Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

ad.yeildmanager Pop up [Closed]


  • This topic is locked This topic is locked

#31
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Download the lates driver from here

Do not use a download manager for this

Let me know if you get the same error
  • 0

Advertisements


#32
deejaycea101

deejaycea101

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 100 posts
That is where i downloaded it from and, that's not the only error I've been having when installing things. For EXAMPLE WHEN YOU ASKED ME TO DOWNLOAD THE MICROSOFT FIX IT (sorry about the caps) i had to download it 3 times before it worked or when i was patching Diablo 2 i had to do it twice because it was giving me errors.
  • 0

#33
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK lets do a deep virus scan - but I feel the main problem is a damaged OS

Please download the following programmes to your desktop:

Dr Web Live CD

ImgBurn

Install IMGBurn
  • Double click Dr Web
  • IMGBurn will open
  • Burn the ISO to a cd
  • Reboot the infected computer with the CD in the drive
  • Ensure that the first boot device is CD - If you are not sure about that then see this page for instructions
  • As loading starts, a dialogue window will prompt you to choose between the standard and safe modes.

    Posted Image
  • Use arrow keys to select DrWeb-LiveCD (Default)
  • When the system is loaded, check the disks or folders you want to scan, and click on “Start”.

    Posted Image
  • The programme will now scan for and cure/delete any malware that it finds. Allow it to do so
  • Once completed reboot to normal windows
  • No log is produced so once in normal windows run a fresh OTL scan and let me know if the problems persist

  • 0

#34
deejaycea101

deejaycea101

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 100 posts
Its finals week this week at my college, ill post a reply with the info tomorrow. Thank you again for everything.
  • 0

#35
deejaycea101

deejaycea101

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 100 posts
How long does it take to run normally?
It has been running for like 30 mins now I'm just a little concerned.
  • 0

#36
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
It may take a few hours as it scans every file for viruses
  • 0

#37
deejaycea101

deejaycea101

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 100 posts
It has been going for a little over 3 hours now. How will i know if it finds anything, will it tell me after its done?

Edited by deejaycea101, 07 December 2011 - 01:52 PM.

  • 0

#38
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Yes it will give a list of all finds and deletions
  • 0

#39
deejaycea101

deejaycea101

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 100 posts
Do you want me to like write those down and post them to see if you recognize any of them or anything like that?
  • 0

#40
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
It will give you a list before it closes :)
  • 0

Advertisements


#41
deejaycea101

deejaycea101

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 100 posts
Do you want the list?
  • 0

#42
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Aye just the names of the malware will do
  • 0

#43
deejaycea101

deejaycea101

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 100 posts
Ok i'll post that along with the OTL on my next reply
  • 0

#44
deejaycea101

deejaycea101

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 100 posts
There was only a few things that didn't have zero with them after the program was done running.

It said:

1/0 Infected
Renamed 1
Suspicious 1/1

So i load up my computer concerned that it didn't give me any names and i went to run OTL and the file name for OTL was changed to otl.#xe, so i changed it back to an .exe file so i could run it.

I guess that was the suspicious file that they were talking about so there was no infection it seems Here is my OTL log from after the scan

Thank you again!

OTL logfile created on: 12/7/2011 7:04:40 PM - Run 3
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\DJ\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

4.00 Gb Total Physical Memory | 2.62 Gb Available Physical Memory | 65.62% Memory free
8.00 Gb Paging File | 6.34 Gb Available in Paging File | 79.32% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 917.66 Gb Total Space | 854.82 Gb Free Space | 93.15% Space Free | Partition Type: NTFS

Computer Name: DJ-PC | User Name: DJ | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/11/28 19:47:36 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\DJ\Downloads\OTL.exe
PRC - [2011/11/17 19:29:26 | 000,901,800 | ---- | M] (Ask) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
PRC - [2011/11/05 01:53:18 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/10/26 08:57:28 | 000,162,816 | ---- | M] (Dell Products, LP.) -- C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
PRC - [2011/09/06 13:29:20 | 004,259,648 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2011/08/31 17:00:48 | 000,449,608 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/08/18 11:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011/08/18 11:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011/08/01 13:56:48 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011/05/21 06:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2010/09/14 05:45:56 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2010/09/14 05:45:44 | 000,508,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2010/08/08 22:59:38 | 000,235,624 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010/03/03 20:16:06 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe


========== Modules (No Company Name) ==========

MOD - [2011/11/27 00:22:21 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\299d0b38053fd7cbd84bac2178c3703b\PresentationFramework.Aero.ni.dll
MOD - [2011/11/27 00:22:06 | 014,339,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\bfaf8f86e69928fb2f67987c0203f603\PresentationFramework.ni.dll
MOD - [2011/11/27 00:21:56 | 012,234,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\2ad23de8284d4594aa658dfb5e667d97\PresentationCore.ni.dll
MOD - [2011/11/27 00:21:43 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\fbc05b5b05dc6366b02b8e2f77d080f1\System.Core.ni.dll
MOD - [2011/11/27 00:20:33 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf293040f3a93afa1ea782487acae816\WindowsBase.ni.dll
MOD - [2011/11/27 00:20:30 | 012,432,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\3afcd5168c7a6cb02eab99d7fd71e102\System.Windows.Forms.ni.dll
MOD - [2011/11/27 00:20:25 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\dbfe8642a8ed7b2b103ad28e0c96418a\System.Drawing.ni.dll
MOD - [2011/11/27 00:19:21 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\461d3b6b3f43e6fbe6c897d5936e17e4\System.Xml.ni.dll
MOD - [2011/11/27 00:19:18 | 007,963,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9e0a3b9b9f457233a335d7fba8f95419\System.ni.dll
MOD - [2011/11/27 00:19:18 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bc09ad2d49d8535371845cd7532f9271\System.Configuration.ni.dll
MOD - [2011/11/27 00:19:14 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\62a0b3e4b40ec0e8c5cfaa0c8848e64a\mscorlib.ni.dll
MOD - [2011/11/18 16:06:18 | 008,527,008 | ---- | M] () -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll
MOD - [2011/11/05 01:53:18 | 001,989,592 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2011/08/18 11:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/04/27 17:21:18 | 000,288,272 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2011/04/27 17:21:18 | 000,012,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011/10/26 08:57:28 | 000,162,816 | ---- | M] (Dell Products, LP.) [Auto | Running] -- C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe -- (DellDigitalDelivery)
SRV - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/08/18 11:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE -- (SftService)
SRV - [2011/06/27 13:50:52 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2011/05/21 06:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2010/11/25 05:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/25 05:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/10/12 12:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/09/14 05:45:56 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2010/09/14 05:45:44 | 000,508,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2010/08/25 20:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/08/08 22:59:38 | 000,235,624 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010/03/18 16:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/03 20:16:06 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel®
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/08/31 17:00:50 | 000,025,416 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2011/06/10 06:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/04/27 15:25:24 | 000,084,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2011/03/31 15:01:50 | 000,126,464 | ---- | M] (Razer USA Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\RzSynapse.sys -- (RzSynapse)
DRV:64bit: - [2010/11/20 22:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 22:23:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010/11/20 22:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 22:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/11/20 22:23:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/09/14 05:45:52 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2010/09/14 05:45:50 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2010/09/14 05:45:48 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2010/09/14 05:45:44 | 000,760,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2010/03/19 03:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/03 12:42:08 | 007,342,432 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/04 21:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/05/26 07:13:10 | 000,138,752 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel®
DRV:64bit: - [2006/11/01 12:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3149175328-1447258181-554791558-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKU\S-1-5-21-3149175328-1447258181-554791558-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/USCON/1
IE - HKU\S-1-5-21-3149175328-1447258181-554791558-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.youtube.com/"

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpWinExt,version=5.0: C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox [2011/06/27 14:06:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{27182e60-b5f3-411c-b545-b44205977502}: C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2011/06/27 14:06:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}: C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ [2011/06/27 14:06:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/11/09 00:31:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2011/11/08 22:13:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\DJ\AppData\Roaming\Mozilla\Extensions
[2011/12/07 12:42:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\DJ\AppData\Roaming\Mozilla\Firefox\Profiles\kep9sjj0.default\extensions
[2011/12/07 12:42:59 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Users\DJ\AppData\Roaming\Mozilla\Firefox\Profiles\kep9sjj0.default\extensions\[email protected]
[2011/11/08 22:10:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/11/05 01:53:18 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2010/10/13 22:28:54 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\mozilla firefox\components\Scriptff.dll
[2011/11/04 22:21:03 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011/11/04 22:21:03 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2011/11/29 18:28:14 | 000,000,098 | ---- | M]) - C:\WINDOWS\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll File not found
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Bing Bar BHO) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (@C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3149175328-1447258181-554791558-1003..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe (Softthinks)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-3149175328-1447258181-554791558-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.254.254 192.168.254.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9F1033F4-CB9F-421E-9593-7DECB151E686}: DhcpNameServer = 192.168.254.254 192.168.254.254
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\WINDOWS\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{266e0fcf-1ba2-11e1-a2ed-b8ac6fd73890}\Shell - "" = AutoRun
O33 - MountPoints2\{266e0fcf-1ba2-11e1-a2ed-b8ac6fd73890}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/12/07 12:47:32 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\ImgBurn
[2011/12/07 12:44:45 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\Sonic_Solutions
[2011/12/07 12:43:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
[2011/12/07 12:43:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ImgBurn
[2011/12/07 12:42:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ask.com
[2011/12/03 21:58:25 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Ventrilo
[2011/12/03 21:57:57 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ventrilo
[2011/12/03 21:57:53 | 000,000,000 | ---D | C] -- C:\Program Files\Ventrilo
[2011/12/03 18:36:45 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
[2011/12/03 18:35:21 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\Deployment
[2011/12/03 18:35:21 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\Apps
[2011/11/30 17:24:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\catroot2
[2011/11/29 18:42:33 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Malwarebytes
[2011/11/29 18:42:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/11/29 18:42:22 | 000,025,416 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/11/29 18:42:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/11/29 18:28:13 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/11/29 18:21:09 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2011/11/29 18:19:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo II
[2011/11/29 18:19:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Diablo II
[2011/11/27 00:13:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2011/11/27 00:13:32 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/11/26 22:25:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\D2-1.12A-enUS
[2011/11/25 21:25:15 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\ElevatedDiagnostics
[2011/11/25 10:18:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dell Digital Delivery
[2011/11/20 00:17:58 | 000,000,000 | ---D | C] -- C:\ProgramData\VirtualizedApplications
[2011/11/19 22:19:23 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\Adobe
[2011/11/19 22:13:46 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011/11/19 22:07:13 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\SoftGrid Client
[2011/11/19 22:07:13 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\SoftGrid Client
[2011/11/19 22:07:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
[2011/11/19 22:06:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2011/11/19 22:06:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2011/11/19 22:06:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Application Virtualization Client
[2011/11/19 22:06:24 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\TP
[2011/11/18 16:06:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2011/11/18 12:13:50 | 000,000,000 | ---D | C] -- C:\Users\DJ\My Backup Files
[2011/11/09 17:02:56 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\Dell
[2011/11/09 16:30:15 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\Diagnostics
[2011/11/08 22:34:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
[2011/11/08 22:34:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\World of Warcraft
[2011/11/08 22:34:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
[2011/11/08 22:33:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2011/11/08 22:31:07 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\skypePM
[2011/11/08 22:30:10 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Skype
[2011/11/08 22:13:13 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Mozilla
[2011/11/08 22:13:13 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\Mozilla
[2011/11/08 22:10:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2011/11/08 22:02:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2011/11/08 22:02:28 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2011/11/08 22:02:20 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2011/11/08 21:53:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2011/11/08 21:53:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2011/11/08 21:52:58 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2011/11/08 21:52:55 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011/11/08 21:48:49 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Roxio Burn
[2011/11/08 21:09:43 | 000,000,000 | ---D | C] -- C:\Windows\SMINST
[2011/11/08 19:42:25 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Macromedia
[2011/11/08 19:42:23 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Adobe
[2011/11/08 19:39:35 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Dell
[2011/11/08 19:39:34 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Roxio
[2011/11/08 19:39:32 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Dell Touch Zone
[2011/11/08 19:39:31 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Intel Corporation
[2011/11/08 19:39:15 | 000,000,000 | R--D | C] -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/11/08 19:39:15 | 000,000,000 | R--D | C] -- C:\Users\DJ\Searches
[2011/11/08 19:39:15 | 000,000,000 | R--D | C] -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/11/08 19:39:15 | 000,000,000 | -H-D | C] -- C:\Users\DJ\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2011/11/08 19:39:07 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Identities
[2011/11/08 19:39:05 | 000,000,000 | R--D | C] -- C:\Users\DJ\Contacts
[2011/11/08 19:39:04 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/11/08 19:39:02 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\VirtualStore
[2011/11/08 19:36:26 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\Dell Edoc Viewer
[2011/11/08 19:36:21 | 000,000,000 | --SD | C] -- C:\Users\DJ\AppData\Roaming\Microsoft
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\Videos
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\Saved Games
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\Pictures
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\Music
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\Links
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\Favorites
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\Downloads
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\Documents
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\Desktop
[2011/11/08 19:36:21 | 000,000,000 | R--D | C] -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\AppData\Local\Temporary Internet Files
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\Templates
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\Start Menu
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\SendTo
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\Recent
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\PrintHood
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\NetHood
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\Documents\My Videos
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\Documents\My Pictures
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\Documents\My Music
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\My Documents
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\Local Settings
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\AppData\Local\History
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\Cookies
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\Application Data
[2011/11/08 19:36:21 | 000,000,000 | -HSD | C] -- C:\Users\DJ\AppData\Local\Application Data
[2011/11/08 19:36:21 | 000,000,000 | -H-D | C] -- C:\Users\DJ\AppData
[2011/11/08 19:36:21 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\Temp
[2011/11/08 19:36:21 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\SoftThinks
[2011/11/08 19:36:21 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Local\Microsoft
[2011/11/08 19:36:21 | 000,000,000 | ---D | C] -- C:\Users\DJ\AppData\Roaming\Media Center Programs

========== Files - Modified Within 30 Days ==========

[2011/12/07 19:00:26 | 000,319,000 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/12/07 19:00:23 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/12/07 19:00:04 | 3220,426,752 | -HS- | M] () -- C:\hiberfil.sys
[2011/12/07 12:43:06 | 000,001,867 | ---- | M] () -- C:\Users\Public\Desktop\ImgBurn.lnk
[2011/12/06 17:07:15 | 000,001,066 | ---- | M] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
[2011/12/05 23:11:10 | 000,239,713 | ---- | M] () -- C:\Users\DJ\Desktop\Galexy 2.PNG
[2011/12/05 23:03:53 | 000,296,390 | ---- | M] () -- C:\Users\DJ\Desktop\Galexy 1.PNG
[2011/12/05 23:00:41 | 000,079,624 | ---- | M] () -- C:\Users\DJ\Desktop\Constellation.PNG
[2011/12/03 21:57:57 | 000,000,875 | ---- | M] () -- C:\Users\DJ\Desktop\Ventrilo.lnk
[2011/12/03 21:57:57 | 000,000,262 | ---- | M] () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[2011/12/03 18:36:52 | 000,000,000 | ---- | M] () -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip
[2011/12/03 18:36:45 | 000,000,312 | ---- | M] () -- C:\Users\DJ\Desktop\Curse Client.appref-ms
[2011/12/02 22:33:39 | 000,783,160 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/12/02 22:33:39 | 000,662,648 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/12/02 22:33:39 | 000,122,218 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/12/02 18:18:09 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_RzSynapse_01007.Wdf
[2011/11/30 17:31:51 | 000,021,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/11/30 17:31:51 | 000,021,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/11/29 18:42:27 | 000,001,111 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/11/29 18:28:14 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2011/11/29 18:21:04 | 000,001,083 | ---- | M] () -- C:\Users\Public\Desktop\Diablo II.lnk
[2011/11/27 00:13:37 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/11/27 00:13:35 | 000,796,818 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/11/26 23:46:02 | 000,036,981 | ---- | M] () -- C:\Users\DJ\Documents\GPaper2.rtf
[2011/11/26 22:30:11 | 000,001,744 | ---- | M] () -- C:\Users\DJ\Application Data\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - dell.lnk
[2011/11/26 13:43:27 | 000,000,056 | -H-- | M] () -- C:\Windows\SysWow64\ezsidmv.dat
[2011/11/19 22:50:20 | 000,044,194 | ---- | M] () -- C:\Users\DJ\Documents\Quiz #6- Chapter Twelve.rtf
[2011/11/09 16:55:40 | 000,007,600 | ---- | M] () -- C:\Users\DJ\AppData\Local\Resmon.ResmonCfg
[2011/11/08 22:10:09 | 000,001,136 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/11/08 21:58:44 | 000,000,000 | -H-- | M] () -- C:\Users\DJ\Documents\Default.rdp
[2011/11/08 20:35:05 | 000,108,227 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2011/11/08 20:35:05 | 000,108,227 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2011/11/08 19:42:05 | 000,001,439 | ---- | M] () -- C:\Users\DJ\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

========== Files Created - No Company Name ==========

[2011/12/07 12:43:06 | 000,001,879 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
[2011/12/07 12:43:06 | 000,001,867 | ---- | C] () -- C:\Users\Public\Desktop\ImgBurn.lnk
[2011/12/05 23:11:10 | 000,239,713 | ---- | C] () -- C:\Users\DJ\Desktop\Galexy 2.PNG
[2011/12/05 23:03:53 | 000,296,390 | ---- | C] () -- C:\Users\DJ\Desktop\Galexy 1.PNG
[2011/12/05 22:56:34 | 000,079,624 | ---- | C] () -- C:\Users\DJ\Desktop\Constellation.PNG
[2011/12/03 21:57:57 | 000,000,875 | ---- | C] () -- C:\Users\DJ\Desktop\Ventrilo.lnk
[2011/12/03 21:57:50 | 000,000,262 | ---- | C] () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[2011/12/03 18:36:52 | 000,000,000 | ---- | C] () -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip
[2011/12/03 18:36:45 | 000,000,312 | ---- | C] () -- C:\Users\DJ\Desktop\Curse Client.appref-ms
[2011/12/02 18:18:09 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_RzSynapse_01007.Wdf
[2011/11/29 18:42:27 | 000,001,111 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/11/29 18:19:59 | 000,001,083 | ---- | C] () -- C:\Users\Public\Desktop\Diablo II.lnk
[2011/11/27 00:13:37 | 000,001,945 | ---- | C] () -- C:\Windows\epplauncher.mif
[2011/11/27 00:13:33 | 000,001,859 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/11/26 23:46:02 | 000,036,981 | ---- | C] () -- C:\Users\DJ\Documents\GPaper2.rtf
[2011/11/26 22:28:21 | 000,001,744 | ---- | C] () -- C:\Users\DJ\Application Data\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - dell.lnk
[2011/11/26 13:43:27 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2011/11/19 22:50:20 | 000,044,194 | ---- | C] () -- C:\Users\DJ\Documents\Quiz #6- Chapter Twelve.rtf
[2011/11/09 00:58:13 | 000,007,600 | ---- | C] () -- C:\Users\DJ\AppData\Local\Resmon.ResmonCfg
[2011/11/08 22:34:07 | 000,001,066 | ---- | C] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
[2011/11/08 22:10:09 | 000,001,148 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/11/08 22:10:09 | 000,001,136 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/11/08 21:58:44 | 000,000,000 | -H-- | C] () -- C:\Users\DJ\Documents\Default.rdp
[2011/11/08 21:52:50 | 000,007,384 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2011/11/08 20:33:34 | 3220,426,752 | -HS- | C] () -- C:\hiberfil.sys
[2011/11/08 19:42:05 | 000,001,439 | ---- | C] () -- C:\Users\DJ\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/11/08 19:39:20 | 000,001,371 | ---- | C] () -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2011/11/08 19:39:17 | 000,001,445 | ---- | C] () -- C:\Users\DJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/11/08 19:36:41 | 000,001,935 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Help Documentation.lnk
[2011/11/08 19:36:21 | 000,000,290 | ---- | C] () -- C:\Users\DJ\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/11/08 19:36:21 | 000,000,272 | ---- | C] () -- C:\Users\DJ\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/06/27 15:25:23 | 000,982,220 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2011/06/27 15:25:22 | 000,134,592 | ---- | C] () -- C:\Windows\SysWow64\igfcg500.bin
[2011/06/27 15:25:22 | 000,092,216 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
[2011/06/27 15:25:21 | 000,439,300 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2011/02/10 11:10:51 | 000,796,818 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2009/07/14 00:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 21:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/13 21:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/13 19:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 16:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 16:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

========== LOP Check ==========

[2011/12/07 12:48:41 | 000,000,000 | ---D | M] -- C:\Users\DJ\AppData\Roaming\ImgBurn
[2011/12/07 12:50:47 | 000,000,000 | ---D | M] -- C:\Users\DJ\AppData\Roaming\SoftGrid Client
[2011/11/19 22:07:19 | 000,000,000 | ---D | M] -- C:\Users\DJ\AppData\Roaming\TP
[2009/07/14 00:08:49 | 000,009,166 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >
  • 0

#45
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
There is no sign of malware now so I believe that it may be a system problem

Have you run check disc recently on this computer ?

Details are on this page
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP