Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Help me to remove this USB maleware

Started by Abhijitmuley , Jul 28 2012 03:09 AM

  • Please log in to reply

#1
Abhijitmuley
Posted 28 July 2012 - 03:09 AM

Abhijitmuley

    New Member

  • Member
  • Pip
  • 1 posts
OTL logfile created on: 7/28/2012 2:12:13 PM - Run 1
OTL by OldTimer - Version 3.2.55.0 Folder = C:\Documents and Settings\Comp5\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

478.48 Mb Total Physical Memory | 137.95 Mb Available Physical Memory | 28.83% Memory free
1.09 Gb Paging File | 0.60 Gb Available in Paging File | 54.85% Paging File free
Paging file location(s): C:\pagefile.sys 720 1440 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 24.41 Gb Total Space | 19.11 Gb Free Space | 78.26% Space Free | Partition Type: NTFS
Drive D: | 50.11 Gb Total Space | 49.99 Gb Free Space | 99.76% Space Free | Partition Type: NTFS
Drive E: | 3.69 Gb Total Space | 2.45 Gb Free Space | 66.52% Space Free | Partition Type: FAT32

Computer Name: COMP1 | User Name: Comp5 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/07/28 14:10:14 | 000,597,504 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Comp5\Desktop\OTL.exe
PRC - [2012/07/28 11:28:06 | 000,486,845 | ---- | M] (Faronics Corporation) -- C:\Program Files\Faronics\Deep Freeze\Install C-0\_$Df\FrzState2k.exe
PRC - [2011/09/07 14:57:34 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/06/29 11:28:23 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2011/06/29 11:28:22 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2011/04/29 10:38:36 | 001,843,000 | ---- | M] (Orbitdownloader.com) -- C:\Program Files\Orbitdownloader\orbitdm.exe
PRC - [2011/04/28 19:20:28 | 000,557,056 | ---- | M] (Orbitdownloader.com) -- C:\Program Files\Orbitdownloader\orbitnet.exe
PRC - [2010/12/16 19:33:47 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/01/14 21:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2006/07/30 11:00:00 | 000,098,304 | R--- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
PRC - [2005/11/20 16:48:08 | 000,303,104 | ---- | M] (Faronics Corporation) -- C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
PRC - [2005/01/18 17:37:30 | 000,217,088 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Video\LogiTray.exe
PRC - [2005/01/18 17:08:36 | 000,192,512 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Video\FxSvr2.exe
PRC - [2004/10/27 12:19:14 | 000,073,728 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2004/10/08 11:52:32 | 000,221,184 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\LVCOMSX.EXE
PRC - [2004/08/04 04:26:50 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/01/15 18:03:44 | 000,049,152 | R--- | M] (S3 Graphics, Inc.) -- C:\WINDOWS\system32\VTTimer.exe


========== Modules (No Company Name) ==========

MOD - [2011/09/07 14:57:33 | 001,846,232 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011/07/12 13:05:16 | 006,271,648 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011/04/29 10:36:58 | 000,397,312 | ---- | M] () -- C:\Program Files\Orbitdownloader\wtlctrl.dll
MOD - [2010/01/28 12:57:58 | 000,355,688 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2009/05/26 21:06:28 | 000,913,408 | ---- | M] () -- C:\Program Files\Yahoo!\Messenger\yui.dll
MOD - [2005/11/20 16:51:32 | 000,049,152 | ---- | M] () -- C:\WINDOWS\system32\LogonDll.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2011/06/29 11:28:23 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011/06/29 11:28:22 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2005/11/20 16:48:08 | 000,303,104 | ---- | M] (Faronics Corporation) [Auto | Running] -- C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe -- (DF5Serv)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2011/06/29 11:28:23 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011/06/29 11:28:23 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009/05/11 11:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009/05/11 09:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2005/11/20 16:46:54 | 000,134,016 | ---- | M] (Faronics Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\DeepFrz.sys -- (DeepFrz)
DRV - [2005/01/31 15:50:04 | 000,211,712 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LV561AV.SYS -- (PID_0928)
DRV - [2005/01/31 15:42:46 | 000,022,016 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2004/10/27 11:27:38 | 002,284,864 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM)
DRV - [2004/08/03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139)
DRV - [2004/08/03 22:31:20 | 000,036,224 | ---- | M] (ADMtek Incorporated.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\an983.sys -- (AN983)
DRV - [2001/08/17 19:21:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {ab91efd4-6975-4081-8552-1b3922ed79e2}:1.0.5.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\[email protected]: C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [2012/07/28 12:52:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/07 14:57:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/06/28 10:05:27 | 000,000,000 | ---D | M]

[2010/04/10 21:45:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Comp5\Application Data\Mozilla\Extensions
[2012/07/28 12:34:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Comp5\Application Data\Mozilla\Firefox\Profiles\upsu630v.default\extensions
[2011/08/23 15:51:45 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Comp5\Application Data\Mozilla\Firefox\Profiles\upsu630v.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/12/16 21:23:23 | 000,000,000 | ---D | M] (HP Detect) -- C:\Documents and Settings\Comp5\Application Data\Mozilla\Firefox\Profiles\upsu630v.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}
[2011/06/29 11:25:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/08/30 21:54:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/12/16 21:22:14 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/02/25 11:36:57 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/06/29 11:25:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2010/04/11 14:44:34 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/09/07 14:57:35 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/05/04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/09/07 14:57:29 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

O1 HOSTS File: ([2001/08/23 16:30:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll ()
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe (Logitech Inc.)
O4 - HKLM..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe (Hewlett-Packard)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [VTTimer] C:\WINDOWS\System32\VTTimer.exe (S3 Graphics, Inc.)
O4 - HKCU..\Run: [LogitechSoftwareUpdate] C:\Program Files\Logitech\Video\ManifestEngine.exe (Logitech Inc.)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\System32\Macromed\Flash\FlashUtil10u_Plugin.exe (Adobe Systems, Inc.)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Download by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{02089DC4-EA81-4BF9-AACA-0F49ABCDB9E3}: NameServer = 203.197.12.30,202.54.1.18
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D72839E7-D72A-4A0A-9647-E2F39F62F559}: NameServer = 203.197.12.30,202.54.1.18
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E6DC75E7-2D8E-4F54-A65B-D792473694EF}: NameServer = 203.197.12.30,202.54.1.18
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\DfLogon: DllName - (LogonDll.dll) - C:\WINDOWS\System32\LogonDll.dll ()
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/04/10 21:02:25 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - Unable to obtain root file information for disk D:\
O33 - MountPoints2\{daccdd96-44e1-11df-a966-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{daccdd96-44e1-11df-a966-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{daccdd96-44e1-11df-a966-806d6172696f}\Shell\AutoRun\command - "" = E:\Setup.EXE
O34 - HKLM BootExecute: (autocheck autochk /k:C /k:D *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012/07/28 14:09:37 | 000,597,504 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Comp5\Desktop\OTL.exe
[2012/07/28 14:05:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\Desktop\New Folder
[2012/07/28 14:02:31 | 011,048,810 | ---- | C] (Macrovision Corporation) -- C:\Documents and Settings\Comp5\Desktop\filerecovery-demo.exe.part
[2012/07/28 14:00:47 | 015,523,768 | ---- | C] ({code:GDConstant|CompanyName} ) -- C:\Documents and Settings\Comp5\Desktop\RecoverMyFiles-Setup.exe
[2012/07/28 13:59:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Aid file recovery
[2012/07/28 13:59:30 | 000,000,000 | ---D | C] -- C:\Program Files\Aid file recovery
[2012/07/28 13:59:14 | 004,734,277 | ---- | C] (http://www.aidfile.com/ ) -- C:\Documents and Settings\Comp5\Desktop\aidfile_recovery_setup.exe
[2012/07/28 13:39:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\Application Data\PandoraRecovery
[2012/07/28 13:38:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Pandora Recovery
[2012/07/28 13:38:44 | 000,000,000 | ---D | C] -- C:\Program Files\Pandora Recovery
[2012/07/28 13:32:49 | 000,463,080 | ---- | C] (CNET Download.com) -- C:\Documents and Settings\Comp5\Desktop\cnet_PandoraRecovery2_1_1Setup_exe.exe
[2012/07/28 13:24:46 | 011,262,082 | ---- | C] (http://www.ojosoft.com ) -- C:\Documents and Settings\Comp5\Desktop\total-video-converter.exe
[2012/07/28 13:09:04 | 001,478,504 | ---- | C] (Ellora Assets Corporation ) -- C:\Documents and Settings\Comp5\Desktop\FreemakeVideoConverterSetup.exe
[2012/07/28 12:52:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\My Documents\Freemake
[2012/07/28 12:52:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\Start Menu\Programs\Freemake
[2012/07/28 12:52:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Freemake
[2012/07/28 12:52:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Freemake
[2012/07/28 12:49:18 | 000,000,000 | ---D | C] -- C:\Program Files\Freemake
[2012/07/28 12:47:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\My Documents\Topsevenreviews
[2012/07/28 12:45:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Topsevenreviews
[2012/07/28 12:45:33 | 000,000,000 | ---D | C] -- C:\Program Files\Topsevenreviews
[2012/07/28 12:34:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\Application Data\ProgSense
[2012/07/28 12:34:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\Application Data\GrabPro
[2012/07/28 12:34:36 | 000,000,000 | ---D | C] -- C:\downloads
