Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

OTL.Txt Log from notepad - Possible Virus on Comp.


  • Please log in to reply

#1
Nashea329

Nashea329

    New Member

  • Member
  • Pip
  • 1 posts
OTL logfile created on: 3/13/2012 12:49:47 PM - Run 1
OTL by OldTimer - Version 3.2.36.3 Folder = C:\Users\Monica\Downloads
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.93 Gb Total Physical Memory | 1.18 Gb Available Physical Memory | 40.29% Memory free
22.38 Gb Paging File | 20.48 Gb Available in Paging File | 91.50% Paging File free
Paging file location(s): c:\pagefile.sys 20000 25000 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139.71 Gb Total Space | 41.76 Gb Free Space | 29.89% Space Free | Partition Type: NTFS
Drive D: | 9.34 Gb Total Space | 1.65 Gb Free Space | 17.67% Space Free | Partition Type: NTFS

Computer Name: MONICA-PC | User Name: Monica | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/03/13 12:46:33 | 000,594,944 | ---- | M] (OldTimer Tools) -- C:\Users\Monica\Downloads\OTL.exe
PRC - [2012/03/05 17:44:31 | 000,020,944 | ---- | M] () -- C:\Users\Monica\sqa3d797wv.exe
PRC - [2012/03/05 17:18:12 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/03/05 16:51:25 | 000,077,880 | -HS- | M] () -- C:\Users\Monica\AppData\Local\dplaysvr.exe
PRC - [2012/02/02 10:48:22 | 000,280,416 | ---- | M] () -- C:\Users\Monica\AppData\Roaming\Genieo\Application\Updater\bin\genupdater.exe
PRC - [2012/02/02 10:48:06 | 000,562,016 | ---- | M] () -- C:\Users\Monica\AppData\Roaming\Genieo\Application\TrayUi\bin\gentray.exe
PRC - [2011/09/23 00:36:17 | 003,381,184 | ---- | M] (Webroot Software, Inc. ) -- C:\Program Files\Webroot\Security\Current\Framework\WRConsumerService.exe
PRC - [2011/09/23 00:35:55 | 001,382,984 | ---- | M] (Webroot Software, Inc. ) -- C:\Program Files\Webroot\Security\Current\Framework\WRTray.exe
PRC - [2011/09/01 20:18:54 | 004,862,384 | ---- | M] (Exent Technologies Ltd.) -- C:\Program Files\Free Ride Games\GPlayer.exe
PRC - [2011/08/24 18:29:02 | 003,997,912 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) -- C:\Program Files\Webroot\Security\Current\plugins\antimalware\AEI.exe
PRC - [2011/02/02 21:40:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\javaw.exe
PRC - [2011/01/17 19:37:40 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2011/01/17 19:37:40 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2010/10/18 08:37:35 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\consent.exe
PRC - [2010/08/19 15:25:50 | 000,454,400 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco\Cisco NAC Agent\NACAgentUI.exe
PRC - [2010/08/19 15:25:16 | 000,783,616 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco\Cisco NAC Agent\NACAgent.exe
PRC - [2009/04/11 01:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/10/17 17:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\CCSVCHST.EXE
PRC - [2008/07/26 00:08:43 | 001,245,064 | ---- | M] () -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
PRC - [2008/04/26 03:15:26 | 000,361,808 | ---- | M] () -- C:\WINDOWS\SMINST\BLService.exe
PRC - [2008/02/09 17:06:00 | 000,238,968 | ---- | M] (Symantec Corporation) -- c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2008/01/20 21:33:13 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wermgr.exe


========== Modules (No Company Name) ==========

MOD - [2012/03/05 17:44:31 | 000,020,944 | ---- | M] () -- C:\Users\Monica\sqa3d797wv.exe
MOD - [2012/03/05 17:18:11 | 001,911,768 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012/03/05 16:51:25 | 000,077,880 | -HS- | M] () -- C:\Users\Monica\AppData\Local\dplaysvr.exe
MOD - [2012/03/05 16:51:24 | 000,116,792 | -HS- | M] () -- C:\Users\Monica\AppData\Local\dplayx.dll
MOD - [2012/02/24 14:35:30 | 000,541,696 | ---- | M] () -- C:\Users\Monica\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
MOD - [2012/02/14 08:10:30 | 000,155,648 | ---- | M] () -- C:\Users\Monica\AppData\Local\EapPadcdrom\WdMainnet.dll
MOD - [2012/02/02 10:48:22 | 000,280,416 | ---- | M] () -- C:\Users\Monica\AppData\Roaming\Genieo\Application\Updater\bin\genupdater.exe
MOD - [2012/02/02 10:48:06 | 000,562,016 | ---- | M] () -- C:\Users\Monica\AppData\Roaming\Genieo\Application\TrayUi\bin\gentray.exe
MOD - [2012/01/23 12:48:22 | 000,079,872 | ---- | M] () -- C:\Users\Monica\AppData\Roaming\Mozilla\Firefox\Profiles\armtzaiq.default\extensions\{0b14266e-75ac-4f7f-8e90-ce97aac24fe3}\components\RadioWMPCoreGecko10.dll
MOD - [2011/11/17 20:10:48 | 008,527,008 | ---- | M] () -- C:\WINDOWS\System32\Macromed\Flash\NPSWF32.dll
MOD - [2011/11/16 11:15:38 | 000,985,088 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2011/11/16 11:15:38 | 000,170,496 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxslt.dll
MOD - [2011/09/23 00:36:17 | 002,557,952 | ---- | M] () -- C:\Program Files\Webroot\Security\Current\Framework\frameworkresources.dll
MOD - [2010/12/18 00:14:37 | 000,139,264 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2010/03/18 14:18:36 | 000,509,304 | ---- | M] () -- C:\Windows\Downloaded Program Files\ExentCtl.ocx
MOD - [2008/06/12 00:18:38 | 000,120,216 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLSchMgr.dll
MOD - [2008/06/12 00:18:36 | 000,259,480 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapEngine.dll
MOD - [2008/06/12 00:18:34 | 000,345,384 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLTinyDB.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/09/23 00:36:17 | 003,381,184 | ---- | M] (Webroot Software, Inc. ) [Auto | Running] -- C:\Program Files\Webroot\Security\Current\Framework\WRConsumerService.exe -- (WRConsumerService)
SRV - [2011/08/24 18:29:02 | 003,997,912 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [Auto | Running] -- C:\Program Files\Webroot\Security\current\plugins\antimalware\AEI.exe -- (WebrootSpySweeperService)
SRV - [2010/08/19 15:25:16 | 000,783,616 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Cisco\Cisco NAC Agent\NACAgent.exe -- (NACAgent)
SRV - [2008/10/17 17:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice)
SRV - [2008/10/17 17:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - [2008/10/17 17:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2008/10/17 17:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2008/09/05 13:52:32 | 003,220,856 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE -- (LiveUpdate)
SRV - [2008/07/26 00:08:43 | 001,245,064 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2008/04/26 03:15:26 | 000,361,808 | ---- | M] () [Auto | Running] -- C:\WINDOWS\SMINST\BLService.exe -- (Recovery Service for Windows)
SRV - [2008/02/09 17:06:00 | 000,238,968 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2007/08/22 02:21:00 | 000,055,640 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (NAVEX15)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (NAVENG)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (EagleXNt)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (EagleNT)
DRV - [2011/05/18 17:31:32 | 000,181,008 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\ssidrv.sys -- (ssidrv)
DRV - [2011/05/18 17:31:30 | 000,024,496 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\sshrmd.sys -- (sshrmd)
DRV - [2011/05/18 17:31:28 | 000,045,584 | ---- | M] (Webroot Software, Inc. (www.webroot.com)) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\ssfmonm.sys -- (ssfmonm)
DRV - [2010/11/22 10:25:22 | 000,046,184 | ---- | M] (Exent Technologies Ltd.) [Kernel | Auto | Running] -- C:\Program Files\Free Ride Games\X6XSEx.sys -- (X6XSEx)
DRV - [2010/10/31 20:07:00 | 000,124,464 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010/10/20 00:20:12 | 000,287,792 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20101215.001\IDSvix86.sys -- (IDSvix86)
DRV - [2010/10/18 10:34:22 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2009/03/17 14:56:58 | 000,447,024 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2009/02/19 15:31:42 | 000,024,112 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\SymIMV.sys -- (SymIM)
DRV - [2009/02/19 15:31:18 | 000,041,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMNDISV.SYS -- (SYMNDISV)
DRV - [2009/02/19 15:31:16 | 000,184,496 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2009/02/19 15:31:16 | 000,096,560 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMFW.SYS -- (SYMFW)
DRV - [2009/02/19 15:31:16 | 000,022,320 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2009/02/19 15:31:16 | 000,013,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMDNS.SYS -- (SYMDNS)
DRV - [2008/07/30 19:42:12 | 000,023,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\COH_Mon.sys -- (COH_Mon)
DRV - [2008/06/10 13:54:36 | 000,123,904 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2008/06/05 11:58:42 | 000,222,208 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2008/06/04 12:54:22 | 000,113,664 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel®
DRV - [2008/04/27 13:07:44 | 000,909,824 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\athr.sys -- (athr)
DRV - [2008/01/31 18:51:00 | 000,317,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2008/01/31 18:51:00 | 000,279,088 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2008/01/31 18:51:00 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2007/10/17 18:36:54 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2007/08/08 18:39:00 | 000,036,056 | ---- | M] (Symantec Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\CO_Mon.sys -- (CO_Mon)
DRV - [2007/06/18 19:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2006/11/02 02:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\nvm60x32.sys -- (NVENETFD)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...resario&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...resario&pf=cnnb
IE - HKLM\..\URLSearchHook: {f92a9fe4-2850-4198-b9d5-279880e49b16} - C:\Program Files\A_Free_Ride_Games_Bar\prxtbA_Fr.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2790392
IE - HKLM\..\SearchScopes\{DA71D6D0-86E6-4E56-8D0C-091B3BDE27BA}: "URL" = http://www.ask.com/w...}&l=dis&o=uscql
IE - HKLM\..\SearchScopes\{DD5CBF50-166B-4E45-98BF-1EA1B2240667}: "URL" = http://search.yahoo....ing}&fr=hp-psnb

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...resario&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.condui...&ctid=CT1320680
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKCU\..\URLSearchHook: {f92a9fe4-2850-4198-b9d5-279880e49b16} - C:\Program Files\A_Free_Ride_Games_Bar\prxtbA_Fr.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {DD5CBF50-166B-4E45-98BF-1EA1B2240667}
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...&rlz=1I7ADSA_en
IE - HKCU\..\SearchScopes\{B730E2FB-931E-C117-652C-C429D0471E60}: "URL" = http://www.bing.com/...UGO&form=ZGAIDF
IE - HKCU\..\SearchScopes\{DA71D6D0-86E6-4E56-8D0C-091B3BDE27BA}: "URL" = http://www.ask.com/w...}&l=dis&o=uscql
IE - HKCU\..\SearchScopes\{DD5CBF50-166B-4E45-98BF-1EA1B2240667}: "URL" = http://search.yahoo....ing}&fr=hp-psnb
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: [email protected]:0.1.2008d
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: [email protected]:0.1
FF - prefs.js..extensions.enabledItems: [email protected]:2.0.0
FF - prefs.js..extensions.enabledItems: [email protected]:0.9
FF - prefs.js..extensions.enabledItems: [email protected]:1.1
FF - prefs.js..extensions.enabledItems: [email protected]:1.5

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@exent.com/npExentCtl,version=7.0.0.0: C:\Program Files\Free Ride Games\npExentCtl.dll (Exent Technologies Ltd.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll File not found
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2008/07/26 01:26:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/03/05 17:18:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/12/11 15:43:52 | 000,000,000 | ---D | M]

[2011/10/03 23:21:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Monica\AppData\Roaming\Mozilla\Extensions
[2011/10/03 23:21:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Monica\AppData\Roaming\Mozilla\Extensions\[email protected]
[2012/03/12 10:33:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Monica\AppData\Roaming\Mozilla\Firefox\Profiles\armtzaiq.default\extensions
[2012/02/24 14:26:44 | 000,000,000 | ---D | M] (FRGdup2 Community Toolbar) -- C:\Users\Monica\AppData\Roaming\Mozilla\Firefox\Profiles\armtzaiq.default\extensions\{0b14266e-75ac-4f7f-8e90-ce97aac24fe3}
[2011/01/01 10:46:36 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Monica\AppData\Roaming\Mozilla\Firefox\Profiles\armtzaiq.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012/03/08 17:34:27 | 000,000,000 | ---D | M] (BitTorrentBar Community Toolbar) -- C:\Users\Monica\AppData\Roaming\Mozilla\Firefox\Profiles\armtzaiq.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}(14)
[2012/03/01 14:59:26 | 000,000,000 | ---D | M] (My Personal Homepage) -- C:\Users\Monica\AppData\Roaming\Mozilla\Firefox\Profiles\armtzaiq.default\extensions\[email protected]
[2010/12/30 23:58:44 | 000,000,000 | ---D | M] (Search Toolbar) -- C:\Users\Monica\AppData\Roaming\Mozilla\Firefox\Profiles\armtzaiq.default\extensions\[email protected]
[2012/03/12 10:33:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Monica\AppData\Roaming\Mozilla\Firefox\Profiles\armtzaiq.default\extensions\staged
[2012/01/11 08:59:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/10/03 23:21:00 | 000,000,000 | ---D | M] (Timezone Definitions for Mozilla Calendar) -- C:\PROGRAM FILES\CELTX\EXTENSIONS\[email protected]
[2011/10/03 23:21:00 | 000,000,000 | ---D | M] (Default Shot Palette) -- C:\PROGRAM FILES\CELTX\EXTENSIONS\[email protected]
[2011/10/03 23:21:00 | 000,000,000 | ---D | M] (MSN-Smileys) -- C:\PROGRAM FILES\CELTX\EXTENSIONS\[email protected]
[2011/10/03 23:20:59 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\PROGRAM FILES\CELTX\EXTENSIONS\[email protected]
[2011/10/03 23:20:59 | 000,000,000 | ---D | M] (Blackened) -- C:\PROGRAM FILES\CELTX\EXTENSIONS\[email protected]
[2011/10/03 23:20:59 | 000,000,000 | ---D | M] (Depth) -- C:\PROGRAM FILES\CELTX\EXTENSIONS\[email protected]
[2011/10/03 23:20:59 | 000,000,000 | ---D | M] (Minimal) -- C:\PROGRAM FILES\CELTX\EXTENSIONS\[email protected]
[2012/03/05 17:18:12 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/02/02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012/03/05 16:07:55 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/03/05 16:07:55 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

Hosts file not found
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (My Personal Homepage) - {0538CF1C-8419-4800-ADBB-0C00C799FDA2} - C:\Users\Monica\AppData\Roaming\Genieo\Application\IEPlugins\bin\IEWrapper.dll ()
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Reg Error: Value error.) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Simppull Toolbar) - {627af46b-2076-42ae-a2fd-8428734d3e74} - C:\Program Files\simppulltoolbar\simppulldx.dll ()
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Updater For Simppull Toolbar) - {C4B8BAB4-1667-11DF-A242-BA9455D89593} - C:\Program Files\simppulltoolbar\auxi\simppulltoolbAu.dll (Visicom Media)
O2 - BHO: (no name) - {E4E6BF2A-1667-11DF-A01F-1F9655D89593} - No CLSID value found.
O2 - BHO: (A Free Ride Games Bar Toolbar) - {f92a9fe4-2850-4198-b9d5-279880e49b16} - C:\Program Files\A_Free_Ride_Games_Bar\prxtbA_Fr.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (A Free Ride Games Bar Toolbar) - {f92a9fe4-2850-4198-b9d5-279880e49b16} - C:\Program Files\A_Free_Ride_Games_Bar\prxtbA_Fr.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [ccApp] c:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [hpqSRMon] File not found
O4 - HKLM..\Run: [NACAgentUI] C:\Program Files\Cisco\Cisco NAC Agent\NACAgentUI.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [WebrootTrayApp] C:\Program Files\Webroot\Security\Current\Framework\WRTray.exe (Webroot Software, Inc. )
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [dplaysvr] C:\Users\Monica\AppData\Local\dplaysvr.exe ()
O4 - HKCU..\Run: [Exetender] C:\Program Files\Free Ride Games\GPlayer.exe (Exent Technologies Ltd.)
O4 - HKCU..\Run: [GenieoSystemTray] C:\Users\Monica\AppData\Roaming\Genieo\Application\TrayUi\bin\gentray.exe ()
O4 - HKCU..\Run: [GenieoUpdaterService] C:\Users\Monica\AppData\Roaming\Genieo\Application\Updater\bin\genupdater.exe ()
O4 - HKCU..\Run: [sqa3d797wv] C:\Users\Monica\sqa3d797wv.exe ()
O4 - HKCU..\Run: [tapicfgaudio] C:\Users\Monica\AppData\Local\mfcWIRpl\tapicfgaudio.dll ()
O4 - HKCU..\RunOnce: [WdMainnet] cmd.exe /c RD /S /Q "C:\Users\Monica\AppData\Local\EapPadcdrom" File not found
O4 - Startup: C:\Users\Monica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet)
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8DC731EE-6D1C-471B-86E0-302DA9412BEE}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A7D898A1-E72D-4220-B743-5E7E4CB2C068}: DhcpNameServer = 192.168.1.254
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Monica\Pictures\tree.jpg
O24 - Desktop BackupWallPaper: C:\Users\Monica\Pictures\tree.jpg
O30 - LSA: Authentication Packages - (ows\s) - File not found
O30 - LSA: Security Packages - (Z2가㫏盁 摷杩獥⹴汤[email protected]뻯㵟莰㵟莰&) - File not found
O30 - LSA: Security Packages - (⻷) - File not found
O30 - LSA: Security Packages - () - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/07/26 01:01:12 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = ????] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 30 Days ==========

[2012/03/12 13:57:18 | 000,000,000 | ---D | C] -- C:\Users\Monica\AppData\Local\mfcWIRpl
[2012/02/24 14:40:38 | 000,000,000 | ---D | C] -- C:\ProgramData\MumboJumbo
[2012/02/24 14:31:55 | 000,000,000 | ---D | C] -- C:\Users\Monica\AppData\Roaming\Genieo
[2012/02/24 14:26:29 | 000,000,000 | ---D | C] -- C:\Users\Monica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Ride Games
[2012/02/24 14:26:16 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2012/02/24 14:25:41 | 000,000,000 | ---D | C] -- C:\Users\Monica\AppData\Local\Conduit
[2012/02/24 14:25:33 | 000,000,000 | ---D | C] -- C:\Program Files\A_Free_Ride_Games_Bar
[2012/02/24 14:25:23 | 000,000,000 | ---D | C] -- C:\Remote Programs
[2012/02/24 14:24:52 | 000,053,314 | ---- | C] (Exent Technologies Ltd.) -- C:\Windows\ExentInfo.exe
[2012/02/24 14:24:47 | 000,000,000 | ---D | C] -- C:\Program Files\Free Ride Games
[2012/02/14 08:13:43 | 000,000,000 | ---D | C] -- C:\Users\Monica\AppData\Local\EapPadcdrom
[2011/12/11 14:52:02 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\Users\Monica\AppData\Local\nhf.exe
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/03/13 13:19:00 | 000,044,928 | ---- | M] () -- C:\Windows\System32\drivers\238773e57de82819.sys
[2012/03/13 12:05:21 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/03/13 12:05:21 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/03/13 08:06:47 | 000,604,502 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/03/13 08:06:47 | 000,104,170 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/03/13 08:05:21 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/03/12 08:21:18 | 000,022,113 | ---- | M] () -- C:\Users\Monica\Documents\Chris Brown Updated Resume
[2012/03/12 07:57:01 | 000,000,284 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini
[2012/03/08 17:29:17 | 000,022,113 | ---- | M] () -- C:\Users\Monica\Documents\Updated Resume.rtf
[2012/03/08 17:10:51 | 000,021,919 | ---- | M] () -- C:\Users\Monica\Documents\Updated Resume.odt
[2012/03/08 17:07:29 | 000,000,676 | ---- | M] () -- C:\Users\Monica\AppData\Roaming\wklnhst.dat
[2012/03/08 17:07:22 | 000,013,223 | ---- | M] () -- C:\Users\Monica\Documents\Honda Info..odt
[2012/03/05 18:43:55 | 000,026,365 | ---- | M] () -- C:\Users\Monica\Documents\Chris Brown Resume.rtf
[2012/03/05 17:44:31 | 000,020,944 | ---- | M] () -- C:\Users\Monica\sqa3d797wv.exe
[2012/03/05 17:14:17 | 000,089,088 | ---- | M] () -- C:\Users\Monica\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/03/05 16:51:25 | 000,077,880 | -HS- | M] () -- C:\Users\Monica\AppData\Local\dplaysvr.exe
[2012/03/05 16:51:24 | 000,116,792 | -HS- | M] () -- C:\Users\Monica\AppData\Local\dplayx.dll
[2012/03/02 08:31:47 | 000,002,211 | ---- | M] () -- C:\Users\Monica\Desktop\Play Samantha Swift and the Hidden Roses of Athena.lnk
[2012/02/24 14:25:38 | 000,001,815 | ---- | M] () -- C:\Users\Public\Desktop\Play Free Games.lnk
[2012/02/24 14:25:38 | 000,001,112 | ---- | M] () -- C:\Users\Public\Desktop\More FREE games.lnk
[2012/02/24 14:25:30 | 000,000,064 | ---- | M] () -- C:\Windows\GPlrLanc.dat
[2012/02/22 23:41:11 | 002,425,089 | ---- | M] () -- C:\Users\Monica\Documents\Lambert.wma
[2012/02/20 09:35:54 | 003,689,888 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/03/13 13:19:00 | 000,044,928 | ---- | C] () -- C:\Windows\System32\drivers\238773e57de82819.sys
[2012/03/12 08:21:15 | 000,022,113 | ---- | C] () -- C:\Users\Monica\Documents\Chris Brown Updated Resume
[2012/03/08 16:39:28 | 000,013,223 | ---- | C] () -- C:\Users\Monica\Documents\Honda Info..odt
[2012/03/05 17:56:58 | 000,020,944 | ---- | C] () -- C:\Users\Monica\sqa3d797wv.exe
[2012/03/05 17:44:42 | 000,116,792 | -HS- | C] () -- C:\Users\Monica\AppData\Local\dplayx.dll
[2012/03/05 17:44:41 | 000,077,880 | -HS- | C] () -- C:\Users\Monica\AppData\Local\dplaysvr.exe
[2012/03/05 16:26:01 | 000,022,113 | ---- | C] () -- C:\Users\Monica\Documents\Updated Resume.rtf
[2012/03/05 16:21:32 | 000,021,919 | ---- | C] () -- C:\Users\Monica\Documents\Updated Resume.odt
[2012/02/24 14:26:29 | 000,002,211 | ---- | C] () -- C:\Users\Monica\Desktop\Play Samantha Swift and the Hidden Roses of Athena.lnk
[2012/02/24 14:25:38 | 000,001,815 | ---- | C] () -- C:\Users\Public\Desktop\Play Free Games.lnk
[2012/02/24 14:25:38 | 000,001,112 | ---- | C] () -- C:\Users\Public\Desktop\More FREE games.lnk
[2012/02/22 23:27:00 | 002,425,089 | ---- | C] () -- C:\Users\Monica\Documents\Lambert.wma
[2012/02/17 07:56:35 | 002,044,416 | ---- | C] () -- C:\Windows\System32\win32k.sys
[2011/12/19 12:27:46 | 003,602,816 | ---- | C] () -- C:\Windows\System32\ntkrnlpa.exe
[2011/12/19 12:27:33 | 000,049,152 | ---- | C] () -- C:\Windows\System32\csrsrv.dll
[2011/12/11 14:52:02 | 000,008,548 | -HS- | C] () -- C:\Users\Monica\AppData\Local\671621g0v745w477y613x4syf6g6
[2011/12/11 14:52:02 | 000,008,548 | -HS- | C] () -- C:\ProgramData\671621g0v745w477y613x4syf6g6
[2011/11/08 15:52:15 | 000,905,088 | ---- | C] () -- C:\Windows\System32\drivers\tcpip.sys
[2011/08/21 01:57:15 | 000,373,252 | ---- | C] () -- C:\ProgramData\LuUninstall.LiveUpdate
[2011/06/17 00:30:56 | 000,146,432 | ---- | C] () -- C:\Windows\System32\drivers\srv2.sys
[2011/06/17 00:30:56 | 000,102,400 | ---- | C] () -- C:\Windows\System32\drivers\srvnet.sys
[2011/04/14 16:01:44 | 000,292,864 | ---- | C] () -- C:\Windows\System32\atmfd.dll
[2011/04/14 16:00:12 | 000,305,152 | ---- | C] () -- C:\Windows\System32\drivers\srv.sys
[2011/02/18 16:36:58 | 000,041,984 | ---- | C] () -- C:\Windows\System32\drivers\usbaapl.sys
[2011/02/09 00:40:42 | 000,037,376 | ---- | C] () -- C:\Windows\System32\cdd.dll
[2010/12/28 23:47:09 | 000,000,064 | ---- | C] () -- C:\Windows\GPlrLanc.dat
[2010/12/22 12:44:20 | 000,000,002 | ---- | C] () -- C:\ProgramData\LuInstall.LiveUpdate
[2010/11/23 11:42:36 | 000,089,088 | ---- | C] () -- C:\Users\Monica\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/11/17 23:42:11 | 000,000,680 | ---- | C] () -- C:\Users\Monica\AppData\Local\d3d9caps.dat
[2010/11/09 11:14:37 | 000,000,676 | ---- | C] () -- C:\Users\Monica\AppData\Roaming\wklnhst.dat
[2010/11/05 04:01:56 | 000,040,448 | ---- | C] () -- C:\Windows\System32\drivers\WpdUsb.sys
[2010/11/01 11:34:56 | 000,684,032 | ---- | C] () -- C:\Windows\System32\drivers\spsys.sys
[2010/11/01 11:33:43 | 000,438,744 | ---- | C] () -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2010/11/01 11:32:17 | 000,986,600 | ---- | C] () -- C:\Windows\System32\winload.exe
[2010/11/01 11:30:51 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2010/11/01 11:30:48 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010/11/01 11:30:35 | 000,614,376 | ---- | C] () -- C:\Windows\System32\ci.dll
[2010/11/01 11:30:09 | 000,065,536 | ---- | C] () -- C:\Windows\System32\drivers\USBSTOR.SYS
[2010/11/01 11:29:59 | 000,196,096 | ---- | C] () -- C:\Windows\System32\drivers\usbhub.sys
[2010/11/01 11:28:49 | 000,226,304 | ---- | C] () -- C:\Windows\System32\drivers\usbport.sys
[2010/11/01 11:27:55 | 000,053,224 | ---- | C] () -- C:\Windows\System32\drivers\termdd.sys
[2010/11/01 11:27:52 | 000,050,664 | ---- | C] () -- C:\Windows\System32\PSHED.DLL
[2010/11/01 11:27:51 | 000,245,736 | ---- | C] () -- C:\Windows\System32\clfs.sys
[2010/11/01 11:27:51 | 000,122,344 | ---- | C] () -- C:\Windows\System32\drivers\Storport.sys
[2010/11/01 11:27:33 | 000,017,896 | ---- | C] () -- C:\Windows\System32\kd1394.dll
[2010/11/01 11:27:26 | 000,292,840 | ---- | C] () -- C:\Windows\System32\drivers\volmgrx.sys
[2010/11/01 11:27:24 | 000,226,280 | ---- | C] () -- C:\Windows\System32\drivers\volsnap.sys
[2010/11/01 11:27:15 | 000,017,384 | ---- | C] () -- C:\Windows\System32\kdcom.dll
[2010/11/01 11:27:08 | 000,019,944 | ---- | C] () -- C:\Windows\System32\kdusb.dll
[2010/11/01 11:26:33 | 000,039,936 | ---- | C] () -- C:\Windows\System32\drivers\usbehci.sys
[2010/11/01 11:25:47 | 000,072,192 | ---- | C] () -- C:\Windows\System32\drivers\tdx.sys
[2010/11/01 11:25:36 | 000,033,280 | ---- | C] () -- C:\Windows\System32\drivers\watchdog.sys
[2010/11/01 11:25:35 | 000,066,560 | ---- | C] () -- C:\Windows\System32\drivers\smb.sys
[2010/11/01 11:25:33 | 000,226,816 | ---- | C] () -- C:\Windows\System32\drivers\udfs.sys
[2010/11/01 11:25:00 | 000,033,280 | ---- | C] () -- C:\Windows\System32\drivers\RNDISMP.sys
[2010/11/01 11:24:58 | 000,015,872 | ---- | C] () -- C:\Windows\System32\drivers\usb8023.sys
[2010/11/01 11:24:55 | 000,007,168 | ---- | C] () -- C:\Windows\System32\f3ahvoas.dll
[2010/10/31 23:04:40 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2010/10/31 12:39:59 | 000,030,424 | ---- | C] () -- C:\Windows\System32\wrLZMA.dll
[2010/10/31 12:39:59 | 000,017,472 | ---- | C] () -- C:\Windows\System32\SsiEfr.exe
[2010/10/31 12:39:57 | 000,181,008 | ---- | C] () -- C:\Windows\System32\drivers\ssidrv.sys
[2010/10/31 12:39:57 | 000,024,496 | ---- | C] () -- C:\Windows\System32\drivers\sshrmd.sys
[2010/10/31 11:27:49 | 000,030,720 | ---- | C] () -- C:\Windows\System32\drivers\tcpipreg.sys
[2010/10/31 02:30:25 | 000,123,904 | ---- | C] () -- C:\Windows\System32\drivers\Rtlh86.sys
[2010/08/25 20:30:02 | 000,439,308 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin
[2010/08/25 20:30:00 | 000,982,240 | ---- | C] () -- C:\Windows\System32\igkrng500.bin
[2010/08/25 20:30:00 | 000,092,356 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin
[2010/08/25 19:59:08 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[2010/08/25 19:57:00 | 000,000,151 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
[2010/08/25 19:52:00 | 000,208,896 | ---- | C] () -- C:\Windows\System32\iglhsip32.dll
[2010/08/25 19:52:00 | 000,143,360 | ---- | C] () -- C:\Windows\System32\iglhcp32.dll

========== LOP Check ==========

[2011/01/26 14:24:53 | 000,000,000 | ---D | M] -- C:\Users\Monica\AppData\Roaming\BitTorrent
[2011/08/15 11:30:11 | 000,000,000 | ---D | M] -- C:\Users\Monica\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012/02/24 14:32:02 | 000,000,000 | ---D | M] -- C:\Users\Monica\AppData\Roaming\Genieo
[2011/10/03 23:21:56 | 000,000,000 | ---D | M] -- C:\Users\Monica\AppData\Roaming\Greyfirst
[2010/11/23 11:56:38 | 000,000,000 | ---D | M] -- C:\Users\Monica\AppData\Roaming\iWin
[2010/11/30 13:14:14 | 000,000,000 | ---D | M] -- C:\Users\Monica\AppData\Roaming\Legends of pirates
[2010/11/03 12:22:46 | 000,000,000 | ---D | M] -- C:\Users\Monica\AppData\Roaming\Need for Speed World
[2011/11/16 11:23:38 | 000,000,000 | ---D | M] -- C:\Users\Monica\AppData\Roaming\OpenOffice.org
[2011/08/17 13:57:59 | 000,000,000 | ---D | M] -- C:\Users\Monica\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010/11/09 11:14:40 | 000,000,000 | ---D | M] -- C:\Users\Monica\AppData\Roaming\Template
[2012/02/23 04:23:25 | 000,032,548 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >
  • 0

Advertisements


#2
Nashea329

Nashea329

    New Member

  • Topic Starter
  • Member
  • Pip
  • 1 posts
Sorry I forgot to explain my situation

Im trying to find out how to get this possible Virus off my computer and file name i found it under and it looks like this ---> ﯼԭ⥔䒞 (.exe)

Does anyone know if this is a virus or not.

My computer has been running very slow lately. I try to stay off the internet as much as possible due to no malwear protection, but when i do get on i keep to websites i know such as Yahoo or Facebook for example. While on the internet clicking on a website keeps redirecting me to other sites. If I click on anything, by meaning anything (Playing Solitaire takes forever to play) the computer hesitates and then goes on to preform the simple function.

I first found this certain file, because Microsoft Windows window keeps popping up about a Rundll32 that has stopped working. I went online to see what a Rundll32 file is and this lead me to a file that is seen on my Topic Title, what is this and how do i get rid of it without hurting my computer.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP