Jump to content

hijack log for my 2nd pc


Recommended Posts

I recently posted hijack log for one pc this is my other and last pc i just want confirm the usb virus never got here.

OTL logfile created on: 5/12/2010 11:21:17 AM - Run 1

OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\tharnea\Desktop

Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 593.00 Mb Available Physical Memory | 58.00% Memory free

1.00 Gb Paging File | 1.00 Gb Available in Paging File | 65.00% Paging File free

Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 37.26 Gb Total Space | 22.44 Gb Free Space | 60.23% Space Free | Partition Type: NTFS

D: Drive not present or media not loaded

Drive E: | 7.50 Gb Total Space | 7.45 Gb Free Space | 99.40% Space Free | Partition Type: FAT32

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: HOME-33B6B25337

Current User Name: tharnea

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: On

Skip Microsoft Files: On

File Age = 90 Days

Output = Standard

Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/05/12 11:18:49 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tharnea\Desktop\OTL.exe

PRC - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

PRC - [2010/04/29 15:39:32 | 000,437,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

PRC - [2010/04/01 13:41:10 | 000,405,672 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe

PRC - [2010/04/01 13:32:36 | 000,267,432 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe

PRC - [2010/04/01 13:31:02 | 000,536,232 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe

PRC - [2010/03/30 12:39:29 | 000,337,064 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avmailc.exe

PRC - [2010/03/02 11:27:06 | 000,282,792 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

PRC - [2010/02/24 10:26:52 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe

PRC - [2010/01/22 09:56:24 | 000,112,592 | ---- | M] (Threat Expert Ltd.) -- C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe

PRC - [2010/01/14 22:09:40 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

PRC - [2009/05/26 22:57:08 | 000,411,108 | ---- | M] (Old McDonald's Farm) -- C:\Program Files\Autorun Eater\billy.exe

PRC - [2009/05/26 22:54:10 | 000,549,400 | ---- | M] (Old McDonald's Farm) -- C:\Program Files\Autorun Eater\oldmcdonald.exe

PRC - [2009/05/19 12:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

PRC - [2009/02/06 19:21:00 | 000,224,632 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Toolbar\wltuser.exe

PRC - [2008/01/29 17:38:31 | 000,583,048 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe

PRC - [2007/06/13 03:23:07 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

========== Modules (SafeList) ==========

MOD - [2010/05/12 11:18:49 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tharnea\Desktop\OTL.exe

MOD - [2006/08/25 08:45:55 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

MOD - [2004/08/04 03:00:00 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (LiveUpdate Notice Ex)

SRV - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)

SRV - [2010/04/01 13:41:10 | 000,405,672 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE -- (AntiVirWebService)

SRV - [2010/04/01 13:32:36 | 000,267,432 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)

SRV - [2010/04/01 13:31:02 | 000,536,232 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe -- (AntiVirFirewallService)

SRV - [2010/03/30 12:39:29 | 000,337,064 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avmailc.exe -- (AntiVirMailService)

SRV - [2010/03/15 11:50:36 | 001,142,224 | ---- | M] (PC Tools) [On_Demand | Stopped] -- C:\Program Files\Spyware Doctor\pctsSvc.exe -- (sdCoreService)

SRV - [2010/03/11 11:09:22 | 000,366,840 | ---- | M] (PC Tools) [On_Demand | Stopped] -- C:\Program Files\Spyware Doctor\pctsAuxs.exe -- (sdAuxService)

SRV - [2010/02/24 10:26:52 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)

SRV - [2010/01/22 09:56:24 | 000,112,592 | ---- | M] (Threat Expert Ltd.) [Auto | Running] -- C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe -- (Browser Defender Update Service)

SRV - [2009/08/05 23:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)

SRV - [2009/05/19 12:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)

SRV - [2008/01/29 17:38:31 | 000,583,048 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)

========== Driver Services (SafeList) ==========

DRV - [2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)

DRV - [2010/03/29 10:06:14 | 000,218,592 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\PCTCore.sys -- (PCTCore)

DRV - [2010/03/01 10:04:25 | 000,124,784 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)

DRV - [2010/02/18 10:51:53 | 000,102,856 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avfwot.sys -- (avfwot)

DRV - [2010/02/16 14:24:01 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)

DRV - [2010/02/15 15:23:50 | 000,079,432 | ---- | M] (Avira GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avfwim.sys -- (avfwim)

DRV - [2009/08/05 23:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)

DRV - [2009/05/11 12:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)

DRV - [2009/05/11 10:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)

DRV - [2008/08/21 23:49:58 | 000,008,320 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgpfl.sys -- (motccgpfl)

DRV - [2008/08/21 23:49:22 | 000,018,688 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgp.sys -- (motccgp)

DRV - [2008/03/10 08:11:25 | 000,123,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)

DRV - [2007/06/18 14:18:26 | 000,023,680 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motport.sys -- (motport)

DRV - [2007/06/18 14:18:26 | 000,023,680 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motmodem.sys -- (motmodem)

DRV - [2004/10/14 20:50:20 | 000,015,295 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BrScnUsb.sys -- (BrScnUsb)

DRV - [2004/09/17 10:02:54 | 000,732,928 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (senfilt)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.live.com/sphome.aspx

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.live.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?rd=1

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 44 B6 30 03 89 EF CA 01 [binary data]

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - HKLM\software\mozilla\Mozilla Firefox 2.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2008/11/08 09:20:47 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 2.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/11/08 11:54:24 | 000,000,000 | ---D | M]

[2009/11/08 11:55:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tharnea\Application Data\Mozilla\Extensions

[2009/11/08 11:55:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tharnea\Application Data\Mozilla\Extensions\mozswing@mozswing.org

[2009/11/05 20:02:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tharnea\Application Data\Mozilla\Firefox\Profiles\95tti2d9.default\extensions

[2009/11/05 20:02:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tharnea\Application Data\Mozilla\Firefox\Profiles\95tti2d9.default\extensions\ChoiceGuard@Microsoft

[2010/05/12 06:04:44 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions

[2008/05/27 11:00:00 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org

[2006/10/11 01:04:58 | 000,061,036 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jar50.dll

[2006/10/11 01:04:59 | 000,048,742 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jsd3250.dll

[2006/10/11 01:05:03 | 000,029,313 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\myspell.dll

[2006/10/11 01:05:03 | 000,041,082 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\spellchk.dll

[2006/10/11 01:04:58 | 000,166,510 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\xpinstal.dll

O1 HOSTS File: ([2010/05/12 07:02:26 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.

O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)

O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)

O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)

O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)

O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)

O3 - HKCU\..\Toolbar\WebBrowser: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)

O4 - HKLM..\Run: [Autorun Eater] C:\Program Files\Autorun Eater\oldmcdonald.exe (Old McDonald's Farm)

O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)

O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)

O4 - HKLM..\Run: [symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)

O4 - HKCU..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe File not found

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 181

O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH)

O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH)

O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH)

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://www.apple.com/qtactivex/qtplugin.cab (QuickTime Plugin Control)

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class)

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windowsupd...b?1051725549609 (WUWebControl Class)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.4.2_01)

O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flash...t/ultrashim.cab (Reg Error: Key error.)

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab (MSN Games - Installer)

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab (MessengerStatsClient Class)

O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Reg Error: Key error.)

O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_16)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_16)

O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} http://www.adobe.com/products/acrobat/nos/gp.cab (get_atlcom Class)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)

O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKCU Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)

O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp

O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2008/03/01 14:51:30 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found

NetSvcs: Ias - C:\WINDOWS\system32\ias [2008/03/01 14:50:48 | 000,000,000 | ---D | M]

NetSvcs: Iprip - File not found

NetSvcs: Irmon - File not found

NetSvcs: NWCWorkstation - File not found

NetSvcs: Nwsapagent - File not found

NetSvcs: WmdmPmSp - File not found

Unable to start service SrService!

========== Files/Folders - Created Within 90 Days ==========

[2010/05/12 11:18:48 | 000,570,880 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\tharnea\Desktop\OTL.exe

[2010/05/12 07:25:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tharnea\Local Settings\Application Data\Threat Expert

[2010/05/12 07:17:35 | 001,652,688 | ---- | C] (Threat Expert Ltd.) -- C:\WINDOWS\PCTBDCore.dll

[2010/05/12 07:17:35 | 000,165,840 | ---- | C] (Threat Expert Ltd.) -- C:\WINDOWS\PCTBDRes.dll

[2010/05/12 07:17:35 | 000,149,456 | ---- | C] (PC Tools) -- C:\WINDOWS\SGDetectionTool.dll

[2010/05/12 07:13:31 | 000,233,136 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctgntdi.sys

[2010/05/12 07:13:21 | 000,218,592 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTCore.sys

[2010/05/12 07:13:21 | 000,088,040 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTAppEvent.sys

[2010/05/12 07:13:11 | 000,063,360 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctplsg.sys

[2010/05/12 07:12:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools

[2010/05/12 07:12:44 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Doctor

[2010/05/12 07:12:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tharnea\Application Data\PC Tools

[2010/05/12 07:05:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tharnea\Application Data\Avira

[2010/05/12 07:04:04 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys

[2010/05/12 07:04:01 | 000,124,784 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys

[2010/05/12 07:04:01 | 000,102,856 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avfwot.sys

[2010/05/12 07:04:01 | 000,079,432 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avfwim.sys

[2010/05/12 07:04:01 | 000,060,936 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys

[2010/05/12 07:04:01 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys

[2010/05/12 07:04:01 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys

[2010/05/12 07:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Avira

[2010/05/12 07:04:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira

[2010/05/12 06:14:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\61D3AAE1D5214CD7939B37813DE8F955.TMP

[2010/05/12 06:14:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard

[2010/05/07 15:50:57 | 000,000,000 | ---D | C] -- C:\Program Files\Unlocker

[2010/05/06 08:04:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Autorun Eater

[2010/05/06 08:04:39 | 000,000,000 | ---D | C] -- C:\Program Files\Autorun Eater

[2010/05/06 06:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Tools

[2010/04/27 10:35:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\tharnea\Application Data\Malwarebytes

[2010/04/27 10:35:21 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2010/04/27 10:35:17 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2010/04/27 10:35:17 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2010/04/27 10:35:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes

[2010/04/24 17:10:32 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\tharnea\IECompatCache

[2010/04/24 17:09:32 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\tharnea\PrivacIE

[2010/04/24 17:07:29 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\tharnea\IETldCache

[2010/04/24 17:00:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates

[2010/04/24 16:59:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM

[2010/04/24 16:57:20 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8

[2010/04/02 16:41:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real

[2010/02/22 12:43:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss

[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[16 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]

[1 C:\Documents and Settings\tharnea\Desktop\*.tmp files -> C:\Documents and Settings\tharnea\Desktop\*.tmp -> ]

========== Files - Modified Within 90 Days ==========

[2010/05/12 11:18:49 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\tharnea\Desktop\OTL.exe

[2010/05/12 11:11:01 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2010/05/12 11:10:16 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2010/05/12 11:10:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2010/05/12 11:09:39 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\tharnea\NTUSER.DAT

[2010/05/12 11:09:39 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\tharnea\ntuser.ini

[2010/05/12 11:09:36 | 000,510,352 | -H-- | M] () -- C:\Documents and Settings\tharnea\Local Settings\Application Data\IconCache.db

[2010/05/12 07:04:43 | 000,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Avira AntiVir Control Center.lnk

[2010/05/12 07:03:08 | 000,508,956 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2010/05/12 07:03:08 | 000,432,688 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2010/05/12 07:03:08 | 000,067,660 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2010/05/10 17:56:47 | 000,090,112 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\ShakespeareEnglish.doc

[2010/05/09 17:36:04 | 000,131,584 | ---- | M] () -- C:\Documents and Settings\tharnea\Desktop\Student's answer sheet.doc

[2010/05/09 11:01:14 | 000,070,144 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\PART A English.doc

[2010/05/06 15:45:04 | 000,051,200 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Chapter6french.doc

[2010/05/06 14:32:10 | 000,019,968 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\citaianhistory.doc

[2010/05/06 14:16:13 | 000,036,118 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\dfsfdfs.docx

[2010/05/06 10:59:56 | 000,165,888 | ---- | M] () -- C:\Documents and Settings\tharnea\Desktop\Shake 2010.doc

[2010/05/06 09:37:59 | 000,000,595 | ---- | M] () -- C:\WINDOWS\win.ini

[2010/05/06 09:37:59 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini

[2010/05/06 09:37:59 | 000,000,211 | -HS- | M] () -- C:\boot.ini

[2010/05/05 18:32:32 | 000,019,968 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\QuizHistory[1].doc

[2010/05/05 14:38:37 | 000,029,696 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\QuizHistory.doc

[2010/05/04 17:33:58 | 000,051,712 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\GoodcopyHistoryOrtona.doc

[2010/05/04 17:26:30 | 000,028,160 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\tharsicharthistoty.doc

[2010/05/04 17:04:45 | 000,051,712 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\HistoryaddingOrtana.doc

[2010/04/29 18:02:12 | 000,029,184 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Essay for english birthorder.doc

[2010/04/29 16:28:08 | 000,052,224 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Chapter5 french.doc

[2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2010/04/27 18:09:46 | 000,149,504 | ---- | M] () -- C:\Documents and Settings\tharnea\Desktop\World War Two Pathfinder.doc

[2010/04/27 04:22:27 | 000,171,585 | ---- | M] () -- C:\Documents and Settings\tharnea\Desktop\ok.jpg

[2010/04/26 16:18:29 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\Biport

[2010/04/25 16:33:41 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2010/04/24 17:05:28 | 000,136,098 | ---- | M] () -- C:\2.JPG

[2010/04/24 17:04:10 | 000,134,829 | ---- | M] () -- C:\1.JPG

[2010/04/21 16:37:57 | 000,055,296 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\frenchchap4.doc

[2010/04/17 21:33:15 | 000,028,672 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Essay eng birthorder.doc

[2010/04/17 21:05:18 | 000,026,112 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Birth order essay.doc

[2010/04/11 19:38:18 | 000,044,032 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\French chater3.doc

[2010/04/08 14:29:32 | 000,063,360 | ---- | M] (PC Tools) -- C:\WINDOWS\System32\drivers\pctplsg.sys

[2010/04/01 19:24:28 | 000,025,600 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Goodcopyofreviewfrench'.doc

[2010/04/01 19:04:34 | 000,024,576 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\frenchaboutmyself.doc

[2010/04/01 18:52:49 | 000,027,136 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Frenchgoodcopyof raju.doc

[2010/04/01 17:02:02 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Frenchrajuen.doc

[2010/04/01 05:21:13 | 000,052,224 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\frenchchapter2.doc

[2010/03/31 19:41:11 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\englishreportman.doc

[2010/03/30 14:55:50 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Tharneafrench.doc

[2010/03/30 14:34:40 | 000,037,888 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\I believe in helping people and making other people.doc

[2010/03/29 16:29:37 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\report.doc

[2010/03/29 10:06:14 | 000,218,592 | ---- | M] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTCore.sys

[2010/03/29 04:52:02 | 000,000,410 | ---- | M] () -- C:\WINDOWS\BRWMARK.INI

[2010/03/29 04:52:02 | 000,000,034 | ---- | M] () -- C:\WINDOWS\System32\BD7020.DAT

[2010/03/29 04:43:02 | 000,102,912 | ---- | M] () -- C:\Documents and Settings\tharnea\Desktop\Speakeasy Assignment.doc

[2010/03/28 16:34:22 | 000,102,400 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Speakeasy Assignment.doc

[2010/03/27 08:38:33 | 000,035,840 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Birth Order Pathfinder.doc

[2010/03/26 15:14:04 | 000,038,400 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\tharnea resume2.doc

[2010/03/25 19:24:03 | 000,042,496 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\sdadsa.doc

[2010/03/25 15:42:15 | 000,035,328 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\resumeeeeeeeee.doc

[2010/03/22 14:22:06 | 000,037,888 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\essafriend.doc

[2010/03/14 18:01:20 | 000,035,328 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Historry.doc

[2010/03/01 19:18:16 | 000,032,256 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\Trenches Essay.doc

[2010/03/01 10:04:25 | 000,124,784 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys

[2010/02/27 21:12:36 | 000,041,984 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\frenccch.doc

[2010/02/27 10:19:13 | 000,031,232 | ---- | M] () -- C:\Documents and Settings\tharnea\My Documents\germs.doc

[2010/02/22 15:49:57 | 000,885,280 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat

[2010/02/22 15:49:57 | 000,084,020 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx

[2010/02/22 15:49:56 | 031,765,024 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat

[2010/02/22 15:49:56 | 000,426,476 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx

[2010/02/22 15:11:59 | 000,000,044 | ---- | M] () -- C:\Documents and Settings\tharnea\Desktop\ready_files.ini

[2010/02/18 10:51:53 | 000,102,856 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avfwot.sys

[2010/02/16 14:24:01 | 000,060,936 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys

[2010/02/15 15:23:50 | 000,079,432 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avfwim.sys

[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[16 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]

[1 C:\Documents and Settings\tharnea\Desktop\*.tmp files -> C:\Documents and Settings\tharnea\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/05/12 07:17:36 | 000,767,952 | ---- | C] () -- C:\WINDOWS\BDTSupport.dll

[2010/05/12 07:17:35 | 001,152,444 | ---- | C] () -- C:\WINDOWS\UDB.zip

[2010/05/12 07:17:35 | 000,000,882 | ---- | C] () -- C:\WINDOWS\RegSDImport.xml

[2010/05/12 07:17:35 | 000,000,879 | ---- | C] () -- C:\WINDOWS\RegISSImport.xml

[2010/05/12 07:17:35 | 000,000,131 | ---- | C] () -- C:\WINDOWS\IDB.zip

[2010/05/12 07:13:31 | 000,007,387 | ---- | C] () -- C:\WINDOWS\System32\drivers\pctgntdi.cat

[2010/05/12 07:13:21 | 000,007,412 | ---- | C] () -- C:\WINDOWS\System32\drivers\PCTAppEvent.cat

[2010/05/12 07:13:21 | 000,007,383 | ---- | C] () -- C:\WINDOWS\System32\drivers\pctcore.cat

[2010/05/12 07:13:12 | 000,007,383 | ---- | C] () -- C:\WINDOWS\System32\drivers\pctplsg.cat

[2010/05/12 07:04:43 | 000,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Avira AntiVir Control Center.lnk

[2010/05/10 17:55:37 | 000,090,112 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\ShakespeareEnglish.doc

[2010/05/09 17:40:17 | 000,165,888 | ---- | C] () -- C:\Documents and Settings\tharnea\Desktop\Shake 2010.doc

[2010/05/09 17:40:17 | 000,131,584 | ---- | C] () -- C:\Documents and Settings\tharnea\Desktop\Student's answer sheet.doc

[2010/05/09 11:00:46 | 000,070,144 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\PART A English.doc

[2010/05/06 14:32:09 | 000,019,968 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\citaianhistory.doc

[2010/05/06 14:16:12 | 000,036,118 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\dfsfdfs.docx

[2010/05/05 18:32:30 | 000,019,968 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\QuizHistory[1].doc

[2010/05/04 17:26:30 | 000,028,160 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\tharsicharthistoty.doc

[2010/05/04 17:20:46 | 000,051,712 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\GoodcopyHistoryOrtona.doc

[2010/05/04 17:18:29 | 000,029,696 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\QuizHistory.doc

[2010/05/04 15:22:45 | 000,051,712 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\HistoryaddingOrtana.doc

[2010/05/02 16:38:06 | 000,149,504 | ---- | C] () -- C:\Documents and Settings\tharnea\Desktop\World War Two Pathfinder.doc

[2010/05/01 08:54:23 | 000,051,200 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Chapter6french.doc

[2010/04/27 04:25:33 | 000,171,585 | ---- | C] () -- C:\Documents and Settings\tharnea\Desktop\ok.jpg

[2010/04/26 16:01:56 | 000,029,184 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Essay for english birthorder.doc

[2010/04/25 10:01:12 | 000,052,224 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Chapter5 french.doc

[2010/04/24 17:05:28 | 000,136,098 | ---- | C] () -- C:\2.JPG

[2010/04/24 17:04:09 | 000,134,829 | ---- | C] () -- C:\1.JPG

[2010/04/17 16:38:55 | 000,028,672 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Essay eng birthorder.doc

[2010/04/14 19:31:21 | 000,055,296 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\frenchchap4.doc

[2010/04/13 14:34:24 | 000,026,112 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Birth order essay.doc

[2010/04/05 11:14:22 | 000,044,032 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\French chater3.doc

[2010/04/01 19:04:43 | 000,025,600 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Goodcopyofreviewfrench'.doc

[2010/04/01 17:34:14 | 000,027,136 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Frenchgoodcopyof raju.doc

[2010/03/31 20:17:21 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\frenchaboutmyself.doc

[2010/03/31 19:51:23 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Frenchrajuen.doc

[2010/03/31 17:58:50 | 000,026,624 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\englishreportman.doc

[2010/03/31 16:07:27 | 000,052,224 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\frenchchapter2.doc

[2010/03/30 14:48:29 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Tharneafrench.doc

[2010/03/29 21:08:44 | 000,037,888 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\I believe in helping people and making other people.doc

[2010/03/29 15:26:49 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\report.doc

[2010/03/29 04:52:02 | 000,000,410 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI

[2010/03/29 04:52:02 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\BD7020.DAT

[2010/03/29 04:40:36 | 000,102,912 | ---- | C] () -- C:\Documents and Settings\tharnea\Desktop\Speakeasy Assignment.doc

[2010/03/28 11:57:28 | 000,102,400 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Speakeasy Assignment.doc

[2010/03/27 08:38:32 | 000,035,840 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Birth Order Pathfinder.doc

[2010/03/26 15:14:03 | 000,038,400 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\tharnea resume2.doc

[2010/03/25 18:59:38 | 000,042,496 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\sdadsa.doc

[2010/03/24 19:09:02 | 000,035,328 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\resumeeeeeeeee.doc

[2010/03/14 18:01:19 | 000,035,328 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Historry.doc

[2010/03/11 17:31:32 | 000,037,888 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\essafriend.doc

[2010/02/27 20:07:40 | 000,041,984 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\frenccch.doc

[2010/02/27 11:13:51 | 000,032,256 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\Trenches Essay.doc

[2010/02/27 09:25:45 | 000,031,232 | ---- | C] () -- C:\Documents and Settings\tharnea\My Documents\germs.doc

[2010/02/22 15:11:52 | 000,000,044 | ---- | C] () -- C:\Documents and Settings\tharnea\Desktop\ready_files.ini

[2010/01/03 13:00:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CorelDrw.INI

[2010/01/03 12:56:45 | 000,000,056 | RHS- | C] () -- C:\WINDOWS\System32\237743D9CD.sys

[2010/01/03 12:50:23 | 000,003,350 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys

[2008/04/27 17:14:39 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI

[2008/04/12 11:06:14 | 000,027,019 | ---- | C] () -- C:\WINDOWS\maxlink.ini

[2008/03/01 15:12:00 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\e1000msg.dll

[2003/04/30 10:49:24 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\YCRWin32.dll

[2002/03/04 10:16:34 | 000,110,592 | R--- | C] () -- C:\WINDOWS\System32\Jpeg32.dll

========== LOP Check ==========

[2010/05/06 08:04:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autorun Eater

[2009/08/26 16:50:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software

[2010/02/22 17:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Rogers Online Protection

[2008/04/12 11:05:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft

[2010/05/12 11:17:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP

[2009/11/08 16:44:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tharnea\Application Data\LimeWire

[2008/09/21 15:07:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tharnea\Application Data\Opera

[2010/02/22 17:53:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tharnea\Application Data\Rogers Online Protection

[2008/09/28 14:33:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\tharnea\Application Data\ScanSoft

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >

< MD5 for: AGP440.SYS >

[2004/08/04 03:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys

[2008/04/13 11:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\agp440.sys

< MD5 for: ATAPI.SYS >

[2004/08/04 03:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys

[2008/04/13 11:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\atapi.sys

[2004/08/04 03:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: EVENTLOG.DLL >

[2008/04/13 17:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\eventlog.dll

[2004/08/04 03:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\dllcache\eventlog.dll

[2004/08/04 03:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: IASTOR.SYS >

[2006/05/11 09:30:52 | 000,247,808 | ---- | M] (Intel Corporation) MD5=294110966CEDD127629C5BE48367C8CF -- C:\WINDOWS\dell\iastor\iastor.sys

< MD5 for: NETLOGON.DLL >

[2008/04/13 17:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\netlogon.dll

[2009/02/06 11:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\system32\dllcache\netlogon.dll

[2009/02/06 11:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\system32\netlogon.dll

[2004/08/04 03:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtUninstallKB968389$\netlogon.dll

< MD5 for: NVATABUS.SYS >

[2006/03/16 17:51:32 | 000,099,840 | ---- | M] (NVIDIA Corporation) MD5=B7FB72492B753930EC70A0F49D04F12F -- C:\WINDOWS\dell\nvraid\NvAtaBus.sys

< MD5 for: SCECLI.DLL >

[2004/08/04 03:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\dllcache\scecli.dll

[2004/08/04 03:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\scecli.dll

[2008/04/13 17:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\scecli.dll

< %systemroot%\*. /mp /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 185 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2

@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A8ADE5D8

< End of report >

OTL Extras logfile created on: 5/12/2010 11:21:17 AM - Run 1

OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\tharnea\Desktop

Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 593.00 Mb Available Physical Memory | 58.00% Memory free

1.00 Gb Paging File | 1.00 Gb Available in Paging File | 65.00% Paging File free

Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 37.26 Gb Total Space | 22.44 Gb Free Space | 60.23% Space Free | Partition Type: NTFS

D: Drive not present or media not loaded

Drive E: | 7.50 Gb Total Space | 7.45 Gb Free Space | 99.40% Space Free | Partition Type: FAT32

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: HOME-33B6B25337

Current User Name: tharnea

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: On

Skip Microsoft Files: On

File Age = 90 Days

Output = Standard

Quick Scan

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

exefile [open] -- "%1" %*

htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)

htmlfile [print] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusOverride" = 0

"FirewallOverride" = 0

"AntiVirusDisableNotify" = 0

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004

"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005

"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001

"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)

"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found

"C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe" = C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe:*:Enabled:Remote Assistance - Windows Messenger and Voice -- (Microsoft Corporation)

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)

"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{0DFB3DE8-65B9-44FF-AA0A-3BECC5A2BFD1}" = Adobe Flash Player 10 Plugin

"{139E303E-1050-497F-98B1-9AE87B15C463}" = Windows Live Family Safety

"{155C490A-CDDC-4C05-B5FF-633DE4784B85}" = Ready to Program with Java Technology

"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer

"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool

"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT

"{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2

"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java 6 Update 16

"{316CDA1E-4760-4772-94B0-0FFC56D85700}" = RPS CRT

"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java 6 Update 5

"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant

"{465DC07E-3390-401A-A190-6078D73AB4C6}" = CorelDRAW Graphics Suite 12

"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack

"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3

"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail

"{786C5747-1033-0000-B58E-000000000001}" = Adobe Stock Photos 1.0

"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials

"{81B3BEF9-5D97-4096-86E9-5B48A5BC32D0}" = Motorola Driver Installation 3.4.0

"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync

"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight

"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel® Extreme Graphics Driver

"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)

"{8EDBA74D-0686-4C99-BFDD-F894678E5B39}" = Adobe Common File Installer

"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12

"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007

"{90120000-0019-0409-0000-0000000FF1CE}_PUBLISHERR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007

"{90120000-001F-0409-0000-0000000FF1CE}_PUBLISHERR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007

"{90120000-001F-040C-0000-0000000FF1CE}_PUBLISHERR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007

"{90120000-001F-0C0A-0000-0000000FF1CE}_PUBLISHERR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007

"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007

"{90120000-006E-0409-0000-0000000FF1CE}_PUBLISHERR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007

"{90120000-0115-0409-0000-0000000FF1CE}_PUBLISHERR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{91120000-0019-0000-0000-0000000FF1CE}" = Microsoft Office Publisher 2007

"{91120000-0019-0000-0000-0000000FF1CE}_PUBLISHERR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{91120000-0019-0000-0000-0000000FF1CE}_PUBLISHERR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)

"{911B0409-6000-11D3-8CFE-0050048383C9}" = Microsoft Word 2002

"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting

"{958E2B23-6146-4A21-9532-9F59049E9B35}" = Motorola Phone Tools

"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar

"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

"{A17EABB6-D0C6-44E5-820C-72DC7F495064}" = PaperPort

"{A1B7B9B3-E1D2-41CA-9B4A-F18DC2710704}" = Microsoft Works 6.0

"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI

"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2

"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger

"{AC76BA86-7AD7-1033-7B44-A81200000003}" = Adobe Reader 8.1.2

"{B74D4E10-1033-0000-0000-000000000001}" = Adobe Bridge 1.0

"{BAD8CA9C-77C0-4663-B00B-A8D3B13C341B}" = Motorola Phone Tools

"{BD3DCAB0-3FE5-44FB-90DA-EFB0A2CD1387}" = Works Synchronization

"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)

"{BD65CAC7-6D63-4D56-BED0-B610281256DF}" = CorelDRAW Graphics Suite 12 Setup Files

"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2

"{C3A439E4-7303-491F-A678-CEA36A87D517}" = Microsoft Works Suite Add-in for Microsoft Word

"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1

"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery

"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)

"{DC19E750-988B-4005-A355-85EF66055EFE}" = Works Suite OS Pack

"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update

"{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0

"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform

"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX

"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]

"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard

"{F49FEF83-45CA-4CE8-8304-A7372BA07AA9}" = Motorola Phone Tools

"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call

"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX

"Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2

"Adobe Shockwave Player" = Adobe Shockwave Player

"Autorun Eater_is1" = Autorun Eater v2.4

"Avira AntiVir Desktop" = Avira Premium Security Suite

"Browser Defender_is1" = Browser Defender 2.0.6.15

"getPlus®_ocx" = getPlus®_ocx

"ie8" = Windows Internet Explorer 8

"LimeWire" = LimeWire 5.3.6

"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware

"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1

"Mozilla Firefox (2.0)" = Mozilla Firefox (2.0)

"PROSet" = Intel® PRO Network Adapters and Drivers

"PUBLISHERR" = Microsoft Office Publisher 2007

"RadialpointClientGateway_is1" = Rogers Servicepoint Agent 2.0.21

"RealPlayer 6.0" = RealPlayer

"Rogers Yahoo! Applications" = Rogers Yahoo! Applications

"Spyware Doctor" = Spyware Doctor 7.0

"Unlocker" = Unlocker 1.8.9

"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5

"WIC" = Windows Imaging Component

"Windows Media Format Runtime" = Windows Media Format 11 runtime

"WinLiveSuite_Wave3" = Windows Live Essentials

"WinRAR archiver" = WinRAR archiver

"WMFDist11" = Windows Media Format 11 runtime

"Works2002Setup" = Microsoft Works 2002 Setup Launcher

"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]

Error - 5/12/2010 9:45:11 AM | Computer Name = HOME-33B6B25337 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module flash10c.ocx, version 10.0.32.18, fault address 0x0000250e.

Error - 5/12/2010 9:46:05 AM | Computer Name = HOME-33B6B25337 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module flash10c.ocx, version 10.0.32.18, fault address 0x0000250e.

Error - 5/12/2010 9:47:38 AM | Computer Name = HOME-33B6B25337 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module unknown, version 0.0.0.0, fault address 0x04d80175.

Error - 5/12/2010 9:53:24 AM | Computer Name = HOME-33B6B25337 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module flash10c.ocx, version 10.0.32.18, fault address 0x00002511.

Error - 5/12/2010 9:53:32 AM | Computer Name = HOME-33B6B25337 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module flash10c.ocx, version 10.0.32.18, fault address 0x0000250e.

Error - 5/12/2010 9:53:46 AM | Computer Name = HOME-33B6B25337 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module flash10c.ocx, version 10.0.32.18, fault address 0x0000250e.

Error - 5/12/2010 9:54:11 AM | Computer Name = HOME-33B6B25337 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module flash10c.ocx, version 10.0.32.18, fault address 0x0000250e.

Error - 5/12/2010 9:54:25 AM | Computer Name = HOME-33B6B25337 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module flash10c.ocx, version 10.0.32.18, fault address 0x00002511.

Error - 5/12/2010 9:55:03 AM | Computer Name = HOME-33B6B25337 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module flash10c.ocx, version 10.0.32.18, fault address 0x0000250e.

Error - 5/12/2010 12:40:29 PM | Computer Name = HOME-33B6B25337 | Source = sdCoreService | ID = 0

Description =

[ System Events ]

Error - 5/12/2010 10:42:54 AM | Computer Name = HOME-33B6B25337 | Source = Service Control Manager | ID = 7034

Description = The PC Tools Security Service service terminated unexpectedly. It

has done this 1 time(s).

Error - 5/12/2010 12:41:09 PM | Computer Name = HOME-33B6B25337 | Source = Service Control Manager | ID = 7034

Description = The PC Tools Security Service service terminated unexpectedly. It

has done this 2 time(s).

Error - 5/12/2010 12:46:07 PM | Computer Name = HOME-33B6B25337 | Source = DCOM | ID = 10005

Description = DCOM got error "%1084" attempting to start the service EventSystem

with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 5/12/2010 12:47:10 PM | Computer Name = HOME-33B6B25337 | Source = Service Control Manager | ID = 7026

Description = The following boot-start or system-start driver(s) failed to load:

avgio avipbb Fips intelppm

Error - 5/12/2010 12:47:32 PM | Computer Name = HOME-33B6B25337 | Source = DCOM | ID = 10005

Description = DCOM got error "%1084" attempting to start the service StiSvc with

arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 5/12/2010 1:11:31 PM | Computer Name = HOME-33B6B25337 | Source = DCOM | ID = 10005

Description = DCOM got error "%1084" attempting to start the service StiSvc with

arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 5/12/2010 2:09:38 PM | Computer Name = HOME-33B6B25337 | Source = DCOM | ID = 10005

Description = DCOM got error "%1084" attempting to start the service EventSystem

with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 5/12/2010 2:12:12 PM | Computer Name = HOME-33B6B25337 | Source = Service Control Manager | ID = 7000

Description = The Security Services Driver (x86) service failed to start due to

the following error: %%2

Error - 5/12/2010 2:23:30 PM | Computer Name = HOME-33B6B25337 | Source = SRService | ID = 104

Description = The System Restore initialization process failed.

Error - 5/12/2010 2:23:31 PM | Computer Name = HOME-33B6B25337 | Source = Service Control Manager | ID = 7023

Description = The System Restore Service service terminated with the following error:

%%2

< End of report >

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.