[2012/07/28 12:34:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Orbit
[2012/07/28 12:34:18 | 000,000,000 | ---D | C] -- C:\Program Files\Orbitdownloader
[2012/07/28 12:34:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\Application Data\Orbit
[2012/07/28 12:30:02 | 004,380,472 | ---- | C] (www.orbitdownloader.com ) -- C:\Documents and Settings\Comp5\Desktop\OrbitDownloaderSetup.exe
[2012/07/28 12:25:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2012/07/28 12:25:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\My Documents\Any Video Converter Professional
[2012/07/28 12:24:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Any Video Converter Professional
[2012/07/28 12:24:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\Application Data\Any Video Converter Professional
[2012/07/28 12:24:29 | 000,000,000 | ---D | C] -- C:\Program Files\Any Video Converter Professional
[2012/07/28 12:23:37 | 016,352,125 | ---- | C] (Any-Video-Converter.com ) -- C:\Documents and Settings\Comp5\Desktop\any-video-converter.exe
[2012/07/28 12:23:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Comp5\Desktop\Crack
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/07/28 14:13:17 | 011,048,810 | ---- | M] (Macrovision Corporation) -- C:\Documents and Settings\Comp5\Desktop\filerecovery-demo.exe.part
[2012/07/28 14:10:14 | 000,597,504 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Comp5\Desktop\OTL.exe
[2012/07/28 14:07:50 | 015,523,768 | ---- | M] ({code:GDConstant|CompanyName} ) -- C:\Documents and Settings\Comp5\Desktop\RecoverMyFiles-Setup.exe
[2012/07/28 14:07:09 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012/07/28 14:03:44 | 005,746,279 | ---- | M] () -- C:\Documents and Settings\Comp5\Desktop\Aunty Is my [bleep] (Milk Alert) - xHamster.com.3gp
[2012/07/28 13:59:35 | 000,000,738 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Aid file recovery software.lnk
[2012/07/28 13:58:34 | 004,711,292 | ---- | M] () -- C:\Documents and Settings\Comp5\Desktop\aidfile_recovery_setup.zip
[2012/07/28 13:41:04 | 011,262,082 | ---- | M] (http://www.ojosoft.com ) -- C:\Documents and Settings\Comp5\Desktop\total-video-converter.exe
[2012/07/28 13:38:47 | 000,001,669 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Pandora Recovery.lnk
[2012/07/28 13:33:03 | 000,463,080 | ---- | M] (CNET Download.com) -- C:\Documents and Settings\Comp5\Desktop\cnet_PandoraRecovery2_1_1Setup_exe.exe
[2012/07/28 13:10:49 | 001,478,504 | ---- | M] (Ellora Assets Corporation ) -- C:\Documents and Settings\Comp5\Desktop\FreemakeVideoConverterSetup.exe
[2012/07/28 12:45:44 | 000,001,044 | ---- | M] () -- C:\Documents and Settings\Comp5\Desktop\Free FLV to 3GP Converter.lnk
[2012/07/28 12:40:15 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012/07/28 12:34:33 | 000,000,744 | ---- | M] () -- C:\Documents and Settings\Comp5\Application Data\Microsoft\Internet Explorer\Quick Launch\Orbit.lnk
[2012/07/28 12:34:33 | 000,000,726 | ---- | M] () -- C:\Documents and Settings\Comp5\Desktop\Orbit.lnk
[2012/07/28 12:33:46 | 006,635,892 | ---- | M] ( ) -- C:\Documents and Settings\Comp5\Desktop\free-flv-to-3gp-converter.exe
[2012/07/28 12:30:48 | 004,380,472 | ---- | M] (www.orbitdownloader.com ) -- C:\Documents and Settings\Comp5\Desktop\OrbitDownloaderSetup.exe
[2012/07/28 11:29:28 | 008,352,512 | ---- | M] () -- C:\Persi0.sys
[2012/07/28 11:28:01 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/07/27 16:15:36 | 005,524,073 | ---- | M] () -- C:\Documents and Settings\Comp5\Desktop\Indian Jewell Shop Owner [bleep]ing Sales Girl.mp4
[2012/07/19 17:29:48 | 004,734,277 | ---- | M] (http://www.aidfile.com/ ) -- C:\Documents and Settings\Comp5\Desktop\aidfile_recovery_setup.exe
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/07/28 14:02:15 | 005,746,279 | ---- | C] () -- C:\Documents and Settings\Comp5\Desktop\Aunty Is my [bleep] (Milk Alert) - xHamster.com.3gp
[2012/07/28 13:59:35 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Aid file recovery software.lnk
[2012/07/28 13:54:01 | 004,711,292 | ---- | C] () -- C:\Documents and Settings\Comp5\Desktop\aidfile_recovery_setup.zip
[2012/07/28 13:38:47 | 000,001,669 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Pandora Recovery.lnk
[2012/07/28 12:45:44 | 000,001,044 | ---- | C] () -- C:\Documents and Settings\Comp5\Desktop\Free FLV to 3GP Converter.lnk
[2012/07/28 12:34:33 | 000,000,744 | ---- | C] () -- C:\Documents and Settings\Comp5\Application Data\Microsoft\Internet Explorer\Quick Launch\Orbit.lnk
[2012/07/28 12:34:33 | 000,000,726 | ---- | C] () -- C:\Documents and Settings\Comp5\Desktop\Orbit.lnk
[2012/07/28 12:32:32 | 005,524,073 | ---- | C] () -- C:\Documents and Settings\Comp5\Desktop\Indian Jewell Shop Owner [bleep]ing Sales Girl.mp4
[2012/07/28 12:31:54 | 006,635,892 | ---- | C] ( ) -- C:\Documents and Settings\Comp5\Desktop\free-flv-to-3gp-converter.exe
[2011/01/02 16:23:56 | 000,053,248 | R--- | C] () -- C:\WINDOWS\System32\InstMed.exe
[2011/01/02 16:23:46 | 000,009,255 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2010/12/16 20:57:19 | 000,430,080 | ---- | C] () -- C:\WINDOWS\System32\ZSHP1018.EXE
[2010/12/16 20:57:19 | 000,106,496 | R--- | C] () -- C:\WINDOWS\System32\vshp1018.dll
[2010/04/30 13:48:42 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\Comp5\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== Alternate Data Streams ==========

@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:661DFA1C

< End of report >


OTL Extras logfile created on: 7/28/2012 2:12:13 PM - Run 1
OTL by OldTimer - Version 3.2.55.0 Folder = C:\Documents and Settings\Comp5\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

478.48 Mb Total Physical Memory | 137.95 Mb Available Physical Memory | 28.83% Memory free
1.09 Gb Paging File | 0.60 Gb Available in Paging File | 54.85% Paging File free
Paging file location(s): C:\pagefile.sys 720 1440 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 24.41 Gb Total Space | 19.11 Gb Free Space | 78.26% Space Free | Partition Type: NTFS
Drive D: | 50.11 Gb Total Space | 49.99 Gb Free Space | 99.76% Space Free | Partition Type: NTFS
Drive E: | 3.69 Gb Total Space | 2.45 Gb Free Space | 66.52% Space Free | Partition Type: FAT32

Computer Name: COMP1 | User Name: Comp5 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)
"C:\Program Files\Orbitdownloader\orbitdm.exe" = C:\Program Files\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"C:\Program Files\Orbitdownloader\orbitnet.exe" = C:\Program Files\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit -- (Orbitdownloader.com)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java™ 6 Update 26
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{456B239A-C1E0-4178-810E-8E8F09B06877}_is1" = Aid file recovery software version 3.5.5.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90280409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional with FrontPage
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.2
"{C43048A9-742C-4DAD-90D2-E3B53C9DB825}" = Logitech QuickCam Software
"7-Zip" = 7-Zip 4.65
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Any Video Converter Professional_is1" = Any Video Converter Professional 2.7.3
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Free FLV to 3GP Converter_is1" = Free FLV to 3GP Converter
"Freemake Video Converter_is1" = Freemake Video Converter version 3.0.2
"Google Marathi Input" = Google Marathi Input
"HP OrderReminder" = HP OrderReminder
"HP-LaserJet 1018" = LaserJet 1018
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"Logitech Print Service" = Logitech Print Service
"Mozilla Firefox 6.0.2 (x86 en-US)" = Mozilla Firefox 6.0.2 (x86 en-US)
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Orbit_is1" = Orbit Downloader
"PandoraRecovery" = PandoraRecovery (Remove Only)
"QcDrv" = Logitech® Camera Driver
"Recuva" = Recuva
"VTDisplay" = S3 S3Display
"VTGamma2" = S3 S3Gamma2
"VTInfo2" = S3 S3Info2
"VTOverlay" = S3 S3Overlay
"Yahoo! Messenger" = Yahoo! Messenger

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 4/30/2010 6:35:10 AM | Computer Name = COMP1 | Source = MsiInstaller | ID = 11500
Description = Product: Java™ 6 Update 20 -- Error 1500.Another installation is
in progress. You must complete that installation before continuing this one.

Error - 8/30/2010 12:13:08 PM | Computer Name = COMP1 | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.

Error - 8/30/2010 12:13:08 PM | Computer Name = COMP1 | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.

Error - 6/28/2011 12:30:57 AM | Computer Name = COMP1 | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download....uthrootseq.txt>
with error: This operation returned because the timeout period expired.

Error - 7/12/2011 3:14:27 AM | Computer Name = COMP1 | Source = crypt32 | ID = 131075
Description = Failed auto update retrieval of third-party root list cab from: <http://www.download....uthrootstl.cab>
with error: The server returned an invalid or unrecognized response

Error - 12/31/2002 8:35:50 PM | Computer Name = COMP1 | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.

Error - 12/31/2002 8:35:50 PM | Computer Name = COMP1 | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.

Error - 12/31/2002 8:35:53 PM | Computer Name = COMP1 | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.

Error - 7/28/2012 3:41:15 AM | Computer Name = COMP1 | Source = Application Error | ID = 1000
Description = Faulting application free flv to 3gp converter.exe, version 0.0.0.0,
faulting module avcodec-52.dll, version 0.0.0.0, fault address 0x0043cb83.

[ System Events ]
Error - 9/7/2011 5:08:28 AM | Computer Name = COMP1 | Source = W32Time | ID = 39452701
Description = The time provider NtpClient is configured to acquire time from one
or more time sources, however none of the sources are currently accessible. No attempt
to contact a source will be made for 14 minutes. NtpClient has no source of accurate
time.

Error - 12/11/2011 5:05:47 PM | Computer Name = COMP1 | Source = W32Time | ID = 39452706
Description = The time service has detected that the system time needs to be changed
by +61985 seconds. The time service will not change the system time by more than
+54000 seconds. Verify that your time and time zone are correct, and that the time
source time.windows.com (ntp.m|0x1|192.168.1.2:123->65.55.21.21:123) is working
properly.

Error - 12/14/2011 8:46:45 PM | Computer Name = COMP1 | Source = System Error | ID = 1003
Description = Error code 1000008e, parameter1 c0000005, parameter2 f3a667c8, parameter3
f5faa8a8, parameter4 00000000.

Error - 12/14/2011 8:47:14 PM | Computer Name = COMP1 | Source = System Error | ID = 1003
Description = Error code 00000077, parameter1 c000000e, parameter2 c000000e, parameter3
00000000, parameter4 00aa8000.

Error - 12/14/2011 8:49:02 PM | Computer Name = COMP1 | Source = W32Time | ID = 39452689
Description = Time Provider NtpClient: An error occurred during DNS lookup of the
manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
again in 15 minutes. The error was: A socket operation was attempted to an unreachable
host. (0x80072751)

Error - 12/14/2011 8:49:02 PM | Computer Name = COMP1 | Source = W32Time | ID = 39452701
Description = The time provider NtpClient is configured to acquire time from one
or more time sources, however none of the sources are currently accessible. No attempt
to contact a source will be made for 14 minutes. NtpClient has no source of accurate
time.

Error - 12/14/2011 8:49:02 PM | Computer Name = COMP1 | Source = W32Time | ID = 39452701
Description = The time provider NtpClient is configured to acquire time from one
or more time sources, however none of the sources are currently accessible. No attempt
to contact a source will be made for 14 minutes. NtpClient has no source of accurate
time.

Error - 12/31/2002 8:35:47 PM | Computer Name = COMP1 | Source = W32Time | ID = 39452706
Description = The time service has detected that the system time needs to be changed
by +291812699 seconds. The time service will not change the system time by more
than +54000 seconds. Verify that your time and time zone are correct, and that
the time source time.windows.com (ntp.m|0x1|192.168.1.22:123->65.55.21.21:123) is
working properly.

Error - 5/2/2012 3:51:05 AM | Computer Name = COMP1 | Source = System Error | ID = 1003
Description = Error code 1000007e, parameter1 c0000005, parameter2 80592093, parameter3
f2e8abc0, parameter4 f2e8a8bc.

Error - 7/28/2012 1:59:33 AM | Computer Name = COMP1 | Source = System Error | ID = 1003
Description = Error code 1000008e, parameter1 c0000005, parameter2 f3a667c8, parameter3
f302d8a8, parameter4 00000000.


< End of report >





I got these reports after scanning with OTL .Plz let me know how to remove Maleware
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP