Welcome guest. Before posting on our computer help forum, you must register. Click here it's easy and free.

« previous next »
Pages: 1 [2] 3 4 ... 6  All   Go Down

Author Topic: Pc Problems  (Read 55388 times)

0 Members and 1 Guest are viewing this topic.

SuperDave

  • Malware Removal Specialist


    • Genius
    • Thanked: 1020
  • Certifications: List
  • Experience: Expert
  • OS: Windows 10
Re: Pc Problems
« Reply #15 on: October 26, 2010, 01:04:04 PM »
Delete your copy of ComboFix; download a fresh copy, except before you download it, rename it to blackpudding.bat

Navigate to Start --> Run, and enter the following command exactly as shown:

"%userprofile%\desktop\blackpudding.bat" /killall

See if ComboFix will run now
Logged
Windows 8 and Windows 10 dual boot with two SSD's

thammondwis

    Topic Starter


    Beginner

    Re: Pc Problems
    « Reply #16 on: October 26, 2010, 07:56:16 PM »
    No that did not work.  I ended up with the same result in that it seemed to hang after starting the scan.  I had some issues following your directions.  When I tried to save it to the desktop as blackpudding.bat using FireFox, it would save it as Blackpudding.bat.exe which I suspected might be a problem.

    So I tried using Internet Explorer, but I needed to reset to the default settings again in order to get to the linked site.  So I tried saving as a different name and changed the name also in the run command.
    Logged

    SuperDave

    • Malware Removal Specialist


      • Genius
      • Thanked: 1020
    • Certifications: List
    • Experience: Expert
    • OS: Windows 10
    Re: Pc Problems
    « Reply #17 on: October 27, 2010, 12:55:32 PM »
    Ok. Let's try something else.

    Download OTL to your desktop.

    * Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
    * When the window appears, underneath Output at the top change it to Minimal Output.
    * Check the boxes beside LOP Check and Purity Check.
    * Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan won't take long.

    When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.

    Please copy and pate the contents of these files, one at a time, into your next reply.

    Note: You may need two or more posts to fit them all in.
    Logged
    Windows 8 and Windows 10 dual boot with two SSD's

    thammondwis

      Topic Starter


      Beginner

      Re: Pc Problems
      « Reply #18 on: October 27, 2010, 04:35:12 PM »
      OTL.TXT log:

      OTL logfile created on: 10/27/2010 5:27:44 PM - Run 1
      OTL by OldTimer - Version 3.2.17.1     Folder = C:\Documents and Settings\Home\Desktop
      Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.6001.18702)
      Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
       
      1,022.00 Mb Total Physical Memory | 420.00 Mb Available Physical Memory | 41.00% Memory free
      2.00 Gb Paging File | 2.00 Gb Available in Paging File | 77.00% Paging File free
      Paging file location(s): C:\pagefile.sys 1440 2880 [binary data]
       
      %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
      Drive C: | 74.10 Gb Total Space | 7.21 Gb Free Space | 9.73% Space Free | Partition Type: NTFS
      Drive E: | 112.21 Gb Total Space | 46.35 Gb Free Space | 41.31% Space Free | Partition Type: NTFS
       
      Computer Name: HOME | User Name: Home | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user
      Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
       
      ========== Processes (SafeList) ==========
       
      PRC - C:\Documents and Settings\Home\Desktop\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Documents and Settings\NetworkService\Application Data\mjusbsp\magicJack.exe (magicJack L.P.)
      PRC - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG10\avgnsx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG10\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG10\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\AVG\AVG10\avgemcx.exe (AVG Technologies CZ, s.r.o.)
      PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
      PRC - C:\Program Files\Unlocker\UnlockerAssistant.exe ()
      PRC - C:\mjusbsp\srvany.exe ()
      PRC - C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe (Veoh Networks)
      PRC - C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
      PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
      PRC - C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe ()
      PRC - C:\Program Files\Lexmark 1200 Series\lxczbmon.exe (Lexmark International, Inc.)
      PRC - C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe (Lexmark International, Inc.)
      PRC - C:\Program Files\E-Color\E-Color Indicator\TICIcon.exe (E-Color, Inc.)
      PRC - C:\Program Files\E-Color\Common\IconMgr.exe (E-Color, Inc.)
       
       
      ========== Modules (SafeList) ==========
       
      MOD - C:\Documents and Settings\Home\Desktop\OTL.exe (OldTimer Tools)
      MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)
      MOD - C:\Program Files\Unlocker\UnlockerHook.dll ()
       
       
      ========== Win32 Services (SafeList) ==========
       
      SRV - (NMIndexingService) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe File not found
      SRV - (HidServ) -- C:\WINDOWS\System32\hidserv.dll File not found
      SRV - (AVGIDSAgent) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
      SRV - (avgwd) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
      SRV - (magicJack) -- C:\mjusbsp\srvany.exe ()
      SRV - (W3SVC) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe (Microsoft Corporation)
      SRV - (SMTPSVC) Simple Mail Transfer Protocol (SMTP) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe (Microsoft Corporation)
      SRV - (MSFtpsvc) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe (Microsoft Corporation)
      SRV - (IISADMIN) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe (Microsoft Corporation)
      SRV - (p2pgasvc) -- C:\WINDOWS\system32\p2pgasvc.dll (Microsoft Corporation)
      SRV - (cvslock) -- C:\Program Files\CVSNT\cvslock.exe ()
      SRV - (cvsnt) -- C:\Program Files\CVSNT\cvsservice.exe (March Hare Software Ltd)
       
       
      ========== Driver Services (SafeList) ==========
       
      DRV - (NTACCESS) -- D:\NTACCESS.sys File not found
      DRV - (MSICPL) -- D:\install4\MSICPL.sys File not found
      DRV - (MRESP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS File not found
      DRV - (MREMP50a64) -- C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS File not found
      DRV - (mcdbus) -- C:\WINDOWS\System32\DRIVERS\mcdbus.sys File not found
      DRV - (GMSIPCI) -- D:\INSTALL\GMSIPCI.SYS File not found
      DRV - (catchme) -- C:\brown\catchme.sys File not found
      DRV - (AVGIDSEH) -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys (AVG Technologies CZ, s.r.o. )
      DRV - (Avgtdix) -- C:\WINDOWS\system32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
      DRV - (Avgmfx86) -- C:\WINDOWS\system32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
      DRV - (Avgldx86) -- C:\WINDOWS\system32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
      DRV - (Avgrkx86) -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys (AVG Technologies CZ, s.r.o.)
      DRV - (AVGIDSFilter) -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys (AVG Technologies CZ, s.r.o. )
      DRV - (AVGIDSDriver) -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys (AVG Technologies CZ, s.r.o. )
      DRV - (AVGIDSShim) -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys (AVG Technologies CZ, s.r.o. )
      DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
      DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
      DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation)
      DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
      DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
      DRV - (WmXlCore) -- C:\WINDOWS\system32\drivers\WmXlCore.sys (Logitech Inc.)
      DRV - (WmVirHid) -- C:\WINDOWS\system32\drivers\WmVirHid.sys (Logitech Inc.)
      DRV - (WmFilter) -- C:\WINDOWS\system32\drivers\WmFilter.sys (Logitech Inc.)
      DRV - (WmBEnum) -- C:\WINDOWS\system32\drivers\WmBEnum.sys (Logitech Inc.)
      DRV - (RMCAST) -- C:\WINDOWS\system32\drivers\rmcast.sys (Microsoft Corporation)
      DRV - (sptd) -- C:\WINDOWS\system32\drivers\sptd.sys (Duplex Secure Ltd.)
      DRV - (usbaudio) USB Audio Driver (WDM) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys (Microsoft Corporation)
      DRV - (MQAC) -- C:\WINDOWS\system32\drivers\mqac.sys (Microsoft Corporation)
      DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
      DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation)
      DRV - (DualCoreCenter) -- C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys (MICRO-STAR INT'L CO., LTD.)
      DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
      DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)
      DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)
      DRV - (nvata) -- C:\WINDOWS\system32\DRIVERS\nvata.sys (NVIDIA Corporation)
      DRV - (PQNTDrv) -- C:\WINDOWS\System32\drivers\PQNTDRV.sys (PowerQuest Corporation)
       
       
      ========== Standard Registry (SafeList) ==========
       
       
      ========== Internet Explorer ==========
       
       
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
       
      ========== FireFox ==========
       
      FF - prefs.js..browser.search.defaultenginen ame: "Yahoo! Search"
      FF - prefs.js..browser.search.selectedEngine: "Yahoo! Search"
      FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
      FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:10.0.0.1151
      FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
      FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
      FF - prefs.js..extensions.enabledItems: [email protected]:1.0
      FF - prefs.js..extensions.enabledItems: [email protected]:7
      FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.1.3
      FF - prefs.js..extensions.enabledItems: [email protected]:1.4
       
      FF - HKLM\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/04/17 08:12:12 | 000,000,000 | ---D | M]
      FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\ [2010/10/25 09:38:39 | 000,000,000 | ---D | M]
      FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/10/21 05:20:48 | 000,000,000 | ---D | M]
      FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/10/06 06:56:11 | 000,000,000 | ---D | M]
       
      [2009/04/13 05:36:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Home\Application Data\Mozilla\Extensions
      [2010/10/26 20:59:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Home\Application Data\Mozilla\Firefox\Profiles\ashxfdvz.default\extensions
      [2010/06/25 06:05:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Home\Application Data\Mozilla\Firefox\Profiles\ashxfdvz.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
      [2010/10/26 20:59:21 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
      [2010/06/13 18:16:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
      [2010/10/20 19:59:58 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
      [2008/06/18 02:43:04 | 000,086,016 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
      [2010/09/15 04:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
       
      O1 HOSTS File: ([2004/08/03 15:07:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1       localhost
      O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
      O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
      O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
      O3 - HKLM\..\Toolbar: (Veoh Web Player Video Finder) - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll (Veoh Networks Inc)
      O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
      O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
      O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
      O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
      O4 - HKLM..\Run: []  File not found
      O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
      O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
      O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
      O4 - HKLM..\Run: [Lexmark 1200 Series] C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe (Lexmark International, Inc.)
      O4 - HKLM..\Run: [MsmqIntCert] C:\WINDOWS\System32\mqrt.dll (Microsoft Corporation)
      O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
      O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
      O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
      O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
      O4 - HKLM..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
      O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
      O4 - HKLM..\Run: [WinSys2] C:\WINDOWS\system32\WinSys2.exe ()
      O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe File not found
      O4 - HKCU..\Run: [cdloader] C:\Documents and Settings\Home\Application Data\mjusbsp\cdloader2.exe (magicJack L.P.)
      O4 - HKCU..\Run: [VeohPlugin] C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe (Veoh Networks)
      O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe ()
      O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\E-Color.lnk = C:\Program Files\E-Color\Common\IconMgr.exe (E-Color, Inc.)
      O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
      O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
      O15 - HKCU\..Trusted Domains: simnasa.org ([www] https in Trusted sites)
      O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} http://www.logitech.com/devicedetector/plugins/LogitechDeviceDetection32.cab (Device Detection)
      O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5 Control)
      O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
      O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
      O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5483.cab (Windows Live Safety Center Base Module)
      O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
      O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} http://secure2.comned.com/signuptemplates/securelogin-devel.cab (SecureLogin class)
      O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
      O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
      O16 - DPF: {99FE5072-78AA-4FEE-89BA-69A5FA55343F} http://download.microsoft.com/download/B/3/A/B3A2EA73-793D-4ABE-992D-C81140384044/igdtoolx.cab (IGDTester Class)
      O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
      O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.94.156.1 68.94.157.1
      O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
      O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
      O24 - Desktop WallPaper: C:\Documents and Settings\Home\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
      O24 - Desktop BackupWallPaper: C:\Documents and Settings\Home\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
      O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
      O30 - LSA: Authentication Packages - (setuid) - C:\WINDOWS\System32\setuid.dll (March-Hare Software Ltd)
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2008/04/16 18:39:31 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
      O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
      O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
       
      ========== Files/Folders - Created Within 30 Days ==========
       
      [2010/10/27 17:24:55 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Home\Desktop\OTL.exe
      [2010/10/27 05:46:47 | 000,000,000 | --SD | C] -- C:\brown
      [2010/10/26 19:33:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Real
      [2010/10/26 09:13:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Sun
      [2010/10/25 21:16:20 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Home\Recent
      [2010/10/25 21:12:57 | 001,187,896 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Home\My Documents\ccsetup236_slim.exe
      [2010/10/25 20:39:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Home\My Documents\JavaRa
      [2010/10/25 20:10:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Sun
      [2010/10/25 17:39:29 | 000,000,000 | RHSD | C] -- C:\cmdcons
      [2010/10/25 17:32:17 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
      [2010/10/25 17:32:17 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
      [2010/10/25 17:32:17 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
      [2010/10/25 17:32:17 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
      [2010/10/25 17:12:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
      [2010/10/24 14:37:39 | 000,000,000 | ---D | C] -- C:\Qoobox
      [2010/10/23 12:55:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Home\Desktop\Favorites
      [2010/10/22 19:16:09 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
      [2010/10/21 21:39:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Home\Application Data\Malwarebytes
      [2010/10/21 21:38:49 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
      [2010/10/21 21:38:48 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
      [2010/10/21 21:38:48 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
      [2010/10/21 21:38:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
      [2010/10/21 18:12:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Home\Application Data\SUPERAntiSpyware.com
      [2010/10/21 18:12:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
      [2010/10/21 18:11:53 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
      [2010/10/21 06:49:06 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
      [2010/10/21 00:32:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Identities
      [2010/10/20 22:26:58 | 000,000,000 | -H-D | C] -- C:\$AVG
      [2010/10/20 21:42:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Home\Application Data\AVG10
      [2010/10/20 21:41:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
      [2010/10/20 21:39:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG10
      [2010/10/20 21:39:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
      [2010/10/20 21:38:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
      [2010/10/20 19:42:30 | 000,000,000 | ---D | C] -- C:\Config.Msi
      [2010/10/20 05:07:18 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
      [2010/10/20 05:07:18 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
      [2010/10/20 05:07:18 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
      [2010/10/19 02:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Macromedia
      [2010/10/19 02:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe
      [2010/10/13 16:10:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia
      [2010/10/13 02:36:02 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll
      [2010/10/13 02:36:02 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
      [2010/10/13 02:35:47 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
      [2010/10/06 06:55:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
      [8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
      [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
       
      ========== Files - Modified Within 30 Days ==========
       
      [2010/10/27 17:29:52 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
      [2010/10/27 17:27:09 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-842925246-789336058-839522115-1003.job
      [2010/10/27 17:27:09 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-842925246-789336058-839522115-1003.job
      [2010/10/27 17:25:00 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Home\Desktop\OTL.exe
      [2010/10/27 17:19:22 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
      [2010/10/27 17:17:39 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
      [2010/10/27 05:45:57 | 003,887,256 | R--- | M] () -- C:\Documents and Settings\Home\Desktop\brown.bat
      [2010/10/26 22:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At47.job
      [2010/10/26 22:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At23.job
      [2010/10/26 21:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At46.job
      [2010/10/26 21:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At22.job
      [2010/10/26 20:40:11 | 000,001,034 | ---- | M] () -- C:\Documents and Settings\Home\Desktop\magicJack.lnk
      [2010/10/26 20:39:15 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At45.job
      [2010/10/26 19:25:34 | 000,000,420 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{D1A74F21-8B46-4EC6-A0A8-9C369E7281DC}.job
      [2010/10/26 17:41:53 | 097,787,600 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
      [2010/10/26 06:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At31.job
      [2010/10/26 06:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At7.job
      [2010/10/26 05:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At30.job
      [2010/10/25 22:16:10 | 000,079,872 | ---- | M] () -- C:\WINDOWS\MBR.exe
      [2010/10/25 21:13:04 | 001,187,896 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Home\My Documents\ccsetup236_slim.exe
      [2010/10/25 20:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At21.job
      [2010/10/25 17:39:36 | 000,000,327 | RHS- | M] () -- C:\boot.ini
      [2010/10/25 09:38:53 | 000,000,690 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AVG 2011.lnk
      [2010/10/24 19:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At20.job
      [2010/10/24 18:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At43.job
      [2010/10/24 18:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At19.job
      [2010/10/24 17:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At42.job
      [2010/10/24 17:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At18.job
      [2010/10/24 16:37:02 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At41.job
      [2010/10/24 16:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At17.job
      [2010/10/24 15:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At40.job
      [2010/10/24 15:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At16.job
      [2010/10/24 14:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At39.job
      [2010/10/24 14:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At15.job
      [2010/10/24 13:37:02 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At38.job
      [2010/10/24 13:27:16 | 000,069,632 | ---- | M] () -- C:\Documents and Settings\Home\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2010/10/24 09:20:21 | 000,000,468 | ---- | M] () -- C:\WINDOWS\lexstat.ini
      [2010/10/23 23:37:02 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At48.job
      [2010/10/23 23:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At24.job
      [2010/10/23 19:37:05 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At44.job
      [2010/10/23 13:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At14.job
      [2010/10/22 19:17:41 | 000,000,814 | ---- | M] () -- C:\Documents and Settings\Home\Desktop\Shortcut to Sniper.exe.lnk
      [2010/10/22 00:10:02 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At1.job
      [2010/10/21 18:11:55 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
      [2010/10/21 09:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At10.job
      [2010/10/21 08:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At33.job
      [2010/10/21 08:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At9.job
      [2010/10/21 07:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At32.job
      [2010/10/21 07:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At8.job
      [2010/10/19 02:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At27.job
      [2010/10/19 02:10:01 | 000,013,590 | ---- | M] () -- C:\WINDOWS\System32\235.js
      [2010/10/19 02:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At3.job
      [2010/10/19 01:37:03 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At26.job
      [2010/10/19 01:10:16 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At2.job
      [2010/10/19 00:37:16 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At25.job
      [2010/10/18 12:37:02 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At37.job
      [2010/10/18 12:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At13.job
      [2010/10/18 11:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At36.job
      [2010/10/18 11:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At12.job
      [2010/10/18 10:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At35.job
      [2010/10/18 10:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At11.job
      [2010/10/18 09:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At34.job
      [2010/10/18 05:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At6.job
      [2010/10/18 04:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At29.job
      [2010/10/18 04:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At5.job
      [2010/10/18 03:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At28.job
      [2010/10/18 03:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\tasks\At4.job
      [2010/10/13 17:10:00 | 000,010,053 | ---- | M] () -- C:\WINDOWS\System32\234.js
      [2010/10/13 11:38:02 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
      [2010/10/13 06:20:32 | 000,000,100 | ---- | M] () -- C:\WINDOWS\dellstat.ini
      [2010/10/08 17:05:42 | 000,504,496 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
      [2010/10/08 17:05:42 | 000,091,822 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
      [2010/10/06 06:56:11 | 000,001,761 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
      [8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
      [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
       
      ========== Files Created - No Company Name ==========
       
      [2010/10/26 19:30:30 | 003,887,256 | R--- | C] () -- C:\Documents and Settings\Home\Desktop\brown.bat
      [2010/10/26 17:41:53 | 097,787,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
      [2010/10/25 17:39:35 | 000,000,211 | ---- | C] () -- C:\Boot.bak
      [2010/10/25 17:39:32 | 000,260,272 | RHS- | C] () -- C:\cmldr
      [2010/10/25 17:32:17 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
      [2010/10/25 17:32:17 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
      [2010/10/25 17:32:17 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
      [2010/10/25 17:32:17 | 000,079,872 | ---- | C] () -- C:\WINDOWS\MBR.exe
      [2010/10/25 17:32:17 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
      [2010/10/22 19:17:41 | 000,000,814 | ---- | C] () -- C:\Documents and Settings\Home\Desktop\Shortcut to Sniper.exe.lnk
      [2010/10/21 18:11:55 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
      [2010/10/20 21:40:47 | 000,000,690 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AVG 2011.lnk
      [2010/10/19 01:50:25 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
      [2010/10/19 01:37:02 | 000,013,590 | ---- | C] () -- C:\WINDOWS\System32\235.js
      [2010/10/13 12:37:00 | 000,010,053 | ---- | C] () -- C:\WINDOWS\System32\234.js
      [2010/10/12 05:29:06 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At48.job
      [2010/10/12 05:29:06 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At47.job
      [2010/10/12 05:29:06 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At46.job
      [2010/10/12 05:29:06 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At45.job
      [2010/10/12 05:29:06 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At44.job
      [2010/10/12 05:29:06 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At43.job
      [2010/10/12 05:29:06 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At42.job
      [2010/10/12 05:29:06 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At41.job
      [2010/10/12 05:29:06 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At40.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At39.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At38.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At37.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At36.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At35.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At34.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At33.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At32.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At31.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At30.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At29.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At28.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At27.job
      [2010/10/12 05:29:05 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At26.job
      [2010/10/12 05:29:04 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At25.job
      [2010/10/11 05:45:02 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At24.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At9.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At23.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At22.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At21.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At20.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At19.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At18.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At17.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At16.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At15.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At14.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At13.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At12.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At11.job
      [2010/10/11 05:45:01 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At10.job
      [2010/10/11 05:45:00 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At8.job
      [2010/10/11 05:45:00 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At7.job
      [2010/10/11 05:45:00 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At6.job
      [2010/10/11 05:45:00 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At5.job
      [2010/10/11 05:45:00 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At4.job
      [2010/10/11 05:45:00 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At3.job
      [2010/10/11 05:45:00 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At2.job
      [2010/10/11 05:44:59 | 000,000,406 | ---- | C] () -- C:\WINDOWS\tasks\At1.job
      [2010/10/06 06:56:11 | 000,001,761 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
      [2010/03/07 18:50:15 | 000,000,133 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
      [2008/09/19 16:57:34 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
      [2008/08/20 05:16:40 | 000,000,020 | ---- | C] () -- C:\WINDOWS\Markers.ini
      [2008/07/17 06:51:39 | 000,000,540 | ---- | C] () -- C:\WINDOWS\UpdateClient.INI
      [2008/07/17 06:44:55 | 000,000,042 | ---- | C] () -- C:\WINDOWS\InstallerStatus.ini
      [2008/07/17 06:44:42 | 000,010,032 | ---- | C] () -- C:\WINDOWS\FliteStar.ini
      [2008/07/13 19:29:14 | 000,000,098 | ---- | C] () -- C:\WINDOWS\JeppECData.ini
      [2008/07/13 19:28:34 | 000,003,949 | ---- | C] () -- C:\WINDOWS\JeppView3.ini
      [2008/07/13 16:35:39 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
      [2008/05/27 07:50:05 | 000,000,082 | ---- | C] () -- C:\WINDOWS\SimViewJr.ini
      [2008/05/25 02:34:21 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
      [2008/05/25 02:34:21 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
      [2008/05/07 04:55:44 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\mrvtcl.dll
      [2008/05/07 04:55:28 | 000,001,240 | ---- | C] () -- C:\WINDOWS\SimView.ini
      [2008/05/07 04:55:28 | 000,000,222 | ---- | C] () -- C:\WINDOWS\Jeppesen.ini
      [2008/05/06 05:05:13 | 000,000,060 | ---- | C] () -- C:\WINDOWS\Vmax_742.ini
      [2008/05/03 16:57:01 | 000,000,236 | ---- | C] () -- C:\WINDOWS\RFP.ini
      [2008/05/03 12:46:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\frontpg.ini
      [2008/05/03 12:46:00 | 000,021,791 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.ini
      [2008/05/03 12:46:00 | 000,001,037 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.ini
      [2008/05/03 12:45:49 | 000,007,909 | ---- | C] () -- C:\WINDOWS\System32\ftpctrs.ini
      [2008/05/03 12:45:47 | 000,038,576 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
      [2008/05/03 12:45:47 | 000,010,225 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
      [2008/05/03 12:45:46 | 000,011,435 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
      [2008/04/17 21:00:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\msicpl.ini
      [2008/04/17 20:35:35 | 000,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll
      [2008/04/17 20:12:34 | 000,131,072 | R--- | C] () -- C:\WINDOWS\System32\smdll.dll
      [2008/04/17 20:12:32 | 000,032,768 | R--- | C] () -- C:\WINDOWS\System32\Auxiliary.dll
      [2008/04/17 20:12:31 | 000,266,240 | R--- | C] () -- C:\WINDOWS\System32\HookShield.dll
      [2008/04/17 20:12:31 | 000,262,144 | R--- | C] () -- C:\WINDOWS\System32\HookMAp.dll
      [2008/04/17 20:12:31 | 000,009,728 | R--- | C] () -- C:\WINDOWS\System32\sysinfoX64.sys
      [2008/04/17 20:12:31 | 000,008,192 | R--- | C] () -- C:\WINDOWS\System32\sysinfo.sys
      [2008/04/17 11:57:05 | 000,069,632 | ---- | C] () -- C:\Documents and Settings\Home\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
      [2008/04/17 05:11:01 | 000,000,165 | ---- | C] () -- C:\WINDOWS\Quicken.ini
      [2008/04/17 05:08:20 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
      [2008/04/16 21:33:51 | 000,000,100 | ---- | C] () -- C:\WINDOWS\dellstat.ini
      [2008/04/16 21:33:50 | 000,000,468 | ---- | C] () -- C:\WINDOWS\lexstat.ini
      [2008/04/16 21:33:40 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxczvs.dll
      [2008/04/16 21:33:32 | 000,000,270 | ---- | C] () -- C:\WINDOWS\System32\lxczcoin.ini
      [2007/01/01 15:06:51 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
      [2006/09/01 12:14:08 | 000,097,280 | ---- | C] () -- C:\WINDOWS\System32\TSRemote.dll
      [2006/08/16 02:35:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
      [2006/08/16 02:35:00 | 001,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
      [2006/08/16 02:35:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
      [2006/08/16 02:35:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
      [2006/08/16 02:35:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
      [2006/08/16 02:35:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
      [2006/06/29 10:24:43 | 000,318,014 | ---- | C] () -- C:\WINDOWS\System32\flt1chk4.dll
      [2005/09/25 12:48:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\zlib.dll
      [2005/02/11 11:12:42 | 000,040,960 | ---- | C] () -- C:\WINDOWS\GaugeSound.dll
      [2004/12/10 08:33:46 | 000,315,728 | ---- | C] () -- C:\WINDOWS\System32\flt1chk3.dll
      [2002/02/23 16:57:00 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\nosgeo10.dll
      [1999/04/24 09:57:16 | 000,018,854 | ---- | C] () -- C:\WINDOWS\ntctrm.sys
      [1999/01/22 13:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
       
      ========== LOP Check ==========
       
      [2010/10/20 21:41:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG10
      [2008/05/21 05:55:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
      [2008/05/08 17:27:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CaptainSim
      [2010/10/20 21:41:02 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
      [2009/03/22 19:10:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FlightPrep
      [2008/04/16 21:55:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LightScribe
      [2010/08/25 14:27:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\magicJack
      [2010/10/20 21:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
      [2008/07/28 21:10:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
      [2009/03/18 18:33:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
      [2009/11/26 12:09:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
      [2009/04/08 16:46:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
      [2010/10/20 21:42:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Home\Application Data\AVG10
      [2010/10/21 12:05:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Home\Application Data\Azureus
      [2009/03/28 09:30:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Home\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
      [2008/04/28 20:35:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Home\Application Data\DAEMON Tools
      [2008/05/22 20:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Home\Application Data\Flight1
      [2010/10/26 20:40:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Home\Application Data\mjusbsp
      [2009/12/31 17:09:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Home\Application Data\XTrackCad
      [2010/10/22 00:10:02 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At1.job
      [2010/10/21 09:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At10.job
      [2010/10/18 10:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At11.job
      [2010/10/18 11:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At12.job
      [2010/10/18 12:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At13.job
      [2010/10/23 13:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At14.job
      [2010/10/24 14:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At15.job
      [2010/10/24 15:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At16.job
      [2010/10/24 16:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At17.job
      [2010/10/24 17:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At18.job
      [2010/10/24 18:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At19.job
      [2010/10/19 01:10:16 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At2.job
      [2010/10/24 19:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At20.job
      [2010/10/25 20:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At21.job
      [2010/10/26 21:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At22.job
      [2010/10/26 22:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At23.job
      [2010/10/23 23:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At24.job
      [2010/10/19 00:37:16 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At25.job
      [2010/10/19 01:37:03 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At26.job
      [2010/10/19 02:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At27.job
      [2010/10/18 03:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At28.job
      [2010/10/18 04:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At29.job
      [2010/10/19 02:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At3.job
      [2010/10/26 05:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At30.job
      [2010/10/26 06:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At31.job
      [2010/10/21 07:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At32.job
      [2010/10/21 08:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At33.job
      [2010/10/18 09:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At34.job
      [2010/10/18 10:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At35.job
      [2010/10/18 11:37:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At36.job
      [2010/10/18 12:37:02 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At37.job
      [2010/10/24 13:37:02 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At38.job
      [2010/10/24 14:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At39.job
      [2010/10/18 03:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At4.job
      [2010/10/24 15:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At40.job
      [2010/10/24 16:37:02 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At41.job
      [2010/10/24 17:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At42.job
      [2010/10/24 18:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At43.job
      [2010/10/23 19:37:05 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At44.job
      [2010/10/26 20:39:15 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At45.job
      [2010/10/26 21:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At46.job
      [2010/10/26 22:37:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At47.job
      [2010/10/23 23:37:02 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At48.job
      [2010/10/18 04:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At5.job
      [2010/10/18 05:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At6.job
      [2010/10/26 06:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At7.job
      [2010/10/21 07:10:01 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At8.job
      [2010/10/21 08:10:00 | 000,000,406 | ---- | M] () -- C:\WINDOWS\Tasks\At9.job
      [2010/10/26 19:25:34 | 000,000,420 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{D1A74F21-8B46-4EC6-A0A8-9C369E7281DC}.job
       
      ========== Purity Check ==========
       
       
       
      ========== Alternate Data Streams ==========
       
      @Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:05EE1EEF

      < End of report >
      Logged

      thammondwis

        Topic Starter


        Beginner

        Re: Pc Problems
        « Reply #19 on: October 27, 2010, 04:35:57 PM »
        Extra.txt log:

        OTL Extras logfile created on: 10/27/2010 5:27:44 PM - Run 1
        OTL by OldTimer - Version 3.2.17.1     Folder = C:\Documents and Settings\Home\Desktop
        Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
        Internet Explorer (Version = 8.0.6001.18702)
        Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
         
        1,022.00 Mb Total Physical Memory | 420.00 Mb Available Physical Memory | 41.00% Memory free
        2.00 Gb Paging File | 2.00 Gb Available in Paging File | 77.00% Paging File free
        Paging file location(s): C:\pagefile.sys 1440 2880 [binary data]
         
        %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
        Drive C: | 74.10 Gb Total Space | 7.21 Gb Free Space | 9.73% Space Free | Partition Type: NTFS
        Drive E: | 112.21 Gb Total Space | 46.35 Gb Free Space | 41.31% Space Free | Partition Type: NTFS
         
        Computer Name: HOME | User Name: Home | Logged in as Administrator.
        Boot Mode: Normal | Scan Mode: Current user
        Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
         
        ========== Extra Registry (SafeList) ==========
         
         
        ========== File Associations ==========
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
         
        [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
        .html [@ = htmlfile] -- Reg Error: Key error. File not found
         
        ========== Shell Spawning ==========
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
        batfile [open] -- "%1" %*
        cmdfile [open] -- "%1" %*
        comfile [open] -- "%1" %*
        exefile [open] -- "%1" %*
        htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation)
        htmlfile [print] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" /p %1 (Microsoft Corporation)
        piffile [open] -- "%1" %*
        regfile [merge] -- Reg Error: Key error.
        scrfile [config] -- "%1"
        scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
        scrfile [open] -- "%1" /S
        txtfile [edit] -- Reg Error: Key error.
        Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
        Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
        Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
        Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
        Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
         
        ========== Security Center Settings ==========
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
        "FirstRunDisabled" = 1
        "AntiVirusDisableNotify" = 0
        "FirewallDisableNotify" = 0
        "UpdatesDisableNotify" = 0
        "AntiVirusOverride" = 0
        "FirewallOverride" = 0
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
         
        ========== System Restore Settings ==========
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
        "DisableSR" = 0
         
        [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
        "Start" = 0
         
        [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
        "Start" = 2
         
        ========== Firewall Settings ==========
         
        [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
         
        [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
        "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
        "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
        "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
        "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
        "3587:TCP" = 3587:TCP:*:Enabled:Windows Peer-to-Peer Grouping
        "3540:UDP" = 3540:UDP:*:Enabled:Peer Name Resolution Protocol (PNRP)
        "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
         
        [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
        "EnableFirewall" = 1
        "DoNotAllowExceptions" = 0
        "DisableNotifications" = 0
         
        [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
        "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
        "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
        "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
        "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
        "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
        "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
        "3587:TCP" = 3587:TCP:*:Enabled:Windows Peer-to-Peer Grouping
        "3540:UDP" = 3540:UDP:*:Enabled:Peer Name Resolution Protocol (PNRP)
        "42019:TCP" = 42019:TCP:*:Enabled:Azures
        "42019:UDP" = 42019:UDP:*:Enabled:Azures
        "49152:TCP" = 49152:TCP:*:Enabled:azures
        "49152:UDP" = 49152:UDP:*:Enabled:azures
         
        ========== Authorized Applications List ==========
         
        [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
         
        [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
        "C:\Program Files\Grisoft\AVG7\avginet.exe" = C:\Program Files\Grisoft\AVG7\avginet.exe:*:Enabled:avginet.exe -- File not found
        "C:\Program Files\Grisoft\AVG7\avgamsvr.exe" = C:\Program Files\Grisoft\AVG7\avgamsvr.exe:*:Enabled:avgamsvr.exe -- File not found
        "C:\Program Files\Grisoft\AVG7\avgcc.exe" = C:\Program Files\Grisoft\AVG7\avgcc.exe:*:Enabled:avgcc.exe -- File not found
        "D:\Installation\Setupx.exe" = D:\Installation\Setupx.exe:*:Enabled:Nero ProductSetup -- File not found
        "C:\Program Files\Microsoft Games\Flight Simulator 9\fs9.exe" = C:\Program Files\Microsoft Games\Flight Simulator 9\fs9.exe:*:Enabled:Microsoft Flight Simulator -- (Microsoft Corporation)
        "C:\WINDOWS\system32\dpnsvr.exe" = C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server -- (Microsoft Corporation)
        "C:\Program Files\Azureus\Azureus.exe" = C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus -- (Azureus Inc)
        "C:\Program Files\FSFDT\FWInn\FWINN.exe" = C:\Program Files\FSFDT\FWInn\FWINN.exe:*:Enabled:FSInn Application -- ()
        "C:\Program Files\FSFDT\Control Panel\FSFDTCP.exe" = C:\Program Files\FSFDT\Control Panel\FSFDTCP.exe:*:Enabled:FSFDT Control Panel -- (FS - French Dev Team)
        "C:\Program Files\Real\RealPlayer\realplay.exe" = C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer -- (RealNetworks, Inc.)
        "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe" = C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player  -- (Veoh Networks)
        "C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
        "C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
        "C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- File not found
        "C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- File not found
        "C:\mjusbsp\magicJack.exe" = C:\mjusbsp\magicJack.exe:*:Enabled:magicJack -- (magicJack L.P.)
        "C:\Documents and Settings\Home\Application Data\mjusbsp\magicJack.exe" = C:\Documents and Settings\Home\Application Data\mjusbsp\magicJack.exe:*:Enabled:magicJack -- (magicJack L.P.)
        "C:\Documents and Settings\NetworkService\Application Data\mjusbsp\magicJack.exe" = C:\Documents and Settings\NetworkService\Application Data\mjusbsp\magicJack.exe:*:Enabled:magicJack -- (magicJack L.P.)
         
         
        ========== HKEY_LOCAL_MACHINE Uninstall List ==========
         
        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
        "{00000409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
        "{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
        "{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
        "{164360E5-0AAD-48AD-8A36-3F8A859FAB6F}" = PMDG747_400F
        "{1819F22A-8B42-4CF5-88C1-97B6F4A7849A}" = ActiveSky Version 6 and ActiveSky Graphics
        "{1A258E63-8DF5-4ADB-9832-38A0121D65EB}" = AVG 2011
        "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
        "{21DBBDD6-93A5-4326-9A04-C9A5C9148502}" = Norton PartitionMagic
        "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
        "{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 22
        "{2F76FF6D-B992-4FD9-8686-F09F868B2C58}" = FSNavigator
        "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
        "{3AC54383-31D1-4907-961B-B12CBB1D0AE8}" = MobileMe Control Panel
        "{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
        "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
        "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
        "{4EB34322-B940-46EB-810E-68E71A819269}" = AVG 2011
        "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
        "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
        "{61812F6F-0705-4B20-B914-32C1E3C155C7}" = SimCharts 3.0
        "{6283826F-59A2-11D9-BB04-000AE6BE6EE7}" = On-line Help Console
        "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
        "{6D8D64BE-F500-55B6-705D-DFD08AFE0624}" = Acrobat.com
        "{6E0D150E-E486-4D20-BB7F-E091032C34D9}" = JeppView / JeppView FliteDeck
        "{768F22DC-2D20-4F52-A9A1-5E231FB7F752}" = Logitech Gaming Software 5.04
        "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
        "{7B63B2922B174135AFC0E1377DD81EC2}" =
        "{7C480BB2-42A9-40C6-AA5F-7AA20FC7C7F3}" = CVSNT 2.5.03.2382
        "{7D28A0F2-349E-11D3-A90C-0090270E86DC}" = JeppTerrain
        "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
        "{8558C0DA-37FA-4F66-8BEA-D1DA33A33828}" = Just Flight - Airliner Pilot v1.00
        "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
        "{8D273DE5-ABFA-4BD0-A9D7-EE9C971438C4}_is1" = PDF-Viewer
        "{8F8C91F0-F15C-11D4-A4D6-0004ACD720DA}" = FliteStar
        "{97679567-0095-464E-B5F2-E218A1CF3421}" = PMDG747_400 Queen of the Skies
        "{97C82B44-D408-4F14-9252-47FC1636D23E}_is1" = IZArc 3.81
        "{9CDD8DA2-7BFE-40FD-AEC8-5A48B7C88BFB}" = PMDG 747-400F PW FedEx
        "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
        "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
        "{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}" = iTunes
        "{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
        "{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.0
        "{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
        "{B4AC94AE-A5CE-4BB5-897C-E45E558F3277}" = Golden Eagle FlightPrep 2007 SP1
        "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
        "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
        "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
        "{CC4A73BF-938E-4C19-A553-853C035C9BA1}" = LightScribe System Software  1.10.13.1
        "{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
        "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
        "{D42D6936-F7F3-4077-9851-538B0DA685A8}" = Just Flight Dash 8-300 Professional v1.00
        "{D6E4E5D6-7693-4BB4-95BA-21F38FAFEE90}" = Safari
        "{DBCC73BA-C69A-4BF5-B4BF-F07501EE7039}" = AnswerWorks 5.0 English Runtime
        "{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer
        "{ED2A3C11-3EA8-4380-B59C-F2C1832731B0}" = Quicken 2009
        "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
        "{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
        "737 Pilot in Command - 400/500 Upgrade" = 737 Pilot in Command - 400/500 Upgrade
        "737-300 Pilot in Command" = 737-300 Pilot in Command
        "A310 Database Update" = A310 Database Update
        "A310 The Master's Edition" = A310 The Master's Edition
        "A753CAPTAIN" = 757-300 Captain
        "Active Camera 2004 patch for FS 9.1" = Active Camera 2004 patch for FS 9.1
        "Active Camera 2004 update to version 2.1 (FS 9.1)" = Active Camera 2004 update to version 2.1 (FS 9.1)
        "Active Camera 2004 version 2.0" = Active Camera 2004 version 2.0
        "Adobe AIR" = Adobe AIR
        "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
        "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
        "Adobe Shockwave Player" = Adobe Shockwave Player 11
        "Airbus Series Vol.1 Deluxe (FS2004)" = Airbus Series Vol.1 Deluxe (FS2004)
        "ATT-PRT22" = ATT-PRT22
        "AVG" = AVG 2011
        "Azureus Vuze" = Azureus Vuze
        "B752CAPTAIN" = '757-200 Captain' (Base Package) 1.4
        "BAV OSP_is1" = BAV OSP 3.0 Public Beta 3
        "Boeing B314 - The Clipper V2.0" = Boeing B314 - The Clipper V2.0
        "C757CAPTAIN" = '757 Captain' ACE 1.4
        "CCleaner" = CCleaner
        "CDisplay_is1" = CDisplay 1.8
        "Coupon Printer for Windows4.0" = Coupon Printer for Windows
        "Curse of the Azure Bonds" = Curse of the Azure Bonds
        "DivX Setup.divx.com" = DivX Setup
        "DraftDominator_is1" = DraftDominator Version 10.0b Full
        "DualCoreCenter_is1" = DualCoreCenter
        "DVD Flick_is1" = DVD Flick 1.3.0.7
        "E757CAPTAIN" = Block E - 757 Soundsets
        "ExtractNow_is1" = ExtractNow
        "F1DF727" = Greatest Airliners: 727
        "Flight Simulator 9.0" = Microsoft Flight Simulator 2004 A Century of Flight
        "Fraps" = Fraps (remove only)
        "FS Global 2008 for FS2004" = FS Global 2008 for FS2004
        "FS Panel Studio for FSX" = FS Panel Studio for FSX Build 20340
        "FSDiscover!" = FSDiscover!
        "FSFDT FSCopilot" = FSFDT FSCopilot
        "FSFDT FSInn" = FSFDT FSInn
        "FSFlightMax Base Package_is1" = FSFlightMax Base Package 1.0
        "FSFlightMax_is1" = FSFlightMax 1.4
        "getPlus(R)_ocx" = getPlus(R)_ocx
        "Ground Environment Professional" = Ground Environment Professional
        "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
        "ie7" = Windows Internet Explorer 7
        "ie8" = Windows Internet Explorer 8
        "InstallShield_{21DBBDD6-93A5-4326-9A04-C9A5C9148502}" = Norton PartitionMagic 8.0
        "IrfanView" = IrfanView (remove only)
        "JFlightlog_is1" = JFlightLog 0.5
        "Legendary 707" = Legendary 707
        "Legendary 727 Professional " = Legendary 727 Professional
        "Level-D 767-300 Tutorials" = Level-D 767-300 Tutorials
        "Level-D Simulations 767-300" = Level-D Simulations 767-300
        "Lexmark 1200 Series" = Lexmark 1200 Series
        "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
        "MDMAX Pro Premiere Edition" = MDMAX Pro Premiere Edition
        "Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
        "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
        "Mozilla Firefox (3.0.19)" = Mozilla Firefox (3.0.19)
        "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
        "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
        "NVIDIA Drivers" = NVIDIA Drivers
        "Pool of Radiance" = Pool of Radiance
        "Punch! Professional Home Design - Platinum" = Punch! Professional Home Design - Platinum
        "Railroad Tycoon II" = Railroad Tycoon II
        "Ready for Pushback Add-Ons" = Ready for Pushback Add-Ons
        "Ready for Pushback V2 Combi Loader" = Ready for Pushback V2 Combi Loader
        "Ready for Pushback V2_10 Full Version" = Ready for Pushback V2_10 Full Version
        "RealPlayer 12.0" = RealPlayer
        "Savings Bond Wizard" = Savings Bond Wizard
        "Sid Meier's Railroad Tycoon" = Sid Meier's Railroad Tycoon
        "SpaceShuttleMission2007_is1" = SpaceShuttleMission2007 PATCH v5.30
        "SR71 Stealth" = SR71 Stealth
        "tdp" = 3Deep
        "The FFS Saab 340 Base InstallerVersion 1.0.0" = The FFS Saab 340 Base Installer
        "The FFS Saab 340 UpdateVersion 1.1" = The FFS Saab 340 Update
        "The Vans Aircraft Company - Boeing 717-200 "The Last Legacy" V2" = The Vans Aircraft Company - Boeing 717-200 "The Last Legacy" V2
        "TortoiseCVS_is1" = TortoiseCVS 1.10.10
        "True Internet Color" = E-Color Indicator
        "TTB000001.TTB000001Toolbar" = CouponBar
        "Tweak UI 2.10" = Tweak UI
        "Unlocker" = Unlocker 1.9.0
        "WIC" = Windows Imaging Component
        "Wilco Fleet : A380" = Wilco Fleet : A380
        "Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
        "Windows Media Format Runtime" = Windows Media Format 11 runtime
        "Windows Media Player" = Windows Media Player 11
        "Windows XP Service Pack" = Windows XP Service Pack 3
        "Wings of Power: Heavy Bombers and Jets" = Wings of Power: Heavy Bombers and Jets
        "WMFDist11" = Windows Media Format 11 runtime
        "wmp11" = Windows Media Player 11
        "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
        "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
        "X-treme King Air B200v.2.0.1" = X-treme King Air B200 v.2.0.1
        "XTrkCAD 4.0.3a" = XTrkCAD 4.0.3a
        "Xvid_is1" = Xvid 1.1.3 final uninstall
         
        ========== HKEY_CURRENT_USER Uninstall List ==========
         
        [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
        "Airbus Series Vol.2 (FS2004)" = Airbus Series Vol.2 (FS2004)
        "magicJack" = magicJack
        "Move Media Player" = Move Media Player
        "Radio Range v4.0" = Radio Range v4.0
        "WoS INSTALLERS AEROSIM DHC-6 TWIN OTTER" = WoS INSTALLERS AEROSIM DHC-6 TWIN OTTER
         
        ========== Last 10 Event Log Errors ==========
         
        [ Application Events ]
        Error - 10/26/2010 8:32:49 PM | Computer Name = HOME | Source = MsiInstaller | ID = 11706
        Description = Product: Microsoft Office 2000 Premium -- Error 1706. No valid source
         could be found for product Microsoft Office 2000 Premium.  The Windows installer
         cannot continue.
         
        Error - 10/26/2010 8:32:59 PM | Computer Name = HOME | Source = MsiInstaller | ID = 11706
        Description = Product: Microsoft Office 2000 Premium -- Error 1706. No valid source
         could be found for product Microsoft Office 2000 Premium.  The Windows installer
         cannot continue.
         
        Error - 10/26/2010 8:33:55 PM | Computer Name = HOME | Source = Application Error | ID = 1000
        Description = Faulting application AVGIDSAgent.exe, version 10.0.0.344, faulting
         module msvcr90.dll, version 9.0.30729.4148, fault address 0x0006ccb5.
         
        Error - 10/26/2010 9:46:56 PM | Computer Name = HOME | Source = MsiInstaller | ID = 11706
        Description = Product: Microsoft Office 2000 Premium -- Error 1706. No valid source
         could be found for product Microsoft Office 2000 Premium.  The Windows installer
         cannot continue.
         
        Error - 10/26/2010 9:48:25 PM | Computer Name = HOME | Source = MsiInstaller | ID = 11706
        Description = Product: Microsoft Office 2000 Premium -- Error 1706. No valid source
         could be found for product Microsoft Office 2000 Premium.  The Windows installer
         cannot continue.
         
        Error - 10/26/2010 10:11:33 PM | Computer Name = HOME | Source = Application Error | ID = 1000
        Description = Faulting application svchost.exe, version 5.1.2600.5512, faulting
        module ntdll.dll, version 5.1.2600.5755, fault address 0x00023845.
         
        Error - 10/27/2010 6:30:04 PM | Computer Name = HOME | Source = MsiInstaller | ID = 11706
        Description = Product: Microsoft Office 2000 Premium -- Error 1706. No valid source
         could be found for product Microsoft Office 2000 Premium.  The Windows installer
         cannot continue.
         
        Error - 10/27/2010 6:30:40 PM | Computer Name = HOME | Source = MsiInstaller | ID = 11706
        Description = Product: Microsoft Office 2000 Premium -- Error 1706. No valid source
         could be found for product Microsoft Office 2000 Premium.  The Windows installer
         cannot continue.
         
        Error - 10/27/2010 6:31:12 PM | Computer Name = HOME | Source = MsiInstaller | ID = 11706
        Description = Product: Microsoft Office 2000 Premium -- Error 1706. No valid source
         could be found for product Microsoft Office 2000 Premium.  The Windows installer
         cannot continue.
         
        Error - 10/27/2010 6:31:43 PM | Computer Name = HOME | Source = MsiInstaller | ID = 11706
        Description = Product: Microsoft Office 2000 Premium -- Error 1706. No valid source
         could be found for product Microsoft Office 2000 Premium.  The Windows installer
         cannot continue.
         
        [ System Events ]
        Error - 10/27/2010 12:25:48 PM | Computer Name = HOME | Source = DCOM | ID = 10010
        Description = The server {8BC3F05E-D86B-11D0-A075-00C04FB68820} did not register
         with DCOM within the required timeout.
         
        Error - 10/27/2010 2:17:48 PM | Computer Name = HOME | Source = DCOM | ID = 10010
        Description = The server {8BC3F05E-D86B-11D0-A075-00C04FB68820} did not register
         with DCOM within the required timeout.
         
        Error - 10/27/2010 4:09:48 PM | Computer Name = HOME | Source = DCOM | ID = 10010
        Description = The server {8BC3F05E-D86B-11D0-A075-00C04FB68820} did not register
         with DCOM within the required timeout.
         
        Error - 10/27/2010 6:01:48 PM | Computer Name = HOME | Source = DCOM | ID = 10010
        Description = The server {8BC3F05E-D86B-11D0-A075-00C04FB68820} did not register
         with DCOM within the required timeout.
         
        Error - 10/27/2010 6:18:38 PM | Computer Name = HOME | Source = Service Control Manager | ID = 7023
        Description = The IIS Admin service terminated with the following error:   %%13
         
        Error - 10/27/2010 6:18:38 PM | Computer Name = HOME | Source = Service Control Manager | ID = 7001
        Description = The FTP Publishing service depends on the IIS Admin service which
        failed to start because of the following error:   %%13
         
        Error - 10/27/2010 6:18:38 PM | Computer Name = HOME | Source = Service Control Manager | ID = 7001
        Description = The Simple Mail Transfer Protocol (SMTP) service depends on the IIS
         Admin service which failed to start because of the following error:   %%13
         
        Error - 10/27/2010 6:18:38 PM | Computer Name = HOME | Source = Service Control Manager | ID = 7001
        Description = The World Wide Web Publishing service depends on the IIS Admin service
         which failed to start because of the following error:   %%13
         
        Error - 10/27/2010 6:19:42 PM | Computer Name = HOME | Source = DCOM | ID = 10010
        Description = The server {A9E69610-B80D-11D0-B9B9-00A0C922E750} did not register
         with DCOM within the required timeout.
         
        Error - 10/27/2010 6:20:57 PM | Computer Name = HOME | Source = Windows Update Agent | ID = 16
        Description = Unable to Connect: Windows is unable to connect to the automatic updates
         service and therefore cannot download and install updates according to the set
        schedule. Windows will continue to try to establish a connection.
         
         
        < End of report >
        Logged

        thammondwis

          Topic Starter


          Beginner

          Re: Pc Problems
          « Reply #20 on: October 27, 2010, 06:35:01 PM »
          FWIW I had a new error message that popped up.  It happened well after I finished running the OTL scan.

          Microsoft Visual C++ Runtime Library
          Program: C:\WINDOWS\System32\svchost.exe
          R6025
          -pure virtual function call
          Logged

          SuperDave

          • Malware Removal Specialist


            • Genius
            • Thanked: 1020
          • Certifications: List
          • Experience: Expert
          • OS: Windows 10
          Re: Pc Problems
          « Reply #21 on: October 28, 2010, 04:42:30 PM »
          You only have 7.21 Gb Free Space on your C: drive which is why you can't run some programs. You will have to find some way to transfer some of your files to your slave drive. Also uninstall/remove and unneeded programs. You should have at least 15% free space in order for your computer to function properly. 

          P2P - I see you have P2P software installed on your machine (Azureus Vuze). We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It is certainly contributing to your current situation.

          Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

          I would strongly recommend that you uninstall them, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.
          **********************************************
          * Open OTL
          * Copy and Paste the following text in the codebox into the Custom Scans/Fixes window.

          Code: [Select]
          :OTL

          :Files
          C:\WINDOWS\tasks\At47.job
          C:\WINDOWS\tasks\At23.job
          C:\WINDOWS\tasks\At46.job
          C:\WINDOWS\tasks\At22.job
          C:\WINDOWS\tasks\At45.job
          C:\WINDOWS\tasks\At31.job
          C:\WINDOWS\tasks\At7.job
          C:\WINDOWS\tasks\At30.job
          C:\WINDOWS\tasks\At21.job
          C:\WINDOWS\tasks\At20.job
          C:\WINDOWS\tasks\At43.job
          C:\WINDOWS\tasks\At19.job
          C:\WINDOWS\tasks\At42.job
          C:\WINDOWS\tasks\At18.job
          C:\WINDOWS\tasks\At41.job
          C:\WINDOWS\tasks\At17.job
          C:\WINDOWS\tasks\At40.job
          C:\WINDOWS\tasks\At16.job
          C:\WINDOWS\tasks\At39.job
          C:\WINDOWS\tasks\At15.job
          C:\WINDOWS\tasks\At38.job
          C:\WINDOWS\tasks\At48.job
          C:\WINDOWS\tasks\At24.job
          C:\WINDOWS\tasks\At44.job
          C:\WINDOWS\tasks\At14.job
          C:\WINDOWS\tasks\At1.job
          C:\WINDOWS\tasks\At10.job
          C:\WINDOWS\tasks\At33.job
          C:\WINDOWS\tasks\At9.job
          C:\WINDOWS\tasks\At32.job
          C:\WINDOWS\tasks\At8.job
          C:\WINDOWS\tasks\At27.job
          C:\WINDOWS\System32\235.js
          C:\WINDOWS\tasks\At3.job
          C:\WINDOWS\tasks\At26.job
          C:\WINDOWS\tasks\At2.job
          C:\WINDOWS\tasks\At25.job
          C:\WINDOWS\tasks\At37.job
          C:\WINDOWS\tasks\At13.job
          C:\WINDOWS\tasks\At36.job
          C:\WINDOWS\tasks\At12.job
          C:\WINDOWS\tasks\At35.job
          C:\WINDOWS\tasks\At11.job
          C:\WINDOWS\tasks\At34.job
          C:\WINDOWS\tasks\At6.job
          C:\WINDOWS\tasks\At29.job
          C:\WINDOWS\tasks\At5.job
          C:\WINDOWS\tasks\At28.job
          C:\WINDOWS\tasks\At4.job
          C:\WINDOWS\System32\235.js
          C:\WINDOWS\System32\234.js
          C:\WINDOWS\tasks\At48.job
          C:\WINDOWS\tasks\At47.job
          C:\WINDOWS\tasks\At46.job
          C:\WINDOWS\tasks\At45.job
          C:\WINDOWS\tasks\At44.job
          C:\WINDOWS\tasks\At43.job
          C:\WINDOWS\tasks\At42.job
          C:\WINDOWS\tasks\At41.job
          C:\WINDOWS\tasks\At40.job
          C:\WINDOWS\tasks\At39.job
          C:\WINDOWS\tasks\At38.job
          C:\WINDOWS\tasks\At37.job
          C:\WINDOWS\tasks\At36.job
          C:\WINDOWS\tasks\At35.job
          C:\WINDOWS\tasks\At34.job
          C:\WINDOWS\tasks\At33.job
          C:\WINDOWS\tasks\At32.job
          C:\WINDOWS\tasks\At31.job
          C:\WINDOWS\tasks\At30.job
          C:\WINDOWS\tasks\At29.job
          C:\WINDOWS\tasks\At28.job
          C:\WINDOWS\tasks\At27.job
          C:\WINDOWS\tasks\At26.job
          C:\WINDOWS\tasks\At25.job
          C:\WINDOWS\tasks\At24.job
          C:\WINDOWS\tasks\At9.job
          C:\WINDOWS\tasks\At23.job
          C:\WINDOWS\tasks\At22.job
          C:\WINDOWS\tasks\At21.job
          C:\WINDOWS\tasks\At20.job
          C:\WINDOWS\tasks\At19.job
          C:\WINDOWS\tasks\At18.job
          C:\WINDOWS\tasks\At17.job
          C:\WINDOWS\tasks\At16.job
          C:\WINDOWS\tasks\At15.job
          C:\WINDOWS\tasks\At14.job
          C:\WINDOWS\tasks\At13.job
          C:\WINDOWS\tasks\At12.job
          C:\WINDOWS\tasks\At11.job
          C:\WINDOWS\tasks\At10.job
          C:\WINDOWS\tasks\At8.job
          C:\WINDOWS\tasks\At7.job
          C:\WINDOWS\tasks\At6.job
          C:\WINDOWS\tasks\At5.job
          C:\WINDOWS\tasks\At4.job
          C:\WINDOWS\tasks\At3.job
          C:\WINDOWS\tasks\At2.job
          C:\WINDOWS\tasks\At1.job
          C:\WINDOWS\Tasks\At1.job
          C:\WINDOWS\Tasks\At10.job
          C:\WINDOWS\Tasks\At11.job
          C:\WINDOWS\Tasks\At12.job
          C:\WINDOWS\Tasks\At13.job
          C:\WINDOWS\Tasks\At14.job
          C:\WINDOWS\Tasks\At15.job
          C:\WINDOWS\Tasks\At16.job
          C:\WINDOWS\Tasks\At17.job
          C:\WINDOWS\Tasks\At18.job
          C:\WINDOWS\Tasks\At19.job
          C:\WINDOWS\Tasks\At2.job
          C:\WINDOWS\Tasks\At20.job
          C:\WINDOWS\Tasks\At21.job
          C:\WINDOWS\Tasks\At22.job
          C:\WINDOWS\Tasks\At23.job
          C:\WINDOWS\Tasks\At24.job
          C:\WINDOWS\Tasks\At25.job
          C:\WINDOWS\Tasks\At26.job
          C:\WINDOWS\Tasks\At27.job
          C:\WINDOWS\Tasks\At28.job
          C:\WINDOWS\Tasks\At29.job
          C:\WINDOWS\Tasks\At3.job
          C:\WINDOWS\Tasks\At30.job
          C:\WINDOWS\Tasks\At31.job
          C:\WINDOWS\Tasks\At32.job
          C:\WINDOWS\Tasks\At33.job
          C:\WINDOWS\Tasks\At34.job
          C:\WINDOWS\Tasks\At35.job
          C:\WINDOWS\Tasks\At36.job
          C:\WINDOWS\Tasks\At37.job
          C:\WINDOWS\Tasks\At38.job
          C:\WINDOWS\Tasks\At39.job
          C:\WINDOWS\Tasks\At4.job
          C:\WINDOWS\Tasks\At40.job
          C:\WINDOWS\Tasks\At41.job
          C:\WINDOWS\Tasks\At42.job
          C:\WINDOWS\Tasks\At43.job
          C:\WINDOWS\Tasks\At44.job
          C:\WINDOWS\Tasks\At45.job
          C:\WINDOWS\Tasks\At46.job
          C:\WINDOWS\Tasks\At47.job
          C:\WINDOWS\Tasks\At48.job
          C:\WINDOWS\Tasks\At5.job
          C:\WINDOWS\Tasks\At6.job
          C:\WINDOWS\Tasks\At7.job
          C:\WINDOWS\Tasks\At8.job
          C:\WINDOWS\Tasks\At9.job

          :otl
          O15 - HKCU\..Trusted Domains: simnasa.org ([www] https in Trusted sites)

          :COMMANDS
          [resethosts]
          [purity]
          [clearrestorepoints]
          [emptytemp]
          [start explorer]

          * Click Run Fix
          * OTLI2 may ask to reboot the machine. Please do so if asked.
          * Click OK
          * A report will open. Copy and Paste that report in your next reply.

          Logged
          Windows 8 and Windows 10 dual boot with two SSD's

          thammondwis

            Topic Starter


            Beginner

            Re: Pc Problems
            « Reply #22 on: October 28, 2010, 05:08:35 PM »
            Cleaned up some files on C: and now have 16 GB free.  I uninstalled Azureus.  When it finished uninstalling, a Internet Explorer window opened up by itself.  Then I ran the OTL fix and here is the log.

            All processes killed
            ========== OTL ==========
            ========== FILES ==========
            C:\WINDOWS\tasks\At47.job moved successfully.
            C:\WINDOWS\tasks\At23.job moved successfully.
            C:\WINDOWS\tasks\At46.job moved successfully.
            C:\WINDOWS\tasks\At22.job moved successfully.
            C:\WINDOWS\tasks\At45.job moved successfully.
            C:\WINDOWS\tasks\At31.job moved successfully.
            C:\WINDOWS\tasks\At7.job moved successfully.
            C:\WINDOWS\tasks\At30.job moved successfully.
            C:\WINDOWS\tasks\At21.job moved successfully.
            C:\WINDOWS\tasks\At20.job moved successfully.
            C:\WINDOWS\tasks\At43.job moved successfully.
            C:\WINDOWS\tasks\At19.job moved successfully.
            C:\WINDOWS\tasks\At42.job moved successfully.
            C:\WINDOWS\tasks\At18.job moved successfully.
            C:\WINDOWS\tasks\At41.job moved successfully.
            C:\WINDOWS\tasks\At17.job moved successfully.
            C:\WINDOWS\tasks\At40.job moved successfully.
            C:\WINDOWS\tasks\At16.job moved successfully.
            C:\WINDOWS\tasks\At39.job moved successfully.
            C:\WINDOWS\tasks\At15.job moved successfully.
            C:\WINDOWS\tasks\At38.job moved successfully.
            C:\WINDOWS\tasks\At48.job moved successfully.
            C:\WINDOWS\tasks\At24.job moved successfully.
            C:\WINDOWS\tasks\At44.job moved successfully.
            C:\WINDOWS\tasks\At14.job moved successfully.
            C:\WINDOWS\tasks\At1.job moved successfully.
            C:\WINDOWS\tasks\At10.job moved successfully.
            C:\WINDOWS\tasks\At33.job moved successfully.
            C:\WINDOWS\tasks\At9.job moved successfully.
            C:\WINDOWS\tasks\At32.job moved successfully.
            C:\WINDOWS\tasks\At8.job moved successfully.
            C:\WINDOWS\tasks\At27.job moved successfully.
            C:\WINDOWS\System32\235.js moved successfully.
            C:\WINDOWS\tasks\At3.job moved successfully.
            C:\WINDOWS\tasks\At26.job moved successfully.
            C:\WINDOWS\tasks\At2.job moved successfully.
            C:\WINDOWS\tasks\At25.job moved successfully.
            C:\WINDOWS\tasks\At37.job moved successfully.
            C:\WINDOWS\tasks\At13.job moved successfully.
            C:\WINDOWS\tasks\At36.job moved successfully.
            C:\WINDOWS\tasks\At12.job moved successfully.
            C:\WINDOWS\tasks\At35.job moved successfully.
            C:\WINDOWS\tasks\At11.job moved successfully.
            C:\WINDOWS\tasks\At34.job moved successfully.
            C:\WINDOWS\tasks\At6.job moved successfully.
            C:\WINDOWS\tasks\At29.job moved successfully.
            C:\WINDOWS\tasks\At5.job moved successfully.
            C:\WINDOWS\tasks\At28.job moved successfully.
            C:\WINDOWS\tasks\At4.job moved successfully.
            File\Folder C:\WINDOWS\System32\235.js not found.
            C:\WINDOWS\System32\234.js moved successfully.
            File\Folder C:\WINDOWS\tasks\At48.job not found.
            File\Folder C:\WINDOWS\tasks\At47.job not found.
            File\Folder C:\WINDOWS\tasks\At46.job not found.
            File\Folder C:\WINDOWS\tasks\At45.job not found.
            File\Folder C:\WINDOWS\tasks\At44.job not found.
            File\Folder C:\WINDOWS\tasks\At43.job not found.
            File\Folder C:\WINDOWS\tasks\At42.job not found.
            File\Folder C:\WINDOWS\tasks\At41.job not found.
            File\Folder C:\WINDOWS\tasks\At40.job not found.
            File\Folder C:\WINDOWS\tasks\At39.job not found.
            File\Folder C:\WINDOWS\tasks\At38.job not found.
            File\Folder C:\WINDOWS\tasks\At37.job not found.
            File\Folder C:\WINDOWS\tasks\At36.job not found.
            File\Folder C:\WINDOWS\tasks\At35.job not found.
            File\Folder C:\WINDOWS\tasks\At34.job not found.
            File\Folder C:\WINDOWS\tasks\At33.job not found.
            File\Folder C:\WINDOWS\tasks\At32.job not found.
            File\Folder C:\WINDOWS\tasks\At31.job not found.
            File\Folder C:\WINDOWS\tasks\At30.job not found.
            File\Folder C:\WINDOWS\tasks\At29.job not found.
            File\Folder C:\WINDOWS\tasks\At28.job not found.
            File\Folder C:\WINDOWS\tasks\At27.job not found.
            File\Folder C:\WINDOWS\tasks\At26.job not found.
            File\Folder C:\WINDOWS\tasks\At25.job not found.
            File\Folder C:\WINDOWS\tasks\At24.job not found.
            File\Folder C:\WINDOWS\tasks\At9.job not found.
            File\Folder C:\WINDOWS\tasks\At23.job not found.
            File\Folder C:\WINDOWS\tasks\At22.job not found.
            File\Folder C:\WINDOWS\tasks\At21.job not found.
            File\Folder C:\WINDOWS\tasks\At20.job not found.
            File\Folder C:\WINDOWS\tasks\At19.job not found.
            File\Folder C:\WINDOWS\tasks\At18.job not found.
            File\Folder C:\WINDOWS\tasks\At17.job not found.
            File\Folder C:\WINDOWS\tasks\At16.job not found.
            File\Folder C:\WINDOWS\tasks\At15.job not found.
            File\Folder C:\WINDOWS\tasks\At14.job not found.
            File\Folder C:\WINDOWS\tasks\At13.job not found.
            File\Folder C:\WINDOWS\tasks\At12.job not found.
            File\Folder C:\WINDOWS\tasks\At11.job not found.
            File\Folder C:\WINDOWS\tasks\At10.job not found.
            File\Folder C:\WINDOWS\tasks\At8.job not found.
            File\Folder C:\WINDOWS\tasks\At7.job not found.
            File\Folder C:\WINDOWS\tasks\At6.job not found.
            File\Folder C:\WINDOWS\tasks\At5.job not found.
            File\Folder C:\WINDOWS\tasks\At4.job not found.
            File\Folder C:\WINDOWS\tasks\At3.job not found.
            File\Folder C:\WINDOWS\tasks\At2.job not found.
            File\Folder C:\WINDOWS\tasks\At1.job not found.
            File\Folder C:\WINDOWS\Tasks\At1.job not found.
            File\Folder C:\WINDOWS\Tasks\At10.job not found.
            File\Folder C:\WINDOWS\Tasks\At11.job not found.
            File\Folder C:\WINDOWS\Tasks\At12.job not found.
            File\Folder C:\WINDOWS\Tasks\At13.job not found.
            File\Folder C:\WINDOWS\Tasks\At14.job not found.
            File\Folder C:\WINDOWS\Tasks\At15.job not found.
            File\Folder C:\WINDOWS\Tasks\At16.job not found.
            File\Folder C:\WINDOWS\Tasks\At17.job not found.
            File\Folder C:\WINDOWS\Tasks\At18.job not found.
            File\Folder C:\WINDOWS\Tasks\At19.job not found.
            File\Folder C:\WINDOWS\Tasks\At2.job not found.
            File\Folder C:\WINDOWS\Tasks\At20.job not found.
            File\Folder C:\WINDOWS\Tasks\At21.job not found.
            File\Folder C:\WINDOWS\Tasks\At22.job not found.
            File\Folder C:\WINDOWS\Tasks\At23.job not found.
            File\Folder C:\WINDOWS\Tasks\At24.job not found.
            File\Folder C:\WINDOWS\Tasks\At25.job not found.
            File\Folder C:\WINDOWS\Tasks\At26.job not found.
            File\Folder C:\WINDOWS\Tasks\At27.job not found.
            File\Folder C:\WINDOWS\Tasks\At28.job not found.
            File\Folder C:\WINDOWS\Tasks\At29.job not found.
            File\Folder C:\WINDOWS\Tasks\At3.job not found.
            File\Folder C:\WINDOWS\Tasks\At30.job not found.
            File\Folder C:\WINDOWS\Tasks\At31.job not found.
            File\Folder C:\WINDOWS\Tasks\At32.job not found.
            File\Folder C:\WINDOWS\Tasks\At33.job not found.
            File\Folder C:\WINDOWS\Tasks\At34.job not found.
            File\Folder C:\WINDOWS\Tasks\At35.job not found.
            File\Folder C:\WINDOWS\Tasks\At36.job not found.
            File\Folder C:\WINDOWS\Tasks\At37.job not found.
            File\Folder C:\WINDOWS\Tasks\At38.job not found.
            File\Folder C:\WINDOWS\Tasks\At39.job not found.
            File\Folder C:\WINDOWS\Tasks\At4.job not found.
            File\Folder C:\WINDOWS\Tasks\At40.job not found.
            File\Folder C:\WINDOWS\Tasks\At41.job not found.
            File\Folder C:\WINDOWS\Tasks\At42.job not found.
            File\Folder C:\WINDOWS\Tasks\At43.job not found.
            File\Folder C:\WINDOWS\Tasks\At44.job not found.
            File\Folder C:\WINDOWS\Tasks\At45.job not found.
            File\Folder C:\WINDOWS\Tasks\At46.job not found.
            File\Folder C:\WINDOWS\Tasks\At47.job not found.
            File\Folder C:\WINDOWS\Tasks\At48.job not found.
            File\Folder C:\WINDOWS\Tasks\At5.job not found.
            File\Folder C:\WINDOWS\Tasks\At6.job not found.
            File\Folder C:\WINDOWS\Tasks\At7.job not found.
            File\Folder C:\WINDOWS\Tasks\At8.job not found.
            File\Folder C:\WINDOWS\Tasks\At9.job not found.
            ========== OTL ==========
            Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\simnasa.org\www\ deleted successfully.
            ========== COMMANDS ==========
            C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
            HOSTS file reset successfully
            Error: Unable to interpret <[clearrestorepoints]> in the current context!
             
            [EMPTYTEMP]
             
            User: Admin
            ->Temp folder emptied: 951772 bytes
            ->Temporary Internet Files folder emptied: 2058886 bytes
            ->Java cache emptied: 602656 bytes
            ->Flash cache emptied: 16422 bytes
             
            User: All Users
             
            User: Default User
            ->Temp folder emptied: 0 bytes
            ->Temporary Internet Files folder emptied: 33170 bytes
             
            User: Home
            ->Temp folder emptied: 5547550 bytes
            ->Temporary Internet Files folder emptied: 5435079 bytes
            ->Java cache emptied: 0 bytes
            ->FireFox cache emptied: 133554162 bytes
            ->Flash cache emptied: 49484 bytes
             
            User: LocalService
            ->Temp folder emptied: 66016 bytes
            ->Temporary Internet Files folder emptied: 1982866 bytes
            ->Java cache emptied: 0 bytes
            ->Flash cache emptied: 60380 bytes
             
            User: NetworkService
            ->Temp folder emptied: 0 bytes
            ->Temporary Internet Files folder emptied: 70277147 bytes
            ->Java cache emptied: 0 bytes
            ->Flash cache emptied: 69196 bytes
             
            %systemdrive% .tmp files removed: 0 bytes
            %systemroot% .tmp files removed: 17246579 bytes
            %systemroot%\System32 .tmp files removed: 2887185 bytes
            %systemroot%\System32\dllcache .tmp files removed: 0 bytes
            %systemroot%\System32\drivers .tmp files removed: 0 bytes
            Windows Temp folder emptied: 876159 bytes
            %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 52512784 bytes
            %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
            RecycleBin emptied: 139128 bytes
             
            Total Files Cleaned = 281.00 mb
             
             
            OTL by OldTimer - Version 3.2.17.1 log created on 10282010_175725

            Files\Folders moved on Reboot...
            C:\WINDOWS\temp\Perflib_Perfdata_d94.dat moved successfully.

            Registry entries deleted on Reboot...
            Logged

            SuperDave

            • Malware Removal Specialist


              • Genius
              • Thanked: 1020
            • Certifications: List
            • Experience: Expert
            • OS: Windows 10
            Re: Pc Problems
            « Reply #23 on: October 29, 2010, 11:27:32 AM »
            Could you please try running ComboFix again.
            Logged
            Windows 8 and Windows 10 dual boot with two SSD's

            thammondwis

              Topic Starter


              Beginner

              Re: Pc Problems
              « Reply #24 on: October 30, 2010, 05:57:35 AM »
              Can you clarify the instructions for ComboFix?  I tried using the original instructions that you gave me in which I renamed it commy.exe but I recieved a error meassage that it could not run because of copprut files.
              Logged

              SuperDave

              • Malware Removal Specialist


                • Genius
                • Thanked: 1020
              • Certifications: List
              • Experience: Expert
              • OS: Windows 10
              Re: Pc Problems
              « Reply #25 on: October 30, 2010, 11:59:34 AM »
              Ok Please delete ComboFix from your desktop and do this.

              Download ComboFix by sUBs from one of the below links.  Be sure to save it to the Desktop.

              link # 1
              link #2

              Close any open web browsers (Firefox, Internet Explorer, etc) before starting ComboFix.

              Temporarily disable your anti-virus, and any anti-spyware real-time protection before performing a scan. Click this link to see a list of security programs that should be disabled and how to disable them.

              Vista users Right-click combofix.exe and select Run as Administrator and follow the prompts. (you will receive a UAC prompt, please allow it)

              Double-click combofix.exe and follow the prompts.
              When finished, ComboFix will produce a log for you.
              Post the ComboFix log and a new HijackThis log in your next reply.

              NOTE: Do not mouseclick ComboFix's window while it is running. That may cause it to stall.

              Remember to re-enable your anti-virus and anti-spyware protection when ComboFix is complete.

              If you have problems with ComboFix usage, see How to use ComboFix
              Logged
              Windows 8 and Windows 10 dual boot with two SSD's

              thammondwis

                Topic Starter


                Beginner

                Re: Pc Problems
                « Reply #26 on: October 30, 2010, 10:00:42 PM »
                ComboFix still does not run.  Same result as before.  Note I saw a reference that CD emulators can interfere with ComboFix.  I did have Daemon Tools installed and uninstalled it not to long ago (don't remember if it was before or after the first time I was instructed to run ComboFix).  I don't know if that info will help or not.
                Logged

                SuperDave

                • Malware Removal Specialist


                  • Genius
                  • Thanked: 1020
                • Certifications: List
                • Experience: Expert
                • OS: Windows 10
                Re: Pc Problems
                « Reply #27 on: October 31, 2010, 10:44:12 AM »
                Ok. How's your computer running?

                I'd like to scan your machine with ESET OnlineScan

                •Hold down Control and click on the following link to open ESET OnlineScan in a new window.
                ESET OnlineScan
                •Click the button.
                •For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
                • Click on to download the ESET Smart Installer. Save it to your desktop.
                • Double click on the icon on your desktop.
                •Check
                •Click the button.
                •Accept any security warnings from your browser.
                •Check
                •Push the Start button.
                •ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
                •When the scan completes, push
                •Push , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
                •Push the button.
                •Push
                A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt
                Logged
                Windows 8 and Windows 10 dual boot with two SSD's

                thammondwis

                  Topic Starter


                  Beginner

                  Re: Pc Problems
                  « Reply #28 on: October 31, 2010, 07:55:10 PM »
                  Maybe a bit better at this point but still getting some rediredts in FireFox. Internet Explorer still is unresponsive at times.  I think it has been a day or two since I last got the WIN32 error.

                  The ESET scan picker up 5 infected files.  Here is the log:

                  C:\Documents and Settings\Home\Application Data\Microsoft\Internet Explorer\Quick Launch\eBay.lnk   Win32/Adware.ADON application   cleaned by deleting - quarantined
                  C:\Documents and Settings\Home\Application Data\Sun\Java\Deployment\cache\6.0\26\5e0959da-1d40f071   a variant of Java/TrojanDownloader.OpenStream.NAU trojan   deleted - quarantined
                  C:\Documents and Settings\Home\Desktop\eBay.lnk   Win32/Adware.ADON application   cleaned by deleting - quarantined
                  C:\Documents and Settings\Home\Start Menu\eBay.lnk   Win32/Adware.ADON application   cleaned by deleting - quarantined
                  E:\Laptop data files\copy\[PC GAME ADULT] video strip poker 2006.ISO   probably a variant of Win32/Agent.FOSBCKS trojan   deleted - quarantined
                  Logged

                  SuperDave

                  • Malware Removal Specialist


                    • Genius
                    • Thanked: 1020
                  • Certifications: List
                  • Experience: Expert
                  • OS: Windows 10
                  Re: Pc Problems
                  « Reply #29 on: November 01, 2010, 12:56:37 PM »
                  Ok. Let's try another scan.

                  Please download [color="#FF0000"]GooredFix[/color] from one of the locations below and save it to your Desktop
                  Download Mirror #1
                  Download Mirror #2
                  • Ensure all Firefox windows are closed.
                  • To run the tool, double-click it (XP), or right-click and select Run As Administrator (Vista).
                  • When prompted to run the scan, click Yes.
                  • GooredFix will check for infections, and then a log will appear. Please post the contents of that log in your next reply (it can also be found on your desktop, called GooredFix.txt).
                  Logged
                  Windows 8 and Windows 10 dual boot with two SSD's
                  Pages: 1 [2] 3 4 ... 6  All   Go Up
                  « previous next »