
[2011/02/20 20:47:01 | 000,935,908 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset9.JPG
[2011/02/20 20:46:57 | 000,939,672 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset5.JPG
[2011/02/20 20:46:54 | 000,942,267 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset4.JPG
[2011/02/20 20:46:51 | 000,925,980 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset3.JPG
[2011/02/20 20:46:47 | 000,931,017 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset2.JPG
[2011/02/20 20:46:42 | 001,078,662 | ---- | C] () -- C:\Documents and Settings\Owner\My Documents\swset1.JPG
[2010/12/07 08:23:44 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010/11/17 01:30:46 | 000,403,816 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2008/12/27 20:30:36 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\048BF8
[2008/12/27 20:30:35 | 000,870,128 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\mcs.rma
[2006/11/16 14:39:24 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxcgvs.dll
[2006/08/16 21:08:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MSDraw.ini
[2006/06/04 22:54:12 | 000,810,283 | ---- | C] () -- C:\Program Files\DSC00235.JPG
[2006/05/14 22:11:57 | 000,002,560 | ---- | C] () -- C:\WINDOWS\_MSRSTRT.EXE
[2006/05/14 11:26:56 | 000,002,956 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2006/04/01 18:17:54 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2006/02/09 09:19:10 | 000,003,609 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2006/01/18 07:02:48 | 000,000,044 | ---- | C] () -- C:\WINDOWS\liveup.ini
[2006/01/13 10:26:49 | 000,000,004 | ---- | C] () -- C:\WINDOWS\Pix1111.dat
[2006/01/11 17:03:56 | 000,003,384 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/12/30 12:43:20 | 000,000,427 | ---- | C] () -- C:\WINDOWS\COOK'N5.INI
[2005/12/29 10:06:06 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2005/12/28 10:45:10 | 000,017,920 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/12/27 22:06:02 | 000,004,454 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\wklnhst.dat
[2005/12/22 11:56:50 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXPRMON.DLL
[2005/12/22 11:56:50 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\LXPMONUI.DLL
[2005/12/22 11:14:31 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2005/12/22 11:13:49 | 000,532,544 | ---- | C] () -- C:\WINDOWS\PIC.dll
[2005/12/22 11:13:48 | 000,550,400 | ---- | C] () -- C:\WINDOWS\mHotkey.exe
[2005/12/22 11:13:48 | 000,049,152 | ---- | C] () -- C:\WINDOWS\CNYUSB.dll
[2005/12/22 11:13:48 | 000,011,776 | ---- | C] () -- C:\WINDOWS\HIDMNT.dll
[2005/12/22 11:13:48 | 000,005,120 | ---- | C] () -- C:\WINDOWS\HKCYDLL.dll
[2005/12/22 11:13:48 | 000,000,360 | ---- | C] () -- C:\WINDOWS\CNYHKey.ini
[2005/12/22 11:13:39 | 000,000,004 | ---- | C] () -- C:\WINDOWS\Pix11.dat
[2005/12/22 11:10:30 | 000,471,298 | ---- | C] () -- C:\WINDOWS\wallpg.exe
[2005/12/22 11:09:16 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/12/22 10:49:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2005/12/22 10:48:45 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2005/12/22 10:48:45 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2005/12/22 10:48:41 | 000,005,151 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2005/12/22 10:48:36 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/12/22 10:48:29 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2005/12/22 10:47:59 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2005/12/22 10:47:59 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2005/12/22 10:46:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2005/12/22 10:46:17 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/27 06:50:59 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/08/27 05:54:47 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\HotlineClient.exe
[2004/08/26 14:07:50 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004/08/26 14:01:37 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004/08/26 12:12:43 | 000,001,266 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004/08/26 12:12:43 | 000,000,498 | ---- | C] () -- C:\WINDOWS\System32\emver.ini
[2004/08/26 12:12:10 | 000,444,028 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/26 12:12:10 | 000,071,904 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/26 06:54:56 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/26 06:54:01 | 000,208,104 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2003/01/07 19:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2005/12/22 11:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator.DEBEVE\Application Data\SampleView
[2011/03/21 22:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2008/06/24 21:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ludia
[2007/09/19 17:29:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MailFrontier
[2006/03/31 22:38:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Napster
[2011/03/22 01:06:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2007/12/09 09:43:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2005/12/22 11:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\SampleView
[2009/12/08 22:44:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Auslogics
[2009/06/01 23:39:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2009/12/06 00:52:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Grisoft
[2006/06/04 22:09:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Leadertech
[2008/06/24 21:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Ludia
[2005/12/22 11:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\SampleView
[2010/07/06 18:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Template
[2007/03/08 22:13:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Viewpoint
[2007/06/14 18:24:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Walgreens

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 95 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34

< End of report >

Edited by msbug, 22 March 2011 - 02:55 PM.

  • 0

#8
Essexboy
Posted 22 March 2011 - 03:08 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK lets now try SP3 again - but this time we will use the standalone installer

Download the installer to your desktop

Once done then right click the orange blob of Avast
Select Avast shield control
Select disable until computer is restarted
Agree the prompts



Install the service pack

On completion retry the internet
If it does not appear to work then paste into the address bar the following 208.43.44.138 and that should bring you here

If it still fails you can uninstall SP3 via add/remove in control panel
  • 0

#9
msbug
Posted 22 March 2011 - 03:24 PM

msbug

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 163 posts
It's taking a bit of time, only on 31 percent must be large.
  • 0

#10
Essexboy
Posted 22 March 2011 - 03:26 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
It is - it is larger than the one offered by windows updates as it has all the necessary drivers. Therefore if windows update made an error it would not have supplied the correct drivers.. This way you will get the right one
  • 0

Advertisements

#11
msbug
Posted 22 March 2011 - 04:37 PM

msbug

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 163 posts
it's been on finishing installation, performing cleanup for 30 minutes. Maybe it will work, the times I tried before it did not take that long.
  • 0

#12
msbug
Posted 22 March 2011 - 04:49 PM

msbug

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 163 posts
I downloaded SP3, it's a little slow loading, but I am online. When I first logged on there was system32/cmd.exe error access denied. It was click so I had to write fast. It also looked like another black box behind that but I don't know if there was another message. What do i do now with that error?
  • 0

#13
msbug
Posted 22 March 2011 - 06:51 PM

msbug

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 163 posts
I couldn't get on the internet without restarting. It was working, then I left for an hour and came back and it says server not found firefox can't find the server at www.yahoo.com. I typed in the IP address you gave me and it hung up and wouldn't load. So I had to restart to get back on. The error access denied did not come back up when I restarted this time. I will not be back on until tomorrow. Any help with this would be appreciated. Thanks.

Quick update. I could not get on even after restart. Tried to uninstall SP3 couldn't, so I had to do a system restore to get rid of SP3 and reinstall Avast.

Edited by msbug, 22 March 2011 - 07:33 PM.

  • 0

#14
Essexboy
Posted 23 March 2011 - 12:02 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK lets have a look at your system bits and bobs

Please download SINO by Artellos.

  • Save SINO to a place you can remember and run SINO.exe. (If you downloaded the ZIP version you will need to extract it first)
  • Then please check the following checkboxes:
    System Info
Services
Boot Check
Tasklist
Startup Items
Event Log
Ipconfig
Ping
Netstat
Hosts file
Shares
Routing Table
  • Once checked, hit the Run Scan! button and wait for the program to finish the scan.
  • A notepad window will pop up. Please copy all of the content into your next reply.
Note: If you try to interact with the program once it’s started scanning it might appear to hang. The scan however will continue.
  • 0

#15
msbug
Posted 23 March 2011 - 05:33 PM

msbug

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 163 posts
Thank you for all the help. Sorry it took me so long to respond.

Here is the log for Sino


System Investigator by Olrik
Log Created On: 0835_24-03-2011
SINO Version: 3.1.0.0

Total RAM: 1013 MB | Free RAM: 542 MB | Pagefile Size: 2438 MB
C: | 195462 MB out of 233758 MB Free | Local Fixed Disk
D: | 2287 MB out of 4705 MB Free | Local Fixed Disk
E: | None | CD-ROM Disc
F: | None | Removable Disk
G: | None | Removable Disk
H: | None | Removable Disk
I: | None | Removable Disk

<<<< System Information >>>>

Computer Name: DEBEVE
Username: Owner
Language Setting: ENU
Windows Directory: C:\WINDOWS
Windows Version: Windows XP Service Pack 2
Windows Mode: Normal

<<<< Tasklist >>>>

[System Idle Process] - Process ID: 0
[System] - Process ID: 4
[C:\WINDOWS\System32\smss.exe] - Process ID: 644
[csrss.exe] - Process ID: 872
[C:\WINDOWS\system32\winlogon.exe] - Process ID: 896
[C:\WINDOWS\system32\services.exe] - Process ID: 940
[C:\WINDOWS\system32\lsass.exe] - Process ID: 952
[C:\WINDOWS\system32\svchost.exe] - Process ID: 1116
[svchost.exe] - Process ID: 1164
[C:\WINDOWS\System32\svchost.exe] - Process ID: 1204
[C:\WINDOWS\system32\svchost.exe] - Process ID: 1244
[svchost.exe] - Process ID: 1300
[svchost.exe] - Process ID: 1392
[C:\Program Files\AVAST Software\Avast\AvastSvc.exe] - Process ID: 1696
[C:\WINDOWS\system32\spoolsv.exe] - Process ID: 248
[svchost.exe] - Process ID: 344
[C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe] - Process ID: 512
[C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe] - Process ID: 624
[C:\WINDOWS\Explorer.EXE] - Process ID: 628
[C:\Program Files\Java\jre6\bin\jqs.exe] - Process ID: 688
[aoltpspd.exe] - Process ID: 696
[C:\Program Files\Microsoft LifeCam\MSCamS32.exe] - Process ID: 752
[C:\WINDOWS\system32\svchost.exe] - Process ID: 812
[C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe] - Process ID: 1316
[C:\WINDOWS\system32\wuauclt.exe] - Process ID: 1596
[alg.exe] - Process ID: 2468
[C:\WINDOWS\mHotkey.exe] - Process ID: 3200
[C:\WINDOWS\CNYHKey.exe] - Process ID: 3292
[C:\WINDOWS\system32\igfxpers.exe] - Process ID: 3404
[C:\Program Files\Common Files\AOL\1135264480\ee\AOLSoftware.exe] - Process ID: 3440
[C:\Program Files\Digital Media Reader\shwiconem.exe] - Process ID: 3456
[C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe] - Process ID: 3476
[C:\Program Files\Lexmark 2300 Series\lxcgmon.exe] - Process ID: 3488
[C:\Program Files\AVAST Software\Avast\avastUI.exe] - Process ID: 3524
[C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe] - Process ID: 3552
[C:\WINDOWS\system32\lxcgcoms.exe] - Process ID: 3896
[wmiprvse.exe] - Process ID: 472
[C:\DOCUME~1\Owner\LOCALS~1\Temp\SINO\SINO.exe] - Process ID: 1448
[wmiprvse.exe] - Process ID: 2216

<<<< Startup Items >>>>

[AutorunsDisabled] - <Common Startup> - C:\Documents and Settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled
[CHotkey] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - mHotkey.exe
[ledpointer] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - CNYHKey.exe
[Recguard] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - %WINDIR%\SMINST\RECGUARD.EXE
[Persistence] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - C:\WINDOWS\system32\igfxpers.exe
[Pure Networks Port Magic] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - "C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe" -Run
[LXCGCATS] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16
[HostManager] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - C:\Program Files\Common Files\AOL\1135264480\ee\AOLSoftware.exe
[SunKistEM] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - C:\Program Files\Digital Media Reader\shwiconem.exe
[RemoteControl] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
[lxcgmon.exe] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - "C:\Program Files\Lexmark 2300 Series\lxcgmon.exe"
[Adobe ARM] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
[avast] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
[Adobe Reader Speed Launcher] - <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run> - "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

<<<< MS Services >>>>

Application Layer Gateway Service (ALG) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\System32\alg.exe
Windows Audio (AudioSrv) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Cryptographic Services (CryptSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
DCOM Server Process Launcher (DcomLaunch) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost -k DcomLaunch
DHCP Client (Dhcp) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
DNS Client (Dnscache) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k NetworkService
Error Reporting Service (ERSvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Event Log (Eventlog) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\services.exe
COM+ Event System (EventSystem) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Fast User Switching Compatibility (FastUserSwitchingCompatibility) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Help and Support (helpsvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
HID Input Service (HidServ) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Server (lanmanserver) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Workstation (lanmanworkstation) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
TCP/IP NetBIOS Helper (LmHosts) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Network Connections (Netman) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Network Location Awareness (NLA) (Nla) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Plug and Play (PlugPlay) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\services.exe
IPSEC Services (PolicyAgent) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Protected Storage (ProtectedStorage) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Remote Access Connection Manager (RasMan) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Remote Procedure Call (RPC) (RpcSs) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost -k rpcss
Security Accounts Manager (SamSs) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Task Scheduler (Schedule) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Secondary Logon (seclogon) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
System Event Notification (SENS) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Windows Firewall/Internet Connection Sharing (ICS) (SharedAccess) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Shell Hardware Detection (ShellHWDetection) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Print Spooler (Spooler) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\spoolsv.exe
System Restore Service (srservice) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
SSDP Discovery Service (SSDPSRV) - Running [Manual | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Windows Image Acquisition (WIA) (stisvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k imgsvc
Telephony (TapiSrv) - Running [Manual | Stoppable | Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Terminal Services (TermService) - Running [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost -k DComLaunch
Themes (Themes) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Distributed Link Tracking Client (TrkWks) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Windows Time (W32Time) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
WebClient (WebClient) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Windows Management Instrumentation (winmgmt) - Running [Auto | Stoppable | Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Security Center (wscsvc) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Automatic Updates (wuauserv) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Windows Driver Foundation - User-mode Driver Framework (WudfSvc) - Running [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
Wireless Zero Configuration (WZCSVC) - Running [Auto | Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Alerter (Alerter) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
ASP.NET State Service (aspnet_state) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
Background Intelligent Transfer Service (BITS) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Computer Browser (Browser) - Stopped [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Indexing Service (CiSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\cisvc.exe
ClipBook (ClipSrv) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\clipsrv.exe
.NET Runtime Optimization Service v2.0.50727_X86 (clr_optimization_v2.0.50727_32) - Stopped [Manual | Not_Stoppable | Not_Pausable] - c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
COM+ System Application (COMSysApp) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Logical Disk Manager Administrative Service (dmadmin) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\dmadmin.exe /com
Logical Disk Manager (dmserver) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
Windows Presentation Foundation Font Cache 3.0.0.0 (FontCache3.0.0.0) - Stopped [Manual | Not_Stoppable | Not_Pausable] - c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
HTTP SSL (HTTPFilter) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k HTTPFilter
InstallDriver Table Manager (IDriverT) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"
Windows CardSpace (idsvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"
IMAPI CD-Burning COM Service (ImapiService) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\imapi.exe
Messenger (Messenger) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
NetMeeting Remote Desktop Sharing (mnmsrvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\mnmsrvc.exe
Distributed Transaction Coordinator (MSDTC) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\msdtc.exe
Windows Installer (MSIServer) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\msiexec.exe /V
Network DDE (NetDDE) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\netdde.exe
Network DDE DSDM (NetDDEdsdm) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\netdde.exe
Net Logon (Netlogon) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Net.Tcp Port Sharing Service (NetTcpPortSharing) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"
NT LM Security Support Provider (NtLmSsp) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\lsass.exe
Removable Storage (NtmsSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Office Source Engine (ose) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
Remote Access Auto Connection Manager (RasAuto) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Remote Desktop Help Session Manager (RDSessMgr) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\sessmgr.exe
Routing and Remote Access (RemoteAccess) - Stopped [Disabled | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k netsvcs
Remote Procedure Call (RPC) Locator (RpcLocator) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\locator.exe
QoS RSVP (RSVP) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\rsvp.exe
Smart Card (SCardSvr) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\SCardSvr.exe
MS Software Shadow Copy Provider (SwPrv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\dllhost.exe /Processid:{63C33B1B-E9A2-4399-8C21-F59FA31488FA}
Performance Logs and Alerts (SysmonLog) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\smlogsvc.exe
Universal Plug and Play Device Host (upnphost) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\svchost.exe -k LocalService
Uninterruptible Power Supply (UPS) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\ups.exe
Volume Shadow Copy (VSS) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\vssvc.exe
Portable Media Serial Number Service (WmdmPmSN) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs
WMI Performance Adapter (WmiApSrv) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\system32\wbem\wmiapsrv.exe
Windows Media Player Network Sharing Service (WMPNetworkSvc) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\Windows Media Player\WMPNetwk.exe"
Network Provisioning Service (xmlprov) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs

<<<< Non-MS Services >>>>

AOL Connectivity Service (AOL ACS) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe"
AOL TopSpeed Monitor (AOL TopSpeedMonitor) - Running [Auto | Stoppable | Not_Pausable] - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
avast! Antivirus (avast! Antivirus) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
Java Quick Starter (JavaQuickStarterService) - Running [Auto | Stoppable | Pausable] - "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"
lxcg_device (lxcg_device) - Running [Manual | Stoppable | Pausable] - C:\WINDOWS\system32\lxcgcoms.exe -service
MSCamSvc (MSCamSvc) - Running [Auto | Stoppable | Pausable] - "C:\Program Files\Microsoft LifeCam\MSCamS32.exe"
Yahoo! Updater (YahooAUService) - Running [Auto | Stoppable | Not_Pausable] - "C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe"
getPlus® Helper (getPlusHelper) - Stopped [Manual | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k getPlusHelper
iPod Service (iPod Service) - Stopped [Manual | Not_Stoppable | Not_Pausable] - "C:\Program Files\iPod\bin\iPodService.exe"
Upload Manager (uploadmgr) - Stopped [Auto | Not_Stoppable | Not_Pausable] - C:\WINDOWS\System32\svchost.exe -k netsvcs

<<<< Boot.ini >>>>

[boot loader]
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

<<<< Last 5 Application Errors or Warnings >>>>

Computer Name: DEBEVE | ID: 1517 | Source: Userenv | Type: Warning | Date: 24-3-11 8:29:1 | Log: Application
Message: Windows saved user DEBEVE\Owner registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.





This is often caused by services running as a user account, try configuring the services to run in either the LocalService or NetworkService account.


Computer Name: DEBEVE | ID: 1517 | Source: Userenv | Type: Warning | Date: 24-3-11 8:19:53 | Log: Application
Message: Windows saved user DEBEVE\Owner registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.





This is often caused by services running as a user account, try configuring the services to run in either the LocalService or NetworkService account.


Computer Name: DEBEVE | ID: 1002 | Source: Application Hang | Type: Error | Date: 23-3-11 19:26:35 | Log: Application
Message: Hanging application SINO.exe, version 0.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.


Computer Name: DEBEVE | ID: 1517 | Source: Userenv | Type: Warning | Date: 22-3-11 23:12:53 | Log: Application
Message: Windows saved user DEBEVE\Owner registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.





This is often caused by services running as a user account, try configuring the services to run in either the LocalService or NetworkService account.


Computer Name: DEBEVE | ID: 1517 | Source: Userenv | Type: Warning | Date: 22-3-11 18:38:38 | Log: Application
Message: Windows saved user DEBEVE\Owner registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.





This is often caused by services running as a user account, try configuring the services to run in either the LocalService or NetworkService account.


<<<< Last 5 System Errors or Warnings >>>>

Computer Name: DEBEVE | ID: 7000 | Source: Service Control Manager | Type: Error | Date: 24-3-11 8:30:39 | Log: System
Message: The Upload Manager service failed to start due to the following error:

%%1079


Computer Name: DEBEVE | ID: 7000 | Source: Service Control Manager | Type: Error | Date: 24-3-11 8:30:39 | Log: System
Message: The MCSTRM service failed to start due to the following error:

%%2


Computer Name: DEBEVE | ID: 7034 | Source: Service Control Manager | Type: Error | Date: 24-3-11 8:28:15 | Log: System
Message: The lxcg_device service terminated unexpectedly. It has done this 1 time(s).


Computer Name: DEBEVE | ID: 7034 | Source: Service Control Manager | Type: Error | Date: 24-3-11 8:28:14 | Log: System
Message: The Yahoo! Updater service terminated unexpectedly. It has done this 1 time(s).


Computer Name: DEBEVE | ID: 7034 | Source: Service Control Manager | Type: Error | Date: 24-3-11 8:28:14 | Log: System
Message: The PrismXL service terminated unexpectedly. It has done this 1 time(s).


<<<< Special Events >>>>

There were no special events found

<<<< Ipconfig >>>>

Windows IP Configuration

Host Name . . . . . . . . . . . . : debeve
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : ec.rr.com

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection
Physical Address. . . . . . . . . : 00-13-20-B5-2E-A5

Ethernet adapter Wireless Network Connection:

Connection-specific DNS Suffix . : ec.rr.com
Description . . . . . . . . . . . : SMC2862W-G EZ Connect g 2.4Ghz 802.11g Wireless USB 2.0 Adapter
Physical Address. . . . . . . . . : 00-12-BF-10-C6-30
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.0.11
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 209.18.47.61
209.18.47.62
Lease Obtained. . . . . . . . . . : Thursday, March 24, 2011 8:30:39 AM
Lease Expires . . . . . . . . . . : Thursday, March 24, 2011 9:30:39 AM


<<<< Pinging >>>>

OpenDNS Domain Test
Pinging to www.opendns.com [208.69.38.150]:
Response - 93ms
Response - 78ms
Response - 78ms
Response - 77msPackets: Sent = 4, Received = 4, Lost = 0
Minimum = 77ms - Maximum = 93ms

OpenDNS IP Test
Pinging to 208.69.38.150 [208.69.38.150]:
Response - 110ms
Response - 92ms
Response - 94ms
Response - 77msPackets: Sent = 4, Received = 4, Lost = 0
Minimum = 77ms - Maximum = 110ms

Kaspersky Domain Test
Pinging to www.kaspersky.com [38.117.98.208]:
Response - 62ms
Response - 62ms
Response - 47ms
Response - 62msPackets: Sent = 4, Received = 4, Lost = 0
Minimum = 47ms - Maximum = 62ms

Kaspersky IP Test
Pinging to 195.27.181.10 [195.27.181.10]:
Response - 125ms
Response - 125ms
Response - 109ms
Response - 108msPackets: Sent = 4, Received = 4, Lost = 0
Minimum = 108ms - Maximum = 125ms

YouTube Domain Test
Pinging to www.youtube.com [74.125.157.190]:
Response - 30ms
Response - 16ms
Response - 16ms
Response - 14msPackets: Sent = 4, Received = 4, Lost = 0
Minimum = 14ms - Maximum = 30ms

YouTube IP Test
Pinging to 66.102.9.136 [66.102.9.136]:
Response - None
Response - None
Response - None
Response - NonePackets: Sent = 4, Received = 0, Lost = 4
Minimum = 0ms - Maximum = 0ms

localhost Test
Pinging to 127.0.0.1 [127.0.0.1]:
Response - 0ms
Response - 0ms
Response - 0ms
Response - 0msPackets: Sent = 4, Received = 4, Lost = 0
Minimum = 0ms - Maximum = 0ms


<<<< Netstat >>>>

Active Connections

Proto Local Address Foreign Address State PID
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 1164
c:\windows\system32\WS2_32.dll
C:\WINDOWS\system32\RPCRT4.dll
c:\windows\system32\rpcss.dll
C:\WINDOWS\system32\svchost.exe
-- unknown component(s) --
[svchost.exe]

TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4
[System]

TCP 127.0.0.1:1026 0.0.0.0:0 LISTENING 2468
[alg.exe]

TCP 127.0.0.1:5152 0.0.0.0:0 LISTENING 688
[jqs.exe]

TCP 127.0.0.1:11500 0.0.0.0:0 LISTENING 696
[aoltpspd.exe]

TCP 127.0.0.1:11526 0.0.0.0:0 LISTENING 696
[aoltpspd.exe]

TCP 127.0.0.1:11527 0.0.0.0:0 LISTENING 696
[aoltpspd.exe]

TCP 127.0.0.1:11528 0.0.0.0:0 LISTENING 696
[aoltpspd.exe]

TCP 127.0.0.1:11529 0.0.0.0:0 LISTENING 696
[aoltpspd.exe]

TCP 127.0.0.1:11530 0.0.0.0:0 LISTENING 696
[aoltpspd.exe]

TCP 127.0.0.1:11531 0.0.0.0:0 LISTENING 696
[aoltpspd.exe]

TCP 127.0.0.1:11532 0.0.0.0:0 LISTENING 696
[aoltpspd.exe]

TCP 127.0.0.1:11533 0.0.0.0:0 LISTENING 696
[aoltpspd.exe]

TCP 127.0.0.1:12025 0.0.0.0:0 LISTENING 1696
[AvastSvc.exe]

TCP 127.0.0.1:12080 0.0.0.0:0 LISTENING 1696
[AvastSvc.exe]

TCP 127.0.0.1:12110 0.0.0.0:0 LISTENING 1696
[AvastSvc.exe]

TCP 127.0.0.1:12119 0.0.0.0:0 LISTENING 1696
[AvastSvc.exe]

TCP 127.0.0.1:12143 0.0.0.0:0 LISTENING 1696
[AvastSvc.exe]

TCP 127.0.0.1:12465 0.0.0.0:0 LISTENING 1696
[AvastSvc.exe]

TCP 127.0.0.1:12563 0.0.0.0:0 LISTENING 1696
[AvastSvc.exe]

TCP 127.0.0.1:12993 0.0.0.0:0 LISTENING 1696
[AvastSvc.exe]

TCP 127.0.0.1:12995 0.0.0.0:0 LISTENING 1696
[AvastSvc.exe]

TCP 192.168.0.11:139 0.0.0.0:0 LISTENING 4
[System]

TCP 127.0.0.1:5152 127.0.0.1:1045 CLOSE_WAIT 688
[jqs.exe]

TCP 192.168.0.11:1061 98.137.80.32:80 LAST_ACK 1696
[AvastSvc.exe]

TCP 192.168.0.11:1093 98.137.80.31:80 LAST_ACK 1696
[AvastSvc.exe]

TCP 127.0.0.1:1043 127.0.0.1:1042 TIME_WAIT 0
TCP 127.0.0.1:1279 127.0.0.1:12080 TIME_WAIT 0
TCP 127.0.0.1:1290 127.0.0.1:12080 TIME_WAIT 0
TCP 127.0.0.1:1293 127.0.0.1:12080 TIME_WAIT 0
TCP 127.0.0.1:1302 127.0.0.1:12080 TIME_WAIT 0
TCP 127.0.0.1:1307 127.0.0.1:12080 TIME_WAIT 0
TCP 127.0.0.1:1328 127.0.0.1:12080 TIME_WAIT 0
TCP 127.0.0.1:11526 127.0.0.1:1375 TIME_WAIT 0
TCP 127.0.0.1:11526 127.0.0.1:1372 TIME_WAIT 0
TCP 127.0.0.1:11526 127.0.0.1:1373 TIME_WAIT 0
TCP 127.0.0.1:11526 127.0.0.1:1309 TIME_WAIT 0
TCP 127.0.0.1:12080 127.0.0.1:1287 TIME_WAIT 0
TCP 127.0.0.1:12080 127.0.0.1:1108 TIME_WAIT 0
TCP 127.0.0.1:12080 127.0.0.1:1356 TIME_WAIT 0
TCP 127.0.0.1:12080 127.0.0.1:1109 TIME_WAIT 0
TCP 127.0.0.1:12080 127.0.0.1:1113 TIME_WAIT 0
TCP 127.0.0.1:12080 127.0.0.1:1115 TIME_WAIT 0
TCP 127.0.0.1:12080 127.0.0.1:1110 TIME_WAIT 0
TCP 192.168.0.11:1155 24.25.26.139:80 TIME_WAIT 0
TCP 192.168.0.11:1163 24.143.206.90:80 TIME_WAIT 0
TCP 192.168.0.11:1165 24.143.206.90:80 TIME_WAIT 0
TCP 192.168.0.11:1167 24.143.206.90:80 TIME_WAIT 0
TCP 192.168.0.11:1170 24.143.206.90:80 TIME_WAIT 0
TCP 192.168.0.11:1182 74.125.65.101:80 TIME_WAIT 0
TCP 192.168.0.11:1186 74.125.159.167:80 TIME_WAIT 0
TCP 192.168.0.11:1188 74.125.157.154:80 TIME_WAIT 0
TCP 192.168.0.11:1193 72.14.209.104:80 TIME_WAIT 0
TCP 192.168.0.11:1251 74.125.159.157:80 TIME_WAIT 0
TCP 192.168.0.11:1289 50.17.198.90:80 TIME_WAIT 0
TCP 192.168.0.11:1308 75.101.145.196:80 TIME_WAIT 0
TCP 192.168.0.11:1320 24.143.206.89:80 TIME_WAIT 0
TCP 192.168.0.11:1331 184.86.63.139:80 TIME_WAIT 0
TCP 192.168.0.11:1333 24.143.206.107:80 TIME_WAIT 0
TCP 192.168.0.11:1347 66.220.149.11:80 TIME_WAIT 0
TCP 192.168.0.11:1355 24.143.206.57:80 TIME_WAIT 0
TCP 192.168.0.11:1359 66.220.149.11:80 TIME_WAIT 0
TCP 192.168.0.11:1365 24.143.206.75:80 TIME_WAIT 0
TCP 192.168.0.11:1367 24.143.206.75:80 TIME_WAIT 0
TCP 192.168.0.11:1369 24.143.206.75:80 TIME_WAIT 0
TCP 192.168.0.11:1371 217.31.57.141:80 TIME_WAIT 0
TCP 192.168.0.11:1374 69.163.234.194:80 TIME_WAIT 0
UDP 0.0.0.0:500 *:* 952
[lsass.exe]

UDP 0.0.0.0:4500 *:* 952
[lsass.exe]

UDP 0.0.0.0:445 *:* 4
[System]

UDP 127.0.0.1:1900 *:* 1392
c:\windows\system32\WS2_32.dll
c:\windows\system32\ssdpsrv.dll
C:\WINDOWS\system32\ADVAPI32.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]

UDP 127.0.0.1:123 *:* 1204
c:\windows\system32\WS2_32.dll
c:\windows\system32\w32time.dll
ntdll.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]

UDP 192.168.0.11:137 *:* 4
[System]

UDP 192.168.0.11:1900 *:* 1392
c:\windows\system32\WS2_32.dll
c:\windows\system32\ssdpsrv.dll
C:\WINDOWS\system32\ADVAPI32.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]

UDP 192.168.0.11:123 *:* 1204
c:\windows\system32\WS2_32.dll
c:\windows\system32\w32time.dll
ntdll.dll
C:\WINDOWS\system32\kernel32.dll
[svchost.exe]

UDP 192.168.0.11:138 *:* 4
[System]


<<<< Routing Table >>>>

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 13 20 b5 2e a5 ...... Intel® PRO/100 VE Network Connection - Packet Scheduler Miniport
0x10004 ...00 12 bf 10 c6 30 ...... SMC2862W-G EZ Connect g 2.4Ghz 802.11g Wireless USB 2.0 Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.11 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.0.0 255.255.255.0 192.168.0.11 192.168.0.11 25
192.168.0.11 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.0.255 255.255.255.255 192.168.0.11 192.168.0.11 25
224.0.0.0 240.0.0.0 192.168.0.11 192.168.0.11 25
255.255.255.255 255.255.255.255 192.168.0.11 2 1
255.255.255.255 255.255.255.255 192.168.0.11 192.168.0.11 1
Default Gateway: 192.168.0.1
===========================================================================
Persistent Routes:
None

Route Table

<<<< Hosts File >>>>

The HOSTS file is 98 Bytes in size.

There were 0 lines which refer to an external IP address.

<<<< Active Shares >>>>

Share: IPC$ - Path:


------ End of File ------

Edited by msbug, 24 March 2011 - 06:44 AM.

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP