Mystical_Wizard

Well looks like it is not going to work any better. I have a computer tech coming out in the morning to run a check on it to see what is going on. Thanks for your help

OK, It was running good for about 1 day. Now it is right back to the same thing again.... grrrrrrrrrrrr

Yes Everything seemed to be running pretty normal again, does the OTL that I ran yesterday fix things as it runs or just check? I am assuming that the cleaning probably had some to do with it also. I have both sticks back in like they were and everything seems pretty much normal as of yesterday. OK now on the OLT fix, I ran it and I am assuming that I was to tick minimal output and the LOP Check and Purity Check again? Because I did. I have on all the tests and just assumed I should do it again on the fix. Just letting you know . After the reboot, this is want came up in Notepad All processes killed ========== OTL ========== Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{C4069E3A-68F1-403E-B40E-20066696354B} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C4069E3A-68F1-403E-B40E-20066696354B}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\PCDrProfiler deleted successfully. C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Compaq Connections.lnk moved successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{E2D4D26B-0180-43a4-B05F-462D6D54C789}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2D4D26B-0180-43a4-B05F-462D6D54C789}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{E2D4D26B-0180-43a4-B05F-462D6D54C789}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2D4D26B-0180-43a4-B05F-462D6D54C789}\ not found. Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7} C:\WINDOWS\Downloaded Program Files\gp.inf not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found. ========== FILES ========== < ipconfig /flushdns /c > Windows IP Configuration Successfully flushed the DNS Resolver Cache. C:\Documents and Settings\Compaq_Administrator\Desktop\cmd.bat deleted successfully. C:\Documents and Settings\Compaq_Administrator\Desktop\cmd.txt deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: All Users User: Compaq_Administrator ->Temp folder emptied: 219483 bytes ->Temporary Internet Files folder emptied: 95635402 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 88005302 bytes ->Flash cache emptied: 2407 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: LocalService ->Temp folder emptied: 66016 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 16384 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes RecycleBin emptied: 856722 bytes Total Files Cleaned = 176.00 mb C:\WINDOWS\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully [EMPTYFLASH] User: Administrator ->Flash cache emptied: 0 bytes User: All Users User: Compaq_Administrator ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: LocalService User: NetworkService Total Flash Files Cleaned = 0.00 mb OTL by OldTimer - Version 3.2.23.0 log created on 05252011_222550 Files\Folders moved on Reboot... File\Folder C:\Documents and Settings\Compaq_Administrator\Local Settings\Temp\~DF1936.tmp not found! File\Folder C:\Documents and Settings\Compaq_Administrator\Local Settings\Temp\~DF1950.tmp not found! C:\Documents and Settings\Compaq_Administrator\Local Settings\Temporary Internet Files\Content.IE5\GLSOI365\ads[2].htm moved successfully. C:\Documents and Settings\Compaq_Administrator\Local Settings\Temporary Internet Files\Content.IE5\GLSOI365\ads[3].htm moved successfully. C:\Documents and Settings\Compaq_Administrator\Local Settings\Temporary Internet Files\Content.IE5\DSMO128P\11760-Computer-running-supper-slow[1].htm moved successfully. C:\Documents and Settings\Compaq_Administrator\Local Settings\Temporary Internet Files\AntiPhishing\A0AB7674-8D67-4F4D-B5E1-96FAEADFB79D.dat moved successfully. Registry entries deleted on Reboot... OK now, I have this thread set to notify me instantly in email to any replies. It has never sent me one notification at all, I just come back and check myself once in awhile. Just thought you should know is all. Just figured the sooner I know, the sooner I can come back and reply

OK, I took out the second DDM module. dimm1 and left dimm0 in place. restarted and it seemed to work pretty good. I shut down and took the dimm0 out and put the dimm1 in the dimm0 slot. it was slow, but did work near as wel as the original dimm0 did. I shut down, took the dimm1 out of dimm0 and put it in dimm1 where it came from. still worked slow. Put the dimm0 back in so both were in and works not to bad now. I did earlier take the computer out and cleaned the whole inside totally. I also ran a speed test from my isp and it ran at 2.5 Mbps. normal is 1.5 - 3. I also ran a memory test to test the modules and I left it run for over an hour and ran up to 800% and 0 errors. But seems that the one stick may be weak. Not sure why that did not show up in the memtest. But all in all, everything I have done now, it seems to be running better. but not quite as fast as it had been running. Do you think I should replace that one module? Maybe that is part of the problem? But like I said, after cleaning and all the testing done etc it seems to be a quite a bit better now. Also, all the pins on both modules look very clean, no discoloration of any kind on either one.

By modules, you are referring to the memmory sticks? I just had the computer taken apart today and did a complete inside cleaning, but did not help much. If I remember right, I think there were two memmory sticks in there. Do I have to shut the whole computer down to take these out and clean them ? and then just put one back in? Does it matter which one you put in which connection? Or do they have to go back in the exact way they came out? I think they just pull out right

OK, a few days ago, my computer started running really slow. everytime I try to click a link in my homepage or wherever, I get and hour glass and takes like a minute or two to load. In the mean time, I can not do anything else, nothing will work. I can click on something but it is like everything is locked up and the mouse will not click it. If I try to close the page, it takes forever to close. I go to cntrol alt delete and that even takes forever to come up. then try to end task on the froze page and it still takes like a couple minutes to close. I bought a new HDTV about a month or so ago and it came with Netflix. So I had to buy a router to run it. I ran the ethernet cable to the router and then back out to my desktop and another to my TV. It did seem a tad slower on my computer, but not very noticable. I tried disconnecting the router now and running the ethernet direct back into my modem again, but that did not seem to help much at all that I noticed. So, I went to My Computer and then presario properties and ran the error check Then I ran Scan disc Then IE properties and delete all, temp files history etc etc Then I did a full virus scan using Avira, my anti virus program Then I ran updates in mbam which I already use and did a full scan which showed no problems. I ran an ATF msert exe OTL Checkup txt form I think it was msert Then I removed the two files that OTL put on my desktop yesterday and removed the OTL icon and then did exactly as I was instructed to do here. I ran the TFC Then ran another full mban scan after I did updates Then the OTL again But the OTL only left a txt thing on my desktop, not the other extras report like it did yesterday when I ran it , not sure why. But now I will put the results from mbam and OTL txt report in here If I leave this page to like get a report to post, once i come back here, I can not do anything for about a minute or so before it will let me type or paste anything mbam ... took like 1 minute to open it on my desktop Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Database version: 6659 Windows 5.1.2600 Service Pack 3 Internet Explorer 7.0.5730.13 5/23/2011 11:45:05 PM mbam-log-2011-05-23 (23-45-05).txt Scan type: Full scan (C:\|D:\|) Objects scanned: 251241 Time elapsed: 1 hour(s), 25 minute(s), 29 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) OTL report OTL logfile created on: 5/24/2011 12:55:01 AM - Run 4 OTL by OldTimer - Version 3.2.23.0 Folder = C:\Documents and Settings\Compaq_Administrator\Desktop Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 958.48 Mb Total Physical Memory | 500.45 Mb Available Physical Memory | 52.21% Memory free 2.26 Gb Paging File | 1.82 Gb Available in Paging File | 80.51% Paging File free Paging file location(s): C:\pagefile.sys 1440 2880 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 224.65 Gb Total Space | 209.08 Gb Free Space | 93.07% Space Free | Partition Type: NTFS Drive D: | 8.21 Gb Total Space | 1.42 Gb Free Space | 17.30% Space Free | Partition Type: FAT32 Computer Name: YOUR-4DACD0EA75 | User Name: Compaq_Administrator | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Compaq_Administrator\Desktop\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH) PRC - C:\Program Files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.) PRC - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) PRC - C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.) PRC - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) PRC - C:\Program Files\Belkin\Router Setup and Monitor\BelkinService.exe (Affinegy, Inc.) PRC - C:\Program Files\Belkin\Router Setup and Monitor\BelkinSetup.exe (Affinegy, Inc.) PRC - C:\Program Files\Belkin\Router Setup and Monitor\BelkinRouterMonitor.exe (Affinegy, Inc.) PRC - C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\DISC\DISCover.exe (Digital Interactive Systems Corporation) PRC - C:\Program Files\DISC\DISCUpdMgr.exe (Digital Interactive Systems Corporation, Inc.) PRC - C:\Program Files\DISC\DiscStreamHub.exe (Digital Interactive Systems Corporation, Inc.) PRC - C:\WINDOWS\****rvice.exe (Microsoft) ========== Modules (SafeList) ========== MOD - C:\Documents and Settings\Compaq_Administrator\Desktop\OTL.scr (OldTimer Tools) MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV - (HidServ) -- File not found SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH) SRV - (UMVPFSrv) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.) SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH) SRV - (AffinegyService) -- C:\Program Files\Belkin\Router Setup and Monitor\BelkinService.exe (Affinegy, Inc.) SRV - (ARSVC) -- C:\WINDOWS\****rvice.exe (Microsoft) ========== Driver Services (SafeList) ========== DRV - (LVUVC) Logitech Webcam C160(UVC) -- C:\WINDOWS\system32\drivers\lvuvc.sys (Logitech Inc.) DRV - (LVRS) -- C:\WINDOWS\system32\drivers\lvrs.sys (Logitech Inc.) DRV - (avipbb) -- C:\WINDOWS\system32\drivers\avipbb.sys (Avira GmbH) DRV - (avgntflt) -- C:\WINDOWS\system32\drivers\avgntflt.sys (Avira GmbH) DRV - (AFGSp50) -- C:\WINDOWS\system32\drivers\AFGSp50.sys (Printing Communications Assoc., Inc. (PCAUSA)) DRV - (ssmdrv) -- C:\WINDOWS\system32\drivers\ssmdrv.sys (Avira GmbH) DRV - (avgio) -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys (Avira GmbH) DRV - (FilterService) -- C:\WINDOWS\system32\drivers\lvuvcflt.sys (Logitech Inc.) DRV - (lvpopflt) -- C:\WINDOWS\system32\drivers\lvpopflt.sys (Logitech Inc.) DRV - (LVPr2Mon) -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys () DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation) DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation) DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation) DRV - (AgereSoftModem) -- C:\WINDOWS\system32\drivers\AGRSM.sys (Agere Systems) DRV - (Ps2) -- C:\WINDOWS\system32\drivers\PS2.sys (Hewlett-Packard Company) DRV - (ftsata2) -- C:\WINDOWS\system32\DRIVERS\ftsata2.sys (Promise Technology, Inc.) DRV - (AmdK8) -- C:\WINDOWS\system32\drivers\AmdK8.sys (Advanced Micro Devices) DRV - (rtl8139) Realtek RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation) DRV - (bb-run) -- C:\WINDOWS\system32\DRIVERS\bb-run.sys (Promise Technology, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=63&bd=PRESARIO&pf=desktop IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=63&bd=PRESARIO&pf=desktop IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=63&bd=PRESARIO&pf=desktop IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=63&bd=PRESARIO&pf=desktop IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.att.net/ IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.startup.homepage: "http://mysticalgardens.aimoo.com/Games-1-32241" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/06/16 08:47:42 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/03/23 23:40:39 | 000,000,000 | ---D | M] [2011/02/19 01:12:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Administrator\Application Data\Mozilla\Extensions [2011/06/21 19:59:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Administrator\Application Data\Mozilla\Firefox\Profiles\1dm2gy58.default\extensions [2011/02/20 12:18:17 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Compaq_Administrator\Application Data\Mozilla\Firefox\Profiles\1dm2gy58.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011/06/21 19:59:48 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011/03/01 23:53:43 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [2011/03/01 23:53:31 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011/03/01 23:53:30 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll O1 HOSTS File: ([2004/08/10 13:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (hpWebHelper Class) - {AAAE832A-5FFF-4661-9C8F-369692D1DCB9} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\plugin\WebHelper.dll (TODO: <Company name>) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - No CLSID value found. O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [AlwaysReady Power Message APP] C:\WINDOWS\arpwrmsg.exe (Microsoft) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [DISCover] C:\Program Files\DISC\DISCover.exe (Digital Interactive Systems Corporation) O4 - HKLM..\Run: [DiscUpdateManager] C:\Program Files\DISC\DISCUpdMgr.exe (Digital Interactive Systems Corporation, Inc.) O4 - HKLM..\Run: [HPBootOp] C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe (Hewlett-Packard Company) O4 - HKLM..\Run: [instaLAN] C:\Program Files\Belkin\Router Setup and Monitor\BelkinRouterMonitor.exe (Affinegy, Inc.) O4 - HKLM..\Run: [LWS] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [PCDrProfiler] File not found O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe () O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Compaq Connections.lnk = File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Internet Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - File not found O9 - Extra 'Tools' menuitem : Internet Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - File not found O15 - HKLM\..Trusted Domains: trymedia.com ([]http in Trusted sites) O15 - HKLM\..Trusted Domains: trymedia.com ([]https in Trusted sites) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Documents and Settings\Compaq_Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Compaq_Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2005/08/31 06:02:02 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2001/07/28 04:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: HidServ - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point (16902109354000384) ========== Files/Folders - Created Within 30 Days ========== [2011/06/21 19:12:59 | 000,000,000 | ---D | C] -- C:\Program Files\ATT-RC [2011/06/21 19:09:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Motive [2011/06/21 19:09:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Motive [2011/06/19 12:17:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll [2011/06/19 12:17:43 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2011/06/19 12:17:37 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll [2011/06/18 22:42:39 | 000,000,000 | ---D | C] -- C:\Program Files\GetMore [2011/06/18 22:42:30 | 000,000,000 | ---D | C] -- C:\Program Files\Help [2011/05/24 00:11:38 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Administrator\Desktop\OTL.scr [2011/05/23 22:01:14 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Administrator\Desktop\TFC.exe [2011/05/22 23:09:42 | 067,705,232 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Compaq_Administrator\Desktop\msert.exe [2011/05/22 22:50:11 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Documents and Settings\Compaq_Administrator\Desktop\ATF-Cleaner.exe [2011/05/22 20:31:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Administrator\Desktop\hijack this [2011/05/17 11:27:01 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Documents\MCE Logs [2011/05/13 07:59:01 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl ========== Files - Modified Within 30 Days ========== [2011/06/18 22:42:06 | 000,001,269 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Logitech Webcam Software .lnk [2011/06/17 02:50:52 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\logiflt.iad [2011/05/24 00:11:41 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Administrator\Desktop\OTL.scr [2011/05/23 22:13:01 | 000,000,185 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.DAT [2011/05/23 22:08:06 | 000,043,531 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2011/05/23 22:08:01 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/05/23 22:07:57 | 1005,113,344 | -HS- | M] () -- C:\hiberfil.sys [2011/05/23 22:01:17 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Administrator\Desktop\TFC.exe [2011/05/23 12:31:17 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\lvuvc.hs [2011/05/22 23:45:26 | 000,879,035 | ---- | M] () -- C:\Documents and Settings\Compaq_Administrator\Desktop\SecurityCheck.exe [2011/05/22 23:09:57 | 067,705,232 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Compaq_Administrator\Desktop\msert.exe [2011/05/22 22:50:11 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Documents and Settings\Compaq_Administrator\Desktop\ATF-Cleaner.exe [2011/05/20 23:55:42 | 000,000,245 | ---- | M] () -- C:\Documents and Settings\Compaq_Administrator\Desktop\Netflix.url [2011/05/19 15:10:37 | 000,002,493 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Paint Shop Pro 7.lnk [2011/05/17 11:27:00 | 000,000,143 | ---- | M] () -- C:\Documents and Settings\Compaq_Administrator\Local Settings\Application Data\fusioncache.dat [2011/05/13 07:59:01 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011/05/08 00:55:15 | 000,000,234 | ---- | M] () -- C:\Documents and Settings\Compaq_Administrator\Desktop\Login Facebook.url ========== Files Created - No Company Name ========== [2011/05/17 11:27:00 | 000,000,143 | ---- | C] () -- C:\Documents and Settings\Compaq_Administrator\Local Settings\Application Data\fusioncache.dat [2011/03/22 23:58:22 | 000,014,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLFT2.dll [2011/02/28 12:31:01 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011/02/19 01:12:27 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010/05/14 16:56:06 | 010,877,272 | ---- | C] () -- C:\WINDOWS\System32\LogiDPP.dll [2010/05/14 16:56:06 | 000,102,744 | ---- | C] () -- C:\WINDOWS\System32\LogiDPPApp.exe [2010/05/14 16:55:58 | 000,331,608 | ---- | C] () -- C:\WINDOWS\System32\DevManagerCore.dll [2010/05/14 16:47:00 | 000,027,872 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2010/05/07 19:43:30 | 000,025,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys [2008/03/04 00:38:11 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2008/03/04 00:38:11 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe [2008/03/04 00:38:11 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2008/03/04 00:38:11 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2008/03/04 00:38:10 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2008/03/04 00:38:10 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe [2008/03/04 00:38:10 | 000,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2008/03/04 00:38:10 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe [2008/03/04 00:38:10 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe [2008/03/04 00:38:10 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2008/03/04 00:38:10 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2008/03/04 00:36:53 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini [2008/03/04 00:27:06 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2008/03/04 00:06:57 | 000,028,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\USBkey.sys [2008/03/04 00:03:18 | 000,118,842 | R--- | C] () -- C:\WINDOWS\HPCPCUninstaller-6.3.2.116-5577497.exe [2008/03/04 00:02:40 | 000,667,896 | ---- | C] () -- C:\WINDOWS\unins000.exe [2008/03/04 00:02:40 | 000,001,235 | ---- | C] () -- C:\WINDOWS\unins000.dat [2008/03/04 00:02:29 | 000,012,987 | ---- | C] () -- C:\WINDOWS\System32\CHODDI.SYS [2008/03/04 00:02:22 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll [2008/03/03 23:59:55 | 000,000,031 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI [2008/03/03 23:58:35 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008/03/03 23:48:31 | 000,000,108 | ---- | C] () -- C:\WINDOWS\WININIT.INI [2008/03/03 23:47:13 | 000,045,929 | ---- | C] () -- C:\WINDOWS\NSSetDefaultBrowser.EXE [2008/03/03 23:47:13 | 000,000,698 | ---- | C] () -- C:\WINDOWS\NSSetDefaultBrowser.ini [2008/03/03 23:42:20 | 000,095,822 | ---- | C] () -- C:\WINDOWS\hpqins69.dat [2008/03/03 23:41:11 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini [2008/03/03 15:26:26 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2008/03/03 15:26:26 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2008/03/03 15:26:23 | 000,004,490 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2008/03/03 15:26:18 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2008/03/03 15:26:11 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2008/03/03 15:25:43 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2008/03/03 15:25:43 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2008/03/03 15:25:06 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2008/03/03 15:24:36 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2006/05/19 09:21:43 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\pythoncom22.dll [2006/05/19 09:21:43 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\pywintypes22.dll [2006/05/19 09:21:24 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll [2006/03/18 02:23:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini [2005/08/31 06:17:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2005/08/31 06:07:46 | 000,443,128 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2005/08/31 06:07:46 | 000,072,284 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2005/08/31 06:05:30 | 000,195,368 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2005/08/31 06:01:42 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2005/08/31 05:58:02 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2005/08/06 00:01:54 | 000,235,008 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2005/08/03 02:19:16 | 000,050,176 | ---- | C] () -- C:\WINDOWS\armcex.dll [2004/08/10 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2004/07/26 16:51:38 | 000,000,592 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2003/01/08 01:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI ========== LOP Check ========== [2011/04/03 11:36:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Affinegy [2008/03/03 23:46:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Digital Interactive Systems Corporation [2011/02/14 01:12:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Administrator\Application Data\GetRightToGo [2011/02/23 01:23:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Administrator\Application Data\Jasc [2011/02/14 03:14:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Administrator\Application Data\Leadertech [2011/03/03 11:15:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Administrator\Application Data\MSNInstaller [2011/02/15 01:04:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Administrator\Application Data\WinBatch ========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2005/08/31 06:02:02 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2011/02/13 14:45:19 | 000,000,211 | RHS- | M] () -- C:\BOOT.BAK [2011/02/13 14:55:09 | 000,000,281 | RHS- | M] () -- C:\boot.ini [2004/08/09 16:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr [2005/08/31 06:02:02 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2011/05/23 22:07:57 | 1005,113,344 | -HS- | M] () -- C:\hiberfil.sys [2011/05/24 00:54:04 | 029,918,656 | ---- | M] () -- C:\hpWebHelper.log [2005/08/31 06:02:02 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2005/08/31 06:02:02 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004/08/09 16:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2011/02/20 12:14:16 | 000,250,048 | RHS- | M] () -- C:\ntldr [2011/05/23 22:07:49 | 1509,949,440 | -HS- | M] () -- C:\pagefile.sys [2006/05/19 09:21:45 | 000,000,012 | ---- | M] () -- C:\RecoveryCD.txt < %systemroot%\system32\Spool\prtprocs\w32x86\*.dll > [2008/07/06 07:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll [2007/04/09 14:23:54 | 000,028,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [2011/02/17 14:00:27 | 000,347,136 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtmsft.dll [2011/02/17 14:00:27 | 000,214,528 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtrans.dll < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\system32\drivers\*.sys /lockedfiles > < %systemroot%\system32\*.exe /lockedfiles > < %systemroot%\System32\config\*.sav > [2005/08/30 22:51:10 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav [2005/08/30 22:51:10 | 000,659,456 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav < %PROGRAMFILES%\* > < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < hklm\software\clients\startmenuinternet|command /rs > HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/03/23 23:40:36 | 000,552,376 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/03/23 23:40:36 | 000,552,376 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/03/23 23:40:36 | 000,552,376 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/03/23 23:40:34 | 000,912,344 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/03/23 23:40:34 | 000,912,344 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/03/23 23:40:34 | 000,912,344 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/02/14 07:17:08 | 000,634,648 | ---- | M] (Microsoft Corporation) < hklm\software\clients\startmenuinternet|command /64 /rs > HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/03/23 23:40:36 | 000,552,376 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/03/23 23:40:36 | 000,552,376 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/03/23 23:40:36 | 000,552,376 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/03/23 23:40:34 | 000,912,344 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/03/23 23:40:34 | 000,912,344 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/03/23 23:40:34 | 000,912,344 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/02/14 07:17:08 | 000,634,648 | ---- | M] (Microsoft Corporation) < End of report >