Jump to content

Recommended Posts

Posted

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@Motive.com/NpMotive,version=1.0: C:\Program Files\Common Files\Motive\npMotive.dll (Motive, Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)

FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)

FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: File not found

FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)

FF - HKCU\Software\MozillaPlugins\@entriq.com/Download Manager Plugin Version Chk,version=3.8.2.9: File not found

FF - HKCU\Software\MozillaPlugins\@entriq.com/Download Manager Plugin,version=3.8.2.9: File not found

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Update\1.3.21.53\npGoogleUpdate3.dll (Google Inc.)

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Update\1.3.21.53\npGoogleUpdate3.dll (Google Inc.)

 

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{98e34367-8df7-42b4-837b-20b892ff0849}: C:\Program Files\iWin Games\firefox\ [2010/07/18 11:22:47 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/05/12 06:54:04 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/07/02 10:54:44 | 000,000,000 | ---D | M]

 

[2009/11/08 17:34:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Extensions

[2009/11/08 17:34:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Extensions\IMVUClientXUL@imvu.com

[2008/05/09 10:26:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Extensions\prism@developer.mozilla.org

[2011/09/05 13:24:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions

[2011/06/17 19:51:13 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}

[2010/04/28 16:02:12 | 000,000,000 | ---D | M] (mediaplayerconnectivity) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions\{84b24861-62f6-364b-eba5-2e5e2061d7e6}

[2011/04/11 20:47:14 | 000,000,000 | ---D | M] (ZoneAlarm Security Community Toolbar) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions\{91da5e8a-3318-4f8c-b67e-5964de3ab546}

[2011/09/05 11:19:38 | 000,000,000 | ---D | M] (Microsoft Choice Guard) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions\ChoiceGuard@Microsoft

[2011/09/05 13:24:26 | 000,000,000 | ---D | M] (Yontoo Layers) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions\plugin@yontoo.com

[2011/09/05 13:24:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\xp55ggdv.default\extensions

[2009/11/27 13:19:51 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\xp55ggdv.default\extensions\{6c3a1de1-94ca-4ad6-acdf-c1324adc487b}

[2009/07/18 09:07:21 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\xp55ggdv.default\extensions\{d51d388b-f5dc-471a-a1ce-5e2d671091c0}

[2011/09/05 13:24:26 | 000,000,000 | ---D | M] (Yontoo Layers) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\xp55ggdv.default\extensions\plugin@yontoo.com

[2010/08/19 22:08:14 | 000,000,939 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\searchplugins\conduit.xml

[2011/09/05 19:52:05 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2010/01/01 13:00:37 | 000,000,000 | ---D | M] (Seekdns) -- C:\Program Files\Mozilla Firefox\extensions\{7BA9F755-DCD4-4B60-8AE8-EE3662C7C733}

[2010/08/25 20:06:42 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

[2010/08/26 09:35:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

[2010/10/20 08:50:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

[2011/01/07 06:04:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

[2011/03/25 16:18:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

[2011/03/20 13:33:41 | 000,000,000 | ---D | M] (Babylon) -- C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com

() (No name found) -- C:\DOCUMENTS AND SETTINGS\COMPAQ_OWNER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\CVVE6V4C.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI

[2010/08/25 20:06:25 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF

[2011/04/14 17:26:02 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2009/08/27 21:25:26 | 000,308,096 | ---- | M] (British Telecommunications Plc) -- C:\Program Files\mozilla firefox\plugins\npBTEmailConfig.dll

[2011/02/02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll

[2011/03/20 13:33:43 | 000,002,423 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml

[2010/01/01 09:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

  • Replies 46
  • Created
  • Last Reply

Top Posters In This Topic

Posted

O1 HOSTS File: ([2010/10/10 08:24:46 | 000,252,347 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O1 - Hosts: 127.0.0.1 http://www.007guard.com

O1 - Hosts: 127.0.0.1 007guard.com

O1 - Hosts: 127.0.0.1 008i.com

O1 - Hosts: 127.0.0.1 http://www.008k.com

O1 - Hosts: 127.0.0.1 008k.com

O1 - Hosts: 127.0.0.1 http://www.00hq.com

O1 - Hosts: 127.0.0.1 00hq.com

O1 - Hosts: 127.0.0.1 010402.com

O1 - Hosts: 127.0.0.1 http://www.032439.com

O1 - Hosts: 127.0.0.1 032439.com

O1 - Hosts: 127.0.0.1 http://www.1001-search.info

O1 - Hosts: 127.0.0.1 1001-search.info

O1 - Hosts: 127.0.0.1 http://www.100888290cs.com

O1 - Hosts: 127.0.0.1 100888290cs.com

O1 - Hosts: 127.0.0.1 http://www.100sexlinks.com

O1 - Hosts: 127.0.0.1 100sexlinks.com

O1 - Hosts: 127.0.0.1 http://www.10sek.com

O1 - Hosts: 127.0.0.1 10sek.com

O1 - Hosts: 127.0.0.1 http://www.123topsearch.com

O1 - Hosts: 127.0.0.1 123topsearch.com

O1 - Hosts: 127.0.0.1 http://www.132.com

O1 - Hosts: 127.0.0.1 132.com

O1 - Hosts: 127.0.0.1 http://www.136136.net

O1 - Hosts: 127.0.0.1 136136.net

O1 - Hosts: 8795 more lines...

O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - Reg Error: Value error. File not found

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.

O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - Reg Error: Value error. File not found

O2 - BHO: (Yontoo Layers) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Runtime\YontooIEClient.dll (Yontoo LLC)

O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc)

O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - Reg Error: Value error. File not found

O3 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\..\Toolbar\ShellBrowser: (no name) - {97BCEB59-CFCD-4B16-A863-B3F72CF9F196} - No CLSID value found.

O3 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\..\Toolbar\ShellBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - No CLSID value found.

O3 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.

O3 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\..\Toolbar\WebBrowser: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - Reg Error: Value error. File not found

O3 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Value error. File not found

O4 - HKLM..\Run: [Alcmtr] File not found

O4 - HKLM..\Run: [AOLSoftware] File not found

O4 - HKLM..\Run: [apdproxy] File not found

O4 - HKLM..\Run: [btbb_McciTrayApp] File not found

Posted

O4 - HKLM..\Run: [DivXUpdate] File not found

O4 - HKLM..\Run: [ftutil2] C:\WINDOWS\System32\ftutil2.dll (Promise Technology, Inc.)

O4 - HKLM..\Run: [HostManager] File not found

O4 - HKLM..\Run: [HP Software Update] File not found

O4 - HKLM..\Run: [HPBootOp] File not found

O4 - HKLM..\Run: [jusched] File not found

O4 - HKLM..\Run: [KBD] File not found

O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)

O4 - HKLM..\Run: [NvCpl] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [NvMcTray] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] File not found

O4 - HKLM..\Run: [QTTask] File not found

O4 - HKLM..\Run: [QuickTime Task] File not found

O4 - HKLM..\Run: [Recguard] File not found

O4 - HKLM..\Run: [RTHDCPL] File not found

O4 - HKLM..\Run: [rundll32] C:\WINDOWS\System32\ftutil2.dll (Promise Technology, Inc.)

O4 - HKLM..\Run: [snpstd3] File not found

O4 - HKLM..\Run: [sprtcmd] File not found

O4 - HKLM..\Run: [sunJavaUpdateSched] File not found

O4 - HKLM..\Run: [TkBellExe] File not found

O4 - HKLM..\Run: [vsnpstd3] File not found

O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [Advanced SystemCare 4] C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe (IObit)

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [AutoStartNPSAgent] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [ctfmon] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [Google Update] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [GoogleToolbarNotifier] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [Messenger (Yahoo!)] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [MSMSGS] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [PopUpStopperFreeEdition] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [PSFree] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [quwam] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [removeit] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [RemoveIT Pro v7Ent] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [swg] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [Yahoo! Pager] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [YAHOOM~1] File not found

O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [YahooMessenger] File not found

O4 - HKLM..\RunOnce: [AvgUninstallURL] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0

O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Suggested Sites present

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Suggested Sites present

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Suggested Sites present

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Suggested Sites present

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\Software\Policies\Microsoft\Internet Explorer\Suggested Sites present

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 0

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoBandCustomize = 0

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoMovingBands = 0

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCloseDragDropBands = 0

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarsOnTaskbar = 0

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0

O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ClassicShell = 0

O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html ()

O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - Reg Error: Value error. File not found

O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - Reg Error: Value error. File not found

O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars)

O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - Reg Error: Value error. File not found

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)

O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Value error.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{01C79DFE-6A25-48C0-B0C4-B8881E914877}: DhcpNameServer = 16.92.3.242 16.92.3.243 16.81.3.243 16.118.3.243

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{937B74B4-D7B8-4990-8CB1-8F09C00CC8D2}: DhcpNameServer = 192.168.0.1

O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)

O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Value error. File not found

O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Value error. File not found

O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Value error. File not found

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O20 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008 Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\GoToAssist: DllName - C:\Program Files\Citrix\GoToAssist\570\G2AWinLogon.dll - C:\Program Files\Citrix\GoToAssist\570\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)

O24 - Desktop WallPaper: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2005/12/06 00:32:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O32 - AutoRun File - [2001/07/27 15:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]

O32 - AutoRun File - [2004/04/30 07:01:14 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ]

O33 - MountPoints2\{1115977a-4c8c-11e0-88c3-001731ea9af1}\Shell - "" = AutoRun

O33 - MountPoints2\{1115977a-4c8c-11e0-88c3-001731ea9af1}\Shell\AutoRun - "" = Auto&Play

O33 - MountPoints2\{1115977a-4c8c-11e0-88c3-001731ea9af1}\Shell\AutoRun\command - "" = J:\AutoRun.exe

O33 - MountPoints2\{75cfc51c-2258-11dd-b37c-001731ea9af1}\Shell - "" = AutoRun

Posted

fc51c-2258-11dd-b37c-001731ea9af1}\Shell - "" = AutoRun

O33 - MountPoints2\{75cfc51c-2258-11dd-b37c-001731ea9af1}\Shell\AutoRun - "" = Auto&Play

O33 - MountPoints2\{78d894ae-4c03-11e0-88c1-001731ea9af1}\Shell - "" = AutoRun

O33 - MountPoints2\{78d894ae-4c03-11e0-88c1-001731ea9af1}\Shell\AutoRun - "" = Auto&Play

O33 - MountPoints2\{78d894ae-4c03-11e0-88c1-001731ea9af1}\Shell\AutoRun\command - "" = J:\AutoRun.exe

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O37 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\...exe [@ = exefile] -- Reg Error: Key error. File not found

 

NetSvcs: 6to4 - File not found

NetSvcs: AppMgmt - File not found

NetSvcs: Ias - File not found

NetSvcs: Iprip - File not found

NetSvcs: Irmon - File not found

NetSvcs: NWCWorkstation - File not found

NetSvcs: Nwsapagent - File not found

NetSvcs: WmdmPmSp - File not found

 

MsConfig - StartUpFolder: C:^Documents and Settings^Compaq_Owner^Start Menu^Programs^Startup^iWin Desktop Alerts.lnk - Reg Error: Value error. - File not found

MsConfig - State: "system.ini" - 0

MsConfig - State: "win.ini" - 0

MsConfig - State: "bootini" - 0

MsConfig - State: "services" - 0

MsConfig - State: "startup" - 2

 

CREATERESTOREPOINT

Restore point Set: OTL Restore Point

 

========== Files/Folders - Created Within 30 Days ==========

 

[2011/09/11 14:09:38 | 001,916,416 | ---- | C] (AVAST Software) -- C:\Documents and Settings\Compaq_Owner\Desktop\aswMBR.exe

[2011/09/11 14:03:43 | 000,581,120 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Owner\Desktop\OTL (1).exe

[2011/09/10 18:01:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live

[2011/09/09 11:52:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Windows 7 Upgrade Advisor

[2011/09/08 20:05:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\iolo

[2011/09/06 14:44:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Ladbrokes Poker

[2011/09/05 20:54:09 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Compaq_Owner\Recent

[2011/09/05 15:06:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\jZip

[2011/09/05 15:06:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\jZip

[2011/09/05 15:06:21 | 000,000,000 | ---D | C] -- C:\Program Files\jZip

[2011/09/05 14:54:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\GetRightToGo

[2011/09/05 13:59:09 | 000,000,000 | ---D | C] -- C:\Program Files\ADLSoft UnCompressor

[2011/09/05 13:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\Yontoo Layers Runtime

[2011/09/05 13:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Tarma Installer

[2011/09/05 13:18:39 | 000,000,000 | ---D | C] -- C:\UnknownFolder87023

[2011/09/05 11:13:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft

[2011/09/05 10:51:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8

[2011/09/01 21:56:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Game Booster 3

[2011/08/31 08:03:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\Search Settings

[2011/08/31 08:02:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Protected Folder

[2011/08/31 08:02:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Spigot

[2011/08/25 10:59:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\Globe7

[2011/08/25 10:59:00 | 000,000,000 | ---D | C] -- C:\Program Files\Globe7

[2011/08/23 09:15:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Games

[2011/08/23 09:14:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games

[2007/03/12 12:41:52 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnpstd3.dll

[2005/11/23 13:55:32 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd3.dll

[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

 

========== Files - Modified Within 30 Days ==========

 

[2011/09/11 14:18:29 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job

[2011/09/11 14:13:36 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

[2011/09/11 14:13:36 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\SmartDefrag_Startup.job

[2011/09/11 14:13:36 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job

[2011/09/11 14:13:34 | 000,000,324 | -HS- | M] () -- C:\WINDOWS\tasks\Ridh.job

[2011/09/11 14:13:05 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2011/09/11 14:13:04 | 1005,113,344 | -HS- | M] () -- C:\hiberfil.sys

[2011/09/11 14:09:27 | 001,916,416 | ---- | M] (AVAST Software) -- C:\Documents and Settings\Compaq_Owner\Desktop\aswMBR.exe

[2011/09/11 14:03:35 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Owner\Desktop\OTL (1).exe

[2011/09/11 11:13:00 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

[2011/09/09 11:52:11 | 000,001,908 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Windows 7 Upgrade Advisor.lnk

[2011/09/06 14:44:07 | 000,000,789 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Ladbrokes Poker.lnk

[2011/09/05 15:06:31 | 000,000,634 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\jZip.lnk

[2011/09/05 15:06:31 | 000,000,608 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\jZip.lnk

[2011/09/05 13:27:27 | 000,446,234 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2011/09/05 13:27:27 | 000,074,068 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2011/09/05 12:01:05 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2011/09/05 11:15:57 | 000,000,932 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\My Documents\My Sharing Folders.lnk

[2011/09/05 10:59:55 | 000,000,823 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

[2011/09/01 21:56:41 | 000,000,841 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Game Booster 3.lnk

[2011/09/01 21:56:41 | 000,000,823 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Game Booster 3.lnk

[2011/08/31 08:02:47 | 000,000,897 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Protected Folder.lnk

[2011/08/31 08:02:46 | 000,000,879 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Protected Folder.lnk

[2011/08/31 08:01:03 | 000,000,916 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Quick Care.lnk

[2011/08/31 08:01:01 | 000,000,912 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced SystemCare 4.lnk

[2011/08/25 13:06:51 | 000,001,287 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\QuickZip45.ini

[2011/08/24 07:37:09 | 000,220,040 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2011/08/23 09:15:40 | 000,001,812 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Age of Empires Expansion.lnk

[2011/08/23 09:15:40 | 000,001,805 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Age of Empires.lnk

[2011/08/14 21:18:47 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif

[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

 

========== Files Created - No Company Name ==========

 

[2011/09/09 11:52:11 | 000,001,914 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows 7 Upgrade Advisor.lnk

[2011/09/09 11:52:11 | 000,001,908 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Windows 7 Upgrade Advisor.lnk

[2011/09/06 14:44:07 | 000,000,789 | ---- | C] () -- C:\Document

Posted

and Settings\Compaq_Owner\Desktop\Ladbrokes Poker.lnk

[2011/09/05 15:06:31 | 000,000,634 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\jZip.lnk

[2011/09/05 15:06:31 | 000,000,608 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\jZip.lnk

[2011/09/01 21:56:41 | 000,000,841 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Game Booster 3.lnk

[2011/09/01 21:56:41 | 000,000,823 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Game Booster 3.lnk

[2011/08/31 08:02:46 | 000,000,897 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Protected Folder.lnk

[2011/08/31 08:02:46 | 000,000,879 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Protected Folder.lnk

[2011/08/23 09:15:40 | 000,001,812 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Age of Empires Expansion.lnk

[2011/08/23 09:15:40 | 000,001,805 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Age of Empires.lnk

[2011/08/23 09:15:33 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll

[2011/08/14 21:28:13 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job

[2010/12/29 15:54:31 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll

[2010/12/29 15:54:30 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys

[2010/12/29 15:53:33 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\$_hpcst$.hpc

[2010/10/10 08:07:26 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll

[2010/10/10 08:07:26 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar3.dll

[2010/10/10 08:07:26 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll

[2010/10/10 08:07:26 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll

[2010/07/22 10:48:56 | 000,000,045 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\machpro.dat

[2010/04/18 13:51:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\popcreg.dat

[2010/04/17 19:51:37 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat

[2010/03/27 14:32:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\prvlcl.dat

[2010/02/03 20:23:05 | 000,000,053 | ---- | C] () -- C:\WINDOWS\popcinfot.dat

[2010/01/19 12:49:54 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\RemoveDevice.dll

[2010/01/19 12:49:54 | 000,466,944 | ---- | C] () -- C:\WINDOWS\RemoveDevice.dll

[2010/01/14 03:41:00 | 000,309,248 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll

[2009/07/16 19:12:45 | 000,000,035 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\TheHunterSettings.cfg

[2009/07/05 15:08:42 | 000,001,287 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\QuickZip45.ini

[2009/04/04 09:10:36 | 000,107,520 | ---- | C] () -- C:\WINDOWS\System32\UnCasino5.exe

[2009/01/08 10:08:51 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt

[2009/01/08 09:49:15 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys

[2008/12/16 12:27:41 | 000,000,723 | ---- | C] () -- C:\WINDOWS\aolback.exe.lnk

[2008/09/27 16:57:02 | 016,664,095 | ---- | C] () -- C:\WINDOWS\System32\ntx14896890.exe

[2008/09/27 16:56:54 | 016,664,095 | ---- | C] () -- C:\WINDOWS\System32\ntx14889453.exe

[2008/08/31 11:10:57 | 000,000,014 | ---- | C] () -- C:\WINDOWS\popcinfo.dat

[2008/08/03 13:45:46 | 000,000,040 | ---- | C] () -- C:\WINDOWS\ujf635.bin

[2008/06/20 16:31:07 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat

[2008/06/18 14:00:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI

[2008/06/02 00:03:27 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat

[2008/05/24 14:58:16 | 000,000,024 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\MyPhrases.dta

[2008/05/23 09:11:05 | 000,001,541 | ---- | C] () -- C:\WINDOWS\mozver.dat

[2007/10/31 13:33:31 | 000,000,029 | ---- | C] () -- C:\WINDOWS\PControl.ini

[2007/10/16 13:48:20 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll

[2007/09/26 18:16:32 | 000,005,956 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat

[2007/08/17 14:12:13 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\proc20744962.bin

[2007/08/06 20:50:49 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys

[2007/05/02 21:12:04 | 000,000,020 | ---- | C] () -- C:\WINDOWS\powerplayer.ini

[2007/05/02 21:12:00 | 000,000,294 | ---- | C] () -- C:\WINDOWS\psnetwork.ini

[2006/12/14 23:23:13 | 000,000,015 | ---- | C] () -- C:\WINDOWS\campaignsave.INI

[2006/11/23 20:57:30 | 000,000,076 | ---- | C] () -- C:\WINDOWS\eregreg.ini

[2006/11/21 00:40:12 | 000,000,073 | ---- | C] () -- C:\WINDOWS\EurekaLog.ini

[2006/11/20 18:49:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Hammerhead.INI

[2006/11/20 15:00:07 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat

[2006/11/20 14:57:06 | 000,000,016 | ---- | C] () -- C:\WINDOWS\bfpw.dat

[2006/11/01 13:44:13 | 000,000,017 | ---- | C] () -- C:\WINDOWS\crwbc.ini

[2006/10/24 07:16:44 | 000,000,736 | ---- | C] () -- C:\WINDOWS\cdplayer.ini

[2006/10/20 00:38:20 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache

[2006/09/27 15:18:20 | 000,000,017 | ---- | C] () -- C:\WINDOWS\crw.ini

[2006/09/19 10:07:28 | 000,827,392 | ---- | C] () -- C:\WINDOWS\vsnpstd3.exe

[2006/09/07 11:44:52 | 000,018,944 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2006/09/06 17:58:20 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat

[2006/09/01 15:33:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MSDraw.ini

[2006/09/01 15:08:49 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\wklnhst.dat

[2006/09/01 08:56:05 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\fusioncache.dat

[2006/05/25 05:03:44 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini

[2006/05/25 04:40:41 | 000,028,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\USBkey.sys

[2006/05/25 04:36:15 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll

[2006/05/25 04:27:32 | 000,000,250 | ---- | C] () -- C:\WINDOWS\WININIT.INI

[2006/05/25 04:22:15 | 000,095,822 | ---- | C] () -- C:\WINDOWS\hpqins69.dat

[2006/05/25 04:19:04 | 000,036,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\AmdK8.sys

[2006/05/25 04:18:02 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll

[2006/05/25 04:18:02 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe

[2006/05/25 04:18:02 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll

[2006/05/25 04:18:02 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe

[2006/05/25 04:18:02 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll

[2006/05/25 04:18:02 | 000,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll

[2006/05/25 04:18:02 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll

[2006/05/25 04:18:02 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll

[2006/05/25 04:18:01 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe

[2006/05/25 04:18:01 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe

[2006/05/25 04:18:01 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll

[2006/05/25 04:02:40 | 000,000,883 | ---- | C] () -- C:\WINDOWS\orun32.ini

[2006/05/25 03:59:28 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\pythoncom22.dll

[2006/05/25 03:59:11 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll

[2006/03/18 01:23:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini

[2005/12/06 00:49:08 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2005/12/06 00:36:34 | 000,446,234 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat

[2005/12/06 00:36:34 | 000,074,068 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat

[2005/12/06 00:34:46 | 000,220,040 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2005/12/06 00:31:48 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2005/12/06 00:30:02 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2004/08/04 12:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat

[2004/08/04 12:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat

[2004/08/04 12:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat

[2004/08/04 12:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin

[2004/08/04 12:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat

[2004/08/04 12:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat

[2004/08/04 12:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin

[2004/08/04 12:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

[2004/06/24 20:10:06 | 000,000,573 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini

[2004/02/27 17:36:18 | 000,015,498 | ---- | C] () -- C:\WINDOWS\snpstd3.ini

[2001/08/23 23:12:28 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin

[2001/08/23 23:11:02 | 000,004,490 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat

 

========== LOP Check ==========

 

[2009/05/22 13:59:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\@

[2009/11/25 21:20:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AGS

[2011/01/05 12:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software

[2008/05/05 16:42:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Arovax

[2009/07/29 17:18:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Artist Colony

[2011/05/09 08:04:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software

[2011/04/11 22:57:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG10

[2010/10/14 19:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9

[2009/01/09 19:34:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus

[2009/03/03 16:11:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Beanbag Studios

[2011/03/14 15:11:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Birdstep Technology

[2009/12/18 15:11:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BlockBreaker

[2006/09/08 07:19:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BOONTY

[2010/10/01 09:54:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Boss Media

[2007/12/17 21:02:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Christmasville

[2010/10/14 19:23:00 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files

[2007/05/11 14:01:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations

[2009/04/27 19:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverCure

[2009/05/01 22:57:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverScanner

[2008/07/23 14:12:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Entriq

[2009/01/16 09:46:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET

[2009/09/11 10:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Flood Light Games

[2007/05/01 08:47:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FloodLightGames

[2009/10/07 19:19:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FreshGames

[2007/07/12 08:07:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FunGames

[2010/02/03 17:34:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GameHouse

[2009/06/20 19:27:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Gogii

[2009/03/14 09:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Grisoft

[2009/09/22 10:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HipSoft

[2007/05/11 13:58:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations

[2009/07/29 20:05:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Intenium

[2011/09/01 21:56:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit

[2011/09/09 11:19:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iolo

[2009/01/09 15:05:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iWin Games

[2007/03/02 16:52:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\jump kind pop eq

[2009/10/29 16:18:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kontiki

[2007/05/02 12:35:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Legacy Interactive

[2008/05/05 11:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ludia

[2008/06/02 00:03:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MailFrontier

[2011/04/11 22:43:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData

[2009/01/21 17:43:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MGS

[2009/01/21 17:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microgaming

[2009/05/25 16:33:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MinigolfAdventures

[2010/01/31 17:12:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo

[2008/09/12 16:08:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MysteryChronicles

[2006/12/07 09:46:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Napster

[2011/03/22 17:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound

[2009/04/27 19:40:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic

[2009/05/10 16:35:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters

[2010/02/10 20:13:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Optimizer Pro

[2007/05/11 13:58:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite

[2009/10/29 16:18:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCPitstop

[2009/11/20 15:07:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst

[2011/05/23 11:59:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Playrix Entertainment

[2006/09/17 09:01:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap

[2010/02/10 20:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games

[2008/05/18 23:25:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PrevxCSI

[2008/04/20 08:47:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PurePlay

[2010/02/10 20:22:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\qs

[2009/03/03 17:53:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ROWLUUUCYG

[2009/12/11 16:09:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sandlot Games

[2010/10/10 08:07:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Simply Super Software

[2008/02/13 22:45:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SITEguard

[2006/09/28 19:53:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SkillJam

[2007/09/11 09:42:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SpinTop Games

[2010/10/30 05:53:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\STOPzilla!

[2009/06/26 09:32:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft

[2011/09/05 13:24:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Tarma Installer

[2011/05/23 12:06:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP

[2010/02/09 15:27:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\The Mirror Mysteries

[2010/11/13 20:45:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TrueMoneyGames

[2009/04/22 09:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software

[2008/04/23 09:50:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Uniblue

[2009/05/11 17:15:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UTour Golf

[2008/12/16 12:25:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint

[2009/12/18 16:52:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WildTangent

[2008/03/31 13:03:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip

[2006/12/14 12:36:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ZILLAbar

[2008/07/08 19:31:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ZqWare

[2008/01/08 02:11:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Zylom

[2009/06/05 18:55:07 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}

[2007/09/16 11:18:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\3DMailbox

[2009/09/28 15:03:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Absolute Poker

[2009/07/29 12:43:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Anabel

[2010/06/19 23:54:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Arkadium

[2008/02/13 10:52:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Auslogics

[2010/10/14 19:26:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\AVG10

[2007/04/17 14:35:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\AVSMedia

[2011/05/01 20:16:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Azureus

[2011/03/20 13:38:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\BabylonToolbar

[2010/06/15 13:05:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\BattlePunks

[2007/09/03 12:34:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Big Fish Games

[2008/04/16 19:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\BitZipper

[2009/11/10 09:48:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Blitware

[2009/06/18 14:18:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Cat's Eye Games

[2009/07/29 20:07:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\cerasus.media

[2010/10/14 23:25:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\CheckPoint

[2009/03/03 20:13:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1

[2008/02/18 14:12:06 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\CrystalSpace

[2008/03/31 10:20:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\DAEMON Tools

[2009/10/29 16:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\DNA

[2009/04/27 19:41:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\DriverCure

[2010/09/09 07:47:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\FinalTorrent

[2009/09/11 10:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Flood Light Games

[2007/05/01 08:47:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\FloodLightGames

[2009/03/27 17:10:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Foxit

[2011/01/11 14:46:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Free Sound Recorder

[2008/09/22 07:33:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\funkitron

[2008/09/22 08:46:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\GamesCafe

[2008/09/09 10:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\GanymedeNet

[2011/09/05 14:55:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\GetRightToGo

[2008/06/25 20:47:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\GlarySoft

[2011/08/25 10:59:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Globe7

[2009/10/29 15:23:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\GTM_Bodie

[2010/08/20 16:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\HEM Data

[2008/04/30 16:19:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Hide IP NG

[2010/10/24 15:38:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\HighPulse

[2009/10/29 16:18:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\HTNetMeter

[2011/09/05 19:44:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\IObit

[2007/09/01 14:21:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\ISE Games

[2008/09/22 08:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\ITTNord

[2009/08/02 09:22:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\iWin

[2009/07/29 10:51:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Iwin 3 Days Zoo Mystery

[2007/12/08 07:09:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\iWinArcade

[2007/04/11 13:52:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Kontiki

[2006/09/01 15:37:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Leadertech

[2008/08/28 12:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\LimeWire

[2009/01/08 17:29:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\LittlewoodsPoker

[2008/05/05 11:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Ludia

[2008/08/15 11:06:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Magic Academy

[2009/07/28 18:27:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\MagicBall4

[2011/09/10 12:17:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Microgaming

[2009/11/06 17:33:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Miranda

[2006/09/07 18:05:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\MSNInstaller

[2008/06/08 14:59:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\MysteryStudio

[2007/08/28 15:57:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Mysteryville2

[2007/05/11 14:05:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Nokia

[2007/03/02 16:52:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\ooze sixth more

[2010/08/25 23:40:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\OpenOffice.org

[2008/05/23 17:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Opera

[2011/04/09 07:46:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PacificPoker

[2009/06/02 19:21:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Paltalk

[2007/05/11 13:57:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PC Suite

[2009/06/25 19:40:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PetShowCraze

[2009/11/20 15:07:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PlayFirst

[2009/07/29 12:52:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Playrix Entertainment

[2009/01/21 15:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Pogo Games

[2010/02/10 20:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PopCapv1001

[2007/10/31 14:54:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PowerChallenge

[2007/05/02 21:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PPMate

[2007/05/02 21:12:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\ppStream

[2006/11/09 08:41:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\psychorosie

[2010/01/07 21:52:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\qs

[2009/05/25 13:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Reflexivev1002

[2011/01/13 16:14:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Samsung

[2011/08/31 08:03:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Search Settings

[2009/07/30 11:22:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Shape games

[2006/10/03 15:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\shnos

[2010/10/10 08:13:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Simply Super Software

[2008/09/27 17:14:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Skip-Bo

[2007/08/22 15:30:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Snapfish

[2008/05/23 17:00:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Sports Interactive

[2010/09/12 19:06:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Stellarium

[2006/09/01 15:14:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Template

[2009/11/20 21:50:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\TitanicMystery

[2009/04/22 10:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\TuneUp Software

[2008/05/24 14:45:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\TypingMaster7

[2009/11/27 13:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Uniblue

[2010/05/26 14:36:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Unity

[2010/04/29 15:50:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\uTorrent

[2009/01/09 14:34:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Viewpoint

[2009/09/28 14:13:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Visual Poker

[2010/06/13 09:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Vivox

[2007/07/04 10:27:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\WinBatch

[2006/12/10 15:15:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\WinPatrol

[2009/07/28 12:33:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Winv1001

[2009/07/29 14:46:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Winv1005

[2007/08/25 07:15:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\World Market Watch, Inc

[2006/11/23 18:55:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\xDeantjx

[2006/10/31 14:09:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\xxDeanxx

[2008/05/09 10:26:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Zimbra Desktop

[2011/03/11 17:20:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Birdstep Technology

[2011/03/11 18:08:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Application Data\Birdstep Technology

[2011/09/11 14:13:36 | 000,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\ASC4_PerformanceMonitor.job

[2008/06/01 12:00:15 | 000,000,464 | ---- | M] () -- C:\WINDOWS\Tasks\Internet Services.job

[2011/09/11 14:18:29 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

[2011/09/11 14:13:34 | 000,000,324 | -HS- | M] () -- C:\WINDOWS\Tasks\Ridh.job

[2011/09/11 11:40:41 | 000,032,446 | ---- | M] () -- C:\WINDOWS\Tasks\SCHEDLGU.TXT

[2011/09/11 14:13:36 | 000,000,294 | ---- | M] () -- C:\WINDOWS\Tasks\SmartDefrag_Startup.job

 

========== Purity Check ==========

Posted

========== Custom Scans ==========

 

 

< %SYSTEMDRIVE%\*.* >

[2010/12/29 15:42:28 | 000,013,752 | ---- | M] () -- C:\0x0809.ini

[2011/04/12 09:36:23 | 000,008,704 | ---- | M] () -- C:\1457874.dat

[2010/12/29 15:43:02 | 000,069,632 | ---- | M] () -- C:\2057.MST

[2011/03/05 10:37:08 | 000,007,771 | ---- | M] () -- C:\2191502.dat

[2011/03/21 21:31:11 | 000,008,216 | ---- | M] () -- C:\3475768.dat

[2011/04/12 09:35:28 | 000,007,594 | ---- | M] () -- C:\3748053.dat

[2011/03/21 21:02:37 | 000,007,206 | ---- | M] () -- C:\3800736.dat

[2011/03/21 18:14:30 | 000,008,718 | ---- | M] () -- C:\3979047.dat

[2011/03/21 18:18:01 | 000,004,514 | ---- | M] () -- C:\4183667.dat

[2011/03/05 11:21:45 | 000,006,868 | ---- | M] () -- C:\5389770.dat

[2011/03/21 20:44:01 | 000,008,864 | ---- | M] () -- C:\5508831.dat

[2011/03/05 11:25:05 | 000,004,740 | ---- | M] () -- C:\6380098.dat

[2011/03/21 20:44:01 | 000,005,161 | ---- | M] () -- C:\6506091.dat

[2011/03/21 18:27:51 | 000,008,905 | ---- | M] () -- C:\6680678.dat

[2011/04/12 09:35:28 | 000,007,895 | ---- | M] () -- C:\6703808.dat

[2005/12/06 00:32:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2007/07/26 11:34:25 | 000,000,211 | -HS- | M] () -- C:\BOOT.BAK

[2011/04/17 08:03:32 | 000,000,281 | -HS- | M] () -- C:\boot.ini

[2004/08/04 05:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr

[2005/12/06 00:32:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2011/03/12 14:59:19 | 000,022,716 | ---- | M] () -- C:\debug.txt

[2006/08/18 15:49:08 | 000,000,004 | -HS- | M] () -- C:\dllimp_regmsft985

[2011/09/11 14:13:04 | 1005,113,344 | -HS- | M] () -- C:\hiberfil.sys

[2009/12/04 14:25:04 | 000,000,132 | ---- | M] () -- C:\ICSYSINF.log

[2005/12/06 00:32:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS

[2009/07/31 08:54:07 | 000,000,405 | -H-- | M] () -- C:\IPH.PH

[2005/12/06 00:32:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2004/08/04 05:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM

[2008/06/24 18:06:24 | 000,250,048 | RHS- | M] () -- C:\ntldr

[2010/12/18 11:15:19 | 000,001,024 | -H-- | M] () -- C:\ntuser.dat.LOG

[2011/09/11 14:13:02 | 1509,949,440 | -HS- | M] () -- C:\pagefile.sys

[2010/12/29 15:48:45 | 097,979,392 | ---- | M] () -- C:\Samsung New PC Studio.msi

[2008/08/18 13:06:50 | 000,000,232 | -H-- | M] () -- C:\sqmdata00.sqm

[2008/12/03 15:05:13 | 000,000,232 | -H-- | M] () -- C:\sqmdata01.sqm

[2008/12/15 11:05:26 | 000,000,232 | -H-- | M] () -- C:\sqmdata02.sqm

[2009/01/15 06:13:19 | 000,000,232 | -H-- | M] () -- C:\sqmdata03.sqm

[2009/01/15 09:13:12 | 000,000,232 | -H-- | M] () -- C:\sqmdata04.sqm

[2009/01/16 09:36:56 | 000,000,232 | -H-- | M] () -- C:\sqmdata05.sqm

[2009/01/31 12:39:34 | 000,000,232 | -H-- | M] () -- C:\sqmdata06.sqm

[2009/02/14 18:56:02 | 000,000,232 | -H-- | M] () -- C:\sqmdata07.sqm

[2009/02/14 18:59:22 | 000,000,232 | -H-- | M] () -- C:\sqmdata08.sqm

[2009/02/14 19:02:34 | 000,000,232 | -H-- | M] () -- C:\sqmdata09.sqm

[2009/02/14 19:12:05 | 000,000,232 | -H-- | M] () -- C:\sqmdata10.sqm

[2009/03/04 13:31:23 | 000,000,232 | -H-- | M] () -- C:\sqmdata11.sqm

[2006/09/08 21:26:18 | 000,000,232 | -H-- | M] () -- C:\sqmdata12.sqm

[2006/09/08 21:27:02 | 000,000,232 | -H-- | M] () -- C:\sqmdata13.sqm

[2006/09/08 22:18:18 | 000,000,268 | -H-- | M] () -- C:\sqmdata14.sqm

[2006/09/09 07:49:33 | 000,000,268 | -H-- | M] () -- C:\sqmdata15.sqm

[2006/09/09 08:54:28 | 000,000,268 | -H-- | M] () -- C:\sqmdata16.sqm

[2006/09/09 23:33:07 | 000,000,268 | -H-- | M] () -- C:\sqmdata17.sqm

[2006/09/10 14:31:32 | 000,000,268 | -H-- | M] () -- C:\sqmdata18.sqm

[2006/09/10 14:34:57 | 000,000,268 | -H-- | M] () -- C:\sqmdata19.sqm

[2008/08/18 13:06:50 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm

[2008/12/03 15:05:13 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm

[2008/12/15 11:05:26 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm

[2009/01/15 06:13:19 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm

[2009/01/15 09:13:12 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm

[2009/01/16 09:36:56 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm

[2009/01/31 12:39:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm

[2009/02/14 18:56:02 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm

[2009/02/14 18:59:22 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm

[2009/02/14 19:02:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm

[2009/02/14 19:12:05 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm

[2009/03/04 13:31:23 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm

[2006/09/08 21:26:18 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm

[2006/09/08 21:27:02 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm

[2006/09/08 22:18:18 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm

[2006/09/09 07:49:33 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm

[2006/09/09 08:54:28 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm

[2006/09/09 23:33:07 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm

[2006/09/10 14:31:32 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm

[2006/09/10 14:34:57 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm

[2007/11/27 22:30:43 | 000,000,218 | -H-- | M] () -- C:\t8101.le

 

< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >

 

< %systemroot%\*. /mp /s >

 

< %systemroot%\system32\*.sys /90 >

[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

 

< %systemroot%\system32\*.dll /lockedfiles >

[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

 

< %systemroot%\Tasks\*.job /lockedfiles >

[2011/09/11 14:13:34 | 000,000,324 | -HS- | M] () Unable to obtain MD5 -- C:\WINDOWS\Tasks\Ridh.job

 

< %systemroot%\system32\drivers\*.sys /lockedfiles >

[2008/03/31 10:20:18 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

 

< %systemroot%\system32\*.exe /lockedfiles >

[7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

 

< %systemroot%\System32\config\*.sav >

[2005/12/06 00:23:36 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav

[2005/12/06 00:23:36 | 000,634,880 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav

 

< %PROGRAMFILES%\* >

 

< %USERPROFILE%\..|smtmp;true;true;true /FP >

 

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Win dows\WindowsUpdate\AU >

 

< hklm\software\clients\startmenuinternet|command /rs >

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\ReinstallCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -rb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\HideIconsCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -hb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\ShowIconsCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -sb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\shell\open\command\\: C:\PROGRA~1\AOL9~1.0VR\aol.exe [2006/12/05 12:40:30 | 000,050,736 | ---- | M] (AOL, LLC.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\chrome.exe\shell\open\command\\: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --show-icons [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --hide-icons [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --make-default-browser [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)

 

< hklm\software\clients\startmenuinternet|command /64 /rs >

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\ReinstallCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -rb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\HideIconsCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -hb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\ShowIconsCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -sb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\shell\open\command\\: C:\PROGRA~1\AOL9~1.0VR\aol.exe [2006/12/05 12:40:30 | 000,050,736 | ---- | M] (AOL, LLC.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\chrome.exe\shell\open\command\\: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --show-icons [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --hide-icons [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --make-default-browser [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)

HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)

 

========== Alternate Data Streams ==========

 

@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2

@Alternate Data Stream - 304 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4EDC977B

@Alternate Data Stream - 174 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D4D3884D

@Alternate Data Stream - 148 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F878F14A

@Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E464041D

@Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:953CB9E9

@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0BE2307D

@Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D0467BDF

@Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B4254BB8

@Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:588B60C7

@Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:67F0F865

@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8BBD1F9A

@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3F1D69E8

@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A9C7B545

@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7B7430D1

@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CA3AE363

@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C6029458

@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:426796C0

@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2AA07D1B

@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EC2246A6

@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A5F222E3

@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0AE2936A

@Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2D0C22DC

@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D159D2B6

@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C3B04546

@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B9641B31

@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4D9D205F

@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:350C5B9E

@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E8F2B426

@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D0ED9DB7

@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8DED4A5E

@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0CB3F5F4

@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:18BFD8F8

@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:09B77012

@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:80D975A5

@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:290A724C

@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8396196A

@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F1F95179

@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A1693604

@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:96BE5F33

@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4E9307D7

@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AB7FF0C9

@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3F3BEF8F

@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B35A4CE2

@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A518B662

@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:345E21F6

@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D81A3B43

@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A3E39A49

@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:74A34D19

@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3E7393FC

@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:220F4706

@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:91DEA808

@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:87638BB9

@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2F34C507

@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1D24E6BC

@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9700C55E

@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BCA5698A

@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8CEFE51A

@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:40D8F125

@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1CF2F47C

@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:997E6AF4

@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7D50F3CE

@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:50F94E7B

@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:861A898F

@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4D24FC46

@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3FB71C37

@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:23BEBB72

@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:131C0EE9

@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:ED86E7AC

@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E3C56885

@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F00E008B

@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CE7C61DF

@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C6CD88E9

@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:98762F45

@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:15606AA7

@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3B5038B1

@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2F99F761

@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DD24DCF8

@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A47F1E65

@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FF8F1AE3

@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:96CC3FEF

@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:95EBD4E0

@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9B2EDA15

@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8D02044C

@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:979EED5B

@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D457B690

@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0BC41074

@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F02F1295

@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DAFAF1BF

@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B32CFB00

@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7E22C00F

@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:729F5FF8

@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4E1E5A60

@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:45CAB638

@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E91ADC66

@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:79CBD5FF

@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5E9BB215

@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C53D1D2

@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:340E7CCA

@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9AB56A06

@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:16E7793D

@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E0E19514

@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:546EE13B

@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C99F6ECA

@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B4FDEF97

@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4DB6559B

 

< End of report >

Posted

aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software

Run date: 2011-09-11 14:42:03

-----------------------------

14:42:03.093 OS Version: Windows 5.1.2600 Service Pack 3

14:42:03.093 Number of processors: 1 586 0x4F02

14:42:03.093 ComputerName: YOUR-C94F920E24 UserName: Compaq_Owner

14:42:04.296 Initialize success

14:42:49.500 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3

14:42:49.500 Disk 0 Vendor: ST3802110A 3.AHH Size: 76319MB BusType: 3

14:42:51.546 Disk 0 MBR read successfully

14:42:51.546 Disk 0 MBR scan

14:42:51.546 Disk 0 unknown MBR code

14:42:51.546 Disk 0 scanning sectors +156295440

14:42:51.625 Disk 0 scanning C:\WINDOWS\system32\drivers

14:43:01.140 Service scanning

14:43:01.656 Service MpKslc758737b c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F2F6AE0C-6020-402E-A721-22C393D491E3}\MpKslc758737b.sys **LOCKED** 32

14:43:01.828 Service sptd C:\WINDOWS\System32\Drivers\sptd.sys **LOCKED** 32

14:43:01.859 Service vsdatant C:\WINDOWS\System32\vsdatant.sys **LOCKED** 32

14:43:02.375 Modules scanning

14:43:57.812 Disk 0 trace - called modules:

14:43:57.828 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spzm.sys >>UNKNOWN [0x8618a938]<<

14:43:57.828 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86129ab8]

14:43:57.828 3 CLASSPNP.SYS[f7630fd7] -> nt!IofCallDriver -> \Device\00000070[0x8612cf18]

14:43:57.828 5 ACPI.sys[f73af620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8613a940]

14:43:57.828 Scan finished successfully

14:44:48.875 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Compaq_Owner\Desktop\MBR.dat"

14:44:48.875 The log file has been saved successfully to "C:\Documents and Settings\Compaq_Owner\Desktop\aswMBR.txt"

Posted

Hello, shnos.

 

First I need to warn you about IOBit Advanced System Care. It is questionable at best, and as you can see below...IOBit steals others others work. Registry Cleaners aren't needed. They don't improve system speed and they can cause unintentional side effects like unbootable machines since they modify the registry without backing it up first (and in a way you can restore if you computer doesn't boot!) Please read about it here. Before I can help you, please uninstall IOBit Advanced System Care 4 via Add/Remove Programs.

 

 

 

There's also a LOT of programs missing that shouldn't be which is interesting. Do you have Extras.txt from the OTL scan? It should be saved in the same directory you ran OTL from. Please post that log as well and reply back to confirm you removed IOBit before we go any furhter.

 

etavares

Posted

OTL Extras logfile created on: 11/09/2011 14:17:52 - Run 1

OTL by OldTimer - Version 3.2.27.0 Folder = C:\Documents and Settings\Compaq_Owner\Desktop

Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

 

958.48 Mb Total Physical Memory | 388.00 Mb Available Physical Memory | 40.48% Memory free

2.26 Gb Paging File | 1.70 Gb Available in Paging File | 75.35% Paging File free

Paging file location(s): C:\pagefile.sys 1440 2880 [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 68.90 Gb Total Space | 32.10 Gb Free Space | 46.58% Space Free | Partition Type: NTFS

Drive D: | 5.61 Gb Total Space | 0.58 Gb Free Space | 10.36% Space Free | Partition Type: FAT32

 

Computer Name: YOUR-C94F920E24 | User Name: Compaq_Owner | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users | Quick Scan

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

 

========== Extra Registry (SafeList) ==========

 

 

========== File Associations ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

 

[HKEY_USERS\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Classes\<extension>]

.exe [@ = exefile] -- Reg Error: Key error. File not found

.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

 

========== Shell Spawning ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

exefile [open] -- "%1" %*

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- "C:\Program Files\File Type Assistant\tsassist.exe" "%1" (Trusted Software ApS)

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

 

========== Security Center Settings ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"AntiVirusDisableNotify" = 0

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

"AntiVirusOverride" = 0

"FirewallOverride" = 0

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

"DisableMonitoring" = 1

 

========== System Restore Settings ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

"DisableSR" = 0

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]

"Start" = 0

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]

"Start" = 2

 

========== Firewall Settings ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

"EnableFirewall" = 0

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 0

"DoNotAllowExceptions" = 0

"DisableNotifications" = 0

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"14393:TCP" = 14393:TCP:*:Enabled:BitComet 14393 TCP

"14393:UDP" = 14393:UDP:*:Enabled:BitComet 14393 UDP

"16811:TCP" = 16811:TCP:*:Enabled:bit torrent

"5432:TCP" = 5432:TCP:*:Enabled:postgres

"86:TCP" = 86:TCP:*:Enabled:BroadCam Video Streaming Server Web Server

"1935:TCP" = 1935:TCP:*:Enabled:BroadCam Video Streaming Server Flash Video Server

"4100:UDP" = 4100:UDP:*:Enabled:uPNP Router Control Port

"5985:TCP" = 5985:TCP:*:Disabled:Windows Remote Management

"80:TCP" = 80:TCP:*:Disabled:Windows Remote Management - Compatibility Mode (HTTP-In)

"1038:TCP" = 1038:TCP:*:Enabled:Akamai NetSession Interface

"5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface

 

========== Authorized Applications List ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe" = C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe:*:Enabled:CyberLink PowerCinema -- (CyberLink Corp.)

"C:\Program Files\CyberLink\PowerCinema\PCMService.exe" = C:\Program Files\CyberLink\PowerCinema\PCMService.exe:*:Enabled:CyberLink PowerCinema Resident Program -- (CyberLink Corp.)

"C:\Program Files\Messenger\msmsgs.exe" = C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger

"C:\Documents and Settings\Compaq_Owner\Application Data\SopCast\adv\SopAdver.exe" = C:\Documents and Settings\Compaq_Owner\Application Data\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (http://www.sopcast.com)

"C:\Program Files\Common Files\aol\acs\AOLDial.exe" = C:\Program Files\Common Files\aol\acs\AOLDial.exe:*:Enabled:AOL Connectivity Service Dialler -- (AOL LLC)

"C:\Program Files\Common Files\aol\acs\AOLacsd.exe" = C:\Program Files\Common Files\aol\acs\AOLacsd.exe:*:Enabled:AOL Connectivity Services -- (AOL LLC)

"C:\Program Files\AOL 9.0 VR\waol.exe" = C:\Program Files\AOL 9.0 VR\waol.exe:*:Enabled:AOL -- (AOL, LLC.)

"C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe" = C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe:*:Enabled:AOL TopSpeed -- (AOL LLC)

"C:\Program Files\Common Files\aol\Loader\aolload.exe" = C:\Program Files\Common Files\aol\Loader\aolload.exe:*:Enabled:AOL Loader -- (AOL LLC)

"C:\Program Files\Common Files\aol\System Information\sinf.exe" = C:\Program Files\Common Files\aol\System Information\sinf.exe:*:Enabled:AOL System Information -- (AOL LLC)

"C:\Program Files\Common Files\aol\1229426616\ee\aolsoftware.exe" = C:\Program Files\Common Files\aol\1229426616\ee\aolsoftware.exe:*:Enabled:AOL Shared Components -- (America Online, Inc.)

"C:\Program Files\InCode Solutions\RemoveIT Pro v4 - SE\removeit.exe" = C:\Program Files\InCode Solutions\RemoveIT Pro v4 - SE\removeit.exe:*:Disabled:removeit -- ()

"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Disabled:Firefox -- (Mozilla Corporation)

"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)

"C:\WINDOWS\system32\ZoneLabs\vsmon.exe" = C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:Enabled:vsmon -- (Check Point Software Technologies LTD)

"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)

"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)

"C:\Program Files\iWin Games\iWinGames.exe" = C:\Program Files\iWin Games\iWinGames.exe:*:Enabled:iWin Games application. -- (iWin Inc.)

"C:\Program Files\iWin Games\WebUpdater.exe" = C:\Program Files\iWin Games\WebUpdater.exe:*:Enabled:iWin Games updater. -- ()

 

 

========== HKEY_LOCAL_MACHINE Uninstall List ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware

"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour

"{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic RecordNow Data

"{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}" = HiJackThis

"{0A65A3BD-54B5-4d0d-B084-7688507813F5}" = SlideShow

"{1341D838-719C-4A05-B50F-49420CA1B4BB}" = HP Boot Optimizer

"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer

"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer

"{1BD07DF4-FB06-41BA-B896-B2DA59000C96}" = Windows Live Toolbar

"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

"{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD Plus

"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT

"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer

"{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress

"{25F6C900-C138-4888-A56C-91D3D063023A}" = HP Update

"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = PowerCinema

"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java 6 Update 24

"{2CCBABCB-6427-4A55-B091-49864623C43F}" =

"{2F58D60D-2BFD-4467-9B4D-64E7355C329D}" = Sonic_PrimoSDK

"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform

"{33BF0960-DBA3-4187-B6CC-C969FCFA2D25}" = SkinsHP1

"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{36D620AD-EEBA-4973-BA86-0C9AE6396620}" = OptionalContentQFolder

"{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}" = Microsoft Works

"{41E776A5-9B12-416D-9A12-B4F7B044EBED}" = CP_Package_Basic1

"{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm

"{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP DVD Play 2.1

"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials

"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater

"{53EE9E42-CECB-4C92-BF76-9CA65DAF8F1C}" = FullDPAppQFolder

"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client

"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime

"{5CFD7508-7774-48FE-8280-7A3C0AE71755}" = Internet Services

"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053

"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail

"{65C93C70-4ED0-4D37-A179-64ABA9AE0641}" =

"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler

"{6696D9A4-28A8-4F5A-8E9A-2E8974C8C39C}" = RandMap

"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update

"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable

"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver

"{82081779-4175-4666-A457-AB711CD37EF0}" = cp_LightScribeConfig

"{829DAAD6-BB11-4BB7-921B-07FFB703F944}" = CP_Package_Variety3

"{82E55892-6FFD-403F-AA97-D726846768AA}" = CP_AtenaShokunin1Config

"{866A0078-DEA7-4348-9C9A-999AF2991EAA}" = SlideShowMusic

"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo Layers Runtime 1.10.01

"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight

"{8A534F71-3202-4464-A422-B767295E67B9}" = CP_Package_Variety2

"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)

"{8ADC27DB-E2C8-446C-A576-166C05C2DD24}" =

"{8CE4E6E9-9D55-43FB-9DDB-688C976BFC05}" = Unload

"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update

"{93E5A317-24EC-4744-812C-16FECFE86E6A}" = CP_Package_Variety1

"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting

"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack

"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI

"{A29800BA-0BF1-4E63-9F31-DF05A87F4104}" = InstantShareDevices

"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2

"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper

"{AA9768AA-FF0B-4C66-A085-31E934F77841}" = Apple Mobile Device Support

"{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}" = Windows 7 Upgrade Advisor

"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder

"{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic RecordNow Audio

"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution

"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.5

"{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic RecordNow Copy

"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR

"{B2157760-AA3C-4E2E-BFE6-D20BC52495D9}" = cp_PosterPrintConfig

"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger

"{B6286A44-7505-471A-A72B-04EC2DB2F442}" = CueTour

"{B69CFE29-FD03-4E0A-87A7-6ED97F98E5B3}" = CP_Panorama1Config

"{B823632F-3B72-4514-8861-B961CE263224}" = PostgreSQL 8.3

"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)

"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2

"{C1C6767D-B395-43CB-BF99-051B58B86DA6}" = PhotoGallery

"{C3FAA091-B278-44A7-BF48-190811C5F9F7}" = cp_UpdateProjectsConfig

"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1

"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1

"{D084B1A9-153B-409D-AEBF-C40FCEF925EA}" = TalkTalk Assist & Go

"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser

"{D92FF8EB-BD77-40AE-B68B-A6BFC6F8661D}" = Windows Live Family Safety

"{DA898F5C-4C85-4CF4-825B-E05D07DC39DD}" = BT Broadband Support Tools

"{DAB5C521-80B2-48C3-B0DA-326A1B331F55}" = GoToAssist Corporate

"{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp

"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call

"{ED2C557E-9C18-41FF-B58E-A05EEF0B3B5F}" = CP_CalendarTemplates1

"{EE39FFBD-544E-49E4-A999-6819828EAE91}" = Windows Live Photo Gallery

"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support

"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]

"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard

"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver

"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio

"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)

"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01

"{FB15E224-67C3-491F-9F5C-F257BC418412}" = Destinations

"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0)

"8Baller" = 8Baller 2.1

"AddressBook" =

"Adobe AIR" = Adobe AIR

"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX

"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin

"Adobe Shockwave Player" = Adobe Shockwave Player 11.5

"Advanced SystemCare 4_is1" = Advanced SystemCare 4

"Age of Empires Gold 1.0" = Microsoft Age of Empires Gold

"Akamai" = Akamai NetSession Interface

"AOL Uninstaller" = AOL Uninstaller (Choose which Products to Remove)

"AudioPlugin.dll" =

"Betfair Poker JPC_is1" = Betfair Poker JPC 1.0.0

"BT Broadband Desktop Help" = BT Broadband Desktop Help

"CCleaner" = CCleaner

"Connection Manager" =

"CopyNow.dll" =

"DataPlugin.dll" =

"DirectAnimation" =

"DirectDrawEx" =

"DivX Setup.divx.com" = DivX Setup

"DTD Poker" = DTD Poker

"DXM_Runtime" =

"Fontcore" =

"Foxit Reader" = Foxit Reader

"Game Booster_is1" = Game Booster 3

"GoToAssist" = GoToAssist Corporate

"HP Imaging Device Functions" = HP Imaging Device Functions 7.0

"HP Photo & Imaging" = HP Photosmart Premier Software 6.5

"ICW" =

"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs

"IE40" =

"IE4Data" =

"IE5BAKEX" =

"ie7" = Windows Internet Explorer 7

"ie8" = Windows Internet Explorer 8

"IEData" =

"InstallShield Uninstall Information" =

"InstallShield_{5CFD7508-7774-48FE-8280-7A3C0AE71755}" = Internet Services

"InstallShield_{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" =

"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio

"IObit Malware Fighter_is1" = IObit Malware Fighter

"iWinArcade" = iWin Games (remove only)

"jZip" = jZip

"ladbrokes (Poker)" = Ladbrokes Poker

"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.1.1800

"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1

"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1

"Microsoft Interactive Training" =

"Microsoft Security Client" = Microsoft Security Essentials

"MobileOptionPack" =

"Mozilla Firefox 4.0.1 (x86 en-US)" = Mozilla Firefox 4.0.1 (x86 en-US)

"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP

"MSI30a-KB884016" =

"MSI30-Beta1" =

"MSI30-Beta2" =

"MSI30-KB884016" =

"MSI30-RC1" =

"MSI30-RC2" =

"MSI31-Beta" =

"MSI31-RC1" =

"My.Freeze.com Toolbar" = My.Freeze.com Toolbar

"NetMeeting" =

"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs

"NVIDIA Drivers" = NVIDIA Drivers

"OutlookExpress" =

"PCHealth" =

"PokerStars" = PokerStars

"Pop-Up Stopper Free Edition" = Pop-Up Stopper Free Edition

"Prism" = Prism Video File Converter

"Protected Folder_is1" = Protected Folder

"Python 2.2.3" = Python 2.2.3

"pywin32-py2.2" = Python 2.2 pywin32 extensions (build 203)

"Quick Zip_is1" = Quick Zip 4.60.019

"RemoveIT Pro v7 (Trial)" = RemoveIT Pro v7 (Trial)

"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software

"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set

"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software

"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software

"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software

"SchedulingAgent" =

"Shockwave" =

"SpaceMonger" =

"SystemRequirementsLab" = System Requirements Lab

"Trusted Software Assistant_is1" = File Type Assistant

"Veetle TV" = Veetle TV 0.9.18

"Windows Media Format Runtime" = Windows Media Format 11 runtime

"Windows Media Player" = Windows Media Player 11

"Windows XP Service Pack" = Windows XP Service Pack 3

"WinLiveSuite_Wave3" = Windows Live Essentials

"Wisdom-soft Set up ASR 3.1 Free" = Wisdom-soft Set up ASR 3.1 Free

"WMCSetup" =

"WMFDist11" = Windows Media Format 11 runtime

"wmp11" = Windows Media Player 11

"Wordscape Online Party" = Wordscape Online Party (remove only)

"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

"Yahoo! Companion" = Yahoo! Toolbar

"Yahoo! Messenger" = Yahoo! Messenger

"Yahoo! Search Defender" = Yahoo! Search Protection

"Yahoo! Software Update" = Yahoo! Software Update

"ZoneAlarm" = ZoneAlarm

 

========== HKEY_USERS Uninstall List ==========

 

[HKEY_USERS\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"BitTorrent DNA" = DNA

"G2GPoker" = G2GPoker

"Google Chrome" = Google Chrome

 

========== Last 10 Event Log Errors ==========

 

[ Application Events ]

Error - 05/09/2011 06:24:25 | Computer Name = YOUR-C94F920E24 | Source = ESENT | ID = 455

Description = wlmail (1456) WindowsLiveMail3: Error -1811 (0xfffff8ed) occurred

while opening logfile C:\Documents and Settings\Compaq_Owner\Local Settings\Application

Data\Microsoft\Windows Live Mail\edb.log.

 

Error - 05/09/2011 06:24:41 | Computer Name = YOUR-C94F920E24 | Source = ESENT | ID = 455

Description = wlmail (3608) WindowsLiveMail1: Error -1811 (0xfffff8ed) occurred

while opening logfile C:\Documents and Settings\Compaq_Owner\Local Settings\Application

Data\Microsoft\Windows Live Mail\edb.log.

 

Error - 05/09/2011 06:24:42 | Computer Name = YOUR-C94F920E24 | Source = ESENT | ID = 455

Description = wlmail (3608) WindowsLiveMail3: Error -1811 (0xfffff8ed) occurred

while opening logfile C:\Documents and Settings\Compaq_Owner\Local Settings\Application

Data\Microsoft\Windows Live Mail\edb.log.

 

Error - 05/09/2011 06:41:27 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013

Description = Product: MSN Messenger 6.1 -- Your computer has a newer version of

MSN Messenger than the one you are trying to install. To install an older version,

first remove the current version (click Start, Settings, Control Panel, Add or

Remove, MSN Messenger), and then run this Set Up again.

 

Error - 05/09/2011 06:41:40 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013

Description = Product: MSN Messenger 6.1 -- Your computer has a newer version of

MSN Messenger than the one you are trying to install. To install an older version,

first remove the current version (click Start, Settings, Control Panel, Add or

Remove, MSN Messenger), and then run this Set Up again.

 

Error - 05/09/2011 07:16:01 | Computer Name = YOUR-C94F920E24 | Source = .NET Runtime Optimization Service | ID = 1101

Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)

- Failed to compile: C:\Program Files\Windows Live\Writer\WindowsLiveWriter.exe

. Error code = 0x80131047

 

Error - 05/09/2011 08:24:54 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013

Description = Product: MSN Messenger 7.0 -- Your computer has a newer version of

MSN Messenger than the one you are trying to install. To install an older version,

first remove the current version (click Start, Settings, Control Panel, Add or

Remove, MSN Messenger), and then run this Set Up again.

 

Error - 05/09/2011 08:29:15 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013

Description = Product: MSN Messenger 7.0 -- Your computer has a newer version of

MSN Messenger than the one you are trying to install. To install an older version,

first remove the current version (click Start, Settings, Control Panel, Add or

Remove, MSN Messenger), and then run this Set Up again.

 

Error - 10/09/2011 04:18:05 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 11316

Description = Product: TalkTalk Assist & Go -- Error 1316. A network error occurred

while attempting to read from the file: C:\WINDOWS\Installer\WISD084B1A9153B409DAEBFC40FCEF925EA_4_0_28.MSI

 

Error - 10/09/2011 04:39:30 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013

Description = Product: MSN Messenger 6.1 -- Your computer has a newer version of

MSN Messenger than the one you are trying to install. To install an older version,

first remove the current version (click Start, Settings, Control Panel, Add or

Remove, MSN Messenger), and then run this Set Up again.

 

[ System Events ]

Error - 11/09/2011 06:11:23 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7038

Description = The pgsql-8.3 service was unable to log on as .\postgres with the

currently configured password due to the following error: %%1326 To ensure that the

service is configured properly, use the Services snap-in in Microsoft Management

Console

(MMC).

 

Error - 11/09/2011 06:11:23 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7000

Description = The PostgreSQL Database Server 8.3 service failed to start due to

the following error: %%1069

 

Error - 11/09/2011 06:11:23 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7001

Description = The Windows Media Player Network Sharing Service service depends on

the Universal Plug and Play Device Host service which failed to start because of

the following error: %%1058

 

Error - 11/09/2011 06:11:25 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7026

Description = The following boot-start or system-start driver(s) failed to load:

AmdK8 ftsata2

 

Error - 11/09/2011 06:11:38 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7001

Description = The Windows Media Player Network Sharing Service service depends on

the Universal Plug and Play Device Host service which failed to start because of

the following error: %%1058

 

Error - 11/09/2011 09:14:15 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7038

Description = The pgsql-8.3 service was unable to log on as .\postgres with the

currently configured password due to the following error: %%1326 To ensure that the

service is configured properly, use the Services snap-in in Microsoft Management

Console

(MMC).

 

Error - 11/09/2011 09:14:15 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7000

Description = The PostgreSQL Database Server 8.3 service failed to start due to

the following error: %%1069

 

Error - 11/09/2011 09:14:15 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7001

Description = The Windows Media Player Network Sharing Service service depends on

the Universal Plug and Play Device Host service which failed to start because of

the following error: %%1058

 

Error - 11/09/2011 09:14:17 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7026

Description = The following boot-start or system-start driver(s) failed to load:

AmdK8 ftsata2

 

Error - 11/09/2011 09:15:38 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7001

Description = The Windows Media Player Network Sharing Service service depends on

the Universal Plug and Play Device Host service which failed to start because of

the following error: %%1058

 

 

< End of report >

Posted

Hi shnos.

 

What happened to your Compaq recovery disks? From what I'm seeing a complete reinstallation is in order.

 

What is the model and number of the Compaq?

We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs.

Get help with computer problems. Join Free PC Help here

 

Donations are welcome. Read Here

Posted

You need the compaq XP recovery disk that came with your computer or the one you made.

 

What happened to your Compaq recovery disks?

 

It should be plastered all over your computer. For instance Compaq-Presario-5000 or similar.

We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs.

Get help with computer problems. Join Free PC Help here

 

Donations are welcome. Read Here

Posted
my mum has a vista disc can i format with that?

If the Vista Operating System is still on your mum's computer then the answer is no.

One disk - one installation.

 

Also - if the disk is an OEM version of Vista ( it will say on the disk ) then this is tied to the original motherboard.

There is an email going around offering processed pork - gelatin - and salt in a can ......this is simply SPAM !!

 

MiniToolBox

Network Test

Wireless Test

Posted
Error - 10/09/2011 04:39:30 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013

Description = Product: MSN Messenger 6.1 -- Your computer has a newer version of

MSN Messenger than the one you are trying to install.

 

This error message from a few days ago mentions MSN Messenger 6.1

It implies that you were trying to install an older version of messenger ( 6.1 )

 

Take a look here:

http://www.filehippo.com/download_msn_messenger/

 

Try installing the most recent version. (Right side of screen)

 

If your system is running OK then you need do nothing more.

There is an email going around offering processed pork - gelatin - and salt in a can ......this is simply SPAM !!

 

MiniToolBox

Network Test

Wireless Test

Posted
Thats the problem i cannot download the new one it say's it is already on my pc. kev I don't know you buyt I trust you would you take over my pc and have a look
Posted

I'm not surprised given the amount of corruption I see on your computer. However since you don't want to fix all your corruption issues by reinstalling Windows look at this link.

http://windowslivehelp.com/solution.aspx?solutionid=64db5c80-85e4-49fe-bf07-cb08ffc5dd53

 

If steps 1 or two don't work try step 3. Note the downloadable exe file at the bottom if the local copy is corrupted.

We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs.

Get help with computer problems. Join Free PC Help here

 

Donations are welcome. Read Here

Posted
Try the link I suggested please.

We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs.

Get help with computer problems. Join Free PC Help here

 

Donations are welcome. Read Here

Posted

OK, you really do need to get that system sorted and there is only one reasonable way forward, as we now know it is a Compaq machine, you can try sending them either a letter or E mail asking if there is a possibility of them sending a replacement recovery disk. It may cost a small sum, but I doubt it would be the same as the full cost of a full XP disk.

You will need to send all details, model name and number, and possibly approximate year of manufacture.

If you can obtain a disk by that method, remember that it will delete everything you have, so if you have an external hard drive, make sure everything is copied or backed up to that, if no drive then a large number of DVD or CD disks will be needed.

Nev.

Need help with your computer problems? Then why not join Free PC Help. Register here.

If Free PC Help has helped you then please consider a donation. Click here

 We are all members helping other members. Please return here where you may be able to help someone else.  

After all, no one knows everything and you may have the answer that someone needs.

--------------------------------------------------------------------

I have installed Windows, now how do I install the curtains? 😄

image.png

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


×
×
  • Create New...