Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Internet connectivity issues

Started by Rolph , Sep 20 2010 07:31 PM

  • Please log in to reply

#1
Rolph
Posted 20 September 2010 - 07:31 PM

Rolph

    Member

  • Member
  • PipPip
  • 13 posts
Hi,
I was in the process of cleaning up my system when I had to go out of town for a couple weeks. I've noticed some issues with my internet cropping up lately, so I'm creating a new post for it.
I dont have a GMER log. I've tried running it twice and both times resulted in a critical error that makes my comp reboot automatically. :D

MBAM:

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4660

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

9/20/2010 8:33:27 PM
mbam-log-2010-09-20 (20-33-27).txt

Scan type: Quick scan
Objects scanned: 173528
Time elapsed: 4 minute(s), 54 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\EWABQAF7KL (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

OTL:

OTL logfile created on: 9/20/2010 9:22:33 PM - Run 4
OTL by OldTimer - Version 3.2.7.1 Folder = C:\Documents and Settings\Lugnutz87\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 79.00% Memory free
6.00 Gb Paging File | 6.00 Gb Available in Paging File | 90.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37.27 Gb Total Space | 6.81 Gb Free Space | 18.27% Space Free | Partition Type: NTFS
Drive D: | 232.83 Gb Total Space | 48.57 Gb Free Space | 20.86% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SEAN
Current User Name: Lugnutz87
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/09/16 18:59:22 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Firefox\firefox.exe
PRC - [2010/07/16 09:17:46 | 002,065,760 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2010/07/16 09:17:39 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/07/16 09:17:38 | 000,620,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010/07/16 09:17:32 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/07/16 09:16:53 | 000,723,296 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/07/16 09:16:50 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010/07/05 23:12:18 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lugnutz87\Desktop\OTL.exe
PRC - [2010/05/26 13:05:04 | 002,437,176 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
PRC - [2010/05/26 13:03:36 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2010/05/21 11:36:28 | 003,824,472 | ---- | M] (AOL Inc.) -- C:\Program Files\AIM\aim.exe
PRC - [2010/04/12 18:46:36 | 001,135,912 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2009/09/29 10:17:50 | 000,013,088 | ---- | M] (Intuit Inc.) -- C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
PRC - [2009/06/04 01:55:16 | 000,025,600 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\Ctxfihlp.exe
PRC - [2009/06/04 01:49:56 | 001,213,440 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTxfispi.exe
PRC - [2009/03/24 19:47:12 | 000,214,536 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\realplay.exe
PRC - [2009/03/24 19:47:07 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009/02/23 12:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
PRC - [2008/04/13 20:12:33 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\savedump.exe
PRC - [2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/01/11 23:16:38 | 000,039,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
PRC - [2006/12/12 10:46:52 | 000,019,456 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CtHelper.exe
PRC - [2005/11/04 18:07:56 | 000,049,152 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe


========== Modules (SafeList) ==========

MOD - [2010/07/05 23:12:18 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lugnutz87\Desktop\OTL.exe
MOD - [2008/04/13 20:10:20 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2006/05/24 00:20:39 | 000,007,168 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTAGENT.DLL


========== Win32 Services (SafeList) ==========

SRV - [2010/07/16 09:17:32 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/05/26 13:05:04 | 002,437,176 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2010/03/29 08:53:22 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus®
SRV - [2010/02/13 17:04:26 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2009/12/15 16:07:16 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- D:\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)
SRV - [2009/09/29 10:17:50 | 000,013,088 | ---- | M] (Intuit Inc.) [Auto | Running] -- C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe -- (IntuitUpdateService)
SRV - [2009/02/23 12:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\ZoneLabs\srescan.sys -- (srescan)
DRV - [2010/07/16 09:17:42 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/07/16 09:16:53 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/06/02 18:28:30 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/05/13 10:02:32 | 000,532,224 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2010/05/04 22:45:04 | 004,807,680 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010/03/08 10:41:48 | 000,220,112 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2009/09/02 20:43:06 | 000,279,712 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009/09/02 20:43:03 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009/08/19 08:05:56 | 000,100,368 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009/06/04 03:48:12 | 001,177,624 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ha20x2k.sys -- (ha20x2k)
DRV - [2009/06/04 03:48:00 | 000,095,768 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\emupia2k.sys -- (emupia)
DRV - [2009/06/04 03:47:50 | 000,158,744 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2009/06/04 03:47:42 | 000,014,360 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctprxy2k.sys -- (ctprxy2k)
DRV - [2009/06/04 03:47:34 | 000,130,072 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2009/06/04 03:47:24 | 000,347,080 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctdvda2k.sys -- (ctdvda2k)
DRV - [2009/06/04 03:47:14 | 000,526,232 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM)
DRV - [2009/06/04 03:47:06 | 000,511,000 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctac32k.sys -- (ctac32k)
DRV - [2009/06/04 03:46:56 | 001,324,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\CTEXFIFX.SYS -- (CTEXFIFX.SYS)
DRV - [2009/06/04 03:46:56 | 001,324,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CTEXFIFX.sys -- (CTEXFIFX)
DRV - [2009/06/04 03:46:42 | 000,072,728 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\CTHWIUT.SYS -- (CTHWIUT.SYS)
DRV - [2009/06/04 03:46:42 | 000,072,728 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CTHWIUT.sys -- (CTHWIUT)
DRV - [2009/06/04 03:46:34 | 000,171,032 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\CT20XUT.SYS -- (CT20XUT.SYS)
DRV - [2009/06/04 03:46:34 | 000,171,032 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CT20XUT.sys -- (CT20XUT)
DRV - [2008/11/04 14:26:20 | 000,120,320 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SSHDRV65.sys -- (SSHDRV65)
DRV - [2008/10/06 15:20:09 | 000,716,272 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008/04/13 12:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2003/10/13 01:29:00 | 000,066,688 | R--- | M] (NETGEAR ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\GA311ND5.SYS -- (RTL8023)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.845
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.63
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2


FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/07/20 18:01:17 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Firefox\components [2010/09/16 18:59:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Firefox\plugins [2010/09/16 18:59:31 | 000,000,000 | ---D | M]

[2009/07/27 18:38:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\Mozilla\Extensions
[2010/09/20 19:01:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\Mozilla\Firefox\Profiles\po1ywmlp.default\extensions
[2010/04/26 21:58:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Lugnutz87\Application Data\Mozilla\Firefox\Profiles\po1ywmlp.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/09/18 23:29:01 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Lugnutz87\Application Data\Mozilla\Firefox\Profiles\po1ywmlp.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/06/23 22:10:05 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus®)) -- C:\Documents and Settings\Lugnutz87\Application Data\Mozilla\Firefox\Profiles\po1ywmlp.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}

O1 HOSTS File: ([2010/07/06 21:17:24 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AudioDrvEmulator] C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CTHelper] C:\WINDOWS\System32\CtHelper.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [CTxfiHlp] C:\WINDOWS\System32\Ctxfihlp.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [UpdReg] C:\WINDOWS\Updreg.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [VolPanel] C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKCU..\Run: [Aim] C:\Program Files\AIM\aim.exe (AOL Inc.)
O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O15 - HKCU\..Trusted Domains: intuit.com ([ttlc] https in Trusted sites)
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} http://supportcenter...oad/tgctlcm.cab (Reg Error: Key error.)
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} http://catalog.updat...b?1260314066921 (MUCatalogWebControl Class)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1212451221434 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1212451414981 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creat...15111/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 209.18.47.61 209.18.47.62
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\HmelyoffLabs\VHToolkit\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop WallPaper: C:\Documents and Settings\Lugnutz87\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Lugnutz87\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/06/20 10:17:57 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: ias - File not found
NetSvcs: iprip - File not found
NetSvcs: irmon - File not found
NetSvcs: nwcworkstation - File not found
NetSvcs: nwsapagent - File not found
NetSvcs: wmi - C:\WINDOWS\System32\wmi.dll (Microsoft Corporation)
NetSvcs: wmdmpmsp - File not found

Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.voxacm160 - C:\WINDOWS\System32\vct3216.acm (Voxware, Inc.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16902109354000384)

