shnos Posted September 11, 2011 Author Posted September 11, 2011 FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@Motive.com/NpMotive,version=1.0: C:\Program Files\Common Files\Motive\npMotive.dll (Motive, Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: File not found FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\PROGRA~1\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.) FF - HKCU\Software\MozillaPlugins\@entriq.com/Download Manager Plugin Version Chk,version=3.8.2.9: File not found FF - HKCU\Software\MozillaPlugins\@entriq.com/Download Manager Plugin,version=3.8.2.9: File not found FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Update\1.3.21.53\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Update\1.3.21.53\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{98e34367-8df7-42b4-837b-20b892ff0849}: C:\Program Files\iWin Games\firefox\ [2010/07/18 11:22:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/05/12 06:54:04 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/07/02 10:54:44 | 000,000,000 | ---D | M] [2009/11/08 17:34:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Extensions [2009/11/08 17:34:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Extensions\IMVUClientXUL@imvu.com [2008/05/09 10:26:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Extensions\prism@developer.mozilla.org [2011/09/05 13:24:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions [2011/06/17 19:51:13 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2010/04/28 16:02:12 | 000,000,000 | ---D | M] (mediaplayerconnectivity) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions\{84b24861-62f6-364b-eba5-2e5e2061d7e6} [2011/04/11 20:47:14 | 000,000,000 | ---D | M] (ZoneAlarm Security Community Toolbar) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions\{91da5e8a-3318-4f8c-b67e-5964de3ab546} [2011/09/05 11:19:38 | 000,000,000 | ---D | M] (Microsoft Choice Guard) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions\ChoiceGuard@Microsoft [2011/09/05 13:24:26 | 000,000,000 | ---D | M] (Yontoo Layers) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\extensions\plugin@yontoo.com [2011/09/05 13:24:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\xp55ggdv.default\extensions [2009/11/27 13:19:51 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\xp55ggdv.default\extensions\{6c3a1de1-94ca-4ad6-acdf-c1324adc487b} [2009/07/18 09:07:21 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\xp55ggdv.default\extensions\{d51d388b-f5dc-471a-a1ce-5e2d671091c0} [2011/09/05 13:24:26 | 000,000,000 | ---D | M] (Yontoo Layers) -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\xp55ggdv.default\extensions\plugin@yontoo.com [2010/08/19 22:08:14 | 000,000,939 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\cvve6v4c.default\searchplugins\conduit.xml [2011/09/05 19:52:05 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010/01/01 13:00:37 | 000,000,000 | ---D | M] (Seekdns) -- C:\Program Files\Mozilla Firefox\extensions\{7BA9F755-DCD4-4B60-8AE8-EE3662C7C733} [2010/08/25 20:06:42 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010/08/26 09:35:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010/10/20 08:50:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2011/01/07 06:04:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2011/03/25 16:18:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [2011/03/20 13:33:41 | 000,000,000 | ---D | M] (Babylon) -- C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com () (No name found) -- C:\DOCUMENTS AND SETTINGS\COMPAQ_OWNER\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\CVVE6V4C.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI [2010/08/25 20:06:25 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011/04/14 17:26:02 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2009/08/27 21:25:26 | 000,308,096 | ---- | M] (British Telecommunications Plc) -- C:\Program Files\mozilla firefox\plugins\npBTEmailConfig.dll [2011/02/02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011/03/20 13:33:43 | 000,002,423 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml [2010/01/01 09:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml Quote
shnos Posted September 11, 2011 Author Posted September 11, 2011 O1 HOSTS File: ([2010/10/10 08:24:46 | 000,252,347 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 http://www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 http://www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 http://www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 http://www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 http://www.1001-search.info O1 - Hosts: 127.0.0.1 1001-search.info O1 - Hosts: 127.0.0.1 http://www.100888290cs.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 http://www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 http://www.10sek.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 http://www.123topsearch.com O1 - Hosts: 127.0.0.1 123topsearch.com O1 - Hosts: 127.0.0.1 http://www.132.com O1 - Hosts: 127.0.0.1 132.com O1 - Hosts: 127.0.0.1 http://www.136136.net O1 - Hosts: 127.0.0.1 136136.net O1 - Hosts: 8795 more lines... O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - Reg Error: Value error. File not found O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - Reg Error: Value error. File not found O2 - BHO: (Yontoo Layers) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo Layers Runtime\YontooIEClient.dll (Yontoo LLC) O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc) O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - Reg Error: Value error. File not found O3 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\..\Toolbar\ShellBrowser: (no name) - {97BCEB59-CFCD-4B16-A863-B3F72CF9F196} - No CLSID value found. O3 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\..\Toolbar\ShellBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - No CLSID value found. O3 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\..\Toolbar\WebBrowser: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - Reg Error: Value error. File not found O3 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Value error. File not found O4 - HKLM..\Run: [Alcmtr] File not found O4 - HKLM..\Run: [AOLSoftware] File not found O4 - HKLM..\Run: [apdproxy] File not found O4 - HKLM..\Run: [btbb_McciTrayApp] File not found Quote
shnos Posted September 11, 2011 Author Posted September 11, 2011 O4 - HKLM..\Run: [DivXUpdate] File not found O4 - HKLM..\Run: [ftutil2] C:\WINDOWS\System32\ftutil2.dll (Promise Technology, Inc.) O4 - HKLM..\Run: [HostManager] File not found O4 - HKLM..\Run: [HP Software Update] File not found O4 - HKLM..\Run: [HPBootOp] File not found O4 - HKLM..\Run: [jusched] File not found O4 - HKLM..\Run: [KBD] File not found O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [NvCpl] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMcTray] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] File not found O4 - HKLM..\Run: [QTTask] File not found O4 - HKLM..\Run: [QuickTime Task] File not found O4 - HKLM..\Run: [Recguard] File not found O4 - HKLM..\Run: [RTHDCPL] File not found O4 - HKLM..\Run: [rundll32] C:\WINDOWS\System32\ftutil2.dll (Promise Technology, Inc.) O4 - HKLM..\Run: [snpstd3] File not found O4 - HKLM..\Run: [sprtcmd] File not found O4 - HKLM..\Run: [sunJavaUpdateSched] File not found O4 - HKLM..\Run: [TkBellExe] File not found O4 - HKLM..\Run: [vsnpstd3] File not found O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD) O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [Advanced SystemCare 4] C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe (IObit) O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [AutoStartNPSAgent] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [ctfmon] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [Google Update] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [GoogleToolbarNotifier] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [Messenger (Yahoo!)] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [MSMSGS] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [PopUpStopperFreeEdition] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [PSFree] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [quwam] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [removeit] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [RemoveIT Pro v7Ent] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [swg] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [Yahoo! Pager] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [YAHOOM~1] File not found O4 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008..\Run: [YahooMessenger] File not found O4 - HKLM..\RunOnce: [AvgUninstallURL] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Suggested Sites present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Suggested Sites present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Suggested Sites present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Suggested Sites present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\Software\Policies\Microsoft\Internet Explorer\Suggested Sites present O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 0 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 0 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoBandCustomize = 0 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoMovingBands = 0 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCloseDragDropBands = 0 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoToolbarsOnTaskbar = 0 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 0 O7 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ClassicShell = 0 O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html () O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - Reg Error: Value error. File not found O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - Reg Error: Value error. File not found O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars) O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - Reg Error: Value error. File not found O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Value error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{01C79DFE-6A25-48C0-B0C4-B8881E914877}: DhcpNameServer = 16.92.3.242 16.92.3.243 16.81.3.243 16.118.3.243 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{937B74B4-D7B8-4990-8CB1-8F09C00CC8D2}: DhcpNameServer = 192.168.0.1 O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.) O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Value error. File not found O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Value error. File not found O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Value error. File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008 Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\GoToAssist: DllName - C:\Program Files\Citrix\GoToAssist\570\G2AWinLogon.dll - C:\Program Files\Citrix\GoToAssist\570\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.) O24 - Desktop WallPaper: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2005/12/06 00:32:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2001/07/27 15:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ] O32 - AutoRun File - [2004/04/30 07:01:14 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ] O33 - MountPoints2\{1115977a-4c8c-11e0-88c3-001731ea9af1}\Shell - "" = AutoRun O33 - MountPoints2\{1115977a-4c8c-11e0-88c3-001731ea9af1}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{1115977a-4c8c-11e0-88c3-001731ea9af1}\Shell\AutoRun\command - "" = J:\AutoRun.exe O33 - MountPoints2\{75cfc51c-2258-11dd-b37c-001731ea9af1}\Shell - "" = AutoRun Quote
shnos Posted September 11, 2011 Author Posted September 11, 2011 fc51c-2258-11dd-b37c-001731ea9af1}\Shell - "" = AutoRun O33 - MountPoints2\{75cfc51c-2258-11dd-b37c-001731ea9af1}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{78d894ae-4c03-11e0-88c1-001731ea9af1}\Shell - "" = AutoRun O33 - MountPoints2\{78d894ae-4c03-11e0-88c1-001731ea9af1}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{78d894ae-4c03-11e0-88c1-001731ea9af1}\Shell\AutoRun\command - "" = J:\AutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKU\S-1-5-21-2226935652-1042370167-1948720806-1008\...exe [@ = exefile] -- Reg Error: Key error. File not found NetSvcs: 6to4 - File not found NetSvcs: AppMgmt - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpFolder: C:^Documents and Settings^Compaq_Owner^Start Menu^Programs^Startup^iWin Desktop Alerts.lnk - Reg Error: Value error. - File not found MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2011/09/11 14:09:38 | 001,916,416 | ---- | C] (AVAST Software) -- C:\Documents and Settings\Compaq_Owner\Desktop\aswMBR.exe [2011/09/11 14:03:43 | 000,581,120 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Owner\Desktop\OTL (1).exe [2011/09/10 18:01:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live [2011/09/09 11:52:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Windows 7 Upgrade Advisor [2011/09/08 20:05:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\iolo [2011/09/06 14:44:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Ladbrokes Poker [2011/09/05 20:54:09 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Compaq_Owner\Recent [2011/09/05 15:06:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\jZip [2011/09/05 15:06:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\jZip [2011/09/05 15:06:21 | 000,000,000 | ---D | C] -- C:\Program Files\jZip [2011/09/05 14:54:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\GetRightToGo [2011/09/05 13:59:09 | 000,000,000 | ---D | C] -- C:\Program Files\ADLSoft UnCompressor [2011/09/05 13:24:24 | 000,000,000 | ---D | C] -- C:\Program Files\Yontoo Layers Runtime [2011/09/05 13:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Tarma Installer [2011/09/05 13:18:39 | 000,000,000 | ---D | C] -- C:\UnknownFolder87023 [2011/09/05 11:13:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft [2011/09/05 10:51:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2011/09/01 21:56:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Game Booster 3 [2011/08/31 08:03:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\Search Settings [2011/08/31 08:02:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Protected Folder [2011/08/31 08:02:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Spigot [2011/08/25 10:59:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Owner\Application Data\Globe7 [2011/08/25 10:59:00 | 000,000,000 | ---D | C] -- C:\Program Files\Globe7 [2011/08/23 09:15:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Games [2011/08/23 09:14:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games [2007/03/12 12:41:52 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnpstd3.dll [2005/11/23 13:55:32 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd3.dll [7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011/09/11 14:18:29 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job [2011/09/11 14:13:36 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011/09/11 14:13:36 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\SmartDefrag_Startup.job [2011/09/11 14:13:36 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job [2011/09/11 14:13:34 | 000,000,324 | -HS- | M] () -- C:\WINDOWS\tasks\Ridh.job [2011/09/11 14:13:05 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/09/11 14:13:04 | 1005,113,344 | -HS- | M] () -- C:\hiberfil.sys [2011/09/11 14:09:27 | 001,916,416 | ---- | M] (AVAST Software) -- C:\Documents and Settings\Compaq_Owner\Desktop\aswMBR.exe [2011/09/11 14:03:35 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Owner\Desktop\OTL (1).exe [2011/09/11 11:13:00 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011/09/09 11:52:11 | 000,001,908 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Windows 7 Upgrade Advisor.lnk [2011/09/06 14:44:07 | 000,000,789 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Ladbrokes Poker.lnk [2011/09/05 15:06:31 | 000,000,634 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\jZip.lnk [2011/09/05 15:06:31 | 000,000,608 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\jZip.lnk [2011/09/05 13:27:27 | 000,446,234 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011/09/05 13:27:27 | 000,074,068 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011/09/05 12:01:05 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011/09/05 11:15:57 | 000,000,932 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\My Documents\My Sharing Folders.lnk [2011/09/05 10:59:55 | 000,000,823 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2011/09/01 21:56:41 | 000,000,841 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Game Booster 3.lnk [2011/09/01 21:56:41 | 000,000,823 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Game Booster 3.lnk [2011/08/31 08:02:47 | 000,000,897 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Protected Folder.lnk [2011/08/31 08:02:46 | 000,000,879 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Protected Folder.lnk [2011/08/31 08:01:03 | 000,000,916 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Quick Care.lnk [2011/08/31 08:01:01 | 000,000,912 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced SystemCare 4.lnk [2011/08/25 13:06:51 | 000,001,287 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Application Data\QuickZip45.ini [2011/08/24 07:37:09 | 000,220,040 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011/08/23 09:15:40 | 000,001,812 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Age of Empires Expansion.lnk [2011/08/23 09:15:40 | 000,001,805 | ---- | M] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Age of Empires.lnk [2011/08/14 21:18:47 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif [7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2011/09/09 11:52:11 | 000,001,914 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows 7 Upgrade Advisor.lnk [2011/09/09 11:52:11 | 000,001,908 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Windows 7 Upgrade Advisor.lnk [2011/09/06 14:44:07 | 000,000,789 | ---- | C] () -- C:\Document Quote
shnos Posted September 11, 2011 Author Posted September 11, 2011 and Settings\Compaq_Owner\Desktop\Ladbrokes Poker.lnk [2011/09/05 15:06:31 | 000,000,634 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\jZip.lnk [2011/09/05 15:06:31 | 000,000,608 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\jZip.lnk [2011/09/01 21:56:41 | 000,000,841 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Game Booster 3.lnk [2011/09/01 21:56:41 | 000,000,823 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Game Booster 3.lnk [2011/08/31 08:02:46 | 000,000,897 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Protected Folder.lnk [2011/08/31 08:02:46 | 000,000,879 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Protected Folder.lnk [2011/08/23 09:15:40 | 000,001,812 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Age of Empires Expansion.lnk [2011/08/23 09:15:40 | 000,001,805 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Desktop\Age of Empires.lnk [2011/08/23 09:15:33 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll [2011/08/14 21:28:13 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job [2010/12/29 15:54:31 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2010/12/29 15:54:30 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2010/12/29 15:53:33 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\$_hpcst$.hpc [2010/10/10 08:07:26 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll [2010/10/10 08:07:26 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar3.dll [2010/10/10 08:07:26 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll [2010/10/10 08:07:26 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll [2010/07/22 10:48:56 | 000,000,045 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\machpro.dat [2010/04/18 13:51:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\popcreg.dat [2010/04/17 19:51:37 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010/03/27 14:32:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\prvlcl.dat [2010/02/03 20:23:05 | 000,000,053 | ---- | C] () -- C:\WINDOWS\popcinfot.dat [2010/01/19 12:49:54 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\RemoveDevice.dll [2010/01/19 12:49:54 | 000,466,944 | ---- | C] () -- C:\WINDOWS\RemoveDevice.dll [2010/01/14 03:41:00 | 000,309,248 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll [2009/07/16 19:12:45 | 000,000,035 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\TheHunterSettings.cfg [2009/07/05 15:08:42 | 000,001,287 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\QuickZip45.ini [2009/04/04 09:10:36 | 000,107,520 | ---- | C] () -- C:\WINDOWS\System32\UnCasino5.exe [2009/01/08 10:08:51 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt [2009/01/08 09:49:15 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2008/12/16 12:27:41 | 000,000,723 | ---- | C] () -- C:\WINDOWS\aolback.exe.lnk [2008/09/27 16:57:02 | 016,664,095 | ---- | C] () -- C:\WINDOWS\System32\ntx14896890.exe [2008/09/27 16:56:54 | 016,664,095 | ---- | C] () -- C:\WINDOWS\System32\ntx14889453.exe [2008/08/31 11:10:57 | 000,000,014 | ---- | C] () -- C:\WINDOWS\popcinfo.dat [2008/08/03 13:45:46 | 000,000,040 | ---- | C] () -- C:\WINDOWS\ujf635.bin [2008/06/20 16:31:07 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2008/06/18 14:00:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI [2008/06/02 00:03:27 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat [2008/05/24 14:58:16 | 000,000,024 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\MyPhrases.dta [2008/05/23 09:11:05 | 000,001,541 | ---- | C] () -- C:\WINDOWS\mozver.dat [2007/10/31 13:33:31 | 000,000,029 | ---- | C] () -- C:\WINDOWS\PControl.ini [2007/10/16 13:48:20 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll [2007/09/26 18:16:32 | 000,005,956 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2007/08/17 14:12:13 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\proc20744962.bin [2007/08/06 20:50:49 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys [2007/05/02 21:12:04 | 000,000,020 | ---- | C] () -- C:\WINDOWS\powerplayer.ini [2007/05/02 21:12:00 | 000,000,294 | ---- | C] () -- C:\WINDOWS\psnetwork.ini [2006/12/14 23:23:13 | 000,000,015 | ---- | C] () -- C:\WINDOWS\campaignsave.INI [2006/11/23 20:57:30 | 000,000,076 | ---- | C] () -- C:\WINDOWS\eregreg.ini [2006/11/21 00:40:12 | 000,000,073 | ---- | C] () -- C:\WINDOWS\EurekaLog.ini [2006/11/20 18:49:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Hammerhead.INI [2006/11/20 15:00:07 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat [2006/11/20 14:57:06 | 000,000,016 | ---- | C] () -- C:\WINDOWS\bfpw.dat [2006/11/01 13:44:13 | 000,000,017 | ---- | C] () -- C:\WINDOWS\crwbc.ini [2006/10/24 07:16:44 | 000,000,736 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2006/10/20 00:38:20 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache [2006/09/27 15:18:20 | 000,000,017 | ---- | C] () -- C:\WINDOWS\crw.ini [2006/09/19 10:07:28 | 000,827,392 | ---- | C] () -- C:\WINDOWS\vsnpstd3.exe [2006/09/07 11:44:52 | 000,018,944 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2006/09/06 17:58:20 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat [2006/09/01 15:33:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MSDraw.ini [2006/09/01 15:08:49 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Application Data\wklnhst.dat [2006/09/01 08:56:05 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\fusioncache.dat [2006/05/25 05:03:44 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2006/05/25 04:40:41 | 000,028,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\USBkey.sys [2006/05/25 04:36:15 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll [2006/05/25 04:27:32 | 000,000,250 | ---- | C] () -- C:\WINDOWS\WININIT.INI [2006/05/25 04:22:15 | 000,095,822 | ---- | C] () -- C:\WINDOWS\hpqins69.dat [2006/05/25 04:19:04 | 000,036,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\AmdK8.sys [2006/05/25 04:18:02 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006/05/25 04:18:02 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe [2006/05/25 04:18:02 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006/05/25 04:18:02 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe [2006/05/25 04:18:02 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006/05/25 04:18:02 | 000,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2006/05/25 04:18:02 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006/05/25 04:18:02 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2006/05/25 04:18:01 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe [2006/05/25 04:18:01 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe [2006/05/25 04:18:01 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2006/05/25 04:02:40 | 000,000,883 | ---- | C] () -- C:\WINDOWS\orun32.ini [2006/05/25 03:59:28 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\pythoncom22.dll [2006/05/25 03:59:11 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll [2006/03/18 01:23:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini [2005/12/06 00:49:08 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2005/12/06 00:36:34 | 000,446,234 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2005/12/06 00:36:34 | 000,074,068 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2005/12/06 00:34:46 | 000,220,040 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2005/12/06 00:31:48 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2005/12/06 00:30:02 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2004/08/04 12:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2004/08/04 12:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2004/08/04 12:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2004/08/04 12:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2004/08/04 12:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2004/08/04 12:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2004/08/04 12:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2004/08/04 12:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2004/06/24 20:10:06 | 000,000,573 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2004/02/27 17:36:18 | 000,015,498 | ---- | C] () -- C:\WINDOWS\snpstd3.ini [2001/08/23 23:12:28 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001/08/23 23:11:02 | 000,004,490 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat ========== LOP Check ========== [2009/05/22 13:59:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\@ [2009/11/25 21:20:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AGS [2011/01/05 12:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2008/05/05 16:42:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Arovax [2009/07/29 17:18:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Artist Colony [2011/05/09 08:04:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software [2011/04/11 22:57:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG10 [2010/10/14 19:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9 [2009/01/09 19:34:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus [2009/03/03 16:11:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Beanbag Studios [2011/03/14 15:11:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Birdstep Technology [2009/12/18 15:11:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BlockBreaker [2006/09/08 07:19:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BOONTY [2010/10/01 09:54:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Boss Media [2007/12/17 21:02:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Christmasville [2010/10/14 19:23:00 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files [2007/05/11 14:01:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2009/04/27 19:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverCure [2009/05/01 22:57:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverScanner [2008/07/23 14:12:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Entriq [2009/01/16 09:46:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET [2009/09/11 10:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Flood Light Games [2007/05/01 08:47:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FloodLightGames [2009/10/07 19:19:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FreshGames [2007/07/12 08:07:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FunGames [2010/02/03 17:34:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GameHouse [2009/06/20 19:27:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Gogii [2009/03/14 09:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Grisoft [2009/09/22 10:02:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\HipSoft [2007/05/11 13:58:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations [2009/07/29 20:05:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Intenium [2011/09/01 21:56:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit [2011/09/09 11:19:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iolo [2009/01/09 15:05:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iWin Games [2007/03/02 16:52:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\jump kind pop eq [2009/10/29 16:18:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kontiki [2007/05/02 12:35:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Legacy Interactive [2008/05/05 11:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ludia [2008/06/02 00:03:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MailFrontier [2011/04/11 22:43:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData [2009/01/21 17:43:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MGS [2009/01/21 17:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microgaming [2009/05/25 16:33:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MinigolfAdventures [2010/01/31 17:12:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo [2008/09/12 16:08:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MysteryChronicles [2006/12/07 09:46:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Napster [2011/03/22 17:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound [2009/04/27 19:40:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic [2009/05/10 16:35:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters [2010/02/10 20:13:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Optimizer Pro [2007/05/11 13:58:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite [2009/10/29 16:18:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCPitstop [2009/11/20 15:07:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst [2011/05/23 11:59:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Playrix Entertainment [2006/09/17 09:01:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap [2010/02/10 20:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games [2008/05/18 23:25:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PrevxCSI [2008/04/20 08:47:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PurePlay [2010/02/10 20:22:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\qs [2009/03/03 17:53:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ROWLUUUCYG [2009/12/11 16:09:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sandlot Games [2010/10/10 08:07:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Simply Super Software [2008/02/13 22:45:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SITEguard [2006/09/28 19:53:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SkillJam [2007/09/11 09:42:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SpinTop Games [2010/10/30 05:53:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\STOPzilla! [2009/06/26 09:32:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft [2011/09/05 13:24:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Tarma Installer [2011/05/23 12:06:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP [2010/02/09 15:27:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\The Mirror Mysteries [2010/11/13 20:45:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TrueMoneyGames [2009/04/22 09:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2008/04/23 09:50:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Uniblue [2009/05/11 17:15:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UTour Golf [2008/12/16 12:25:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint [2009/12/18 16:52:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WildTangent [2008/03/31 13:03:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip [2006/12/14 12:36:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ZILLAbar [2008/07/08 19:31:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ZqWare [2008/01/08 02:11:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Zylom [2009/06/05 18:55:07 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357} [2007/09/16 11:18:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\3DMailbox [2009/09/28 15:03:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Absolute Poker [2009/07/29 12:43:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Anabel [2010/06/19 23:54:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Arkadium [2008/02/13 10:52:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Auslogics [2010/10/14 19:26:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\AVG10 [2007/04/17 14:35:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\AVSMedia [2011/05/01 20:16:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Azureus [2011/03/20 13:38:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\BabylonToolbar [2010/06/15 13:05:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\BattlePunks [2007/09/03 12:34:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Big Fish Games [2008/04/16 19:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\BitZipper [2009/11/10 09:48:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Blitware [2009/06/18 14:18:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Cat's Eye Games [2009/07/29 20:07:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\cerasus.media [2010/10/14 23:25:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\CheckPoint [2009/03/03 20:13:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 [2008/02/18 14:12:06 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\CrystalSpace [2008/03/31 10:20:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\DAEMON Tools [2009/10/29 16:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\DNA [2009/04/27 19:41:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\DriverCure [2010/09/09 07:47:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\FinalTorrent [2009/09/11 10:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Flood Light Games [2007/05/01 08:47:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\FloodLightGames [2009/03/27 17:10:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Foxit [2011/01/11 14:46:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Free Sound Recorder [2008/09/22 07:33:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\funkitron [2008/09/22 08:46:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\GamesCafe [2008/09/09 10:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\GanymedeNet [2011/09/05 14:55:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\GetRightToGo [2008/06/25 20:47:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\GlarySoft [2011/08/25 10:59:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Globe7 [2009/10/29 15:23:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\GTM_Bodie [2010/08/20 16:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\HEM Data [2008/04/30 16:19:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Hide IP NG [2010/10/24 15:38:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\HighPulse [2009/10/29 16:18:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\HTNetMeter [2011/09/05 19:44:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\IObit [2007/09/01 14:21:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\ISE Games [2008/09/22 08:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\ITTNord [2009/08/02 09:22:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\iWin [2009/07/29 10:51:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Iwin 3 Days Zoo Mystery [2007/12/08 07:09:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\iWinArcade [2007/04/11 13:52:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Kontiki [2006/09/01 15:37:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Leadertech [2008/08/28 12:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\LimeWire [2009/01/08 17:29:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\LittlewoodsPoker [2008/05/05 11:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Ludia [2008/08/15 11:06:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Magic Academy [2009/07/28 18:27:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\MagicBall4 [2011/09/10 12:17:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Microgaming [2009/11/06 17:33:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Miranda [2006/09/07 18:05:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\MSNInstaller [2008/06/08 14:59:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\MysteryStudio [2007/08/28 15:57:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Mysteryville2 [2007/05/11 14:05:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Nokia [2007/03/02 16:52:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\ooze sixth more [2010/08/25 23:40:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\OpenOffice.org [2008/05/23 17:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Opera [2011/04/09 07:46:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PacificPoker [2009/06/02 19:21:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Paltalk [2007/05/11 13:57:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PC Suite [2009/06/25 19:40:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PetShowCraze [2009/11/20 15:07:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PlayFirst [2009/07/29 12:52:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Playrix Entertainment [2009/01/21 15:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Pogo Games [2010/02/10 20:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PopCapv1001 [2007/10/31 14:54:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PowerChallenge [2007/05/02 21:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\PPMate [2007/05/02 21:12:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\ppStream [2006/11/09 08:41:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\psychorosie [2010/01/07 21:52:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\qs [2009/05/25 13:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Reflexivev1002 [2011/01/13 16:14:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Samsung [2011/08/31 08:03:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Search Settings [2009/07/30 11:22:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Shape games [2006/10/03 15:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\shnos [2010/10/10 08:13:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Simply Super Software [2008/09/27 17:14:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Skip-Bo [2007/08/22 15:30:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Snapfish [2008/05/23 17:00:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Sports Interactive [2010/09/12 19:06:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Stellarium [2006/09/01 15:14:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Template [2009/11/20 21:50:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\TitanicMystery [2009/04/22 10:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\TuneUp Software [2008/05/24 14:45:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\TypingMaster7 [2009/11/27 13:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Uniblue [2010/05/26 14:36:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Unity [2010/04/29 15:50:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\uTorrent [2009/01/09 14:34:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Viewpoint [2009/09/28 14:13:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Visual Poker [2010/06/13 09:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Vivox [2007/07/04 10:27:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\WinBatch [2006/12/10 15:15:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\WinPatrol [2009/07/28 12:33:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Winv1001 [2009/07/29 14:46:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Winv1005 [2007/08/25 07:15:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\World Market Watch, Inc [2006/11/23 18:55:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\xDeantjx [2006/10/31 14:09:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\xxDeanxx [2008/05/09 10:26:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Owner\Application Data\Zimbra Desktop [2011/03/11 17:20:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Birdstep Technology [2011/03/11 18:08:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Application Data\Birdstep Technology [2011/09/11 14:13:36 | 000,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\ASC4_PerformanceMonitor.job [2008/06/01 12:00:15 | 000,000,464 | ---- | M] () -- C:\WINDOWS\Tasks\Internet Services.job [2011/09/11 14:18:29 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job [2011/09/11 14:13:34 | 000,000,324 | -HS- | M] () -- C:\WINDOWS\Tasks\Ridh.job [2011/09/11 11:40:41 | 000,032,446 | ---- | M] () -- C:\WINDOWS\Tasks\SCHEDLGU.TXT [2011/09/11 14:13:36 | 000,000,294 | ---- | M] () -- C:\WINDOWS\Tasks\SmartDefrag_Startup.job ========== Purity Check ========== Quote
shnos Posted September 11, 2011 Author Posted September 11, 2011 ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2010/12/29 15:42:28 | 000,013,752 | ---- | M] () -- C:\0x0809.ini [2011/04/12 09:36:23 | 000,008,704 | ---- | M] () -- C:\1457874.dat [2010/12/29 15:43:02 | 000,069,632 | ---- | M] () -- C:\2057.MST [2011/03/05 10:37:08 | 000,007,771 | ---- | M] () -- C:\2191502.dat [2011/03/21 21:31:11 | 000,008,216 | ---- | M] () -- C:\3475768.dat [2011/04/12 09:35:28 | 000,007,594 | ---- | M] () -- C:\3748053.dat [2011/03/21 21:02:37 | 000,007,206 | ---- | M] () -- C:\3800736.dat [2011/03/21 18:14:30 | 000,008,718 | ---- | M] () -- C:\3979047.dat [2011/03/21 18:18:01 | 000,004,514 | ---- | M] () -- C:\4183667.dat [2011/03/05 11:21:45 | 000,006,868 | ---- | M] () -- C:\5389770.dat [2011/03/21 20:44:01 | 000,008,864 | ---- | M] () -- C:\5508831.dat [2011/03/05 11:25:05 | 000,004,740 | ---- | M] () -- C:\6380098.dat [2011/03/21 20:44:01 | 000,005,161 | ---- | M] () -- C:\6506091.dat [2011/03/21 18:27:51 | 000,008,905 | ---- | M] () -- C:\6680678.dat [2011/04/12 09:35:28 | 000,007,895 | ---- | M] () -- C:\6703808.dat [2005/12/06 00:32:08 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2007/07/26 11:34:25 | 000,000,211 | -HS- | M] () -- C:\BOOT.BAK [2011/04/17 08:03:32 | 000,000,281 | -HS- | M] () -- C:\boot.ini [2004/08/04 05:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr [2005/12/06 00:32:08 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2011/03/12 14:59:19 | 000,022,716 | ---- | M] () -- C:\debug.txt [2006/08/18 15:49:08 | 000,000,004 | -HS- | M] () -- C:\dllimp_regmsft985 [2011/09/11 14:13:04 | 1005,113,344 | -HS- | M] () -- C:\hiberfil.sys [2009/12/04 14:25:04 | 000,000,132 | ---- | M] () -- C:\ICSYSINF.log [2005/12/06 00:32:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2009/07/31 08:54:07 | 000,000,405 | -H-- | M] () -- C:\IPH.PH [2005/12/06 00:32:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004/08/04 05:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008/06/24 18:06:24 | 000,250,048 | RHS- | M] () -- C:\ntldr [2010/12/18 11:15:19 | 000,001,024 | -H-- | M] () -- C:\ntuser.dat.LOG [2011/09/11 14:13:02 | 1509,949,440 | -HS- | M] () -- C:\pagefile.sys [2010/12/29 15:48:45 | 097,979,392 | ---- | M] () -- C:\Samsung New PC Studio.msi [2008/08/18 13:06:50 | 000,000,232 | -H-- | M] () -- C:\sqmdata00.sqm [2008/12/03 15:05:13 | 000,000,232 | -H-- | M] () -- C:\sqmdata01.sqm [2008/12/15 11:05:26 | 000,000,232 | -H-- | M] () -- C:\sqmdata02.sqm [2009/01/15 06:13:19 | 000,000,232 | -H-- | M] () -- C:\sqmdata03.sqm [2009/01/15 09:13:12 | 000,000,232 | -H-- | M] () -- C:\sqmdata04.sqm [2009/01/16 09:36:56 | 000,000,232 | -H-- | M] () -- C:\sqmdata05.sqm [2009/01/31 12:39:34 | 000,000,232 | -H-- | M] () -- C:\sqmdata06.sqm [2009/02/14 18:56:02 | 000,000,232 | -H-- | M] () -- C:\sqmdata07.sqm [2009/02/14 18:59:22 | 000,000,232 | -H-- | M] () -- C:\sqmdata08.sqm [2009/02/14 19:02:34 | 000,000,232 | -H-- | M] () -- C:\sqmdata09.sqm [2009/02/14 19:12:05 | 000,000,232 | -H-- | M] () -- C:\sqmdata10.sqm [2009/03/04 13:31:23 | 000,000,232 | -H-- | M] () -- C:\sqmdata11.sqm [2006/09/08 21:26:18 | 000,000,232 | -H-- | M] () -- C:\sqmdata12.sqm [2006/09/08 21:27:02 | 000,000,232 | -H-- | M] () -- C:\sqmdata13.sqm [2006/09/08 22:18:18 | 000,000,268 | -H-- | M] () -- C:\sqmdata14.sqm [2006/09/09 07:49:33 | 000,000,268 | -H-- | M] () -- C:\sqmdata15.sqm [2006/09/09 08:54:28 | 000,000,268 | -H-- | M] () -- C:\sqmdata16.sqm [2006/09/09 23:33:07 | 000,000,268 | -H-- | M] () -- C:\sqmdata17.sqm [2006/09/10 14:31:32 | 000,000,268 | -H-- | M] () -- C:\sqmdata18.sqm [2006/09/10 14:34:57 | 000,000,268 | -H-- | M] () -- C:\sqmdata19.sqm [2008/08/18 13:06:50 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm [2008/12/03 15:05:13 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm [2008/12/15 11:05:26 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm [2009/01/15 06:13:19 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm [2009/01/15 09:13:12 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm [2009/01/16 09:36:56 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm [2009/01/31 12:39:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm [2009/02/14 18:56:02 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm [2009/02/14 18:59:22 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm [2009/02/14 19:02:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm [2009/02/14 19:12:05 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm [2009/03/04 13:31:23 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm [2006/09/08 21:26:18 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm [2006/09/08 21:27:02 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm [2006/09/08 22:18:18 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm [2006/09/09 07:49:33 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm [2006/09/09 08:54:28 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm [2006/09/09 23:33:07 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm [2006/09/10 14:31:32 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm [2006/09/10 14:34:57 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm [2007/11/27 22:30:43 | 000,000,218 | -H-- | M] () -- C:\t8101.le < %systemroot%\system32\Spool\prtprocs\w32x86\*.dll > < %systemroot%\*. /mp /s > < %systemroot%\system32\*.sys /90 > [7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < %systemroot%\system32\*.dll /lockedfiles > [7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < %systemroot%\Tasks\*.job /lockedfiles > [2011/09/11 14:13:34 | 000,000,324 | -HS- | M] () Unable to obtain MD5 -- C:\WINDOWS\Tasks\Ridh.job < %systemroot%\system32\drivers\*.sys /lockedfiles > [2008/03/31 10:20:18 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys < %systemroot%\system32\*.exe /lockedfiles > [7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < %systemroot%\System32\config\*.sav > [2005/12/06 00:23:36 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav [2005/12/06 00:23:36 | 000,634,880 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav < %PROGRAMFILES%\* > < %USERPROFILE%\..|smtmp;true;true;true /FP > < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Win dows\WindowsUpdate\AU > < hklm\software\clients\startmenuinternet|command /rs > HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\ReinstallCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -rb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\HideIconsCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -hb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\ShowIconsCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -sb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\shell\open\command\\: C:\PROGRA~1\AOL9~1.0VR\aol.exe [2006/12/05 12:40:30 | 000,050,736 | ---- | M] (AOL, LLC.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\chrome.exe\shell\open\command\\: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --show-icons [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --hide-icons [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --make-default-browser [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) < hklm\software\clients\startmenuinternet|command /64 /rs > HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\ReinstallCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -rb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\HideIconsCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -hb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\InstallInfo\\ShowIconsCommand: C:\PROGRA~1\AOL9~1.0VR\accdef.exe -sb [2006/11/10 13:11:59 | 000,016,944 | ---- | M] (AOL, LLC.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\aol.exe\shell\open\command\\: C:\PROGRA~1\AOL9~1.0VR\aol.exe [2006/12/05 12:40:30 | 000,050,736 | ---- | M] (AOL, LLC.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\chrome.exe\shell\open\command\\: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --show-icons [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --hide-icons [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --make-default-browser [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2011/05/06 20:50:10 | 001,010,232 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2011/06/23 13:05:37 | 000,173,568 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) ========== Alternate Data Streams ========== @Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2 @Alternate Data Stream - 304 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4EDC977B @Alternate Data Stream - 174 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D4D3884D @Alternate Data Stream - 148 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F878F14A @Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E464041D @Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:953CB9E9 @Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0BE2307D @Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D0467BDF @Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B4254BB8 @Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:588B60C7 @Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:67F0F865 @Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8BBD1F9A @Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3F1D69E8 @Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A9C7B545 @Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7B7430D1 @Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CA3AE363 @Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C6029458 @Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:426796C0 @Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2AA07D1B @Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EC2246A6 @Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A5F222E3 @Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0AE2936A @Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2D0C22DC @Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D159D2B6 @Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C3B04546 @Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B9641B31 @Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4D9D205F @Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:350C5B9E @Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E8F2B426 @Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D0ED9DB7 @Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8DED4A5E @Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0CB3F5F4 @Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:18BFD8F8 @Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:09B77012 @Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:80D975A5 @Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:290A724C @Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8396196A @Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F1F95179 @Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A1693604 @Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:96BE5F33 @Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4E9307D7 @Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AB7FF0C9 @Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3F3BEF8F @Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B35A4CE2 @Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A518B662 @Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:345E21F6 @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D81A3B43 @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A3E39A49 @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:74A34D19 @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3E7393FC @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:220F4706 @Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:91DEA808 @Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:87638BB9 @Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2F34C507 @Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1D24E6BC @Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9700C55E @Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BCA5698A @Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8CEFE51A @Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:40D8F125 @Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1CF2F47C @Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:997E6AF4 @Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7D50F3CE @Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:50F94E7B @Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:861A898F @Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4D24FC46 @Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3FB71C37 @Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:23BEBB72 @Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:131C0EE9 @Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:ED86E7AC @Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E3C56885 @Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F00E008B @Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CE7C61DF @Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C6CD88E9 @Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:98762F45 @Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:15606AA7 @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3B5038B1 @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2F99F761 @Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DD24DCF8 @Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A47F1E65 @Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FF8F1AE3 @Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:96CC3FEF @Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:95EBD4E0 @Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9B2EDA15 @Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8D02044C @Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:979EED5B @Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D457B690 @Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0BC41074 @Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F02F1295 @Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DAFAF1BF @Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B32CFB00 @Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7E22C00F @Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:729F5FF8 @Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4E1E5A60 @Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:45CAB638 @Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E91ADC66 @Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:79CBD5FF @Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5E9BB215 @Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C53D1D2 @Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:340E7CCA @Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9AB56A06 @Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:16E7793D @Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E0E19514 @Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:546EE13B @Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C99F6ECA @Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B4FDEF97 @Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4DB6559B < End of report > Quote
shnos Posted September 11, 2011 Author Posted September 11, 2011 aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software Run date: 2011-09-11 14:42:03 ----------------------------- 14:42:03.093 OS Version: Windows 5.1.2600 Service Pack 3 14:42:03.093 Number of processors: 1 586 0x4F02 14:42:03.093 ComputerName: YOUR-C94F920E24 UserName: Compaq_Owner 14:42:04.296 Initialize success 14:42:49.500 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 14:42:49.500 Disk 0 Vendor: ST3802110A 3.AHH Size: 76319MB BusType: 3 14:42:51.546 Disk 0 MBR read successfully 14:42:51.546 Disk 0 MBR scan 14:42:51.546 Disk 0 unknown MBR code 14:42:51.546 Disk 0 scanning sectors +156295440 14:42:51.625 Disk 0 scanning C:\WINDOWS\system32\drivers 14:43:01.140 Service scanning 14:43:01.656 Service MpKslc758737b c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F2F6AE0C-6020-402E-A721-22C393D491E3}\MpKslc758737b.sys **LOCKED** 32 14:43:01.828 Service sptd C:\WINDOWS\System32\Drivers\sptd.sys **LOCKED** 32 14:43:01.859 Service vsdatant C:\WINDOWS\System32\vsdatant.sys **LOCKED** 32 14:43:02.375 Modules scanning 14:43:57.812 Disk 0 trace - called modules: 14:43:57.828 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spzm.sys >>UNKNOWN [0x8618a938]<< 14:43:57.828 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86129ab8] 14:43:57.828 3 CLASSPNP.SYS[f7630fd7] -> nt!IofCallDriver -> \Device\00000070[0x8612cf18] 14:43:57.828 5 ACPI.sys[f73af620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8613a940] 14:43:57.828 Scan finished successfully 14:44:48.875 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Compaq_Owner\Desktop\MBR.dat" 14:44:48.875 The log file has been saved successfully to "C:\Documents and Settings\Compaq_Owner\Desktop\aswMBR.txt" Quote
etavares Posted September 12, 2011 Posted September 12, 2011 Hello, shnos. First I need to warn you about IOBit Advanced System Care. It is questionable at best, and as you can see below...IOBit steals others others work. Registry Cleaners aren't needed. They don't improve system speed and they can cause unintentional side effects like unbootable machines since they modify the registry without backing it up first (and in a way you can restore if you computer doesn't boot!) Please read about it here. Before I can help you, please uninstall IOBit Advanced System Care 4 via Add/Remove Programs. There's also a LOT of programs missing that shouldn't be which is interesting. Do you have Extras.txt from the OTL scan? It should be saved in the same directory you ran OTL from. Please post that log as well and reply back to confirm you removed IOBit before we go any furhter. etavares Quote etavares is a member of:Alliance of Security Analysis ProfessionalsUnified Network of Instructors and Trained Eliminators
shnos Posted September 12, 2011 Author Posted September 12, 2011 Hi etavares I have uninstalled advance system care I will now post the log from extras Quote
shnos Posted September 12, 2011 Author Posted September 12, 2011 OTL Extras logfile created on: 11/09/2011 14:17:52 - Run 1 OTL by OldTimer - Version 3.2.27.0 Folder = C:\Documents and Settings\Compaq_Owner\Desktop Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy 958.48 Mb Total Physical Memory | 388.00 Mb Available Physical Memory | 40.48% Memory free 2.26 Gb Paging File | 1.70 Gb Available in Paging File | 75.35% Paging File free Paging file location(s): C:\pagefile.sys 1440 2880 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 68.90 Gb Total Space | 32.10 Gb Free Space | 46.58% Space Free | Partition Type: NTFS Drive D: | 5.61 Gb Total Space | 0.58 Gb Free Space | 10.36% Space Free | Partition Type: FAT32 Computer Name: YOUR-C94F920E24 | User Name: Compaq_Owner | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [HKEY_USERS\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Classes\<extension>] .exe [@ = exefile] -- Reg Error: Key error. File not found .html [@ = ChromeHTML] -- Reg Error: Key error. File not found ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- "C:\Program Files\File Type Assistant\tsassist.exe" "%1" (Trusted Software ApS) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] "DisableMonitoring" = 1 ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "14393:TCP" = 14393:TCP:*:Enabled:BitComet 14393 TCP "14393:UDP" = 14393:UDP:*:Enabled:BitComet 14393 UDP "16811:TCP" = 16811:TCP:*:Enabled:bit torrent "5432:TCP" = 5432:TCP:*:Enabled:postgres "86:TCP" = 86:TCP:*:Enabled:BroadCam Video Streaming Server Web Server "1935:TCP" = 1935:TCP:*:Enabled:BroadCam Video Streaming Server Flash Video Server "4100:UDP" = 4100:UDP:*:Enabled:uPNP Router Control Port "5985:TCP" = 5985:TCP:*:Disabled:Windows Remote Management "80:TCP" = 80:TCP:*:Disabled:Windows Remote Management - Compatibility Mode (HTTP-In) "1038:TCP" = 1038:TCP:*:Enabled:Akamai NetSession Interface "5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe" = C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe:*:Enabled:CyberLink PowerCinema -- (CyberLink Corp.) "C:\Program Files\CyberLink\PowerCinema\PCMService.exe" = C:\Program Files\CyberLink\PowerCinema\PCMService.exe:*:Enabled:CyberLink PowerCinema Resident Program -- (CyberLink Corp.) "C:\Program Files\Messenger\msmsgs.exe" = C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger "C:\Documents and Settings\Compaq_Owner\Application Data\SopCast\adv\SopAdver.exe" = C:\Documents and Settings\Compaq_Owner\Application Data\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (http://www.sopcast.com) "C:\Program Files\Common Files\aol\acs\AOLDial.exe" = C:\Program Files\Common Files\aol\acs\AOLDial.exe:*:Enabled:AOL Connectivity Service Dialler -- (AOL LLC) "C:\Program Files\Common Files\aol\acs\AOLacsd.exe" = C:\Program Files\Common Files\aol\acs\AOLacsd.exe:*:Enabled:AOL Connectivity Services -- (AOL LLC) "C:\Program Files\AOL 9.0 VR\waol.exe" = C:\Program Files\AOL 9.0 VR\waol.exe:*:Enabled:AOL -- (AOL, LLC.) "C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe" = C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe:*:Enabled:AOL TopSpeed -- (AOL LLC) "C:\Program Files\Common Files\aol\Loader\aolload.exe" = C:\Program Files\Common Files\aol\Loader\aolload.exe:*:Enabled:AOL Loader -- (AOL LLC) "C:\Program Files\Common Files\aol\System Information\sinf.exe" = C:\Program Files\Common Files\aol\System Information\sinf.exe:*:Enabled:AOL System Information -- (AOL LLC) "C:\Program Files\Common Files\aol\1229426616\ee\aolsoftware.exe" = C:\Program Files\Common Files\aol\1229426616\ee\aolsoftware.exe:*:Enabled:AOL Shared Components -- (America Online, Inc.) "C:\Program Files\InCode Solutions\RemoveIT Pro v4 - SE\removeit.exe" = C:\Program Files\InCode Solutions\RemoveIT Pro v4 - SE\removeit.exe:*:Disabled:removeit -- () "C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Disabled:Firefox -- (Mozilla Corporation) "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.) "C:\WINDOWS\system32\ZoneLabs\vsmon.exe" = C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:Enabled:vsmon -- (Check Point Software Technologies LTD) "C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal) "C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal) "C:\Program Files\iWin Games\iWinGames.exe" = C:\Program Files\iWin Games\iWinGames.exe:*:Enabled:iWin Games application. -- (iWin Inc.) "C:\Program Files\iWin Games\WebUpdater.exe" = C:\Program Files\iWin Games\WebUpdater.exe:*:Enabled:iWin Games updater. -- () ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware "{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour "{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic RecordNow Data "{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}" = HiJackThis "{0A65A3BD-54B5-4d0d-B084-7688507813F5}" = SlideShow "{1341D838-719C-4A05-B50F-49420CA1B4BB}" = HP Boot Optimizer "{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{1BD07DF4-FB06-41BA-B896-B2DA59000C96}" = Windows Live Toolbar "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD Plus "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress "{25F6C900-C138-4888-A56C-91D3D063023A}" = HP Update "{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = PowerCinema "{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java 6 Update 24 "{2CCBABCB-6427-4A55-B091-49864623C43F}" = "{2F58D60D-2BFD-4467-9B4D-64E7355C329D}" = Sonic_PrimoSDK "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{33BF0960-DBA3-4187-B6CC-C969FCFA2D25}" = SkinsHP1 "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{36D620AD-EEBA-4973-BA86-0C9AE6396620}" = OptionalContentQFolder "{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}" = Microsoft Works "{41E776A5-9B12-416D-9A12-B4F7B044EBED}" = CP_Package_Basic1 "{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm "{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP DVD Play 2.1 "{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{53EE9E42-CECB-4C92-BF76-9CA65DAF8F1C}" = FullDPAppQFolder "{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client "{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime "{5CFD7508-7774-48FE-8280-7A3C0AE71755}" = Internet Services "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053 "{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail "{65C93C70-4ED0-4D37-A179-64ABA9AE0641}" = "{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler "{6696D9A4-28A8-4F5A-8E9A-2E8974C8C39C}" = RandMap "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver "{82081779-4175-4666-A457-AB711CD37EF0}" = cp_LightScribeConfig "{829DAAD6-BB11-4BB7-921B-07FFB703F944}" = CP_Package_Variety3 "{82E55892-6FFD-403F-AA97-D726846768AA}" = CP_AtenaShokunin1Config "{866A0078-DEA7-4348-9C9A-999AF2991EAA}" = SlideShowMusic "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 "{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo Layers Runtime 1.10.01 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A534F71-3202-4464-A422-B767295E67B9}" = CP_Package_Variety2 "{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86) "{8ADC27DB-E2C8-446C-A576-166C05C2DD24}" = "{8CE4E6E9-9D55-43FB-9DDB-688C976BFC05}" = Unload "{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update "{93E5A317-24EC-4744-812C-16FECFE86E6A}" = CP_Package_Variety1 "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A29800BA-0BF1-4E63-9F31-DF05A87F4104}" = InstantShareDevices "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AA9768AA-FF0B-4C66-A085-31E934F77841}" = Apple Mobile Device Support "{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}" = Windows 7 Upgrade Advisor "{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder "{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic RecordNow Audio "{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution "{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.5 "{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic RecordNow Copy "{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR "{B2157760-AA3C-4E2E-BFE6-D20BC52495D9}" = cp_PosterPrintConfig "{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger "{B6286A44-7505-471A-A72B-04EC2DB2F442}" = CueTour "{B69CFE29-FD03-4E0A-87A7-6ED97F98E5B3}" = CP_Panorama1Config "{B823632F-3B72-4514-8861-B961CE263224}" = PostgreSQL 8.3 "{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86) "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C1C6767D-B395-43CB-BF99-051B58B86DA6}" = PhotoGallery "{C3FAA091-B278-44A7-BF48-190811C5F9F7}" = cp_UpdateProjectsConfig "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D084B1A9-153B-409D-AEBF-C40FCEF925EA}" = TalkTalk Assist & Go "{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser "{D92FF8EB-BD77-40AE-B68B-A6BFC6F8661D}" = Windows Live Family Safety "{DA898F5C-4C85-4CF4-825B-E05D07DC39DD}" = BT Broadband Support Tools "{DAB5C521-80B2-48C3-B0DA-326A1B331F55}" = GoToAssist Corporate "{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp "{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call "{ED2C557E-9C18-41FF-B58E-A05EEF0B3B5F}" = CP_CalendarTemplates1 "{EE39FFBD-544E-49E4-A999-6819828EAE91}" = Windows Live Photo Gallery "{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio "{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729) "{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01 "{FB15E224-67C3-491F-9F5C-F257BC418412}" = Destinations "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0) "8Baller" = 8Baller 2.1 "AddressBook" = "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Advanced SystemCare 4_is1" = Advanced SystemCare 4 "Age of Empires Gold 1.0" = Microsoft Age of Empires Gold "Akamai" = Akamai NetSession Interface "AOL Uninstaller" = AOL Uninstaller (Choose which Products to Remove) "AudioPlugin.dll" = "Betfair Poker JPC_is1" = Betfair Poker JPC 1.0.0 "BT Broadband Desktop Help" = BT Broadband Desktop Help "CCleaner" = CCleaner "Connection Manager" = "CopyNow.dll" = "DataPlugin.dll" = "DirectAnimation" = "DirectDrawEx" = "DivX Setup.divx.com" = DivX Setup "DTD Poker" = DTD Poker "DXM_Runtime" = "Fontcore" = "Foxit Reader" = Foxit Reader "Game Booster_is1" = Game Booster 3 "GoToAssist" = GoToAssist Corporate "HP Imaging Device Functions" = HP Imaging Device Functions 7.0 "HP Photo & Imaging" = HP Photosmart Premier Software 6.5 "ICW" = "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs "IE40" = "IE4Data" = "IE5BAKEX" = "ie7" = Windows Internet Explorer 7 "ie8" = Windows Internet Explorer 8 "IEData" = "InstallShield Uninstall Information" = "InstallShield_{5CFD7508-7774-48FE-8280-7A3C0AE71755}" = Internet Services "InstallShield_{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = "InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio "IObit Malware Fighter_is1" = IObit Malware Fighter "iWinArcade" = iWin Games (remove only) "jZip" = jZip "ladbrokes (Poker)" = Ladbrokes Poker "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.1.1800 "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft Interactive Training" = "Microsoft Security Client" = Microsoft Security Essentials "MobileOptionPack" = "Mozilla Firefox 4.0.1 (x86 en-US)" = Mozilla Firefox 4.0.1 (x86 en-US) "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "MSI30a-KB884016" = "MSI30-Beta1" = "MSI30-Beta2" = "MSI30-KB884016" = "MSI30-RC1" = "MSI30-RC2" = "MSI31-Beta" = "MSI31-RC1" = "My.Freeze.com Toolbar" = My.Freeze.com Toolbar "NetMeeting" = "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs "NVIDIA Drivers" = NVIDIA Drivers "OutlookExpress" = "PCHealth" = "PokerStars" = PokerStars "Pop-Up Stopper Free Edition" = Pop-Up Stopper Free Edition "Prism" = Prism Video File Converter "Protected Folder_is1" = Protected Folder "Python 2.2.3" = Python 2.2.3 "pywin32-py2.2" = Python 2.2 pywin32 extensions (build 203) "Quick Zip_is1" = Quick Zip 4.60.019 "RemoveIT Pro v7 (Trial)" = RemoveIT Pro v7 (Trial) "SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software "SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set "Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software "SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software "SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software "SchedulingAgent" = "Shockwave" = "SpaceMonger" = "SystemRequirementsLab" = System Requirements Lab "Trusted Software Assistant_is1" = File Type Assistant "Veetle TV" = Veetle TV 0.9.18 "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Windows Media Player 11 "Windows XP Service Pack" = Windows XP Service Pack 3 "WinLiveSuite_Wave3" = Windows Live Essentials "Wisdom-soft Set up ASR 3.1 Free" = Wisdom-soft Set up ASR 3.1 Free "WMCSetup" = "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "Wordscape Online Party" = Wordscape Online Party (remove only) "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 "Yahoo! Companion" = Yahoo! Toolbar "Yahoo! Messenger" = Yahoo! Messenger "Yahoo! Search Defender" = Yahoo! Search Protection "Yahoo! Software Update" = Yahoo! Software Update "ZoneAlarm" = ZoneAlarm ========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-2226935652-1042370167-1948720806-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "BitTorrent DNA" = DNA "G2GPoker" = G2GPoker "Google Chrome" = Google Chrome ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 05/09/2011 06:24:25 | Computer Name = YOUR-C94F920E24 | Source = ESENT | ID = 455 Description = wlmail (1456) WindowsLiveMail3: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Microsoft\Windows Live Mail\edb.log. Error - 05/09/2011 06:24:41 | Computer Name = YOUR-C94F920E24 | Source = ESENT | ID = 455 Description = wlmail (3608) WindowsLiveMail1: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Microsoft\Windows Live Mail\edb.log. Error - 05/09/2011 06:24:42 | Computer Name = YOUR-C94F920E24 | Source = ESENT | ID = 455 Description = wlmail (3608) WindowsLiveMail3: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Microsoft\Windows Live Mail\edb.log. Error - 05/09/2011 06:41:27 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013 Description = Product: MSN Messenger 6.1 -- Your computer has a newer version of MSN Messenger than the one you are trying to install. To install an older version, first remove the current version (click Start, Settings, Control Panel, Add or Remove, MSN Messenger), and then run this Set Up again. Error - 05/09/2011 06:41:40 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013 Description = Product: MSN Messenger 6.1 -- Your computer has a newer version of MSN Messenger than the one you are trying to install. To install an older version, first remove the current version (click Start, Settings, Control Panel, Add or Remove, MSN Messenger), and then run this Set Up again. Error - 05/09/2011 07:16:01 | Computer Name = YOUR-C94F920E24 | Source = .NET Runtime Optimization Service | ID = 1101 Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Failed to compile: C:\Program Files\Windows Live\Writer\WindowsLiveWriter.exe . Error code = 0x80131047 Error - 05/09/2011 08:24:54 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013 Description = Product: MSN Messenger 7.0 -- Your computer has a newer version of MSN Messenger than the one you are trying to install. To install an older version, first remove the current version (click Start, Settings, Control Panel, Add or Remove, MSN Messenger), and then run this Set Up again. Error - 05/09/2011 08:29:15 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013 Description = Product: MSN Messenger 7.0 -- Your computer has a newer version of MSN Messenger than the one you are trying to install. To install an older version, first remove the current version (click Start, Settings, Control Panel, Add or Remove, MSN Messenger), and then run this Set Up again. Error - 10/09/2011 04:18:05 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 11316 Description = Product: TalkTalk Assist & Go -- Error 1316. A network error occurred while attempting to read from the file: C:\WINDOWS\Installer\WISD084B1A9153B409DAEBFC40FCEF925EA_4_0_28.MSI Error - 10/09/2011 04:39:30 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013 Description = Product: MSN Messenger 6.1 -- Your computer has a newer version of MSN Messenger than the one you are trying to install. To install an older version, first remove the current version (click Start, Settings, Control Panel, Add or Remove, MSN Messenger), and then run this Set Up again. [ System Events ] Error - 11/09/2011 06:11:23 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7038 Description = The pgsql-8.3 service was unable to log on as .\postgres with the currently configured password due to the following error: %%1326 To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). Error - 11/09/2011 06:11:23 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7000 Description = The PostgreSQL Database Server 8.3 service failed to start due to the following error: %%1069 Error - 11/09/2011 06:11:23 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7001 Description = The Windows Media Player Network Sharing Service service depends on the Universal Plug and Play Device Host service which failed to start because of the following error: %%1058 Error - 11/09/2011 06:11:25 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7026 Description = The following boot-start or system-start driver(s) failed to load: AmdK8 ftsata2 Error - 11/09/2011 06:11:38 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7001 Description = The Windows Media Player Network Sharing Service service depends on the Universal Plug and Play Device Host service which failed to start because of the following error: %%1058 Error - 11/09/2011 09:14:15 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7038 Description = The pgsql-8.3 service was unable to log on as .\postgres with the currently configured password due to the following error: %%1326 To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). Error - 11/09/2011 09:14:15 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7000 Description = The PostgreSQL Database Server 8.3 service failed to start due to the following error: %%1069 Error - 11/09/2011 09:14:15 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7001 Description = The Windows Media Player Network Sharing Service service depends on the Universal Plug and Play Device Host service which failed to start because of the following error: %%1058 Error - 11/09/2011 09:14:17 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7026 Description = The following boot-start or system-start driver(s) failed to load: AmdK8 ftsata2 Error - 11/09/2011 09:15:38 | Computer Name = YOUR-C94F920E24 | Source = Service Control Manager | ID = 7001 Description = The Windows Media Player Network Sharing Service service depends on the Universal Plug and Play Device Host service which failed to start because of the following error: %%1058 < End of report > Quote
RandyL Posted September 13, 2011 Posted September 13, 2011 Hi shnos. What happened to your Compaq recovery disks? From what I'm seeing a complete reinstallation is in order. What is the model and number of the Compaq? Quote We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs.Get help with computer problems. Join Free PC Help here Donations are welcome. Read Here
shnos Posted September 13, 2011 Author Posted September 13, 2011 hi Randy. How do I find that out. also my mum has a vista disc can i format with that? Quote
RandyL Posted September 13, 2011 Posted September 13, 2011 You need the compaq XP recovery disk that came with your computer or the one you made. What happened to your Compaq recovery disks? It should be plastered all over your computer. For instance Compaq-Presario-5000 or similar. Quote We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs.Get help with computer problems. Join Free PC Help here Donations are welcome. Read Here
KenB Posted September 13, 2011 Posted September 13, 2011 my mum has a vista disc can i format with that? If the Vista Operating System is still on your mum's computer then the answer is no. One disk - one installation. Also - if the disk is an OEM version of Vista ( it will say on the disk ) then this is tied to the original motherboard. Quote There is an email going around offering processed pork - gelatin - and salt in a can ......this is simply SPAM !! MiniToolBoxNetwork TestWireless Test
KenB Posted September 14, 2011 Posted September 14, 2011 Error - 10/09/2011 04:39:30 | Computer Name = YOUR-C94F920E24 | Source = MsiInstaller | ID = 1013 Description = Product: MSN Messenger 6.1 -- Your computer has a newer version of MSN Messenger than the one you are trying to install. This error message from a few days ago mentions MSN Messenger 6.1 It implies that you were trying to install an older version of messenger ( 6.1 ) Take a look here: http://www.filehippo.com/download_msn_messenger/ Try installing the most recent version. (Right side of screen) If your system is running OK then you need do nothing more. Quote There is an email going around offering processed pork - gelatin - and salt in a can ......this is simply SPAM !! MiniToolBoxNetwork TestWireless Test
shnos Posted September 15, 2011 Author Posted September 15, 2011 Thats the problem i cannot download the new one it say's it is already on my pc. kev I don't know you buyt I trust you would you take over my pc and have a look Quote
RandyL Posted September 15, 2011 Posted September 15, 2011 I'm not surprised given the amount of corruption I see on your computer. However since you don't want to fix all your corruption issues by reinstalling Windows look at this link. http://windowslivehelp.com/solution.aspx?solutionid=64db5c80-85e4-49fe-bf07-cb08ffc5dd53 If steps 1 or two don't work try step 3. Note the downloadable exe file at the bottom if the local copy is corrupted. Quote We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs.Get help with computer problems. Join Free PC Help here Donations are welcome. Read Here
shnos Posted September 15, 2011 Author Posted September 15, 2011 Randy i do want tp fix it I just dont know how and i dont have a disc Quote
RandyL Posted September 15, 2011 Posted September 15, 2011 Try the link I suggested please. Quote We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs.Get help with computer problems. Join Free PC Help here Donations are welcome. Read Here
Plastic Nev Posted September 15, 2011 Posted September 15, 2011 OK, you really do need to get that system sorted and there is only one reasonable way forward, as we now know it is a Compaq machine, you can try sending them either a letter or E mail asking if there is a possibility of them sending a replacement recovery disk. It may cost a small sum, but I doubt it would be the same as the full cost of a full XP disk. You will need to send all details, model name and number, and possibly approximate year of manufacture. If you can obtain a disk by that method, remember that it will delete everything you have, so if you have an external hard drive, make sure everything is copied or backed up to that, if no drive then a large number of DVD or CD disks will be needed. Nev. Quote Need help with your computer problems? Then why not join Free PC Help. Register here. If Free PC Help has helped you then please consider a donation. Click here We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs. -------------------------------------------------------------------- I have installed Windows, now how do I install the curtains? 😄
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.