Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

website redirect an no acess to antivirus page or update


  • Please log in to reply

#1
gblawn00

gblawn00

    New Member

  • Member
  • Pip
  • 2 posts
the is my combifix do not no how to copy it to the page hope this helps some just need some directions. getting redirected an cant update also did f11 recovery to new an still have the issue. thank you

Attached Files


  • 0

Advertisements


#2
gblawn00

gblawn00

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
COULDNT GET MBAM TO DOWNLOAD COULDNT ACESS PAGE. ROOTER KEPT STOPPING WHILE RUNNING BUT DID GET THE OTLISTIT2 OTListIt logfile created on: 5/26/2009 1:46:17 AM - Run 2
OTListIt2 by OldTimer - Version 2.0.15.8 Folder = C:\Users\gblawn00\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16386)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 289.31 Gb Total Space | 268.43 Gb Free Space | 92.78% Space Free | Partition Type: NTFS
Drive D: | 8.78 Gb Total Space | 0.60 Gb Free Space | 6.84% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: GBLAWN00-PC
Current User Name: gblawn00
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Output = Minimal
File Age = 30 Days
Company Name Whitelist: On

========== Processes (SafeList) ==========

PRC - c:\Program Files\Common Files\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Windows\system32\DRIVERS\xaudio.exe (Conexant Systems, Inc.)
PRC - C:\Windows\Explorer.EXE (Microsoft Corporation)
PRC - C:\hp\support\hpsysdrv.exe (Hewlett-Packard Company)
PRC - C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe (OsdMaestro)
PRC - C:\WINDOWS\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\Snapfish Media Detector\SnapfishMediaDetector.exe ()
PRC - C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
PRC - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe (Hewlett-Packard)
PRC - C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
PRC - C:\Program Files\Internet Explorer\IEUser.exe (Microsoft Corporation)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\hp\kbd\kbd.exe (Hewlett-Packard Company)
PRC - C:\Users\gblawn00\Desktop\OTListIt2.exe (OldTimer Tools)

========== Win32 Services (SafeList) ==========

SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (ehRecvr [On_Demand | Stopped]) -- C:\Windows\ehome\ehRecvr.exe (Microsoft Corporation)
SRV - (ehSched [On_Demand | Stopped]) -- C:\Windows\ehome\ehsched.exe (Microsoft Corporation)
SRV - (ehstart [Auto | Stopped]) -- C:\Windows\ehome\ehstart.dll (Microsoft Corporation)
SRV - (FontCache3.0.0.0 [On_Demand | Running]) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (IDriverT [On_Demand | Stopped]) -- c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (idsvc [Unknown | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (LightScribeService [Auto | Running]) -- c:\Program Files\Common Files\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
SRV - (MBAMService [Auto | Running]) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (NetTcpPortSharing [Disabled | Stopped]) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (odserv [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (RoxMediaDB9 [On_Demand | Stopped]) -- c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe (Sonic Solutions)
SRV - (sdAuxService [On_Demand | Stopped]) -- C:\Program Files\Spyware Doctor\pctsAuxs.exe (PC Tools)
SRV - (sdCoreService [On_Demand | Stopped]) -- C:\Program Files\Spyware Doctor\pctsSvc.exe (PC Tools)
SRV - (stllssvr [On_Demand | Stopped]) -- c:\Program Files\Common Files\SureThing Shared\stllssvr.exe (MicroVision Development, Inc.)
SRV - (WinDefend [Auto | Running]) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (WMPNetworkSvc [On_Demand | Stopped]) -- C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
SRV - (XAudioService [Auto | Running]) -- C:\Windows\system32\DRIVERS\xaudio.exe (Conexant Systems, Inc.)

========== Driver Services (SafeList) ==========

DRV - (adp94xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (adpahci [Disabled | Stopped]) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (adpu160m [Disabled | Stopped]) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (adpu320 [Disabled | Stopped]) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (aic78xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (aliide [Disabled | Stopped]) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (arc [Disabled | Stopped]) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (arcsas [Disabled | Stopped]) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (BrFiltLo [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (Brserid [Disabled | Stopped]) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrSerWdm [Disabled | Stopped]) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm [Disabled | Stopped]) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer [On_Demand | Stopped]) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (cmdide [Disabled | Stopped]) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (E1G60 [On_Demand | Stopped]) -- C:\Windows\system32\DRIVERS\E1G60I32.sys (Intel Corporation)
DRV - (elxstor [Disabled | Stopped]) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (HpCISSs [Disabled | Stopped]) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (HSF_DP [On_Demand | Running]) -- C:\Windows\system32\DRIVERS\HSX_DP.sys (Conexant Systems, Inc.)
DRV - (HSXHWBS2 [On_Demand | Running]) -- C:\Windows\system32\DRIVERS\HSXHWBS2.sys (Conexant Systems, Inc.)
DRV - (iaStorV [Disabled | Stopped]) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (iirsp [Disabled | Stopped]) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (IntcAzAudAddService [On_Demand | Running]) -- C:\Windows\system32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (iteatapi [Disabled | Stopped]) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (iteraid [Disabled | Stopped]) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (LSI_FC [Disabled | Stopped]) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (LSI_SAS [Disabled | Stopped]) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (LSI_SCSI [Disabled | Stopped]) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (MBAMProtector [On_Demand | Running]) -- C:\Windows\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (mdmxsdk [Auto | Running]) -- C:\Windows\system32\DRIVERS\mdmxsdk.sys (Conexant)
DRV - (megasas [Disabled | Stopped]) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation)
DRV - (Mraid35x [Disabled | Stopped]) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (nfrd960 [Disabled | Stopped]) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (ntrigdigi [Disabled | Stopped]) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (NVENETFD [On_Demand | Running]) -- C:\Windows\system32\DRIVERS\nvm60x32.sys (NVIDIA Corporation)
DRV - (nvlddmkm [On_Demand | Running]) -- C:\Windows\system32\DRIVERS\nvlddmkm.sys (NVIDIA Corporation)
DRV - (nvraid [Disabled | Stopped]) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor [Disabled | Stopped]) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (nvstor32 [Boot | Running]) -- C:\Windows\system32\drivers\nvstor32.sys (NVIDIA Corporation)
DRV - (PCTCore [Boot | Running]) -- C:\Windows\system32\drivers\PCTCore.sys (PC Tools)
DRV - (Ps2 [On_Demand | Running]) -- C:\Windows\system32\DRIVERS\PS2.sys (Hewlett-Packard Company)
DRV - (PxHelp20 [Boot | Running]) -- C:\Windows\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (ql2300 [Disabled | Stopped]) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (ql40xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (secdrv [Auto | Running]) -- C:\Windows\System32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (SiSRaid2 [Disabled | Stopped]) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.)
DRV - (SiSRaid4 [Disabled | Stopped]) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (Symc8xx [Disabled | Stopped]) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_hi [Disabled | Stopped]) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Sym_u3 [Disabled | Stopped]) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (uliahci [Disabled | Stopped]) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (UlSata [Disabled | Stopped]) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (ulsata2 [Disabled | Stopped]) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (viaide [Disabled | Stopped]) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (vsmraid [Disabled | Stopped]) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (winachsf [On_Demand | Running]) -- C:\Windows\system32\DRIVERS\HSX_CNXT.sys (Conexant Systems, Inc.)
DRV - (XAudio [Auto | Running]) -- C:\Windows\system32\DRIVERS\xaudio.sys (Conexant Systems, Inc.)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...a...&pf=desktop
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn...st/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn...st/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...amp;ar=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...a...&pf=desktop
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: (27 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [KBD] C:\HP\KBD\KbdStub.EXE ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart (NVIDIA Corporation)
O4 - HKLM..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" (OsdMaestro)
O4 - HKLM..\Run: [RtHDVCpl] RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SnapfishMediaDetector] C:\Program Files\Snapfish Media Detector\SnapfishMediaDetector.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autoRun (Hewlett-Packard)
O4 - HKCU..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (Microsoft Corporation)
O4 - HKCU..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter File not found
O4 - HKLM..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe (soft thinks)
O4 - Startup: C:\Users\gblawn00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O4 - Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snapfish Media Detector.lnk = C:\Program Files\Snapfish Media Detector\SnapfishMediaDetector.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [@%SystemRoot%\system32\nlasvc.dll,-1000] - C:\Windows\system32\NLAapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [@%SystemRoot%\system32\napinsp.dll,-1000] - C:\Windows\system32\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [@%SystemRoot%\system32\pnrpnsp.dll,-1000] - C:\Windows\system32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [@%SystemRoot%\system32\pnrpnsp.dll,-1001] - C:\Windows\system32\pnrpnsp.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet)
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.h...tDetection2.cab (GMNRev Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://dl8-cdn-09.su...ows-i586-jc.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\Explorer.exe (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/04/23 19:59:56 | 00,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - * [2009/05/26 01:43:45 | 00,000,000 | R--D | M]
NetSvcs: AeLookupSvc - C:\Windows\System32\aelupsvc.dll (Microsoft Corporation)
NetSvcs: wercplsupport - C:\Windows\System32\wercplsupport.dll (Microsoft Corporation)
NetSvcs: Themes - C:\Windows\system32\shsvcs.dll (Microsoft Corporation)
NetSvcs: CertPropSvc - C:\Windows\System32\certprop.dll (Microsoft Corporation)
NetSvcs: SCPolicySvc - C:\Windows\System32\certprop.dll (Microsoft Corporation)
NetSvcs: lanmanserver - C:\Windows\System32\srvsvc.dll (Microsoft Corporation)
NetSvcs: gpsvc - C:\Windows\System32\gpsvc.dll (Microsoft Corporation)
NetSvcs: IKEEXT - C:\Windows\System32\ikeext.dll (Microsoft Corporation)
NetSvcs: AudioSrv - C:\Windows\System32\Audiosrv.dll (Microsoft Corporation)
NetSvcs: FastUserSwitchingCompatibility -
NetSvcs: Ias -
NetSvcs: Irmon -
NetSvcs: Nla -
NetSvcs: Ntmssvc -
NetSvcs: NWCWorkstation -
NetSvcs: Nwsapagent -
NetSvcs: Rasauto - C:\Windows\System32\rasauto.dll (Microsoft Corporation)
NetSvcs: Rasman - C:\Windows\System32\rasmans.dll (Microsoft Corporation)
NetSvcs: Remoteaccess - C:\Windows\System32\mprdim.dll (Microsoft Corporation)
NetSvcs: SENS - C:\Windows\system32\sens.dll (Microsoft Corporation)
NetSvcs: Sharedaccess - C:\Windows\System32\ipnathlp.dll (Microsoft Corporation)
NetSvcs: SRService -
NetSvcs: Tapisrv - C:\Windows\System32\tapisrv.dll (Microsoft Corporation)
NetSvcs: Wmi -
NetSvcs: WmdmPmSp -
NetSvcs: TermService - C:\Windows\System32\termsrv.dll (Microsoft Corporation)
NetSvcs: wuauserv - C:\Windows\system32\wuaueng.dll (Microsoft Corporation)
NetSvcs: BITS - C:\Windows\system32\qmgr.dll (Microsoft Corporation)
NetSvcs: ShellHWDetection - C:\Windows\System32\shsvcs.dll (Microsoft Corporation)
NetSvcs: LogonHours -
NetSvcs: PCAudit -
NetSvcs: helpsvc -
NetSvcs: uploadmgr -
NetSvcs: iphlpsvc - C:\Windows\System32\iphlpsvc.dll (Microsoft Corporation)
NetSvcs: seclogon - C:\Windows\system32\seclogon.dll (Microsoft Corporation)
NetSvcs: AppInfo - C:\Windows\System32\appinfo.dll (Microsoft Corporation)
NetSvcs: msiscsi - C:\Windows\system32\iscsiexe.dll (Microsoft Corporation)
NetSvcs: MMCSS - C:\Windows\system32\mmcss.dll (Microsoft Corporation)
NetSvcs: ProfSvc - C:\Windows\system32\profsvc.dll (Microsoft Corporation)
NetSvcs: EapHost - C:\Windows\System32\eapsvc.dll (Microsoft Corporation)
NetSvcs: winmgmt - C:\Windows\system32\wbem\WMIsvc.dll (Microsoft Corporation)
NetSvcs: schedule - C:\Windows\system32\schedsvc.dll (Microsoft Corporation)
NetSvcs: SessionEnv - C:\Windows\system32\sessenv.dll (Microsoft Corporation)
NetSvcs: browser - C:\Windows\System32\browser.dll (Microsoft Corporation)
NetSvcs: hkmsvc - C:\Windows\system32\kmsvc.dll (Microsoft Corporation)
SafeBootMin: AppInfo - (Microsoft Corporation)
SafeBootMin: AppMgmt - (Microsoft Corporation)
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: CryptSvc - (Microsoft Corporation)
SafeBootMin: DcomLaunch - (Microsoft Corporation)
SafeBootMin: EventLog - (Microsoft Corporation)
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: KeyIso - (Microsoft Corporation)
SafeBootMin: Netlogon - (Microsoft Corporation)
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PlugPlay - (Microsoft Corporation)
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: procexp90.Sys - Driver
SafeBootMin: ProfSvc - (Microsoft Corporation)
SafeBootMin: RpcSs - (Microsoft Corporation)
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sdauxservice - (PC Tools)
SafeBootMin: sdcoreservice - (PC Tools)
SafeBootMin: sermouse.sys - (Microsoft Corporation)
SafeBootMin: SWPRV - (Microsoft Corporation)
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: TabletInputService - (Microsoft Corporation)
SafeBootMin: TBS - (Microsoft Corporation)
SafeBootMin: TrustedInstaller - (Microsoft Corporation)
SafeBootMin: VDS - (Microsoft Corporation)
SafeBootMin: vga.sys - (Microsoft Corporation)
SafeBootMin: vgasave.sys - (Microsoft Corporation)
SafeBootMin: volmgr.sys - (Microsoft Corporation)
SafeBootMin: volmgrx.sys - (Microsoft Corporation)
SafeBootMin: WinDefend - (Microsoft Corporation)
SafeBootMin: WinMgmt - (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AFD - (Microsoft Corporation)
SafeBootNet: AppInfo - (Microsoft Corporation)
SafeBootNet: AppMgmt - (Microsoft Corporation)
SafeBootNet: Base - Driver Group
SafeBootNet: BFE - (Microsoft Corporation)
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: bowser - (Microsoft Corporation)
SafeBootNet: Browser - (Microsoft Corporation)
SafeBootNet: CryptSvc - (Microsoft Corporation)
SafeBootNet: DcomLaunch - (Microsoft Corporation)
SafeBootNet: dfsc - (Microsoft Corporation)
SafeBootNet: Dhcp - (Microsoft Corporation)
SafeBootNet: DnsCache - (Microsoft Corporation)
SafeBootNet: Dot3Svc - (Microsoft Corporation)
SafeBootNet: Eaphost - (Microsoft Corporation)
SafeBootNet: EventLog - (Microsoft Corporation)
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: IKEEXT - (Microsoft Corporation)
SafeBootNet: ipnat.sys - (Microsoft Corporation)
SafeBootNet: KeyIso - (Microsoft Corporation)
SafeBootNet: LanmanServer - (Microsoft Corporation)
SafeBootNet: LanmanWorkstation - (Microsoft Corporation)
SafeBootNet: LmHosts - (Microsoft Corporation)
SafeBootNet: Messenger - Service
SafeBootNet: MPSDrv - (Microsoft Corporation)
SafeBootNet: MPSSvc - (Microsoft Corporation)
SafeBootNet: mrxsmb - (Microsoft Corporation)
SafeBootNet: mrxsmb10 - (Microsoft Corporation)
SafeBootNet: mrxsmb20 - (Microsoft Corporation)
SafeBootNet: NativeWifiP - (Microsoft Corporation)
SafeBootNet: NDIS - (Microsoft Corporation)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: Ndisuio - (Microsoft Corporation)
SafeBootNet: NetBIOS - (Microsoft Corporation)
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetBT - (Microsoft Corporation)
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Netlogon - (Microsoft Corporation)
SafeBootNet: NetMan - (Microsoft Corporation)
SafeBootNet: netprofm - (Microsoft Corporation)
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NlaSvc - (Microsoft Corporation)
SafeBootNet: Nsi - (Microsoft Corporation)
SafeBootNet: nsiproxy.sys - (Microsoft Corporation)
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PlugPlay - (Microsoft Corporation)
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: PolicyAgent - (Microsoft Corporation)
SafeBootNet: Primary disk - Driver Group
SafeBootNet: procexp90.Sys - Driver
SafeBootNet: ProfSvc - (Microsoft Corporation)
SafeBootNet: rdbss - (Microsoft Corporation)
SafeBootNet: rdpencdd.sys - (Microsoft Corporation)
SafeBootNet: rdsessmgr - Service
SafeBootNet: RpcSs - (Microsoft Corporation)
SafeBootNet: sacsvr - Service
SafeBootNet: SCardSvr - (Microsoft Corporation)
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sdauxservice - (PC Tools)
SafeBootNet: sdcoreservice - (PC Tools)
SafeBootNet: sermouse.sys - (Microsoft Corporation)
SafeBootNet: SharedAccess - (Microsoft Corporation)
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: SWPRV - (Microsoft Corporation)
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TabletInputService - (Microsoft Corporation)
SafeBootNet: TBS - (Microsoft Corporation)
SafeBootNet: Tcpip - (Microsoft Corporation)
SafeBootNet: TDI - Driver Group
SafeBootNet: TrustedInstaller - (Microsoft Corporation)
SafeBootNet: VDS - (Microsoft Corporation)
SafeBootNet: vga.sys - (Microsoft Corporation)
SafeBootNet: vgasave.sys - (Microsoft Corporation)
SafeBootNet: volmgr.sys - (Microsoft Corporation)
SafeBootNet: volmgrx.sys - (Microsoft Corporation)
SafeBootNet: WinDefend - (Microsoft Corporation)
SafeBootNet: WinMgmt - (Microsoft Corporation)
SafeBootNet: Wlansvc - (Microsoft Corporation)
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} -
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Macromedia Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
Drivers32: aux - C:\Windows\system32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi - C:\Windows\system32\wdmaud.drv (Microsoft Corporation)
Drivers32: midimapper - C:\Windows\system32\midimap.dll (Microsoft Corporation)
Drivers32: mixer - C:\Windows\system32\wdmaud.drv (Microsoft Corporation)
Drivers32: msacm.imaadpcm - C:\Windows\system32\imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.msadpcm - C:\Windows\system32\msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - C:\Windows\system32\msg711.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - C:\Windows\system32\msgsm32.acm (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\system32\iccvid.dll (Radius Inc.)
Drivers32: vidc.i420 - C:\Windows\system32\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.iyuv - C:\Windows\system32\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.mrle - C:\Windows\system32\msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msvc - C:\Windows\system32\msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.uyvy - C:\Windows\system32\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yuy2 - C:\Windows\system32\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yvu9 - C:\Windows\system32\tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.yvyu - C:\Windows\system32\msyuv.dll (Microsoft Corporation)
Drivers32: wave - C:\Windows\system32\wdmaud.drv (Microsoft Corporation)
Drivers32: wavemapper - C:\Windows\system32\msacm32.drv (Microsoft Corporation)

========== Files/Folders - Created Within 30 Days ==========

[2009/05/26 01:43:43 | 00,501,248 | ---- | C] (OldTimer Tools) -- C:\Users\gblawn00\Desktop\OTListIt2.exe
[2009/05/26 01:32:53 | 00,000,000 | ---D | C] -- C:\Rooter$
[2009/05/26 01:32:34 | 00,267,612 | ---- | C] () -- C:\Users\gblawn00\Desktop\Rooter.exe
[2009/05/26 01:01:58 | 00,021,504 | ---- | C] (Doug Knox) -- C:\Users\gblawn00\Desktop\SysRestorePoint.exe
[2009/05/26 00:31:15 | 00,000,000 | --SD | C] -- C:\Combo-Fix
[2009/05/26 00:31:14 | 00,320,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CF15699.exe
[2009/05/26 00:29:30 | 00,081,920 | ---- | C] (Soeperman Enterprises Ltd.) -- C:\Users\gblawn00\Desktop\BFU.exe
[2009/05/26 00:23:11 | 00,132,597 | ---- | C] () -- C:\Users\gblawn00\Desktop\Flash_Disinfector.exe
[2009/05/26 00:12:03 | 00,440,104 | ---- | C] () -- C:\Users\gblawn00\Desktop\RootRepeal.zip
[2009/05/26 00:04:48 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2009/05/25 23:58:30 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\Roaming\Adobe
[2009/05/25 23:58:28 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\Desktop\f-downadup
[2009/05/25 23:57:34 | 05,720,072 | ---- | C] () -- C:\Users\gblawn00\Desktop\f-downadup.zip
[2009/05/25 23:54:01 | 00,000,000 | ---D | C] -- C:\Windows\temp
[2009/05/25 23:53:27 | 00,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2009/05/25 23:47:18 | 02,996,466 | R--- | C] () -- C:\Users\gblawn00\Desktop\Combo-Fix.exe
[2009/05/25 23:32:28 | 00,278,221 | ---- | C] () -- C:\Users\gblawn00\Desktop\gmer.zip
[2009/05/25 23:28:59 | 00,000,915 | ---- | C] () -- C:\Users\gblawn00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2009/05/25 23:28:52 | 00,000,735 | ---- | C] () -- C:\Users\gblawn00\Desktop\NTREGOPT.lnk
[2009/05/25 23:28:52 | 00,000,716 | ---- | C] () -- C:\Users\gblawn00\Desktop\ERUNT.lnk
[2009/05/25 23:28:51 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2009/05/25 23:27:27 | 00,794,112 | ---- | C] () -- C:\Users\gblawn00\Desktop\The_Comedian.exe
[2009/05/25 23:15:09 | 00,154,624 | ---- | C] () -- C:\Windows\PEV.exe
[2009/05/25 23:03:27 | 00,180,736 | ---- | C] (OldTimer Tools) -- C:\Users\gblawn00\Desktop\OTCleanIt.exe
[2009/05/25 22:58:38 | 00,000,817 | ---- | C] () -- C:\Users\gblawn00\Desktop\CleanUp!.lnk
[2009/05/25 22:58:36 | 00,000,000 | ---D | C] -- C:\Program Files\CleanUp!
[2009/05/25 22:57:21 | 00,000,000 | ---D | C] -- C:\Program Files\trend micro
[2009/05/25 22:45:58 | 00,000,000 | ---D | C] -- C:\Windows\ERDNT
[2009/05/25 22:44:41 | 00,000,236 | ---- | C] () -- C:\Users\gblawn00\Desktop\can not connect to antivirus websites [Solved].url
[2009/05/25 21:49:51 | 00,000,000 | ---D | C] -- C:\Windows\Downloaded Installations
[2009/05/25 21:45:53 | 00,001,922 | RHS- | C] () -- C:\Windows\System32\drivers\103C_HP_CPC_GG781AA-ABA a6110n_YC_0Pavi_QCNH725_E73NAv3PrA1_49_INARRA2_SASUSTek Computer INC._V2.00_B5.09_T070515_WUH0_L409_M3454_J320_7AMD_8Athlon 64 X2 Dual Core_92.3_#070731_N10DE03EF_Z14F12F20_G10DE03D0.MRK
[2009/05/25 21:38:34 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\Roaming\Malwarebytes
[2009/05/25 21:38:33 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/05/25 21:38:33 | 00,000,820 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/05/25 21:38:30 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/05/25 21:38:29 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/05/25 21:38:29 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/05/25 20:52:51 | 00,001,020 | ---- | C] () -- C:\Users\gblawn00\Documents\DrWeb.csv
[2009/05/25 20:00:31 | 00,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2009/05/25 19:58:29 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[2009/05/25 19:55:17 | 36,223,63136 | -HS- | C] () -- C:\hiberfil.sys
[2009/05/25 18:10:26 | 00,159,600 | ---- | C] (PC Tools) -- C:\Windows\System32\drivers\pctgntdi.sys
[2009/05/25 18:10:20 | 00,130,936 | ---- | C] (PC Tools) -- C:\Windows\System32\drivers\PCTCore.sys
[2009/05/25 18:10:20 | 00,073,840 | ---- | C] (PC Tools) -- C:\Windows\System32\drivers\PCTAppEvent.sys
[2009/05/25 18:10:17 | 00,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2009/05/25 18:10:16 | 00,001,761 | ---- | C] () -- C:\Users\Public\Desktop\Spyware Doctor.lnk
[2009/05/25 18:10:15 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
[2009/05/25 18:10:14 | 00,064,392 | ---- | C] (PC Tools) -- C:\Windows\System32\drivers\pctplsg.sys
[2009/05/25 18:10:10 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\Roaming\PC Tools
[2009/05/25 18:10:10 | 00,000,000 | ---D | C] -- C:\ProgramData\PC Tools
[2009/05/25 18:10:10 | 00,000,000 | ---D | C] -- C:\Program Files\Spyware Doctor
[2009/05/25 17:26:33 | 00,000,000 | ---D | C] -- C:\ProgramData\Yahoo! Companion
[2009/05/25 17:19:05 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\Roaming\Snapfish
[2009/05/25 17:18:44 | 00,000,402 | -HS- | C] () -- C:\Users\gblawn00\Documents\desktop.ini
[2009/05/25 17:18:44 | 00,000,282 | -HS- | C] () -- C:\Users\gblawn00\Desktop\desktop.ini
[2009/05/25 17:18:44 | 00,000,174 | -HS- | C] () -- C:\Users\gblawn00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
[2009/05/25 17:18:44 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\LocalLow
[2009/05/25 17:18:35 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\Roaming\Identities
[2009/05/25 17:17:58 | 00,001,434 | ---- | C] () -- C:\Users\Public\Desktop\Snapfish Photos - First 25 Prints Free.lnk
[2009/05/25 17:17:47 | 00,002,059 | ---- | C] () -- C:\Users\Public\Desktop\eBay.lnk
[2009/05/25 17:17:47 | 00,002,023 | ---- | C] () -- C:\Users\Public\Desktop\Try AOL Today.lnk
[2009/05/25 17:17:47 | 00,002,017 | ---- | C] () -- C:\Users\Public\Desktop\Vonage.lnk
[2009/05/25 17:17:47 | 00,001,989 | ---- | C] () -- C:\Users\Public\Desktop\MSN.lnk
[2009/05/25 17:17:47 | 00,001,871 | ---- | C] () -- C:\Users\Public\Desktop\High-Speed Services.lnk
[2009/05/25 17:17:47 | 00,001,843 | ---- | C] () -- C:\Users\Public\Desktop\Easy Internet Services.lnk
[2009/05/25 17:17:47 | 00,000,754 | ---- | C] () -- C:\Users\Public\Desktop\Rhapsody.lnk
[2009/05/25 17:17:28 | 00,000,044 | ---- | C] () -- C:\Windows\System\hpsysdrv.dat
[2009/05/25 17:16:57 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\Roaming\Macromedia
[2009/05/25 17:16:25 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\Roaming\Hewlett-Packard
[2009/05/25 17:14:17 | 00,000,000 | -HSD | C] -- C:\Users\gblawn00\Documents\My Videos
[2009/05/25 17:14:17 | 00,000,000 | -HSD | C] -- C:\Users\gblawn00\Documents\My Pictures
[2009/05/25 17:14:17 | 00,000,000 | -HSD | C] -- C:\Users\gblawn00\Documents\My Music
[2009/05/25 17:14:16 | 00,000,000 | --SD | C] -- C:\Users\gblawn00\AppData\Roaming\Microsoft
[2009/05/25 17:14:16 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\Roaming\Media Center Programs
[2009/05/25 17:14:16 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\Roaming
[2009/05/25 17:14:16 | 00,000,000 | ---D | C] -- C:\Users\gblawn00\AppData\Local
[2009/05/25 17:09:31 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Videos
[2009/05/25 17:09:31 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Pictures
[2009/05/25 17:09:31 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Music
[2009/05/25 17:09:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Templates
[2009/05/25 17:09:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Start Menu
[2009/05/25 17:09:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Favorites
[2009/05/25 17:09:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Documents
[2009/05/25 17:09:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Desktop
[2009/05/25 17:09:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Application Data
[2009/05/25 17:09:31 | 00,000,000 | -HSD | C] -- C:\Documents and Settings
[2007/04/23 19:25:13 | 00,327,680 | ---- | C] () -- C:\Windows\System32\pythoncom24.dll
[2007/04/23 19:25:13 | 00,102,400 | ---- | C] () -- C:\Windows\System32\pywintypes24.dll
[2007/03/06 04:47:24 | 00,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2007/01/12 10:07:48 | 00,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2007/01/12 10:07:48 | 00,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[2006/11/02 08:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 06:23:31 | 00,000,215 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 06:23:31 | 00,000,144 | ---- | C] () -- C:\Windows\win.ini
[2006/11/02 03:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

========== Files - Modified Within 30 Days ==========

[2009/05/26 01:43:45 | 00,501,248 | ---- | M] (OldTimer Tools) -- C:\Users\gblawn00\Desktop\OTListIt2.exe
[2009/05/26 01:40:39 | 00,267,612 | ---- | M] () -- C:\Users\gblawn00\Desktop\Rooter.exe
[2009/05/26 01:23:22 | 00,716,948 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/05/26 01:23:22 | 00,618,410 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/05/26 01:23:22 | 00,103,818 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/05/26 01:18:23 | 00,003,456 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/05/26 01:18:23 | 00,003,456 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/05/26 01:18:21 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/05/26 01:18:18 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/05/26 01:18:15 | 36,223,63136 | -HS- | M] () -- C:\hiberfil.sys
[2009/05/26 01:01:59 | 00,021,504 | ---- | M] (Doug Knox) -- C:\Users\gblawn00\Desktop\SysRestorePoint.exe
[2009/05/26 00:31:03 | 00,320,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CF15699.exe
[2009/05/26 00:29:30 | 00,081,920 | ---- | M] (Soeperman Enterprises Ltd.) -- C:\Users\gblawn00\Desktop\BFU.exe
[2009/05/26 00:23:12 | 00,132,597 | ---- | M] () -- C:\Users\gblawn00\Desktop\Flash_Disinfector.exe
[2009/05/26 00:12:05 | 00,440,104 | ---- | M] () -- C:\Users\gblawn00\Desktop\RootRepeal.zip
[2009/05/25 23:57:35 | 05,720,072 | ---- | M] () -- C:\Users\gblawn00\Desktop\f-downadup.zip
[2009/05/25 23:52:56 | 00,000,215 | ---- | M] () -- C:\Windows\system.ini
[2009/05/25 23:47:21 | 02,996,466 | R--- | M] () -- C:\Users\gblawn00\Desktop\Combo-Fix.exe
[2009/05/25 23:32:30 | 00,278,221 | ---- | M] () -- C:\Users\gblawn00\Desktop\gmer.zip
[2009/05/25 23:28:59 | 00,000,915 | ---- | M] () -- C:\Users\gblawn00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
[2009/05/25 23:28:52 | 00,000,735 | ---- | M] () -- C:\Users\gblawn00\Desktop\NTREGOPT.lnk
[2009/05/25 23:28:52 | 00,000,716 | ---- | M] () -- C:\Users\gblawn00\Desktop\ERUNT.lnk
[2009/05/25 23:27:29 | 00,794,112 | ---- | M] () -- C:\Users\gblawn00\Desktop\The_Comedian.exe
[2009/05/25 23:22:21 | 00,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2009/05/25 23:03:31 | 00,180,736 | ---- | M] (OldTimer Tools) -- C:\Users\gblawn00\Desktop\OTCleanIt.exe
[2009/05/25 22:58:38 | 00,000,817 | ---- | M] () -- C:\Users\gblawn00\Desktop\CleanUp!.lnk
[2009/05/25 22:44:42 | 00,000,236 | ---- | M] () -- C:\Users\gblawn00\Desktop\can not connect to antivirus websites [Solved].url
[2009/05/25 21:46:03 | 00,001,922 | RHS- | M] () -- C:\Windows\System32\drivers\103C_HP_CPC_GG781AA-ABA a6110n_YC_0Pavi_QCNH725_E73NAv3PrA1_49_INARRA2_SASUSTek Computer INC._V2.00_B5.09_T070515_WUH0_L409_M3454_J320_7AMD_8Athlon 64 X2 Dual Core_92.3_#070731_N10DE03EF_Z14F12F20_G10DE03D0.MRK
[2009/05/25 21:38:33 | 00,000,820 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/05/25 20:52:51 | 00,001,020 | ---- | M] () -- C:\Users\gblawn00\Documents\DrWeb.csv
[2009/05/25 18:10:16 | 00,001,761 | ---- | M] () -- C:\Users\Public\Desktop\Spyware Doctor.lnk
[2009/05/25 17:18:44 | 00,000,402 | -HS- | M] () -- C:\Users\gblawn00\Documents\desktop.ini
[2009/05/25 17:18:44 | 00,000,282 | -HS- | M] () -- C:\Users\gblawn00\Desktop\desktop.ini
[2009/05/25 17:18:44 | 00,000,174 | -HS- | M] () -- C:\Users\gblawn00\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
[2009/05/25 17:17:58 | 00,001,434 | ---- | M] () -- C:\Users\Public\Desktop\Snapfish Photos - First 25 Prints Free.lnk
[2009/05/25 17:17:47 | 00,001,843 | ---- | M] () -- C:\Users\Public\Desktop\Easy Internet Services.lnk
[2009/05/25 17:17:28 | 00,000,044 | ---- | M] () -- C:\Windows\System\hpsysdrv.dat
[2009/05/24 16:01:49 | 00,154,624 | ---- | M] () -- C:\Windows\PEV.exe

========== LOP Check ==========

[2009/05/25 23:58:30 | 00,000,000 | ---D | M] -- C:\Users\gblawn00\AppData\Roaming
[2009/05/25 23:58:30 | 00,000,000 | ---D | M] -- C:\Users\gblawn00\AppData\Roaming\Adobe
[2009/05/25 17:20:07 | 00,000,000 | ---D | M] -- C:\Users\gblawn00\AppData\Roaming\Hewlett-Packard
[2009/05/25 17:18:35 | 00,000,000 | ---D | M] -- C:\Users\gblawn00\AppData\Roaming\Identities
[2009/05/25 17:16:57 | 00,000,000 | ---D | M] -- C:\Users\gblawn00\AppData\Roaming\Macromedia
[2009/05/25 21:38:34 | 00,000,000 | ---D | M] -- C:\Users\gblawn00\AppData\Roaming\Malwarebytes
[2006/11/02 08:37:34 | 00,000,000 | ---D | M] -- C:\Users\gblawn00\AppData\Roaming\Media Center Programs
[2009/05/26 00:05:27 | 00,000,000 | --SD | M] -- C:\Users\gblawn00\AppData\Roaming\Microsoft
[2009/05/25 18:10:10 | 00,000,000 | ---D | M] -- C:\Users\gblawn00\AppData\Roaming\PC Tools
[2009/05/25 17:19:05 | 00,000,000 | ---D | M] -- C:\Users\gblawn00\AppData\Roaming\Snapfish
[2009/05/26 01:18:21 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009/05/26 01:17:07 | 00,004,818 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========


========== Custom Scans ==========


< %systemroot%\System32\antiwpa.dll >

< %systemroot%\SYSTEM32\wpa.dll >

< %systemroot%\setup\scripts\biestart.exe >

< %systemroot%\system32\drivers\royal.sys >

< %SYSTEMDRIVE%\*. >
[2009/05/26 01:43:45 | 00,000,000 | R--D | M] -- C:
[2009/05/25 23:53:27 | 00,000,000 | -HSD | M] -- C:\$RECYCLE.BIN
[2007/04/23 20:12:29 | 00,000,000 | -HSD | M] -- C:\Boot
[2009/05/26 00:31:16 | 00,000,000 | --SD | M] -- C:\Combo-Fix
[2009/05/25 17:09:31 | 00,000,000 | -HSD | M] -- C:\Documents and Settings
[2009/05/25 21:45:51 | 00,000,000 | -H-D | M] -- C:\hp
[2007/04/23 20:03:46 | 00,000,000 | RH-D | M] -- C:\MSOCache
[2009/05/26 00:04:48 | 00,000,000 | R--D | M] -- C:\Program Files
[2009/05/25 22:31:45 | 00,000,000 | -H-D | M] -- C:\ProgramData
[2009/05/26 01:40:49 | 00,000,000 | ---D | M] -- C:\Rooter$
[2009/05/26 01:38:52 | 00,000,000 | -HSD | M] -- C:\System Volume Information
[2009/05/25 17:14:16 | 00,000,000 | R--D | M] -- C:\Users
[2009/05/26 01:16:49 | 00,000,000 | ---D | M] -- C:\WINDOWS

< %SYSTEMDRIVE%\*.* >
[2007/04/23 19:59:56 | 00,000,074 | ---- | M] () -- C:\autoexec.bat
[2006/11/02 05:53:57 | 00,438,840 | RHS- | M] () -- C:\bootmgr
[2007/04/23 20:12:30 | 00,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2006/09/18 17:43:37 | 00,000,010 | ---- | M] () -- C:\config.sys
[2009/05/26 01:18:15 | 36,223,63136 | -HS- | M] () -- C:\hiberfil.sys
[2009/05/26 01:18:14 | 39,360,92160 | -HS- | M] () -- C:\pagefile.sys
[2007/04/23 19:37:44 | 00,000,471 | ---- | M] () -- C:\RHDSetup.log

< %PROGRAMFILES%\*. >
[2009/05/26 00:04:48 | 00,000,000 | R--D | M] -- C:\Program Files
[2007/04/23 20:06:54 | 00,000,000 | ---D | M] -- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[2007/04/23 20:01:17 | 00,000,000 | ---D | M] -- C:\Program Files\Adobe
[2009/05/25 22:58:38 | 00,000,000 | ---D | M] -- C:\Program Files\CleanUp!
[2009/05/25 23:50:48 | 00,000,000 | ---D | M] -- C:\Program Files\Common Files
[2007/04/23 19:17:32 | 00,000,000 | ---D | M] -- C:\Program Files\CONEXANT
[2007/04/23 20:12:37 | 00,000,000 | ---D | M] -- C:\Program Files\earthlink totalaccess
[2009/05/25 23:28:59 | 00,000,000 | ---D | M] -- C:\Program Files\ERUNT
[2007/04/23 20:12:00 | 00,000,000 | ---D | M] -- C:\Program Files\Hewlett-Packard
[2007/04/23 20:02:09 | 00,000,000 | ---D | M] -- C:\Program Files\HP
[2009/05/25 20:54:41 | 00,000,000 | ---D | M] -- C:\Program Files\HP Games
[2007/04/23 20:11:40 | 00,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2007/04/23 19:56:58 | 00,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2009/05/26 00:04:48 | 00,000,000 | ---D | M] -- C:\Program Files\Java
[2009/05/25 21:38:34 | 00,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
[2006/11/02 08:37:34 | 00,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2007/04/23 20:05:46 | 00,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2007/04/23 20:05:53 | 00,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2007/04/23 20:05:34 | 00,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2006/11/02 08:42:32 | 00,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2006/11/02 08:37:34 | 00,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2006/11/02 08:37:34 | 00,000,000 | ---D | M] -- C:\Program Files\MSN
[2007/04/23 19:59:43 | 00,000,000 | ---D | M] -- C:\Program Files\muvee Technologies
[2007/04/23 20:15:35 | 00,000,000 | ---D | M] -- C:\Program Files\Online Services
[2007/04/23 20:27:46 | 00,000,000 | ---D | M] -- C:\Program Files\PC-Doctor 5 for Windows
[2007/04/23 19:58:43 | 00,000,000 | ---D | M] -- C:\Program Files\Real
[2007/04/23 19:37:31 | 00,000,000 | ---D | M] -- C:\Program Files\Realtek
[2006/11/02 08:37:34 | 00,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2007/04/23 19:58:17 | 00,000,000 | ---D | M] -- C:\Program Files\Rhapsody
[2007/04/23 19:54:43 | 00,000,000 | ---D | M] -- C:\Program Files\Roxio
[2007/04/23 20:01:55 | 00,000,000 | ---D | M] -- C:\Program Files\Snapfish Media Detector
[2009/05/25 18:11:43 | 00,000,000 | ---D | M] -- C:\Program Files\Spyware Doctor
[2009/05/25 23:31:45 | 00,000,000 | ---D | M] -- C:\Program Files\trend micro
[2006/11/02 09:01:55 | 00,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2006/11/02 08:42:32 | 00,000,000 | ---D | M] -- C:\Program Files\Windows Calendar
[2006/11/02 08:42:32 | 00,000,000 | ---D | M] -- C:\Program Files\Windows Collaboration
[2006/11/02 08:42:32 | 00,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2006/11/02 08:42:32 | 00,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2006/11/02 08:42:32 | 00,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2006/11/02 08:42:32 | 00,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2006/11/02 08:37:34 | 00,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2006/11/02 08:42:32 | 00,000,000 | ---D | M] -- C:\Program Files\Windows Photo Gallery
[2006/11/02 08:42:32 | 00,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2007/04/23 20:14:47 | 00,000,000 | ---D | M] -- C:\Program Files\Yahoo!

========== Alternate Data Streams ==========

@Alternate Data Stream - 22486 bytes -> C:\Users\gblawn00\Desktop\can not connect to antivirus websites [Solved].url:favicon
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:DFC5A2B2
< End of report >
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP