Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Win32/Adkubru, Facemoods, HOTBAR and who knows what else


  • Please log in to reply

#1
23red

23red

    Trusted Helper

  • Malware Removal
  • 1,797 posts
Hi :)
This is the house desktop OTL, have 14yr. old. I am not on this computer much but here complaints of zero framerate,and latency?... he has to log on, "wait 20 minutes for stuff to load" log off, then log back on, and wait again to play half way decent game. He does play wow, but I have him on his own drive. He's complaining about the video card...I don't know anything..I pretty sure he should be able to play his game ok on it tho, yes? Based on the specs I have seen.
Backtracking, I obtained this computer from someone who replaced it "because it was full and she can't do anything with it" I uninstalled a bunch of unneeded/unwanted programs, and parts. Today I ran the first OTL on it and wow..I think there are problems. Lotsa problems. I did set it to 90 days, I wanted to go back a year! I have no clue where to exactly start(yet)And I'd rather not screw it up, so I'm asking for assistance, please. OTL follows, and Thank You very much for any help.

OTL logfile created on: 7/23/2011 5:22:14 PM - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.50 Gb Total Physical Memory | 0.81 Gb Available Physical Memory | 53.85% Memory free
2.10 Gb Paging File | 1.53 Gb Available in Paging File | 72.81% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55.84 Gb Total Space | 17.00 Gb Free Space | 30.45% Space Free | Partition Type: NTFS
Drive F: | 31.27 Mb Total Space | 24.62 Mb Free Space | 78.75% Space Free | Partition Type: FAT
Drive P: | 155.76 Gb Total Space | 155.69 Gb Free Space | 99.96% Space Free | Partition Type: NTFS
Drive S: | 155.00 Gb Total Space | 122.29 Gb Free Space | 78.90% Space Free | Partition Type: NTFS
Drive W: | 155.00 Gb Total Space | 107.26 Gb Free Space | 69.20% Space Free | Partition Type: NTFS

Computer Name: SUZY | User Name: suzy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 90 Days

========== Processes (SafeList) ==========

PRC - [2011/07/23 17:21:20 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2011/05/29 09:11:28 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010/11/30 13:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2009/06/10 04:02:50 | 000,904,840 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
PRC - [2009/06/10 03:57:40 | 000,136,472 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2009/06/10 03:57:36 | 000,431,384 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2009/06/10 03:55:30 | 001,326,080 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
PRC - [2009/05/21 10:55:32 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe
PRC - [2008/08/13 18:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2008/04/13 14:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/08/26 19:44:48 | 000,282,624 | ---- | M] (Digital Networks North America, Inc.) -- C:\WINDOWS\SYSTEM32\RioMSC.exe


========== Modules (SafeList) ==========

MOD - [2011/07/23 17:21:20 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
MOD - [2010/08/23 06:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2009/06/10 03:57:36 | 000,431,384 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2008/08/13 18:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2007/03/07 15:47:46 | 000,076,848 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)
SRV - [2005/10/06 18:12:30 | 000,855,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Media Connect 2\wmccds.exe -- (WMConnectCDS)
SRV - [2004/08/26 19:44:48 | 000,282,624 | ---- | M] (Digital Networks North America, Inc.) [Auto | Running] -- C:\WINDOWS\SYSTEM32\RioMSC.exe -- (RioMSC)
SRV - [2003/03/03 08:33:40 | 000,143,360 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\NCS\Sync\NetSvc.exe -- (NetSvc)


========== Driver Services (SafeList) ==========

DRV - [2011/07/23 17:04:25 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F291EB96-BB50-4D9A-A927-63FBECFAAF2B}\MpKsl49159d5c.sys -- (MpKsl49159d5c)
DRV - [2011/07/23 16:36:36 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F291EB96-BB50-4D9A-A927-63FBECFAAF2B}\MpKslc64073e6.sys -- (MpKslc64073e6)
DRV - [2011/05/29 09:11:20 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\mbam.sys -- (MBAMProtector)
DRV - [2011/05/07 05:06:25 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/05/16 19:41:48 | 000,441,760 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)
DRV - [2010/05/16 19:41:48 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\tifsfilt.sys -- (tifsfilter)
DRV - [2010/05/16 19:41:26 | 000,132,480 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2010/05/16 19:40:59 | 000,368,480 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tdrpman.sys -- (tdrpman)
DRV - [2009/06/30 10:37:16 | 000,028,552 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\pavboot.sys -- (pavboot)
DRV - [2007/02/25 12:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\dsunidrv.sys -- (dsunidrv)
DRV - [2006/10/05 16:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2005/05/22 13:43:16 | 000,016,128 | ---- | M] (Digital Networks North America, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\RIOUNIV.SYS -- (RIOUNIV)
DRV - [2004/08/03 19:29:49 | 000,019,455 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wvchntxx.sys -- (iAimFP4)
DRV - [2004/08/03 19:29:47 | 000,012,063 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wsiintxx.sys -- (iAimFP3)
DRV - [2004/08/03 19:29:45 | 000,023,615 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wch7xxnt.sys -- (iAimTV4)
DRV - [2004/08/03 19:29:43 | 000,033,599 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv04nt.sys -- (iAimTV3)
DRV - [2004/08/03 19:29:42 | 000,019,551 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv02nt.sys -- (iAimTV1)
DRV - [2004/08/03 19:29:41 | 000,029,311 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv01nt.sys -- (iAimTV0)
DRV - [2004/08/03 19:29:37 | 000,012,415 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv01nt.sys -- (iAimFP0)
DRV - [2004/08/03 19:29:37 | 000,012,127 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv02nt.sys -- (iAimFP1)
DRV - [2004/08/03 19:29:37 | 000,011,775 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv05nt.sys -- (iAimFP2)
DRV - [2004/08/03 19:29:36 | 000,161,020 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\i81xnt5.sys -- (i81x)
DRV - [2004/01/27 11:40:26 | 000,284,928 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\Cdudf_xp.sys -- (cdudf_xp)
DRV - [2004/01/27 11:39:56 | 000,023,680 | ---- | M] (Roxio) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\dvd_2k.sys -- (dvd_2K)
DRV - [2004/01/27 11:34:56 | 000,140,416 | ---- | M] (Windows ® 2000 DDK provider) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\DVDVRRdr_xp.sys -- (DVDVRRdr_xp)
DRV - [2004/01/27 11:34:46 | 000,043,008 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2004/01/27 11:32:00 | 000,024,576 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2004/01/27 11:29:44 | 000,023,680 | ---- | M] (Roxio) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\mmc_2k.sys -- (mmc_2K)
DRV - [2004/01/27 11:29:40 | 000,197,632 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\Udfreadr.sys -- (UDFReadr)
DRV - [2004/01/27 11:16:38 | 000,117,248 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\Pwd_2k.sys -- (pwd_2k)
DRV - [2003/09/26 03:53:00 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\pfc.sys -- (pfc)
DRV - [2003/01/12 20:24:40 | 000,012,790 | R--- | M] (iRiver, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\ifpusb.sys -- (IFPUSB)
DRV - [2002/11/08 08:45:06 | 000,017,217 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\omci.sys -- (omci)
DRV - [2002/10/29 11:38:10 | 000,170,499 | ---- | M] (Conexant Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2002/10/29 11:37:36 | 001,175,536 | ---- | M] (Conexant Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\HSF_DP.sys -- (HSF_DP)
DRV - [2002/10/29 11:31:28 | 000,604,240 | ---- | M] (Conexant Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\HSF_CNXT.sys -- (winachsf)
DRV - [2001/08/17 07:11:06 | 000,066,591 | ---- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\EL90XBC5.SYS -- (EL90XBC)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoo...earchTerms}&f=4

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========


FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: S:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandasecurity.com/activescan: C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll (Panda Security, S.L.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2321: C:\Program Files\Real\RealOne Player\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2379: C:\Program Files\Real\RealOne Player\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1483: C:\Program Files\Real\RealOne Player\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine,version=1.0: C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll ()
FF - HKCU\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine: C:\Documents and Settings\Administrator\Application Data\nprhapengine.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/03/08 18:25:48 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/03/08 18:25:48 | 000,000,000 | ---D | M]

[2011/04/08 10:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2011/06/25 16:55:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions
[2011/06/25 16:55:14 | 000,000,000 | ---D | M] (Facemoods) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]
[2010/07/31 11:24:03 | 000,000,000 | ---D | M] (ShopAtHome Intelligent Shopping Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]
[2011/06/25 16:55:18 | 000,002,048 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml

O1 HOSTS File: ([2009/07/28 17:05:26 | 000,000,796 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 192.168.1.200 HP000D9D24BD67
O1 - Hosts: 192.168.1.104 HP001F29702669
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.10\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (Facetheme) - {70C6E9DE-F30E-4A40-8A6F-9572C2328320} - C:\Program Files\Object\bho_project.dll (InternetEngine)
O2 - BHO: (DCA BHO) - {B49699FC-1665-4414-A1CB-C4A2A4A13EEC} - C:\Program Files\Common Files\FreeCause\DCA\dca-bho.dll (Compete, Inc.)
O2 - BHO: (Shop to Win 16) - {D2D09FE0-F451-45F7-A617-FABF9130C4D6} - C:\Program Files\Shop to Win 16\Shop to Win 16.dll (Shop To Win, LLC)
O3 - HKLM\..\Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - No CLSID value found.
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.10\facemoodsTlbr.dll (facemoods.com)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {B195B3B3-8A05-11D3-97A4-0004ACA6948E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {871F91FD-3A92-4988-A842-16AB2CFF5AF1} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.10\facemoodssrv.exe (facemoods.com)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office2003\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: hicentral.com ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: hicentralmls.com ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: zipform.com ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: zipformonline.com ([www] https in Trusted sites)
O16 - DPF: {10E0E75E-6701-4134-9D95-C0942ED1F1C8} http://www1.snapfish...tlookImport.cab (Snapfish Outlook Import ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.micr...922/wmv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://www1.snapfish...fishActivia.cab (Snapfish Activia)
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} http://a1540.g.akama...meInstaller.exe (Reg Error: Key error.)
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://bin.mcafee.co...76/mcinsctl.cab (Reg Error: Key error.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.micros...b?1140077586609 (MUWebControl Class)
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} http://a840.g.akamai...all/xscan53.cab (HouseCall Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoft...s/as2stubie.cab (ActiveScan 2.0 Installer Class)
O16 - DPF: {9522B3FB-7A2B-4646-8AF6-36E7F593073C} http://a19.g.akamai....23/cpbrkpie.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} http://v4.windowsupd...8065.0309722222 (Reg Error: Key error.)
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} https://h17000.www1....loadManager.ocx (Get_ActiveX Control)
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} http://bin.mcafee.co...,16/mcgdmgr.cab (Reg Error: Key error.)
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} http://support.dell....lSystemLite.CAB (DellSystemLite.Scanner)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2002/09/03 08:36:02 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2003/04/15 15:49:10 | 000,000,398 | ---- | M] () - F:\AUTOEXEC.UP -- [ FAT ]
O32 - AutoRun File - [2003/04/15 15:49:10 | 000,000,398 | ---- | M] () - F:\AUTOEXEC.BAT -- [ FAT ]
O32 - AutoRun File - [2010/07/26 15:42:56 | 000,000,000 | ---D | M] - S:\Automatically Add to iTunes -- [ NTFS ]
O32 - AutoRun File - [2011/07/14 02:34:21 | 000,000,090 | ---- | M] () - W:\AUTORUN.INF -- [ NTFS ]
O33 - MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\Shell - "" = AutoRun
O33 - MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\Shell\AutoRun\command - "" = F:\EasySuite.exe
O33 - MountPoints2\{11ec785f-6973-11dd-a195-0007e971aa4c}\Shell\AutoRun\command - "" = F:\setupSNK.exe
O33 - MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\Shell - "" = AutoRun
O33 - MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O36 - AppCertDlls: ESENgsvc - (C:\WINDOWS\system32\ddesPING.dll) - File not found
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 90 Days ==========

[2011/07/23 17:21:07 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2011/07/19 01:12:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\TS3Client
[2011/07/19 01:09:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\TeamSpeak 3 Client
[2011/07/19 01:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client
[2011/06/27 14:30:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Minecraft Errors
[2011/06/25 17:18:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\facemoods.com
[2011/06/25 16:55:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\FCSB000063447
[2011/06/25 16:55:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Shop to Win 16
[2011/06/25 16:55:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
[2011/06/25 16:55:27 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2011/06/25 16:55:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\FreeCause
[2011/06/25 16:55:17 | 000,000,000 | ---D | C] -- C:\Program Files\Shop to Win 16
[2011/06/25 16:55:15 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/06/25 16:55:14 | 000,000,000 | ---D | C] -- C:\Program Files\Shop To Win
[2011/06/25 16:55:07 | 000,000,000 | ---D | C] -- C:\Program Files\facemoods.com
[2011/06/25 16:54:58 | 000,000,000 | ---D | C] -- C:\Program Files\Object
[2011/06/16 15:08:22 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2011/06/05 15:55:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\itunessave
[2011/06/05 15:23:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2011/06/05 15:15:08 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011/06/05 15:13:00 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/06/01 16:43:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\.minecraft
[2011/06/01 16:41:42 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011/06/01 16:41:42 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011/06/01 16:41:42 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011/06/01 16:37:00 | 000,887,072 | ---- | C] (Sun Microsystems, Inc.) -- C:\Documents and Settings\Administrator\Desktop\JavaSetup6u25.exe
[2011/05/13 15:18:01 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011/05/07 05:05:31 | 000,000,000 | ---D | C] -- C:\Program Files\LSoft Technologies
[2011/05/07 05:05:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\[email protected] ISO Burner
[2011/05/07 05:03:56 | 004,940,440 | ---- | C] (Macrovision Corporation) -- C:\Documents and Settings\Administrator\Desktop\IsoBurner-Setup.exe
[2011/04/26 17:38:49 | 000,028,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys
[2011/04/26 17:37:47 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2004/06/11 21:35:20 | 000,036,963 | R--- | C] (Cypress Semiconductor) -- C:\Program Files\Common Files\SM1updtr.dll
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 90 Days ==========

[2011/07/23 17:21:20 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2011/07/23 17:19:20 | 000,000,220 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Geeks to Go! – Tech experts answer your questions.url
[2011/07/23 17:10:20 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/07/23 17:05:47 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011/07/23 17:05:45 | 000,001,170 | ---- | M] () -- C:\WINDOWS\System32\WPA.DBL
[2011/07/23 17:03:05 | 000,002,048 | --S- | M] () -- C:\WINDOWS\BOOTSTAT.DAT
[2011/07/23 16:56:05 | 000,000,644 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\World of Warcraft.lnk
[2011/07/22 20:00:00 | 000,000,420 | ---- | M] () -- C:\WINDOWS\tasks\McAfee.com Scan for Viruses - My Computer (SAUNDERSCCH-saunders).job
[2011/07/19 01:09:33 | 000,000,837 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk
[2011/07/15 15:16:28 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/07/13 10:00:34 | 000,000,812 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2011/07/13 10:00:27 | 000,444,488 | ---- | M] () -- C:\WINDOWS\System32\PERFH009.DAT
[2011/07/13 10:00:27 | 000,072,364 | ---- | M] () -- C:\WINDOWS\System32\PERFC009.DAT
[2011/07/13 06:20:02 | 000,421,432 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/07/12 16:58:31 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/06/30 13:37:00 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011/06/29 15:09:00 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/06/15 20:23:34 | 000,212,564 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\DP 11 - 2011 MEGA DISPLAY COOLER.pdf
[2011/06/13 19:36:28 | 000,270,142 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Minecraft.exe
[2011/06/05 16:47:59 | 000,001,449 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/06/04 21:17:35 | 000,009,722 | --S- | M] () -- C:\Documents and Settings\Administrator\My Documents\Untitled.rcl
[2011/06/02 04:02:05 | 001,858,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys
[2011/06/02 04:02:05 | 001,858,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys
[2011/06/01 16:41:05 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011/06/01 16:41:05 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011/06/01 16:41:05 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2011/06/01 16:41:04 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011/06/01 16:41:04 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011/06/01 16:37:04 | 000,887,072 | ---- | M] (Sun Microsystems, Inc.) -- C:\Documents and Settings\Administrator\Desktop\JavaSetup6u25.exe
[2011/05/30 12:19:48 | 005,964,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2011/05/29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/05/29 09:11:20 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/05/22 19:08:20 | 000,002,205 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011/05/07 05:04:11 | 004,940,440 | ---- | M] (Macrovision Corporation) -- C:\Documents and Settings\Administrator\Desktop\IsoBurner-Setup.exe
[2011/05/02 05:31:52 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll
[2011/04/29 17:01:14 | 000,758,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2011/04/29 07:25:27 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll
[2011/04/29 06:19:43 | 000,456,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2011/04/26 10:11:12 | 011,081,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2011/04/26 01:07:50 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winsrv.dll
[2011/04/26 01:07:50 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsrv.dll
[2011/04/26 01:07:50 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll
[2011/04/26 01:07:50 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\csrsrv.dll
[2011/04/25 06:11:12 | 001,211,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2011/04/25 06:11:12 | 000,916,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2011/04/25 06:11:12 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll
[2011/04/25 06:11:12 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2011/04/25 06:11:12 | 000,602,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2011/04/25 06:11:12 | 000,602,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2011/04/25 06:11:12 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2011/04/25 06:11:12 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2011/04/25 06:11:12 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll
[2011/04/25 06:11:12 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2011/04/25 06:11:11 | 001,991,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2011/04/25 06:11:11 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2011/04/25 06:11:11 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2011/04/25 06:11:11 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2011/04/25 06:11:11 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2011/04/25 06:11:11 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2011/04/25 06:11:11 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licmgr10.dll
[2011/04/25 06:11:11 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licmgr10.dll
[2011/04/25 06:11:11 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll
[2011/04/25 06:11:11 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2011/04/25 06:11:10 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2011/04/25 06:11:10 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2011/04/25 02:01:34 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2011/04/25 02:01:34 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2011/04/25 02:01:22 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/07/19 01:09:33 | 000,000,837 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk
[2011/06/15 20:23:22 | 000,212,564 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\DP 11 - 2011 MEGA DISPLAY COOLER.pdf
[2011/06/13 19:37:14 | 000,270,142 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Minecraft.exe
[2011/06/05 16:47:59 | 000,001,449 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2011/06/04 21:17:35 | 000,009,722 | --S- | C] () -- C:\Documents and Settings\Administrator\My Documents\Untitled.rcl
[2010/06/04 23:18:27 | 000,000,262 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2010/03/08 18:24:27 | 000,023,113 | ---- | C] () -- C:\WINDOWS\hpqins15.dat
[2010/02/11 17:17:47 | 000,077,377 | ---- | C] () -- C:\WINDOWS\hpqins05.dat
[2010/02/02 16:15:04 | 000,188,868 | ---- | C] () -- C:\WINDOWS\hpwins22.dat
[2010/02/02 16:15:04 | 000,002,979 | ---- | C] () -- C:\WINDOWS\hpwmdl22.dat
[2010/01/06 15:31:19 | 000,095,112 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/11/23 13:14:21 | 000,087,552 | ---- | C] () -- C:\WINDOWS\System32\cpwmon2k.dll
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009/07/26 19:35:13 | 000,000,115 | ---- | C] () -- C:\WINDOWS\WinInit.Ini
[2008/12/21 21:02:42 | 000,004,096 | -H-- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\keyfile3.drm
[2008/12/10 13:15:47 | 000,000,059 | ---- | C] () -- C:\WINDOWS\dcmvwr.INI
[2007/09/09 20:26:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006/10/22 12:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/10/22 12:22:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2006/10/22 12:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/10/22 12:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/10/22 12:22:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2006/10/22 12:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/10/22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006/09/19 22:25:44 | 000,012,416 | ---- | C] () -- C:\WINDOWS\hpwscr05.dat
[2006/04/08 13:41:27 | 000,000,206 | ---- | C] () -- C:\WINDOWS\HPGdiPlus.ini
[2006/03/26 20:29:21 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/12/12 14:34:37 | 000,037,027 | ---- | C] () -- C:\WINDOWS\atmoUn.exe
[2005/10/07 12:07:16 | 000,003,399 | R--- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
[2005/10/07 12:07:16 | 000,000,158 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini
[2005/08/31 18:38:46 | 000,068,952 | ---- | C] () -- C:\WINDOWS\hpoins05.dat.temp
[2005/08/31 18:38:46 | 000,019,696 | ---- | C] () -- C:\WINDOWS\hpomdl05.dat.temp
[2005/08/16 13:02:00 | 000,001,313 | ---- | C] () -- C:\WINDOWS\hpbvnstp.ini
[2005/08/16 13:01:35 | 000,192,512 | R--- | C] () -- C:\WINDOWS\System32\HPB1320V.DLL
[2005/08/16 13:01:35 | 000,000,319 | R--- | C] () -- C:\WINDOWS\System32\HPB1320V.DAT
[2005/08/16 13:00:20 | 000,007,737 | ---- | C] () -- C:\WINDOWS\hplj1320.ini
[2005/05/01 19:24:23 | 000,000,021 | ---- | C] () -- C:\WINDOWS\CS_SETUP.ini
[2005/03/10 16:08:08 | 000,099,736 | ---- | C] () -- C:\WINDOWS\CPEins05.dat
[2005/03/10 16:02:38 | 000,100,724 | ---- | C] () -- C:\WINDOWS\cpeins04.dat
[2005/03/10 16:02:38 | 000,017,176 | ---- | C] () -- C:\WINDOWS\hpomdl04.dat.temp
[2005/02/28 19:53:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\hpqEmlSz.INI
[2005/02/16 20:35:05 | 000,000,068 | ---- | C] () -- C:\WINDOWS\WFCLIENT.INI
[2005/01/08 12:31:18 | 000,103,715 | ---- | C] () -- C:\WINDOWS\Picasa Uninstaller.exe
[2004/12/14 19:45:41 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\imageCache7.db
[2004/12/04 08:42:05 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2004/10/10 06:37:25 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/09/25 19:54:56 | 000,071,749 | ---- | C] () -- C:\WINDOWS\HCExtOutput.dll
[2004/09/25 19:54:56 | 000,000,823 | ---- | C] () -- C:\WINDOWS\TSC.ini
[2004/09/25 19:54:32 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
[2004/07/17 20:27:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2004/06/11 21:50:04 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\BurnData.bin
[2004/04/20 14:50:18 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\Zlib.dll
[2004/04/20 14:50:17 | 000,041,984 | ---- | C] () -- C:\WINDOWS\System32\ZFExt.dll
[2004/03/14 21:58:19 | 000,067,072 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/02/27 09:44:33 | 000,000,004 | ---- | C] () -- C:\WINDOWS\uccspecb.sys
[2004/02/21 18:01:11 | 000,061,678 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\PFP110JPR.{PB
[2004/02/21 18:01:10 | 000,012,358 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\PFP110JCM.{PB
[2003/10/30 04:10:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\besch.exe
[2003/10/30 04:10:00 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\besched.dll
[2003/09/25 01:00:00 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lockout.dll
[2003/09/25 01:00:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\lockres.dll
[2003/08/25 08:53:16 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\instlsp.exe
[2003/08/24 10:13:33 | 000,039,905 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2003/08/21 17:20:21 | 000,000,085 | ---- | C] () -- C:\WINDOWS\D2HNAV16.INI
[2003/08/05 09:37:47 | 000,000,020 | ---- | C] () -- C:\WINDOWS\Hposcv07.INI
[2003/08/05 09:33:12 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2003/08/05 09:22:22 | 000,000,519 | ---- | C] () -- C:\WINDOWS\PCAWin.ini
[2003/08/05 08:28:50 | 000,000,083 | ---- | C] () -- C:\WINDOWS\webica.ini
[2003/08/05 08:23:44 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2003/08/01 13:14:52 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003/08/01 13:02:18 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2003/07/25 10:49:14 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2003/07/25 10:47:01 | 000,000,258 | ---- | C] () -- C:\WINDOWS\System32\BDEMERGE.INI
[2003/07/25 10:44:09 | 000,000,052 | ---- | C] () -- C:\WINDOWS\intuprof.ini
[2003/07/25 10:44:08 | 000,007,406 | ---- | C] () -- C:\WINDOWS\ICOADB32.DAT
[2003/07/25 10:44:08 | 000,000,180 | ---- | C] () -- C:\WINDOWS\Quicken.ini
[2003/07/25 10:39:24 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2003/07/25 10:29:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\BOOTSTAT.DAT
[2003/07/25 10:27:30 | 000,444,488 | ---- | C] () -- C:\WINDOWS\System32\PERFH009.DAT
[2003/07/25 10:27:30 | 000,072,364 | ---- | C] () -- C:\WINDOWS\System32\PERFC009.DAT
[2003/07/25 10:17:28 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/05/02 15:19:00 | 001,622,016 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2003/05/02 15:19:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2003/05/02 15:19:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2003/05/02 15:19:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/11/01 16:17:50 | 000,000,256 | ---- | C] () -- C:\WINDOWS\aucfg.ini
[2002/09/03 08:42:36 | 000,421,432 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2002/09/03 08:35:18 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2002/09/03 08:31:48 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2002/09/03 03:31:46 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\OEMBIOS.BIN
[2002/09/03 03:31:44 | 000,004,594 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2002/08/29 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\MLANG.DAT
[2002/08/29 00:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\PERFI009.DAT
[2002/08/29 00:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\DSSEC.DAT
[2002/08/29 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\MIB.BIN
[2002/08/29 00:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\PERFD009.DAT
[2002/08/29 00:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2002/08/29 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\NOISE.DAT
[2002/07/04 15:05:34 | 000,000,269 | ---- | C] () -- C:\WINDOWS\tmupdate.ini
[2001/12/14 13:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
[2001/07/31 00:17:12 | 000,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
[1999/07/23 13:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
[1999/07/23 10:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
[1999/01/22 08:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
[1979/12/31 19:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\e100bmsg.dll

< End of report >




and the Extras.Txt


OTL Extras logfile created on: 7/23/2011 5:22:14 PM - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.50 Gb Total Physical Memory | 0.81 Gb Available Physical Memory | 53.85% Memory free
2.10 Gb Paging File | 1.53 Gb Available in Paging File | 72.81% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55.84 Gb Total Space | 17.00 Gb Free Space | 30.45% Space Free | Partition Type: NTFS
Drive F: | 31.27 Mb Total Space | 24.62 Mb Free Space | 78.75% Space Free | Partition Type: FAT
Drive P: | 155.76 Gb Total Space | 155.69 Gb Free Space | 99.96% Space Free | Partition Type: NTFS
Drive S: | 155.00 Gb Total Space | 122.29 Gb Free Space | 78.90% Space Free | Partition Type: NTFS
Drive W: | 155.00 Gb Total Space | 107.26 Gb Free Space | 69.20% Space Free | Partition Type: NTFS

Computer Name: SUZY | User Name: saunders | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 90 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office2003\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office2003\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Connect
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Connect
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Connect
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Connect
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Connect
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Connect
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"427:TCP" = 427:TCP:LocalSubNet:Enabled:SLP_Port(427)_TCP
"427:UDP" = 427:UDP:LocalSubNet:Enabled:SLP_Port(427)_UDP

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Connect
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Connect
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Connect
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Connect
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Connect
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Connect
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"427:TCP" = 427:TCP:LocalSubNet:Enabled:SLP_Port(427)_TCP
"427:UDP" = 427:UDP:LocalSubNet:Enabled:SLP_Port(427)_UDP
"3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724
"6112:TCP" = 6112:TCP:*:Enabled:Blizzard Downloader
"6881:TCP" = 6881:TCP:*:Enabled:Blizzard Downloader: 6881

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"D:\setup\hpznui01.exe" = D:\setup\hpznui01.exe:*:Enabled:hpznui01.exe
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe:*:Enabled:hpofxs08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe:*:Enabled:hpqfxt08.exe -- (TODO: <Company name>)
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\HP Software Update\HPWUCli.exe" = C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe" = C:\Program Files\HP\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe -- (Hewlett-Packard Co.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe" = C:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe:*:Enabled:javaw
"D:\setup\HPZNET01.EXE" = D:\setup\HPZNET01.EXE:*:Enabled:hpznet01.exe
"D:\setup\HPONICIFS01.EXE" = D:\setup\HPONICIFS01.EXE:*:Enabled:hponicifs01.exe
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe
"C:\Program Files\HP\Digital Imaging\bin\hpqcopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqcopy.exe:*:Enabled:hpqcopy.exe
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe
"D:\setup\hpznui01.exe" = D:\setup\hpznui01.exe:*:Enabled:hpznui01.exe
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe:*:Enabled:hpofxs08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe:*:Enabled:hpqfxt08.exe -- (TODO: <Company name>)
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\HP Software Update\HPWUCli.exe" = C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:HP Software Update Client -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe" = C:\Program Files\HP\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe -- (Hewlett-Packard Co.)
"C:\Program Files\Ventrilo\Ventrilo.exe" = C:\Program Files\Ventrilo\Ventrilo.exe:*:Enabled:Ventrilo.exe -- (Flagship Industries, Inc.)
"W:\Program Files\World of Warcraft\Launcher.exe" = W:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Launcher -- (Blizzard Entertainment)
"W:\Program Files\World of Warcraft\Launcher.patch.exe" = W:\Program Files\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher
"W:\Program Files\World of Warcraft\Blizzard Downloader.exe" = W:\Program Files\World of Warcraft\Blizzard Downloader.exe:*:Enabled:Blizzard Downloader
"W:\Program Files\World of Warcraft\BackgroundDownloader.exe" = W:\Program Files\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"C:\Documents and Settings\Administrator\Local Settings\Temp\pdfupd.exe" = C:\Documents and Settings\Administrator\Local Settings\Temp\pdfupd.exe:*:Enabled:llupdate
"C:\Program Files\Common Files\ComObjects\spi.exe" = C:\Program Files\Common Files\ComObjects\spi.exe:*:Enabled:SP -- ()
"C:\Program Files\Common Files\ComObjects\update.exe" = C:\Program Files\Common Files\ComObjects\update.exe:*:Enabled:lupdater -- (Mozilla Corporation)
"C:\Program Files\World of Warcraft Public Test\Launcher.exe" = C:\Program Files\World of Warcraft Public Test\Launcher.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"C:\Program Files\World of Warcraft Public Test\Launcher.patch.exe" = C:\Program Files\World of Warcraft Public Test\Launcher.patch.exe:*:Enabled:Blizzard Launcher
"W:\Program Files\World of Warcraft\World of Warcraft Public Test\Launcher.patch.exe" = W:\Program Files\World of Warcraft\World of Warcraft Public Test\Launcher.patch.exe:*:Enabled:Blizzard Launcher
"W:\Program Files\World of Warcraft\World of Warcraft Public Test\Launcher.exe" = W:\Program Files\World of Warcraft\World of Warcraft Public Test\Launcher.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"C:\WINDOWS\SYSTEM32\java.exe" = C:\WINDOWS\SYSTEM32\java.exe:*:Enabled:Java™ Platform SE binary -- (Sun Microsystems, Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00010409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Professional
"{03A7C57A-B2C8-409b-92E5-524A0DFD0DD3}" = Status
"{087A66B8-1F0F-4a8d-A649-0CFE276AA7C0}" = WebReg
"{102CBC47-7FDE-4E6C-8A3A-67B79833FAC8}" = BPDSoftware_Ini
"{11B2F891-91C8-47ce-945A-A91003EA27FB}" = BPDSoftware
"{18AB082B-6584-4F74-8ABC-D5935CF46E4C}" = 8500A909_eDocs
"{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java™ 6 Update 25
"{282EF7E3-AE54-48AE-A11D-27F512F23AB3}" = Rio Music Manager
"{2DBE41DD-2129-4C65-A3D3-5647236A60F3}" = Quicken 2005
"{2DFF31F9-7893-4922-AF66-C9A1EB4EBB31}" = Rhapsody Player Engine
"{2E0695EE-ED29-4D96-BD77-2A9A17EDF0D6}" = Cypress USB Mass Storage Driver Installation
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3700194C-C5DD-439A-BE06-A66960CA4C70}" = MSVCSetup
"{4304BE34-6DDA-46CC-ADAB-77990DC77ED5}" = Magellan RoadMate Tools
"{432A850B-3558-4BFF-B1F9-30626835B523}" = BPD_DSWizards
"{47ECCB1F-2811-49C0-B6A7-26778639ABA0}" = 32 Bit HP CIO Components Installer
"{493F2531-C2E5-4B73-8B11-66E9CFDA9AFA}" = Rio Internet Update
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}" = Adobe® Photoshop® Album Starter Edition 3.0
"{4D304678-738E-42a0-931A-2B022F49DEB8}" = TrayApp
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{5421155F-B033-49DB-9B33-8F80F233D4D5}" = GdiplusUpgrade
"{54F90B55-BEB3-4F0D-8802-228822FA5921}" = WordPerfect Office 11
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{57F60D52-630B-43C5-BD20-176F5CD4EED6}" = bpd_scan
"{624E7452-BA43-4f55-B9D5-FC75EEA0808B}" = Officejet Pro 8500 A909 Series
"{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}" = Windows Genuine Advantage v1.3.0254.0
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{676981B7-A2D9-49D0-9F4C-03018F131DA9}" = DocProc
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68D60342-7686-45C9-B8EB-40EF843D0460}" = Dell Networking Guide
"{6EFDBA50-4ABE-4194-86F7-F3BD0A011F5B}_is1" = Shop To Win
"{766273C1-A39B-47EB-ACE8-DEBDD8094BCC}" = overland
"{7694E0B1-2332-448B-9235-929F84B41E3F}" = [email protected] ISO Burner
"{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware
"{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}" = Microsoft Security Client
"{787D1A33-A97B-4245-87C0-7174609A540C}" = HP Update
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{7C5B4583-7CBF-4289-B195-03B553959DEA}" = VoiceOver Kit
"{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}" = DellSupport
"{7F142D56-3326-11D5-B229-002078017FBF}" = Modem Helper
"{853A4763-6643-4604-8D64-28BDD8925F4C}" = Apple Application Support
"{873D68B3-EDE5-4DFD-85AC-FFC430FB7EE2}" = Form Viewer
"{87A9A9A9-FAB7-4224-9328-0FA2058C0FD5}" = Network
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A367C28-423C-48E2-8C76-EBA1171F932A}" = Adobe Photoshop Album 2.0
"{8EF1122E-E90C-4EE9-AB0C-7FDE2BA42C26}" = Musicmatch® Jukebox
"{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90D55A3F-1D99-4C94-A77E-46DC14F0BF08}" = Help and Support Customization
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9860A9CF-7E71-43AC-888F-0B4D3EA212D1}" = Roxio Burn Engine
"{98DF85D9-96C0-4F57-A92E-C3539477EF5E}" = DVDSentry
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9CCCFD9C-248F-47FE-9496-1680E3E5C163}" = Scan
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A71D5E81-B967-43DB-93D7-FD31BFB95748}" = MobileMe Control Panel
"{A790BEB1-BCCF-4EC6-807B-5708B36E8A79}" = Intel® PROSet
"{AC13BA3A-336B-45a4-B3FE-2D3058A7B533}" = Toolbox
"{AC76BA86-7AD7-1033-7B44-A71000000002}" = Adobe Reader 7.1.0
"{AFAC914D-9E83-4A89-8ABE-427521C82CCF}" = Safari
"{B1B3A995-2FA8-46F1-9C3F-B3913CD0C3D4}" = iPodRip
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B495547C-01F8-4836-A2E6-749B5F3EA691}" = 8500A909_Help
"{BBBCAE4B-B416-4182-A6F2-438180894A81}" = Napster
"{BDCF27CA-BFC4-4F49-8D24-A925C9505AB8}" = Windows Rights Management Client with Service Pack 2
"{BE130CAB-F7AA-4660-96A2-6BCCE9743946}" = Stomp Backup MyPC
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C29C1940-CB85-4F3B-906C-33FEE0E67103}" = DocMgr
"{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C43E4B9C-14C8-4EB0-998B-85211B6EDD61}" = Acronis True Image WD Edition
"{C4A978A3-CAE4-4856-89D5-696498A7B8F7}" = HPODiscovery
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CB4544EA-C189-41FE-9E3A-76591DDB852B}" = Roxio Easy Media Creator 7
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF6E7481-4487-46D3-810A-F73EEA232CE0}" = Microsoft IntelliPoint 5.0
"{D5DEF057-D3BC-499f-99EE-884ED429B6D1}" = 8500A909g
"{D9F4A9F8-92C5-4289-9D04-F0F8F02D580A}" = iPod for Windows 2005-10-12
"{DA8BF070-1358-4a30-A68F-21E0E9421AEF}" = ProductContext
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{EC905264-BCFE-423B-9C42-C3A106266790}" = Windows Rights Management Client Backwards Compatibility SP2
"{EE7C3A14-1D20-49F6-B903-491561076F0F}" = ArcSoft Software Suite
"{EEEB604C-C1A7-4f8c-B03F-56F9C1C9C45F}" = Fax
"{EF9E56EE-0243-4BAD-88F4-5E7508AA7D96}" = Destination Component
"{F59A9E08-A6A4-4ACF-91F2-D0344956C30B}" = iTunes
"{F769B78E-FF0E-4db5-95E2-9F4C8D6352FE}" = DeviceDiscovery
"{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}" = HighMAT Extension to Microsoft Windows XP CD Writing Wizard
"{FF3999BE-1A7B-4738-88AA-97BF14094A4A}" = PictureProject
"7-Zip" = 7-Zip 9.20
"ActiveScan 2.0" = Panda ActiveScan 2.0
"Adobe Atmosphere Player" = Adobe Atmosphere Player for Acrobat and Adobe Reader
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"ArcSoft VideoImpression 16FP" = ArcSoft VideoImpression 1.6FP
"CCleaner" = CCleaner
"CNXT_MODEM_PCI_VEN_14F1&DEV_2702" = Conexant SmartHSFi V92 56K Speakerphone PCI Modem
"CutePDF Writer Installation" = CutePDF Writer 2.8
"Dell Digital Jukebox Driver" = Dell Digital Jukebox Driver
"ERUNT_is1" = ERUNT 1.1j
"facemoods" = Facemoods Toolbar
"facetheme" = Facetheme
"HP Document Manager" = HP Document Manager 2.0
"HP Imaging Device Functions" = HP Imaging Device Functions 12.0
"HP Smart Web Printing" = HP Smart Web Printing 4.60
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPOCR" = OCR Software by I.R.I.S. 12.0
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{2DBE41DD-2129-4C65-A3D3-5647236A60F3}" = Quicken 2005
"InstallShield_{D9F4A9F8-92C5-4289-9D04-F0F8F02D580A}" = iPod for Windows 2005-10-12
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.0.1200
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"mIRC" = mIRC
"NVIDIA Drivers" = NVIDIA Drivers
"Picasa" = Picasa
"PROSet" = Intel® PRO Network Adapters and Drivers
"RealPlayer 6.0" = RealPlayer
"SM1FX_AT" = USB Storage Adapter FX (SM1)
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TPP300" = USB2 Storage Adapter V3 (LaCie)
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"Windows XP Service Pack" = Windows XP Service Pack 3
"World of Warcraft" = World of Warcraft
"World of Warcraft Public Test" = World of Warcraft Public Test

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"PhotoBase Installer" =

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1/29/2011 3:14:46 AM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 2152759308, P2 unspecified, P3 scanfile,
P4 3.0.8107.0, P5 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.

Error - 1/29/2011 3:14:49 AM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P2 3.0.8107.0, P3 timeout, P4 1.1.6502.0, P5 fixed, P6 1 _ 2048, P7 10 _ not boot,
P8 NIL, P9 NIL, P10 NIL.

Error - 2/6/2011 8:19:16 AM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 80248011, P2 endsearch, P3 search, P4 3.0.8107.0,
P5 mpsigdwn.dll, P6 3.0.8107.0, P7 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P8 NIL, P9 NIL, P10 NIL.

Error - 2/11/2011 8:27:58 PM | Computer Name = SUZY | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: An internal certificate chaining error has occurred.

Error - 2/11/2011 8:34:22 PM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 0, P2 moaccapability, P3 3.0.8107.0, P4
3, P5 0, P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.

Error - 2/20/2011 8:32:58 AM | Computer Name = SUZY | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: An internal certificate chaining error has occurred.

Error - 2/20/2011 7:11:00 PM | Computer Name = SUZY | Source = Microsoft Office 11 | ID = 2001
Description = Rejected Safe Mode action : Microsoft Office Outlook.

Error - 6/28/2011 9:13:37 PM | Computer Name = SUZY | Source = Bonjour Service | ID = 100
Description = Client application bug: DNSServiceResolve(BZDN1834158905-QkxaMDAwMjlCMDQgZkYxREMwMEJFRTh2MTBCRDk1MTNFOQ==._bzdn._tcp.local.)
active for over two minutes. This places considerable burden on the network.

Error - 7/8/2011 2:01:39 PM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 80248011, P2 endsearch, P3 search, P4 3.0.8107.0,
P5 mpsigdwn.dll, P6 3.0.8107.0, P7 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P8 NIL, P9 NIL, P10 NIL.

Error - 7/14/2011 7:23:10 AM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 8024402c, P2 endsearch, P3 search, P4 3.0.8107.0,
P5 mpsigdwn.dll, P6 3.0.8107.0, P7 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P8 NIL, P9 NIL, P10 NIL.

[ System Events ]
Error - 7/14/2011 8:54:05 AM | Computer Name = SUZY | Source = W32Time | ID = 39452689
Description = Time Provider NtpClient: An error occurred during DNS lookup of the
manually configured peer 'time-a.nist.gov,0x1'. NtpClient will try the DNS lookup
again in 30 minutes. The error was: A socket operation was attempted to an unreachable
host. (0x80072751)

Error - 7/14/2011 8:54:05 AM | Computer Name = SUZY | Source = W32Time | ID = 39452701
Description = The time provider NtpClient is configured to acquire time from one
or more time sources, however none of the sources are currently accessible. No attempt
to contact a source will be made for 29 minutes. NtpClient has no source of accurate
time.

Error - 7/14/2011 9:24:07 AM | Computer Name = SUZY | Source = W32Time | ID = 39452689
Description = Time Provider NtpClient: An error occurred during DNS lookup of the
manually configured peer 'time-a.nist.gov,0x1'. NtpClient will try the DNS lookup
again in 60 minutes. The error was: A socket operation was attempted to an unreachable
host. (0x80072751)

Error - 7/14/2011 9:24:07 AM | Computer Name = SUZY | Source = W32Time | ID = 39452701
Description = The time provider NtpClient is configured to acquire time from one
or more time sources, however none of the sources are currently accessible. No attempt
to contact a source will be made for 59 minutes. NtpClient has no source of accurate
time.

Error - 7/15/2011 8:50:46 PM | Computer Name = SUZY | Source = DCOM | ID = 10010
Description = The server {D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E} did not register
with DCOM within the required timeout.

Error - 7/19/2011 4:19:10 AM | Computer Name = SUZY | Source = Service Control Manager | ID = 7034
Description = The NVIDIA Display Driver Service service terminated unexpectedly.
It has done this 1 time(s).

Error - 7/20/2011 1:07:13 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7011
Description = Timeout (30000 milliseconds) waiting for a transaction response from
the NVSvc service.

Error - 7/22/2011 9:43:54 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7011
Description = Timeout (30000 milliseconds) waiting for a transaction response from
the NVSvc service.

Error - 7/22/2011 9:43:54 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7011
Description = Timeout (30000 milliseconds) waiting for a transaction response from
the UMWdf service.

Error - 7/23/2011 10:15:44 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7034
Description = The NVIDIA Display Driver Service service terminated unexpectedly.
It has done this 1 time(s).


< End of report >

when I clicked Start, and go for all programs, ite items on the start list don't become visual, its blank, until I run the mouse over them, then they show....very strange. One more thing , right now, my type is 5 words behind on the screen for what I'm actually typing, very strange.

Thank you again for your time. Have wonderful day :unsure:
23red
  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,001 posts
  • MVP
It doesn't really look like malware but we will run a couple of scans to make sure:


Clear the Java Cache by following the instructions on
http://www.java.com/...lugin_cache.xml


Uninstall:
J2SE Runtime Environment 5.0 Update 6
Napster
Facemoods Toolbar
Facetheme

I'm just going to remove some trash from your log:

Copy the text in the code box by highlighting and Ctrl + c

:processes
killallprocesses

:Services

:OTL
[2011/06/25 16:55:14 | 000,000,000 | ---D | M] (Facemoods) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]
[2010/07/31 11:24:03 | 000,000,000 | ---D | M] (ShopAtHome Intelligent Shopping Toolbar) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]
[2011/06/25 16:55:18 | 000,002,048 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.10\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (Facetheme) - {70C6E9DE-F30E-4A40-8A6F-9572C2328320} - C:\Program Files\Object\bho_project.dll (InternetEngine)
O2 - BHO: (DCA BHO) - {B49699FC-1665-4414-A1CB-C4A2A4A13EEC} - C:\Program Files\Common Files\FreeCause\DCA\dca-bho.dll (Compete, Inc.)
O2 - BHO: (Shop to Win 16) - {D2D09FE0-F451-45F7-A617-FABF9130C4D6} - C:\Program Files\Shop to Win 16\Shop to Win 16.dll (Shop To Win, LLC)
O3 - HKLM\..\Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - No CLSID value found.
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.10\facemoodsTlbr.dll (facemoods.com)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {B195B3B3-8A05-11D3-97A4-0004ACA6948E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {871F91FD-3A92-4988-A842-16AB2CFF5AF1} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.10\facemoodssrv.exe (facemoods.com)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.micr...922/wmv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} http://a1540.g.akama...meInstaller.exe (Reg Error: Key error.)
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://bin.mcafee.co...76/mcinsctl.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9522B3FB-7A2B-4646-8AF6-36E7F593073C} http://a19.g.akamai....23/cpbrkpie.cab (Reg Error: Key error.)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} http://v4.windowsupd...8065.0309722222 (Reg Error: Key error.)
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} http://bin.mcafee.co...,16/mcgdmgr.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O32 - AutoRun File - [2003/04/15 15:49:10 | 000,000,398 | ---- | M] () - F:\AUTOEXEC.UP -- [ FAT ]
O32 - AutoRun File - [2003/04/15 15:49:10 | 000,000,398 | ---- | M] () - F:\AUTOEXEC.BAT -- [ FAT ]
O32 - AutoRun File - [2010/07/26 15:42:56 | 000,000,000 | ---D | M] - S:\Automatically Add to iTunes -- [ NTFS ]
O32 - AutoRun File - [2011/07/14 02:34:21 | 000,000,090 | ---- | M] () - W:\AUTORUN.INF -- [ NTFS ]
O33 - MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\Shell - "" = AutoRun
O33 - MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\Shell\AutoRun\command - "" = F:\EasySuite.exe
O33 - MountPoints2\{11ec785f-6973-11dd-a195-0007e971aa4c}\Shell\AutoRun\command - "" = F:\setupSNK.exe
O33 - MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\Shell - "" = AutoRun
O33 - MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O32 - AutoRun File - [2003/04/15 15:49:10 | 000,000,398 | ---- | M] () - F:\AUTOEXEC.UP -- [ FAT ]
O32 - AutoRun File - [2003/04/15 15:49:10 | 000,000,398 | ---- | M] () - F:\AUTOEXEC.BAT -- [ FAT ]
O32 - AutoRun File - [2010/07/26 15:42:56 | 000,000,000 | ---D | M] - S:\Automatically Add to iTunes -- [ NTFS ]
O32 - AutoRun File - [2011/07/14 02:34:21 | 000,000,090 | ---- | M] () - W:\AUTORUN.INF -- [ NTFS ]
O33 - MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\Shell - "" = AutoRun
O33 - MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\Shell\AutoRun\command - "" = F:\EasySuite.exe
O33 - MountPoints2\{11ec785f-6973-11dd-a195-0007e971aa4c}\Shell\AutoRun\command - "" = F:\setupSNK.exe
O33 - MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\Shell - "" = AutoRun
O33 - MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a

:files
xcopy %Temp%\smtmp\1 "%AllUsersProfile%\Start Menu" /H /I /S /Y /C
xcopy %Temp%\smtmp\2 "%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch" /H /I /S /Y /C
xcopy %Temp%\smtmp\3 "%AppData%\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar" /H /I /S /Y /C
xcopy %Temp%\smtmp\4 "%AllUsersProfile%\Desktop" /H /I /S /Y /C
sc config UMWdf start= disabled /c
   
:Commands
[RESETHOSTS]
[purity]
[Reboot]

then run OTL and Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the Run Fix button at the top
Let the program run unhindered, OTL will reboot the PC when it is done. Save the log and copy and paste it to a reply.

Download, Save and Right click on unhide.exe and Run As Administrator from

http://download.blee...nler/unhide.exe



Open OTL again and select the All option in the Extra Registry group then the Run Scan button. Post the two logs it produces in your next reply.

If any of the following won't run you can try them in Safe Mode with Networking:
Reboot and when you see the maker's logo, hear a beep or it talks about F8, start tapping the F8 key slowly. Keep tapping until the Safe Mode Menu appears and choose Safe Mode with Networking. Login with your usual login.

If they still won't run then skip and go on to the next. You may want to run Combofix in Safe Mode anyway - otherwise it may take forever to finish judging by how slow the machine is.

Malwarebytes' Anti-Malware
:!: If you have a previous version of MalwareBytes', remove it via Add or Remove Programs and download a fresh copy. :!:

http://www.malwarebytes.org/mbam.php

SAVE Malwarebytes' Anti-Malware to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.

* Be sure that everything is checked, and click Remove Selected.

* When completed, a log will open in Notepad. Please save it to a convenient location.
* The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt
* Post that log back here.



ComboFix
:!: If you have a previous version of Combofix.exe, delete it and download a fresh copy. :!:

:!: It must be saved to your desktop, do not run it :!:

:!: Disable your Antivirus software when downloading or running Combofix. If it has Script Blocking features, please disable these as well. See: http://www.bleepingc...opic114351.html


Download and Save this file -- to your Desktop -- from either of these two sources:
http://download.blee...Bs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Doubleclick on ComboFix to start the program.



* :!: Important: Have no other programs running. Your Task Bar should be clear of any program entries including your Browser.


* A window may open with a series of Disclaimers. Accept the Disclaimers to start the fix. Allow it to install the Recovery Console then Continue. When the scan completes Notepad will open with with your results log open. Do a File, Exit and answer 'Yes' to save changes.


A caution - Do not run Combofix more than once. Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.

A file will be created at => C:\Combofix.txt. I'll need to see that in your reply.



Download aswMBR.exe ( 511KB ) to your desktop.

Double click the aswMBR.exe to run it

Click the "Scan" button to start scan


On completion of the scan (Note if the Fix button is enabled and tell me) click save log, save it to your desktop and post in your next reply

Now let's look for non malware problems:

Get the free version of Speccy:

http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button) Download, Save and Install it. Run Speccy. When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives. OK. Attach the file to your next post.

1. Double-click My Computer, and then right-click the hard disk that you want to check. C:
2. Click Properties, and then click Tools.
3. Under Error-checking, click Check Now. A dialog box that shows the Check disk options is displayed,
4. Check both boxes and then click Start.
You will receive the following message:
The disk check could not be performed because the disk check utility needs exclusive access to some Windows files on the disk. These files can be accessed by restarting Windows. Do you want to schedule the disk check to occur the next time you restart the computer?
Click Yes to schedule the disk check, but don't restart yet.

Start, Run, eventvwr.msc, OK to bring up the Event Viewer. Right click on System and Clear All Events, No (we don't want to save the old log), OK. Repeat for Application. Reboot. The disk check will run and will probably take an hour or more to finish.

Start, Run, sfc /scannow, OK

SPACE after sfc. This will check your critical system files. If it asks for a CD and you don't have one or it doesn't like your CD just tell it to SKIP.

Start, Run, sigverif, OK

Press Start. This will check your drivers. If you just get a few when it finishes tell me what they are. If you get a lot just look for those with newish dates (since about the time the problem started.)


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Double-click VEW.exe
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.


Get Process Explorer

http://live.sysinter...com/procexp.exe

Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator). Click once or twice on the CPU column header to sort things by CPU usage with the big hitters at the top. File, Save As, Save. Open the file Procexp.txt on your desktop and copy and paste the text to a reply.


What make and model PC is this and is the video card the one that came with it?

Ron
  • 0

#3
23red

23red

    Trusted Helper

  • Topic Starter
  • Malware Removal
  • 1,797 posts
Hi Ron :) Thank you very much for your time! Here are all the scans you asked for...Definately lotsa junk on here. Did my best to run them as you asked, please let me know if I missed anything.

========== PROCESSES ==========
All processes killed
========== SERVICES/DRIVERS ==========
========== OTL ==========
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\defaults\preferences folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\defaults folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\content\preferences folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\content\images\dropdownicons folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\content\images folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\content folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\components folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\chrome folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected] folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\defaults\preferences folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\defaults folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected]\chrome folder moved successfully.
C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions\[email protected] folder moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrch.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\ deleted successfully.
File move failed. C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll scheduled to be moved on reboot.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64182481-4F71-486b-A045-B233BD0DA8FC}\ deleted successfully.
C:\Program Files\facemoods.com\facemoods\1.4.17.10\bh\facemoods.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{70C6E9DE-F30E-4A40-8A6F-9572C2328320}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{70C6E9DE-F30E-4A40-8A6F-9572C2328320}\ deleted successfully.
C:\Program Files\Object\bho_project.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}\ deleted successfully.
C:\Program Files\Common Files\FreeCause\DCA\dca-bho.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2D09FE0-F451-45F7-A617-FABF9130C4D6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D2D09FE0-F451-45F7-A617-FABF9130C4D6}\ deleted successfully.
C:\Program Files\Shop to Win 16\Shop to Win 16.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{BA52B914-B692-46c4-B683-905236F6F655} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BA52B914-B692-46c4-B683-905236F6F655}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DB4E9724-F518-4dfd-9C7C-78B52103CAB9}\ deleted successfully.
C:\Program Files\facemoods.com\facemoods\1.4.17.10\facemoodsTlbr.dll moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{B195B3B3-8A05-11D3-97A4-0004ACA6948E} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B195B3B3-8A05-11D3-97A4-0004ACA6948E}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{871F91FD-3A92-4988-A842-16AB2CFF5AF1} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{871F91FD-3A92-4988-A842-16AB2CFF5AF1}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\facemoods deleted successfully.
C:\Program Files\facemoods.com\facemoods\1.4.17.10\facemoodssrv.exe moved successfully.
Starting removal of ActiveX control {33564D57-0000-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\WMV9VCM.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{33564D57-0000-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {41F17733-B041-4099-A042-B518BB6A408C}
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{41F17733-B041-4099-A042-B518BB6A408C}\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{41F17733-B041-4099-A042-B518BB6A408C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41F17733-B041-4099-A042-B518BB6A408C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{41F17733-B041-4099-A042-B518BB6A408C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41F17733-B041-4099-A042-B518BB6A408C}\ not found.
Starting removal of ActiveX control {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21}
C:\WINDOWS\Downloaded Program Files\mcinsctl.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Starting removal of ActiveX control {9522B3FB-7A2B-4646-8AF6-36E7F593073C}
C:\WINDOWS\Downloaded Program Files\cpbrkpie.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}\ not found.
Starting removal of ActiveX control {9F1C11AA-197B-4942-BA54-47A8489BB47F}
C:\WINDOWS\Downloaded Program Files\iuctl.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{9F1C11AA-197B-4942-BA54-47A8489BB47F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9F1C11AA-197B-4942-BA54-47A8489BB47F}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9F1C11AA-197B-4942-BA54-47A8489BB47F}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9F1C11AA-197B-4942-BA54-47A8489BB47F}\ not found.
Starting removal of ActiveX control {BCC0FF27-31D9-4614-A68E-C18E1ADA4389}
C:\WINDOWS\Downloaded Program Files\McGDMgr.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{BCC0FF27-31D9-4614-A68E-C18E1ADA4389}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BCC0FF27-31D9-4614-A68E-C18E1ADA4389}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{BCC0FF27-31D9-4614-A68E-C18E1ADA4389}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BCC0FF27-31D9-4614-A68E-C18E1ADA4389}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
File Animation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab not found.
Starting removal of ActiveX control DirectAnimation Java Classes
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\DirectAnimation Java Classes\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\DirectAnimation Java Classes\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\DirectAnimation Java Classes\ not found.
File oft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab not found.
Starting removal of ActiveX control Microsoft XML Parser for Java
Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Microsoft XML Parser for Java\DownloadInformation\\INF .
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Microsoft XML Parser for Java\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\Microsoft XML Parser for Java\ not found.
F:\AUTOEXEC.UP moved successfully.
F:\AUTOEXEC.BAT moved successfully.
File not found.
W:\AUTORUN.INF moved successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
File F:\EasySuite.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{11ec785f-6973-11dd-a195-0007e971aa4c}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11ec785f-6973-11dd-a195-0007e971aa4c}\ not found.
File F:\setupSNK.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
File G:\LaunchU3.exe -a not found.
File F:\AUTOEXEC.UP not found.
File F:\AUTOEXEC.BAT not found.
File not found.
File W:\AUTORUN.INF not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{010dbdee-eb6b-11dd-a1ac-0007e971aa4c}\ not found.
File F:\EasySuite.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{11ec785f-6973-11dd-a195-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11ec785f-6973-11dd-a195-0007e971aa4c}\ not found.
File F:\setupSNK.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e4fe2314-6921-11e0-a7ad-0007e971aa4c}\ not found.
File G:\LaunchU3.exe -a not found.
========== FILES ==========
< xcopy %Temp%\smtmp\1 "%AllUsersProfile%\Start Menu" /H /I /S /Y /C >
0 File(s) copied
C:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
C:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< xcopy %Temp%\smtmp\2 "%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch" /H /I /S /Y /C >
0 File(s) copied
C:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
C:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< xcopy %Temp%\smtmp\3 "%AppData%\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar" /H /I /S /Y /C >
0 File(s) copied
C:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
C:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< xcopy %Temp%\smtmp\4 "%AllUsersProfile%\Desktop" /H /I /S /Y /C >
0 File(s) copied
C:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
C:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< sc config UMWdf start= disabled /c >
[SC] ChangeServiceConfig SUCCESS
C:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
C:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.2.26.1 log created on 07242011_144700

Files\Folders moved on Reboot...
C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll moved successfully.

Registry entries deleted on Reboot...





******************


OTL logfile created on: 7/24/2011 3:55:14 PM - Run 2
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.50 Gb Total Physical Memory | 0.88 Gb Available Physical Memory | 58.59% Memory free
2.10 Gb Paging File | 1.66 Gb Available in Paging File | 78.80% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55.84 Gb Total Space | 16.90 Gb Free Space | 30.26% Space Free | Partition Type: NTFS
Drive F: | 31.27 Mb Total Space | 24.63 Mb Free Space | 78.76% Space Free | Partition Type: FAT
Drive P: | 155.76 Gb Total Space | 155.69 Gb Free Space | 99.96% Space Free | Partition Type: NTFS
Drive S: | 155.00 Gb Total Space | 122.29 Gb Free Space | 78.90% Space Free | Partition Type: NTFS
Drive W: | 155.00 Gb Total Space | 107.02 Gb Free Space | 69.05% Space Free | Partition Type: NTFS

Computer Name: SUZY | User Name: Suzy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/07/23 17:21:20 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2010/11/30 13:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2009/06/10 04:02:50 | 000,904,840 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
PRC - [2009/06/10 03:57:40 | 000,136,472 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2009/06/10 03:57:36 | 000,431,384 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2009/06/10 03:55:30 | 001,326,080 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
PRC - [2009/05/21 10:55:32 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe
PRC - [2008/08/13 18:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2008/04/13 14:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/08/26 19:44:48 | 000,282,624 | ---- | M] (Digital Networks North America, Inc.) -- C:\WINDOWS\SYSTEM32\RioMSC.exe


========== Modules (SafeList) ==========

MOD - [2011/07/23 17:21:20 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
MOD - [2010/08/23 06:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2009/06/10 03:57:36 | 000,431,384 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2008/08/13 18:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2007/03/07 15:47:46 | 000,076,848 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)
SRV - [2005/10/06 18:12:30 | 000,855,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Media Connect 2\wmccds.exe -- (WMConnectCDS)
SRV - [2004/08/26 19:44:48 | 000,282,624 | ---- | M] (Digital Networks North America, Inc.) [Auto | Running] -- C:\WINDOWS\SYSTEM32\RioMSC.exe -- (RioMSC)
SRV - [2003/03/03 08:33:40 | 000,143,360 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\NCS\Sync\NetSvc.exe -- (NetSvc)


========== Driver Services (SafeList) ==========

DRV - [2011/07/24 15:30:19 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{38C2D817-56B9-49C8-8B9D-35517AFD54FC}\MpKsl727f9d0c.sys -- (MpKsl727f9d0c)
DRV - [2011/05/07 05:06:25 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/05/16 19:41:48 | 000,441,760 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)
DRV - [2010/05/16 19:41:48 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\tifsfilt.sys -- (tifsfilter)
DRV - [2010/05/16 19:41:26 | 000,132,480 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2010/05/16 19:40:59 | 000,368,480 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tdrpman.sys -- (tdrpman)
DRV - [2009/06/30 10:37:16 | 000,028,552 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\pavboot.sys -- (pavboot)
DRV - [2007/02/25 12:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\dsunidrv.sys -- (dsunidrv)
DRV - [2006/10/05 16:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2005/05/22 13:43:16 | 000,016,128 | ---- | M] (Digital Networks North America, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\RIOUNIV.SYS -- (RIOUNIV)
DRV - [2004/08/03 19:29:49 | 000,019,455 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wvchntxx.sys -- (iAimFP4)
DRV - [2004/08/03 19:29:47 | 000,012,063 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wsiintxx.sys -- (iAimFP3)
DRV - [2004/08/03 19:29:45 | 000,023,615 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wch7xxnt.sys -- (iAimTV4)
DRV - [2004/08/03 19:29:43 | 000,033,599 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv04nt.sys -- (iAimTV3)
DRV - [2004/08/03 19:29:42 | 000,019,551 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv02nt.sys -- (iAimTV1)
DRV - [2004/08/03 19:29:41 | 000,029,311 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv01nt.sys -- (iAimTV0)
DRV - [2004/08/03 19:29:37 | 000,012,415 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv01nt.sys -- (iAimFP0)
DRV - [2004/08/03 19:29:37 | 000,012,127 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv02nt.sys -- (iAimFP1)
DRV - [2004/08/03 19:29:37 | 000,011,775 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv05nt.sys -- (iAimFP2)
DRV - [2004/08/03 19:29:36 | 000,161,020 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\i81xnt5.sys -- (i81x)
DRV - [2004/01/27 11:40:26 | 000,284,928 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\Cdudf_xp.sys -- (cdudf_xp)
DRV - [2004/01/27 11:39:56 | 000,023,680 | ---- | M] (Roxio) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\dvd_2k.sys -- (dvd_2K)
DRV - [2004/01/27 11:34:56 | 000,140,416 | ---- | M] (Windows ® 2000 DDK provider) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\DVDVRRdr_xp.sys -- (DVDVRRdr_xp)
DRV - [2004/01/27 11:34:46 | 000,043,008 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2004/01/27 11:32:00 | 000,024,576 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2004/01/27 11:29:44 | 000,023,680 | ---- | M] (Roxio) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\mmc_2k.sys -- (mmc_2K)
DRV - [2004/01/27 11:29:40 | 000,197,632 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\Udfreadr.sys -- (UDFReadr)
DRV - [2004/01/27 11:16:38 | 000,117,248 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\Pwd_2k.sys -- (pwd_2k)
DRV - [2003/09/26 03:53:00 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\pfc.sys -- (pfc)
DRV - [2003/01/12 20:24:40 | 000,012,790 | R--- | M] (iRiver, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\ifpusb.sys -- (IFPUSB)
DRV - [2002/11/08 08:45:06 | 000,017,217 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\omci.sys -- (omci)
DRV - [2002/10/29 11:38:10 | 000,170,499 | ---- | M] (Conexant Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2002/10/29 11:37:36 | 001,175,536 | ---- | M] (Conexant Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\HSF_DP.sys -- (HSF_DP)
DRV - [2002/10/29 11:31:28 | 000,604,240 | ---- | M] (Conexant Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\HSF_CNXT.sys -- (winachsf)
DRV - [2001/08/17 07:11:06 | 000,066,591 | ---- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\EL90XBC5.SYS -- (EL90XBC)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoo...earchTerms}&f=4

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========


FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: S:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandasecurity.com/activescan: C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll (Panda Security, S.L.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2321: C:\Program Files\Real\RealOne Player\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2379: C:\Program Files\Real\RealOne Player\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1483: C:\Program Files\Real\RealOne Player\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine,version=1.0: C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll ()
FF - HKCU\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine: C:\Documents and Settings\Administrator\Application Data\nprhapengine.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/03/08 18:25:48 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/03/08 18:25:48 | 000,000,000 | ---D | M]

[2011/04/08 10:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2011/07/24 14:47:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions

O1 HOSTS File: ([2011/07/24 14:48:50 | 000,000,098 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\ETC\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office2003\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: hicentral.com ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: hicentralmls.com ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: zipform.com ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: zipformonline.com ([www] https in Trusted sites)
O16 - DPF: {10E0E75E-6701-4134-9D95-C0942ED1F1C8} http://www1.snapfish...tlookImport.cab (Snapfish Outlook Import ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://www1.snapfish...fishActivia.cab (Snapfish Activia)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.micros...b?1140077586609 (MUWebControl Class)
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} http://a840.g.akamai...all/xscan53.cab (HouseCall Control)
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoft...s/as2stubie.cab (ActiveScan 2.0 Installer Class)
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} https://h17000.www1....loadManager.ocx (Get_ActiveX Control)
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} http://support.dell....lSystemLite.CAB (DellSystemLite.Scanner)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2002/09/03 08:36:02 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010/07/26 15:42:56 | 000,000,000 | ---D | M] - S:\Automatically Add to iTunes -- [ NTFS ]
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O36 - AppCertDlls: ESENgsvc - (C:\WINDOWS\system32\ddesPING.dll) - File not found
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/07/24 14:47:00 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/07/23 17:21:07 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2011/07/19 01:12:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\TS3Client
[2011/07/19 01:09:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\TeamSpeak 3 Client
[2011/07/19 01:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client
[2011/06/27 14:30:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Minecraft Errors
[2011/06/25 16:55:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\FCSB000063447
[2011/06/25 16:55:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Shop to Win 16
[2011/06/25 16:55:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
[2011/06/25 16:55:27 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2011/06/25 16:55:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\FreeCause
[2011/06/25 16:55:17 | 000,000,000 | ---D | C] -- C:\Program Files\Shop to Win 16
[2011/06/25 16:55:15 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011/06/25 16:55:14 | 000,000,000 | ---D | C] -- C:\Program Files\Shop To Win
[2011/06/25 16:54:58 | 000,000,000 | ---D | C] -- C:\Program Files\Object
[2004/06/11 21:35:20 | 000,036,963 | R--- | C] (Cypress Semiconductor) -- C:\Program Files\Common Files\SM1updtr.dll
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/07/24 15:38:41 | 000,684,297 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\unhide.exe
[2011/07/24 15:36:08 | 000,000,424 | ---- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/07/24 15:32:03 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011/07/24 15:31:39 | 000,001,170 | ---- | M] () -- C:\WINDOWS\System32\WPA.DBL
[2011/07/24 15:29:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\BOOTSTAT.DAT
[2011/07/24 14:58:06 | 000,000,220 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Geeks to Go! – Tech experts answer your questions.url
[2011/07/24 14:48:50 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\ETC\Hosts
[2011/07/23 19:43:31 | 000,000,644 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\World of Warcraft.lnk
[2011/07/23 17:21:20 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2011/07/22 20:00:00 | 000,000,420 | ---- | M] () -- C:\WINDOWS\tasks\McAfee.com Scan for Viruses - My Computer (SAUNDERSCCH-saunders).job
[2011/07/19 01:09:33 | 000,000,837 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk
[2011/07/15 15:16:28 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/07/13 10:00:34 | 000,000,812 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2011/07/13 10:00:27 | 000,444,488 | ---- | M] () -- C:\WINDOWS\System32\PERFH009.DAT
[2011/07/13 10:00:27 | 000,072,364 | ---- | M] () -- C:\WINDOWS\System32\PERFC009.DAT
[2011/07/13 06:20:02 | 000,421,432 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/07/12 16:58:31 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/06/30 13:37:00 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/07/24 15:38:33 | 000,684,297 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\unhide.exe
[2011/07/19 01:09:33 | 000,000,837 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk
[2010/06/04 23:18:27 | 000,000,262 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2010/03/08 18:24:27 | 000,023,113 | ---- | C] () -- C:\WINDOWS\hpqins15.dat
[2010/02/11 17:17:47 | 000,077,377 | ---- | C] () -- C:\WINDOWS\hpqins05.dat
[2010/02/02 16:15:04 | 000,188,868 | ---- | C] () -- C:\WINDOWS\hpwins22.dat
[2010/02/02 16:15:04 | 000,002,979 | ---- | C] () -- C:\WINDOWS\hpwmdl22.dat
[2010/01/06 15:31:19 | 000,095,112 | ---- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/11/23 13:14:21 | 000,087,552 | ---- | C] () -- C:\WINDOWS\System32\cpwmon2k.dll
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009/07/26 19:35:13 | 000,000,115 | ---- | C] () -- C:\WINDOWS\WinInit.Ini
[2008/12/21 21:02:42 | 000,004,096 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\keyfile3.drm
[2008/12/10 13:15:47 | 000,000,059 | ---- | C] () -- C:\WINDOWS\dcmvwr.INI
[2007/09/09 20:26:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006/10/22 12:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/10/22 12:22:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2006/10/22 12:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/10/22 12:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/10/22 12:22:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2006/10/22 12:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/10/22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006/09/19 22:25:44 | 000,012,416 | ---- | C] () -- C:\WINDOWS\hpwscr05.dat
[2006/04/08 13:41:27 | 000,000,206 | ---- | C] () -- C:\WINDOWS\HPGdiPlus.ini
[2006/03/26 20:29:21 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/12/12 14:34:37 | 000,037,027 | ---- | C] () -- C:\WINDOWS\atmoUn.exe
[2005/10/07 12:07:16 | 000,003,399 | R--- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
[2005/10/07 12:07:16 | 000,000,158 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini
[2005/08/31 18:38:46 | 000,068,952 | ---- | C] () -- C:\WINDOWS\hpoins05.dat.temp
[2005/08/31 18:38:46 | 000,019,696 | ---- | C] () -- C:\WINDOWS\hpomdl05.dat.temp
[2005/08/16 13:02:00 | 000,001,313 | ---- | C] () -- C:\WINDOWS\hpbvnstp.ini
[2005/08/16 13:01:35 | 000,192,512 | R--- | C] () -- C:\WINDOWS\System32\HPB1320V.DLL
[2005/08/16 13:01:35 | 000,000,319 | R--- | C] () -- C:\WINDOWS\System32\HPB1320V.DAT
[2005/08/16 13:00:20 | 000,007,737 | ---- | C] () -- C:\WINDOWS\hplj1320.ini
[2005/05/01 19:24:23 | 000,000,021 | ---- | C] () -- C:\WINDOWS\CS_SETUP.ini
[2005/03/10 16:08:08 | 000,099,736 | ---- | C] () -- C:\WINDOWS\CPEins05.dat
[2005/03/10 16:02:38 | 000,100,724 | ---- | C] () -- C:\WINDOWS\cpeins04.dat
[2005/03/10 16:02:38 | 000,017,176 | ---- | C] () -- C:\WINDOWS\hpomdl04.dat.temp
[2005/02/28 19:53:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\hpqEmlSz.INI
[2005/02/16 20:35:05 | 000,000,068 | ---- | C] () -- C:\WINDOWS\WFCLIENT.INI
[2005/01/08 12:31:18 | 000,103,715 | ---- | C] () -- C:\WINDOWS\Picasa Uninstaller.exe
[2004/12/14 19:45:41 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\imageCache7.db
[2004/12/04 08:42:05 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2004/10/10 06:37:25 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/09/25 19:54:56 | 000,071,749 | ---- | C] () -- C:\WINDOWS\HCExtOutput.dll
[2004/09/25 19:54:56 | 000,000,823 | ---- | C] () -- C:\WINDOWS\TSC.ini
[2004/09/25 19:54:32 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
[2004/07/17 20:27:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2004/06/11 21:50:04 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\BurnData.bin
[2004/04/20 14:50:18 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\Zlib.dll
[2004/04/20 14:50:17 | 000,041,984 | ---- | C] () -- C:\WINDOWS\System32\ZFExt.dll
[2004/03/14 21:58:19 | 000,067,072 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/02/27 09:44:33 | 000,000,004 | ---- | C] () -- C:\WINDOWS\uccspecb.sys
[2004/02/21 18:01:11 | 000,061,678 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\PFP110JPR.{PB
[2004/02/21 18:01:10 | 000,012,358 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\PFP110JCM.{PB
[2003/10/30 04:10:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\besch.exe
[2003/10/30 04:10:00 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\besched.dll
[2003/09/25 01:00:00 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lockout.dll
[2003/09/25 01:00:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\lockres.dll
[2003/08/25 08:53:16 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\instlsp.exe
[2003/08/24 10:13:33 | 000,039,905 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2003/08/21 17:20:21 | 000,000,085 | ---- | C] () -- C:\WINDOWS\D2HNAV16.INI
[2003/08/05 09:37:47 | 000,000,020 | ---- | C] () -- C:\WINDOWS\Hposcv07.INI
[2003/08/05 09:33:12 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2003/08/05 09:22:22 | 000,000,519 | ---- | C] () -- C:\WINDOWS\PCAWin.ini
[2003/08/05 08:28:50 | 000,000,083 | ---- | C] () -- C:\WINDOWS\webica.ini
[2003/08/05 08:23:44 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2003/08/01 13:14:52 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003/08/01 13:02:18 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2003/07/25 10:49:14 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2003/07/25 10:47:01 | 000,000,258 | ---- | C] () -- C:\WINDOWS\System32\BDEMERGE.INI
[2003/07/25 10:44:09 | 000,000,052 | ---- | C] () -- C:\WINDOWS\intuprof.ini
[2003/07/25 10:44:08 | 000,007,406 | ---- | C] () -- C:\WINDOWS\ICOADB32.DAT
[2003/07/25 10:44:08 | 000,000,180 | ---- | C] () -- C:\WINDOWS\Quicken.ini
[2003/07/25 10:39:24 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2003/07/25 10:29:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\BOOTSTAT.DAT
[2003/07/25 10:27:30 | 000,444,488 | ---- | C] () -- C:\WINDOWS\System32\PERFH009.DAT
[2003/07/25 10:27:30 | 000,072,364 | ---- | C] () -- C:\WINDOWS\System32\PERFC009.DAT
[2003/07/25 10:17:28 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/05/02 15:19:00 | 001,622,016 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2003/05/02 15:19:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2003/05/02 15:19:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2003/05/02 15:19:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/11/01 16:17:50 | 000,000,256 | ---- | C] () -- C:\WINDOWS\aucfg.ini
[2002/09/03 08:42:36 | 000,421,432 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2002/09/03 08:35:18 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2002/09/03 08:31:48 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2002/09/03 03:31:46 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\OEMBIOS.BIN
[2002/09/03 03:31:44 | 000,004,594 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2002/08/29 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\MLANG.DAT
[2002/08/29 00:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\PERFI009.DAT
[2002/08/29 00:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\DSSEC.DAT
[2002/08/29 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\MIB.BIN
[2002/08/29 00:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\PERFD009.DAT
[2002/08/29 00:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2002/08/29 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\NOISE.DAT
[2002/07/04 15:05:34 | 000,000,269 | ---- | C] () -- C:\WINDOWS\tmupdate.ini
[2001/12/14 13:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
[2001/07/31 00:17:12 | 000,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
[1999/07/23 13:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
[1999/07/23 10:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
[1999/01/22 08:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
[1979/12/31 19:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\e100bmsg.dll

< End of report >



************************

OTL Extras logfile created on: 7/24/2011 3:55:14 PM - Run 2
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.50 Gb Total Physical Memory | 0.88 Gb Available Physical Memory | 58.59% Memory free
2.10 Gb Paging File | 1.66 Gb Available in Paging File | 78.80% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55.84 Gb Total Space | 16.90 Gb Free Space | 30.26% Space Free | Partition Type: NTFS
Drive F: | 31.27 Mb Total Space | 24.63 Mb Free Space | 78.76% Space Free | Partition Type: FAT
Drive P: | 155.76 Gb Total Space | 155.69 Gb Free Space | 99.96% Space Free | Partition Type: NTFS
Drive S: | 155.00 Gb Total Space | 122.29 Gb Free Space | 78.90% Space Free | Partition Type: NTFS
Drive W: | 155.00 Gb Total Space | 107.02 Gb Free Space | 69.05% Space Free | Partition Type: NTFS

Computer Name: SUZY | User Name: suzy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (All) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\WINDOWS\System32\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\WINDOWS\System32\mshta.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.inf [@ = inffile] -- C:\WINDOWS\System32\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\WINDOWS\System32\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\WINDOWS\System32\rundll32.exe (Microsoft Corporation)
.js [@ = JSFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
.reg [@ = regfile] -- C:\WINDOWS\regedit.exe (Microsoft Corporation)
.txt [@ = txtfile] -- C:\WINDOWS\System32\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- winhlp32.exe %1 (Microsoft Corporation)
hlpfile [open] -- %SystemRoot%\System32\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\WINDOWS\system32\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office2003\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office2003\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
vbefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
vbsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
wsffile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
wsffile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
wsffile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
wshfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Connect
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Connect
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Connect
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Connect
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Connect
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Connect
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"427:TCP" = 427:TCP:LocalSubNet:Enabled:SLP_Port(427)_TCP
"427:UDP" = 427:UDP:LocalSubNet:Enabled:SLP_Port(427)_UDP

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Connect
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Connect
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Connect
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Connect
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Connect
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Connect
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"427:TCP" = 427:TCP:LocalSubNet:Enabled:SLP_Port(427)_TCP
"427:UDP" = 427:UDP:LocalSubNet:Enabled:SLP_Port(427)_UDP
"3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724
"6112:TCP" = 6112:TCP:*:Enabled:Blizzard Downloader
"6881:TCP" = 6881:TCP:*:Enabled:Blizzard Downloader: 6881

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"D:\setup\hpznui01.exe" = D:\setup\hpznui01.exe:*:Enabled:hpznui01.exe
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe:*:Enabled:hpofxs08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe:*:Enabled:hpqfxt08.exe -- (TODO: <Company name>)
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\HP Software Update\HPWUCli.exe" = C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe" = C:\Program Files\HP\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe -- (Hewlett-Packard Co.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe" = C:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe:*:Enabled:javaw
"D:\setup\HPZNET01.EXE" = D:\setup\HPZNET01.EXE:*:Enabled:hpznet01.exe
"D:\setup\HPONICIFS01.EXE" = D:\setup\HPONICIFS01.EXE:*:Enabled:hponicifs01.exe
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe
"C:\Program Files\HP\Digital Imaging\bin\hpqcopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqcopy.exe:*:Enabled:hpqcopy.exe
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe
"D:\setup\hpznui01.exe" = D:\setup\hpznui01.exe:*:Enabled:hpznui01.exe
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe:*:Enabled:hpofxs08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe:*:Enabled:hpqfxt08.exe -- (TODO: <Company name>)
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\HP Software Update\HPWUCli.exe" = C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:HP Software Update Client -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe" = C:\Program Files\HP\Digital Imaging\Smart Web Printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe -- (Hewlett-Packard Co.)
"C:\Program Files\Ventrilo\Ventrilo.exe" = C:\Program Files\Ventrilo\Ventrilo.exe:*:Enabled:Ventrilo.exe -- (Flagship Industries, Inc.)
"W:\Program Files\World of Warcraft\Launcher.exe" = W:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Launcher -- (Blizzard Entertainment)
"W:\Program Files\World of Warcraft\Launcher.patch.exe" = W:\Program Files\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher
"W:\Program Files\World of Warcraft\Blizzard Downloader.exe" = W:\Program Files\World of Warcraft\Blizzard Downloader.exe:*:Enabled:Blizzard Downloader
"W:\Program Files\World of Warcraft\BackgroundDownloader.exe" = W:\Program Files\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"C:\Documents and Settings\Administrator\Local Settings\Temp\pdfupd.exe" = C:\Documents and Settings\Administrator\Local Settings\Temp\pdfupd.exe:*:Enabled:llupdate
"C:\Program Files\Common Files\ComObjects\spi.exe" = C:\Program Files\Common Files\ComObjects\spi.exe:*:Enabled:SP -- ()
"C:\Program Files\Common Files\ComObjects\update.exe" = C:\Program Files\Common Files\ComObjects\update.exe:*:Enabled:lupdater -- (Mozilla Corporation)
"C:\Program Files\World of Warcraft Public Test\Launcher.exe" = C:\Program Files\World of Warcraft Public Test\Launcher.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"C:\Program Files\World of Warcraft Public Test\Launcher.patch.exe" = C:\Program Files\World of Warcraft Public Test\Launcher.patch.exe:*:Enabled:Blizzard Launcher
"W:\Program Files\World of Warcraft\World of Warcraft Public Test\Launcher.patch.exe" = W:\Program Files\World of Warcraft\World of Warcraft Public Test\Launcher.patch.exe:*:Enabled:Blizzard Launcher
"W:\Program Files\World of Warcraft\World of Warcraft Public Test\Launcher.exe" = W:\Program Files\World of Warcraft\World of Warcraft Public Test\Launcher.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"C:\WINDOWS\SYSTEM32\java.exe" = C:\WINDOWS\SYSTEM32\java.exe:*:Enabled:Java™ Platform SE binary -- (Sun Microsystems, Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00010409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Professional
"{03A7C57A-B2C8-409b-92E5-524A0DFD0DD3}" = Status
"{087A66B8-1F0F-4a8d-A649-0CFE276AA7C0}" = WebReg
"{102CBC47-7FDE-4E6C-8A3A-67B79833FAC8}" = BPDSoftware_Ini
"{11B2F891-91C8-47ce-945A-A91003EA27FB}" = BPDSoftware
"{18AB082B-6584-4F74-8ABC-D5935CF46E4C}" = 8500A909_eDocs
"{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java™ 6 Update 25
"{282EF7E3-AE54-48AE-A11D-27F512F23AB3}" = Rio Music Manager
"{2DBE41DD-2129-4C65-A3D3-5647236A60F3}" = Quicken 2005
"{2DFF31F9-7893-4922-AF66-C9A1EB4EBB31}" = Rhapsody Player Engine
"{2E0695EE-ED29-4D96-BD77-2A9A17EDF0D6}" = Cypress USB Mass Storage Driver Installation
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3700194C-C5DD-439A-BE06-A66960CA4C70}" = MSVCSetup
"{4304BE34-6DDA-46CC-ADAB-77990DC77ED5}" = Magellan RoadMate Tools
"{432A850B-3558-4BFF-B1F9-30626835B523}" = BPD_DSWizards
"{47ECCB1F-2811-49C0-B6A7-26778639ABA0}" = 32 Bit HP CIO Components Installer
"{493F2531-C2E5-4B73-8B11-66E9CFDA9AFA}" = Rio Internet Update
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}" = Adobe® Photoshop® Album Starter Edition 3.0
"{4D304678-738E-42a0-931A-2B022F49DEB8}" = TrayApp
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{5421155F-B033-49DB-9B33-8F80F233D4D5}" = GdiplusUpgrade
"{54F90B55-BEB3-4F0D-8802-228822FA5921}" = WordPerfect Office 11
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{57F60D52-630B-43C5-BD20-176F5CD4EED6}" = bpd_scan
"{624E7452-BA43-4f55-B9D5-FC75EEA0808B}" = Officejet Pro 8500 A909 Series
"{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}" = Windows Genuine Advantage v1.3.0254.0
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{676981B7-A2D9-49D0-9F4C-03018F131DA9}" = DocProc
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68D60342-7686-45C9-B8EB-40EF843D0460}" = Dell Networking Guide
"{6EFDBA50-4ABE-4194-86F7-F3BD0A011F5B}_is1" = Shop To Win
"{766273C1-A39B-47EB-ACE8-DEBDD8094BCC}" = overland
"{7694E0B1-2332-448B-9235-929F84B41E3F}" = [email protected] ISO Burner
"{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware
"{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}" = Microsoft Security Client
"{787D1A33-A97B-4245-87C0-7174609A540C}" = HP Update
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{7C5B4583-7CBF-4289-B195-03B553959DEA}" = VoiceOver Kit
"{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}" = DellSupport
"{7F142D56-3326-11D5-B229-002078017FBF}" = Modem Helper
"{853A4763-6643-4604-8D64-28BDD8925F4C}" = Apple Application Support
"{873D68B3-EDE5-4DFD-85AC-FFC430FB7EE2}" = Form Viewer
"{87A9A9A9-FAB7-4224-9328-0FA2058C0FD5}" = Network
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A367C28-423C-48E2-8C76-EBA1171F932A}" = Adobe Photoshop Album 2.0
"{8EF1122E-E90C-4EE9-AB0C-7FDE2BA42C26}" = Musicmatch® Jukebox
"{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90D55A3F-1D99-4C94-A77E-46DC14F0BF08}" = Help and Support Customization
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{98DF85D9-96C0-4F57-A92E-C3539477EF5E}" = DVDSentry
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9CCCFD9C-248F-47FE-9496-1680E3E5C163}" = Scan
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A71D5E81-B967-43DB-93D7-FD31BFB95748}" = MobileMe Control Panel
"{A790BEB1-BCCF-4EC6-807B-5708B36E8A79}" = Intel® PROSet
"{AC13BA3A-336B-45a4-B3FE-2D3058A7B533}" = Toolbox
"{AC76BA86-7AD7-1033-7B44-A71000000002}" = Adobe Reader 7.1.0
"{AFAC914D-9E83-4A89-8ABE-427521C82CCF}" = Safari
"{B1B3A995-2FA8-46F1-9C3F-B3913CD0C3D4}" = iPodRip
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B495547C-01F8-4836-A2E6-749B5F3EA691}" = 8500A909_Help
"{BDCF27CA-BFC4-4F49-8D24-A925C9505AB8}" = Windows Rights Management Client with Service Pack 2
"{BE130CAB-F7AA-4660-96A2-6BCCE9743946}" = Stomp Backup MyPC
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C29C1940-CB85-4F3B-906C-33FEE0E67103}" = DocMgr
"{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C43E4B9C-14C8-4EB0-998B-85211B6EDD61}" = Acronis True Image WD Edition
"{C4A978A3-CAE4-4856-89D5-696498A7B8F7}" = HPODiscovery
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CB4544EA-C189-41FE-9E3A-76591DDB852B}" = Roxio Easy Media Creator 7
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF6E7481-4487-46D3-810A-F73EEA232CE0}" = Microsoft IntelliPoint 5.0
"{D5DEF057-D3BC-499f-99EE-884ED429B6D1}" = 8500A909g
"{D9F4A9F8-92C5-4289-9D04-F0F8F02D580A}" = iPod for Windows 2005-10-12
"{DA8BF070-1358-4a30-A68F-21E0E9421AEF}" = ProductContext
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{EC905264-BCFE-423B-9C42-C3A106266790}" = Windows Rights Management Client Backwards Compatibility SP2
"{EE7C3A14-1D20-49F6-B903-491561076F0F}" = ArcSoft Software Suite
"{EEEB604C-C1A7-4f8c-B03F-56F9C1C9C45F}" = Fax
"{EF9E56EE-0243-4BAD-88F4-5E7508AA7D96}" = Destination Component
"{F59A9E08-A6A4-4ACF-91F2-D0344956C30B}" = iTunes
"{F769B78E-FF0E-4db5-95E2-9F4C8D6352FE}" = DeviceDiscovery
"{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}" = HighMAT Extension to Microsoft Windows XP CD Writing Wizard
"{FF3999BE-1A7B-4738-88AA-97BF14094A4A}" = PictureProject
"7-Zip" = 7-Zip 9.20
"ActiveScan 2.0" = Panda ActiveScan 2.0
"Adobe Atmosphere Player" = Adobe Atmosphere Player for Acrobat and Adobe Reader
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"ArcSoft VideoImpression 16FP" = ArcSoft VideoImpression 1.6FP
"CCleaner" = CCleaner
"CNXT_MODEM_PCI_VEN_14F1&DEV_2702" = Conexant SmartHSFi V92 56K Speakerphone PCI Modem
"CutePDF Writer Installation" = CutePDF Writer 2.8
"Dell Digital Jukebox Driver" = Dell Digital Jukebox Driver
"ERUNT_is1" = ERUNT 1.1j
"HP Document Manager" = HP Document Manager 2.0
"HP Imaging Device Functions" = HP Imaging Device Functions 12.0
"HP Smart Web Printing" = HP Smart Web Printing 4.60
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPOCR" = OCR Software by I.R.I.S. 12.0
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{2DBE41DD-2129-4C65-A3D3-5647236A60F3}" = Quicken 2005
"InstallShield_{D9F4A9F8-92C5-4289-9D04-F0F8F02D580A}" = iPod for Windows 2005-10-12
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"mIRC" = mIRC
"NVIDIA Drivers" = NVIDIA Drivers
"Picasa" = Picasa
"PROSet" = Intel® PRO Network Adapters and Drivers
"RealPlayer 6.0" = RealPlayer
"SM1FX_AT" = USB Storage Adapter FX (SM1)
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TPP300" = USB2 Storage Adapter V3 (LaCie)
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"Windows XP Service Pack" = Windows XP Service Pack 3
"World of Warcraft" = World of Warcraft
"World of Warcraft Public Test" = World of Warcraft Public Test

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"PhotoBase Installer" =

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1/29/2011 3:14:46 AM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 2152759308, P2 unspecified, P3 scanfile,
P4 3.0.8107.0, P5 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.

Error - 1/29/2011 3:14:49 AM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P2 3.0.8107.0, P3 timeout, P4 1.1.6502.0, P5 fixed, P6 1 _ 2048, P7 10 _ not boot,
P8 NIL, P9 NIL, P10 NIL.

Error - 2/6/2011 8:19:16 AM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 80248011, P2 endsearch, P3 search, P4 3.0.8107.0,
P5 mpsigdwn.dll, P6 3.0.8107.0, P7 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P8 NIL, P9 NIL, P10 NIL.

Error - 2/11/2011 8:27:58 PM | Computer Name = SUZY | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: An internal certificate chaining error has occurred.

Error - 2/11/2011 8:34:22 PM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 0, P2 moaccapability, P3 3.0.8107.0, P4
3, P5 0, P6 unspecified, P7 unspecified, P8 NIL, P9 NIL, P10 NIL.

Error - 2/20/2011 8:32:58 AM | Computer Name = SUZY | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: An internal certificate chaining error has occurred.

Error - 2/20/2011 7:11:00 PM | Computer Name = SUZY | Source = Microsoft Office 11 | ID = 2001
Description = Rejected Safe Mode action : Microsoft Office Outlook.

Error - 6/28/2011 9:13:37 PM | Computer Name = SUZY | Source = Bonjour Service | ID = 100
Description = Client application bug: DNSServiceResolve(BZDN1834158905-QkxaMDAwMjlCMDQgZkYxREMwMEJFRTh2MTBCRDk1MTNFOQ==._bzdn._tcp.local.)
active for over two minutes. This places considerable burden on the network.

Error - 7/8/2011 2:01:39 PM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 80248011, P2 endsearch, P3 search, P4 3.0.8107.0,
P5 mpsigdwn.dll, P6 3.0.8107.0, P7 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P8 NIL, P9 NIL, P10 NIL.

Error - 7/14/2011 7:23:10 AM | Computer Name = SUZY | Source = MPSampleSubmission | ID = 5000
Description = EventType mptelemetry, P1 8024402c, P2 endsearch, P3 search, P4 3.0.8107.0,
P5 mpsigdwn.dll, P6 3.0.8107.0, P7 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094),
P8 NIL, P9 NIL, P10 NIL.

[ System Events ]
Error - 7/24/2011 8:47:01 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7034
Description = The Acronis Scheduler2 Service service terminated unexpectedly. It
has done this 1 time(s).

Error - 7/24/2011 8:47:01 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 1 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 7/24/2011 8:47:01 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7034
Description = The Bonjour Service service terminated unexpectedly. It has done
this 1 time(s).

Error - 7/24/2011 8:47:02 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7034
Description = The Java Quick Starter service terminated unexpectedly. It has done
this 1 time(s).

Error - 7/24/2011 8:47:02 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7034
Description = The MBAMService service terminated unexpectedly. It has done this
1 time(s).

Error - 7/24/2011 8:47:03 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7034
Description = The Rio MSC Manager service terminated unexpectedly. It has done
this 1 time(s).

Error - 7/24/2011 8:47:03 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7034
Description = The SupportSoft Sprocket Service (dellsupportcenter) service terminated
unexpectedly. It has done this 1 time(s).

Error - 7/24/2011 8:47:03 PM | Computer Name = SUZY | Source = Service Control Manager | ID = 7034
Description = The iPod Service service terminated unexpectedly. It has done this
1 time(s).

Error - 7/24/2011 8:57:05 PM | Computer Name = SUZY | Source = DCOM | ID = 10010
Description = The server {0002DF01-0000-0000-C000-000000000046} did not register
with DCOM within the required timeout.

Error - 7/24/2011 9:35:32 PM | Computer Name = SUZY | Source = DCOM | ID = 10010
Description = The server {0002DF01-0000-0000-C000-000000000046} did not register
with DCOM within the required timeout.


< End of report >






Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Database version: 7268

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

7/24/2011 4:32:13 PM
mbam-log-2011-07-24 (16-32-13).txt

Scan type: Quick scan
Objects scanned: 203893
Time elapsed: 10 minute(s), 2 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 3
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{70C6E9DE-F30E-4A40-8A6F-9572C2328320} (PUP.FCTPlugin) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{70C6E9DE-F30E-4A40-8A6F-9572C2328320} (PUP.FCTPlugin) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{70C6E9DE-F30E-4A40-8A6F-9572C2328320} (PUP.FCTPlugin) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)




This was a pain..first time I've ever run it.



ComboFix 11-07-24.03 - saunders 07/24/2011 17:26:33.2.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1535.1133 [GMT -10:00]
Running from: c:\documents and settings\Administrator\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\WINDOWS
c:\documents and settings\Default User\WINDOWS
c:\documents and settings\fxg\WINDOWS
c:\documents and settings\Lehua\WINDOWS
c:\windows\Downloaded Program Files\f3initialsetup1.0.0.15-3.inf
c:\windows\patch.exe
c:\windows\system32\config\systemprofile\WINDOWS
.
.
((((((((((((((((((((((((( Files Created from 2011-06-25 to 2011-07-25 )))))))))))))))))))))))))))))))
.
.
2011-07-25 02:17 . 2011-07-07 05:52 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-07-25 02:17 . 2011-07-25 02:17 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-07-25 02:17 . 2011-07-07 05:52 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-25 00:47 . 2011-07-25 00:47 -------- d-----w- C:\_OTL
2011-07-24 12:48 . 2011-07-13 03:39 6881616 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{38C2D817-56B9-49C8-8B9D-35517AFD54FC}\mpengine.dll
2011-07-19 11:12 . 2011-07-19 11:35 -------- d-----w- c:\documents and settings\Administrator\Application Data\TS3Client
2011-07-19 11:08 . 2011-07-19 11:09 -------- d-----w- c:\program files\TeamSpeak 3 Client
2011-06-26 02:55 . 2011-06-26 02:55 -------- d-----w- c:\documents and settings\Administrator\Application Data\FCSB000063447
2011-06-26 02:55 . 2011-06-26 02:55 -------- d-----w- c:\program files\7-Zip
2011-06-26 02:55 . 2011-06-26 02:55 -------- d-----w- c:\program files\Common Files\FreeCause
2011-06-26 02:55 . 2011-06-26 02:55 -------- d-----w- c:\program files\Shop to Win 16
2011-06-26 02:55 . 2011-06-26 02:55 -------- d-----w- c:\program files\Shop To Win
2011-06-26 02:54 . 2011-07-25 01:17 -------- d-----w- c:\program files\Object
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-13 03:39 . 2010-06-18 16:17 6881616 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-06-30 23:37 . 2011-05-14 01:18 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-02 14:02 . 2002-08-29 10:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-06-02 02:41 . 2009-12-16 14:44 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-06-02 02:41 . 2010-05-15 02:25 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-05-07 15:06 . 2011-05-07 15:06 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-05-02 15:31 . 2004-06-08 00:19 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25 . 2002-08-29 10:00 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19 . 2002-08-29 10:00 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-26 11:07 . 2002-08-29 10:00 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-04-26 11:07 . 2002-08-29 10:00 293376 ----a-w- c:\windows\system32\winsrv.dll
2003-08-28 00:19 . 2004-06-12 07:35 36963 -c--a-r- c:\program files\Common Files\SM1updtr.dll
2011-02-08 13:33 978944 --sha-w- c:\windows\SYSTEM32\mfc42.dll
2008-04-14 00:12 57344 --sha-w- c:\windows\SYSTEM32\msvcirt.dll
2008-04-14 00:12 413696 --sha-w- c:\windows\SYSTEM32\msvcp60.dll
2008-04-14 00:12 343040 --sha-w- c:\windows\SYSTEM32\msvcrt.dll
2010-12-20 17:32 551936 --sh--w- c:\windows\SYSTEM32\oleaut32.dll
2008-04-14 00:12 84992 --sha-w- c:\windows\SYSTEM32\olepro32.dll
2008-04-14 00:12 11776 --sh--w- c:\windows\SYSTEM32\regsvr32.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2009-06-10 1326080]
"AcronisTimounterMonitor"="c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe" [2009-06-10 904840]
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2009-06-10 136472]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-12-15 47904]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-30 421888]
"dellsupportcenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 997408]
"nwiz"="nwiz.exe" [2006-10-22 1622016]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-22 86016]
"iTunesHelper"="s:\program files\iTunes\iTunesHelper.exe" [2011-04-27 421160]
"SM1BG"="c:\windows\SM1BG.EXE" [2003-08-28 94208]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ \0
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^HotSync Manager.LNK]
path=c:\documents and settings\Administrator\Start Menu\Programs\Startup\HotSync Manager.LNK
backup=c:\windows\pss\HotSync Manager.LNKStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HotSync Manager.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HotSync Manager.lnk
backup=c:\windows\pss\HotSync Manager.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^WhiteSmoke Translator.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\WhiteSmoke Translator.lnk
backup=c:\windows\pss\WhiteSmoke Translator.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
2005-06-07 09:46 57344 -c--a-w- c:\program files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupport]
2007-03-15 21:09 460784 ----a-w- c:\program files\DellSupport\DSAgnt.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupportCenter]
2009-05-21 20:55 206064 ----a-w- c:\program files\Dell Support Center\bin\sprtcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dscactivate]
2007-11-15 19:24 16384 -c--a-w- c:\program files\Dell Support Center\gs_agent\custom\dsca.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DVDSentry]
2002-08-14 23:22 28672 ----a-r- c:\windows\SYSTEM32\DSentry.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2010-03-12 23:08 49208 ----a-w- c:\program files\HP\HP Software Update\hpwuschd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelliPoint]
2003-05-15 23:41 163840 ----a-w- c:\program files\Microsoft IntelliPoint\point32.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
2004-07-28 02:50 221184 -c--a-w- c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
2004-07-28 02:50 81920 -c--a-w- c:\program files\Common Files\InstallShield\UpdateService\issch.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LifeScape Media Detector]
2005-01-08 22:31 151552 -c----w- c:\program files\Picasa\PicasaMediaDetector.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-30 03:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc]
2004-01-27 21:39 1179648 -c--a-w- c:\program files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SM1BG]
2003-08-28 00:20 94208 ----a-r- c:\windows\SM1bg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"Bonjour Service"=2 (0x2)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxs08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqfxt08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Smart Web Printing\\SmartWebPrintExe.exe"=
"c:\\Program Files\\Ventrilo\\Ventrilo.exe"=
"w:\\Program Files\\World of Warcraft\\Launcher.exe"=
"w:\\Program Files\\World of Warcraft\\BackgroundDownloader.exe"=
"c:\\Program Files\\Common Files\\ComObjects\\spi.exe"=
"c:\\Program Files\\Common Files\\ComObjects\\update.exe"=
"c:\\Program Files\\World of Warcraft Public Test\\Launcher.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"s:\\Program Files\\iTunes\\iTunes.exe"=
"w:\\Program Files\\World of Warcraft\\World of Warcraft Public Test\\Launcher.exe"=
"c:\\WINDOWS\\SYSTEM32\\java.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"6112:TCP"= 6112:TCP:Blizzard Downloader
"6881:TCP"= 6881:TCP:Blizzard Downloader: 6881
.
R0 pavboot;pavboot;c:\windows\SYSTEM32\DRIVERS\pavboot.sys [4/26/2011 5:38 PM 28552]
R0 sptd;sptd;c:\windows\SYSTEM32\DRIVERS\sptd.sys [5/7/2011 5:06 AM 691696]
S1 MpKsl1177941c;MpKsl1177941c;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{698F0F78-982A-4C55-8BA7-8A1C7C2535C3}\MpKsl1177941c.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{698F0F78-982A-4C55-8BA7-8A1C7C2535C3}\MpKsl1177941c.sys [?]
S1 MpKsl1aee4da1;MpKsl1aee4da1;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1D834BFE-5269-4C5F-BB9E-CA8A5DF4BBDF}\MpKsl1aee4da1.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1D834BFE-5269-4C5F-BB9E-CA8A5DF4BBDF}\MpKsl1aee4da1.sys [?]
S1 MpKsl25075eaa;MpKsl25075eaa;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C9FA093C-696D-4254-84F0-9128057CA937}\MpKsl25075eaa.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C9FA093C-696D-4254-84F0-9128057CA937}\MpKsl25075eaa.sys [?]
S1 MpKsl39cf6821;MpKsl39cf6821;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4F5520B1-E4F1-478F-B1A5-9F02CB50B848}\MpKsl39cf6821.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4F5520B1-E4F1-478F-B1A5-9F02CB50B848}\MpKsl39cf6821.sys [?]
S1 MpKsl57cb9413;MpKsl57cb9413;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{698F0F78-982A-4C55-8BA7-8A1C7C2535C3}\MpKsl57cb9413.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{698F0F78-982A-4C55-8BA7-8A1C7C2535C3}\MpKsl57cb9413.sys [?]
S1 MpKsl5c5b3f90;MpKsl5c5b3f90;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E35A06E8-B79F-4DFA-BECB-9DBC3B21A256}\MpKsl5c5b3f90.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E35A06E8-B79F-4DFA-BECB-9DBC3B21A256}\MpKsl5c5b3f90.sys [?]
S1 MpKsl6372d387;MpKsl6372d387;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1EDB3838-038A-42BF-A185-7774A7279404}\MpKsl6372d387.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1EDB3838-038A-42BF-A185-7774A7279404}\MpKsl6372d387.sys [?]
S1 MpKsl6966d7d9;MpKsl6966d7d9;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{BFF90042-2B6D-415D-90E8-7EC1653D4C9C}\MpKsl6966d7d9.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{BFF90042-2B6D-415D-90E8-7EC1653D4C9C}\MpKsl6966d7d9.sys [?]
S1 MpKsl79c6ee7e;MpKsl79c6ee7e;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{66C7923B-5EAB-494A-8010-9C1F70A0821B}\MpKsl79c6ee7e.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{66C7923B-5EAB-494A-8010-9C1F70A0821B}\MpKsl79c6ee7e.sys [?]
S1 MpKsl82c08f6f;MpKsl82c08f6f;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{3FFF9842-8F94-472C-B493-890C4713DB7B}\MpKsl82c08f6f.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{3FFF9842-8F94-472C-B493-890C4713DB7B}\MpKsl82c08f6f.sys [?]
S1 MpKsl9041a148;MpKsl9041a148;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{38C2D817-56B9-49C8-8B9D-35517AFD54FC}\MpKsl9041a148.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{38C2D817-56B9-49C8-8B9D-35517AFD54FC}\MpKsl9041a148.sys [?]
S1 MpKsld223a9b0;MpKsld223a9b0;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{AD12E965-D8E0-48C7-9ABD-4052F72E7872}\MpKsld223a9b0.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{AD12E965-D8E0-48C7-9ABD-4052F72E7872}\MpKsld223a9b0.sys [?]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\SYSTEM32\DRIVERS\mbamswissarmy.sys [7/24/2011 4:17 PM 41272]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
.
2011-07-16 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 21:50]
.
2011-07-25 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2010-11-11 22:26]
.
2005-08-27 c:\windows\Tasks\WebReg 20050826140446.job
- c:\program files\HP\Digital Imaging\bin\hpqwrg.exe [2008-10-17 05:22]
.
.
------- Supplementary Scan -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
Trusted Zone: hicentral.com\www
Trusted Zone: hicentralmls.com\www
Trusted Zone: zipform.com\www
Trusted Zone: zipformonline.com\www
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS REMOVED - - - -
.
MSConfigStartUp-Google Desktop Search - c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
MSConfigStartUp-iTunesHelper - c:\program files\iTunes\iTunesHelper.exe
MSConfigStartUp-MCAgentExe - c:\progra~1\mcafee.com\agent\mcagent.exe files\mcafee.com\agent\mcagent.exe
MSConfigStartUp-MCUpdateExe - c:\progra~1\mcafee.com\agent\McUpdate.exe
MSConfigStartUp-pccguide - c:\program files\Trend Micro\Internet Security 2006\pccguide.exe
MSConfigStartUp-Share-to-Web Namespace Daemon - c:\program files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
MSConfigStartUp-StatusClient 2 - c:\program files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe
MSConfigStartUp-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
MSConfigStartUp-TomcatStartup 2 - c:\program files\Hewlett-Packard\Toolbox\hpbpsttp.exe
AddRemove-PhotoBase Installer - c:\program files\Palm\Uninst.isu
.
.
.
**************************************************************************
.
disk not found C:\
.
please note that you need administrator rights to perform deep scan
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files:
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(2388)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Microsoft Security Client\Antimalware\MsMpEng.exe
c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\nvsvc32.exe
c:\windows\system32\RioMSC.exe
c:\program files\Dell Support Center\bin\sprtsvc.exe
c:\windows\system32\wscntfy.exe
c:\program files\iPod\bin\iPodService.exe
.
**************************************************************************
.
Completion time: 2011-07-24 18:02:42 - machine was rebooted
ComboFix-quarantined-files.txt 2011-07-25 04:02
.
Pre-Run: 18,002,010,112 bytes free
Post-Run: 18,009,661,440 bytes free
.
- - End Of File - - 72C5C98CB5B8E5F19FC6033ADE3E8713





aswMBR version 0.9.8.977 Copyright© 2011 AVAST Software
Run date: 2011-07-25 15:28:30
-----------------------------
15:28:30.390 OS Version: Windows 5.1.2600 Service Pack 3
15:28:30.390 Number of processors: 1 586 0x209
15:28:30.390 ComputerName: SUZY UserName:
15:28:31.906 Initialize success
15:29:00.734 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4
15:29:00.734 Disk 0 Vendor: IC35L060AVV207-0 V22OA66A Size: 57220MB BusType: 3
15:29:00.734 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-c
15:29:00.734 Disk 1 Vendor: WDC_WD5000AAKB-00H8A0 05.04E05 Size: 476940MB BusType: 3
15:29:00.750 Disk 0 MBR read successfully
15:29:00.750 Disk 0 MBR scan
15:29:00.750 Disk 0 Windows XP default MBR code
15:29:00.765 Disk 0 scanning sectors +117178110
15:29:00.890 Disk 0 scanning C:\WINDOWS\system32\drivers
15:29:27.750 Service scanning
15:29:32.828 Service sptd C:\WINDOWS\System32\Drivers\sptd.sys **LOCKED** 32
15:29:33.390 Modules scanning
15:30:04.640 Disk 0 trace - called modules:
15:30:04.656 ntoskrnl.exe CLASSPNP.SYS disk.sys atapi.sys spqk.sys hal.dll >>UNKNOWN [0x8a507938]<<
15:30:05.171 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a4bdab8]
15:30:05.171 3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-4[0x8a4cbb00]
15:30:05.171 Scan finished successfully
15:30:50.593 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"
15:30:50.609 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"


*fix MBR enabled, NOT fixSummary
Operating System
MS Windows XP Professional 32-bit SP3
CPU
Intel Pentium 4
Northwood 0.13um Technology
RAM
1.50 GB Dual-Channel DDR @ 199MHz (3-3-3-8)
Motherboard
Dell Computer Corp. 0G0728 (Microprocessor)
Graphics
SDM-HS95P ([email protected])
64MB GeForce4 MX 440 with AGP8X (nVidia)
Hard Drives
59GB IC35L060AVV207-0 (PATA) 42 °C
488GB Western Digital WDC WD5000AAKB-00H8A0 (PATA) 41 °C
Optical Drives
SAMSUNG DVD-ROM SD-616T
SAMSUNG CD-R/RW SW-248F
Audio
Unimodem Half-Duplex Audio Device
Operating System
MS Windows XP Professional 32-bit SP3
Installation Date: 01 August 2003, 09:00

Windows Security Center
Firewall Enabled
Windows Update
AutoUpdate Download Automatically and Install at Set Scheduled time
Schedule Frequency Every day
Schedule Time 3 am
Antivirus
Antivirus Enabled
Company Name Microsoft
Display Name Microsoft Security Essentials
Product Version 2.0.657.0
TimeZone
TimeZone GMT -10 Hours
Language English
Country United States
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Power Profile
Active power scheme Home/Office Desk
Hibernation Disabled
Scheduler
7/29/2011 3:16 PM AppleSoftwareUpdate
7/31/2011 2:14 AM MP Scheduled Scan
Disabled WebReg 20050826140446
Hotfixes
7/26/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.109.322.0)
7/24/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.109.236.0)
7/24/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.109.220.0)
7/22/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.109.92.0)
7/20/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.2139.0)
7/20/2011 Security Update for Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package (KB2538243)
7/19/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.2067.0)
7/17/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.1954.0)
7/16/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.1931.0)
7/15/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.1837.0)
7/13/2011 Security Update for Windows XP (KB2507938)
7/13/2011 Windows Malicious Software Removal Tool - July 2011 (KB890830)
7/13/2011 Security Update for Microsoft Office 2003 (KB2493523)
7/13/2011 Security Update for Windows XP (KB2555917)
7/13/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.1623.0)
7/12/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.1542.0)
7/10/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.1441.0)
7/9/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.1420.0)
7/7/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.1258.0)
7/6/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.1128.0)
7/4/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.998.0)
7/3/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.941.0)
7/2/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.929.0)
7/1/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.860.0)
6/30/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.713.0)
6/30/2011 Microsoft Office File Validation Add-in
6/29/2011 Update for Windows XP (KB2541763)
6/29/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.624.0)
6/28/2011 Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2518864)
6/28/2011 Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2478658)
6/28/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.551.0)
6/26/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.455.0)
6/25/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.389.0)
6/24/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.303.0)
6/22/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.107.115.0)
6/21/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.2376.0)
6/19/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.2304.0)
6/18/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.2231.0)
6/17/2011 Windows Malicious Software Removal Tool - June 2011 (KB890830)
6/17/2011 Update for Microsoft Office 2007 System (KB2539530)
6/17/2011 Security Update for Microsoft Silverlight (KB2512827)
6/17/2011 Security Update for Windows XP (KB2476490)
6/17/2011 Security Update for Windows XP (KB2503665)
6/17/2011 Security Update for Microsoft Office Excel 2003 (KB2541025)
6/17/2011 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2553971)
6/17/2011 Security Update for Windows XP (KB2535512)
6/17/2011 Update for Microsoft Office 2003 (KB2539581)
6/17/2011 Security Update for the 2007 Microsoft Office System (KB2541012)
6/17/2011 Security Update for Windows XP (KB2536276)
6/17/2011 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2530548)
6/17/2011 Security Update for Windows XP (KB2544893)
6/17/2011 Security Update for Internet Explorer 8 for Windows XP (KB2544521)
6/17/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.2148.0)
6/17/2011 Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2518864)
6/15/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.1967.0)
6/13/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.1822.0)
6/10/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.1707.0)
6/9/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.1563.0)
6/8/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.1474.0)
6/6/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.1363.0)
6/5/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.1306.0)
6/4/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.1282.0)
6/3/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.1156.0)
5/31/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.982.0)
5/30/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.836.0)
5/29/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.789.0)
5/27/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.623.0)
5/25/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.434.0)
5/24/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.338.0)
5/22/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.260.0)
5/21/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.205.0)
5/20/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.105.97.0)
5/19/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.2031.0)
5/17/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.1952.0)
5/16/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.1771.0)
5/14/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.1689.0)
5/12/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.1501.0)
5/11/2011 Windows Malicious Software Removal Tool - May 2011 (KB890830)
5/11/2011 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2536411)
5/11/2011 Security Update for Microsoft Office PowerPoint 2003 (KB2535812)
5/11/2011 Security Update for Microsoft Office 2007 System (KB2540162)
5/11/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.1405.0)
5/8/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.1236.0)
5/6/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.1169.0)
5/4/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.1037.0)
5/3/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.879.0)
5/1/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.803.0)
4/30/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.724.0)
4/29/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.651.0)
4/28/2011 Windows Malicious Software Removal Tool - April 2011 (KB890830)
4/27/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.507.0)
4/25/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.442.0)
4/24/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.378.0)
4/23/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.366.0)
4/22/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.320.0)
4/21/2011 Update for Microsoft Silverlight (KB2526954)
4/21/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.181.0)
4/19/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.103.9.0)
4/17/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.1639.0)
4/16/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.1625.0)
4/15/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.1486.0)
4/14/2011 Security Update for Microsoft Office Excel 2003 (KB2502786)
4/14/2011 Security Update for Windows XP (KB2485663)
4/14/2011 Security Update for Microsoft Office 2003 (KB2509503)
4/14/2011 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2522981)
4/14/2011 Security Update for Windows XP (KB2506223)
4/14/2011 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2497640)
4/14/2011 Security Update for Windows XP (KB2412687)
4/14/2011 Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2446704)
4/14/2011 Cumulative Security Update for ActiveX Killbits for Windows XP (KB2508272)
4/14/2011 Security Update for Microsoft Office 2007 System (KB2464635)
4/14/2011 Security Update for Windows XP (KB2503658)
4/14/2011 Security Update for Microsoft Office 2007 System (KB2509488)
4/14/2011 Security Update for Windows XP (KB2507618)
4/14/2011 Security Update for Windows XP (KB2508429)
4/14/2011 Security Update for Microsoft Office PowerPoint 2003 (KB2464588)
4/14/2011 Security Update for Windows XP (KB2511455)
4/14/2011 Security Update for the 2007 Microsoft Office System (KB2466156)
4/14/2011 Security Update for Windows XP (KB2506212)
4/14/2011 Windows Malicious Software Removal Tool - April 2011 (KB890830)
4/14/2011 Security Update for Windows XP (KB2509553)
4/14/2011 Security Update for Windows XP (KB2510531)
4/13/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.1342.0)
4/12/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.1266.0)
4/10/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.1178.0)
4/9/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.1156.0)
4/8/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.1046.0)
4/5/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.892.0)
4/4/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.799.0)
4/3/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.721.0)
4/2/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.657.0)
3/31/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.500.0)
3/30/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.404.0)
3/29/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.319.0)
3/26/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.223.0)
3/25/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.101.77.0)
3/24/2011 Update for Windows XP (KB2524375)
3/23/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1721.0)
3/22/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1632.0)
3/20/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1562.0)
3/19/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1548.0)
3/18/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1502.0)
3/17/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1359.0)
3/16/2011 Update for Windows XP (KB971029)
3/16/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1275.0)
3/14/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1169.0)
3/13/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1138.0)
3/12/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1103.0)
3/11/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.1007.0)
3/9/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.950.0)
3/9/2011 Security Update for Windows XP (KB2479943)
3/9/2011 Windows Malicious Software Removal Tool - March 2011 (KB890830)
3/9/2011 Security Update for Windows XP (KB2481109)
3/9/2011 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2508974)
3/8/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.785.0)
3/6/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.711.0)
3/5/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.664.0)
3/3/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.513.0)
3/2/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.435.0)
3/1/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.290.0)
2/27/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.185.0)
2/25/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.99.115.0)
2/23/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.2377.0)
2/22/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.2261.0)
2/21/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.2186.0)
2/20/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.2166.0)
2/20/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.2154.0)
2/19/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.2095.0)
2/17/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.2006.0)
2/16/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.1814.0)
2/14/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.1705.0)
2/12/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.1597.0)
2/11/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.1518.0)
2/10/2011 Security Update for Windows XP (KB2478971)
2/10/2011 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2492441)
2/10/2011 Security Update for Windows XP (KB2485376)
2/10/2011 Security Update for Windows XP (KB2479628)
2/10/2011 Security Update for Windows XP (KB2483185)
2/10/2011 Windows Malicious Software Removal Tool - February 2011 (KB890830)
2/10/2011 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2482017)
2/10/2011 Security Update for Windows XP (KB2476687)
2/10/2011 Security Update for Windows XP (KB2478960)
2/10/2011 Security Update for Windows XP (KB2393802)
2/10/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.1355.0)
2/8/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.1206.0)
2/5/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.1086.0)
2/4/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.979.0)
2/2/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.840.0)
1/31/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.697.0)
1/30/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.661.0)
1/29/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.596.0)
1/27/2011 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.97.409.0)
1/27/2011 Microsoft Security Essentials Client Update Package - KB2290031 (2.0.657.0)
1/27/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.97.409.0)
1/26/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.97.320.0)
1/24/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.97.197.0)
1/23/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.97.144.0)
1/22/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.97.113.0)
1/20/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.97.2.0)
1/19/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.4209.0)
1/17/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.4071.0)
1/16/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.4015.0)
1/14/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.3968.0)
1/13/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.3807.0)
1/12/2011 Windows Malicious Software Removal Tool - January 2011 (KB890830)
1/12/2011 Security Update for Windows XP (KB2419632)
1/12/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.3707.0)
1/11/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.3631.0)
1/9/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.3528.0)
1/9/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.3517.0)
1/7/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.3475.0)
1/6/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.3310.0)
1/4/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.3234.0)
1/3/2011 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.3111.0)
12/31/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.2951.0)
12/29/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.2824.0)
12/28/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.2722.0)
12/27/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.2643.0)
12/25/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.2608.0)
12/24/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.2506.0)
12/22/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.2390.0)
12/20/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.2197.0)
12/19/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.2106.0)
12/18/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.2078.0)
12/16/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1960.0)
12/16/2010 Update for Microsoft Office Outlook 2003 (KB2449798)
12/16/2010 Security Update for Windows XP (KB2296199)
12/16/2010 Security Update for Windows XP (KB2443105)
12/16/2010 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2416400)
12/16/2010 Security Update for Windows XP (KB2440591)
12/16/2010 Update for Windows XP (KB2443685)
12/16/2010 Security Update for Windows XP (KB2436673)
12/16/2010 Update for Internet Explorer for Windows XP (KB2467659)
12/16/2010 Security Update for Microsoft Office 2003 (KB2289163)
12/16/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2466074)
12/16/2010 Security Update for Microsoft Office Publisher 2003 (KB2284695)
12/16/2010 Windows Malicious Software Removal Tool - December 2010 (KB890830)
12/16/2010 Security Update for Windows XP (KB2423089)
12/15/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1867.0)
12/14/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1723.0)
12/12/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1636.0)
12/10/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1554.0)
12/9/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1476.0)
12/8/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1341.0)
12/7/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1268.0)
12/5/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1218.0)
12/4/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1182.0)
12/3/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.1100.0)
12/1/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.959.0)
11/30/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.885.0)
11/29/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.808.0)
11/28/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.749.0)
11/27/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.728.0)
11/26/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.656.0)
11/24/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.540.0)
11/23/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.381.0)
11/21/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.294.0)
11/19/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.167.0)
11/18/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.95.85.0)
11/16/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.1990.0)
11/15/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.1896.0)
11/13/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.1795.0)
11/12/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.1712.0)
11/10/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.1647.0)
11/10/2010 Security Update for Microsoft Office 2007 System (KB2289158)
11/10/2010 Security Update for Microsoft Office 2003 (KB2289187)
11/10/2010 Windows Malicious Software Removal Tool - November 2010 (KB890830)
11/10/2010 Security Update for Microsoft Office PowerPoint 2003 (KB2413304)
11/10/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2435682)
11/8/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.1441.0)
11/7/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.1345.0)
11/5/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.1296.0)
11/4/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.1148.0)
11/2/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.961.0)
10/31/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.846.0)
10/30/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.811.0)
10/29/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.770.0)
10/28/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.667.0)
10/27/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.511.0)
10/25/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.441.0)
10/24/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.385.0)
10/23/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.345.0)
10/22/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.234.0)
10/20/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.93.121.0)
10/18/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1969.0)
10/17/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1926.0)
10/16/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1885.0)
10/15/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1817.0)
10/14/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1781.0)
10/14/2010 Security Update for Windows XP (KB2387149)
10/14/2010 Security Update for Windows XP (KB2279986)
10/14/2010 Update for Windows XP (KB2345886)
10/14/2010 Security Update for Windows XP (KB2296011)
10/14/2010 Security Update for Windows XP (KB2378111)
10/14/2010 Security Update for Windows XP (KB982132)
10/14/2010 Security Update for the 2007 Microsoft Office System (KB2344875)
10/14/2010 Security Update for the 2007 Microsoft Office System (KB2345043)
10/14/2010 Security Update for Microsoft Office Word 2003 (KB2344911)
10/14/2010 Security Update for Windows XP (KB979687)
10/14/2010 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2360131)
10/14/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2410707)
10/14/2010 Windows Malicious Software Removal Tool - October 2010 (KB890830)
10/14/2010 Security Update for Windows XP (KB981957)
10/14/2010 Security Update for Microsoft Office Excel 2003 (KB2344893)
10/14/2010 Security Update for Windows XP (KB2360937)
10/13/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1698.0)
10/12/2010 Microsoft Security Essentials Client update package - KB2267610
10/11/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1566.0)
10/10/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1499.0)
10/9/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1430.0)
10/8/2010 Security Update for Microsoft .NET Framework 3.5 SP1 on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008 x86 (KB2416473)
10/7/2010 Security Update for Microsoft .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2418241)
10/7/2010 Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2416447)
10/7/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1254.0)
10/6/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1166.0)
10/5/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.1102.0)
10/2/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.995.0)
10/1/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.891.0)
9/29/2010 Update for Windows XP (KB2158563)
9/29/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.758.0)
9/27/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.672.0)
9/25/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.612.0)
9/24/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.452.0)
9/22/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.362.0)
9/21/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.271.0)
9/19/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.130.0)
9/18/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.91.46.0)
9/16/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.1786.0)
9/16/2010 Security Update for Microsoft Office Outlook 2003 (KB2293428)
9/16/2010 Security Update for Windows XP (KB2259922)
9/16/2010 Security Update for Windows XP (KB975558)
9/16/2010 Security Update for Windows XP (KB2347290)
9/16/2010 Security Update for Windows XP (KB2121546)
9/16/2010 Security Update for Windows XP (KB982802)
9/16/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2291595)
9/16/2010 Security Update for Windows XP (KB981322)
9/16/2010 Windows Malicious Software Removal Tool - September 2010 (KB890830)
9/16/2010 Security Update for Microsoft Office 2003 (KB2288613)
9/16/2010 Update for Windows XP (KB2141007)
9/15/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.1665.0)
9/12/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.1515.0)
9/11/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.1458.0)
9/9/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.1358.0)
9/8/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.1223.0)
9/7/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.1145.0)
9/5/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.1079.0)
9/4/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.965.0)
9/3/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.879.0)
9/1/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.812.0)
8/30/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.615.0)
8/29/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.565.0)
8/28/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.542.0)
8/27/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.438.0)
8/25/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.283.0)
8/23/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.175.0)
8/22/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.107.0)
8/20/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.89.63.0)
8/19/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.2231.0)
8/17/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.2106.0)
8/16/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.1998.0)
8/14/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.1920.0)
8/13/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.1797.0)
8/12/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.1720.0)
8/10/2010 Security Update for Microsoft Office Word 2003 (KB2251399)
8/10/2010 Security Update for Windows XP (KB982214)
8/10/2010 Security Update for Windows XP (KB2115168)
8/10/2010 Security Update for Microsoft Office Excel 2003 (KB2264403)
8/10/2010 Security Update for Windows XP (KB981852)
8/10/2010 Security Update for Windows XP (KB2079403)
8/10/2010 Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB983583)
8/10/2010 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2183461)
8/10/2010 Security Update for Windows XP (KB2160329)
8/10/2010 Security Update for Windows XP (KB980436)
8/10/2010 Windows Malicious Software Removal Tool - August 2010 (KB890830)
8/10/2010 Security Update for Windows XP (KB981997)
8/10/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2279246)
8/10/2010 Security Update for the 2007 Microsoft Office System (KB2277947)
8/10/2010 Security Update for Windows XP (KB982665)
8/10/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.1564.0)
8/8/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.1480.0)
8/8/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.1472.0)
8/7/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.1452.0)
8/6/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.1322.0)
8/4/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.1142.0)
8/4/2010 Security Update for Windows XP (KB2286198)
8/1/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.999.0)
7/30/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.933.0)
7/29/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.789.0)
7/27/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.710.0)
7/26/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.582.0)
7/25/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.530.0)
7/23/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.465.0)
7/22/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.362.0)
7/21/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.225.0)
7/20/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.162.0)
7/17/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.97.0)
7/16/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.87.35.0)
7/15/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.2098.0)
7/14/2010 Security Update for Microsoft Office Outlook 2003 (KB980373)
7/14/2010 Security Update for Windows XP (KB2229593)
7/14/2010 Security Update for Microsoft Office Access 2003 (KB981716)
7/14/2010 Windows Malicious Software Removal Tool - July 2010 (KB890830)
7/14/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB2202122)
7/13/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1925.0)
7/12/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1874.0)
7/10/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1840.0)
7/9/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1721.0)
7/7/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1571.0)
7/5/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1505.0)
7/4/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1381.0)
7/4/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1372.0)
7/2/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1241.0)
6/30/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1178.0)
6/29/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.1058.0)
6/29/2010 Microsoft Security Essentials Client update package - KB2254596
6/28/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.967.0)
6/27/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.923.0)
6/26/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.898.0)
6/25/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.782.0)
6/24/2010 Microsoft .NET Framework 3.5 SP1 and .NET Framework 2.0 SP2 Update for Windows Server 2003 and Windows XP x86 (KB982524)
6/23/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.641.0)
6/21/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.561.0)
6/20/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.497.0)
6/19/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.468.0)
6/18/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.181.0)
6/18/2010 Definition Update for Microsoft Security Essentials - KB972696 (Definition 1.85.131.0)
6/9/2010 Security Update for Windows XP (KB980218)
6/9/2010 Security Update for Microsoft Office 2003 (KB982311)
6/9/2010 Security Update for Microsoft Office Excel 2003 (KB982133)
6/9/2010 Cumulative Security Update for ActiveX Killbits for Windows XP (KB980195)
6/9/2010 Microsoft .NET Framework 1.1 SP1 Security Update for Windows 2000 and Windows XP (KB979906)
6/9/2010 Security Update for the 2007 Microsoft Office System (KB982312)
6/9/2010 Security Update for Microsoft Office Publisher 2003 (KB982122)
6/9/2010 Security Update for Microsoft Office Word 2003 (KB982134)
6/9/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB983503)
6/9/2010 Security Update for Windows XP (KB979559)
6/9/2010 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB982381)
6/9/2010 Windows Malicious Software Removal Tool - June 2010 (KB890830)
6/9/2010 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP3 (KB978695)
6/9/2010 Security Update for Windows XP (KB979482)
6/9/2010 Security Update for Windows XP (KB975562)
6/9/2010 Microsoft .NET Framework 3.5 SP1 Update for Windows Server 2003 and Windows XP x86 (KB982168)
6/9/2010 Microsoft .NET Framework 3.5 SP1 and .NET Framework 2.0 SP2 Security Update for Windows 2000, Windows Server 2003, and Windows XP x86 (KB979909)
6/9/2010 Security Update for the 2007 Microsoft Office System (KB982331)
6/9/2010 Security Update for Microsoft Office PowerPoint 2003 (KB982157)
6/9/2010 Security Update for Microsoft Office InfoPath 2003 (KB980923)
5/26/2010 Update for Windows XP (KB981793)
5/14/2010 Security Update for Microsoft Office 2003 (KB976382)
5/14/2010 Windows Malicious Software Removal Tool - May 2010 (KB890830)
5/14/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB981725)
5/14/2010 Security Update for Windows XP (KB978542)
4/14/2010 Update for the 2007 Microsoft Office System (KB981715)
4/14/2010 Security Update for Windows XP (KB979683)
4/14/2010 Security Update for Windows XP (KB980232)
4/14/2010 Windows Malicious Software Removal Tool - April 2010 (KB890830)
4/14/2010 Security Update for Windows XP (KB978338)
4/14/2010 Security Update for Windows XP (KB977816)
4/14/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB981432)
4/14/2010 Security Update for Windows XP (KB978601)
4/14/2010 Security Update for Windows XP (KB981332)
4/14/2010 Security Update for Windows XP (KB979309)
4/14/2010 Security Update for Microsoft Office Publisher 2003 (KB980469)
3/31/2010 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB980182)
3/15/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB979771)
3/15/2010 Security Update for Microsoft Office Excel 2003 (KB978474)
3/15/2010 Security Update for Windows XP (KB975561)
3/15/2010 Windows Malicious Software Removal Tool - March 2010 (KB890830)
3/15/2010 Security Update for the 2007 Microsoft Office System (KB978380)
3/9/2010 Security Update for Windows XP (KB977165)
2/24/2010 Update for Windows XP (KB976662)
2/24/2010 Update for Windows XP (KB979306)
2/12/2010 Cumulative Security Update for ActiveX Killbits for Windows XP (KB978262)
2/12/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB977713)
2/12/2010 Security Update for Windows XP (KB971468)
2/12/2010 Windows Malicious Software Removal Tool - February 2010 (KB890830)
2/12/2010 Security Update for Windows XP (KB978037)
2/12/2010 Security Update for Windows XP (KB975713)
2/12/2010 Security Update for Windows XP (KB978251)
2/12/2010 Security Update for Windows XP (KB975560)
2/12/2010 Security Update for Windows XP (KB977914)
2/12/2010 Security Update for Microsoft Office PowerPoint 2003 (KB976881)
2/12/2010 Security Update for Windows XP (KB978706)
1/22/2010 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB978207)
1/13/2010 Update for Windows XP (KB955759)
1/13/2010 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB977840)
1/13/2010 Security Update for Windows XP (KB972270)
1/13/2010 Windows Malicious Software Removal Tool - January 2010 (KB890830)
12/29/2009 Update for Microsoft Office 2003 (KB978551)
12/16/2009 Office Genuine Advantage Notifications (KB949810)
12/11/2009 Update for Windows XP (KB970430)
12/10/2009 Update for Windows XP (KB970430)
12/10/2009 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB976882)
12/10/2009 Security Update for Windows XP (KB974318)
12/10/2009 Security Update for Microsoft Office 2003 (KB975051)
12/10/2009 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB976325)
12/10/2009 Security Update for Windows XP (KB973904)
12/10/2009 Security Update for Windows XP (KB974392)
12/10/2009 Update for Windows XP (KB971737)
12/10/2009 Windows Malicious Software Removal Tool - December 2009 (KB890830)
11/25/2009 Update for Windows XP (KB976098)
11/25/2009 Update for Windows XP (KB973687)
11/25/2009 Update for Internet Explorer 8 for Windows XP (KB976749)
11/25/2009 Update for Microsoft XML Core Services 4.0 Service Pack 2 (KB973688)
11/25/2009 Security Update for Windows XP (KB975467)
11/23/2009 Microsoft .NET Framework 2.0 Service Pack 2 Security Update for Windows 2000, Windows Server 2003, and Windows XP (KB974417)
11/23/2009 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB974455)
11/23/2009 Security Update for Microsoft Office Outlook 2003 (KB973705)
11/23/2009 Security Update for Windows XP (KB958869)
11/23/2009 Security Update for Windows XP (KB969059)
11/23/2009 Security Update for Microsoft Office 2003 (KB974554)
11/23/2009 Security Update for Microsoft Office Excel 2003 (KB973475)
11/23/2009 Security Update for the 2007 Microsoft Office System (KB973704)
11/23/2009 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP 3 (KB954155)
11/23/2009 Windows Malicious Software Removal Tool - November 2009 (KB890830)
11/23/2009 Security Update for Windows XP (KB974112)
11/23/2009 Security Update for Microsoft Office Word 2003 (KB973443)
11/23/2009 Microsoft Office Compatibility Pack Service Pack 2 (SP2)
11/23/2009 Security Update for Windows XP (KB975025)
11/23/2009 Security Update for Windows XP (KB974571)
11/23/2009 Security Update for the 2007 Microsoft Office System (KB972581)
11/23/2009 Security Update for Microsoft Office 2003 (KB972580)
11/23/2009 Microsoft .NET Framework 1.1 Service Pack 1 Security Update for Windows 2000, Windows XP, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 (KB953297)
11/23/2009 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB975958)
11/23/2009 Security Update for Windows XP (KB971486)
11/23/2009 Cumulative Security Update for ActiveX Killbits for Windows XP (KB973525)
11/23/2009 Update for Windows XP (KB968389)
11/23/2009 Security Update for Windows XP (KB969947)
11/23/2009 Windows Update Agent 7.4.7600.226
9/16/2009 Security Update for Windows XP (KB960859)
9/16/2009 Windows Malicious Software Removal Tool - September 2009 (KB890830)
9/16/2009 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP 3 (KB968816)
9/16/2009 Security Update for Microsoft Office Web Components (KB947319)
9/16/2009 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB973515)
9/16/2009 Security Update for Windows XP (KB971657)
9/16/2009 Security Update for Windows XP (KB971557)
9/16/2009 Security Update for Windows XP (KB956744)
9/16/2009 Security Update for Windows XP (KB956844)
9/16/2009 Security Update for Windows XP (KB973869)
9/16/2009 Security Update for Windows XP (KB973507)
9/16/2009 Security Update for Windows XP (KB973354)
9/16/2009 Security Update for Windows XP Service Pack 3 (KB973540)
9/16/2009 Security Update for Windows XP (KB973815)
9/16/2009 Security Update for Jscript 5.8 for Windows XP (KB971961)
9/16/2009 Update for Windows XP (KB970653)
8/8/2009 Update for Windows XP (KB961118)
8/8/2009 Update to .NET Framework 3.5 Service Pack 1 for the .NET Framework Assistant 1.0 x86 (KB963707)
8/7/2009 Microsoft .NET Framework 3.5 Service Pack 1 and .NET Framework 3.5 Family Update for .NET versions 2.0 through 3.5 (KB951847) x86
7/29/2009 Internet Explorer 8 for Windows XP
7/26/2009 Security Update for Windows XP (KB959426)
7/26/2009 Security Update for Microsoft PowerPoint 2003 (KB957784)
7/26/2009 Security Update for the 2007 Microsoft Office System (KB969679)
7/26/2009 Windows Genuine Advantage Notification (KB905474)
7/26/2009 Security Update for the 2007 Microsoft Office System (KB969618)
7/26/2009 Security Update for Windows XP (KB960225)
7/26/2009 Security Update for Microsoft Office Excel 2003 (KB969681)
7/26/2009 Cumulative Security Update for ActiveX Killbits for Windows XP (KB973346)
7/26/2009 Security Update for Windows XP (KB956572)
7/26/2009 Security Update for the 2007 Microsoft Office System (KB969613)
7/26/2009 Security Update for Windows XP (KB961501)
7/26/2009 Security Update for Windows XP (KB938464)
7/26/2009 Security Update for Windows XP (KB971633)
7/26/2009 Security Update for Windows XP (KB952004)
7/26/2009 Update for Windows XP (KB967715)
7/26/2009 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB971931)
7/26/2009 Security Update for Windows XP (KB970238)
7/26/2009 Security Update for Microsoft Office Word 2003 (KB969603)
7/26/2009 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB969897)
7/26/2009 Security Update for Windows XP (KB960803)
7/26/2009 Windows Malicious Software Removal Tool - July 2009 (KB890830)
7/26/2009 Security Update for Windows XP (KB968537)
7/26/2009 Security Update for Windows XP (KB961371)
7/26/2009 Security Update for Windows XP (KB923561)
1/14/2009 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB959140)
1/14/2009 Security Update for Windows XP (KB958687)
1/14/2009 Windows Malicious Software Removal Tool - January 2009 (KB890830)
12/18/2008 Security Update for Internet Explorer 7 for Windows XP (KB960714)
12/11/2008 Security Update for the 2007 Microsoft Office System (KB958439)
12/11/2008 Update for Windows XP (KB955839)
12/11/2008 Security Update for Microsoft Office Excel 2003 (KB958436)
12/11/2008 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB958215)
12/11/2008 Security Update for Microsoft Office Word 2003 (KB956357)
12/11/2008 Security Update for Windows XP Service Pack 3 (KB952069)
12/11/2008 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB958620)
12/11/2008 Security Update for Windows XP (KB954600)
12/11/2008 Security Update for Windows XP (KB956802)
12/11/2008 Security Update for the 2007 Microsoft Office System (KB956828)
11/12/2008 Windows Malicious Software Removal Tool - November 2008 (KB890830)
11/12/2008 Security Update for Microsoft Office 2007 (KB951550)
11/12/2008 Security Update for Windows XP (KB957097)
11/12/2008 Security Update for Microsoft Office 2003 (KB951535)
11/12/2008 Security Update for Windows XP (KB954459)
11/12/2008 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB957832)
11/12/2008 Security Update for Windows XP (KB955069)
11/12/2008 Security Update for Microsoft XML Core Services 4.0 Service Pack 2 (KB954430)
10/24/2008 Security Update for Windows XP (KB958644)
10/15/2008 Security Update for Windows XP (KB956803)
10/15/2008 Cumulative Security Update for ActiveX Killbits for Windows XP (KB956391)
10/15/2008 Security Update for Windows XP (KB957095)
10/15/2008 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB956390)
10/15/2008 Security Update for Microsoft Office Excel 2003 (KB955466)
10/15/2008 Security Update for Windows XP (KB954211)
10/15/2008 Security Update for Windows XP (KB956841)
10/15/2008 Windows Malicious Software Removal Tool - October 2008 (KB890830)
10/15/2008 Security Update for 2007 Microsoft Office System (KB955936)
10/15/2008 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB957257)
9/20/2008 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB953838)
9/18/2008 Update for Windows XP (KB951978)
9/18/2008 Windows XP Service Pack 3 (KB936929)
9/10/2008 Windows Malicious Software Removal Tool - September 2008 (KB890830)
9/10/2008 Security Update for the 2007 Microsoft Office System (KB954326)
9/10/2008 Security Update for Office 2003 (KB954478)
9/10/2008 Security Update for the 2007 Microsoft Office System (KB951944)
9/10/2008 Security Update for Microsoft Office 2003 (KB953404)
9/10/2008 Update for Outlook 2003 Junk E-mail Filter (KB956077)
9/10/2008 Security Update for Windows XP (KB938464)
8/23/2008 Microsoft Office Compatibility Pack Service Pack 1 (SP1)
8/21/2008 Microsoft Office Compatibility Pack Service Pack 1 (SP1)
8/21/2008 Windows XP Service Pack 3 (KB936929)
8/21/2008 Windows Update Agent 7.2.6001.784
8/13/2008 Security Update for Windows XP (KB952954)
8/13/2008 Security Update for Windows XP (KB946648)
8/13/2008 Cumulative Security Update for ActiveX Killbits for Windows XP (KB953839)
8/13/2008 Security Update for Windows XP (KB950974)
8/13/2008 Security Update for Microsoft Office Word 2003 (KB954464)
8/13/2008 Windows Malicious Software Removal Tool - August 2008 (KB890830)
8/13/2008 Security Update for 2007 Microsoft Office System (KB954038)
8/13/2008 Security Update for 2007 Microsoft Office System (KB951596)
8/13/2008 Update for Windows XP (KB951072)
8/13/2008 Update for Windows XP (KB952287)
8/13/2008 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB953838)
8/13/2008 Security Update for Outlook Express for Windows XP (KB951066)
8/13/2008 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB955434)
8/13/2008 Security Update for Microsoft Office PowerPoint 2003 (KB948988)
8/13/2008 Security Update for Microsoft Office 2003 (KB921598)
8/13/2008 Security Update for Access Snapshot Viewer 2003 (KB955439)
8/13/2008 Security Update for Microsoft Office Excel 2003 (KB951548)
7/10/2008 Windows Malicious Software Removal Tool - July 2008 (KB890830)
7/9/2008 Update for Microsoft Office Outlook 2003 (KB953432)
7/9/2008 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB953465)
7/9/2008 Security Update for Windows XP (KB951748)
6/26/2008 Security Update for the 2007 Microsoft Office System (KB947801)
6/26/2008 Security Update for Microsoft Office system 2007 (KB951808)
6/26/2008 Security Update for the 2007 Microsoft Office System (KB936960)
6/26/2008 Windows Genuine Advantage Validation Tool (KB892130)
6/20/2008 Security Update for Windows XP (KB951376)
6/11/2008 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB950759)
6/11/2008 Windows Malicious Software Removal Tool - June 2008 (KB890830)
6/11/2008 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB951476)
6/11/2008 Security Update for Windows XP (KB951698)
6/11/2008 Security Update for Windows XP (KB950762)
6/11/2008 Cumulative Security Update for ActiveX Killbits for Windows XP (KB950760)
6/11/2008 Security Update for Windows XP (KB951376)
5/28/2008 Update for Windows XP (KB932823)
5/16/2008 Windows Malicious Software Removal Tool - May 2008 (KB890830)
5/15/2008 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB950380)
5/15/2008 Security Update for Microsoft Office Publisher 2003 (KB950213)
5/15/2008 Security Update for Microsoft Office Word 2003 (KB950241)
5/15/2008 Security Update for Windows XP (KB950749)
4/13/2008 Office 2003 Service Pack 3 (SP3)
4/12/2008 Microsoft .NET Framework 2.0 Service Pack 1 (KB110806)
4/9/2008 Security Update for ActiveX Killbits for Windows XP (KB948881)
4/9/2008 Security Update for Windows XP (KB941693)
4/9/2008 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB947864)
4/9/2008 Update for Microsoft Outlook Junk Email Filter 2003 (KB949044)
4/9/2008 Security Update for Windows XP (KB948590)
4/9/2008 Windows Malicious Software Removal Tool - April 2008 (KB890830)
4/9/2008 Security Update for Windows XP (KB945553)
3/20/2008 Security Update for Microsoft Office Excel 2003 (KB943985) v2
3/12/2008 Security Update for Microsoft Office Excel 2003 (KB943985)
3/12/2008 Security Update for Microsoft Office 2003 (KB947355)
3/12/2008 Security Update for Microsoft Office Outlook 2003 (KB945432)
3/12/2008 Windows Malicious Software Removal Tool - March 2008 (KB890830)
3/12/2008 Update for Microsoft Office Outlook 2003 Junk Email Filter (KB947944)
2/14/2008 Security Update for Microsoft Works Suite 2005 (KB943973)
2/13/2008 Windows Malicious Software Removal Tool - February 2008 (KB890830)
2/13/2008 Security Update for Windows XP (KB946026)
2/13/2008 Security Update for Microsoft Office Publisher 2003 (KB946254)
2/13/2008 Update for Outlook Junk Email Filter 2003 (KB944941)
2/13/2008 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB944533)
2/13/2008 Security Update for Office 2003 (KB945185)
2/13/2008 Security Update for Microsoft Office Word 2003 (KB943983)
2/13/2008 Security Update for Windows XP (KB943055)
1/10/2008 Windows Malicious Software Removal Tool - January 2008 (KB890830)
1/10/2008 Security Update for Windows XP (KB941644)
1/10/2008 Security Update for Windows XP (KB943485)
12/12/2007 Security Update for Windows XP (KB937894)
12/12/2007 Update for Outlook Junk Email Filter 2003 (KB943591)
12/12/2007 Windows Malicious Software Removal Tool - December 2007 (KB890830)
12/12/2007 Update for Windows XP (KB942763)
12/12/2007 Security Update for Windows XP (KB941569)
12/12/2007 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB942615)
12/12/2007 Security Update for Windows XP (KB941568)
12/12/2007 Update for Outlook 2003 (KB943649)
12/12/2007 Security Update for Windows XP (KB944653)
11/14/2007 Security Update for Windows XP (KB943460)
11/14/2007 Update for Outlook Junk Email Filter 2003 (KB943552)
11/14/2007 Windows Malicious Software Removal Tool - November 2007 (KB890830)
10/19/2007 Office 2003 Service Pack 3 (SP3)
10/11/2007 Windows Malicious Software Removal Tool - October 2007 (KB890830)
10/11/2007 Security Update for Windows XP (KB933729)
10/11/2007 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB939653)
10/11/2007 Security Update for Outlook Express for Windows XP (KB941202)
10/11/2007 Update for Outlook Junk Email Filter 2003 (KB942571)
9/19/2007 Update for Outlook 2003 Junk Email Filter (KB936677)
9/13/2007 Windows Malicious Software Removal Tool - September 2007 (KB890830)
8/29/2007 Update for Windows XP (KB933360)
8/15/2007 Security Update for Excel 2003 (KB940602)
8/15/2007 Update for Outlook Junk Email Filter 2003 (KB936643)
8/15/2007 Security Update for Windows XP (KB936021)
8/15/2007 Update for Windows XP (KB938828)
8/15/2007 Security Update for Office 2003 (KB936048)
8/15/2007 Security Update for Windows XP (KB921503)
8/15/2007 Security Update for Windows XP (KB938829)
8/15/2007 Windows Malicious Software Removal Tool - August 2007 (KB890830)
8/15/2007 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB937143)
8/15/2007 Security Update for Internet Explorer 7 for Windows XP (KB938127)
8/15/2007 Security Update for Microsoft XML Core Services 4.0 Service Pack 2 (KB936181)
8/15/2007 Security Update for Windows Media Player 10 for Windows XP (KB936782)
7/11/2007 Update for Outlook 2003 Junk Email Filter (KB936557)
7/11/2007 Windows Malicious Software Removal Tool - July 2007 (KB890830)
7/11/2007 Update for Windows XP (KB936357)
7/11/2007 Security Update for Excel 2003 (KB936507)
7/11/2007 Security Update for Microsoft .NET Framework, Version 1.1 Service Pack 1 (KB928366)
7/11/2007 Security Update for Microsoft .NET Framework, Version 2.0 (KB928365)
6/13/2007 Update for Outlook 2003 Junk Email Filter (KB936030)
6/13/2007 Cumulative Security Update for Outlook Express for Windows XP (KB929123)
6/13/2007 Security Update for Windows XP (KB935840)
6/13/2007 Windows Malicious Software Removal Tool - June 2007 (KB890830)
6/13/2007 Security Update for Windows XP (KB935839)
6/13/2007 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB933566)
5/23/2007 Update for Windows XP (KB927891)
5/9/2007 Update for Outlook 2003 Junk Email Filter (KB934708)
5/9/2007 Security Update for Office 2003 (KB934180)
5/9/2007 Security Update for CAPICOM (KB931906)
5/9/2007 Security Update for Word 2003 (KB934181)
5/9/2007 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB931768)
5/9/2007 Security Update for Excel 2003 (KB933666)
5/9/2007 Update for Windows XP (KB930916)
5/9/2007 Windows Malicious Software Removal Tool - May 2007 (KB890830)
5/9/2007 Update for PowerPoint 2003 (KB933669)
4/13/2007 Windows Malicious Software Removal Tool - April 2007 (KB890830)
4/11/2007 Security Update for Windows XP (KB931784)
4/11/2007 Security Update for Windows XP (KB931261)
4/11/2007 Update for Outlook 2003 Junk Email Filter (KB932330)
4/11/2007 Security Update for Windows XP (KB930178)
4/11/2007 Security Update for Windows XP (KB932168)
4/4/2007 Security Update for Windows XP (KB925902)
3/26/2007 Windows Genuine Advantage Notification (KB905474)
3/20/2007 Windows Genuine Advantage Notification (KB905474)
3/14/2007 Windows Malicious Software Removal Tool - March 2007 (KB890830)
3/14/2007 Update for Windows XP (KB929338)
3/14/2007 Update for Outlook 2003 Junk Email Filter (KB931764)
2/18/2007 Security Update for Windows XP (KB927779)
2/18/2007 Security Update for Windows XP (KB927802)
2/18/2007 Update for Outlook 2003 Junk Email Filter (KB924885)
2/18/2007 Security Update for Windows XP (KB928255)
2/18/2007 Security Update for Windows (KB923723)
2/18/2007 Security Update for Office 2003 (KB929064)
2/18/2007 Security Update for Windows XP (KB924667)
2/18/2007 Update for Windows XP (KB931836)
2/18/2007 Security Update for Windows XP (KB926436)
2/18/2007 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB928090)
2/18/2007 Update for PowerPoint 2003 (KB929060)
2/18/2007 Update for Office 2003 (KB925251)
2/18/2007 Security Update for Windows XP (KB918118)
2/18/2007 Security Update for Word 2003 (KB929057)
2/18/2007 Update for Excel 2003 (KB929058)
2/18/2007 Windows Malicious Software Removal Tool - February 2007 (KB890830)
2/18/2007 Security Update for Office 2003 (KB920813)
2/18/2007 Security Update for Windows XP (KB928843)
1/10/2007 Security Update for Outlook 2003 (KB924085)
1/10/2007 Windows Malicious Software Removal Tool - January 2007 (KB890830)
1/10/2007 Security Update for Internet Explorer 7 for Windows XP (KB929969)
1/10/2007 Update for Outlook 2003 Junk Email Filter (KB925534)
1/10/2007 Security Update for Excel 2003 (KB925257)
12/16/2006 Security Update for Windows Media Player 6.4 (KB925398)
12/16/2006 Update for Outlook 2003 Junk Email Filter (KB925254)
12/16/2006 Security Update for Windows XP (KB923689)
12/16/2006 Security Update for Windows XP (KB926255)
12/16/2006 Cumulative Security Update for Outlook Express for Windows XP (KB923694)
12/16/2006 Windows Malicious Software Removal Tool - December 2006 (KB890830)
11/21/2006 Windows Internet Explorer 7.0 for Windows XP
11/15/2006 Update for Office 2003 (KB919029)
11/15/2006 Security Update for Windows XP (KB923980)
11/15/2006 Security Update for Windows XP (KB924270)
11/15/2006 Windows Malicious Software Removal Tool - November 2006 (KB890830)
11/15/2006 MSXML 4.0 SP2 Security Update (KB927978)
11/15/2006 Update for Outlook Junk Email Filter 2003 (KB921587)
11/15/2006 Security Update for Windows XP (KB920213)
11/15/2006 Cumulative Security Update for Internet Explorer for Windows XP (KB922760)
10/17/2006 Security Update for Office 2003 (KB924424)
10/17/2006 Update for Outlook 2003 (KB913807)
10/17/2006 Security Update for PowerPoint 2003 (KB923091)
10/17/2006 Security Update for Office 2003 (KB923272)
10/17/2006 Security Update for Office 2003 (KB914455)
10/17/2006 Update for InfoPath 2003 (KB920103)
10/17/2006 Update for Office 2003 (KB923097)
10/17/2006 Security Update for Publisher 2003 (KB894542)
10/17/2006 Security Update for Excel 2003 (KB923088)
10/17/2006 Security Update for Word 2003 (KB923094)
10/16/2006 Office 2003 Service Pack 2
10/14/2006 Update for Outlook Junk Email Filter 2003 (KB923095)
10/14/2006 Update for Office 2003 (KB907417)
10/14/2006 MSXML 4.0 SP2 Security Update (925672)
10/12/2006 Security Update for Windows XP (KB924191)
10/12/2006 Security Update for Windows XP (KB922819)
10/12/2006 Security Update for Windows XP (KB923414)
10/12/2006 Security Update for Windows XP (KB924496)
10/12/2006 Security Update for Microsoft .NET Framework, Version 2.0 (KB922770)
10/12/2006 Security Update for Windows XP (KB923191)
10/12/2006 Windows Malicious Software Removal Tool - October 2006 (KB890830)
9/27/2006 Security Update for Windows XP (KB925486)
9/15/2006 Security Update for Windows XP (KB920685)
9/15/2006 Update for Windows XP (KB920872)
9/15/2006 Security Update for Windows XP (KB919007)
9/15/2006 Update for Windows XP (KB922582)
9/15/2006 Windows Malicious Software Removal Tool - September 2006 (KB890830)
8/9/2006 Security Update for Outlook Express for Windows XP (KB920214)
8/9/2006 Security Update for Windows XP (KB921883)
8/9/2006 Security Update for Windows XP (KB922616)
8/9/2006 Security Update for Windows XP (KB921398)
8/9/2006 Cumulative Security Update for Internet Explorer for Windows XP (KB918899)
8/9/2006 Security Update for Windows XP (KB920670)
8/9/2006 Security Update for Windows XP (KB917422)
8/9/2006 Windows Malicious Software Removal Tool - August 2006 (KB890830)
8/9/2006 Security Update for Windows XP (KB920683)
7/14/2006 Security Update for Microsoft .NET Framework, Version 2.0 (KB917283)
7/14/2006 Security Update for Windows XP (KB917159)
7/14/2006 Security Update for Windows XP (KB914388)
7/14/2006 Update for Windows XP (KB916595)
7/14/2006 Windows Malicious Software Removal Tool - July 2006 (KB890830)
7/8/2006 Windows Genuine Advantage Notification (KB905474)
6/15/2006 Windows Genuine Advantage Notification (KB905474)
6/14/2006 Security Update for Windows Media Player 10 for Windows XP (KB917734)
6/14/2006 Windows Malicious Software Removal Tool - June 2006 (KB890830)
6/14/2006 Security Update for Windows XP (KB918439)
6/14/2006 Security Update for Windows XP (KB917344)
6/14/2006 Security Update for Windows XP (KB917953)
6/14/2006 Security Update for Windows XP (KB911280)
6/14/2006 Cumulative Security Update for Internet Explorer for Windows XP (KB916281)
6/14/2006 Security Update for Windows XP (KB914389)
5/10/2006 Windows Malicious Software Removal Tool - May 2006 (KB890830)
5/10/2006 Security Update for Windows XP (KB913580)
4/26/2006 Update for Windows XP (KB900485)
4/26/2006 Security Update for Windows XP (KB908531)
4/15/2006 Security Update for Windows XP (KB908531)
4/15/2006 Security Update for Windows XP (KB911562)
4/15/2006 Windows Malicious Software Removal Tool - April 2006 (KB890830)
4/15/2006 Cumulative Security Update for Internet Explorer for Windows XP (KB912812)
4/15/2006 Security Update for Windows Media Player 10 for Windows XP (KB911565)
4/15/2006 Cumulative Security Update for Outlook Express for Windows XP (KB911567)
3/16/2006 Windows Malicious Software Removal Tool - March 2006 (KB890830)
2/17/2006 Security Update for Windows XP (KB911927)
2/17/2006 Security Update for Windows Media Player Plug-in (KB911564)
2/17/2006 Security Update for Windows Media Player 10 for Windows XP (KB911565)
2/17/2006 Security Update for Windows XP (KB901190)
2/17/2006 Security Update for Windows XP (KB913446)
2/17/2006 Windows Malicious Software Removal Tool - February 2006 (KB890830)
2/16/2006 Security Update for Windows XP (KB911927)
2/16/2006 Security Update for Windows XP (KB913446)
2/16/2006 Security Update for Windows Media Player 10 for Windows XP (KB911565)
2/16/2006 Windows Malicious Software Removal Tool - February 2006 (KB890830)
2/16/2006 Security Update for Windows XP (KB901190)
2/16/2006 Security Update for Windows Media Player Plug-in (KB911564)
2/4/2006 Update for WMDRM-enabled Media Players (KB902344)
1/12/2006 Windows Malicious Software Removal Tool - January 2006 (KB890830)
1/12/2006 Security Update for Windows XP (KB908519)
1/6/2006 Security Update for Windows XP (KB912919)
12/31/2005 Microsoft .NET Framework 2.0: x86 (KB829019)
12/31/2005 Windows Media Connect 2.0 (KB909993)
12/31/2005 Microsoft Base Smart Card Cryptographic Service Provider Package: x86 (KB909520)
12/31/2005 Update for WMDRM-enabled Media Players (KB891122)
12/31/2005 Update for Windows XP (KB900930)
12/31/2005 Update for Windows XP (KB896344)
12/31/2005 Cumulative Update for Outlook Express for Windows XP (KB887797)
12/31/2005 Update for Windows XP HighMAT Support in CD Writing Wizard (KB831240)
12/17/2005 Cumulative Security Update for Internet Explorer for Windows XP (KB905915)
12/15/2005 Update for Windows XP (KB910437)
12/15/2005 Windows Malicious Software Removal Tool - December 2005 (KB890830)
12/15/2005 Cumulative Security Update for Internet Explorer for Windows XP (KB905915)
11/9/2005 Windows Malicious Software Removal Tool - November 2005 (KB890830)
11/9/2005 Security Update for Windows XP (KB896424)
10/19/2005 Windows Malicious Software Removal Tool - October 2005 (KB890830)
10/19/2005 Security Update for Windows XP (KB901017)
10/19/2005 Security Update for Windows XP (KB902400)
10/19/2005 Cumulative Security Update for Internet Explorer for Windows XP (KB896688)
10/19/2005 Security Update for Windows XP (KB899589)
10/19/2005 Security Update for Windows XP (KB905414)
10/19/2005 Security Update for Windows XP (KB900725)
10/19/2005 Security Update for Windows XP (KB904706)
10/19/2005 Security Update for Windows XP (KB905749)
10/14/2005 Cumulative Security Update for Internet Explorer for Windows XP (KB896688)
10/8/2005 Windows Malicious Software Removal Tool - September 2005 (KB890830)
9/14/2005 Windows Malicious Software Removal Tool - September 2005 (KB890830)
8/13/2005 Security Update for Windows XP (KB899587)
8/13/2005 Security Update for Windows XP (KB899591)
8/13/2005 Security Update for Windows XP (KB893756)
8/13/2005 Security Update for Windows XP (KB896423)
8/13/2005 Cumulative Security Update for Internet Explorer for Windows XP (KB896727)
8/13/2005 Windows Malicious Software Removal Tool - August 2005 (KB890830)
8/13/2005 Security Update for Windows XP (KB899588)
8/13/2005 Windows Genuine Advantage Validation Tool (KB892130)
7/13/2005 Windows Malicious Software Removal Tool - July 2005 (KB890830)
7/13/2005 Security Update for Windows XP (KB901214)
7/13/2005 Security Update for JView Profiler (KB903235)
6/29/2005 Update for Windows XP (KB898461)
6/15/2005 Security Update for Windows XP (KB896422)
6/15/2005 Cumulative Security Update for Internet Explorer for Windows XP Service Pack 2 (KB883939)
6/15/2005 Security Update for Windows XP (KB896358)
6/15/2005 Windows Malicious Software Removal Tool - June 2005 (KB890830)
6/15/2005 Security Update for Microsoft Windows (KB898458)
6/15/2005 Security Update for Windows XP (KB890046)
6/15/2005 Security Update for Windows XP (KB893066)
6/15/2005 Security Update for Windows XP (KB896428)
5/19/2005 Microsoft Windows Installer 3.1
5/11/2005 Windows Malicious Software Removal Tool - May 2005 (KB890830)
4/13/2005 Windows Malicious Software Removal Tool - April 2005 (KB890830)
4/13/2005 Security Update for Windows XP (KB893066)
4/13/2005 Cumulative Security Update for Internet Explorer for Windows XP Service Pack 2 (KB890923)
4/13/2005 Security Update for Windows XP (KB893086)
4/13/2005 Security Update for Windows XP (KB890859)
4/13/2005 Microsoft Windows Installer 3.1
3/27/2005 Critical Update for IntelliType Pro and IntelliPoint on Windows XP (KB834840)
3/11/2005 Windows Malicious Software Removal Tool - March 2005 (KB890830)
2/25/2005 Update for Windows XP (KB887742)
2/10/2005 Windows Malicious Software Removal Tool - February 2005 (KB890830)
2/10/2005 Security Update for Windows XP (KB885250)
2/10/2005 Security Update for Windows XP (KB888113)
2/10/2005 Security Update for Windows Messenger (KB887472)
2/10/2005 Security Update for Windows XP (KB891781)
2/10/2005 Cumulative Security Update for Internet Explorer for Windows XP (KB867282)
2/10/2005 Security Update for Windows XP (KB873333)
2/10/2005 Security Update for Windows XP (KB890047)
2/10/2005 Security Update for Windows XP (KB888302)
2/10/2005 Security Update for Microsoft .NET Framework, Version 1.1 Service Pack 1 (KB886903)
1/22/2005 Microsoft .NET Framework 1.1 Service Pack 1
1/13/2005 Malicious Software Removal Tool - January 2005 (KB890830)
1/13/2005 Security Update for Windows XP (KB890175)
12/15/2004 Security Update for Windows XP (KB885836)
12/15/2004 Security Update for Windows XP (KB873339)
12/15/2004 Critical Update for Windows XP (KB886185)
12/15/2004 Security Update for Windows XP (KB885835)
10/15/2004 Cumulative Security Update for Internet Explorer for Windows XP Service Pack 2 (KB834707)
10/13/2004 Windows XP Service Pack 2
10/13/2004 Cumulative Security Update for Internet Explorer 6 Service Pack 1 (KB834707)
10/13/2004 Security Update for Windows XP (KB840987)
8/11/2004 Mydoom, Zindos, and Doomjuice Worm Removal Tool (KB836528)
7/31/2004 Cumulative Security Update for Internet Explorer 6 Service Pack 1 (KB867801)
7/14/2004 Security Update for Windows XP (KB839645)
7/14/2004 Security Update for Windows XP (KB841873)
7/14/2004 Security Update for Windows XP (KB840315)
7/14/2004 Update for Background Intelligent Transfer Service (BITS) 2.0 and WinHTTP 5.1 (KB842773)
7/14/2004 Cumulative Security Update for Outlook Express 6 SP1 (KB823353)
7/6/2004 Security Update for DirectX 9.0 (KB839643)
7/6/2004 Critical Update for ADODB.stream (KB870669)
6/1/2004 Security Update for Windows XP (KB840374)
4/15/2004 Security Update for Windows XP (KB835732)
4/15/2004 Security Update for Windows XP (KB828741)
4/15/2004 Security Update for Windows XP (KB837001)
4/15/2004 Critical Update for Internet Explorer 6 Service Pack 1 (KB831167)
4/15/2004 Cumulative Security Update for Outlook Express 6 Service Pack 1 (KB837009)
3/18/2004 Security Update for Windows XP (KB824146)
3/18/2004 Security Update for Microsoft Windows (KB824141)
3/18/2004 Security Update for Microsoft Windows (KB823182)
3/18/2004 Security Update for Microsoft Windows (KB824105)
3/18/2004 Update Rollup 1 for Microsoft Windows XP (KB826939)
3/18/2004 Critical Update for Windows Media Player Script Commands (KB828026)
3/18/2004 Security Update for Microsoft Windows XP (KB825119)
3/18/2004 Security Update for Microsoft Windows XP (KB828035)
3/18/2004 Security Update for Windows XP (KB828028)
3/18/2004 Security Update for Microsoft Data Access Components (KB832483)
3/18/2004 Cumulative Security Update for Internet Explorer 6 Service Pack 1 (KB832894)
2/28/2004 Windows Update Agent 7.2.6001.784
2/23/2004 Windows Malicious Software Removal Tool - December 2008 (KB890830)
8/12/2003 820291: Recommended Update (Windows XP)
8/5/2003 NVIDIA Display Driver Version 4.4.0.3
8/1/2003 Q327405: Recommended Update (Windows XP Professional)
8/1/2003 Q322011: Recommended Update
8/1/2003 814995: Recommended Update
8/1/2003 Recommended Update for Windows XP SP1 (817778)
8/1/2003 DirectX 9.0b End-User Runtime
8/1/2003 329170: Security Update
8/1/2003 811630: Critical Update (Windows XP)
8/1/2003 Q323255: Security Update (Windows XP)
8/1/2003 814078: Security Update (Microsoft Jscript version 5.6, Windows 2000, Windows XP)
8/1/2003 817787: Security Update Windows Media Player for XP
8/1/2003 817606: Security Update (Windows XP)
8/1/2003 823559: Security Update for Microsoft Windows
8/1/2003 Security Update for Windows XP (823980)
8/1/2003 810577: Security Update
8/1/2003 810833: Security Update (Windows XP)
8/1/2003 810565: Critical Update
8/1/2003 328310: Security Update
8/1/2003 Q329115: Security Update (Windows XP)
8/1/2003 Q329390: Security Update
8/1/2003 Security Update for Windows XP (329834)
8/1/2003 814033: Critical Update
8/1/2003 Q329441: Critical Update
8/1/2003 Security Update for Windows XP (815021)
8/1/2003 816093: Security Update Microsoft Virtual Machine (Microsoft VM)
8/1/2003 Q817287: Critical Update (Catalog Database Corruption in Microsoft Windows XP)
8/1/2003 811493: Security Update (Windows XP)
8/1/2003 Security Update for Microsoft Windows (819696)
8/1/2003 821557: Security Update (Windows XP)
8/1/2003 330994: April 2003, Security Update for Outlook Express 6 SP1
8/1/2003 818529: June 2003, Cumulative Patch for Internet Explorer 6 Service Pack 1
Battery
AC line Online
Battery full time Unknown
Battery Charge % Unknown
Battery State No Battery
Amount of time remaining (sec) Unknown
Services
Running Acronis Scheduler2 Service
Running Apple Mobile Device
Running Automatic Updates
Running Background Intelligent Transfer Service
Running Bonjour Service
Running COM+ Event System
Running Computer Browser
Running CryptSvc
Running DCOM Server Process Launcher
Running DHCP Client
Running Distributed Link Tracking Client
Running DNS Client
Running Error Reporting Service
Running Event Log
Running Help and Support
Running HID Input Service
Running HP CUE DeviceDiscovery Service
Running HP Network Devices Support
Running hpqcxs08
Running iPod Service
Running IPSEC Services
Running Java Quick Starter
Running Logical Disk Manager
Running Machine Debug Manager
Running Microsoft Antimalware Service
Running Net Driver HPZ12
Running Network Connections
Running Network Location Awareness (NLA)
Running Plug and Play
Running Pml Driver HPZ12
Running Print Spooler
Running Protected Storage
Running Remote Access Connection Manager
Running Remote Procedure Call (RPC)
Running Rio MSC Manager
Running Secondary Logon
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running SSDP Discovery Service
Running SupportSoft Sprocket Service (dellsupportcenter)
Running System Event Notification
Running System Restore Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Telephony
Running Terminal Services
Running Themes
Running WebClient
Running Windows Audio
Running Windows Firewall/Internet Connection Sharing (ICS)
Running Windows Image Acquisition (WIA)
Running Windows Management Instrumentation
Running Windows Time
Running Workstation
Stopped .NET Runtime Optimization Service v2.0.50727_X86
Stopped Alerter
Stopped Application Layer Gateway Service
Stopped Application Management
Stopped ASP.NET State Service
Stopped ClipBook
Stopped COM+ System Application
Stopped Distributed Transaction Coordinator
Stopped DSBrokerService
Stopped Extensible Authentication Protocol Service
Stopped Fast User Switching Compatibility
Stopped Health Key and Certificate Management Service
Stopped HTTP SSL
Stopped IMAPI CD-Burning COM Service
Stopped Indexing Service
Stopped InstallDriver Table Manager
Stopped Intel NCS NetService
Stopped Logical Disk Manager Administrative Service
Stopped Messenger
Stopped MS Software Shadow Copy Provider
Stopped Net Logon
Stopped Net.Tcp Port Sharing Service
Stopped NetMeeting Remote Desktop Sharing
Stopped Network Access Protection Agent
Stopped Network DDE
Stopped Network DDE DSDM
Stopped Network Provisioning Service
Stopped NT LM Security Support Provider
Stopped NVIDIA Display Driver Service
Stopped Office Source Engine
Stopped Performance Logs and Alerts
Stopped Portable Media Serial Number Service
Stopped QoS RSVP
Stopped Remote Access Auto Connection Manager
Stopped Remote Desktop Help Session Manager
Stopped Remote Procedure Call (RPC) Locator
Stopped Remote Registry
Stopped Removable Storage
Stopped Routing and Remote Access
Stopped Smart Card
Stopped Telnet
Stopped Uninterruptible Power Supply
Stopped Universal Plug and Play Device Host
Stopped Volume Shadow Copy
Stopped Windows CardSpace
Stopped Windows Installer
Stopped Windows Management Instrumentation Driver Extensions
Stopped Windows Media Connect Service
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows User Mode Driver Framework
Stopped Wired AutoConfig
Stopped Wireless Zero Configuration
Stopped WMI Performance Adapter
Device Tree
ACPI Multiprocessor PC
Microsoft ACPI-Compliant System
ACPI Power Button
Intel® Pentium® 4 CPU 2.60GHz
System board
ACPI Fixed Feature Button
PCI bus
Intel® 82875P Memory Controller Hub - 2578
Intel® 82801EB Ultra ATA Storage Controllers
Intel® 82801EB SMBus Controller - 24D3
SoundMAX Integrated Digital Audio
Extended IO Bus
Intel® 82875P Processor to AGP Controller - 2579
NVIDIA GeForce4 MX 440 with AGP8X
Plug and Play Monitor
Intel® 82801EB USB Universal Host Controller - 24D2
USB Root Hub
Intel® 82801EB USB Universal Host Controller - 24D4
USB Root Hub
USB Human Interface Device
HID-compliant mouse
Intel® 82801EB USB Universal Host Controller - 24D7
USB Root Hub
Intel® 82801EB USB Universal Host Controller - 24DE
USB Root Hub
Standard Enhanced PCI to USB Host Controller
USB Root Hub
Intel® 82801EB PCI Bridge - 244E
Intel® PRO/100 VE Network Connection
Conexant SmartHSFi V92 56K Speakerphone PCI Modem
Unimodem Half-Duplex Audio Device
Intel® 82801EB LPC Interface Controller - 24D0
ISAPNP Read Data Port
Direct memory access controller
Numeric data processor
Programmable interrupt controller
System speaker
System CMOS/real time clock
System timer
Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Communications Port (COM1)
System board
Standard floppy disk controller
Floppy disk drive
ECP Printer Port (LPT1)
Printer Port Logical Interface
Intel® 82801EB Ultra ATA Storage Controllers
Primary IDE Channel
IC35L060AVV207-0
Generic volume
Generic volume
WDC WD5000AAKB-00H8A0
Generic volume
Generic volume
Generic volume
Secondary IDE Channel
SAMSUNG DVD-ROM SD-616T
SAMSUNG CD-R/RW SW-248F
CPU
Intel Pentium 4
Cores 1
Threads 1
Name Intel Pentium 4
Code Name Northwood
Package Socket 478 mPGA
Technology 0.13um
Specification Intel® Pentium® 4 CPU 2.60GHz
Family F
Extended Family F
Model 2
Extended Model 2
Stepping 9
Revision D1
Instructions MMX, SSE, SSE2
Virtualization Unsupported
Hyperthreading Not supported
Bus Speed 199.5 MHz
Rated Bus Speed 798.0 MHz
Stock Core Speed 2600 MHz
Stock Bus Speed 200 MHz
Caches
L1 Data Cache Size 8 KBytes
L1 trace cache 12 Kuops
L2 Unified Cache Size 512 KBytes
Core 0
Core Speed 2593.6 MHz
Multiplier x 13.0
Bus Speed 199.5 MHz
Rated Bus Speed 798.0 MHz
Thread 1
APIC ID 0
RAM
Memory slots
Total memory slots 4
Used memory slots 4
Free memory slots 0
Memory
Type DDR
Size 1536 MBytes
Channels # Dual
DRAM Frequency 199.5 MHz
CAS# Latency (CL) 3 clocks
RAS# to CAS# Delay (tRCD) 3 clocks
RAS# Precharge (tRP) 3 clocks
Cycle Time (tRAS) 8 clocks
Physical Memory
Memory Usage 39 %
Total Physical 1.50 GB
Available Physical 934 MB
Total Virtual 2.00 GB
Available Virtual 1.91 GB
SPD
Number Of SPD Modules 4
Slot #1
Type DDR
Size 256 MBytes
Manufacturer Samsung
Max Bandwidth PC3200 (200 MHz)
Part Number M3 68L3223ETM-CCC
Serial Number 06099164
Week/year 39 / 03
SPD Ext. EPP
JEDEC #2
Frequency 200.0 MHz
CAS# Latency 3.0
RAS# To CAS# 3
RAS# Precharge 3
tRAS 8
Voltage 2.500 V
JEDEC #1
Frequency 166.7 MHz
CAS# Latency 2.5
RAS# To CAS# 3
RAS# Precharge 3
tRAS 7
Voltage 2.500 V
Slot #2
Type DDR
Size 512 MBytes
Manufacturer MOSEL
Max Bandwidth PC3200 (200 MHz)
Part Number V826664K24SCIW-D3
Serial Number 4E3C3C03
Week/year 53 / 07
SPD Ext. EPP
JEDEC #3
Frequency 200.0 MHz
CAS# Latency 3.0
RAS# To CAS# 3
RAS# Precharge 3
tRAS 8
Voltage 2.500 V
JEDEC #2
Frequency 166.7 MHz
CAS# Latency 2.5
RAS# To CAS# 3
RAS# Precharge 3
tRAS 7
Voltage 2.500 V
JEDEC #1
Frequency 133.3 MHz
CAS# Latency 2.0
RAS# To CAS# 2
RAS# Precharge 2
tRAS 6
Voltage 2.500 V
Slot #3
Type DDR
Size 256 MBytes
Manufacturer Samsung
Max Bandwidth PC3200 (200 MHz)
Part Number M3 68L3223ETM-CCC
Serial Number 06089258
Week/year 39 / 03
SPD Ext. EPP
JEDEC #2
Frequency 200.0 MHz
CAS# Latency 3.0
RAS# To CAS# 3
RAS# Precharge 3
tRAS 8
Voltage 2.500 V
JEDEC #1
Frequency 166.7 MHz
CAS# Latency 2.5
RAS# To CAS# 3
RAS# Precharge 3
tRAS 7
Voltage 2.500 V
Slot #4
Type DDR
Size 512 MBytes
Manufacturer MOSEL
Max Bandwidth PC3200 (200 MHz)
Part Number V826664K24SCIW-D3
Serial Number 3A3A3C04
Week/year 53 / 07
SPD Ext. EPP
JEDEC #3
Frequency 200.0 MHz
CAS# Latency 3.0
RAS# To CAS# 3
RAS# Precharge 3
tRAS 8
Voltage 2.500 V
JEDEC #2
Frequency 166.7 MHz
CAS# Latency 2.5
RAS# To CAS# 3
RAS# Precharge 3
tRAS 7
Voltage 2.500 V
JEDEC #1
Frequency 133.3 MHz
CAS# Latency 2.0
RAS# To CAS# 2
RAS# Precharge 2
tRAS 6
Voltage 2.500 V
Motherboard
Manufacturer Dell Computer Corp.
Model 0G0728
Chipset Vendor Intel
Chipset Model i875P
Chipset Revision A2
Southbridge Vendor Intel
Southbridge Model 82801EB (ICH5)
Southbridge Revision 02
BIOS
Brand Dell Computer Corporation
Version A05
Date 02/23/2004
PCI Data
1. PCI Available
2. PCI Available
3. PCI Available
4. PCI Available
Graphics
Monitor
Name SDM-HS95P on NVIDIA GeForce4 MX 440 with AGP8X
Current Resolution 1024x768 pixels
Work Resolution 1024x738 pixels
State enabled, primary, output devices support
Monitor Width 1024
Monitor Height 768
Monitor BPP 32 bits per pixel
Monitor Frequency 75 Hz
Device \\.\DISPLAY1\Monitor0
GeForce4 MX 440 with AGP8X
GPU NV18
Device ID 10DE-0181
Revision A3
Subvendor nVidia (10DE)
Current Performance Level Level 1
Technology 151 nm
Transistors 29 M
Release Date Oct 2002
DirectX Support 7.0
OpenGL Support 1.2
Bus Interface AGP
AGP Aperture 128 MB
AGP Rate 8x
GPU Clock 275 MHz
Memory Clock 400 MHz
Driver nv4_disp.dll
Driver version 6.14.10.9371
ForceWare version 93.71
BIOS Version 4.18.20.21.15
ROPs 2
Shaders Vertex 2/Pixel 2
Memory Type DDR
Memory 64 MB
Bus Width 128 Bit
Pixel Fillrate 0.5 GPixels/s
Texture Fillrate 1.1 GTexels/s
Bandwidth 12.8 GB/s
Count of performance levels : 1
Level 0
Hard Drives
IC35L060AVV207-0
Manufacturer Unknown manufacturer
Heads 16
Cylinders 16383
Device type Fixed
ATA Standard ATA/ATAPI-6
48-bit LBA Supported
Serial Number VNVB02G2CLA0RV
Interface PATA
Capacity 59GB
Real size 60,000,000,000 bytes
S.M.A.R.T
01 Read Error Rate 097 (097 worst) Data 0000030003
02 Throughput Performance 100 (100) Data 00000000C4
03 Spin-Up Time 098 (098) Data 0000AB00A4
04 Start/Stop Count 100 (100) Data 00000003CC
05 Reallocated Sectors Count 100 (100) Data 0000000000
07 Seek Error Rate 100 (100) Data 0000000000
08 Seek Time Performance 130 (130) Data 0000000022
09 Power-On Hours (POH) 093 (093) Data 000000D0F0
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 100 (100) Data 00000003CB
C0 Power-off Retract Count 099 (099) Data 0000000709
C1 Load/Unload Cycle Count 099 (099) Data 0000000709
C2 Temperature 130 (130) Data 000016002A
C4 Reallocation Event Count 100 (100) Data 0000000000
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
Temperature 42 °C
Temperature Range ok (less than 50 °C)
Status Good
Partition 0
Partition ID Disk #0, Partition #0
Size 31.3 MB
Partition 1
Partition ID Disk #0, Partition #1
Size 55.8 GB
WDC WD5000AAKB-00H8A0
Manufacturer Western Digital
Form Factor GB/3.5-inch
Business Unit/Brand Desktop/WD Caviar®
RPM/Buffer Size or Attribute 7200 RPM with 16 MB cache
Interface/Connector ATA/100 with 40-pin IDE connector
Heads 16
Cylinders 16383
Device type Fixed
ATA Standard ATA8-ACS
48-bit LBA Supported
Serial Number WD-WCASYA124921
Interface PATA
Capacity 488GB
Real size 500,107,862,016 bytes
S.M.A.R.T
01 Read Error Rate 200 (200 worst) Data 0000000000
03 Spin-Up Time 164 (164) Data 00000012AF
04 Start/Stop Count 100 (100) Data 0000000256
05 Reallocated Sectors Count 200 (200) Data 0000000000
07 Seek Error Rate 100 (253) Data 0000000000
09 Power-On Hours (POH) 092 (092) Data 00000016FF
0A Spin Retry Count 100 (100) Data 0000000000
0B Recalibration Retries 100 (100) Data 0000000000
0C Device Power Cycle Count 100 (100) Data 0000000253
C0 Power-off Retract Count 200 (200) Data 0000000043
C1 Load/Unload Cycle Count 200 (200) Data 0000000256
C2 Temperature 106 (102) Data 0000000029
C4 Reallocation Event Count 200 (200) Data 0000000000
C5 Current Pending Sector Count 200 (200) Data 0000000000
C6 Uncorrectable Sector Count 200 (200) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
C8 Write Error Rate / Multi-Zone Error Rate 200 (200) Data 0000000000
Temperature 41 °C
Temperature Range ok (less than 50 °C)
Status Good
Partition 0
Partition ID Disk #1, Partition #0
Size 155 GB
Partition 1
Partition ID Disk #1, Partition #1
Size 155 GB
Partition 2
Partition ID Disk #1, Partition #2
Size 155 GB
Optical Drives
SAMSUNG DVD-ROM SD-616T
Media Type CD-ROM
Name SAMSUNG DVD-ROM SD-616T
Availability Running/Full Power
Capabilities Random Access, Supports Removable Media
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive D:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 1
SCSI Target Id 0
Status OK
SAMSUNG CD-R/RW SW-248F
Media Type CD-ROM
Name SAMSUNG CD-R/RW SW-248F
Availability Running/Full Power
Capabilities Random Access, Supports Removable Media
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive E:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 1
SCSI Target Id 1
Status OK
Audio
Sound Cards
Unimodem Half-Duplex Audio Device
SoundMAX Integrated Digital Audio
Playback Devices
SoundMAX Digital Audio
Modem #0 Line Record
Recording Devices
SoundMAX Digital Audio
Modem #0 Line Playback
Speaker Configuration
Speaker type Stereo
Peripherals
Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Device Kind Keyboard
Device Name Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Location plugged into keyboard port
Driver
Date 7-1-2001
Version 5.1.2600.1106
File C:\WINDOWS\system32\DRIVERS\i8042prt.sys
File C:\WINDOWS\system32\DRIVERS\kbdclass.sys
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor Logitech
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2600.0
File C:\WINDOWS\system32\DRIVERS\mouclass.sys
File C:\WINDOWS\system32\DRIVERS\mouhid.sys
Officejet Pro 8500 A909g
Device Kind Printer
Device Name Officejet Pro 8500 A909g
Location ip:192.168.1.21,subnet:192.168.1.0/24
Driver
Officejet Pro 8500 A909g
Device Kind Camera/scanner
Device Name Officejet Pro 8500 A909g
Comment 8500 A909g,192.168.1.21
Location ip:192.168.1.21,subnet:192.168.1.0/24
Driver
Date 4-22-2008
Version 12.0.0.0
File System32\DRIVERS\serscan.sys
Network
You are connected to the internet
Connected through Intel® PRO/100 VE Network Connection - Packet Scheduler Miniport
IP Address 192.168.1.10
Subnet mask 255.255.255.0
Gateway server 192.168.1.1
Preferred DNS server 192.168.1.1
DHCP Enabled
DHCP server 192.168.1.1
External IP Address 66.91.220.206
Adapter Type Ethernet
NetBIOS over TCP/IP Enabled
NETBIOS Node Type Hybrid node
Link Speed 0 kbps
Computer Name
NetBIOS Name SUZY
DNS Name SUZY
Domain Name SUZY
Remote Desktop
Console
State Active
Domain SUZY
WinInet Info
LAN Connection
Local system has a valid connection to the Internet, but it might or might not be currently connected
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Wi-Fi not enabled
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout 60000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout 30000
IEProxy Auto Detect Yes
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Adapters List
Intel® PRO/100 VE Network Connection - Packet Scheduler Miniport
IP Address 192.168.1.10
Subnet mask 255.255.255.0
Gateway server 192.168.1.1
Network Shares
iTunes C:\Documents and Settings\Lehua\My Documents\My Music\iTunes
My Music C:\Documents and Settings\Lehua\My Documents\My Music
dt2 music C:\Documents and Settings\Administrator\My Documents\My Music
MoreMusic C:\My Music
Printer Microsoft XPS Document Writer,LocalsplOnly
Printer3 HP Officejet Pro 8500 A909g Series fax,LocalsplOnly
Printer4 HP Officejet Pro 8500 A909g Series (Copy 1) fax,LocalsplOnly
Printer5 HP Officejet Pro 8500 A909g Series (Copy 1),LocalsplOnly
Printer6 HP Officejet Pro 8500 A909g Series,LocalsplOnly
Printer7 CutePDF Writer,LocalsplOnly*



drivers..signature verification results
tifsfilt.sys...system folder 5-16-10 sys file 4.0.0.469version
timntr.sys...same............same..........same...same
the rest are all 08 and back...

at the bottom it says files found 3595, signed files 2614, unsigned files 31, files not scanned 950


next:

Vino's Event Viewer v01c run on Windows XP in English
Report run at 26/07/2011 3:34:58 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 26/07/2011 1:22:52 PM
Type: error Category: 0
Event: 7034 Source: Service Control Manager
The NVIDIA Display Driver Service service terminated unexpectedly. It has done this 1 time(s).

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
and

Vino's Event Viewer v01c run on Windows XP in English
Report run at 26/07/2011 3:36:07 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


and last, but not least:


Process PID CPU Private Bytes Working Set Description Company Name
System Idle Process 0 98.44 0 K 16 K
procexp.exe 1360 1.56 11,240 K 15,428 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com
Interrupts n/a < 0.01 0 K 0 K Hardware Interrupts and DPCs
wmiprvse.exe 2776 2,880 K 4,968 K WMI Microsoft Corporation
winlogon.exe 944 20,052 K 21,472 K Windows NT Logon Application Microsoft Corporation
TrueImageMonitor.exe 3944 1,332 K 1,740 K Acronis True Image Monitor Acronis
TimounterMonitor.exe 3956 6,308 K 5,808 K Monitor for Acronis True Image Backup Archive Explorer Acronis
System 4 0 K 220 K
svchost.exe 1156 3,000 K 5,000 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1236 1,924 K 4,600 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1376 22,916 K 36,044 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1468 1,344 K 3,664 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1608 1,444 K 3,900 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1808 1,280 K 3,788 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1924 3,584 K 6,776 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1972 6,168 K 7,804 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 472 1,024 K 3,020 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 676 1,024 K 3,000 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 880 2,656 K 4,648 K Generic Host Process for Win32 Services Microsoft Corporation
sprtsvc.exe 744 2,776 K 1,356 K SupportSoft Agent Service SupportSoft, Inc.
sprtcmd.exe 4004 12,616 K 1,616 K Dell Support Center Updates SupportSoft, Inc.
spoolsv.exe 1700 5,660 K 8,036 K Spooler SubSystem App Microsoft Corporation
smss.exe 832 172 K 424 K Windows NT Session Manager Microsoft Corporation
SM1bg.exe 4048 1,684 K 2,656 K Cypress USB Mass Storage Driver Background Application Cypress Semiconductor
services.exe 988 1,892 K 3,652 K Services and Controller app Microsoft Corporation
schedul2.exe 1840 736 K 2,484 K Acronis Scheduler 2 Acronis
schedhlp.exe 3964 640 K 2,628 K Acronis Scheduler Helper Acronis
RioMSC.exe 700 588 K 2,480 K Rio Mass Storage Class Device Manager Digital Networks North America, Inc.
notepad.exe 3232 1,456 K 672 K Notepad Microsoft Corporation
msseces.exe 4012 4,648 K 10,012 K Microsoft Security Client User Interface Microsoft Corporation
MsMpEng.exe 1328 107,956 K 68,868 K Antimalware Service Executable Microsoft Corporation
mDNSResponder.exe 1876 1,164 K 3,772 K Bonjour Service Apple Inc.
MDM.EXE 388 960 K 3,384 K Machine Debug Manager Microsoft Corporation
lsass.exe 1000 3,936 K 2,288 K LSA Shell (Export Version) Microsoft Corporation
jqs.exe 2020 4,996 K 1,384 K Java™ Quick Starter Service Sun Microsystems, Inc.
iTunesHelper.exe 4040 9,332 K 14,520 K iTunesHelper Apple Inc.
iPodService.exe 3176 2,436 K 4,192 K iPodService Module (32-bit) Apple Inc.
iexplore.exe 3608 90,972 K 104,288 K Internet Explorer Microsoft Corporation
iexplore.exe 2780 10,696 K 1,072 K Internet Explorer Microsoft Corporation
hpswp_clipbook.exe 876 2,336 K 4,264 K HP Smart Web Printing add-on for Internet Explorer Hewlett-Packard Co.
explorer.exe 3588 16,544 K 24,876 K Windows Explorer Microsoft Corporation
ctfmon.exe 4056 1,020 K 3,968 K CTF Loader Microsoft Corporation
csrss.exe 888 1,772 K 4,356 K Client Server Runtime Process Microsoft Corporation
AppleMobileDeviceService.exe 1852 4,844 K 7,760 K MobileDeviceService Apple Inc.

The computer Its a Dell Dimension 8300

....I'm pretty sure the only thing changed was more memory added. It came from sister in law..niece (the Lehua you see up there) also used it. There are admin accounts I cannot delete, folders are empty, they took off all their important data. Thank you again for your time.
  • 0

#4
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,001 posts
  • MVP
Download the McAfee Removal tool
http://download.mcaf...atches/MCPR.exe
Save it and Run it.

MSSE is not working right.


Download and Save the free Avast installer.
http://www.avast.com...ivirus-download

Uninstall Microsoft Security Essentials

Reboot

Install Avast. (Register when it asks you - they will try to talk you in to buying the full product but the free version is what we want.)
Once you have it installed and it has updated:

Click on the Avast ball. Then click on Scan Computer, then on
Boot-Time Scan then on Settings. Change the Ask at the bottom to Move to Chest. OK then Schedule Now. Reboot and let it run a scan. It may take hours.
Once it finishes it should load windows. Click on the Avast ball and then on Scan Logs, select the Boot-time scan report then View Results. How many did it find?

Copy the text between the lines of stars by highlighting and Ctrl + c.

******************************************

Killall::

DirLook::
C:\Program Files\Common
%user%\library

File::
c:\windows\SYSTEM32\DRIVERS\pavboot.sys
c:\windows\SYSTEM32\DRIVERS\sptd.sys
c:\windows\Tasks\MP Scheduled Scan.job

Driver::
pavbootc:\windows\SYSTEM32\DRIVERS\pavboot.sys [4/26/2011 5:38 PM 28552]
sptd
MpKsl1177941c
MpKsl1aee4da1
MpKsl25075eaa
MpKsl39cf6821
MpKsl57cb9413
MpKsl5c5b3f90
MpKsl6372d387
MpKsl6966d7d9
MpKsl79c6ee7e
MpKsl82c08f6f
MpKsl9041a148
MpKsld223a9b0

Folder::
c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates


******************************************

Now open notepad (Start, Run, notepad, OK) and Ctrl + V to paste the text into Notepad. Make sure you got it all then File, SAVE AS, (to your Desktop), CFScript , OK. Close notepad. (Overwrite the old one if it's still there.) You should see a file CFScript.txt on your desktop.


Click on the Avast ball. Then click on Additional Protections then on AutoSandbox then on Settings then uncheck Enable AutoSandbox. OK

Right click on the Avast Ball and select Avast! Shields Control and Disable Until Computer is Restarted. Yes.

Drag CFScript.txt over to Combofix and let go Combofix should start on its own.

Post the new log.


Run ASwMBR again (to make it run faster you can change the AV Scan at the bottom right to NONE.) Post the log.

Ron
  • 0

#5
23red

23red

    Trusted Helper

  • Topic Starter
  • Malware Removal
  • 1,797 posts
Hi Ron,
Having a hard time posting. Computer stopping continuously. There were a couple of times there were excetions, I clicked cancel to debug. Son says its running worse. Zero framerate..Thank you for your time.
Aloha, Cindy







aswMBR version 0.9.8.977 Copyright© 2011 AVAST Software
Run date: 2011-07-30 16:44:40
-----------------------------
16:44:40.546 OS Version: Windows 5.1.2600 Service Pack 3
16:44:40.546 Number of processors: 1 586 0x209
16:44:40.546 ComputerName: SUZY UserName:
16:44:43.609 Initialize success
16:44:43.796 AVAST engine defs: 11073001
16:46:31.859 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4
16:46:31.859 Disk 0 Vendor: IC35L060AVV207-0 V22OA66A Size: 57220MB BusType: 3
16:46:31.859 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-c
16:46:31.859 Disk 1 Vendor: WDC_WD5000AAKB-00H8A0 05.04E05 Size: 476940MB BusType: 3
16:46:31.875 Disk 0 MBR read successfully
16:46:31.890 Disk 0 MBR scan
16:46:31.890 Disk 0 Windows XP default MBR code
16:46:31.890 Disk 0 scanning sectors +117178110
16:46:32.031 Disk 0 scanning C:\WINDOWS\system32\drivers
16:46:54.890 Service scanning
16:46:58.218 Modules scanning
16:47:15.812 Disk 0 trace - called modules:
16:47:15.843 ntoskrnl.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys
16:47:16.343 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a4b8ab8]
16:47:16.343 3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-4[0x8a4a6b00]
16:47:17.703 AVAST engine scan C:\WINDOWS
16:47:42.328 AVAST engine scan C:\WINDOWS\system32
16:51:50.218 AVAST engine scan C:\WINDOWS\system32\drivers
16:52:20.937 AVAST engine scan C:\Documents and Settings\Administrator
17:03:01.015 AVAST engine scan C:\Documents and Settings\All Users
17:09:21.171 Scan finished successfully
17:13:29.406 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"
17:13:29.406 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR2.txt"
  • 0

#6
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,001 posts
  • MVP
Get Process Explorer

http://live.sysinter...com/procexp.exe

Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator). Click once or twice on the CPU column header to sort things by CPU usage with the big hitters at the top. Wait about a minute for things to settle down. File, Save As, Save. Open the file Procexp.txt on your desktop and copy and paste the text to a reply.
  • 0

#7
23red

23red

    Trusted Helper

  • Topic Starter
  • Malware Removal
  • 1,797 posts
Hi Ron
First, I wanted to mention, dmw.exe was one of the things removed by the (8 hour) Avast scan. At one point that process was in the task manager over 200 times. Hope its finally pau! Not sure exactly what it was? Only that it was for sure not good.

Here's the other process explorer pic:


Process PID CPU Private Bytes Working Set Description Company Name
System Idle Process 0 96.88 0 K 16 K
procexp.exe 328 1.56 11,924 K 16,532 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com
Interrupts n/a 1.56 0 K 0 K Hardware Interrupts and DPCs
wmiprvse.exe 1128 3,132 K 5,340 K WMI Microsoft Corporation
winlogon.exe 948 7,908 K 5,608 K Windows NT Logon Application Microsoft Corporation
TrueImageMonitor.exe 1980 1,592 K 1,860 K Acronis True Image Monitor Acronis
TimounterMonitor.exe 1988 6,584 K 6,024 K Monitor for Acronis True Image Backup Archive Explorer Acronis
System 4 0 K 236 K
svchost.exe 3728 3,084 K 5,412 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1344 24,372 K 36,504 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1164 3,268 K 5,392 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1240 2,220 K 5,120 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 2580 6,440 K 8,152 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 2432 3,768 K 7,088 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1488 1,684 K 4,280 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1384 1,572 K 4,040 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 2844 1,284 K 3,372 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 2804 1,284 K 3,392 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 2300 1,616 K 4,272 K Generic Host Process for Win32 Services Microsoft Corporation
sprtsvc.exe 3676 8,020 K 1,192 K SupportSoft Agent Service SupportSoft, Inc.
sprtcmd.exe 2028 20,320 K 852 K Dell Support Center Updates SupportSoft, Inc.
spoolsv.exe 1936 5,944 K 8,440 K Spooler SubSystem App Microsoft Corporation
smss.exe 852 176 K 416 K Windows NT Session Manager Microsoft Corporation
SM1bg.exe 396 1,944 K 3,040 K Cypress USB Mass Storage Driver Background Application Cypress Semiconductor
services.exe 992 4,040 K 6,156 K Services and Controller app Microsoft Corporation
schedul2.exe 2336 988 K 2,824 K Acronis Scheduler 2 Acronis
schedhlp.exe 1996 904 K 2,984 K Acronis Scheduler Helper Acronis
RioMSC.exe 3640 852 K 2,724 K Rio Mass Storage Class Device Manager Digital Networks North America, Inc.
nvsvc32.exe 2820 2,528 K 4,300 K NVIDIA Driver Helper Service, Version 93.71 NVIDIA Corporation
mDNSResponder.exe 2372 1,428 K 4,104 K Bonjour Service Apple Inc.
MDM.EXE 2640 1,268 K 3,596 K Machine Debug Manager Microsoft Corporation
lsass.exe 1004 4,212 K 1,352 K LSA Shell (Export Version) Microsoft Corporation
jqs.exe 2620 5,108 K 1,408 K Java™ Quick Starter Service Sun Microsystems, Inc.
iTunesHelper.exe 372 9,464 K 14,684 K iTunesHelper Apple Inc.
iPodService.exe 2004 2,676 K 4,500 K iPodService Module (32-bit) Apple Inc.
iexplore.exe 1784 86,128 K 98,820 K Internet Explorer Microsoft Corporation
iexplore.exe 1064 10,368 K 2,336 K Internet Explorer Microsoft Corporation
hpswp_clipbook.exe 2152 2,588 K 4,580 K HP Smart Web Printing add-on for Internet Explorer Hewlett-Packard Co.
explorer.exe 1788 19,092 K 27,464 K Windows Explorer Microsoft Corporation
ctfmon.exe 436 1,236 K 4,344 K CTF Loader Microsoft Corporation
csrss.exe 908 1,668 K 3,924 K Client Server Runtime Process Microsoft Corporation
AvastUI.exe 384 11,776 K 5,144 K avast! Antivirus AVAST Software
AvastSvc.exe 1616 13,236 K 1,124 K avast! Service AVAST Software
AppleMobileDeviceService.exe 2348 4,908 K 7,456 K MobileDeviceService Apple Inc.


In this comuters task manager, it is set up differently. More columns are added (therefor read by someone), some priorities are changed? I tried to put the pic, but haven't mastered that one yet. Not sure if it's necessary, usable or means anything at all, really. The computer was originally 'maintained' by a 'company computer guy' at a residence.
It is still jumpy and grumpy. ESPECIALLY when I don't log in first, here. It always asks me if I want to stop running scripts, computer may become unresponsive, etc.
Is there any hope for some kind of normalcy here? I had added the second hard drive after I got it, so there's space there. The main drive is divided, and small, not sure how long it'll last.
Thank you again for your time. Please let me know if there's anything else I can do on this end. All I hear is "we need a NEW computer, mom" Ahhhhhh!
Have a great day! :)
Cindy
  • 0

#8
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,001 posts
  • MVP
Go into Group Policy Editor as explained in:

http://vlaurie.com/c...licy_editor.htm

About half way down is a section called:

Running scripts or programs at startup/shutdown or user logon/logoff

That should allow you to delete the scripts from Startup or shutdown.

Also you are running Acronis which is a backup software. If it has no way to backup it can use a lot of space on the hard drive and it can also slow you down.

Start Run, msconfig, OK
Go to Services tab and click on the box to hide Microsoft Services then uncheck
everything that remains. Go to Startup tab and uncheck everything. OK and
reboot. If it doesn't run faster then go back into msconfig and recheck the
things you turned off. If it helps then go back and turn on a few items each
time until you find the culprit.

Ron
  • 0

#9
23red

23red

    Trusted Helper

  • Topic Starter
  • Malware Removal
  • 1,797 posts
Hi Ron
Sorry for the delay, Thank you for your time.
Ok, tried to delete the scripts as you said, nothing there. Nothing.
Ran msconfig, unchecked everything except avast and my ipod junk. Not much improvement.
However, upon rebooting, there are 2 iexplorers in the task manager. The first one is a hog, the second is not. I'll try and put it here, just in case it means something.

first iexplore cpu time 0:02:09 mem usage 111,692 Peak mem 230.504 I/O read bytes 8,858,715 other bytes 10. 506. 249

second iexplore cpu time 0:00:03 mem usage 9,076 Peak mem 18,212 I/O read bytes 2,063.833 other bytes
450, 377

CPU usage jumps to 100 often...the culprit near as I can tell is the heavy iexplore. Don't know if any of this means anything. There ar two ie's on the laptop as well, so maybe it is no beig deal. Thats about it. Anything else I should or could do to make it run happier?
Thank you again for your time. Have a great day:)
Cindy
  • 0

#10
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,001 posts
  • MVP
What sites do the two IE's go to?

Download the McAfee Removal tool
http://download.mcaf...atches/MCPR.exe
and run it.

Delete this task:
C:\WINDOWS\tasks\McAfee.com Scan for Viruses - My Computer (SAUNDERSCCH-saunders).job

Run OTl again Quickscan and post the log.

Ron
  • 0

Advertisements


#11
23red

23red

    Trusted Helper

  • Topic Starter
  • Malware Removal
  • 1,797 posts
Hi Ron
When I was on, and the two ie's were running, I was only here. No other windows open. I don't know how to tell where they go? Right click gives priority choices...xp? Did not see go to process? or find process?
Son is on at the moment (wow), had him check the task manager, no ie's on at all. Strange. Will take care of the other items suggested later tonight, repost after. Thank you for your time!
Cindy
  • 0

#12
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,001 posts
  • MVP
If the IE's don't have windows we can find out where they go this way:

Start, Run, cmd, OK
Type with an Enter after each line:

netstat  -an  >  \junk.txt

notepad  \junk.txt


Copy and paste the text from notepad into a reply.

Also let's try:

Use IE and go to http://eset.com/onlinescan and click on ESET online Scanner. Accept the terms then press Start (If you get a warning from your browser tell it you want to run it).

# Check Scan Archives
# Push the Start button.
# ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
# When the scan completes, push LIST OF THREATS FOUND
# Push EXPORT TO TEXT FILE , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
# Push the BACK button.
# Push Finish
# Once the scan is completed, you may close the window.
# Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
# Copy and paste that log as a reply.


Let's also try the bitdefender quickscan.

http://quickscan.bitdefender.com/

When it finishes there is a report option. Click on it and copy and paste the report (even if it says nothing found).
  • 0

#13
23red

23red

    Trusted Helper

  • Topic Starter
  • Malware Removal
  • 1,797 posts
Hi Ron,
Sorry for the delay...time issues.
Ok, I ran all the scans..nothing in eset or bitdefender. Young one says its running 'decently faster', he yesterday put on game booster. It helped some. Scans:

eset, nothing


QuickScan Beta 32-bit v0.9.9.99
-------------------------------
Scan date: Wed Aug 17 14:10:43 2011
Machine ID: BC8B8679



No infection found.
-------------------

Active Connections

Proto Local Address Foreign Address State
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING
TCP 127.0.0.1:1028 127.0.0.1:27015 ESTABLISHED
TCP 127.0.0.1:1073 127.0.0.1:1072 TIME_WAIT
TCP 127.0.0.1:1079 127.0.0.1:1080 ESTABLISHED
TCP 127.0.0.1:1080 127.0.0.1:1079 ESTABLISHED
TCP 127.0.0.1:1175 127.0.0.1:12080 TIME_WAIT
TCP 127.0.0.1:1176 127.0.0.1:12080 TIME_WAIT
TCP 127.0.0.1:1182 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1183 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1192 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1194 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1196 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1197 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1202 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1210 127.0.0.1:12080 TIME_WAIT
TCP 127.0.0.1:1233 127.0.0.1:12080 TIME_WAIT
TCP 127.0.0.1:1241 127.0.0.1:12080 TIME_WAIT
TCP 127.0.0.1:1248 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1249 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1251 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1252 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1270 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1272 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1276 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1277 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1284 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1285 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1286 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1290 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1291 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1294 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1302 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1304 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1305 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1308 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1316 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1325 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:1326 127.0.0.1:12080 ESTABLISHED
TCP 127.0.0.1:12025 0.0.0.0:0 LISTENING
TCP 127.0.0.1:12080 0.0.0.0:0 LISTENING
TCP 127.0.0.1:12080 127.0.0.1:1181 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1182 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1183 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1192 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1194 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1196 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1197 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1202 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1205 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1216 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1230 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1235 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1239 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1243 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1246 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1248 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1249 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1251 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1252 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1253 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1254 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1268 TIME_WAIT
TCP 127.0.0.1:12080 127.0.0.1:1270 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1272 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1276 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1277 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1284 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1285 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1286 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1290 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1291 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1294 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1302 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1304 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1305 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1308 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1316 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1325 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1326 ESTABLISHED
TCP 127.0.0.1:12080 127.0.0.1:1331 TIME_WAIT
TCP 127.0.0.1:12110 0.0.0.0:0 LISTENING
TCP 127.0.0.1:12119 0.0.0.0:0 LISTENING
TCP 127.0.0.1:12143 0.0.0.0:0 LISTENING
TCP 127.0.0.1:12465 0.0.0.0:0 LISTENING
TCP 127.0.0.1:12563 0.0.0.0:0 LISTENING
TCP 127.0.0.1:12993 0.0.0.0:0 LISTENING
TCP 127.0.0.1:12995 0.0.0.0:0 LISTENING
TCP 127.0.0.1:27015 0.0.0.0:0 LISTENING
TCP 127.0.0.1:27015 127.0.0.1:1028 ESTABLISHED
TCP 192.168.1.10:139 0.0.0.0:0 LISTENING
TCP 192.168.1.10:1050 192.168.1.2:445 ESTABLISHED
TCP 192.168.1.10:1070 74.125.224.148:80 TIME_WAIT
TCP 192.168.1.10:1190 74.125.53.95:80 TIME_WAIT
TCP 192.168.1.10:1191 74.125.53.95:80 TIME_WAIT
TCP 192.168.1.10:1193 74.125.224.169:80 ESTABLISHED
TCP 192.168.1.10:1201 74.125.239.25:80 TIME_WAIT
TCP 192.168.1.10:1209 24.25.230.11:80 TIME_WAIT
TCP 192.168.1.10:1213 24.25.230.11:80 TIME_WAIT
TCP 192.168.1.10:1215 24.25.230.18:80 TIME_WAIT
TCP 192.168.1.10:1221 24.25.230.18:80 TIME_WAIT
TCP 192.168.1.10:1222 24.25.230.18:80 TIME_WAIT
TCP 192.168.1.10:1223 24.25.230.18:80 TIME_WAIT
TCP 192.168.1.10:1267 184.24.31.139:80 TIME_WAIT
TCP 192.168.1.10:1271 24.25.230.16:80 ESTABLISHED
TCP 192.168.1.10:1273 69.171.224.14:80 ESTABLISHED
TCP 192.168.1.10:1275 24.25.230.16:80 TIME_WAIT
TCP 192.168.1.10:1280 24.25.230.16:80 ESTABLISHED
TCP 192.168.1.10:1281 24.25.230.16:80 TIME_WAIT
TCP 192.168.1.10:1282 24.25.230.16:80 TIME_WAIT
TCP 192.168.1.10:1283 24.25.230.16:80 ESTABLISHED
TCP 192.168.1.10:1287 24.143.207.8:80 ESTABLISHED
TCP 192.168.1.10:1288 24.143.207.8:80 ESTABLISHED
TCP 192.168.1.10:1289 24.143.207.8:80 ESTABLISHED
TCP 192.168.1.10:1292 24.143.207.8:80 ESTABLISHED
TCP 192.168.1.10:1293 24.143.207.8:80 ESTABLISHED
TCP 192.168.1.10:1295 24.143.207.8:80 ESTABLISHED
TCP 192.168.1.10:1306 72.21.91.19:80 CLOSE_WAIT
TCP 192.168.1.10:1307 72.21.91.19:80 CLOSE_WAIT
TCP 192.168.1.10:1309 184.27.192.124:80 ESTABLISHED
TCP 192.168.1.10:1310 74.125.224.200:443 ESTABLISHED
TCP 192.168.1.10:1311 204.145.81.68:80 CLOSE_WAIT
TCP 192.168.1.10:1312 204.145.81.68:80 CLOSE_WAIT
TCP 192.168.1.10:1313 204.145.81.68:80 CLOSE_WAIT
TCP 192.168.1.10:1314 204.145.81.68:80 CLOSE_WAIT
TCP 192.168.1.10:1315 204.145.81.68:80 CLOSE_WAIT
TCP 192.168.1.10:1317 204.145.81.68:80 CLOSE_WAIT
TCP 192.168.1.10:1318 72.21.91.19:80 CLOSE_WAIT
TCP 192.168.1.10:1319 72.21.91.19:80 CLOSE_WAIT
TCP 192.168.1.10:1320 72.21.91.19:80 CLOSE_WAIT
TCP 192.168.1.10:1321 72.21.91.19:80 CLOSE_WAIT
TCP 192.168.1.10:1322 72.21.91.19:80 CLOSE_WAIT
TCP 192.168.1.10:1323 72.21.91.19:80 CLOSE_WAIT
TCP 192.168.1.10:1324 74.125.224.200:443 ESTABLISHED
TCP 192.168.1.10:1327 184.27.192.124:80 ESTABLISHED
TCP 192.168.1.10:1328 24.25.230.17:80 ESTABLISHED
TCP 192.168.1.10:1329 74.125.224.223:443 ESTABLISHED
UDP 0.0.0.0:427 *:*
UDP 0.0.0.0:445 *:*
UDP 0.0.0.0:500 *:*
UDP 0.0.0.0:4500 *:*
UDP 127.0.0.1:123 *:*
UDP 127.0.0.1:1026 *:*
UDP 127.0.0.1:1027 *:*
UDP 127.0.0.1:1029 *:*
UDP 127.0.0.1:1030 *:*
UDP 127.0.0.1:1039 *:*
UDP 127.0.0.1:1082 *:*
UDP 127.0.0.1:1900 *:*
UDP 192.168.1.10:123 *:*
UDP 192.168.1.10:137 *:*
UDP 192.168.1.10:138 *:*
UDP 192.168.1.10:427 *:*
UDP 192.168.1.10:1900 *:*



And OTL:

OTL logfile created on: 8/17/2011 2:13:04 PM - Run 3
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.50 Gb Total Physical Memory | 0.80 Gb Available Physical Memory | 53.57% Memory free
2.11 Gb Paging File | 1.70 Gb Available in Paging File | 80.86% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55.84 Gb Total Space | 15.68 Gb Free Space | 28.07% Space Free | Partition Type: NTFS
Drive F: | 31.27 Mb Total Space | 24.63 Mb Free Space | 78.76% Space Free | Partition Type: FAT
Drive P: | 155.76 Gb Total Space | 155.50 Gb Free Space | 99.83% Space Free | Partition Type: NTFS
Drive S: | 155.00 Gb Total Space | 122.17 Gb Free Space | 78.82% Space Free | Partition Type: NTFS
Drive W: | 155.00 Gb Total Space | 107.07 Gb Free Space | 69.07% Space Free | Partition Type: NTFS

Computer Name: SUZY | User Name: saunders | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/07/23 17:21:20 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2011/07/04 01:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/07/04 01:43:51 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/06/15 14:51:08 | 000,683,352 | ---- | M] (IObit) -- W:\Program Files\IObit\Game Booster\gbtray.exe
PRC - [2008/04/13 14:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2011/07/23 17:21:20 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
MOD - [2011/07/04 01:43:51 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2010/08/23 06:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/07/04 01:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2009/06/10 03:57:36 | 000,431,384 | ---- | M] (Acronis) [Disabled | Stopped] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2008/08/13 18:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Disabled | Stopped] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2007/03/07 15:47:46 | 000,076,848 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)
SRV - [2005/10/06 18:12:30 | 000,855,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Media Connect 2\wmccds.exe -- (WMConnectCDS)
SRV - [2004/08/26 19:44:48 | 000,282,624 | ---- | M] (Digital Networks North America, Inc.) [Disabled | Stopped] -- C:\WINDOWS\SYSTEM32\RioMSC.exe -- (RioMSC)
SRV - [2003/03/03 08:33:40 | 000,143,360 | ---- | M] (Intel® Corporation) [Disabled | Stopped] -- C:\Program Files\Intel\NCS\Sync\NetSvc.exe -- (NetSvc)


========== Driver Services (SafeList) ==========

DRV - [2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011/07/04 01:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/07/04 01:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/07/04 01:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/07/04 01:35:12 | 000,102,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/07/04 01:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/07/04 01:32:13 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/07/04 01:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/05/16 19:41:48 | 000,441,760 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)
DRV - [2010/05/16 19:41:48 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\tifsfilt.sys -- (tifsfilter)
DRV - [2010/05/16 19:41:26 | 000,132,480 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2010/05/16 19:40:59 | 000,368,480 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tdrpman.sys -- (tdrpman)
DRV - [2007/02/25 12:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\dsunidrv.sys -- (dsunidrv)
DRV - [2006/10/05 16:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2005/05/22 13:43:16 | 000,016,128 | ---- | M] (Digital Networks North America, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\RIOUNIV.SYS -- (RIOUNIV)
DRV - [2004/08/03 19:29:49 | 000,019,455 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wvchntxx.sys -- (iAimFP4)
DRV - [2004/08/03 19:29:47 | 000,012,063 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wsiintxx.sys -- (iAimFP3)
DRV - [2004/08/03 19:29:45 | 000,023,615 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wch7xxnt.sys -- (iAimTV4)
DRV - [2004/08/03 19:29:43 | 000,033,599 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv04nt.sys -- (iAimTV3)
DRV - [2004/08/03 19:29:42 | 000,019,551 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv02nt.sys -- (iAimTV1)
DRV - [2004/08/03 19:29:41 | 000,029,311 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\watv01nt.sys -- (iAimTV0)
DRV - [2004/08/03 19:29:37 | 000,012,415 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv01nt.sys -- (iAimFP0)
DRV - [2004/08/03 19:29:37 | 000,012,127 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv02nt.sys -- (iAimFP1)
DRV - [2004/08/03 19:29:37 | 000,011,775 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\wadv05nt.sys -- (iAimFP2)
DRV - [2004/08/03 19:29:36 | 000,161,020 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\i81xnt5.sys -- (i81x)
DRV - [2004/01/27 11:40:26 | 000,284,928 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\Cdudf_xp.sys -- (cdudf_xp)
DRV - [2004/01/27 11:39:56 | 000,023,680 | ---- | M] (Roxio) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\dvd_2k.sys -- (dvd_2K)
DRV - [2004/01/27 11:34:56 | 000,140,416 | ---- | M] (Windows ® 2000 DDK provider) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\DVDVRRdr_xp.sys -- (DVDVRRdr_xp)
DRV - [2004/01/27 11:34:46 | 000,043,008 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2004/01/27 11:32:00 | 000,024,576 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k)
DRV - [2004/01/27 11:29:44 | 000,023,680 | ---- | M] (Roxio) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\mmc_2k.sys -- (mmc_2K)
DRV - [2004/01/27 11:29:40 | 000,197,632 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\Udfreadr.sys -- (UDFReadr)
DRV - [2004/01/27 11:16:38 | 000,117,248 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\Pwd_2k.sys -- (pwd_2k)
DRV - [2003/09/26 03:53:00 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\pfc.sys -- (pfc)
DRV - [2003/01/12 20:24:40 | 000,012,790 | R--- | M] (iRiver, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\ifpusb.sys -- (IFPUSB)
DRV - [2002/11/08 08:45:06 | 000,017,217 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\omci.sys -- (omci)
DRV - [2002/10/29 11:38:10 | 000,170,499 | ---- | M] (Conexant Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2002/10/29 11:37:36 | 001,175,536 | ---- | M] (Conexant Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\HSF_DP.sys -- (HSF_DP)
DRV - [2002/10/29 11:31:28 | 000,604,240 | ---- | M] (Conexant Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\HSF_CNXT.sys -- (winachsf)
DRV - [2001/08/17 07:11:06 | 000,066,591 | ---- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SYSTEM32\DRIVERS\EL90XBC5.SYS -- (EL90XBC)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========


FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: S:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandasecurity.com/activescan: C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll (Panda Security, S.L.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2321: C:\Program Files\Real\RealOne Player\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2379: C:\Program Files\Real\RealOne Player\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1483: C:\Program Files\Real\RealOne Player\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine,version=1.0: C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll ()
FF - HKCU\Software\MozillaPlugins\@real.com/RhapsodyPlayerEngine: C:\Documents and Settings\Administrator\Application Data\nprhapengine.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/03/08 18:25:48 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/03/08 18:25:48 | 000,000,000 | ---D | M]

[2011/04/08 10:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2011/07/24 14:47:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\0vz52ej0.default\extensions

O1 HOSTS File: ([2011/07/30 16:19:18 | 000,000,027 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office2003\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: hicentral.com ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: hicentralmls.com ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: zipform.com ([www] http in Trusted sites)
O15 - HKCU\..Trusted Domains: zipformonline.com ([www] https in Trusted sites)
O16 - DPF: {10E0E75E-6701-4134-9D95-C0942ED1F1C8} http://www1.snapfish...tlookImport.cab (Snapfish Outlook Import ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://www1.snapfish...fishActivia.cab (Snapfish Activia)
O16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} http://quickscan.bit...m/qsax/qsax.cab (BitDefender QuickScan Control)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.micros...b?1140077586609 (MUWebControl Class)
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} http://a840.g.akamai...all/xscan53.cab (HouseCall Control)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoft...s/as2stubie.cab (ActiveScan 2.0 Installer Class)
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} https://h17000.www1....loadManager.ocx (Get_ActiveX Control)
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} http://support.dell....lSystemLite.CAB (DellSystemLite.Scanner)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2002/09/03 08:36:02 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010/07/26 15:42:56 | 000,000,000 | ---D | M] - S:\Automatically Add to iTunes -- [ NTFS ]
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/08/17 14:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\QuickScan
[2011/08/14 17:16:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Game Booster
[2011/08/14 17:16:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\IObit
[2011/08/12 14:38:04 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2011/08/02 14:17:03 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/07/28 17:15:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2011/07/28 17:15:22 | 000,309,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/07/28 17:15:22 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/07/28 17:15:18 | 000,043,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/07/28 17:15:18 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/07/28 17:15:17 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/07/28 17:15:16 | 000,102,616 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/07/28 17:15:16 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/07/28 17:15:15 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/07/28 17:14:32 | 000,040,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/07/28 17:14:30 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/07/28 17:13:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011/07/28 17:13:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2011/07/28 17:09:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2011/07/28 15:36:48 | 001,832,544 | ---- | C] (McAfee, Inc.) -- C:\Documents and Settings\Administrator\Desktop\MCPR.exe
[2011/07/26 15:37:46 | 004,766,000 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Documents and Settings\Administrator\Desktop\procexp.exe
[2011/07/26 15:32:57 | 000,061,440 | ---- | C] ( ) -- C:\Documents and Settings\Administrator\Desktop\VEW.exe
[2011/07/26 14:50:33 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
[2011/07/26 14:50:32 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
[2011/07/26 14:48:54 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
[2011/07/26 14:48:52 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
[2011/07/26 14:47:34 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
[2011/07/26 14:47:34 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
[2011/07/26 14:47:23 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
[2011/07/26 14:47:10 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
[2011/07/26 14:46:56 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
[2011/07/26 14:46:56 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
[2011/07/26 14:46:55 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
[2011/07/26 14:46:51 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
[2011/07/26 14:46:49 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
[2011/07/26 14:46:47 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
[2011/07/26 14:46:46 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
[2011/07/26 14:46:36 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
[2011/07/26 14:46:30 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
[2011/07/26 14:46:29 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
[2011/07/26 14:46:27 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
[2011/07/26 14:46:17 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
[2011/07/26 14:46:11 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
[2011/07/26 14:46:08 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
[2011/07/26 14:46:07 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
[2011/07/26 14:45:55 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
[2011/07/26 14:45:54 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
[2011/07/26 14:45:54 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
[2011/07/26 14:45:53 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
[2011/07/26 14:45:52 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
[2011/07/26 14:45:52 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
[2011/07/26 14:45:34 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
[2011/07/26 14:45:31 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
[2011/07/26 14:45:31 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
[2011/07/26 14:45:29 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
[2011/07/26 14:45:27 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
[2011/07/26 14:45:27 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
[2011/07/26 14:45:20 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
[2011/07/26 14:45:19 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
[2011/07/26 14:45:01 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
[2011/07/26 14:45:01 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
[2011/07/26 14:45:00 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
[2011/07/26 14:44:58 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
[2011/07/26 14:44:54 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
[2011/07/26 14:44:18 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
[2011/07/26 14:44:17 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
[2011/07/26 14:44:16 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
[2011/07/26 14:44:15 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
[2011/07/26 14:44:14 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
[2011/07/26 14:44:00 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
[2011/07/26 14:44:00 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
[2011/07/26 14:43:59 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
[2011/07/26 14:43:57 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
[2011/07/26 14:43:26 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
[2011/07/26 14:43:25 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
[2011/07/26 14:43:25 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
[2011/07/26 14:43:24 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
[2011/07/26 14:41:59 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
[2011/07/26 14:41:58 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
[2011/07/26 14:41:57 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
[2011/07/26 14:41:43 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
[2011/07/26 14:41:42 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
[2011/07/26 14:41:42 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
[2011/07/26 14:41:41 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
[2011/07/26 14:41:41 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
[2011/07/26 14:41:40 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2011/07/26 14:41:39 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
[2011/07/26 14:41:39 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
[2011/07/26 14:41:38 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
[2011/07/26 14:41:37 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
[2011/07/26 14:41:36 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
[2011/07/26 14:41:36 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2011/07/26 14:41:35 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2011/07/26 14:41:34 | 000,029,696 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll
[2011/07/26 14:41:33 | 000,027,648 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
[2011/07/26 14:41:26 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
[2011/07/26 14:41:21 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
[2011/07/26 14:41:19 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
[2011/07/26 14:41:18 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
[2011/07/26 14:40:53 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
[2011/07/26 14:40:53 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
[2011/07/26 14:40:40 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
[2011/07/26 14:40:40 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
[2011/07/26 14:40:39 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
[2011/07/26 14:40:34 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
[2011/07/26 14:40:03 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
[2011/07/26 14:40:01 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
[2011/07/26 14:39:59 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
[2011/07/26 14:39:58 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
[2011/07/26 14:39:48 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
[2011/07/26 14:39:47 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys
[2011/07/26 14:39:47 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
[2011/07/26 14:39:46 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
[2011/07/26 14:39:04 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
[2011/07/26 14:37:29 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
[2011/07/26 14:37:28 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
[2011/07/26 14:37:14 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
[2011/07/26 14:37:08 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
[2011/07/26 14:37:08 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
[2011/07/26 14:37:03 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
[2011/07/26 14:37:02 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
[2011/07/26 14:37:02 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
[2011/07/26 14:37:02 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
[2011/07/26 14:37:01 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
[2011/07/26 14:37:01 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
[2011/07/26 14:36:59 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
[2011/07/26 14:36:58 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys
[2011/07/26 14:36:58 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
[2011/07/26 14:36:57 | 000,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
[2011/07/26 14:36:57 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
[2011/07/26 14:34:51 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
[2011/07/26 14:24:27 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
[2011/07/26 14:24:26 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2011/07/26 14:24:25 | 000,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
[2011/07/26 14:24:24 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
[2011/07/26 14:24:23 | 000,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
[2011/07/26 14:24:22 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
[2011/07/26 14:24:16 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
[2011/07/26 14:24:16 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
[2011/07/26 14:24:15 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
[2011/07/26 14:24:14 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
[2011/07/26 14:24:12 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
[2011/07/26 14:24:10 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
[2011/07/26 14:23:27 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
[2011/07/26 14:22:35 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
[2011/07/26 14:21:46 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
[2011/07/26 14:21:44 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
[2011/07/26 14:21:28 | 000,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
[2011/07/26 14:21:27 | 000,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys
[2011/07/26 14:21:26 | 000,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
[2011/07/26 14:21:14 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
[2011/07/26 14:21:03 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
[2011/07/26 14:21:02 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
[2011/07/26 14:20:58 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
[2011/07/26 14:20:57 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
[2011/07/26 14:20:57 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
[2011/07/26 14:20:54 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
[2011/07/26 14:20:33 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
[2011/07/26 14:20:32 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
[2011/07/26 14:20:31 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
[2011/07/26 14:19:45 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
[2011/07/26 14:19:40 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
[2011/07/26 14:19:33 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
[2011/07/26 14:19:32 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
[2011/07/26 14:19:31 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
[2011/07/26 14:19:29 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
[2011/07/26 14:19:29 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
[2011/07/26 14:19:28 | 000,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvpp.dll
[2011/07/26 14:19:28 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
[2011/07/26 14:19:26 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
[2011/07/26 14:19:13 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
[2011/07/26 14:19:13 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
[2011/07/26 14:19:10 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
[2011/07/26 14:18:53 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
[2011/07/26 14:18:53 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
[2011/07/26 14:18:52 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
[2011/07/26 14:18:51 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
[2011/07/26 14:18:51 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
[2011/07/26 14:18:50 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2011/07/26 14:18:50 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
[2011/07/26 14:18:48 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2011/07/26 14:18:43 | 000,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
[2011/07/26 14:18:26 | 000,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
[2011/07/26 14:18:17 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
[2011/07/26 14:18:09 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
[2011/07/26 14:18:08 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
[2011/07/26 14:18:08 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
[2011/07/26 14:18:08 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
[2011/07/26 14:18:07 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
[2011/07/26 14:18:04 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
[2011/07/26 14:18:04 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
[2011/07/26 14:18:03 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
[2011/07/26 14:18:02 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
[2011/07/26 14:18:01 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
[2011/07/26 14:18:00 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
[2011/07/26 14:17:59 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2011/07/26 14:17:19 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
[2011/07/26 14:17:18 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
[2011/07/26 14:17:18 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
[2011/07/26 14:17:17 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
[2011/07/26 14:17:17 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
[2011/07/26 14:17:16 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2011/07/26 14:17:16 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
[2011/07/26 14:17:15 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
[2011/07/26 14:17:12 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
[2011/07/26 14:17:12 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
[2011/07/26 14:17:11 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
[2011/07/26 14:17:10 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
[2011/07/26 14:17:10 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
[2011/07/26 14:17:09 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
[2011/07/26 14:17:09 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
[2011/07/26 14:17:08 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
[2011/07/26 14:17:07 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
[2011/07/26 14:17:07 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
[2011/07/26 14:17:02 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
[2011/07/26 14:16:57 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
[2011/07/26 14:16:57 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
[2011/07/26 14:16:56 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
[2011/07/26 14:16:55 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
[2011/07/26 14:16:54 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
[2011/07/26 14:16:53 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
[2011/07/26 14:16:53 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
[2011/07/26 14:16:21 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2011/07/26 14:16:12 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2011/07/26 14:15:31 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2011/07/26 14:15:29 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2011/07/26 14:15:28 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2011/07/26 14:15:28 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2011/07/26 14:15:27 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2011/07/26 14:15:24 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2011/07/26 14:15:21 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2011/07/26 14:15:18 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2011/07/26 14:15:18 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2011/07/26 14:15:17 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2011/07/26 13:56:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Speccy
[2011/07/26 13:56:22 | 000,000,000 | ---D | C] -- C:\Program Files\Speccy
[2011/07/25 15:34:49 | 003,798,200 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Administrator\Desktop\spsetup111.exe
[2011/07/25 15:27:52 | 001,915,904 | ---- | C] (AVAST Software) -- C:\Documents and Settings\Administrator\Desktop\aswMBR.exe
[2011/07/24 16:44:13 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011/07/24 16:39:07 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011/07/24 16:39:07 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011/07/24 16:39:07 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011/07/24 16:39:07 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011/07/24 16:38:51 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/07/24 16:37:06 | 004,158,851 | R--- | C] (Swearware) -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2011/07/24 16:17:21 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/07/24 16:17:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/07/24 16:17:16 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/07/24 16:17:16 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/07/24 16:13:15 | 009,466,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Desktop\mbam-setup-1.51.1.1800.exe
[2011/07/24 14:47:00 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/07/23 17:21:07 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2011/07/19 01:12:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\TS3Client
[2011/07/19 01:09:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\TeamSpeak 3 Client
[2011/07/19 01:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client
[2004/06/11 21:35:20 | 000,036,963 | R--- | C] (Cypress Semiconductor) -- C:\Program Files\Common Files\SM1updtr.dll
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/08/17 03:57:06 | 000,000,122 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\External link.url
[2011/08/17 03:50:24 | 000,000,220 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Geeks to Go! – Tech experts answer your questions.url
[2011/08/16 14:37:22 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011/08/16 14:35:54 | 000,001,170 | ---- | M] () -- C:\WINDOWS\System32\WPA.DBL
[2011/08/16 14:34:15 | 000,002,048 | --S- | M] () -- C:\WINDOWS\BOOTSTAT.DAT
[2011/08/14 17:16:37 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Switch to Gaming Mode.lnk
[2011/08/14 17:16:37 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Game Booster.lnk
[2011/08/14 17:16:36 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Game Booster.lnk
[2011/08/12 15:16:13 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/08/12 14:29:06 | 000,000,812 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2011/08/10 22:48:11 | 000,444,488 | ---- | M] () -- C:\WINDOWS\System32\PERFH009.DAT
[2011/08/10 22:48:11 | 000,072,364 | ---- | M] () -- C:\WINDOWS\System32\PERFC009.DAT
[2011/08/10 22:40:05 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011/08/10 19:50:35 | 000,000,124 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Files named otl containing text otl.fnd
[2011/08/03 13:37:30 | 000,000,327 | RHS- | M] () -- C:\BOOT.INI
[2011/07/31 15:24:30 | 000,212,362 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\taskmanager2.JPG
[2011/07/30 17:13:29 | 000,000,512 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\MBR.dat
[2011/07/30 16:19:18 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\ETC\hosts
[2011/07/30 15:01:16 | 004,158,851 | R--- | M] (Swearware) -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2011/07/28 17:15:23 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/07/28 17:15:16 | 000,002,625 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/07/28 17:11:00 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2011/07/28 17:05:41 | 056,727,728 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\setup_av_free.exe
[2011/07/28 15:37:06 | 001,832,544 | ---- | M] (McAfee, Inc.) -- C:\Documents and Settings\Administrator\Desktop\MCPR.exe
[2011/07/26 15:38:04 | 004,766,000 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Documents and Settings\Administrator\Desktop\procexp.exe
[2011/07/26 15:33:02 | 000,061,440 | ---- | M] ( ) -- C:\Documents and Settings\Administrator\Desktop\VEW.exe
[2011/07/26 13:56:23 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Speccy.lnk
[2011/07/25 15:34:58 | 003,798,200 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Administrator\Desktop\spsetup111.exe
[2011/07/25 15:27:53 | 001,915,904 | ---- | M] (AVAST Software) -- C:\Documents and Settings\Administrator\Desktop\aswMBR.exe
[2011/07/24 16:17:22 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/07/24 16:13:18 | 009,466,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Desktop\mbam-setup-1.51.1.1800.exe
[2011/07/24 15:38:41 | 000,684,297 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\unhide.exe
[2011/07/23 17:21:20 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2011/07/19 01:09:33 | 000,000,837 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/08/17 03:57:06 | 000,000,122 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\External link.url
[2011/08/14 17:16:37 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Switch to Gaming Mode.lnk
[2011/08/14 17:16:37 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Game Booster.lnk
[2011/08/14 17:16:35 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Game Booster.lnk
[2011/08/10 19:50:35 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\Files named otl containing text otl.fnd
[2011/07/31 15:24:30 | 000,212,362 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\taskmanager2.JPG
[2011/07/28 17:15:23 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/07/28 17:05:22 | 056,727,728 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\setup_av_free.exe
[2011/07/26 14:50:30 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe
[2011/07/26 14:50:30 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll
[2011/07/26 14:24:05 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2011/07/26 14:22:54 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2011/07/26 14:21:45 | 000,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll
[2011/07/26 14:21:45 | 000,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll
[2011/07/26 14:21:43 | 000,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll
[2011/07/26 14:21:42 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll
[2011/07/26 14:21:41 | 000,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll
[2011/07/26 14:21:30 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2011/07/26 14:19:31 | 000,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll
[2011/07/26 14:19:30 | 000,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll
[2011/07/26 14:19:30 | 000,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll
[2011/07/26 14:16:43 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2011/07/26 14:16:43 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2011/07/26 14:16:42 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2011/07/26 14:16:41 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2011/07/26 14:16:41 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2011/07/26 14:16:40 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2011/07/26 14:16:40 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2011/07/26 14:16:39 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2011/07/26 14:16:38 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2011/07/26 14:16:30 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2011/07/26 13:56:23 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Speccy.lnk
[2011/07/25 15:30:50 | 000,000,512 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\MBR.dat
[2011/07/24 16:44:22 | 000,000,210 | ---- | C] () -- C:\Boot.bak
[2011/07/24 16:44:16 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2011/07/24 16:39:07 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011/07/24 16:39:07 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011/07/24 16:39:07 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011/07/24 16:39:07 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011/07/24 16:39:07 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011/07/24 16:17:22 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/07/24 15:38:33 | 000,684,297 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\unhide.exe
[2011/07/19 01:09:33 | 000,000,837 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk
[2010/06/04 23:18:27 | 000,000,262 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2010/03/08 18:24:27 | 000,023,113 | ---- | C] () -- C:\WINDOWS\hpqins15.dat
[2010/02/11 17:17:47 | 000,077,377 | ---- | C] () -- C:\WINDOWS\hpqins05.dat
[2010/02/02 16:15:04 | 000,188,868 | ---- | C] () -- C:\WINDOWS\hpwins22.dat
[2010/02/02 16:15:04 | 000,002,979 | ---- | C] () -- C:\WINDOWS\hpwmdl22.dat
[2010/01/06 15:31:19 | 000,095,112 | ---- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/11/23 13:14:21 | 000,087,552 | ---- | C] () -- C:\WINDOWS\System32\cpwmon2k.dll
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009/07/26 19:35:13 | 000,000,115 | ---- | C] () -- C:\WINDOWS\WinInit.Ini
[2008/12/21 21:02:42 | 000,004,096 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\keyfile3.drm
[2008/12/10 13:15:47 | 000,000,059 | ---- | C] () -- C:\WINDOWS\dcmvwr.INI
[2007/09/09 20:26:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2006/10/22 12:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/10/22 12:22:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2006/10/22 12:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/10/22 12:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/10/22 12:22:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2006/10/22 12:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/10/22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006/09/19 22:25:44 | 000,012,416 | ---- | C] () -- C:\WINDOWS\hpwscr05.dat
[2006/04/08 13:41:27 | 000,000,206 | ---- | C] () -- C:\WINDOWS\HPGdiPlus.ini
[2006/03/26 20:29:21 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/12/12 14:34:37 | 000,037,027 | ---- | C] () -- C:\WINDOWS\atmoUn.exe
[2005/10/07 12:07:16 | 000,003,399 | R--- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
[2005/10/07 12:07:16 | 000,000,158 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini
[2005/08/31 18:38:46 | 000,068,952 | ---- | C] () -- C:\WINDOWS\hpoins05.dat.temp
[2005/08/31 18:38:46 | 000,019,696 | ---- | C] () -- C:\WINDOWS\hpomdl05.dat.temp
[2005/08/16 13:02:00 | 000,001,313 | ---- | C] () -- C:\WINDOWS\hpbvnstp.ini
[2005/08/16 13:01:35 | 000,192,512 | R--- | C] () -- C:\WINDOWS\System32\HPB1320V.DLL
[2005/08/16 13:01:35 | 000,000,319 | R--- | C] () -- C:\WINDOWS\System32\HPB1320V.DAT
[2005/08/16 13:00:20 | 000,007,737 | ---- | C] () -- C:\WINDOWS\hplj1320.ini
[2005/05/01 19:24:23 | 000,000,021 | ---- | C] () -- C:\WINDOWS\CS_SETUP.ini
[2005/03/10 16:08:08 | 000,099,736 | ---- | C] () -- C:\WINDOWS\CPEins05.dat
[2005/03/10 16:02:38 | 000,100,724 | ---- | C] () -- C:\WINDOWS\cpeins04.dat
[2005/03/10 16:02:38 | 000,017,176 | ---- | C] () -- C:\WINDOWS\hpomdl04.dat.temp
[2005/02/28 19:53:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\hpqEmlSz.INI
[2005/02/16 20:35:05 | 000,000,068 | ---- | C] () -- C:\WINDOWS\WFCLIENT.INI
[2005/01/08 12:31:18 | 000,103,715 | ---- | C] () -- C:\WINDOWS\Picasa Uninstaller.exe
[2004/12/14 19:45:41 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\imageCache7.db
[2004/12/04 08:42:05 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2004/10/10 06:37:25 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/09/25 19:54:56 | 000,071,749 | ---- | C] () -- C:\WINDOWS\HCExtOutput.dll
[2004/09/25 19:54:56 | 000,000,823 | ---- | C] () -- C:\WINDOWS\TSC.ini
[2004/09/25 19:54:32 | 000,000,170 | ---- | C] () -- C:\WINDOWS\GetServer.ini
[2004/07/17 20:27:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2004/06/11 21:50:04 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\BurnData.bin
[2004/04/20 14:50:18 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\Zlib.dll
[2004/04/20 14:50:17 | 000,041,984 | ---- | C] () -- C:\WINDOWS\System32\ZFExt.dll
[2004/03/14 21:58:19 | 000,067,072 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/02/27 09:44:33 | 000,000,004 | ---- | C] () -- C:\WINDOWS\uccspecb.sys
[2004/02/21 18:01:11 | 000,061,678 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\PFP110JPR.{PB
[2004/02/21 18:01:10 | 000,012,358 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\PFP110JCM.{PB
[2003/10/30 04:10:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\besch.exe
[2003/10/30 04:10:00 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\besched.dll
[2003/09/25 01:00:00 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lockout.dll
[2003/09/25 01:00:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\lockres.dll
[2003/08/25 08:53:16 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\instlsp.exe
[2003/08/24 10:13:33 | 000,039,905 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2003/08/21 17:20:21 | 000,000,085 | ---- | C] () -- C:\WINDOWS\D2HNAV16.INI
[2003/08/05 09:37:47 | 000,000,020 | ---- | C] () -- C:\WINDOWS\Hposcv07.INI
[2003/08/05 09:33:12 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2003/08/05 09:22:22 | 000,000,519 | ---- | C] () -- C:\WINDOWS\PCAWin.ini
[2003/08/05 08:28:50 | 000,000,083 | ---- | C] () -- C:\WINDOWS\webica.ini
[2003/08/05 08:23:44 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2003/08/01 13:14:52 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003/08/01 13:02:18 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2003/07/25 10:49:14 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2003/07/25 10:47:01 | 000,000,258 | ---- | C] () -- C:\WINDOWS\System32\BDEMERGE.INI
[2003/07/25 10:44:09 | 000,000,052 | ---- | C] () -- C:\WINDOWS\intuprof.ini
[2003/07/25 10:44:08 | 000,007,406 | ---- | C] () -- C:\WINDOWS\ICOADB32.DAT
[2003/07/25 10:44:08 | 000,000,180 | ---- | C] () -- C:\WINDOWS\Quicken.ini
[2003/07/25 10:39:24 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2003/07/25 10:29:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\BOOTSTAT.DAT
[2003/07/25 10:27:30 | 000,444,488 | ---- | C] () -- C:\WINDOWS\System32\PERFH009.DAT
[2003/07/25 10:27:30 | 000,072,364 | ---- | C] () -- C:\WINDOWS\System32\PERFC009.DAT
[2003/07/25 10:17:28 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2003/05/02 15:19:00 | 001,622,016 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2003/05/02 15:19:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2003/05/02 15:19:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2003/05/02 15:19:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/11/01 16:17:50 | 000,000,256 | ---- | C] () -- C:\WINDOWS\aucfg.ini
[2002/09/03 08:42:36 | 000,421,432 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2002/09/03 08:35:18 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2002/09/03 08:31:48 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2002/09/03 03:31:46 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2002/09/03 03:31:44 | 000,004,594 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2002/08/29 00:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\MLANG.DAT
[2002/08/29 00:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\PERFI009.DAT
[2002/08/29 00:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\DSSEC.DAT
[2002/08/29 00:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\MIB.BIN
[2002/08/29 00:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\PERFD009.DAT
[2002/08/29 00:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2002/08/29 00:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\NOISE.DAT
[2002/07/04 15:05:34 | 000,000,269 | ---- | C] () -- C:\WINDOWS\tmupdate.ini
[2001/12/14 13:34:46 | 000,164,864 | ---- | C] () -- C:\WINDOWS\patchw32.dll
[2001/07/31 00:17:12 | 000,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
[1999/07/23 13:46:48 | 000,000,116 | ---- | C] () -- C:\WINDOWS\AuHCcup1.ini
[1999/07/23 10:53:20 | 000,129,536 | ---- | C] () -- C:\WINDOWS\AuHCcup1.dll
[1999/01/22 08:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
[1979/12/31 19:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\e100bmsg.dll

========== LOP Check ==========

[2011/07/05 02:30:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\.minecraft
[2011/04/08 10:32:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\AMozilla
[2004/11/14 21:47:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DIMAGE
[2011/06/25 16:55:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\FCSB000063447
[2007/02/10 15:28:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\HotSync
[2011/01/07 14:07:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ICAClient
[2004/07/17 20:00:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Leadertech
[2005/06/11 06:44:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Musicmatch
[2005/08/27 18:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Nikon
[2011/08/17 14:10:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\QuickScan
[2005/09/09 15:42:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ScanSoft
[2006/11/18 12:52:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Snapfish
[2011/07/19 01:35:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\TS3Client
[2011/01/07 14:27:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Viewpoint
[2010/05/16 19:42:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Acronis
[2011/07/28 17:13:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2003/07/25 10:43:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2010/07/04 22:02:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Driver Mender
[2011/08/14 17:16:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2011/07/24 15:20:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Napster
[2005/10/07 11:33:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2008/01/11 17:04:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft
[2011/01/07 14:28:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2010/06/28 19:08:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009/12/28 17:43:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}

========== Purity Check ==========



< End of report >

I couldn't find this task to delete the file.

Delete this task:
C:\WINDOWS\tasks\McAfee.com Scan for Viruses - My Computer (SAUNDERSCCH-saunders).job


Thank you again for your time. :) Typing this is two to three words behind what I'm typing...kinda slow?
  • 0

#14
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,001 posts
  • MVP
Start Run, msconfig, OK
Go to Services tab and click on the box to hide Microsoft Services then uncheck
everything that remains. Go to Startup tab and uncheck everything. OK and
reboot. If it doesn't run faster then go back into msconfig and recheck the
things you turned off. If it helps then go back and turn on a few items each
time until you find the culprit.


Go to http://www.speedtest.net/ and click on Begin Test

When the Test finishes click on Share This Result and then select Forum then Copy then move to a reply and Ctrl + v
  • 0

#15
23red

23red

    Trusted Helper

  • Topic Starter
  • Malware Removal
  • 1,797 posts
Hi Ron,
Thank you very much for helping with this. Here is the speedtest info.


Posted Image


I have to say, this computer is definately slower, jumpier than the laptop in the house, and its hardwired!
Thank you for your time.
Enjoy your weekend :)
Cindy
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP