Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Slow down on start up and Memory Usage that Fluctuates


  • Please log in to reply

#1
jtshants

jtshants

    New Member

  • Member
  • Pip
  • 2 posts
I'm not the only one using this computer so I really can't tell that much which sites gets visited or what gets downloaded. But now it suddenly takes a minute or so at startup to show the desktop. This isn't normally like this, so I think it may be a virus. Or I just need to defrag? Also I hive high memory usage but when I look at the task manager it doesn't look like it should be using that much. But the memory usage does go down after some time.

Thanks for you help.


OTL logfile created on: 5/8/2011 1:13:08 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\manny\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 552.00 Mb Available Physical Memory | 54.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97.65 Gb Total Space | 81.63 Gb Free Space | 83.59% Space Free | Partition Type: NTFS
Drive D: | 51.35 Gb Total Space | 34.27 Gb Free Space | 66.75% Space Free | Partition Type: NTFS

Computer Name: MANNY-FBFAABB1D | User Name: manny | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/05/08 13:12:16 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\manny\Desktop\OTL.exe
PRC - [2011/03/30 22:41:13 | 002,273,280 | ---- | M] (Moo0) -- C:\Program Files\Moo0\SystemMonitor 1.63\SystemMonitor.exe
PRC - [2011/03/28 22:01:12 | 003,278,232 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe
PRC - [2011/02/16 15:49:08 | 000,088,176 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2010/12/20 18:08:58 | 000,363,344 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010/12/20 18:08:56 | 000,443,728 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2010/11/30 13:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010/05/25 22:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2008/04/14 20:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/06/26 12:22:42 | 000,081,997 | ---- | M] () -- C:\Program Files\USB TV\EM28XX\BDARemote.exe
PRC - [2006/01/02 17:41:22 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
PRC - [2005/03/22 17:20:44 | 000,339,968 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\stsystra.exe
PRC - [2005/02/23 15:57:24 | 000,057,344 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Mixer\CTSVolFE.exe


========== Modules (SafeList) ==========

MOD - [2011/05/08 13:12:16 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\manny\Desktop\OTL.exe
MOD - [2011/04/08 16:56:28 | 000,018,176 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\sahook.dll
MOD - [2011/02/11 21:11:36 | 000,034,208 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\idmmkb.dll
MOD - [2008/04/14 20:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2011/03/05 09:06:10 | 001,045,256 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011/02/16 15:49:08 | 000,088,176 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2010/12/20 18:08:58 | 000,363,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)


========== Driver Services (SafeList) ==========

DRV - [2011/05/08 12:50:36 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EB7EA984-D4CB-4741-A643-CABDA520AD7A}\MpKsla684e822.sys -- (MpKsla684e822)
DRV - [2011/03/30 22:41:14 | 000,014,416 | ---- | M] (OpenLibSys.org) [Kernel | On_Demand | Stopped] -- C:\Program Files\Moo0\SystemMonitor 1.63\WinRing0.sys -- (WinRing0_1_2_0)
DRV - [2011/03/29 01:46:40 | 000,098,160 | ---- | M] (Tonec Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\idmtdi.sys -- (IDMTDI)
DRV - [2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2006/06/07 17:08:58 | 001,580,544 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005/11/16 15:36:00 | 001,047,816 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005/04/14 01:00:00 | 000,138,112 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\V0090Vid.sys -- (V0090VID)
DRV - [2004/07/29 13:14:22 | 000,091,577 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P0620Vid.sys -- (PD0620VID)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Secure Search"
FF - prefs.js..browser.search.selectedEngine: "Secure Search"
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.2.0.7165
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.1.20091029021655
FF - prefs.js..extensions.enabledItems: [email protected]:1.2.0
FF - prefs.js..extensions.enabledItems: [email protected]:1.2.3
FF - prefs.js..extensions.enabledItems: [email protected]:7.2.8
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.3.1
FF - prefs.js..keyword.URL: "http://search.yahoo....h?fr=mcafee&p="


FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2011/05/03 12:12:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/03/25 16:12:43 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/04/14 10:03:09 | 000,000,000 | ---D | M]

[2011/03/02 18:06:20 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\manny\Application Data\Mozilla\Extensions
[2011/05/05 16:44:20 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\manny\Application Data\Mozilla\Firefox\Profiles\gdl0wp6i.default\extensions
[2011/03/26 00:34:57 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\manny\Application Data\Mozilla\Firefox\Profiles\gdl0wp6i.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/04/03 16:14:40 | 000,000,000 | ---D | M] ("Ad4on Hoplitosaurus") -- C:\Documents and Settings\manny\Application Data\Mozilla\Firefox\Profiles\gdl0wp6i.default\extensions\[email protected]
[2011/04/03 16:17:34 | 000,000,000 | ---D | M] () -- C:\Documents and Settings\manny\Application Data\Mozilla\Firefox\Profiles\gdl0wp6i.default\extensions\[email protected]
[2011/05/05 16:44:20 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/03/02 21:35:45 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2011/04/15 20:53:55 | 000,000,000 | ---D | M] (IDM CC) -- C:\DOCUMENTS AND SETTINGS\MANNY\APPLICATION DATA\IDM\IDMMZCC3
[2011/05/03 12:12:21 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES\MCAFEE\SITEADVISOR
[2011/03/18 03:57:30 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
[2011/04/20 21:59:14 | 000,001,949 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\McSiteAdvisor.xml

O1 HOSTS File: ([2011/04/15 23:01:04 | 000,000,384 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 tonec.com
O1 - Hosts: 127.0.0.1 www.tonec.com
O1 - Hosts: 127.0.0.1 registeridm.com
O1 - Hosts: 127.0.0.1 www.registeridm.com
O1 - Hosts: 127.0.0.1 secure.registeridm.com
O1 - Hosts: 127.0.0.1 internetdownloadmanager.com
O1 - Hosts: 127.0.0.1 www.internetdownloadmanager.com
O1 - Hosts: 127.0.0.1 secure.internetdownloadmanager.com
O1 - Hosts: 127.0.0.1 mirror.internetdownloadmanager.com
O1 - Hosts: 127.0.0.1 mirror2.internetdownloadmanager.com
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKLM..\Run: [CTSVolFE] C:\Program Files\Creative\Mixer\CTSVolFE.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [Smart File Advisor] C:\Program Files\Smart File Advisor\sfa.exe (Filefacts.net)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\BDARemote.lnk = C:\Program Files\USB TV\EM28XX\BDARemote.exe ()
O4 - Startup: C:\Documents and Settings\manny\Start Menu\Programs\Startup\Moo0 SystemMonitor 1.63.lnk = C:\Program Files\Moo0\SystemMonitor 1.63\SystemMonitor.exe (Moo0)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.ma...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 124.106.6.2 124.106.5.2
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\manny\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\manny\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/03/02 17:33:37 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/05/08 13:11:30 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\manny\Desktop\OTL.exe
[2011/05/07 23:33:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Yahoo! Messenger
[2011/05/07 08:06:46 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\manny\Recent
[2011/05/05 11:33:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Application Data\FileZilla
[2011/05/05 11:32:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client
[2011/05/05 11:32:53 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client
[2011/05/02 21:28:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Application Data\PhotoScape
[2011/05/02 21:28:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PhotoScape
[2011/05/02 21:28:19 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoScape
[2011/04/20 23:13:09 | 000,000,000 | ---D | C] -- C:\Program Files\Smart File Advisor
[2011/04/20 23:08:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Roadkil.Net
[2011/04/20 23:08:30 | 000,000,000 | ---D | C] -- C:\Program Files\Roadkil.Net
[2011/04/19 12:54:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Desktop\ID
[2011/04/19 12:41:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\IDpack Pro
[2011/04/19 12:41:11 | 000,000,000 | ---D | C] -- C:\Program Files\Aptika
[2011/04/19 12:39:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Desktop\id software
[2011/04/18 01:03:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee
[2011/04/18 01:03:26 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee
[2011/04/18 01:03:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee
[2011/04/17 11:35:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Start Menu\Programs\SRose Online
[2011/04/17 11:26:31 | 000,000,000 | ---D | C] -- C:\SRose Online
[2011/04/15 20:33:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Application Data\IDM
[2011/04/15 20:32:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Start Menu\Programs\Internet Download Manager
[2011/04/15 20:32:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Internet Download Manager
[2011/04/15 20:31:58 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Download Manager
[2011/04/15 08:54:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SIW
[2011/04/15 08:54:01 | 000,000,000 | ---D | C] -- C:\Program Files\SIW
[2011/04/14 20:45:23 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks
[2011/04/14 10:06:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Winamp
[2011/04/14 10:03:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Start Menu\Programs\Winamp Detector Plug-in
[2011/04/14 10:03:09 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect
[2011/04/14 10:02:25 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2011/04/14 10:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Application Data\Winamp
[2011/04/11 08:58:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Local Settings\Application Data\Adobe
[2011/04/10 21:07:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011/04/10 21:07:53 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011/04/10 21:07:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2011/04/09 13:44:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\manny\Application Data\vlc
[2011/04/09 13:44:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
[2011/04/09 13:43:38 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN

========== Files - Modified Within 30 Days ==========

[2011/05/08 13:20:05 | 000,000,978 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1004336348-73586283-1417001333-1003UA.job
[2011/05/08 13:12:16 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\manny\Desktop\OTL.exe
[2011/05/08 12:55:38 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/05/08 12:50:26 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/05/08 12:49:49 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/05/08 12:49:46 | 000,270,192 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/05/08 12:48:01 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/05/08 11:17:17 | 000,011,264 | -H-- | M] () -- C:\Documents and Settings\manny\Desktop\photothumb.db
[2011/05/08 10:08:50 | 000,027,140 | ---- | M] () -- C:\Documents and Settings\manny\.recently-used.xbel
[2011/05/08 09:52:27 | 000,057,654 | ---- | M] () -- C:\Documents and Settings\manny\Desktop\24789_1264674780405_1335827424_30687711_4067659_n.jpg
[2011/05/08 09:25:27 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\manny\Desktop\Skype.lnk
[2011/05/07 23:33:36 | 000,000,820 | ---- | M] () -- C:\Documents and Settings\manny\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2011/05/07 22:40:31 | 000,011,443 | ---- | M] () -- C:\Documents and Settings\manny\Desktop\box.jpg
[2011/05/07 19:11:46 | 000,002,250 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/05/07 18:20:00 | 000,000,926 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1004336348-73586283-1417001333-1003Core.job
[2011/05/05 11:12:49 | 000,000,082 | ---- | M] () -- C:\WINDOWS\mapforms.ini
[2011/05/04 17:15:34 | 000,008,408 | ---- | M] () -- C:\Documents and Settings\manny\My Documents\cc_20110504_171531.reg
[2011/05/03 09:30:17 | 000,000,075 | ---- | M] () -- C:\Documents and Settings\manny\Application Data\ftpfile.dat
[2011/05/02 21:28:29 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\manny\Application Data\Microsoft\Internet Explorer\Quick Launch\PhotoScape.lnk
[2011/05/02 21:28:29 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\manny\Desktop\PhotoScape.lnk
[2011/04/26 09:13:40 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2011/04/22 09:12:08 | 000,001,626 | ---- | M] () -- C:\Documents and Settings\manny\Desktop\Puran Defrag.lnk
[2011/04/20 23:22:19 | 000,006,144 | ---- | M] () -- C:\Documents and Settings\manny\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/19 12:41:18 | 000,001,764 | ---- | M] () -- C:\Documents and Settings\manny\Desktop\IDpack Producer.lnk
[2011/04/19 12:41:18 | 000,001,764 | ---- | M] () -- C:\Documents and Settings\manny\Desktop\IDpack Designer.lnk
[2011/04/17 16:35:28 | 000,019,028 | ---- | M] () -- C:\Documents and Settings\manny\My Documents\cc_20110417_163525.reg
[2011/04/17 11:35:24 | 000,001,400 | ---- | M] () -- C:\Documents and Settings\manny\Desktop\SRose Online.lnk
[2011/04/15 22:49:03 | 000,009,522 | ---- | M] () -- C:\WINDOWS\Retafte.bmp
[2011/04/14 09:40:56 | 000,399,964 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/04/14 09:40:56 | 000,060,376 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

========== Files Created - No Company Name ==========

[2011/05/08 10:08:50 | 000,027,140 | ---- | C] () -- C:\Documents and Settings\manny\.recently-used.xbel
[2011/05/08 09:52:24 | 000,057,654 | ---- | C] () -- C:\Documents and Settings\manny\Desktop\24789_1264674780405_1335827424_30687711_4067659_n.jpg
[2011/05/07 23:33:36 | 000,000,820 | ---- | C] () -- C:\Documents and Settings\manny\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2011/05/07 22:34:48 | 000,011,443 | ---- | C] () -- C:\Documents and Settings\manny\Desktop\box.jpg
[2011/05/04 17:15:33 | 000,008,408 | ---- | C] () -- C:\Documents and Settings\manny\My Documents\cc_20110504_171531.reg
[2011/05/03 19:01:41 | 000,011,264 | -H-- | C] () -- C:\Documents and Settings\manny\Desktop\photothumb.db
[2011/05/02 21:28:29 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\manny\Application Data\Microsoft\Internet Explorer\Quick Launch\PhotoScape.lnk
[2011/05/02 21:28:29 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\manny\Desktop\PhotoScape.lnk
[2011/05/02 20:18:32 | 000,000,075 | ---- | C] () -- C:\Documents and Settings\manny\Application Data\ftpfile.dat
[2011/04/24 08:55:22 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2011/04/19 12:41:18 | 000,001,764 | ---- | C] () -- C:\Documents and Settings\manny\Desktop\IDpack Producer.lnk
[2011/04/19 12:41:18 | 000,001,764 | ---- | C] () -- C:\Documents and Settings\manny\Desktop\IDpack Designer.lnk
[2011/04/17 16:35:26 | 000,019,028 | ---- | C] () -- C:\Documents and Settings\manny\My Documents\cc_20110417_163525.reg
[2011/04/17 11:35:24 | 000,001,400 | ---- | C] () -- C:\Documents and Settings\manny\Desktop\SRose Online.lnk
[2011/04/15 22:49:03 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Retafte.bmp
[2011/04/10 21:08:25 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
[2011/03/22 01:12:28 | 001,163,264 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2011/03/22 01:12:28 | 001,015,808 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2011/03/22 01:12:28 | 000,220,160 | ---- | C] () -- C:\WINDOWS\System32\WnASPI32.dll
[2011/03/22 01:12:28 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2011/03/22 01:12:28 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\libfaac.dll
[2011/03/22 01:12:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2011/03/22 01:12:28 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\DGRip.dll
[2011/03/22 01:12:28 | 000,036,352 | ---- | C] () -- C:\WINDOWS\System32\MP2enc.dll
[2011/03/22 01:09:10 | 000,000,082 | ---- | C] () -- C:\WINDOWS\mapforms.ini
[2011/03/22 01:08:34 | 000,153,600 | ---- | C] () -- C:\Documents and Settings\manny\Application Data\SharedSettings.ccs
[2011/03/22 01:03:52 | 000,000,079 | ---- | C] () -- C:\WINDOWS\pwkforms.ini
[2011/03/21 23:25:23 | 000,000,106 | -HS- | C] () -- C:\WINDOWS\WSYS049.SYS
[2011/03/08 08:36:59 | 000,006,144 | ---- | C] () -- C:\Documents and Settings\manny\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/03/04 19:09:00 | 000,022,752 | ---- | C] () -- C:\WINDOWS\System32\spupdsvc.exe
[2011/03/03 16:30:55 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2011/03/03 14:12:54 | 000,129,112 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2011/03/03 01:24:45 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/03/03 01:15:08 | 000,270,192 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/03/02 21:47:07 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011/03/02 21:40:44 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/03/02 18:06:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011/03/02 17:49:46 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/03/02 17:30:38 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008/04/14 20:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008/04/14 20:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008/04/14 20:00:00 | 000,399,964 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008/04/14 20:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008/04/14 20:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008/04/14 20:00:00 | 000,060,376 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008/04/14 20:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008/04/14 20:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008/04/14 20:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008/04/14 20:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008/04/14 20:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008/04/14 20:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2002/11/07 12:42:04 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\pdf417enc.dll

========== LOP Check ==========

[2011/03/05 09:28:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2011/03/29 08:16:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2011/03/21 11:00:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\ActiveState
[2011/03/05 09:03:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\Autodesk
[2011/04/15 20:28:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\Azureus
[2011/03/26 01:11:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\Camfrog
[2011/03/22 01:08:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\CoffeeCup Software
[2011/05/08 12:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\DMCache
[2011/03/03 17:36:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\DriverFinder
[2011/05/08 13:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\FileZilla
[2011/03/12 01:21:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\GetRightToGo
[2011/05/08 10:08:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\gtk-2.0
[2011/05/06 08:21:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\IDM
[2011/03/27 18:56:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\Kalydo
[2011/03/02 20:43:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\MSNInstaller
[2011/05/03 19:09:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\PhotoScape
[2011/03/22 12:01:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\SWiSH Max4
[2011/03/02 20:38:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\Uniblue
[2011/03/30 22:31:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\ViGlance
[2011/03/27 11:12:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\manny\Application Data\ViStart
[2011/05/08 12:55:38 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

========== Purity Check ==========



< End of report >
  • 0

Advertisements


#2
jtshants

jtshants

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
Here is Extras.txt


OTL Extras logfile created on: 5/8/2011 1:13:08 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\manny\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 552.00 Mb Available Physical Memory | 54.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97.65 Gb Total Space | 81.63 Gb Free Space | 83.59% Space Free | Partition Type: NTFS
Drive D: | 51.35 Gb Total Space | 34.27 Gb Free Space | 66.75% Space Free | Partition Type: NTFS

Computer Name: MANNY-FBFAABB1D | User Name: manny | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = IDpackCPL] -- C:\Program Files\Aptika\IDpackPro\IDpackDesigner.exe (SOHO-iT inc.)
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Program Files\Smart File Advisor\sfa.exe" /unknown "%1" (Filefacts.net)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze -- (Vuze Inc.)
"C:\Program Files\Winamp\winamp.exe" = C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.)
"C:\Program Files\CoffeeCup Software\CoffeeCup Visual Site Designer\vsd.exe" = C:\Program Files\CoffeeCup Software\CoffeeCup Visual Site Designer\vsd.exe:*:Enabled:Visual Site Designer Application -- (CoffeeCup Software, Inc.)
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2758691A-2CDE-4942-A4AC-0E8F61FE2067}" = USB Video Driver
"{2CA41BA1-9842-4819-8ABB-76FDC14AB9EA}" = ATI Catalyst Control Center
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}" = McAfee SiteAdvisor
"{72ADDADB-64B9-4D43-8954-88695884CF73}" = IDpack Pro
"{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware
"{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}" = Microsoft Security Client
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}" = Autodesk Material Library 2011
"{A29549FD-65F3-440C-A552-6B8114CF319D}" = Skype Toolbars
"{A306FD29-7D3A-4287-91AC-9A0180931395}_is1" = Roadkil's Unstoppable Copier Version 5.2
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB67580-257C-45FF-B8F4-C8C30682091A}_is1" = SIW version 2010.07.14
"{AC76BA86-7AD7-1033-7B44-AA0000000001}" = Adobe Reader X (10.0.1)
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CD1E078C-A6B9-47DA-B035-6365C85C7832}" = Autodesk Material Library 2011 Base Image library
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"69083DC58646DE46A09847A522A1CC487F918039" = Windows Driver Package - eMPIA Technology Inc, (emAudio) MEDIA (08/31/2007 5.7.0831.0)
"8461-7759-5462-8226" = Vuze
"9722CA1E8F72F362E93CBEC75A707FDABFC8D880" = Windows Driver Package - Advanced Micro Devices, Inc. (USB28xxBGA) Media (08/31/2007 5.7.0831.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = ATI - Software Uninstall Utility
"ATI Display Driver" = ATI Display Driver
"CCleaner" = CCleaner
"CobBackup10" = Cobian Backup 10
"CoffeeCup Flash FireStarter" = CoffeeCup Flash FireStarter
"CoffeeCup Flash Menu Builder" = CoffeeCup Flash Menu Builder
"CoffeeCup Flash Website Search - Registered" = CoffeeCup Flash Website Search - Registered
"CoffeeCup GIF Animator" = CoffeeCup GIF Animator
"CoffeeCup Google SiteMapper" = CoffeeCup Google SiteMapper
"CoffeeCup Image Mapper" = CoffeeCup Image Mapper
"CoffeeCup LockBox" = CoffeeCup LockBox
"CoffeeCup Password Wizard" = CoffeeCup Password Wizard
"CoffeeCup Photo Gallery - Registered" = CoffeeCup Photo Gallery - Registered
"CoffeeCup Visual Site Designer Software" = CoffeeCup Visual Site Designer Software
"CoffeeCup Web Form Builder - Registered" = CoffeeCup Web Form Builder - Registered
"CoffeeCup Web JukeBox - Registered" = CoffeeCup Web JukeBox - Registered
"CoffeeCup Web Video Player - Registered" = CoffeeCup Web Video Player - Registered
"CoffeeCup Website Access Manager" = CoffeeCup Website Access Manager
"Creative PD0620" = Creative WebCam Instant Driver (1.01.02.0729)
"Creative VF0090" = Creative WebCam Vista Plus Driver (1.02.02.0414)
"Creative WebCam Center" = Creative WebCam Center
"CTMBDemo" = Sound Blaster Audigy ADVANCED MB Demo
"Deluxe Pacman_is1" = Deluxe Pacman version 1.81
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ESET Online Scanner" = ESET Online Scanner v3
"FileZilla Client" = FileZilla Client 3.4.0
"Internet Download Manager" = Internet Download Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft Security Client" = Microsoft Security Essentials
"MIXERLITE" = Mixer
"Moo0 SystemMonitor" = Moo0 SystemMonitor 1.63
"Mozilla Firefox (3.6.16)" = Mozilla Firefox (3.6.16)
"PhotoScape" = PhotoScape
"PROSet" = Intel® PRO Network Connections Drivers
"Puran Defrag Free Edition_is1" = Puran Defrag Free Edition 7.2
"Smart File Advisor_is1" = Smart File Advisor 1.1.1
"SWiSH Max4" = SWiSH Max4
"VLC media player" = VLC media player 1.1.8
"Winamp" = Winamp
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinRAR archiver" = WinRAR archiver
"Yahoo! Messenger" = Yahoo! Messenger

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"SRose Online" = SRose Online
"Winamp Detect" = Winamp Detector Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 5/7/2011 1:17:05 AM | Computer Name = MANNY-FBFAABB1D | Source = Application Error | ID = 1000
Description = Faulting application vsd.exe, version 6.0.0.15, faulting module vsd.exe,
version 6.0.0.15, fault address 0x00083323.

Error - 5/7/2011 1:27:00 AM | Computer Name = MANNY-FBFAABB1D | Source = Application Error | ID = 1000
Description = Faulting application vsd.exe, version 6.0.0.15, faulting module vsd.exe,
version 6.0.0.15, fault address 0x00083323.

Error - 5/7/2011 1:53:30 AM | Computer Name = MANNY-FBFAABB1D | Source = Application Hang | ID = 1002
Description = Hanging application swishMax4.exe, version 2010.11.2.3, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 5/7/2011 1:53:31 AM | Computer Name = MANNY-FBFAABB1D | Source = Application Hang | ID = 1002
Description = Hanging application swishMax4.exe, version 2010.11.2.3, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 5/7/2011 2:03:34 AM | Computer Name = MANNY-FBFAABB1D | Source = Application Error | ID = 1000
Description = Faulting application swishmax4.exe, version 2010.11.2.3, faulting
module ntdll.dll, version 5.1.2600.6055, fault address 0x0000100b.

Error - 5/7/2011 2:04:51 AM | Computer Name = MANNY-FBFAABB1D | Source = Application Error | ID = 1000
Description = Faulting application skype.exe, version 5.1.0.112, faulting module
unknown, version 0.0.0.0, fault address 0x00000000.

Error - 5/7/2011 2:04:55 AM | Computer Name = MANNY-FBFAABB1D | Source = Application Error | ID = 1000
Description = Faulting application skype.exe, version 5.1.0.112, faulting module
skype.exe, version 5.1.0.112, fault address 0x00a224dc.

Error - 5/7/2011 2:24:29 AM | Computer Name = MANNY-FBFAABB1D | Source = Application Hang | ID = 1002
Description = Hanging application swishMax4.exe, version 2010.11.2.3, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 5/7/2011 11:17:02 PM | Computer Name = MANNY-FBFAABB1D | Source = Application Error | ID = 1000
Description = Faulting application photoscape.exe, version 1.0.0.1295, faulting
module gdiplus.dll, version 5.1.3102.5512, fault address 0x000022cd.

Error - 5/7/2011 11:42:03 PM | Computer Name = MANNY-FBFAABB1D | Source = Application Error | ID = 1000
Description = Faulting application photoscape.exe, version 1.0.0.1295, faulting
module gdiplus.dll, version 5.1.3102.5512, fault address 0x00002332.

[ System Events ]
Error - 4/26/2011 7:28:05 PM | Computer Name = MANNY-FBFAABB1D | Source = Service Control Manager | ID = 7031
Description = The Microsoft Antimalware Service service terminated unexpectedly.
It has done this 1 time(s). The following corrective action will be taken in
15000 milliseconds: Restart the service.

Error - 4/26/2011 7:28:13 PM | Computer Name = MANNY-FBFAABB1D | Source = Service Control Manager | ID = 7031
Description = The Microsoft Antimalware Service service terminated unexpectedly.
It has done this 2 time(s). The following corrective action will be taken in
15000 milliseconds: Restart the service.

Error - 4/26/2011 7:28:25 PM | Computer Name = MANNY-FBFAABB1D | Source = Service Control Manager | ID = 7034
Description = The Microsoft Antimalware Service service terminated unexpectedly.
It has done this 3 time(s).

Error - 4/26/2011 7:28:38 PM | Computer Name = MANNY-FBFAABB1D | Source = Service Control Manager | ID = 7034
Description = The Microsoft Antimalware Service service terminated unexpectedly.
It has done this 4 time(s).

Error - 4/26/2011 7:30:41 PM | Computer Name = MANNY-FBFAABB1D | Source = Windows Update Agent | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Definition Update for Microsoft Security Essentials - KB2310138
(Definition 1.103.507.0).

Error - 5/5/2011 9:31:50 AM | Computer Name = MANNY-FBFAABB1D | Source = Dhcp | ID = 1002
Description = The IP address lease 112.210.231.28 for the Network Card with network
address 001EC97C5F3B has been denied by the DHCP server 112.210.128.1 (The DHCP
Server sent a DHCPNACK message).

Error - 5/6/2011 8:07:03 PM | Computer Name = MANNY-FBFAABB1D | Source = Service Control Manager | ID = 7034
Description = The Ati HotKey Poller service terminated unexpectedly. It has done
this 1 time(s).

Error - 5/6/2011 8:07:03 PM | Computer Name = MANNY-FBFAABB1D | Source = Service Control Manager | ID = 7031
Description = The Microsoft Antimalware Service service terminated unexpectedly.
It has done this 1 time(s). The following corrective action will be taken in
15000 milliseconds: Restart the service.

Error - 5/6/2011 8:07:04 PM | Computer Name = MANNY-FBFAABB1D | Source = Service Control Manager | ID = 7034
Description = The MBAMService service terminated unexpectedly. It has done this
1 time(s).

Error - 5/6/2011 8:07:04 PM | Computer Name = MANNY-FBFAABB1D | Source = Service Control Manager | ID = 7034
Description = The McAfee SiteAdvisor Service service terminated unexpectedly. It
has done this 1 time(s).


< End of report >
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP