Thanks for getting back to me and the help.
Running OTLPE with the first set of custom fixes, asked for a reboot to finish up, i rebooted back into the PE and started otl again but didnt get a log.
Started windows normally. Desktop is still blank, and the user menu still blank, but avira ran this time. Also, the system check was in the start menu, but it didnt pop up and try and scan like before.
Was able to launch IE and download OTL from your link. Saved to desktop, but it wasnt there, I had to find it through explorere and launch it from there. Pasted in your second set of fixes and ran a scan, here are the logs.
OTL.txt
OTL logfile created on: 3/29/2012 12:54:59 PM - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\insidesales1.VANPTC\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: | Country: | Language: | Date Format:
1.47 Gb Total Physical Memory | 0.91 Gb Available Physical Memory | 61.69% Memory free
2.03 Gb Paging File | 1.49 Gb Available in Paging File | 73.68% Paging File free
Paging file location(s): C:\pagefile.sys 720 1440 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149.04 Gb Total Space | 114.58 Gb Free Space | 76.88% Space Free | Partition Type: NTFS
Drive S: | 279.45 Gb Total Space | 9.48 Gb Free Space | 3.39% Space Free | Partition Type: NTFS
Drive T: | 69.19 Gb Total Space | 24.02 Gb Free Space | 34.71% Space Free | Partition Type: NTFS
Drive W: | 69.19 Gb Total Space | 24.02 Gb Free Space | 34.71% Space Free | Partition Type: NTFS
Computer Name: IS1 | User Name: insidesales1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - [2012/03/29 12:52:08 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\OTL.exe
PRC - [2012/01/17 15:53:10 | 000,072,840 | ---- | M] (FedEx) -- C:\Program Files\FedEx\ShipManager\BIN\FXCONWND.EXE
PRC - [2012/01/17 15:48:16 | 000,024,576 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\AdminService.exe
PRC - [2012/01/17 15:47:22 | 000,007,168 | ---- | M] (FedEx Corporation) -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.Common.LoggingService.exe
PRC - [2012/01/17 15:44:10 | 000,141,176 | ---- | M] (iAnywhere Solutions, Inc.) -- C:\Program Files\FedEx\ShipManager\SQLAnywhere\Bin32\dbsrv11.exe
PRC - [2011/10/11 15:00:32 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011/10/11 15:00:20 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2011/10/11 15:00:08 | 000,258,512 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2011/10/11 15:00:08 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2008/07/02 22:45:54 | 000,020,480 | ---- | M] () -- C:\UPS\WSTD\UPSNA1Msgr.exe
PRC - [2008/04/23 02:08:13 | 000,483,328 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\acrotray.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/01/29 19:28:22 | 000,144,648 | ---- | M] (eCopy, Inc.) -- C:\Program Files\eCopy\Desktop 9.2\Bin\eDP2eD.exe
PRC - [2004/08/12 11:16:46 | 000,148,480 | ---- | M] (Wellspring Software, Inc.) -- C:\WINDOWS\system32\PB32Stub.exe
========== Modules (No Company Name) ========== MOD - [2012/02/15 10:37:56 | 007,982,592 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\vjslib\e7a84e361b3a51a77c45bc349ac182d2\vjslib.ni.dll
MOD - [2012/02/15 10:37:05 | 011,817,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\29bdc8352d3c26e3c572ea60639dec3b\System.Web.ni.dll
MOD - [2012/02/15 10:36:52 | 000,627,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\f25d114cb629d1f512f98883c6535a75\System.Transactions.ni.dll
MOD - [2012/02/15 10:36:51 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\11dcb806c92f55111f5fa9f1a90e3bdd\System.ServiceProcess.ni.dll
MOD - [2012/02/15 10:36:40 | 000,998,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\a2a14380e8c9149d5b212d0100ef588a\System.Management.ni.dll
MOD - [2012/02/15 10:36:35 | 000,627,712 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\c0d15fb6308587fef8744d568e64bcda\System.EnterpriseServices.ni.dll
MOD - [2012/02/15 10:35:03 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\94a40f415bfa947e251888bbe88bb973\System.Configuration.ni.dll
MOD - [2012/02/15 10:32:40 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\77e1279cbf4eecfb0284b63316fe43fe\System.Xml.ni.dll
MOD - [2012/02/15 10:32:32 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ad99ac6b5666edb8ee742dd64f9578af\System.Windows.Forms.ni.dll
MOD - [2012/02/15 10:32:12 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\9351cf29bb1ba951e45a9b3b0edab937\System.Drawing.ni.dll
MOD - [2012/02/15 10:31:49 | 006,616,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\ae888f8633fce3ff1de98e32bce0abbf\System.Data.ni.dll
MOD - [2012/02/15 10:29:57 | 007,953,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\9e3803cd2a11f056291862e306a8e2b2\System.ni.dll
MOD - [2012/02/14 17:45:45 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2012/02/14 17:45:40 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2012/02/14 17:45:38 | 000,261,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2012/01/17 15:53:02 | 000,018,112 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.Communication.CommLogger.DLL
MOD - [2012/01/17 15:50:12 | 000,237,568 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\AdminLogic.dll
MOD - [2012/01/17 15:49:04 | 000,053,248 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\AdminComm.dll
MOD - [2012/01/17 15:48:22 | 000,405,504 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.ShipEngine.Route.BusinessLogic.dll
MOD - [2012/01/17 15:48:16 | 000,024,576 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\AdminService.exe
MOD - [2012/01/17 15:48:04 | 000,120,832 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\Snapshot.dll
MOD - [2012/01/17 15:48:00 | 000,040,960 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.ShipEngine.ServiceInterfaces.dll
MOD - [2012/01/17 15:47:56 | 000,663,552 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.ShipEngine.DataAccess.dll
MOD - [2012/01/17 15:47:48 | 000,169,984 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\UvSDKWrapper.dll
MOD - [2012/01/17 15:47:44 | 000,235,008 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.ShipEngine.ABDataAccess.dll
MOD - [2012/01/17 15:47:42 | 000,053,248 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\AdminEntities.dll
MOD - [2012/01/17 15:47:40 | 000,036,864 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.ShipEngine.Route.Entities.dll
MOD - [2012/01/17 15:47:38 | 000,020,480 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.ShipEngine.FSMDataAccess.dll
MOD - [2012/01/17 15:47:24 | 000,724,992 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.ShipEngine.Entities.dll
MOD - [2012/01/17 15:47:20 | 000,921,600 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.Common.Languafier.dll
MOD - [2012/01/17 15:47:04 | 000,460,288 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\eSRGApi.dll
MOD - [2012/01/17 15:46:56 | 000,032,768 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.Common.Logging.dll
MOD - [2012/01/17 15:46:48 | 000,082,944 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FxZipFile.dll
MOD - [2012/01/17 15:46:04 | 000,045,056 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.Common.ConfigManager.dll
MOD - [2012/01/17 15:45:16 | 000,155,648 | ---- | M] () -- C:\Program Files\FedEx\ShipManager\BIN\sasv.dll
MOD - [2011/10/24 10:02:43 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MOD - [2011/10/11 15:00:22 | 000,398,288 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2008/07/02 22:46:50 | 000,049,152 | ---- | M] () -- C:\UPS\WSTD\PolicyMgr\UPS.Components.PolicyHolder.dll
MOD - [2008/07/02 22:46:50 | 000,024,576 | ---- | M] () -- C:\UPS\WSTD\PolicyMgr\Microsoft.ApplicationBlocks.Data.dll
MOD - [2008/07/02 22:45:54 | 000,020,480 | ---- | M] () -- C:\UPS\WSTD\UPSNA1Msgr.exe
MOD - [2008/07/02 22:45:52 | 000,045,056 | ---- | M] () -- C:\UPS\WSTD\PolicyMgr\UPS.Components.NA1MessengerServer.dll
MOD - [2003/07/02 15:10:00 | 000,057,344 | ---- | M] () -- C:\WINDOWS\system32\lexdlls.dlL
========== Win32 Services (SafeList) ========== SRV - File not found [Auto | Stopped] -- C:\Documents and Settings\insidesales1\Desktop\TALKSWITCH\Attendant Console 1.10\Server\TalkSwitchConsoleServer.exe -- (TSCONSOLESERVICE)
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012/01/17 15:50:20 | 000,005,120 | ---- | M] (FedEx Corporation) [On_Demand | Stopped] -- C:\Program Files\FedEx\ShipManager\BIN\ShipEngineService.exe -- (FedExShipService)
SRV - [2012/01/17 15:48:16 | 000,024,576 | ---- | M] () [Auto | Running] -- C:\Program Files\FedEx\ShipManager\BIN\AdminService.exe -- (FedExAdminService)
SRV - [2012/01/17 15:48:06 | 000,006,656 | ---- | M] (FedEx Corporation) [On_Demand | Stopped] -- C:\Program Files\FedEx\ShipManager\BIN\TransEngineService.exe -- (FedExTransactionService)
SRV - [2012/01/17 15:47:22 | 000,007,168 | ---- | M] (FedEx Corporation) [Auto | Running] -- C:\Program Files\FedEx\ShipManager\BIN\FedEx.Gsm.Common.LoggingService.exe -- (FedExLoggingService)
SRV - [2012/01/17 15:44:10 | 000,141,176 | ---- | M] (iAnywhere Solutions, Inc.) [Auto | Running] -- C:\Program Files\FedEx\ShipManager\SQLAnywhere\Bin32\dbsrv11.exe -- (FedExShipnetDBService)
SRV - [2011/10/11 15:00:20 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011/10/11 15:00:08 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2012/02/15 11:11:30 | 000,137,416 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011/10/11 15:00:32 | 000,074,640 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011/10/11 15:00:32 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2010/06/17 15:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2007/04/11 03:30:16 | 000,018,304 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srvkp.sys -- (SiSkp)
DRV - [2007/04/11 03:09:08 | 000,321,024 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sisgrp.sys -- (SiS315)
DRV - [2004/09/20 20:53:18 | 002,278,784 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004/08/03 15:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2003/03/25 10:50:46 | 000,004,096 | R--- | M] (Silicon Integrated Systems Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\siside.sys -- (siside)
DRV - [2002/10/17 08:14:46 | 000,049,024 | R--- | M] (Windows ® 2000 DDK provider) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\sisidex.sys -- (sisidex)
DRV - [2002/08/20 10:19:08 | 000,009,472 | R--- | M] (Silicon Integrated Systems Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sisperf.sys -- (sisperf)
DRV - [2000/07/24 01:01:00 | 000,019,537 | ---- | M] (Brother Industries Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\BRPAR.SYS -- (BrPar)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
http://www.google.com/ieIE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://search.live.c...ferrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
http://www.msn.com/?ocid=iehpIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 48 76 FF 16 E5 0D CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/...Box&FORM=IE8SRCIE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
========== FireFox ========== FF - prefs.js..browser.startup.homepage: "www.google.com"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems:
[email protected]:1.0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/03/20 12:01:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/12/01 13:14:50 | 000,000,000 | ---D | M]
[2010/03/11 12:55:14 | 000,000,000 | -H-D | M] (No name found) -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Mozilla\Extensions
[2012/01/06 16:16:05 | 000,000,000 | -H-D | M] (No name found) -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Mozilla\Firefox\Profiles\ipnqueov.default\extensions
[2010/04/27 12:53:21 | 000,000,000 | -H-D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Mozilla\Firefox\Profiles\ipnqueov.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/12/29 15:51:43 | 000,000,000 | -H-D | M] (Allow Right-Click) -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Mozilla\Firefox\Profiles\ipnqueov.default\extensions\{CCEA9629-894C-4eef-9F40-8301F3146527}
[2011/12/01 13:14:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
() (No name found) -- C:\DOCUMENTS AND SETTINGS\INSIDESALES1.VANPTC\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\IPNQUEOV.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2012/03/20 12:01:17 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010/10/26 17:07:10 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012/01/04 12:16:34 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/01/04 12:16:33 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml
O1 HOSTS File: ([2007/11/12 09:31:50 | 000,000,773 | RHS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 192.168.123.80 vpaccpac
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 7.0] C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [eCopy Scan Inbox Monitor] C:\Program Files\eCopy\Desktop 9.2\Bin\InboxMonitor.exe (eCopy, Inc.)
O4 - HKLM..\Run: [eDP2eD] C:\Program Files\eCopy\Desktop 9.2\Bin\eDP2eD.exe (eCopy, Inc.)
O4 - HKLM..\Run: [kOVWhuUpjWR.exe] C:\Documents and Settings\All Users\Application Data\kOVWhuUpjWR.exe File not found
O4 - HKLM..\Run: [NA1Messenger] C:\UPS\WSTD\UPSNA1Msgr.exe ()
O4 - HKLM..\Run: [PrintBoss Stub] C:\WINDOWS\system32\PB32Stub.exe (Wellspring Software, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to existing PDF - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to existing PDF - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to existing PDF - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_04)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.238.64.12 68.238.96.12 4.2.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = vanptc.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9156D09A-02F1-4458-A672-439691979C7A}: DhcpNameServer = 68.238.64.12 68.238.96.12 4.2.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9156D09A-02F1-4458-A672-439691979C7A}: NameServer = 68.238.64.12
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\NavLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O20 - Winlogon\Notify\WgaLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Documents and Settings\insidesales1.VANPTC\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\insidesales1.VANPTC\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/07/18 07:17:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
MsConfig - StartUpFolder: C:^DOCUME~1^ALLUSE~1^Start Menu^Programs^Startup^Utility Tray.lnk - - File not found
MsConfig - StartUpReg:
Acrobat Assistant 7.0 - hkey= - key= - C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe (Adobe Systems Inc.)
MsConfig - StartUpReg:
AC_TSAutoUpdate - hkey= - key= - File not found
MsConfig - StartUpReg:
ctfmon.exe - hkey= - key= - File not found
MsConfig - StartUpReg:
eCopy Scan Inbox Monitor - hkey= - key= - C:\Program Files\eCopy\Desktop 9.2\Bin\InboxMonitor.exe (eCopy, Inc.)
MsConfig - StartUpReg:
eDP2eD - hkey= - key= - C:\Program Files\eCopy\Desktop 9.2\Bin\eDP2eD.exe (eCopy, Inc.)
MsConfig - StartUpReg:
RemoteControl - hkey= - key= - C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
MsConfig - StartUpReg:
SiSPower - hkey= - key= - File not found
MsConfig - StartUpReg:
SiSUSBRG - hkey= - key= - C:\WINDOWS\SiSUSBrg.exe (Silicon Integrated Systems Corp.)
MsConfig - StartUpReg:
SoundMan - hkey= - key= - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
MsConfig - StartUpReg:
TalkSwitch Attendant Console Tray - hkey= - key= - File not found
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
ActiveX: {0213C6AF-5562-4D09-884C-2ADCFC8C2F35} - Microsoft .NET Framework 1.1 Security Update (KB2656353)
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Microsoft VM
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6B32C748-0503-715D-0444-1D11E816A743} - Vector Graphics Rendering (VML)
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Macromedia Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\INF\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS
http://hp.vector.co....thors/VA012897/)
Drivers32: VIDC.3iv2 - C:\WINDOWS\System32\3ivxVfWCodec.dll (3ivx.com)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.DIVX - C:\WINDOWS\System32\divx.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.wmv3 - C:\WINDOWS\System32\WMV9VCM.dll (Microsoft Corporation)
Drivers32: VIDC.X264 - C:\WINDOWS\System32\x264vfw.dll ()
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 30 Days ========== [2012/03/29 12:52:06 | 000,593,920 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\OTL.exe
[2012/03/29 08:38:52 | 002,237,440 | R--- | C] (OldTimer Tools) -- C:\OTLPE.exe
[2012/03/29 08:34:37 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/03/28 10:34:09 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\insidesales1.VANPTC\Recent
[2012/03/28 10:30:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\insidesales1.VANPTC\Start Menu\Programs\System Check
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ========== [2012/03/29 12:52:08 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\OTL.exe
[2012/03/29 12:48:33 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/03/29 12:48:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/03/27 10:11:38 | 000,001,776 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\My Documents\Default.rdp
[2012/03/23 15:56:31 | 000,042,728 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\shore total office 095161.pdf
[2012/03/22 14:58:11 | 000,070,546 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\ampliaudio-095455.pdf
[2012/03/22 14:57:15 | 000,070,182 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\calasa-095454.pdf
[2012/03/20 11:17:38 | 000,179,038 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\20120320095228.pdf
[2012/03/19 11:40:44 | 000,155,321 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon BPD02-B products revised.pdf
[2012/03/19 11:20:17 | 000,163,060 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon BPD02-P products revised.pdf
[2012/03/19 11:11:10 | 000,162,994 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon BDP02-W products-revised.pdf
[2012/03/15 16:08:01 | 000,006,647 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\amazon-package bre.pdf
[2012/03/15 16:06:53 | 000,025,458 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon bre-3-15-12FBAFCKJSZ.pdf
[2012/03/15 16:04:53 | 000,008,245 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\amazon-package ind.pdf
[2012/03/15 16:03:03 | 000,058,078 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon IND-3-15-12FBAFCKJSZ.pdf
[2012/03/15 15:55:56 | 000,008,436 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\amazon-package phx.pdf
[2012/03/15 15:50:43 | 000,066,385 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon PHX-3-15-12FBAFCKJSZ.pdf
[2012/03/15 11:07:54 | 000,191,636 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\097918.pdf
[2012/03/15 10:55:52 | 000,047,093 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\oe-iv-pb-bro-2blank.pdf
[2012/03/14 12:03:13 | 000,093,503 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\095318.pdf
[2012/03/14 12:02:40 | 000,134,469 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\095317.pdf
[2012/03/14 12:01:55 | 000,219,666 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\095304.pdf
[2012/03/14 12:01:14 | 000,193,920 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\095145A.pdf
[2012/03/14 11:59:47 | 000,234,330 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\095145.pdf
[2012/03/14 10:23:41 | 000,251,088 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/03/14 10:19:21 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012/03/12 11:13:03 | 000,005,476 | ---- | M] () -- C:\WINDOWS\A4WINSTU.BAT
[2012/03/12 09:43:22 | 000,444,456 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/03/12 09:43:22 | 000,072,332 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/03/01 17:55:34 | 000,068,947 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\sas-095219-proforma.pdf
[2012/03/01 12:05:57 | 000,120,389 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Blank Invoice.pdf
[2012/02/29 15:25:05 | 000,205,069 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\BBCan-094611.pdf
[2012/02/29 15:19:18 | 000,203,461 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\BBCan-094537.pdf
[2012/02/28 15:00:33 | 000,186,732 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\20120228134537.pdf
[2012/02/28 15:00:08 | 000,187,708 | -H-- | M] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\20120228134512.pdf
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ========== [2012/03/23 15:56:31 | 000,042,728 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\shore total office 095161.pdf
[2012/03/22 14:58:11 | 000,070,546 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\ampliaudio-095455.pdf
[2012/03/22 14:57:15 | 000,070,182 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\calasa-095454.pdf
[2012/03/20 11:07:19 | 000,179,038 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\20120320095228.pdf
[2012/03/19 11:40:39 | 000,155,321 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon BPD02-B products revised.pdf
[2012/03/19 11:20:12 | 000,163,060 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon BPD02-P products revised.pdf
[2012/03/19 11:05:48 | 000,162,994 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon BDP02-W products-revised.pdf
[2012/03/15 16:08:01 | 000,006,647 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\amazon-package bre.pdf
[2012/03/15 16:06:53 | 000,025,458 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon bre-3-15-12FBAFCKJSZ.pdf
[2012/03/15 16:04:53 | 000,008,245 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\amazon-package ind.pdf
[2012/03/15 16:03:03 | 000,058,078 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon IND-3-15-12FBAFCKJSZ.pdf
[2012/03/15 15:55:56 | 000,008,436 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\amazon-package phx.pdf
[2012/03/15 15:50:43 | 000,066,385 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Amazon PHX-3-15-12FBAFCKJSZ.pdf
[2012/03/15 10:55:52 | 000,047,093 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\oe-iv-pb-bro-2blank.pdf
[2012/03/15 10:51:46 | 000,191,636 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\097918.pdf
[2012/03/09 12:33:27 | 000,093,503 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\095318.pdf
[2012/03/09 12:33:13 | 000,134,469 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\095317.pdf
[2012/03/09 12:32:50 | 000,219,666 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\095304.pdf
[2012/03/09 12:32:30 | 000,193,920 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\095145A.pdf
[2012/03/09 12:32:07 | 000,234,330 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\095145.pdf
[2012/03/01 12:05:56 | 000,120,389 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\Blank Invoice.pdf
[2012/02/29 13:39:07 | 000,068,947 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\sas-095219-proforma.pdf
[2012/02/28 15:19:31 | 000,203,461 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\BBCan-094537.pdf
[2012/02/28 15:16:05 | 000,205,069 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\BBCan-094611.pdf
[2012/02/28 15:00:31 | 000,186,732 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\20120228134537.pdf
[2012/02/28 15:00:05 | 000,187,708 | -H-- | C] () -- C:\Documents and Settings\insidesales1.VANPTC\Desktop\20120228134512.pdf
[2012/02/14 16:02:14 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/01/20 16:00:59 | 000,000,002 | ---- | C] () -- C:\WINDOWS\System32\WSSEMAPHORES.dat
========== Custom Scans ========== ========== Drive Information ========== Physical Drives
---------------
Drive: \\\\.\\PHYSICALDRIVE0 - Fixed\thard disk media
Interface type: IDE
Media Type: Fixed\thard disk media
Model: WDC WD1600JB-00GVA0
Partitions: 1
Status: OK
Status Info: 0
Partitions
---------------
DeviceID: Disk #0, Partition #0
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 149.00GB
Starting Offset: 32256
Hidden sectors: 0
< %SYSTEMDRIVE%\*.exe >[2007/07/24 16:17:08 | 000,081,920 | ---- | M] (Apple Inc.) -- C:\dns-sd.exe
[2011/07/12 19:55:05 | 002,237,440 | R--- | M] (OldTimer Tools) -- C:\OTLPE.exe
< %SYSTEMDRIVE%\*.exe >[2007/07/24 16:17:08 | 000,081,920 | ---- | M] (Apple Inc.) -- C:\dns-sd.exe
[2011/07/12 19:55:05 | 002,237,440 | R--- | M] (OldTimer Tools) -- C:\OTLPE.exe
< %ALLUSERSPROFILE%\Application Data\*.exe > < %APPDATA%\*. >[2012/03/19 11:04:00 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Adobe
[2010/10/14 08:45:24 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\AdobeUM
[2011/10/20 12:40:54 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Avira
[2011/11/07 15:51:36 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\CyberLink
[2011/11/14 17:07:50 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Downloaded Installations
[2010/01/04 16:16:49 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Help
[2009/12/28 15:35:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Identities
[2009/12/29 16:07:27 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Macromedia
[2010/03/11 14:57:19 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Malwarebytes
[2010/03/16 10:59:00 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Media Player Classic
[2011/04/20 10:52:16 | 000,000,000 | --SD | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Microsoft
[2011/11/14 17:16:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Mozilla
[2011/10/03 10:28:09 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\POPFile
[2010/10/26 17:01:05 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\Sun
[2010/03/11 17:00:02 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\insidesales1.VANPTC\Application Data\SUPERAntiSpyware.com
< MD5 for: ATAPI.SYS >[2004/08/03 16:05:44 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/04/14 05:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/04/14 05:51:44 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 11:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\atapi.sys
[2008/04/14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/03 13:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004/08/03 13:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys
< MD5 for: EXPLORER.EXE >[2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\explorer.exe
[2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\explorer.exe
[2007/06/13 04:26:03 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=7712DF0CDDE3A5AC89843E61CD5B3658 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007/06/13 03:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) MD5=97BD6515465659FF8F3B7BE375B2EA87 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2004/08/03 15:56:50 | 001,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
< MD5 for: SVCHOST.EXE >[2008/04/14 05:42:38 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008/04/13 17:12:36 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\svchost.exe
[2008/04/14 05:42:38 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\system32\svchost.exe
[2004/08/03 15:56:58 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
< MD5 for: USERINIT.EXE >[2004/08/03 15:56:58 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2008/04/14 05:42:40 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/13 17:12:38 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\userinit.exe
[2008/04/14 05:42:40 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\userinit.exe
< MD5 for: WINLOGON.EXE >[2004/08/03 15:56:58 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=01C3346C241652F43AED8E2149881BFE -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008/04/14 05:42:40 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/13 17:12:39 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\winlogon.exe
[2008/04/14 05:42:40 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe
< %systemroot%\*. /mp /s > < hklm\software\clients\startmenuinternet|command /rs >HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/03/20 12:01:16 | 000,834,712 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/03/20 12:01:16 | 000,834,712 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/03/20 12:01:16 | 000,834,712 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2012/03/20 12:01:17 | 000,924,600 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2012/03/20 12:01:17 | 000,924,600 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2012/03/20 12:01:17 | 000,924,600 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2011/12/16 05:23:08 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2011/12/16 05:23:08 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2011/12/16 05:23:08 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 15:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 15:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)
< %systemroot%\system32\*.dll /lockedfiles >[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\system32\drivers\*.sys /lockedfiles > < >< End of report >
---------------------
extras.txt
OTL Extras logfile created on: 3/29/2012 12:54:59 PM - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\insidesales1.VANPTC\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: | Country: | Language: | Date Format:
1.47 Gb Total Physical Memory | 0.91 Gb Available Physical Memory | 61.69% Memory free
2.03 Gb Paging File | 1.49 Gb Available in Paging File | 73.68% Paging File free
Paging file location(s): C:\pagefile.sys 720 1440 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149.04 Gb Total Space | 114.58 Gb Free Space | 76.88% Space Free | Partition Type: NTFS
Drive S: | 279.45 Gb Total Space | 9.48 Gb Free Space | 3.39% Space Free | Partition Type: NTFS
Drive T: | 69.19 Gb Total Space | 24.02 Gb Free Space | 34.71% Space Free | Partition Type: NTFS
Drive W: | 69.19 Gb Total Space | 24.02 Gb Free Space | 34.71% Space Free | Partition Type: NTFS
Computer Name: IS1 | User Name: insidesales1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (All) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- "%1" %*
.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
.cmd [@ = cmdfile] -- "%1" %*
.com [@ = comfile] -- "%1" %*
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.exe [@ = exefile] -- "%1" %*
.hlp [@ = hlpfile] -- C:\WINDOWS\System32\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\WINDOWS\System32\mshta.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.inf [@ = inffile] -- C:\WINDOWS\System32\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\WINDOWS\System32\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\WINDOWS\System32\rundll32.exe (Microsoft Corporation)
.js [@ = JSFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
.pif [@ = piffile] -- "%1" %*
.reg [@ = regfile] -- C:\WINDOWS\regedit.exe (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S
.txt [@ = txtfile] -- C:\WINDOWS\System32\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- winhlp32.exe %1 (Microsoft Corporation)
hlpfile [open] -- %SystemRoot%\System32\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\WINDOWS\system32\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Adobe\Adobe GoLive CS2\GoLive.exe" "%1" (Adobe Systems Incorporated)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
vbefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
vbsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
wsffile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
wsffile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
wsffile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
wshfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusOverride" = 1
"FirewallOverride" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"6160:TCP" = 6160:TCP:*:Enabled:Seagull Driver Networking
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Outlook Email Address Extractor\Oee.exe" = C:\Program Files\Outlook Email Address Extractor\Oee.exe:*:Enabled:Outlook Email Address Extractor -- (LmhSoft.com)
"C:\Program Files\FedEx\ShipManager\SQLANYWHERE\BIN32\DBENG11.EXE" = C:\Program Files\FedEx\ShipManager\SQLANYWHERE\BIN32\DBENG11.EXE:*:Enabled:FedEx Upgrade Database Service -- (iAnywhere Solutions, Inc.)
"C:\Program Files\FedEx\ShipManager\SQLANYWHERE\BIN32\DBSRV11.EXE" = C:\Program Files\FedEx\ShipManager\SQLANYWHERE\BIN32\DBSRV11.EXE:*:Enabled:FedEx Shipnet Database Service -- (iAnywhere Solutions, Inc.)
"C:\Program Files\FedEx\ShipManager\BIN\BACKUPDATABASEUTILITY.EXE" = C:\Program Files\FedEx\ShipManager\BIN\BACKUPDATABASEUTILITY.EXE:*:Enabled:FedEx Database Backup Utility -- (fedex)
"C:\Program Files\FedEx\ShipManager\BIN\FSMREGISTRATION.EXE" = C:\Program Files\FedEx\ShipManager\BIN\FSMREGISTRATION.EXE:*:Enabled:FedEx Ship Manager Registration -- ()
"C:\Program Files\FedEx\ShipManager\BIN\GSMCOMMSETUP.EXE" = C:\Program Files\FedEx\ShipManager\BIN\GSMCOMMSETUP.EXE:*:Enabled:FedEx GsmCommSetup -- (Fedex)
"C:\Program Files\FedEx\ShipManager\BIN\LDSEDIT.EXE" = C:\Program Files\FedEx\ShipManager\BIN\LDSEDIT.EXE:*:Enabled:FedEx LDSEDIT -- (FedEx)
"C:\Program Files\FedEx\ShipManager\BIN\ADMINSERVICE.EXE" = C:\Program Files\FedEx\ShipManager\BIN\ADMINSERVICE.EXE:*:Enabled:FedEx Administration Service -- ()
"C:\Program Files\FedEx\ShipManager\BIN\SHIPENGINESERVICE.EXE" = C:\Program Files\FedEx\ShipManager\BIN\SHIPENGINESERVICE.EXE:*:Enabled:FedEx Shipping Engine -- (FedEx Corporation)
"C:\Program Files\FedEx\ShipManager\BIN\TRANSENGINESERVICE.EXE" = C:\Program Files\FedEx\ShipManager\BIN\TRANSENGINESERVICE.EXE:*:Enabled:FedEx Transaction Engine -- (FedEx Corporation)
"C:\Program Files\FedEx\ShipManager\BIN\FEDEX.GSM.CAFE.APPLICATIONENGINE.GUI.EXE" = C:\Program Files\FedEx\ShipManager\BIN\FEDEX.GSM.CAFE.APPLICATIONENGINE.GUI.EXE:*:Enabled:FedEx Ship Manager -- (FedEx Services)
"C:\Program Files\FedEx\ShipManager\BIN\FEDEX.GSM.EXTERNAL.VERIFI.SERVICE.EXE" = C:\Program Files\FedEx\ShipManager\BIN\FEDEX.GSM.EXTERNAL.VERIFI.SERVICE.EXE:*:Enabled:FedEx Verifi Service -- ()
"C:\Program Files\FedEx\ShipManager\BIN\REPORTPROCESSING.EXE" = C:\Program Files\FedEx\ShipManager\BIN\REPORTPROCESSING.EXE:*:Enabled:FedEx Report Processing -- ()
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Outlook Email Address Extractor\Oee.exe" = C:\Program Files\Outlook Email Address Extractor\Oee.exe:*:Enabled:Outlook Email Address Extractor -- (LmhSoft.com)
========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0134A1A1-C283-4A47-91A1-92F19F960372}" = Adobe Creative Suite 2
"{105F3CE5-FE55-408E-BF30-E78F85BA0B12}" = Dell Printer Software
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"{257856D2-A188-4C78-8B6C-2830440EA409}" = ACCPAC System Manager 5.3A
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java 6 Update 20
"{2A033A00-FE0D-4609-B0E8-2C49CC494FC8}" = WorldShip
"{2E96D781-FE8C-4888-8B41-9F8B2F6118F7}" = FedEx Ship Manager
"{31821EFE-1B31-4744-9FB0-208F92BD7168}" = Visual FoxPro ODBC Driver
"{3248F0A8-6813-11D6-A77B-00B0D0150040}" = J2SE Runtime Environment 5.0 Update 4
"{33035862-543C-4405-9CC6-08593CF2C25F}" = ReportServer
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{390160B4-D276-4A04-8002-8D3101A0D367}" = UPSICC
"{39A3DC93-4EE4-40A8-A85E-6188BDABD651}" = Pervasive.SQL V8 Client (v8.6)
"{46548E80-0409-0000-7E8A-45000F855001}" = Adobe GoLive CS2
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{54319E6C-5EDF-4ECA-AE4E-34C2C355873A}" = ACCPAC - Crystal Reports 9 Runtime Files
"{56B59C2A-EFB8-44AC-88F5-3280171E4522}" = PolicyManager
"{5AE59A84-B2F3-42CC-A246-5AF80F6EE770}" = Reconciler
"{63E949F6-03BC-5C40-FF1F-C8B3B9A1E18E}" = Visual C++ 8.0 CRT.Policy (x86) WinSXS MSM Beta2
"{66332652-9C28-58B1-FF1F-C8B3B9A1E18E}" = Visual C++ 8.0 ATL.Policy (x86) WinSXS MSM Beta2
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package
"{68AF09E3-1167-4771-903C-CCCDCF7E171C}" = NRF
"{68B7C6D9-1DF2-54C1-FF1F-C8B3B9A1E18E}" = Visual C++ 8.0 MFC.Policy (x86) WinSXS MSM Beta2
"{7CFEB8AC-81E3-4D09-8E84-0755F03D1416}" = MISys Manufacturing v5.3A
"{7F4C8163-F259-49A0-A018-2857A90578BC}" = Adobe InDesign CS2
"{865FE643-F643-4DFE-98BC-ABAD70871C8E}" = Winamp
"{8C5BD501-AD5D-4A75-9321-076509B438FC}" = WebHelp
"{8EDBA74D-0686-4C99-BFDD-F894678E5B39}" = Adobe Common File Installer
"{8F881647-AC08-4E13-9782-D347FBA634AD}" = ShipRush for FedEx - Ecommerce Edition
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{95120000-0038-0409-0000-0000000FF1CE}" = Time Zone Data Update Tool for Microsoft Office Outlook
"{95749C5B-BC37-41E3-8D39-EEF4C21A2825}" = CCC
"{96327C3C-96BE-4C7A-A6F7-A71635E5949A}" = Microsoft SQL Server 2005 Backward compatibility
"{97F81AF1-0E47-DC99-FF1F-C8B3B9A1E18E}" = Visual C++ 8.0 ATL (x86) WinSXS MSM Beta2
"{98CB24AD-52FB-DB5F-FF1F-C8B3B9A1E18E}" = Visual C++ 8.0 CRT (x86) WinSXS MSM Beta2
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BAE13A2-E7AF-D6C3-FF1F-C8B3B9A1E18E}" = Visual C++ 8.0 MFC (x86) WinSXS MSM Beta2
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AC76BA86-1033-0000-7760-000000000002}" = Adobe Acrobat 7.0 Professional
"{B00A7ECF-F388-4E75-8874-EB3C7E4FD27A}" = VBA (2627.01)
"{B11CC4B0-72DF-4674-B169-741A47416A16}" = ACCPAC Purchase Orders 5.3B
"{B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601}" = Adobe Illustrator CS2
"{B74D4E10-6884-0000-0000-000000000103}" = Adobe Bridge 1.0
"{BBE3E502-F1D6-4FC9-9844-CC0850B7C516}" = Network ScanGear Ver.2.21
"{BC728F95-2D3F-4D05-9E1E-F2A3CEBF3FE8}" = FormsComponent
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C30E30A6-0AB5-470A-AB67-D322938F5429}" = SupportUtility
"{C49DAA9C-5BA8-459A-8244-E57B69DF0F04}" = Suite Specific
"{C63E7C60-25EB-11D3-8EDA-00A0C911E8E5}" = Microsoft Outlook Personal Folders Backup
"{C9D43B38-34AD-4EC2-B696-46F42D49D174}" = MSIChecker
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 SP1
"{CD5DC4AA-7D62-48D9-B756-5925471001FE}" = Microsoft OLE DB Provider for Visual FoxPro
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D44E7219-947E-4F1B-830E-66EF11ACC543}" = NA1Messenger
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{DB2C58E0-6284-4B48-97F2-22A980B6360B}" = System
"{DC226AC9-0314-496C-BE6A-B6A132628466}" = SiSAGP driver
"{E358CC1E-4953-4E27-ADEB-8B27D8BBC20E}" = UPSlinkHTTP
"{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0
"{EA9629DA-5715-48BA-B054-28169702B176}" = FOSS
"{ED782024-4713-4DD6-85FA-B2B038DE4007}" = RRU
"{EE0D5DCD-2B97-4473-98DF-E93C0BD92F7A}" = Adobe Stock Photos 1.0
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F6933C3F-8B88-46C6-8001-81BD53A1CB47}" = eCopy Desktop 9.2
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"Avira AntiVir Desktop" = Avira Free Antivirus
"Brother 1440" = Brother 1440
"BROWNIE" = Brownie
"Dell Printer Software Uninstall" = Dell Printer Software Uninstall
"Edisoft Merchant 3.0 for Accpac" = Edisoft Merchant 3.0 for Accpac
"Email Extractor 2.6_is1" = Email Extractor 2.6 + Mailbox SDK + Web Extractor + Email Addre
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{54319E6C-5EDF-4ECA-AE4E-34C2C355873A}" = ACCPAC - Crystal Reports 9 Runtime Files
"InstallShield_{BBE3E502-F1D6-4FC9-9844-CC0850B7C516}" = Network ScanGear Ver.2.21
"IrfanView" = IrfanView (remove only)
"KLiteCodecPack_is1" = K-Lite Codec Pack 2.72 Full
"LABEL MATRIX 7" = LABEL MATRIX 7
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 1.1 SP1 (1033)" = Microsoft .NET Framework 1.1 SP1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package
"Mozilla Firefox 11.0 (x86 en-US)" = Mozilla Firefox 11.0 (x86 en-US)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Outlook Email Address Extractor_is1" = Outlook Email Address Extractor 2.8
"Pervasive System Analyzer" = Pervasive System Analyzer
"POPFile" = POPFile 1.1.0
"PowerArchiver_is1" = PowerArchiver 2006 v9.60
"SiS VGA Driver" = SiS VGA Utilities
"UPS WorldShip" = UPS WorldShip
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"2ec9e9d1bf522caa" = FedEx Desktop Customer Tools - 1
"POPFile_Data" = POPFile Data (insidesales1)
========== Last 10 Event Log Errors ========== [ Application Events ]
Error - 3/28/2012 12:50:50 PM | Computer Name = IS1 | Source = UserInit | ID = 1000
Description = Could not execute the following script reporttranser.bat. The system
cannot find the file specified. .
Error - 3/28/2012 1:34:07 PM | Computer Name = IS1 | Source = Userenv | ID = 1054
Description = Windows cannot obtain the domain controller name for your computer
network. (The specified domain either does not exist or could not be contacted.
). Group Policy processing aborted.
Error - 3/28/2012 1:34:24 PM | Computer Name = IS1 | Source = AutoEnrollment | ID = 15
Description = Automatic certificate enrollment for local system failed to contact
the active directory (0x8007054b). The specified domain either does not exist
or could not be contacted. Enrollment will not be performed.
Error - 3/28/2012 1:37:47 PM | Computer Name = IS1 | Source = Userenv | ID = 1053
Description = Windows cannot determine the user or computer name. (The specified
domain either does not exist or could not be contacted. ). Group Policy processing
aborted.
Error - 3/28/2012 1:38:02 PM | Computer Name = IS1 | Source = Userenv | ID = 1054
Description = Windows cannot obtain the domain controller name for your computer
network. (The specified domain either does not exist or could not be contacted.
). Group Policy processing aborted.
Error - 3/28/2012 1:38:24 PM | Computer Name = IS1 | Source = UserInit | ID = 1000
Description = Could not execute the following script reporttranser.bat. The system
cannot find the file specified. .
Error - 3/29/2012 3:49:24 PM | Computer Name = IS1 | Source = Userenv | ID = 1054
Description = Windows cannot obtain the domain controller name for your computer
network. (The specified domain either does not exist or could not be contacted.
). Group Policy processing aborted.
Error - 3/29/2012 3:49:40 PM | Computer Name = IS1 | Source = AutoEnrollment | ID = 15
Description = Automatic certificate enrollment for local system failed to contact
the active directory (0x8007054b). The specified domain either does not exist
or could not be contacted. Enrollment will not be performed.
Error - 3/29/2012 3:51:11 PM | Computer Name = IS1 | Source = Userenv | ID = 1053
Description = Windows cannot determine the user or computer name. (The specified
domain either does not exist or could not be contacted. ). Group Policy processing
aborted.
Error - 3/29/2012 3:51:33 PM | Computer Name = IS1 | Source = UserInit | ID = 1000
Description = Could not execute the following script reporttranser.bat. The system
cannot find the file specified. .
[ System Events ]
Error - 3/28/2012 1:36:11 PM | Computer Name = IS1 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 3/28/2012 1:37:15 PM | Computer Name = IS1 | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
avipbb avkmgr Fips intelppm ssmdrv
Error - 3/28/2012 1:37:17 PM | Computer Name = IS1 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service StiSvc with
arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 3/28/2012 1:37:18 PM | Computer Name = IS1 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service StiSvc with
arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 3/28/2012 1:37:49 PM | Computer Name = IS1 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service wuauserv with
arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error - 3/28/2012 1:39:07 PM | Computer Name = IS1 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service StiSvc with
arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
Error - 3/28/2012 1:41:47 PM | Computer Name = IS1 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 3/29/2012 3:49:08 PM | Computer Name = IS1 | Source = NETLOGON | ID = 5719
Description = No Domain Controller is available for domain VANPTC due to the following:
%%1311. Make sure that the computer is connected to the network and try again. If
the problem persists, please contact your domain administrator.
Error - 3/29/2012 3:50:04 PM | Computer Name = IS1 | Source = Service Control Manager | ID = 7000
Description = The Attendant Console Communications Manager service failed to start
due to the following error: %%2
Error - 3/29/2012 3:50:21 PM | Computer Name = IS1 | Source = Print | ID = 33
Description = The PrintQueue Container could not be found because the DNS Domain
name could not be retrieved. Error: 54b
< End of report >