Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Recently Removed "b.exe", Still Getting Pop-Ups

Started by pinion00 , Nov 05 2009 06:05 AM

  • Please log in to reply

#1
pinion00
Posted 05 November 2009 - 06:05 AM

pinion00

    New Member

  • Member
  • Pip
  • 7 posts
Recently installed Win7, coppied a file from an old system that ended up being infected. Was able to determine the infection (or at least the majority of it) was from a b.exe bug. I got most of it out via McAfee and TuneUp Utilities, but my system is still getting occassional ad pop-ups (even when IE is not running) and general system sluggishness. Ran two instances of Malwarebytes. First time found 9 infections, able to remove 6 of them. Second time found nothing. (?) Below are my Malwarebytes and OTL reports. Tried to run RootRepel from desktop but kept getting "FOPS - DeviceContolError!" (I'm assuming it isn't Win7 compatible yet?) Thanks in Advance!!

Malwarebytes' Anti-Malware 1.41
Database version: 3103
Windows 6.1.7600

11/5/2009 3:36:08 AM
mbam-log-2009-11-05 (03-36-08).txt

Scan type: Quick Scan
Objects scanned: 90022
Time elapsed: 9 minute(s), 45 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

----------------------------

OTL logfile created on: 11/5/2009 3:45:23 AM - Run 1
OTL by OldTimer - Version 3.1.3.3 Folder = C:\Users\SCPC_JFREESE\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1014.44 Mb Total Physical Memory | 297.58 Mb Available Physical Memory | 29.33% Memory free
1.99 Gb Paging File | 1.10 Gb Available in Paging File | 55.09% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.43 Gb Total Space | 3.93 Gb Free Space | 5.28% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
Drive F: | 298.09 Gb Total Space | 6.90 Gb Free Space | 2.32% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 3.73 Gb Total Space | 1.16 Gb Free Space | 31.13% Space Free | Partition Type: FAT

Computer Name: SCPC_JFREESE-PC
Current User Name: SCPC_JFREESE
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2009/11/05 02:57:30 | 00,528,384 | ---- | M] (OldTimer Tools) -- C:\Users\SCPC_JFREESE\Desktop\OTL.exe
PRC - [2009/10/30 15:08:26 | 00,486,216 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
PRC - [2009/10/30 15:05:48 | 01,021,256 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
PRC - [2009/10/02 13:02:56 | 00,026,640 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSK\msksrver.exe
PRC - [2009/09/17 14:29:04 | 00,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe
PRC - [2009/09/17 14:29:04 | 00,645,328 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2009/09/16 10:22:08 | 00,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\Mcshield.exe
PRC - [2009/09/16 09:28:38 | 00,606,736 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe
PRC - [2009/09/15 10:23:54 | 00,894,136 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MpfSrv.exe
PRC - [2009/08/28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/08/02 21:35:50 | 02,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/07/21 15:00:00 | 00,045,056 | ---- | M] (brother Industries Ltd) -- C:\Windows\System32\BRSS01A.EXE
PRC - [2009/07/17 19:12:12 | 00,257,440 | R--- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10c.exe
PRC - [2009/07/13 17:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2009/07/13 17:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2009/07/13 17:14:50 | 00,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
PRC - [2009/07/13 17:14:42 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/13 17:14:41 | 00,354,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe
PRC - [2009/07/13 17:14:29 | 03,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe
PRC - [2009/07/13 17:14:29 | 03,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe
PRC - [2009/07/08 11:54:34 | 00,359,952 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
PRC - [2009/07/07 19:10:02 | 02,482,848 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
PRC - [2009/06/16 18:45:22 | 00,252,952 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxsrvc.exe
PRC - [2009/06/16 18:45:20 | 00,150,552 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxpers.exe
PRC - [2009/06/16 18:45:12 | 00,173,592 | ---- | M] (Intel Corporation) -- C:\Windows\System32\hkcmd.exe
PRC - [2009/06/09 15:12:08 | 00,096,088 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
PRC - [2009/05/04 08:40:04 | 18,333,536 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
PRC - [2009/03/30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PRC - [2009/03/30 16:28:36 | 00,183,152 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PRC - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/07/23 18:52:06 | 00,206,112 | ---- | M] () -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2004/06/13 15:00:00 | 00,057,344 | ---- | M] (brother Industries Ltd) -- C:\Windows\System32\BRSVC01A.EXE


========== Modules (SafeList) ==========

MOD - [2009/11/05 02:57:30 | 00,528,384 | ---- | M] (OldTimer Tools) -- C:\Users\SCPC_JFREESE\Desktop\OTL.exe
MOD - [2009/07/13 17:16:15 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009/07/13 17:16:13 | 00,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009/07/13 17:16:13 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009/07/13 17:16:12 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009/07/13 17:16:03 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009/07/13 17:15:35 | 00,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009/07/13 17:15:13 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009/07/13 17:15:11 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009/07/13 17:15:07 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009/07/13 17:15:02 | 00,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009/07/13 17:03:50 | 01,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
MOD - [2008/07/23 18:52:10 | 00,012,576 | ---- | M] () -- C:\Program Files\McAfee\SiteAdvisor\sahook.dll


========== Win32 Services (SafeList) ==========

SRV - [2009/11/05 01:58:06 | 00,435,016 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009/10/30 15:05:48 | 01,021,256 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2009/10/30 15:01:00 | 00,030,024 | ---- | M] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
SRV - [2009/10/28 20:21:14 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2009/10/02 13:02:56 | 00,026,640 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSK\MskSrver.exe -- (MSK80Service)
SRV - [2009/09/23 16:36:06 | 00,051,168 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper)
SRV - [2009/09/17 14:29:04 | 00,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe -- (mcmscsvc)
SRV - [2009/09/16 11:23:32 | 00,365,072 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2009/09/16 10:22:08 | 00,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\Mcshield.exe -- (McShield)
SRV - [2009/09/16 09:28:38 | 00,606,736 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe -- (McSysmon)
SRV - [2009/09/15 10:23:54 | 00,894,136 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MPFSrv.exe -- (MpfService)
SRV - [2009/08/28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/07/13 17:16:21 | 00,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009/07/13 17:16:17 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009/07/13 17:16:17 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009/07/13 17:16:16 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/13 17:16:15 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009/07/13 17:16:13 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009/07/13 17:16:13 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 17:16:12 | 01,004,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 17:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009/07/13 17:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009/07/13 17:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/13 17:16:12 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009/07/13 17:15:41 | 00,680,960 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/13 17:15:36 | 00,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009/07/13 17:15:21 | 00,797,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/13 17:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 17:15:10 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009/07/13 17:14:59 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009/07/13 17:14:58 | 00,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV)
SRV - [2009/07/13 17:14:53 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009/07/13 17:14:29 | 03,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2009/07/08 11:54:34 | 00,359,952 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe -- (McProxy)
SRV - [2009/07/07 19:10:02 | 02,482,848 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe -- (McNASvc)
SRV - [2009/06/10 13:23:09 | 00,066,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/10 13:14:51 | 00,042,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0)
SRV - [2009/06/10 13:14:05 | 00,128,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2009/06/10 13:14:02 | 00,878,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc)
SRV - [2009/03/30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2008/11/04 01:06:28 | 00,441,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2008/07/23 18:52:06 | 00,206,112 | ---- | M] () -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2006/10/26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2004/06/13 15:00:00 | 00,057,344 | ---- | M] (brother Industries Ltd) -- C:\Windows\System32\BRSVC01A.EXE -- (Brother XP spl Service)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 38 9B A0 42 76 5C CA 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2009/11/03 03:28:26 | 00,000,000 | ---D | M]


O1 HOSTS File: (824 bytes) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho.dll ()
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\Program Files\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\Windows\System32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\REMOVE\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [McENUI] C:\Program Files\McAfee\MHN\McENUI.exe (McAfee, Inc.)
O4 - HKLM..\Run: [Persistence] C:\Windows\System32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKCU..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (get_atlcom Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 68.190.192.35 66.214.48.27
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 13:42:20 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias [2009/07/13 18:37:08 | 00,000,000 | ---D | M]
NetSvcs: Irmon - C:\Windows\System32\irmon.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: UxTuneUp - C:\Windows\System32\uxtuneup.dll (TuneUp Software)
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
NetSvcs: Themes - C:\Windows\System32\themeservice.dll (Microsoft Corporation)
NetSvcs: BDESVC - C:\Windows\System32\bdesvc.dll (Microsoft Corporation)

========== Files/Folders - Created Within 14 Days ==========

[2009/11/05 03:44:28 | 00,528,384 | ---- | C] (OldTimer Tools) -- C:\Users\SCPC_JFREESE\Desktop\OTL.exe
[2009/11/05 02:59:28 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Malwarebytes
[2009/11/05 02:59:22 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/11/05 02:59:19 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/11/05 02:59:19 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/11/05 02:59:19 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/11/05 02:59:18 | 00,000,000 | ---D | C] -- C:\REMOVE
[2009/11/05 01:58:45 | 00,029,512 | ---- | C] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
[2009/11/05 01:58:28 | 00,030,024 | ---- | C] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2009/11/05 01:58:28 | 00,021,320 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2009/11/05 01:57:06 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\TuneUp Software
[2009/11/05 01:56:37 | 00,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2010
[2009/11/05 01:54:47 | 00,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2009/11/05 01:54:47 | 00,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2009/11/05 01:54:36 | 00,000,000 | -HSD | C] -- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2009/11/05 01:54:36 | 00,000,000 | -HSD | C] -- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2009/11/04 19:24:47 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Documents\Scanned Documents
[2009/11/04 19:24:45 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\Documents\Fax
[2009/11/04 16:19:43 | 00,000,000 | ---D | C] -- C:\Cakewalk Projects
[2009/11/04 16:17:33 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\Documents\Cakewalk
[2009/11/04 15:39:46 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Local\Native Instruments
[2009/11/04 01:19:28 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\Documents\Reaktor 5
[2009/11/04 01:12:58 | 00,000,000 | ---D | C] -- C:\Games
[2009/11/04 01:10:37 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\Documents\Native Instruments
[2009/11/04 01:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Native Instruments
[2009/11/04 01:05:40 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Digidesign
[2009/11/04 00:24:09 | 00,233,472 | ---- | C] (Propellerhead Software AB) -- C:\Users\SCPC_JFREESE\AppData\Roaming\REX Shared Library.dll
[2009/11/04 00:24:09 | 00,000,000 | ---D | C] -- C:\ProgramData\Propellerhead Software
[2009/11/04 00:24:09 | 00,000,000 | ---D | C] -- C:\ProgramData\Propellerhead Software
[2009/11/04 00:24:08 | 00,225,280 | ---- | C] (Propellerhead Software AB) -- C:\Users\SCPC_JFREESE\AppData\Roaming\Rewire.dll
[2009/11/04 00:24:08 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Propellerhead Software
[2009/11/04 00:22:27 | 00,000,000 | ---D | C] -- C:\Program Files\Propellerhead
[2009/11/04 00:03:35 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\Documents\PH Docs
[2009/11/03 23:57:55 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\Documents\Tax and Finance stuff
[2009/11/03 23:56:58 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\Documents\Text Docs
[2009/11/03 23:56:57 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\Documents\ringtones
[2009/11/03 23:48:34 | 00,000,000 | ---D | C] -- C:\Dell Drivers
[2009/11/03 23:44:36 | 00,000,000 | ---D | C] -- C:\Application Installers
[2009/11/03 22:24:34 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/11/03 21:25:08 | 00,000,000 | ---D | C] -- C:\Windows\Minidump
[2009/11/03 20:56:56 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Publish Providers
[2009/11/03 20:46:31 | 00,000,000 | ---D | C] -- C:\ProgramData\Sony
[2009/11/03 20:46:31 | 00,000,000 | ---D | C] -- C:\ProgramData\Sony
[2009/11/03 20:46:10 | 00,000,000 | ---D | C] -- C:\Program Files\Sony
[2009/11/03 20:41:28 | 00,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
[2009/11/03 20:16:08 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Sony
[2009/11/03 20:16:08 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Local\Sony
[2009/11/03 20:00:09 | 00,368,640 | ---- | C] (Propellerhead Software AB) -- C:\Windows\System32\ReWire.dll
[2009/11/03 19:28:55 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\TruePianos Settings
[2009/11/03 19:27:51 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Cakewalk
[2009/11/03 19:27:51 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Cakewalk
[2009/11/03 19:27:22 | 00,000,000 | ---D | C] -- C:\Program Files\Native Instruments
[2009/11/03 19:26:55 | 00,000,000 | ---D | C] -- C:\ProgramData\Identities
[2009/11/03 19:26:55 | 00,000,000 | ---D | C] -- C:\ProgramData\Identities
[2009/11/03 19:17:08 | 00,000,000 | ---D | C] -- C:\ProgramData\Cakewalk
[2009/11/03 19:17:08 | 00,000,000 | ---D | C] -- C:\ProgramData\Cakewalk
[2009/11/03 19:17:08 | 00,000,000 | ---D | C] -- C:\Program Files\Cakewalk
[2009/11/03 19:10:41 | 00,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2009/11/03 19:10:13 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\DAEMON Tools Lite
[2009/11/03 19:10:09 | 00,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2009/11/03 19:10:09 | 00,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2009/11/03 18:57:46 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\BitTorrent
[2009/11/03 18:56:26 | 00,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2009/11/03 18:56:11 | 00,000,000 | ---D | C] -- C:\Program Files\BitTorrent
[2009/11/03 18:48:35 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\vlc
[2009/11/03 18:46:51 | 00,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2009/11/03 04:58:23 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2009/11/03 04:57:59 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2009/11/03 04:57:21 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2009/11/03 04:49:20 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2009/11/03 04:46:46 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Macromedia
[2009/11/03 04:46:41 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Adobe
[2009/11/03 04:44:17 | 00,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2009/11/03 04:44:17 | 00,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2009/11/03 04:43:39 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2009/11/03 04:43:39 | 00,000,000 | ---D | C] -- C:\Program Files\Adobe
[2009/11/03 04:41:44 | 00,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2009/11/03 04:40:46 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Local\Adobe
[2009/11/03 04:40:04 | 00,000,000 | ---D | C] -- C:\ProgramData\NOS
[2009/11/03 04:40:04 | 00,000,000 | ---D | C] -- C:\ProgramData\NOS
[2009/11/03 04:40:04 | 00,000,000 | ---D | C] -- C:\Program Files\NOS
[2009/11/03 04:39:26 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2009/11/03 04:38:44 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2009/11/03 04:29:19 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Local\Apple Computer
[2009/11/03 04:29:18 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Apple Computer
[2009/11/03 04:28:45 | 00,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2009/11/03 04:27:50 | 00,000,000 | ---D | C] -- C:\Program Files\iPod
[2009/11/03 04:27:47 | 00,000,000 | ---D | C] -- C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/11/03 04:27:47 | 00,000,000 | ---D | C] -- C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/11/03 04:27:47 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes
[2009/11/03 04:24:57 | 00,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2009/11/03 04:24:03 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2009/11/03 04:24:03 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2009/11/03 04:24:03 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/11/03 04:23:45 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Local\Apple
[2009/11/03 04:23:41 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2009/11/03 04:22:37 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple
[2009/11/03 04:22:37 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple
[2009/11/03 04:22:37 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2009/11/03 04:19:59 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Local\WindowsUpdate
[2009/11/03 04:12:25 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2009/11/03 04:11:46 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2009/11/03 04:11:46 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2009/11/03 04:10:48 | 00,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2009/11/03 04:10:48 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2009/11/03 04:08:30 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2009/11/03 04:06:58 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2009/11/03 04:06:32 | 00,000,000 | RH-D | C] -- C:\MSOCache
[2009/11/03 03:51:14 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Local\Microsoft Help
[2009/11/03 03:51:01 | 00,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2009/11/03 03:51:01 | 00,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2009/11/03 03:50:52 | 00,000,000 | -HSD | C] -- C:\Windows\Installer
[2009/11/03 03:23:23 | 00,000,000 | ---D | C] -- C:\ProgramData\SiteAdvisor
[2009/11/03 03:23:23 | 00,000,000 | ---D | C] -- C:\ProgramData\SiteAdvisor
[2009/11/03 03:22:38 | 00,000,000 | ---D | C] -- C:\Program Files\SiteAdvisor
[2009/11/03 03:20:08 | 00,040,552 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfesmfk.sys
[2009/11/03 03:20:07 | 00,079,816 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeavfk.sys
[2009/11/03 03:20:07 | 00,035,272 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfebopk.sys
[2009/11/03 03:20:04 | 00,130,424 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\Mpfp.sys
[2009/11/03 03:19:42 | 00,000,000 | ---D | C] -- C:\Program Files\McAfee.com
[2009/11/03 03:19:42 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee
[2009/11/03 03:19:36 | 00,000,000 | ---D | C] -- C:\Program Files\McAfee
[2009/11/03 03:18:58 | 00,034,248 | ---- | C] (McAfee, Inc.) -- C:\Windows\System32\drivers\mferkdk.sys
[2009/11/03 03:14:32 | 00,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2009/11/03 03:14:32 | 00,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2009/11/03 03:06:38 | 00,000,000 | ---D | C] -- C:\Program Files\CONEXANT
[2009/11/03 02:55:11 | 00,000,000 | ---D | C] -- C:\Windows\System32\x64
[2009/11/03 02:53:46 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Searches
[2009/11/03 02:53:36 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Identities
[2009/11/03 02:53:34 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Contacts
[2009/11/03 02:53:21 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Local\VirtualStore
[2009/11/03 02:53:17 | 00,000,000 | --SD | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Microsoft
[2009/11/03 02:53:17 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Videos
[2009/11/03 02:53:17 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Saved Games
[2009/11/03 02:53:17 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Pictures
[2009/11/03 02:53:17 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Music
[2009/11/03 02:53:17 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Links
[2009/11/03 02:53:17 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Favorites
[2009/11/03 02:53:17 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Downloads
[2009/11/03 02:53:17 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Documents
[2009/11/03 02:53:17 | 00,000,000 | R--D | C] -- C:\Users\SCPC_JFREESE\Desktop
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\Templates
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\Start Menu
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\SendTo
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\Recent
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\PrintHood
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\NetHood
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\Documents\My Videos
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\Documents\My Pictures
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\Documents\My Music
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\My Documents
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\Local Settings
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\Cookies
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\Application Data
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\AppData\Local\Temporary Internet Files
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\AppData\Local\History
[2009/11/03 02:53:17 | 00,000,000 | -HSD | C] -- C:\Users\SCPC_JFREESE\AppData\Local\Application Data
[2009/11/03 02:53:17 | 00,000,000 | -H-D | C] -- C:\Users\SCPC_JFREESE\AppData
[2009/11/03 02:53:17 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Media Center Programs
[2009/11/03 02:53:17 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Local\Temp
[2009/11/03 02:53:17 | 00,000,000 | ---D | C] -- C:\Users\SCPC_JFREESE\AppData\Local\Microsoft
[2009/11/03 02:52:49 | 00,000,000 | -HSD | C] -- C:\Recovery
[2009/11/03 02:44:42 | 00,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2009/11/03 02:41:45 | 00,000,000 | ---D | C] -- C:\Windows\Prefetch
[2009/11/03 02:41:21 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[2009/11/03 02:40:54 | 00,000,000 | ---D | C] -- C:\Windows\Panther

========== Files - Modified Within 14 Days ==========

[2009/11/05 03:49:43 | 01,835,008 | -HS- | M] () -- C:\Users\SCPC_JFREESE\ntuser.dat
[2009/11/05 03:30:07 | 00,713,888 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/11/05 03:30:07 | 00,615,360 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/11/05 03:30:07 | 00,103,702 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/11/05 03:23:45 | 00,010,975 | ---- | M] () -- C:\Windows\System32\Config.MPF
[2009/11/05 03:22:11 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/11/05 03:22:06 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/11/05 03:21:56 | 79,778,6112 | -HS- | M] () -- C:\hiberfil.sys
[2009/11/05 03:21:19 | 00,013,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009/11/05 03:21:18 | 00,013,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009/11/05 03:20:33 | 03,740,010 | -H-- | M] () -- C:\Users\SCPC_JFREESE\AppData\Local\IconCache.db
[2009/11/05 02:57:30 | 00,528,384 | ---- | M] (OldTimer Tools) -- C:\Users\SCPC_JFREESE\Desktop\OTL.exe
[2009/11/05 01:57:48 | 00,002,109 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2009/11/04 19:25:38 | 00,000,030 | ---- | M] () -- C:\Windows\System32\brss01a.ini
[2009/11/04 19:25:37 | 00,000,410 | ---- | M] () -- C:\Windows\BRWMARK.INI
[2009/11/04 19:25:37 | 00,000,184 | ---- | M] () -- C:\Windows\System32\brsvc01a.bsi
[2009/11/04 19:25:37 | 00,000,026 | ---- | M] () -- C:\Windows\BRPP2KA.INI
[2009/11/04 15:41:03 | 00,001,417 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Internet Explorer.lnk
[2009/11/04 04:15:36 | 00,524,288 | -HS- | M] () -- C:\Users\SCPC_JFREESE\ntuser.dat{78bd2fdb-c918-11de-87ec-001c23a8d906}.TMContainer00000000000000000002.regtrans-ms
[2009/11/04 04:15:36 | 00,065,536 | -HS- | M] () -- C:\Users\SCPC_JFREESE\ntuser.dat{78bd2fdb-c918-11de-87ec-001c23a8d906}.TM.blf
[2009/11/04 04:15:35 | 00,524,288 | -HS- | M] () -- C:\Users\SCPC_JFREESE\ntuser.dat{78bd2fdb-c918-11de-87ec-001c23a8d906}.TMContainer00000000000000000001.regtrans-ms
[2009/11/04 03:28:19 | 00,001,625 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Sony Sound Forge 10.lnk
[2009/11/04 03:24:41 | 00,001,660 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Reaktor 5.lnk
[2009/11/04 03:24:33 | 00,001,605 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Pro-53.lnk
[2009/11/04 03:24:26 | 00,001,621 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Massive.lnk
[2009/11/04 03:24:19 | 00,001,665 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Kontakt 3.lnk
[2009/11/04 03:24:12 | 00,001,729 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Guitar Rig 3.lnk
[2009/11/04 03:23:59 | 00,001,533 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\FM 8.lnk
[2009/11/04 03:23:49 | 00,001,851 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Elektrik Piano 1.5.lnk
[2009/11/04 03:23:40 | 00,001,665 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Battery 3.lnk
[2009/11/04 03:23:28 | 00,001,581 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\B4 II.lnk
[2009/11/04 03:23:20 | 00,001,760 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Akoustik Piano.lnk
[2009/11/04 03:23:11 | 00,001,665 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Absynth 4.lnk
[2009/11/04 00:24:09 | 00,233,472 | ---- | M] (Propellerhead Software AB) -- C:\Users\SCPC_JFREESE\AppData\Roaming\REX Shared Library.dll
[2009/11/04 00:24:08 | 00,225,280 | ---- | M] (Propellerhead Software AB) -- C:\Users\SCPC_JFREESE\AppData\Roaming\Rewire.dll
[2009/11/04 00:23:11 | 00,001,031 | ---- | M] () -- C:\Users\Public\Desktop\Reason.lnk
[2009/11/04 00:05:46 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2009/11/03 21:25:03 | 00,403,424 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/11/03 20:50:21 | 00,109,608 | ---- | M] () -- C:\Users\SCPC_JFREESE\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/11/03 20:10:07 | 00,118,784 | ---- | M] () -- C:\Windows\dsdxirmv.exe
[2009/11/03 20:09:25 | 00,002,128 | ---- | M] () -- C:\Users\Public\Desktop\SONAR 8 Prod. Edt..lnk
[2009/11/03 19:12:51 | 00,000,478 | ---- | M] () -- C:\Windows\win.ini
[2009/11/03 19:11:15 | 00,691,696 | ---- | M] () -- C:\Windows\System32\drivers\sptd.sys
[2009/11/03 18:47:25 | 00,000,938 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2009/11/03 05:08:37 | 00,001,616 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\E-Mail.lnk
[2009/11/03 05:07:17 | 00,001,616 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Microsoft Word.lnk
[2009/11/03 05:06:11 | 00,001,596 | ---- | M] () -- C:\Users\SCPC_JFREESE\Desktop\Microsoft Excel.lnk
[2009/11/03 04:28:58 | 00,002,429 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2009/11/03 03:42:51 | 00,000,354 | ---- | M] () -- C:\Windows\tasks\McDefragTask.job
[2009/11/03 03:42:51 | 00,000,346 | ---- | M] () -- C:\Windows\tasks\McQcTask.job
[2009/11/03 03:23:24 | 00,000,980 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Center.lnk
[2009/11/03 03:08:07 | 00,524,288 | -HS- | M] () -- C:\Users\SCPC_JFREESE\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2009/11/03 03:08:07 | 00,524,288 | -HS- | M] () -- C:\Users\SCPC_JFREESE\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2009/11/03 03:08:07 | 00,065,536 | -HS- | M] () -- C:\Users\SCPC_JFREESE\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2009/11/03 02:53:17 | 00,000,020 | -HS- | M] () -- C:\Users\SCPC_JFREESE\ntuser.ini
[2009/11/03 02:45:01 | 00,042,045 | ---- | M] () -- C:\Windows\System32\license.rtf
[2009/10/30 15:08:46 | 00,029,512 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
[2009/10/30 15:01:12 | 00,021,320 | ---- | M] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2009/10/30 15:01:00 | 00,030,024 | ---- | M] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll

========== Files Created - No Company Name ==========

[2009/11/05 01:57:48 | 00,002,109 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2009/11/04 19:25:38 | 00,000,030 | ---- | C] () -- C:\Windows\System32\brss01a.ini
[2009/11/04 19:25:37 | 00,000,410 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2009/11/04 19:25:37 | 00,000,184 | ---- | C] () -- C:\Windows\System32\brsvc01a.bsi
[2009/11/04 19:25:37 | 00,000,026 | ---- | C] () -- C:\Windows\BRPP2KA.INI
[2009/11/04 15:41:03 | 00,001,417 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Internet Explorer.lnk
[2009/11/04 04:15:17 | 03,740,010 | -H-- | C] () -- C:\Users\SCPC_JFREESE\AppData\Local\IconCache.db
[2009/11/04 03:27:20 | 00,001,625 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Sony Sound Forge 10.lnk
[2009/11/04 03:24:41 | 00,001,660 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Reaktor 5.lnk
[2009/11/04 03:24:33 | 00,001,605 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Pro-53.lnk
[2009/11/04 03:24:26 | 00,001,621 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Massive.lnk
[2009/11/04 03:24:19 | 00,001,665 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Kontakt 3.lnk
[2009/11/04 03:24:12 | 00,001,729 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Guitar Rig 3.lnk
[2009/11/04 03:23:59 | 00,001,533 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\FM 8.lnk
[2009/11/04 03:23:49 | 00,001,851 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Elektrik Piano 1.5.lnk
[2009/11/04 03:23:40 | 00,001,665 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Battery 3.lnk
[2009/11/04 03:23:28 | 00,001,581 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\B4 II.lnk
[2009/11/04 03:23:20 | 00,001,760 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Akoustik Piano.lnk
[2009/11/04 03:23:11 | 00,001,665 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Absynth 4.lnk
[2009/11/04 00:23:11 | 00,001,031 | ---- | C] () -- C:\Users\Public\Desktop\Reason.lnk
[2009/11/04 00:05:46 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2009/11/04 00:03:56 | 00,524,288 | -HS- | C] () -- C:\Users\SCPC_JFREESE\ntuser.dat{78bd2fdb-c918-11de-87ec-001c23a8d906}.TMContainer00000000000000000002.regtrans-ms
[2009/11/04 00:03:56 | 00,524,288 | -HS- | C] () -- C:\Users\SCPC_JFREESE\ntuser.dat{78bd2fdb-c918-11de-87ec-001c23a8d906}.TMContainer00000000000000000001.regtrans-ms
[2009/11/04 00:03:56 | 00,065,536 | -HS- | C] () -- C:\Users\SCPC_JFREESE\ntuser.dat{78bd2fdb-c918-11de-87ec-001c23a8d906}.TM.blf
[2009/11/03 20:09:25 | 00,002,128 | ---- | C] () -- C:\Users\Public\Desktop\SONAR 8 Prod. Edt..lnk
[2009/11/03 19:26:54 | 00,118,784 | ---- | C] () -- C:\Windows\dsdxirmv.exe
[2009/11/03 19:11:15 | 00,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009/11/03 18:47:25 | 00,000,938 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2009/11/03 05:07:46 | 00,001,616 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\E-Mail.lnk
[2009/11/03 05:05:14 | 00,001,616 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Microsoft Word.lnk
[2009/11/03 05:05:14 | 00,001,596 | ---- | C] () -- C:\Users\SCPC_JFREESE\Desktop\Microsoft Excel.lnk
[2009/11/03 04:28:58 | 00,002,429 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2009/11/03 03:23:37 | 00,010,975 | ---- | C] () -- C:\Windows\System32\Config.MPF
[2009/11/03 03:23:24 | 00,000,980 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Security Center.lnk
[2009/11/03 03:22:22 | 00,109,608 | ---- | C] () -- C:\Users\SCPC_JFREESE\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/11/03 03:19:50 | 00,000,354 | ---- | C] () -- C:\Windows\tasks\McDefragTask.job
[2009/11/03 03:19:48 | 00,000,346 | ---- | C] () -- C:\Windows\tasks\McQcTask.job
[2009/11/03 02:53:17 | 00,524,288 | -HS- | C] () -- C:\Users\SCPC_JFREESE\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2009/11/03 02:53:17 | 00,524,288 | -HS- | C] () -- C:\Users\SCPC_JFREESE\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2009/11/03 02:53:17 | 00,065,536 | -HS- | C] () -- C:\Users\SCPC_JFREESE\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2009/11/03 02:53:17 | 00,000,020 | -HS- | C] () -- C:\Users\SCPC_JFREESE\ntuser.ini
[2009/11/03 02:53:16 | 01,835,008 | -HS- | C] () -- C:\Users\SCPC_JFREESE\ntuser.dat
[2009/11/03 02:41:21 | 79,778,6112 | -HS- | C] () -- C:\hiberfil.sys
[2009/07/13 20:52:31 | 00,043,318 | ---- | C] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont
[2009/07/13 20:52:31 | 00,029,779 | ---- | C] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2009/07/13 20:52:31 | 00,026,489 | ---- | C] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2009/07/13 20:52:31 | 00,026,040 | ---- | C] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2009/07/13 20:41:57 | 00,000,174 | -HS- | C] () -- C:\Program Files\desktop.ini
[2009/07/13 18:04:23 | 00,000,478 | ---- | C] () -- C:\Windows\win.ini
[2009/07/13 18:04:23 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2009/07/13 15:51:43 | 00,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 15:42:10 | 00,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll

========== LOP Check ==========

[2009/11/05 01:52:55 | 00,000,000 | ---D | M] -- C:\Users\SCPC_JFREESE\AppData\Roaming\BitTorrent
[2009/11/03 23:50:16 | 00,000,000 | ---D | M] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Cakewalk
[2009/11/04 00:25:03 | 00,000,000 | ---D | M] -- C:\Users\SCPC_JFREESE\AppData\Roaming\DAEMON Tools Lite
[2009/11/04 00:38:16 | 00,000,000 | ---D | M] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Propellerhead Software
[2009/11/03 20:56:56 | 00,000,000 | ---D | M] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Publish Providers
[2009/11/03 23:51:10 | 00,000,000 | ---D | M] -- C:\Users\SCPC_JFREESE\AppData\Roaming\Sony
[2009/11/05 01:57:06 | 00,000,000 | ---D | M] -- C:\Users\SCPC_JFREESE\AppData\Roaming\TuneUp Software
[2009/11/03 03:42:51 | 00,000,354 | ---- | M] () -- C:\Windows\Tasks\McDefragTask.job
[2009/11/03 03:42:51 | 00,000,346 | ---- | M] () -- C:\Windows\Tasks\McQcTask.job
[2009/11/05 03:22:11 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009/07/13 20:53:46 | 00,004,872 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >

< %SYSTEMDRIVE%\eventlog.dll /s /md5 >

< %SYSTEMDRIVE%\scecli.dll /s /md5 >
[2009/07/13 17:16:13 | 00,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\System32\scecli.dll
[2009/07/13 17:16:13 | 00,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll

< %SYSTEMDRIVE%\netlogon.dll /s /md5 >
[2009/07/13 17:16:02 | 00,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\System32\netlogon.dll
[2009/07/13 17:16:02 | 00,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll

< %SYSTEMDRIVE%\cngaudit.dll /s /md5 >
[2009/07/13 17:15:06 | 00,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009/07/13 17:15:06 | 00,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll

< %SYSTEMDRIVE%\sceclt.dll /s /md5 >

< %SYSTEMDRIVE%\ntelogon.dll /s /md5 >

< %SYSTEMDRIVE%\logevent.dll /s /md5 >
[2009/07/13 17:15:06 | 00,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\logevent.dll

< %SYSTEMDRIVE%\iaStor.sys /s /md5 >

< %SYSTEMDRIVE%\nvstor.sys /s /md5 >
[2009/07/13 17:20:44 | 00,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\drivers\nvstor.sys
[2009/07/13 17:20:44 | 00,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 17:20:44 | 00,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys

< %SYSTEMDRIVE%\atapi.sys /s /md5 >
[2009/07/13 17:26:15 | 00,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009/07/13 17:26:15 | 00,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009/07/13 17:26:15 | 00,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys

< %SYSTEMDRIVE%\IdeChnDr.sys /s /md5 >

< %SYSTEMDRIVE%\viasraid.sys /s /md5 >

< %SYSTEMDRIVE%\AGP440.sys /s /md5 >
[2009/07/13 17:26:15 | 00,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009/07/13 17:26:15 | 00,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\AGP440.sys
[2009/07/13 17:26:15 | 00,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys

< %SYSTEMDRIVE%\vaxscsi.sys /s /md5 >
< End of report >


------------------


OTL Extras logfile created on: 11/5/2009 3:45:23 AM - Run 1
OTL by OldTimer - Version 3.1.3.3 Folder = C:\Users\SCPC_JFREESE\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1014.44 Mb Total Physical Memory | 297.58 Mb Available Physical Memory | 29.33% Memory free
1.99 Gb Paging File | 1.10 Gb Available in Paging File | 55.09% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.43 Gb Total Space | 3.93 Gb Free Space | 5.28% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
Drive F: | 298.09 Gb Total Space | 6.90 Gb Free Space | 2.32% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 3.73 Gb Total Space | 1.16 Gb Free Space | 31.13% Space Free | Partition Type: FAT

Computer Name: SCPC_JFREESE-PC
Current User Name: SCPC_JFREESE
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- "%SystemRoot%\hh.exe" %1
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "%SystemRoot%\hh.exe" %1 File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Windows Live ID Sign-in Assistant
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{3D5044A5-97B8-45C0-B956-BB2376569188}" = Windows Live Movie Maker
"{520A8627-E1B7-4808-8F04-03A013CBBD10}" = Noise Reduction Plug-in 2.0i
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{B607C354-CD79-4D22-86D1-92DC94153F42}" = Apple Application Support
"{B8A817D7-AE0F-42BA-AEB9-B5F1F3EFB7AF}" = Sound Forge Pro 10.0
"{C63E7C60-25EB-11D3-8EDA-00A0C911E8E5}" = Microsoft Outlook Personal Folders Backup
"{D1A74FBB-CA8D-4CCA-9B89-BAAA436DB178}" = iTunes
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{FE3997D3-6B56-4AC4-A99C-9DDFC45359BF}" = TuneUp Utilities Language Pack (en-US)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"BitTorrent" = BitTorrent
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3" = Conexant HDA D110 MDC V.92 Modem
"DreamStation DXi2" = DreamStation DXi2
"ENTERPRISE" = Microsoft Office Enterprise 2007
"HDMI" = Intel® Graphics Media Accelerator Driver
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MSC" = McAfee SecurityCenter
"Native Instruments Absynth 4" = Native Instruments Absynth 4
"Native Instruments Akoustik Piano" = Native Instruments Akoustik Piano
"Native Instruments B4 II" = Native Instruments B4 II
"Native Instruments Battery 3" = Native Instruments Battery 3
"Native Instruments Elektrik Piano 1.5" = Native Instruments Elektrik Piano 1.5
"Native Instruments FM8" = Native Instruments FM8
"Native Instruments Guitar Rig 3" = Native Instruments Guitar Rig 3
"Native Instruments Komplete 5" = Native Instruments Komplete 5
"Native Instruments Massive" = Native Instruments Massive
"Native Instruments Pro-53" = Native Instruments Pro-53
"Native Instruments Reaktor 5" = Native Instruments Reaktor 5
"Reason_is1" = Reason 3.0
"SONAR8Producer_is1" = SONAR 8.0 Producer Edition
"TuneUp Utilities" = TuneUp Utilities
"VLC media player" = VLC media player 1.0.3
"WinLiveSuite_Wave3" = Windows Live Essentials

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 11/4/2009 7:25:12 AM | Computer Name = SCPC_JFREESE-PC | Source = Application Hang | ID = 1002
Description = The program GLB1AE3.tmp version 1.0.0.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Action Center control panel. Process ID: 2d8 Start Time:
01ca5d4015d5c33f Termination Time: 0 Application Path: C:\Users\SCPC_J~1\AppData\Local\Temp\GLB1AE3.tmp

Report
Id: b1c3ed76-c934-11de-87ec-001c23a8d906

Error - 11/4/2009 5:33:36 PM | Computer Name = SCPC_JFREESE-PC | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 324 (0x144) Thread address : 0x014A353D Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\HarddiskVolume2\WINDOWS\SYSTEM32\SVCHOST.EXE

by System 4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0)

5004(0)(0)

Error - 11/4/2009 9:00:27 PM | Computer Name = SCPC_JFREESE-PC | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 2812 (0xafc) Thread address : 0x770864F4 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\CdRom1\Komplete 5.exe by C:\Users\SCPC_J~1\AppData\Local\Temp\GLBF43E.tmp

4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)


Error - 11/4/2009 9:01:01 PM | Computer Name = SCPC_JFREESE-PC | Source = Application Hang | ID = 1002
Description = The program GLBF43E.tmp version 1.0.0.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Action Center control panel. Process ID: 778 Start Time:
01ca5db325fb378d Termination Time: 0 Application Path: C:\Users\SCPC_J~1\AppData\Local\Temp\GLBF43E.tmp

Report
Id: 980faa10-c9a6-11de-a0c7-001c23a8d906

Error - 11/4/2009 9:08:38 PM | Computer Name = SCPC_JFREESE-PC | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 3048 (0xbe8) Thread address : 0x770864F4 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\CdRom1\Komplete 5.exe by C:\Users\SCPC_J~1\AppData\Local\Temp\GLB7408.tmp

4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)


Error - 11/4/2009 9:18:39 PM | Computer Name = SCPC_JFREESE-PC | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 2544 (0x9f0) Thread address : 0x770864F4 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\HarddiskVolume2\Users\SCPC_JFREESE\AppData\Local\Temp\Komplete
5.exe by C:\Users\SCPC_J~1\AppData\Local\Temp\KOMPLE~1.EXE 4(0)(0) 4(0)(0) 7200(0)(0)

7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)

Error - 11/4/2009 10:16:12 PM | Computer Name = SCPC_JFREESE-PC | Source = Application Error | ID = 1000
Description = Faulting application name: sfvstserver.exe, version: 1.0.0.1, time
stamp: 0x4acf6ad3 Faulting module name: Kontakt 3.dll, version: 3.0.0.2, time stamp:
0x46cf07e6 Exception code: 0xc0000005 Fault offset: 0x00469f96 Faulting process id:
0xe3c Faulting application start time: 0x01ca5dbdc4e7b154 Faulting application path:
C:\Program Files\Sony\Sound Forge Pro 10.0\sfvstserver.exe Faulting module path:
C:\Program Files\Cakewalk\Vstplugins\Kontakt 3.dll Report Id: 2f74af75-c9b1-11de-98f5-001c23a8d906

Error - 11/5/2009 6:05:51 AM | Computer Name = SCPC_JFREESE-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Integrator.exe, version: 9.0.2000.16, time
stamp: 0x4aeae63b Faulting module name: rtl120.bpl, version: 12.0.3210.17555, time
stamp: 0x48f667d6 Exception code: 0x0eedfade Fault offset: 0x00006bb1 Faulting process
id: 0xf94 Faulting application start time: 0x01ca5dfef98a5978 Faulting application
path: C:\Program Files\TuneUp Utilities 2010\Integrator.exe Faulting module path:
C:\Program Files\TuneUp Utilities 2010\rtl120.bpl Report Id: cbb20a50-c9f2-11de-98f7-001c23a8d906

Error - 11/5/2009 7:13:15 AM | Computer Name = SCPC_JFREESE-PC | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 1088 (0x440) Thread address : 0x779364F4 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\HarddiskVolume2\Users\SCPC_JFREESE\AppData\Local\Temp\Komplete
5.exe by C:\REMOVE\Malwarebytes' Anti-Malware\mbam.exe 4(0)(0) 4(0)(0) 7200(0)(0)

7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)

Error - 11/5/2009 7:33:51 AM | Computer Name = SCPC_JFREESE-PC | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 1524 (0x5f4) Thread address : 0x76E864F4 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\HarddiskVolume2\Users\SCPC_JFREESE\AppData\Local\Temp\Komplete
5.exe by C:\REMOVE\Malwarebytes' Anti-Malware\mbam.exe 4(0)(0) 4(0)(0) 7200(0)(0)

7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)

[ System Events ]
Error - 11/5/2009 3:43:25 AM | Computer Name = SCPC_JFREESE-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the ShellHWDetection service.

Error - 11/5/2009 4:05:23 AM | Computer Name = SCPC_JFREESE-PC | Source = Schannel | ID = 36888
Description = The following fatal alert was generated: 10. The internal error state
is 10.

Error - 11/5/2009 4:05:44 AM | Computer Name = SCPC_JFREESE-PC | Source = Schannel | ID = 36888
Description = The following fatal alert was generated: 10. The internal error state
is 10.

Error - 11/5/2009 4:06:06 AM | Computer Name = SCPC_JFREESE-PC | Source = Schannel | ID = 36888
Description = The following fatal alert was generated: 10. The internal error state
is 10.

Error - 11/5/2009 4:06:06 AM | Computer Name = SCPC_JFREESE-PC | Source = Schannel | ID = 36888
Description = The following fatal alert was generated: 10. The internal error state
is 10.

Error - 11/5/2009 4:06:39 AM | Computer Name = SCPC_JFREESE-PC | Source = Schannel | ID = 36888
Description = The following fatal alert was generated: 10. The internal error state
is 10.

Error - 11/5/2009 4:07:00 AM | Computer Name = SCPC_JFREESE-PC | Source = Schannel | ID = 36888
Description = The following fatal alert was generated: 10. The internal error state
is 10.

Error - 11/5/2009 5:58:39 AM | Computer Name = SCPC_JFREESE-PC | Source = Service Control Manager | ID = 7000
Description = The TuneUp Theme Extension service failed to start due to the following
error: %%1083

Error - 11/5/2009 7:13:17 AM | Computer Name = SCPC_JFREESE-PC | Source = Service Control Manager | ID = 7031
Description = The McAfee Real-time Scanner service terminated unexpectedly. It
has done this 1 time(s). The following corrective action will be taken in 60000
milliseconds: Restart the service.

Error - 11/5/2009 7:33:54 AM | Computer Name = SCPC_JFREESE-PC | Source = Service Control Manager | ID = 7031
Description = The McAfee Real-time Scanner service terminated unexpectedly. It
has done this 1 time(s). The following corrective action will be taken in 60000
milliseconds: Restart the service.


< End of report >
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP