Jump to content


Photo

My IE hangs intermittently


  • Please log in to reply
3 replies to this topic

#1 nubiwan

nubiwan

    Active Member

  • Active Members
  • 44 posts

Posted 18 November 2011 - 08:02 PM

Can someone review this: My PC is sluggish at times. I just cleared out a WINDOWS SECURITY VIRUS (I think), but might be remnants about. My drive is also pretty full, so I am thinking that is nto helping my cause. 400GB over 75% used. Anyway, here is my OTL. Malware bytes ran clean.

OTL logfile created on: 18/11/2011 11:13:17 AM - Run 3
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Tony\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

1.87 Gb Total Physical Memory | 0.85 Gb Available Physical Memory | 45.51% Memory free
3.99 Gb Paging File | 2.88 Gb Available in Paging File | 72.13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 366.35 Gb Total Space | 68.29 Gb Free Space | 18.64% Space Free | Partition Type: NTFS
Drive D: | 6.26 Gb Total Space | 0.88 Gb Free Space | 14.10% Space Free | Partition Type: NTFS
Drive E: | 2.53 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive J: | 279.47 Gb Total Space | 106.08 Gb Free Space | 37.96% Space Free | Partition Type: NTFS
Drive K: | 3.75 Gb Total Space | 2.93 Gb Free Space | 78.15% Space Free | Partition Type: FAT32

Computer Name: TONY-PC | User Name: Tony | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/11/18 11:09:23 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Tony\Desktop\OTL.exe
PRC - [2011/09/02 09:59:30 | 002,152,152 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2011/08/15 10:19:50 | 001,191,216 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
PRC - [2009/02/18 23:33:08 | 000,809,488 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2009/02/18 23:28:52 | 000,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2008/10/29 02:59:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/10/16 13:28:42 | 000,801,544 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\LU\LogitechUpdate.exe
PRC - [2008/10/16 13:28:28 | 000,300,296 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\LU\LuLnchr.exe
PRC - [2008/02/28 16:39:08 | 000,053,032 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe
PRC - [2008/02/28 16:38:58 | 001,440,552 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe
PRC - [2007/12/06 09:36:54 | 000,090,112 | ---- | M] () -- C:\Program Files\TeamViewer3\TeamViewer_Host.exe
PRC - [2007/07/03 14:08:01 | 000,554,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2007/04/20 07:03:02 | 000,411,168 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Maxtor\Schedule2\schedul2.exe
PRC - [2007/04/13 12:19:00 | 000,101,528 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe
PRC - [2007/01/09 21:59:32 | 000,108,648 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2006/11/09 07:27:52 | 003,784,704 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2006/11/02 09:05:35 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpcumi.exe
PRC - [2006/10/10 13:14:10 | 000,034,520 | ---- | M] (Hewlett Packard) -- C:\Program Files\HP Connections\6811507\Program\HP Connections.exe
PRC - [2006/09/20 13:35:16 | 000,046,736 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe


========== Modules (No Company Name) ==========

MOD - [2009/11/03 15:51:42 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2009/04/27 18:19:26 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2007/05/30 14:59:15 | 000,151,589 | ---- | M] () -- C:\Program Files\HP Connections\6811507\6.3.2.139-6811507\Program\bwfiles.dll
MOD - [2007/05/30 14:59:15 | 000,098,339 | ---- | M] () -- C:\Program Files\HP Connections\6811507\6.3.2.139-6811507\Program\FrExt.dll
MOD - [2007/05/30 14:59:15 | 000,061,496 | ---- | M] () -- C:\Program Files\HP Connections\6811507\6.3.2.139-6811507\Program\clntutil.dll
MOD - [2007/05/30 14:59:14 | 000,135,168 | ---- | M] () -- C:\Program Files\HP Connections\6811507\Program\HPClientExt.dll
MOD - [2007/05/22 09:59:22 | 000,128,512 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2006/11/07 14:18:10 | 000,009,376 | ---- | M] () -- c:\Program Files\Norton Internet Security\Norton AntiVirus\NAVShExt.loc


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (NMIndexingService)
SRV - [2011/09/02 09:59:30 | 002,152,152 | ---- | M] (Lavasoft Limited) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010/12/01 01:12:12 | 000,036,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\OpenVPN\bin\openvpnserv.exe -- (OpenVPNService)
SRV - [2009/02/18 23:30:20 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2008/02/28 16:39:08 | 000,053,032 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe -- (NeroRegInCDSrv)
SRV - [2008/02/28 16:38:58 | 001,440,552 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe -- (InCDsrvR)
SRV - [2008/01/19 04:08:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/12/06 09:36:54 | 000,090,112 | ---- | M] () [Auto | Running] -- C:\Program Files\TeamViewer3\TeamViewer_Host.exe -- (TeamViewer)
SRV - [2007/11/28 19:51:10 | 000,583,048 | ---- | M] (Symantec Corporation) [Auto | Stopped] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007/11/01 22:35:23 | 001,252,232 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2007/07/03 14:08:01 | 002,983,280 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE -- (LiveUpdate)
SRV - [2007/07/03 14:08:01 | 000,554,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
SRV - [2007/04/20 07:03:02 | 000,411,168 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Maxtor\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2007/04/13 12:19:00 | 000,101,528 | ---- | M] () [Auto | Running] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2007/02/20 14:11:28 | 000,815,104 | ---- | M] (Hauppauge Computer Works) [On_Demand | Stopped] -- C:\Program Files\WinTV\HCWTVServer.exe -- (HauppaugeTVServer)
SRV - [2007/01/09 21:59:32 | 000,108,648 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice Ex)
SRV - [2007/01/09 21:59:32 | 000,108,648 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - [2007/01/09 21:59:32 | 000,108,648 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2007/01/09 21:59:32 | 000,108,648 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2006/10/26 19:48:36 | 000,080,552 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Norton Internet Security\isPwdSvc.exe -- (ISPwdSvc)
SRV - [2006/10/13 10:59:12 | 000,049,296 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)
SRV - [2006/09/20 13:35:16 | 000,046,736 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe -- (SymAppCore)


========== Driver Services (SafeList) ==========

DRV - [2011/07/22 12:15:18 | 000,015,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Lavasoft\Ad-Aware\kernexplorer.sys -- (Lavasoft Kernexplorer)
DRV - [2010/12/01 01:12:14 | 000,026,112 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901.sys -- (tap0901)
DRV - [2010/08/12 08:45:20 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2008/12/18 22:43:48 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2008/12/18 22:43:40 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2008/12/18 22:43:06 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2008/05/08 04:05:18 | 000,266,752 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2008/05/08 04:03:18 | 000,980,992 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_DP.sys -- (HSF_DP)
DRV - [2008/02/28 16:38:58 | 000,040,360 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\Windows\System32\drivers\InCDRm.sys -- (incdrm)
DRV - [2008/02/28 16:38:48 | 000,128,424 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\Windows\System32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2008/02/28 16:38:48 | 000,038,952 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\Windows\System32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2007/10/18 06:36:54 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2007/09/06 12:21:18 | 000,180,272 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Symantec\Definitions\SymcData\idsdefs\20070906.002\IDSvix86.sys -- (IDSvix86)
DRV - [2007/08/30 04:30:00 | 000,395,312 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2007/08/30 04:30:00 | 000,112,688 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2007/07/17 04:30:00 | 000,865,904 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20070910.022\NAVEX15.SYS -- (NAVEX15)
DRV - [2007/07/17 04:30:00 | 000,081,232 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20070910.022\NAVENG.SYS -- (NAVENG)
DRV - [2007/07/07 17:29:47 | 000,392,320 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\timntr.sys -- (timounter)
DRV - [2007/07/07 17:29:47 | 000,032,768 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\Windows\System32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2007/07/07 17:29:44 | 000,120,992 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2007/07/07 13:04:53 | 000,115,000 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2007/07/06 20:15:00 | 007,568,832 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2007/05/04 01:29:10 | 001,065,384 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2007/04/18 15:30:16 | 000,366,080 | ---- | M] (Hauppauge Computer Works, Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hcw18bda.sys -- (hcw18bda)
DRV - [2007/03/27 16:11:42 | 000,276,792 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2007/03/27 16:11:42 | 000,247,608 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2007/03/27 16:11:42 | 000,025,400 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2006/10/24 09:10:22 | 000,185,744 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2006/10/24 09:10:22 | 000,144,784 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMFW.SYS -- (SYMFW)
DRV - [2006/10/24 09:10:22 | 000,038,928 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMIDS.SYS -- (SYMIDS)
DRV - [2006/10/24 09:10:22 | 000,037,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMNDISV.SYS -- (SYMNDISV)
DRV - [2006/10/24 09:10:22 | 000,026,384 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2006/10/24 09:10:22 | 000,011,792 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMDNS.SYS -- (SYMDNS)
DRV - [2006/10/06 09:56:16 | 000,406,672 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2005/12/12 12:57:00 | 000,019,072 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PS2.sys -- (Ps2)
DRV - [2005/01/31 09:13:22 | 000,163,328 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LV532AV.SYS -- (PID_0920) Logitech QuickCam Express(PID_0920)
DRV - [2005/01/31 09:12:46 | 000,022,016 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LVUSBSta.sys -- (LVUSBSta)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...a...&pf=desktop
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://toolbar.inbox...aspx?tbid=80142
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://toolbar.inbox...b...0142&lng=en

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.c...a...&tbid=60576
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ebay.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 2
IE - HKCU\..\URLSearchHook: {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}\InprocServer32 File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 216.49.160.27:80

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://en-US.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official"
FF - prefs.js..extensions.enabledItems: {e0204bd5-9d31-402b-a99d-a6aa8ffebdca}:1.2.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "http://toolbar.inbox.com/search/dispatcher.aspx?tp=sf&tbid=80142&language=en&qkw="
FF - prefs.js..network.proxy.http: "66.167.100.59"
FF - prefs.js..network.proxy.http_port: 6649

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.3088: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.11.3006: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@virtools.com/3DviaPlayer: C:\Program Files\Virtools\3D Life Player\npvirtools.dll (Dassault Syst?mes)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.24\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/11/13 22:55:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.24\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/11/13 22:55:50 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{9ADE2696-CCD4-4953-B248-0C5439FDCE22}: C:\Users\Tony\AppData\Local\{9ADE2696-CCD4-4953-B248-0C5439FDCE22}

[2009/03/16 00:24:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tony\AppData\Roaming\Mozilla\Extensions
[2011/11/15 00:05:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tony\AppData\Roaming\Mozilla\Firefox\Profiles\9n6ylkx7.default\extensions
[2011/11/06 10:13:10 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Tony\AppData\Roaming\Mozilla\Firefox\Profiles\9n6ylkx7.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/11/06 10:13:10 | 000,000,000 | ---D | M] (feedbackfox) -- C:\Users\Tony\AppData\Roaming\Mozilla\Firefox\Profiles\9n6ylkx7.default\extensions\{66626640-6461-6E69-656C-6DFC6E746572}
[2011/11/06 10:13:10 | 000,000,000 | ---D | M] (Torbutton) -- C:\Users\Tony\AppData\Roaming\Mozilla\Firefox\Profiles\9n6ylkx7.default\extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca}
[2011/01/23 23:12:56 | 000,002,292 | ---- | M] () -- C:\Users\Tony\AppData\Roaming\Mozilla\Firefox\Profiles\9n6ylkx7.default\searchplugins\inbox-search.xml
[2011/11/15 00:15:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/11/06 10:12:19 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2009/03/16 00:24:29 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org
[2011/02/18 20:44:10 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009/09/25 09:53:54 | 000,001,351 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\crawlersrch.xml

========== Chrome ==========


Hosts file not found
O2 - BHO: (Reg Error: Value error.) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBHO.dll (Symantec Corporation)
O2 - BHO: (IeCatch5 Class) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\Jccatch.dll (FlashGet)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Inbox Toolbar) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - C:\PROGRA~1\INBOXT~1\Inbox.dll File not found
O2 - BHO: (gFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll ()
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll File not found
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (&Inbox Toolbar) - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - C:\PROGRA~1\INBOXT~1\Inbox.dll File not found
O3 - HKLM\..\Toolbar: (FlashGet Bar) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files\FlashGet\fgiebar.dll (Amaze Soft)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (&Inbox Toolbar) - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - C:\PROGRA~1\INBOXT~1\Inbox.dll File not found
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" File not found
O4 - HKLM..\Run: [WPCUMI] C:\Windows\System32\wpcumi.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Launcher] C:\Windows\SMINST\Launcher.exe (soft thinks)
O4 - HKCU..\RunOnce: [Shockwave Updater] C:\Windows\System32\Adobe\SHOCKW~1\SWHELP~3.EXE -Update -1100465 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; GTB6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; InfoPath.2; .NET CLR 3.5.30729; .NET CLR 3.0.30618; OfficeLiveConnector.1.3; OfficeLivePatch.0.0)" -"http://www.nickjr.com/kids-games/little-bears-dress-up.html" File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data]
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm ()
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm ()
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll File not found
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000031 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000032 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000033 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000034 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000035 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000036 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000037 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O15 - HKCU\..Trusted Domains: ebay.com ([www] http in Trusted sites)
O16 - DPF: {00000130-9980-0010-8000-00AA00389B71} http://codecs.micros...86/ACELPACM.CAB (Reg Error: Key error.)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebo...toUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} http://www.musicnote...ad/mnviewer.cab (Musicnotes Viewer)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {27B05F9E-F6F4-11D3-BCB5-0050DA21A8D6} https://cado.eservic...88/nplbwmup.cab (LibertyNET Content Viewer)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebo...oUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} http://tools.ebayimg...l_v1-0-29-0.cab (EPUImageControl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} http://3dlifeplayer....r_installer.exe (Virtools WebPlayer Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 142.163.63.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{12258F8B-07F7-4E08-A3F3-FF222D253108}: DhcpNameServer = 216.131.94.5 216.131.95.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4C2E16D8-4803-4441-BE50-D11FEB0AF009}: DhcpNameServer = 192.168.2.1 142.163.63.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F7644CB4-F54F-4546-8E93-C447DDCD1EF8}: DhcpNameServer = 192.168.2.1 192.168.2.1
O18 - Protocol\Handler\inbox {37540F19-DD4C-478B-B2DF-C19281BCAF27} - C:\PROGRA~1\INBOXT~1\Inbox.dll File not found
O18 - Protocol\Handler\intu-qt2007 {026BF40D-BA05-467b-9F1F-AD0D7A3F5F11} - C:\Program Files\QuickTax 2007\ic2007pp.dll (Intuit Canada, a general partnership/une soci?t? en nom collectif.)
O18 - Protocol\Handler\intu-qt2008 {05E53CE9-66C8-4a9e-A99F-FDB7A8E7B596} - C:\Program Files\QuickTax 2008\ic2008pp.dll (Intuit Canada, a general partnership/une soci?t? en nom collectif.)
O18 - Protocol\Handler\intu-qt2009 {03947252-2355-4e9b-B446-8CCC75C43370} - C:\Program Files\QuickTax 2009\ic2009pp.dll (Intuit Canada, a general partnership/une soci?t? en nom collectif.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img18.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img18.jpg
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O30 - LSA: Authentication Packages - (relog_ap) -C:\Windows\System32\relog_ap.dll (Acronis)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/05/30 14:56:50 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011/11/06 09:09:54 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011/11/06 09:09:54 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011/11/06 09:10:02 | 000,000,000 | RHSD | M] - J:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011/11/06 09:10:04 | 000,000,000 | RHSD | M] - K:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/11/17 21:34:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2011/11/17 19:07:28 | 000,000,000 | ---D | C] -- C:\Users\Tony\Desktop\movies
[2011/11/06 22:31:47 | 009,852,544 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Tony\Desktop\mbam-setup-1.51.2.1300.exe
[2011/11/06 09:09:54 | 000,000,000 | RHSD | C] -- C:\autorun.inf
[2007/07/10 15:50:48 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Tony\AppData\Roaming\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2011/11/18 11:15:00 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{0467987F-EFE8-4315-97F1-248EA467D6CD}.job
[2011/11/18 11:09:45 | 000,879,656 | ---- | M] () -- C:\Users\Tony\Desktop\SecurityCheck.exe
[2011/11/18 11:09:23 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Tony\Desktop\OTL.exe
[2011/11/18 11:05:00 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2011/11/18 11:04:09 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Users\Tony\Desktop\TFC.exe
[2011/11/18 10:54:45 | 000,607,342 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/11/18 10:54:45 | 000,110,596 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/11/18 10:41:05 | 000,003,696 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/11/18 10:41:05 | 000,003,696 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/11/18 10:33:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/11/18 10:32:31 | 000,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{B9F9BA20-01EA-4216-A418-EEA2A5CC3021}.job
[2011/11/18 10:27:58 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/11/18 08:41:25 | 000,000,384 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2011/11/18 08:41:09 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/11/17 21:34:56 | 000,002,075 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2011/11/17 19:09:30 | 000,195,584 | ---- | M] () -- C:\Users\Tony\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/11/16 11:21:04 | 000,000,064 | ---- | M] () -- C:\Windows\System32\rp_stats.dat
[2011/11/16 11:21:04 | 000,000,044 | ---- | M] () -- C:\Windows\System32\rp_rules.dat
[2011/11/13 22:49:16 | 000,000,486 | ---- | M] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - Tony.job
[2011/11/12 17:34:17 | 000,001,973 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/11/06 22:32:19 | 000,000,482 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/11/06 08:56:30 | 000,000,680 | ---- | M] () -- C:\Users\Tony\AppData\Local\d3d9caps.dat
[2011/11/06 07:14:31 | 000,000,448 | ---- | M] () -- C:\ProgramData\6DSS92c31Apgjk
[2011/11/06 07:11:24 | 000,000,312 | ---- | M] () -- C:\ProgramData\~6DSS92c31Apgjk
[2011/11/06 07:05:04 | 000,000,216 | ---- | M] () -- C:\ProgramData\~6DSS92c31Apgjkr
[2011/11/06 07:04:46 | 000,000,635 | ---- | M] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\System Restore.lnk
[2011/11/05 02:09:17 | 218,598,904 | ---- | M] () -- C:\Windows\MEMORY.DMP

========== Files Created - No Company Name ==========

[2011/11/18 08:41:24 | 000,000,384 | ---- | C] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2011/11/17 21:34:56 | 000,002,075 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2011/11/06 22:29:37 | 000,002,181 | ---- | C] () -- C:\Users\Public\Desktop\SecurDisc Viewer.lnk
[2011/11/06 22:29:37 | 000,001,991 | ---- | C] () -- C:\Users\Public\Desktop\TaxFreeway 2007.lnk
[2011/11/06 22:29:37 | 000,001,870 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/11/06 22:29:37 | 000,001,854 | ---- | C] () -- C:\Users\Public\Desktop\Safari.lnk
[2011/11/06 22:29:37 | 000,001,775 | ---- | C] () -- C:\Users\Public\Desktop\QuickTax 2009.lnk
[2011/11/06 22:29:37 | 000,001,775 | ---- | C] () -- C:\Users\Public\Desktop\QuickTax 2008.lnk
[2011/11/06 22:29:37 | 000,001,775 | ---- | C] () -- C:\Users\Public\Desktop\QuickTax 2007.lnk
[2011/11/06 22:29:37 | 000,001,630 | ---- | C] () -- C:\Users\Public\Desktop\Windows Media Center.lnk
[2011/11/06 22:29:37 | 000,000,911 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 3.lnk
[2011/11/06 22:29:37 | 000,000,908 | ---- | C] () -- C:\Users\Public\Desktop\Wondershare DemoCreator.lnk
[2011/11/06 22:29:37 | 000,000,861 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2011/11/06 22:29:37 | 000,000,774 | ---- | C] () -- C:\Users\Public\Desktop\WinTV2000.lnk
[2011/11/06 22:29:37 | 000,000,762 | ---- | C] () -- C:\Users\Public\Desktop\WinTV.lnk
[2011/11/06 22:29:37 | 000,000,752 | ---- | C] () -- C:\Users\Public\Desktop\WinTV Radio.lnk
[2011/11/06 22:29:36 | 000,002,123 | ---- | C] () -- C:\Users\Public\Desktop\iP3500 series On-screen Manual.lnk
[2011/11/06 22:29:36 | 000,002,066 | ---- | C] () -- C:\Users\Public\Desktop\Norton Internet Security.lnk
[2011/11/06 22:29:36 | 000,001,991 | ---- | C] () -- C:\Users\Public\Desktop\My HP Games.lnk
[2011/11/06 22:29:36 | 000,001,979 | ---- | C] () -- C:\Users\Public\Desktop\eBay.lnk
[2011/11/06 22:29:36 | 000,001,973 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/11/06 22:29:36 | 000,001,965 | ---- | C] () -- C:\Users\Public\Desktop\HP Total Care Advisor.lnk
[2011/11/06 22:29:36 | 000,001,916 | ---- | C] () -- C:\Users\Public\Desktop\LightScribe.lnk
[2011/11/06 22:29:36 | 000,001,876 | ---- | C] () -- C:\Users\Public\Desktop\Easy-PhotoPrint EX.lnk
[2011/11/06 22:29:36 | 000,001,843 | ---- | C] () -- C:\Users\Public\Desktop\Easy Internet Services.lnk
[2011/11/06 22:29:36 | 000,001,823 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Mouse and Keyboard Settings.lnk
[2011/11/06 22:29:36 | 000,001,807 | ---- | C] () -- C:\Users\Public\Desktop\Internet Explorer.lnk
[2011/11/06 22:29:36 | 000,001,786 | ---- | C] () -- C:\Users\Public\Desktop\My Printer.lnk
[2011/11/06 22:29:36 | 000,001,666 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/11/06 22:29:36 | 000,001,073 | ---- | C] () -- C:\Users\Public\Desktop\Media Player Classic.lnk
[2011/11/06 22:29:36 | 000,000,936 | ---- | C] () -- C:\Users\Public\Desktop\Paint.NET.lnk
[2011/11/06 22:29:36 | 000,000,919 | ---- | C] () -- C:\Users\Public\Desktop\Maxtor?MaxBlast.lnk
[2011/11/06 22:29:36 | 000,000,482 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/11/06 22:29:35 | 000,001,822 | ---- | C] () -- C:\Users\Public\Desktop\Canon Solution Menu.lnk
[2011/11/06 22:29:35 | 000,001,009 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2011/11/06 22:29:35 | 000,000,869 | ---- | C] () -- C:\Users\Public\Desktop\AoA Audio Extractor.lnk
[2011/11/06 22:29:35 | 000,000,839 | ---- | C] () -- C:\Users\Public\Desktop\Auction Sentry.lnk
[2011/11/06 22:29:34 | 000,002,205 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\SecurDisc Viewer.lnk
[2011/11/06 22:29:34 | 000,001,957 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/11/06 22:29:34 | 000,001,854 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2011/11/06 22:29:34 | 000,001,783 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\DVD Decrypter.lnk
[2011/11/06 22:29:34 | 000,001,112 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\Coby Media Manager.lnk
[2011/11/06 22:29:34 | 000,001,101 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\WinX Free DVD Ripper.lnk
[2011/11/06 22:29:34 | 000,001,033 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\Ad-Aware.lnk
[2011/11/06 22:29:34 | 000,000,976 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\ConvertXtoDvd.lnk
[2011/11/06 22:29:34 | 000,000,945 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/11/06 22:29:34 | 000,000,940 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/11/06 22:29:34 | 000,000,940 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk
[2011/11/06 22:29:34 | 000,000,802 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\PPLive NetTV.lnk
[2011/11/06 22:29:34 | 000,000,258 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/11/06 22:29:34 | 000,000,240 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/11/06 22:29:27 | 000,001,835 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk
[2011/11/06 22:29:27 | 000,001,054 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Connections.lnk
[2011/11/06 22:29:19 | 000,001,977 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
[2011/11/06 22:29:19 | 000,001,950 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Photo Gallery.lnk
[2011/11/06 22:29:19 | 000,001,881 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2003.lnk
[2011/11/06 22:29:19 | 000,001,854 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
[2011/11/06 22:29:19 | 000,001,852 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Collaboration.lnk
[2011/11/06 22:29:19 | 000,001,830 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011/11/06 22:29:19 | 000,001,810 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 7.0.lnk
[2011/11/06 22:29:19 | 000,001,803 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011/11/06 22:29:19 | 000,001,789 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
[2011/11/06 22:29:19 | 000,001,770 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Calendar.lnk
[2011/11/06 22:29:19 | 000,001,768 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker.lnk
[2011/11/06 22:29:19 | 000,001,757 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Defender.lnk
[2011/11/06 22:29:19 | 000,001,743 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2011/11/06 22:29:19 | 000,001,703 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Contacts.lnk
[2011/11/06 22:29:19 | 000,001,630 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011/11/06 22:29:19 | 000,001,243 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
[2011/11/06 22:29:19 | 000,000,948 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paint.NET.lnk
[2011/11/06 22:29:19 | 000,000,653 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoConvert2.9.lnk
[2011/11/06 07:05:04 | 000,000,312 | ---- | C] () -- C:\ProgramData\~6DSS92c31Apgjk
[2011/11/06 07:05:04 | 000,000,216 | ---- | C] () -- C:\ProgramData\~6DSS92c31Apgjkr
[2011/11/06 07:04:46 | 000,000,635 | ---- | C] () -- C:\Users\Tony\Application Data\Microsoft\Internet Explorer\Quick Launch\System Restore.lnk
[2011/11/06 07:04:42 | 000,000,448 | ---- | C] () -- C:\ProgramData\6DSS92c31Apgjk
[2011/08/04 12:24:53 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.dat
[2011/08/04 12:24:53 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.dat
[2011/02/11 21:09:34 | 000,000,000 | ---- | C] () -- C:\Windows\WinInit.ini
[2011/01/27 21:49:09 | 000,004,096 | ---- | C] () -- C:\Users\Tony\AppData\Local\keyfile3.drm
[2010/10/06 13:33:48 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010/10/06 13:33:48 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010/10/06 13:33:48 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010/10/06 13:33:48 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010/10/06 13:33:48 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010/03/25 20:31:01 | 000,000,120 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\default.rss
[2009/10/28 11:21:33 | 000,015,880 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2009/10/27 21:42:40 | 000,000,000 | ---- | C] () -- C:\Users\Tony\AppData\Local\Mmojok.bin
[2009/10/27 21:42:39 | 000,000,120 | ---- | C] () -- C:\Users\Tony\AppData\Local\Pgekikanujuqod.dat
[2009/06/23 00:01:20 | 000,081,920 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\ezpinst.exe
[2009/06/22 20:59:56 | 000,001,041 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\vso_ts_preview.xml
[2009/03/31 11:45:58 | 000,000,253 | ---- | C] () -- C:\Windows\SIERRA.INI
[2009/01/24 14:30:45 | 000,000,056 | ---- | C] () -- C:\ProgramData\ezsidmv.dat
[2008/06/24 02:08:50 | 000,100,043 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2008/01/31 03:01:05 | 000,001,732 | ---- | C] () -- C:\Windows\System32\drivers\nvphy.bin
[2008/01/15 21:21:43 | 000,009,728 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll
[2007/09/13 21:33:35 | 000,000,056 | RHS- | C] () -- C:\Windows\System32\0C2D35BA00.sys
[2007/08/21 12:38:52 | 000,038,420 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\Microsoft Excel 97-2003.ADR
[2007/08/21 06:00:52 | 000,038,425 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\Comma Separated Values (DOS).ADR
[2007/07/28 22:10:10 | 000,000,088 | RHS- | C] () -- C:\Windows\System32\F3A1B96AE9.sys
[2007/07/28 22:10:09 | 000,020,752 | -HS- | C] () -- C:\Windows\System32\KGyGaAvL.sys
[2007/07/17 14:14:18 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2007/07/15 23:41:17 | 000,065,536 | ---- | C] () -- C:\Windows\System32\dmcrypto.dll
[2007/07/15 23:40:55 | 000,000,209 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2007/07/15 23:40:55 | 000,000,135 | ---- | C] () -- C:\Windows\ODBC.INI
[2007/07/15 23:40:54 | 000,159,744 | ---- | C] () -- C:\Windows\System32\hcwChDB.dll
[2007/07/15 23:40:34 | 000,002,296 | ---- | C] () -- C:\Windows\HCWPNP.INI
[2007/07/10 15:50:48 | 000,007,176 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\pcouffin.cat
[2007/07/10 15:50:48 | 000,001,144 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\pcouffin.inf
[2007/07/09 18:59:30 | 000,000,680 | ---- | C] () -- C:\Users\Tony\AppData\Local\d3d9caps.dat
[2007/07/07 22:31:06 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2007/07/07 19:58:33 | 000,237,568 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2007/07/07 15:32:02 | 000,024,206 | ---- | C] () -- C:\Users\Tony\AppData\Roaming\UserTile.png
[2007/07/07 12:18:19 | 000,195,584 | ---- | C] () -- C:\Users\Tony\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/05/30 14:51:47 | 000,049,152 | ---- | C] () -- C:\Windows\System32\ChCfg.exe
[2007/05/30 14:50:38 | 000,066,048 | ---- | C] () -- C:\Windows\System32\hcwxds.dll
[2007/05/30 14:46:44 | 000,327,680 | ---- | C] () -- C:\Windows\System32\pythoncom24.dll
[2007/05/30 14:46:44 | 000,102,400 | ---- | C] () -- C:\Windows\System32\pywintypes24.dll
[2006/11/09 10:49:08 | 000,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2006/11/02 09:27:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 09:17:37 | 000,401,312 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 09:05:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 07:03:01 | 000,607,342 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 07:03:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 07:03:01 | 000,110,596 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 07:03:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 06:53:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 05:28:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 05:00:49 | 000,029,698 | ---- | C] () -- C:\Windows\System32\piltsys.dll
[2006/11/02 05:00:49 | 000,028,673 | ---- | C] () -- C:\Windows\System32\cppisys.dll
[2006/11/02 05:00:49 | 000,025,602 | ---- | C] () -- C:\Windows\System32\llpink_.dll
[2006/11/02 04:49:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 04:10:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 03:55:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/11/02 03:52:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2006/08/11 02:30:40 | 000,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2006/08/11 02:30:40 | 000,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[2005/01/31 09:13:22 | 000,163,328 | ---- | C] () -- C:\Windows\System32\drivers\LV532AV.SYS
[2005/01/31 07:37:58 | 000,009,255 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2004/09/16 16:54:26 | 003,375,104 | ---- | C] () -- C:\Windows\System32\qt-mt331.dll
[2003/10/05 01:02:00 | 000,107,520 | ---- | C] () -- C:\Windows\System32\bxCryptShell.dll
[2003/10/05 01:02:00 | 000,038,912 | ---- | C] () -- C:\Windows\ExePass.exe

========== LOP Check ==========

[2007/07/11 01:26:28 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Business Logic
[2009/12/25 08:16:25 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Coby
[2009/12/25 12:22:35 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Coby Media Manager
[2008/01/15 21:44:31 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\DemoCreator
[2010/09/26 22:40:09 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Digiarty
[2009/08/26 17:24:06 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\eBookPro6
[2010/07/04 22:56:33 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\FileZilla
[2011/11/06 10:13:06 | 000,000,000 | -HSD | M] -- C:\Users\Tony\AppData\Roaming\lowsec
[2011/11/06 10:13:14 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\muvee Technologies
[2007/07/07 15:32:02 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\PeerNetworking
[2007/08/28 17:20:17 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\PPLive
[2008/01/30 15:23:50 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\salesforce.com
[2007/12/12 18:16:13 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\TeamViewer
[2007/07/28 21:44:19 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Thinstall
[2011/10/02 23:56:11 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\Vso
[2007/07/08 23:19:47 | 000,000,000 | ---D | M] -- C:\Users\Tony\AppData\Roaming\WinBatch
[2011/11/18 08:41:25 | 000,000,384 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2011/11/18 08:39:47 | 000,032,580 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/11/18 11:15:00 | 000,000,418 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{0467987F-EFE8-4315-97F1-248EA467D6CD}.job
[2011/11/18 10:32:31 | 000,000,416 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{B9F9BA20-01EA-4216-A418-EEA2A5CC3021}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:8CE646EE

< End of report >






#2 sempai

sempai

    3 stars and a sun

  • Admin
  • 1,043 posts

Posted 20 November 2011 - 11:45 AM

Hi,

QUOTE
If you are running Windows XP, Windows XP SP1, Windows XP SP2, Windows Vista, or Windows Vista SP1, your operating system is out of date. For infected computers, our helpers strongly recommend that you reformat your hard drive and re-install your operating system and programs.
You have an outdated OS, and as stated above, what we recommend here is to reformat, reinstall your OS and install the latest service pack. This will ensure a malware free machine. Please let me know your thoughts.

#3 nubiwan

nubiwan

    Active Member

  • Active Members
  • 44 posts

Posted 21 November 2011 - 02:31 AM

QUOTE (sempai @ Nov 20 2011, 11:45 AM) <{POST_SNAPBACK}>
Hi,

QUOTE
If you are running Windows XP, Windows XP SP1, Windows XP SP2, Windows Vista, or Windows Vista SP1, your operating system is out of date. For infected computers, our helpers strongly recommend that you reformat your hard drive and re-install your operating system and programs.
You have an outdated OS, and as stated above, what we recommend here is to reformat, reinstall your OS and install the latest service pack. This will ensure a malware free machine. Please let me know your thoughts.


Why can't I just update the latest Service Pack for Vista?

#4 sempai

sempai

    3 stars and a sun

  • Admin
  • 1,043 posts

Posted 21 November 2011 - 11:26 AM

Because it is not recommended to install updates on infected machine.


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users