========== Files/Folders - Created Within 90 Days ==========

[2010/09/19 20:51:32 | 000,000,000 | ---D | C] -- C:\Program Files\AIM
[2010/09/19 20:51:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Software Update Utility
[2010/09/01 17:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lugnutz87\Local Settings\Application Data\AIM
[2010/09/01 17:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AIM
[2010/09/01 17:40:14 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010/07/27 17:52:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lugnutz87\My Documents\StarCraft II
[2010/07/24 20:40:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lugnutz87\Application Data\LolClient
[2010/07/24 20:09:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lugnutz87\Local Settings\Application Data\PMB Files
[2010/07/24 20:09:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PMB Files
[2010/07/24 20:09:03 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks
[2010/07/16 09:17:38 | 000,012,536 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/07/09 18:21:08 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/07/09 18:17:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lugnutz87\Desktop\RegSeeker
[2010/07/06 21:36:33 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010/07/06 21:34:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lugnutz87\Desktop\tdsskiller
[2010/07/06 21:15:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010/07/06 18:22:15 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/07/06 18:22:15 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/07/06 18:22:15 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/07/06 18:22:14 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/07/06 18:21:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/07/06 18:18:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lugnutz87\Application Data\AVG9
[2010/07/06 18:00:56 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/07/06 17:51:15 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/07/05 23:12:18 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Lugnutz87\Desktop\OTL.exe
[2010/07/05 19:43:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lugnutz87\Application Data\Malwarebytes
[2010/07/05 19:39:46 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/07/05 19:39:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Malwarebytes
[2010/07/05 19:39:45 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/07/05 19:39:45 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/06/25 19:49:12 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2010/06/23 22:10:07 | 000,000,000 | ---D | C] -- C:\Program Files\NOS
[2010/06/23 22:10:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\NOS
[2008/06/02 20:24:29 | 000,060,928 | ---- | C] ( ) -- C:\WINDOWS\System32\a3d.dll

========== Files - Modified Within 90 Days ==========

[2010/09/20 21:21:20 | 005,767,168 | -H-- | M] () -- C:\Documents and Settings\Lugnutz87\NTUSER.DAT
[2010/09/20 21:18:29 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/09/20 21:18:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/09/20 20:27:43 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/20 20:21:04 | 000,054,400 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000005-00000000-00000000-00001102-00000005-00311102}.rfx
[2010/09/20 20:21:04 | 000,054,400 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000005-00000000-00000000-00001102-00000005-00311102}.rfx
[2010/09/20 20:21:04 | 000,000,788 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000005-00000000-00000000-00001102-00000005-00311102}.rfx
[2010/09/20 20:20:59 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Lugnutz87\ntuser.ini
[2010/09/20 18:10:32 | 065,076,344 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/09/19 20:51:42 | 000,002,009 | -H-- | M] () -- C:\IPH.PH
[2010/09/19 20:51:37 | 000,001,592 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\Application Data\Microsoft\Internet Explorer\Quick Launch\AIM.lnk
[2010/09/19 20:51:37 | 000,001,574 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\AIM.lnk
[2010/09/19 20:50:26 | 000,002,686 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\Desktop\Untitled.png
[2010/09/19 20:43:13 | 000,142,394 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\Desktop\crap.JPG
[2010/09/19 17:09:20 | 000,134,976 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\My Documents\tourney.gme
[2010/09/19 16:35:15 | 000,096,256 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/19 11:29:35 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/09/17 18:16:28 | 000,793,600 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\My Documents\CharacterGeneratorTestv5.xls
[2010/08/11 17:29:48 | 000,125,320 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/11 00:33:31 | 000,488,794 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/08/11 00:33:31 | 000,432,686 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/08/11 00:33:31 | 000,067,516 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/07/29 17:28:07 | 000,020,984 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/07/27 18:21:32 | 000,000,503 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\My Documents\StarCraft II.lnk
[2010/07/24 20:30:30 | 000,000,331 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\Desktop\Play League of Legends.lnk
[2010/07/24 17:44:50 | 000,131,072 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\My Documents\epsxe000.mcr
[2010/07/16 09:17:42 | 000,243,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010/07/16 09:17:38 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010/07/16 09:16:53 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010/07/14 20:38:31 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm
[2010/07/14 20:38:31 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm
[2010/07/14 20:38:03 | 003,180,932 | -H-- | M] () -- C:\Documents and Settings\Lugnutz87\Local Settings\Application Data\IconCache.db
[2010/07/11 11:33:23 | 000,021,840 | ---- | M] () -- C:\WINDOWS\System32\SIntfNT.dll
[2010/07/11 11:33:23 | 000,017,212 | ---- | M] () -- C:\WINDOWS\System32\SIntf32.dll
[2010/07/11 11:33:23 | 000,012,067 | ---- | M] () -- C:\WINDOWS\System32\SIntf16.dll
[2010/07/07 19:26:04 | 000,000,090 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\Desktop\hook.ini
[2010/07/06 21:17:37 | 000,000,262 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/07/06 21:17:24 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/07/05 23:12:18 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lugnutz87\Desktop\OTL.exe
[2010/07/05 16:14:33 | 000,004,096 | ---- | M] () -- C:\WINDOWS\System32\crash
[2010/07/02 21:22:22 | 000,001,506 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\My Documents\Arcanum.lnk
[2010/07/02 16:10:48 | 000,000,295 | ---- | M] () -- C:\WINDOWS\EReg072.dat
[2010/07/02 13:09:17 | 000,000,344 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\My Documents\Master of Orion II.lnk
[2010/06/25 19:48:31 | 000,000,410 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\My Documents\Dragon Age Origins.lnk
[2010/06/23 22:42:32 | 000,014,372 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\My Documents\sean2.SGM
[2010/06/23 22:36:24 | 000,014,372 | ---- | M] () -- C:\Documents and Settings\Lugnutz87\My Documents\sean1.SGM
[2010/06/23 18:31:26 | 000,001,043 | ---- | M] () -- C:\WINDOWS\winpoint.ini

========== Files Created - No Company Name ==========

[2010/09/20 21:03:56 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\Desktop\gmer.exe
[2010/09/20 20:27:43 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/19 20:51:37 | 000,001,592 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\Application Data\Microsoft\Internet Explorer\Quick Launch\AIM.lnk
[2010/09/19 20:51:37 | 000,001,574 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\AIM.lnk
[2010/09/19 20:44:52 | 000,002,686 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\Desktop\Untitled.png
[2010/09/19 20:43:12 | 000,142,394 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\Desktop\crap.JPG
[2010/07/27 17:52:01 | 000,000,503 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\My Documents\StarCraft II.lnk
[2010/07/24 20:30:30 | 000,000,331 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\Desktop\Play League of Legends.lnk
[2010/07/24 17:27:53 | 000,131,072 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\My Documents\epsxe000.mcr
[2010/07/17 15:49:01 | 541,315,152 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\My Documents\fft disk.bin
[2010/07/06 18:22:15 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/07/06 18:22:15 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/07/06 18:22:15 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/07/06 18:22:15 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/07/06 18:22:15 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/07/05 19:26:40 | 000,000,090 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\Desktop\hook.ini
[2010/07/05 19:26:15 | 000,787,456 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\Desktop\D3dHook.dll
[2010/07/05 19:26:15 | 000,755,712 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\Desktop\D3DWindower-English.exe
[2010/07/02 21:07:30 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\crash
[2010/07/02 16:10:48 | 000,000,295 | ---- | C] () -- C:\WINDOWS\EReg072.dat
[2010/07/02 13:09:17 | 000,000,344 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\My Documents\Master of Orion II.lnk
[2010/06/22 21:50:00 | 000,014,372 | ---- | C] () -- C:\Documents and Settings\Lugnutz87\My Documents\sean2.SGM
[2010/05/31 21:15:31 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010/05/31 21:15:31 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010/05/31 21:15:29 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010/05/31 21:15:29 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010/05/31 21:15:28 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010/05/31 21:15:28 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010/05/27 16:15:09 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2010/01/12 05:35:44 | 000,080,416 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2009/09/02 20:43:05 | 000,279,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009/09/02 20:43:03 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009/08/17 19:48:45 | 000,007,200 | ---- | C] () -- C:\WINDOWS\OUTHELP.DLL
[2009/08/17 19:33:57 | 000,000,177 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2009/06/19 15:04:44 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2009/06/19 15:04:44 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2009/06/19 15:04:44 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2009/06/04 02:37:08 | 000,021,093 | ---- | C] () -- C:\WINDOWS\System32\instwdm.ini
[2009/06/04 02:37:06 | 000,000,054 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2009/06/04 01:55:20 | 000,002,560 | ---- | C] () -- C:\WINDOWS\CTXFIRES.DLL
[2009/04/02 17:47:33 | 000,000,058 | ---- | C] () -- C:\WINDOWS\mchguid.ini
[2009/04/02 17:46:51 | 000,001,043 | ---- | C] () -- C:\WINDOWS\winpoint.ini
[2009/01/25 14:05:05 | 000,000,244 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2008/11/05 23:20:57 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2008/11/04 14:26:20 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\drivers\SSHDRV65.sys
[2008/10/10 08:33:30 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008/10/07 09:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008/10/07 09:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008/09/19 17:57:34 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008/09/19 17:55:10 | 000,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2008/09/03 12:03:32 | 000,716,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008/07/11 16:50:28 | 000,002,560 | ---- | C] () -- C:\WINDOWS\System32\CtxfiRes.dll
[2008/07/10 11:36:25 | 000,796,048 | ---- | C] () -- C:\WINDOWS\System32\libeay32_0.9.6l.dll
[2008/06/11 22:30:10 | 000,000,311 | ---- | C] () -- C:\WINDOWS\QTW.INI
[2008/06/02 20:25:56 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2007/11/26 22:56:28 | 000,151,415 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2007/08/24 11:50:24 | 000,010,875 | ---- | C] () -- C:\WINDOWS\ESOA.INI
[2007/08/24 11:50:24 | 000,000,053 | ---- | C] () -- C:\WINDOWS\PRSRVDLL.INI
[2006/05/24 01:00:48 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CTBurst.dll
[2005/07/26 17:13:12 | 000,000,285 | ---- | C] () -- C:\WINDOWS\System32\kill.ini
[2005/06/07 09:10:50 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\CTMMACTL.DLL
[1999/01/22 14:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL

========== LOP Check ==========

[2008/11/06 14:19:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\acccore
[2010/09/01 17:40:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AIM
[2009/12/01 14:37:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\avg9
[2009/11/04 17:32:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\BioWare
[2010/01/27 18:15:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Electronic Arts
[2008/08/11 18:09:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\EPSON
[2008/06/02 21:12:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\MailFrontier
[2009/05/06 20:06:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\NCH Swift Sound
[2010/02/20 12:38:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Paradox Interactive
[2010/07/24 20:10:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PMB Files
[2008/11/03 22:53:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\SimCity Societies
[2010/02/13 16:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TechSmith
[2010/09/20 18:02:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP
[2008/11/06 14:28:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Viewpoint
[2008/11/22 11:08:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[2008/06/02 20:11:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\acccore
[2010/07/06 18:18:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\AVG9
[2008/08/13 19:29:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\fltk.org
[2008/10/25 15:42:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\Leadertech
[2010/07/24 20:40:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\LolClient
[2010/06/07 19:27:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\Mount&Blade
[2009/05/06 20:06:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\NCH Swift Sound
[2010/02/19 18:50:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\Tilted Mill
[2010/09/18 23:09:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lugnutz87\Application Data\uTorrent

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.* >
[2004/06/20 10:17:57 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2004/06/22 20:49:17 | 000,042,768 | -H-- | M] () -- C:\BEDBBBDA
[2000/07/31 13:28:00 | 000,286,208 | ---- | M] () -- C:\binkw32.dll
[2008/06/02 21:32:27 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2010/07/06 21:27:45 | 000,023,390 | ---- | M] () -- C:\ComboFix.txt
[2004/06/20 10:17:57 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010/02/17 22:34:10 | 000,000,120 | ---- | M] () -- C:\drmHeader.bin
[2004/06/20 10:17:57 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/09/19 20:51:42 | 000,002,009 | -H-- | M] () -- C:\IPH.PH
[2005/12/11 13:20:09 | 000,000,355 | ---- | M] () -- C:\mmcInst.log
[2007/09/23 18:12:10 | 000,001,414 | ---- | M] () -- C:\moduleName.txt
[2004/06/20 10:17:57 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008/06/02 21:26:52 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008/06/02 23:08:09 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/09/20 21:18:12 | 3488,002,048 | -HS- | M] () -- C:\pagefile.sys
[2007/03/24 07:34:59 | 000,000,268 | -H-- | M] () -- C:\sqmdata00.sqm
[2007/10/17 23:02:06 | 000,000,268 | -H-- | M] () -- C:\sqmdata01.sqm
[2007/10/18 22:47:08 | 000,000,268 | -H-- | M] () -- C:\sqmdata02.sqm
[2007/10/19 00:49:26 | 000,000,268 | -H-- | M] () -- C:\sqmdata03.sqm
[2007/03/24 07:34:59 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2007/10/17 23:02:06 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm
[2007/10/18 22:47:08 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
[2007/10/19 00:49:26 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
[2010/07/06 21:35:20 | 000,012,692 | ---- | M] () -- C:\TDSSKiller.2.3.2.2_06.07.2010_21.35.12_log.txt
[2010/07/06 21:35:59 | 000,034,292 | ---- | M] () -- C:\TDSSKiller.txt
[2010/06/22 18:50:30 | 000,000,094 | ---- | M] () -- C:\WIZ.INI

< %systemroot%\*. /mp /s >

< %systemroot%\System32\config\*.sav >
[2007/01/01 21:01:56 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2007/01/01 21:01:56 | 000,602,112 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2007/01/01 21:01:56 | 000,430,080 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-09-16 00:16:17

========== Alternate Data Streams ==========

@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:05EE1EEF
< End of report >

Any help is appreciated!
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP