Redirect virus redirects on just about everything, Google, Yahoo, Ebay! I need this gone, please!

Posted 1/26/2010 2:53 AM
#82392
User avatar

Paul L. Member

Date Joined Nov 2016
Total Posts: 4
I have the same thing everyone else seems to have bu it seems to be getting worse. I am on a different computer typing this cause it knows man! At first if I tried to download or even go to a site like Avast or Malaware it would just boot me right off the internet.
Posted 1/26/2010 5:14 AM
#82403
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
Hello :smile: <br/> <br/> <br/> <br/> <br/> <br/><SPAN lang=EN style="FONT-SIZE: 9pt; COLOR: black; FONT-FAMILY: Verdana; mso-ansi-language: EN; mso-bidi-font-size: 12.0pt">We need to get a comprehensive report of what is present in your system. <br/>Please download DDS: http://download.bleepingcomputer.com/sUBs/dds.scr <br/> <br/><SPAN lang=EN style="FONT-SIZE: 9pt; COLOR: black; FONT-FAMILY: Verdana; mso-ansi-language: EN; mso-bidi-font-size: 12.0pt"><SPAN style="mso-spacerun: yes"> to your Desktop and doubleclick on DDs.scr to run it. <?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" /><o:p></o:p> <br/> <br/><SPAN lang=EN style="FONT-SIZE: 9pt; COLOR: black; FONT-FAMILY: Verdana; mso-ansi-language: EN; mso-bidi-font-size: 12.0pt"> <br/> <br/><SPAN lang=EN style="FONT-SIZE: 9pt; COLOR: black; FONT-FAMILY: Verdana; mso-ansi-language: EN; mso-bidi-font-size: 12.0pt">When the scan has finished, two logs will open. <o:p></o:p> <br/> <br/><SPAN lang=EN style="FONT-SIZE: 9pt; COLOR: black; FONT-FAMILY: Verdana; mso-ansi-language: EN; mso-bidi-font-size: 12.0pt">Copy and paste both reports in this topic. <br/> <br/><SPAN lang=EN style="FONT-SIZE: 9pt; COLOR: black; FONT-FAMILY: Verdana; mso-ansi-language: EN; mso-bidi-font-size: 12.0pt"><o:p></o:p> <br/> <br/><SPAN lang=EN style="FONT-SIZE: 9pt; COLOR: black; FONT-FAMILY: Verdana; mso-ansi-language: EN; mso-bidi-font-size: 12.0pt">The logs will be reasonably large so you may have to divide them into sections and make several posts to post them. <br/> <br/><SPAN style="mso-spacerun: yes"> <o:p></o:p> <br/> <br/><SPAN lang=EN style="COLOR: black">Before you provide them, we ask that you remove any P2P/file sharing programs if you have any, and this includes Torrent software, before we clean your computer. <o:p></o:p>

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


Posted 1/26/2010 5:56 PM
#82424
User avatar

Paul L. Member

Date Joined Nov 2016
Total Posts: 4
i tried to download that but when i double clicked it just showed a bunch of gobbeldy gook in notepad and said it couldn't run in dos mode.
Posted 1/27/2010 3:29 AM
#82442
User avatar

Touch Advanced member

Date Joined Nov 2016
Total Posts: 12976
Ok. We´ll try another scaner then -> <br/> <br/> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB">Download OTL by OldTimer, saving it to your desktop: <SPAN style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'"><SPAN lang=EN-GB style="COLOR: black; mso-ansi-language: EN-GB">http://oldtimer.geekstogo.com/OTL.exe<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" /><o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB">Close all open windows on the Task Bar. Click the OTL icon (for Vista, right click the icon and Run as Administrator) to start the program. <o:p></o:p> <br/> <br/><PRE style="BORDER-RIGHT: medium none; PADDING-RIGHT: 0cm; BORDER-TOP: medium none; PADDING-LEFT: 0cm; PADDING-BOTTOM: 0cm; MARGIN: 3.75pt 15pt 0pt 51pt; BORDER-LEFT: medium none; TEXT-INDENT: -18pt; PADDING-TOP: 0cm; BORDER-BOTTOM: medium none; mso-list: l0 level1 lfo4; tab-stops: list 36.0pt left 45.8pt 91.6pt 137.4pt 183.2pt 229.0pt 274.8pt 320.6pt 366.4pt 412.2pt 458.0pt 503.8pt 549.6pt 595.4pt 641.2pt 687.0pt 732.8pt; mso-border-alt: inset windowtext .75pt; mso-padding-alt: 5.0pt 5.0pt 5.0pt 5.0pt"><SPAN lang=EN-GB style="COLOR: #333333; FONT-FAMILY: Symbol; mso-ansi-language: EN-GB">·<SPAN style="FONT: 7pt 'Times New Roman'"> <SPAN lang=EN-GB style="COLOR: #333333; FONT-FAMILY: Verdana; mso-ansi-language: EN-GB">When the window appears, underneath Output at the top change it to Minimal Output.<o:p></o:p></PRE><PRE style="BORDER-RIGHT: medium none; PADDING-RIGHT: 0cm; BORDER-TOP: medium none; PADDING-LEFT: 0cm; PADDING-BOTTOM: 0cm; MARGIN: 3.75pt 15pt 0pt 51pt; BORDER-LEFT: medium none; TEXT-INDENT: -18pt; PADDING-TOP: 0cm; BORDER-BOTTOM: medium none; mso-list: l0 level1 lfo4; mso-border-alt: inset windowtext .75pt; mso-padding-alt: 5.0pt 5.0pt 5.0pt 5.0pt"><SPAN lang=EN-GB style="COLOR: #333333; FONT-FAMILY: Symbol; mso-ansi-language: EN-GB">·<SPAN style="FONT: 7pt 'Times New Roman'"> <SPAN lang=EN-GB style="COLOR: #333333; FONT-FAMILY: Verdana; mso-ansi-language: EN-GB"> <o:p></o:p></PRE><PRE style="BORDER-RIGHT: medium none; PADDING-RIGHT: 0cm; BORDER-TOP: medium none; PADDING-LEFT: 0cm; PADDING-BOTTOM: 0cm; MARGIN: 0cm 15pt 0pt 51pt; BORDER-LEFT: medium none; TEXT-INDENT: -18pt; PADDING-TOP: 0cm; BORDER-BOTTOM: medium none; mso-list: l0 level1 lfo4; tab-stops: list 36.0pt left 45.8pt 91.6pt 137.4pt 183.2pt 229.0pt 274.8pt 320.6pt 366.4pt 412.2pt 458.0pt 503.8pt 549.6pt 595.4pt 641.2pt 687.0pt 732.8pt; mso-border-alt: inset windowtext .75pt; mso-padding-alt: 5.0pt 5.0pt 5.0pt 5.0pt"><SPAN lang=EN-GB style="COLOR: #333333; FONT-FAMILY: Symbol; mso-ansi-language: EN-GB">·<SPAN style="FONT: 7pt 'Times New Roman'"> <SPAN lang=EN-GB style="COLOR: #333333; FONT-FAMILY: Verdana; mso-ansi-language: EN-GB">Under the Standard Registry box change it to All.<o:p></o:p></PRE><PRE style="BORDER-RIGHT: medium none; PADDING-RIGHT: 0cm; BORDER-TOP: medium none; PADDING-LEFT: 0cm; PADDING-BOTTOM: 0cm; MARGIN: 0cm 15pt 0pt 51pt; BORDER-LEFT: medium none; TEXT-INDENT: -18pt; PADDING-TOP: 0cm; BORDER-BOTTOM: medium none; mso-list: l0 level1 lfo4; mso-border-alt: inset windowtext .75pt; mso-padding-alt: 5.0pt 5.0pt 5.0pt 5.0pt"><SPAN lang=EN-GB style="COLOR: #333333; FONT-FAMILY: Symbol; mso-ansi-language: EN-GB">·<SPAN style="FONT: 7pt 'Times New Roman'"> <SPAN lang=EN-GB style="COLOR: #333333; FONT-FAMILY: Verdana; mso-ansi-language: EN-GB"> <o:p></o:p></PRE> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB"> <o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB">In the lower right corner of the Top Panel, checkmark "LOP Check" and checkmark "Purity Check". <o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB">Now click Run Scan at Top left and let the program run uninterrupted. The scan may take 5-10 minutes. <o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB">Do not TOUCH your keyboard until the scan completes! <o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB">It will produce two (2) logs on your desktop, one will pop up called OTL.txt; the other will be named Extras.txt. <o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB">Exit Notepad. Remember where you've saved these 2 files.<o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB">Exit OTL by clicking the X at top right.<o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB"> <br/>Then copy/paste the following into your post (in order): <o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB"> <o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB">the contents of OTL.txt<o:p></o:p> <br/> <br/><SPAN lang=EN-GB style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: 'Trebuchet MS'; mso-ansi-language: EN-GB">the contents of Extras.txt <o:p></o:p>

[color=black face="Courier New" sab="311">[2]Click here: Before-posting-a-log[/2][/url]

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
[/color]
Do not PM me with logfiles. They will be deleted.


Posted 1/28/2010 1:51 AM
#82465
User avatar

Paul L. Member

Date Joined Nov 2016
Total Posts: 4
Here they are: <br/> <br/>OTL logfile created on: 1/27/2010 6:49:26 PM - Run 3 <br/>OTL by OldTimer - Version 3.1.20.1 Folder = C:\Documents and Settings\Sean\Desktop <br/>Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation <br/>Internet Explorer (Version = 8.0.6001.18702) <br/>Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy <br/> <br/>503.00 Mb Total Physical Memory | 145.00 Mb Available Physical Memory | 29.00% Memory free <br/>1.00 Gb Paging File | 1.00 Gb Available in Paging File | 60.00% Paging File free <br/>Paging file location(s): C:\pagefile.sys 754 1512 [binary data] <br/> <br/>%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files <br/>Drive C: | 34.23 Gb Total Space | 11.17 Gb Free Space | 32.64% Space Free | Partition Type: NTFS <br/>D: Drive not present or media not loaded <br/>E: Drive not present or media not loaded <br/>F: Drive not present or media not loaded <br/>G: Drive not present or media not loaded <br/>H: Drive not present or media not loaded <br/>I: Drive not present or media not loaded <br/> <br/>Computer Name: PAUL-LAPTOP <br/>Current User Name: Sean <br/>Logged in as Administrator. <br/> <br/>Current Boot Mode: Normal <br/>Scan Mode: Current user <br/>Company Name Whitelist: Off <br/>Skip Microsoft Files: Off <br/>File Age = 30 Days <br/>Output = Minimal <br/> <br/>[color=#E56717]========== Processes (SafeList) ==========[/color] <br/> <br/>PRC - C:\Documents and Settings\Sean\Desktop\OTL.exe (OldTimer Tools) <br/>PRC - C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.) <br/>PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.) <br/>PRC - C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.) <br/>PRC - C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe (Veoh Networks) <br/>PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.) <br/>PRC - C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.) <br/>PRC - C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) <br/>PRC - C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.) <br/>PRC - C:\WINDOWS\system32\PnkBstrA.exe () <br/>PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) <br/>PRC - C:\Program Files\Java\jre1.5.0_10\bin\jucheck.exe (Sun Microsystems, Inc.) <br/>PRC - C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe (Sun Microsystems, Inc.) <br/>PRC - C:\WINDOWS\system32\WLTRAY.EXE (Dell Inc.) <br/>PRC - C:\WINDOWS\system32\WLTRYSVC.EXE () <br/>PRC - C:\WINDOWS\system32\BCMWLTRY.EXE (Dell Inc.) <br/>PRC - C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing LP) <br/>PRC - C:\WINDOWS\stsystra.exe (SigmaTel, Inc.) <br/>PRC - C:\WINDOWS\system32\igfxpers.exe (Intel Corporation) <br/>PRC - C:\WINDOWS\system32\hkcmd.exe (Intel Corporation) <br/>PRC - C:\WINDOWS\system32\igfxsrvc.exe (Intel Corporation) <br/>PRC - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.) <br/>PRC - C:\Program Files\Symantec AntiVirus\DefWatch.exe (Symantec Corporation) <br/>PRC - C:\Program Files\Dell\NicConfigSvc\NicConfigSvc.exe (Dell Inc.) <br/>PRC - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation) <br/>PRC - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation) <br/>PRC - C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation) <br/>PRC - C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe (CyberLink Corp.) <br/>PRC - C:\Program Files\Dell\Media Experience\DMXLauncher.exe () <br/>PRC - C:\WINDOWS\system32\dla\tfswctrl.exe (Sonic Solutions) <br/>PRC - C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation) <br/>PRC - C:\Program Files\Digital Line Detect\DLG.exe (BVRP Software) <br/>PRC - C:\Program Files\NetWaiting\netwaiting.exe () <br/> <br/> <br/>[color=#E56717]========== Modules (SafeList) ==========[/color] <br/> <br/>MOD - C:\Documents and Settings\Sean\Desktop\OTL.exe (OldTimer Tools) <br/>MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll (Microsoft Corporation) <br/> <br/> <br/>[color=#E56717]========== Win32 Services (SafeList) ==========[/color] <br/> <br/>SRV - (cddfcccdbbbdb) -- File not found <br/>SRV - (iPod Service) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.) <br/>SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.) <br/>SRV - (npggsvc) -- C:\WINDOWS\System32\GameMon.des (INCA Internet Co., Ltd.) <br/>SRV - (Bonjour Service) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) <br/>SRV - (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.) <br/>SRV - (PnkBstrA) -- C:\WINDOWS\system32\PnkBstrA.exe () <br/>SRV - (DSBrokerService) -- C:\Program Files\DellSupport\brkrsvc.exe () <br/>SRV - (UPnPService) -- C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe (Magix AG) <br/>SRV - (wltrysvc) -- C:\WINDOWS\System32\WLTRYSVC.EXE () <br/>SRV - (FirebirdServerMAGIXInstance) -- C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe (MAGIX®) <br/>SRV - (SavRoam) -- C:\Program Files\Symantec AntiVirus\SavRoam.exe (symantec) <br/>SRV - (Symantec AntiVirus) -- C:\Program Files\Symantec AntiVirus\Rtvscan.exe (Symantec Corporation) <br/>SRV - (DefWatch) -- C:\Program Files\Symantec AntiVirus\DefWatch.exe (Symantec Corporation) <br/>SRV - (NICCONFIGSVC) -- C:\Program Files\Dell\NicConfigSvc\NicConfigSvc.exe (Dell Inc.) <br/>SRV - (ccSetMgr) -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation) <br/>SRV - (ccPwdSvc) -- C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe (Symantec Corporation) <br/>SRV - (ccEvtMgr) -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation) <br/>SRV - (SNDSrvc) -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe (Symantec Corporation) <br/>SRV - (SPBBCSvc) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe (Symantec Corporation) <br/>SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation) <br/>SRV - (p2pgasvc) -- C:\WINDOWS\system32\p2pgasvc.dll (Microsoft Corporation) <br/>SRV - (ose) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation) <br/> <br/> <br/>[color=#E56717]========== Driver Services (SafeList) ==========[/color] <br/> <br/>DRV - (NAVEX15) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20100108.002\NAVEX15.SYS (Symantec Corporation) <br/>DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\eengine\eeCtrl.sys (Symantec Corporation) <br/>DRV - (NAVENG) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20100108.002\NAVENG.SYS (Symantec Corporation) <br/>DRV - (USBAAPL) -- C:\WINDOWS\system32\drivers\usbaapl.sys (Apple, Inc.) <br/>DRV - (GEARAspiWDM) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys (GEAR Software Inc.) <br/>DRV - (MusCVideo) -- C:\WINDOWS\system32\drivers\MusCVideo.sys (Windows (R) 2000 DDK provider) <br/>DRV - (MusCAudio) -- C:\WINDOWS\system32\drivers\MusCAudio.sys (Windows (R) Codename Longhorn DDK provider) <br/>DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) <br/>DRV - (SysInfo) -- C:\Program Files\PlayOnline\SquareEnix\PlayOnlineViewer\polcfg\sysinfo.sys (SQUARE ENIX CO., LTD.) <br/>DRV - (acedrv11) -- C:\WINDOWS\system32\drivers\ACEDRV11.sys (Protect Software GmbH) <br/>DRV - (Secdrv) -- C:\WINDOWS\system32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) <br/>DRV - (s616unic) Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (WDM) -- C:\WINDOWS\system32\drivers\s616unic.sys (MCCI Corporation) <br/>DRV - (s616obex) -- C:\WINDOWS\system32\drivers\s616obex.sys (MCCI Corporation) <br/>DRV - (s616nd5) Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (NDIS) -- C:\WINDOWS\system32\drivers\s616nd5.sys (MCCI Corporation) <br/>DRV - (s616mgmt) Sony Ericsson Device 616 USB WMC Device Management Drivers (WDM) -- C:\WINDOWS\system32\drivers\s616mgmt.sys (MCCI Corporation) <br/>DRV - (s616mdm) -- C:\WINDOWS\system32\drivers\s616mdm.sys (MCCI Corporation) <br/>DRV - (s616mdfl) -- C:\WINDOWS\system32\drivers\s616mdfl.sys (MCCI Corporation) <br/>DRV - (s616bus) Sony Ericsson Device 616 driver (WDM) -- C:\WINDOWS\system32\drivers\s616bus.sys (MCCI Corporation) <br/>DRV - (PxHelp20) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions) <br/>DRV - (dsunidrv) -- C:\WINDOWS\system32\drivers\dsunidrv.sys (Gteko Ltd.) <br/>DRV - (BCM43XX) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS (Broadcom Corporation) <br/>DRV - (DSproct) -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys (Gteko Ltd.) <br/>DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.) <br/>DRV - (bcm4sbxp) -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys (Broadcom Corporation) <br/>DRV - (HSF_DPV) -- C:\WINDOWS\system32\drivers\HSF_DPV.sys (Conexant Systems, Inc.) <br/>DRV - (HSFHWAZL) -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys (Conexant Systems, Inc.) <br/>DRV - (winachsf) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys (Conexant Systems, Inc.) <br/>DRV - (ialm) -- C:\WINDOWS\system32\drivers\ialmnt5.sys (Intel Corporation) <br/>DRV - (SynTP) -- C:\WINDOWS\system32\drivers\SynTP.sys (Synaptics, Inc.) <br/>DRV - (SymEvent) -- C:\Program Files\Symantec\SYMEVENT.SYS (Symantec Corporation) <br/>DRV - (SYMTDI) -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS (Symantec Corporation) <br/>DRV - (SYMREDRV) -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS (Symantec Corporation) <br/>DRV - (SPBBCDrv) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys (Symantec Corporation) <br/>DRV - (SAVRTPEL) -- C:\Program Files\Symantec AntiVirus\Savrtpel.sys (Symantec Corporation) <br/>DRV - (SAVRT) -- C:\Program Files\Symantec AntiVirus\savrt.sys (Symantec Corporation) <br/>DRV - (tfsnudfa) -- C:\WINDOWS\system32\dla\tfsnudfa.sys (Sonic Solutions) <br/>DRV - (tfsnudf) -- C:\WINDOWS\system32\dla\tfsnudf.sys (Sonic Solutions) <br/>DRV - (tfsnifs) -- C:\WINDOWS\system32\dla\tfsnifs.sys (Sonic Solutions) <br/>DRV - (tfsncofs) -- C:\WINDOWS\system32\dla\tfsncofs.sys (Sonic Solutions) <br/>DRV - (tfsnboio) -- C:\WINDOWS\system32\dla\tfsnboio.sys (Sonic Solutions) <br/>DRV - (tfsnopio) -- C:\WINDOWS\system32\dla\tfsnopio.sys (Sonic Solutions) <br/>DRV - (tfsnpool) -- C:\WINDOWS\system32\dla\tfsnpool.sys (Sonic Solutions) <br/>DRV - (tfsndrct) -- C:\WINDOWS\system32\dla\tfsndrct.sys (Sonic Solutions) <br/>DRV - (tfsndres) -- C:\WINDOWS\system32\dla\tfsndres.sys (Sonic Solutions) <br/>DRV - (drvmcdb) -- C:\WINDOWS\system32\drivers\drvmcdb.sys (Sonic Solutions) <br/>DRV - (drvnddm) -- C:\WINDOWS\system32\drivers\drvnddm.sys (Sonic Solutions) <br/>DRV - (APPDRV) -- C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS (Dell Inc) <br/>DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\Hdaudbus.sys (Windows (R) Server 2003 DDK provider) <br/>DRV - (NwlnkIpx) -- C:\WINDOWS\system32\drivers\nwlnkipx.sys (Microsoft Corporation) <br/>DRV - (NwlnkNb) -- C:\WINDOWS\system32\drivers\nwlnknb.sys (Microsoft Corporation) <br/>DRV - (NwlnkSpx) -- C:\WINDOWS\system32\drivers\nwlnkspx.sys (Microsoft Corporation) <br/>DRV - (Ptilink) -- C:\WINDOWS\system32\drivers\ptilink.sys (Parallel Technologies, Inc.) <br/>DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation) <br/>DRV - (usbaudio) USB Audio Driver (WDM) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys (Microsoft Corporation) <br/>DRV - (amdagp) -- C:\WINDOWS\system32\DRIVERS\amdagp.sys (Advanced Micro Devices, Inc.) <br/>DRV - (sisagp) -- C:\WINDOWS\system32\DRIVERS\sisagp.sys (Silicon Integrated Systems Corporation) <br/>DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation) <br/>DRV - (sscdbhk5) -- C:\WINDOWS\system32\drivers\sscdbhk5.sys (Sonic Solutions) <br/>DRV - (ssrtln) -- C:\WINDOWS\system32\drivers\ssrtln.sys (Sonic Solutions) <br/>DRV - (SDDMI2) -- C:\WINDOWS\system32\DDMI2.sys (Gteko Ltd.) <br/>DRV - (FTSER2K) -- C:\WINDOWS\system32\drivers\ftser2k.sys (FTDI Ltd.) <br/>DRV - (FTDIBUS) -- C:\WINDOWS\system32\drivers\ftdibus.sys (FTDI Ltd.) <br/>DRV - (mdmxsdk) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys (Conexant) <br/>DRV - (DCamUSBVeo532) -- C:\WINDOWS\system32\drivers\ubVeo532.sys (IC Media Corporation) <br/>DRV - (QCDonner) -- C:\WINDOWS\system32\drivers\OVCD.sys (Microsoft Corporation) <br/>DRV - (Sparrow) -- C:\WINDOWS\system32\DRIVERS\sparrow.sys (Adaptec, Inc.) <br/>DRV - (sym_u3) -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys (LSI Logic) <br/>DRV - (sym_hi) -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys (LSI Logic) <br/>DRV - (symc8xx) -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys (LSI Logic) <br/>DRV - (symc810) -- C:\WINDOWS\system32\DRIVERS\symc810.sys (Symbios Logic Inc.) <br/>DRV - (SONYPVU1) Sony USB Filter Driver (SONYPVU1) -- C:\WINDOWS\system32\drivers\SONYPVU1.SYS (Sony Corporation) <br/>DRV - (ultra) -- C:\WINDOWS\system32\DRIVERS\ultra.sys (Promise Technology, Inc.) <br/>DRV - (ql12160) -- C:\WINDOWS\system32\DRIVERS\ql12160.sys (QLogic Corporation) <br/>DRV - (ql1080) -- C:\WINDOWS\system32\DRIVERS\ql1080.sys (QLogic Corporation) <br/>DRV - (ql1280) -- C:\WINDOWS\system32\DRIVERS\ql1280.sys (QLogic Corporation) <br/>DRV - (dac2w2k) -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys (Mylex Corporation) <br/>DRV - (mraid35x) -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys (American Megatrends Inc.) <br/>DRV - (asc) -- C:\WINDOWS\system32\DRIVERS\asc.sys (Advanced System Products, Inc.) <br/>DRV - (asc3550) -- C:\WINDOWS\system32\DRIVERS\asc3550.sys (Advanced System Products, Inc.) <br/>DRV - (AliIde) -- C:\WINDOWS\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.) <br/>DRV - (CmdIde) -- C:\WINDOWS\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.) <br/>DRV - (E100B) Intel(R) -- C:\WINDOWS\system32\drivers\e100b325.sys (Intel Corporation) <br/> <br/> <br/>[color=#E56717]========== Standard Registry (All) ==========[/color] <br/> <br/> <br/>[color=#E56717]========== Internet Explorer ==========[/color] <br/> <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie <br/>IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie <br/> <br/>IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway <br/>IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm <br/>IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1 <br/>IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com <br/>IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome <br/>IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie <br/>IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found <br/>IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation) <br/>IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 <br/>IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local <br/> <br/>[color=#E56717]========== FireFox ==========[/color] <br/> <br/>FF - prefs.js..browser.search.update: false <br/>FF - prefs.js..browser.startup.homepage: "http://m.www.yahoo.com/?fr=fptb-cclean" <br/>FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3 <br/>FF - prefs.js..extensions.enabledItems: {CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}:1.5.2.29 <br/>FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.7 <br/>FF - prefs.js..extensions.enabledItems: {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}:0.9.10.1 <br/>FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:1.0.0.07076007 <br/>FF - prefs.js..extensions.enabledItems: {f701c26a-479a-4724-b4f1-870db12f063c}:1.4.2 <br/>FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.5.200812101546 <br/>FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.7 <br/> <br/> <br/>FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/01/26 22:21:49 | 00,000,000 | ---D | M] <br/>FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/01/06 06:08:27 | 00,000,000 | ---D | M] <br/> <br/>[2008/06/18 10:57:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Mozilla\Extensions <br/>[2008/06/18 10:57:14 | 00,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sean\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} <br/>[2010/01/26 18:24:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions <br/>[2009/07/13 19:03:04 | 00,000,000 | ---D | M] (Forecastfox) -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} <br/>[2009/03/18 01:49:18 | 00,000,000 | ---D | M] (Bible Blue Basic) -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions\{0c2508e6-de4c-11db-8314-0800200c9a66} <br/>[2009/10/30 18:04:38 | 00,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} <br/>[2010/01/15 23:48:53 | 00,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} <br/>[2008/10/05 10:36:01 | 00,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions\{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7} <br/>[2010/01/15 23:48:54 | 00,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} <br/>[2010/01/25 19:28:00 | 00,000,000 | ---D | M] (Text-to-Image) -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions\{f701c26a-479a-4724-b4f1-870db12f063c} <br/>[2008/05/05 19:43:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions\moveplayer@movenetworks.com <br/>[2009/09/07 18:57:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions\searchrecs@veoh.com <br/>[2007/10/27 22:02:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Mozilla\Firefox\Profiles\d7o6hb98.default\extensions\videodowloader@videodownloader.net <br/>[2008/02/16 10:03:49 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions <br/>[2010/01/06 06:08:27 | 00,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} <br/>[2009/12/15 17:36:39 | 00,119,312 | ---- | M] (none) -- C:\Program Files\Mozilla Firefox\components\bcdbcbcaeefae.dll <br/>[2010/01/06 06:08:02 | 00,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll <br/>[2010/01/06 06:08:02 | 00,137,176 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll <br/>[2007/03/27 01:48:51 | 00,717,312 | ---- | M] (DivX,Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdivx32.dll <br/>[2007/03/27 01:49:32 | 00,094,208 | ---- | M] (DivX, Inc) -- C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll <br/>[2007/10/11 13:17:50 | 01,435,688 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll <br/>[2006/09/21 19:41:52 | 00,114,688 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npmozax.dll <br/>[2006/08/22 17:25:30 | 00,024,576 | ---- | M] (My Web Search) -- C:\Program Files\Mozilla Firefox\plugins\NPMySrWB.dll <br/>[2010/01/06 06:08:07 | 00,064,984 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll <br/>[2007/03/22 19:23:30 | 00,017,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL <br/>[2008/06/11 21:45:28 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll <br/>[2007/12/13 20:58:17 | 00,144,720 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll <br/>[2006/06/17 16:03:54 | 00,147,456 | ---- | M] (PopCap Games) -- C:\Program Files\Mozilla Firefox\plugins\nppopcaploader.dll <br/>[2009/12/11 20:18:14 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll <br/>[2009/12/11 20:18:14 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll <br/>[2009/12/11 20:18:14 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll <br/>[2009/12/11 20:18:14 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll <br/>[2009/12/11 20:18:14 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll <br/>[2009/12/11 20:18:14 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll <br/>[2009/12/11 20:18:14 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll <br/>[2005/04/27 14:10:49 | 00,102,400 | ---- | M] (RealNetworks) -- C:\Program Files\Mozilla Firefox\plugins\npracplug.dll <br/>[2007/12/13 20:58:43 | 00,024,576 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll <br/>[2007/12/13 20:58:04 | 00,081,920 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll <br/>[2009/08/04 21:43:03 | 00,221,184 | ---- | M] (CNN) -- C:\Program Files\Mozilla Firefox\plugins\NPTURNMED.dll <br/>[2006/09/23 03:22:00 | 00,221,184 | ---- | M] (Virtools SA) -- C:\Program Files\Mozilla Firefox\plugins\npvirtools.dll <br/>[2009/11/02 19:16:17 | 00,001,394 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.xml <br/>[2009/11/02 19:16:17 | 00,002,193 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\answers.xml <br/>[2009/11/02 19:16:17 | 00,001,534 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.xml <br/>[2009/11/02 19:16:17 | 00,002,344 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.xml <br/>[2009/11/02 19:16:17 | 00,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml <br/>[2009/11/02 19:16:17 | 00,001,178 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia.xml <br/>[2009/11/02 19:16:17 | 00,000,792 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.xml <br/> <br/>Hosts file not found <br/>O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) <br/>O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) <br/>O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) <br/>O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions) <br/>O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll (Sun Microsystems, Inc.) <br/>O3 - HKLM\..\Toolbar: (Veoh Web Player Video Finder) - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll (Veoh Networks Inc) <br/>O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll () <br/>O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) <br/>O3 - HKCU\..\Toolbar\ShellBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) <br/>O3 - HKCU\..\Toolbar\ShellBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) <br/>O3 - HKCU\..\Toolbar\WebBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) <br/>O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) <br/>O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.) <br/>O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) <br/>O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.) <br/>O4 - HKLM..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.EXE (Dell Inc.) <br/>O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation) <br/>O4 - HKLM..\Run: [Dell Wireless Manager UI] C:\WINDOWS\System32\WLTRAY.exe (Dell Inc.) <br/>O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.) <br/>O4 - HKLM..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe (Sonic Solutions) <br/>O4 - HKLM..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe () <br/>O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( ) <br/>O4 - HKLM..\Run: [DVDLauncher] C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe (CyberLink Corp.) <br/>O4 - HKLM..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation) <br/>O4 - HKLM..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation) <br/>O4 - HKLM..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation) <br/>O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation) <br/>O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation) <br/>O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.) <br/>O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.) <br/>O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.) <br/>O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe (Sun Microsystems, Inc.) <br/>O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.) <br/>O4 - HKCU..\Run: [BitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.) <br/>O4 - HKCU..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.) <br/>O4 - HKCU..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netwaiting.exe () <br/>O4 - HKCU..\Run: [VeohPlugin] C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe (Veoh Networks) <br/>O4 - HKLM..\RunServices: [Stealth] C:\WINDOWS\TRACK.EXE () <br/>O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\.DS_Store () <br/>O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) <br/>O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe (BVRP Software) <br/>O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing LP) <br/>O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 <br/>O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 <br/>O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 <br/>O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = <br/>O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = <br/>O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 <br/>O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsMenu = 01 00 00 00 [binary data] <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 01 00 00 00 [binary data] <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ClearRecentDocsOnExit = [binary data] <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsHistory = [binary data] <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 01 00 00 00 [binary data] <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = E3 FF FF 03 [binary data] <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = E3 FF FF 03 [binary data] <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 01 00 00 00 [binary data] <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 01 00 00 00 [binary data] <br/>O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0 <br/>O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation) <br/>O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\NPJPI150_10.dll (Sun Microsystems, Inc.) <br/>O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) <br/>O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) <br/>O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) <br/>O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) <br/>O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation) <br/>O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\pnrpnsp.dll (Microsoft Corporation) <br/>O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\WINDOWS\system32\pnrpnsp.dll (Microsoft Corporation) <br/>O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation) <br/>O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000031 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000032 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000033 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000034 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000035 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000036 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O10 - Protocol_Catalog9\Catalog_Entries\000000000037 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) <br/>O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. <br/>O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.dell.com/systemprofiler/SysPro.CAB (SysProWmi Class) <br/>O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool) <br/>O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) <br/>O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab (Reg Error: Key error.) <br/>O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} http://www.nick.com/common/groove/gx/GrooveAX27.cab (Reg Error: Key error.) <br/>O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10) <br/>O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2_03) <br/>O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10) <br/>O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) <br/>O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) <br/>O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) <br/>O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) <br/>O18 - Protocol\Handler\ipp - No CLSID value found <br/>O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) <br/>O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\msdaipp - No CLSID value found <br/>O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) <br/>O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) <br/>O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation) <br/>O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation) <br/>O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation) <br/>O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation) <br/>O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation) <br/>O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation) <br/>O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation) <br/>O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation) <br/>O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) <br/>O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) <br/>O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation) <br/>O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) <br/>O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) <br/>O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation) <br/>O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation) <br/>O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation) <br/>O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation) <br/>O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation) <br/>O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation) <br/>O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) <br/>O20 - Winlogon\Notify\NavLogon: DllName - C:\WINDOWS\system32\NavLogon.dll - C:\WINDOWS\system32\NavLogon.dll (Symantec Corporation) <br/>O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation) <br/>O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation) <br/>O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation) <br/>O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation) <br/>O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation) <br/>O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation) <br/>O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation) <br/>O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) <br/>O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) <br/>O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation) <br/>O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll (Microsoft Corporation) <br/>O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation) <br/>O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation) <br/>O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) <br/>O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) <br/>O24 - Desktop Components:0 (My Current Home Page) - About:Home <br/>O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation) <br/>O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation) <br/>O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation) <br/>O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation) <br/>O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation) <br/>O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation) <br/>O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation) <br/>O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation) <br/>O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation) <br/>O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation) <br/>O31 - SafeBoot: AlternateShell - cmd.exe <br/>O32 - HKLM CDRom: AutoRun - 1 <br/>O32 - AutoRun File - [2004/08/10 12:04:08 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] <br/>O33 - MountPoints2\{f7cb7f16-e856-11de-9958-001422a46b85}\Shell - "" = AutoRun <br/>O33 - MountPoints2\{f7cb7f16-e856-11de-9958-001422a46b85}\Shell\AutoRun - "" = Auto&Play <br/>O33 - MountPoints2\{f7cb7f16-e856-11de-9958-001422a46b85}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- File not found <br/>O35 - comfile [open] -- "%1" %* <br/>O35 - exefile [open] -- "%1" %* <br/> <br/>[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] <br/> <br/>[2010/01/24 14:08:58 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Sean\IECompatCache <br/>[2010/01/17 21:05:47 | 00,017,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll <br/>[2010/01/17 21:04:37 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 <br/>[2010/01/17 20:59:27 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF <br/>[2010/01/17 20:30:51 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Sean\Desktop\first 5 <br/>[2010/01/05 14:25:22 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Sean\Recent <br/>[2009/12/29 16:03:25 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro <br/>[2009/12/11 21:42:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft <br/>[2009/08/01 08:47:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Apple <br/>[2008/07/06 08:31:50 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft <br/>[2008/07/06 08:18:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft <br/>[2007/10/20 09:29:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple <br/>[2006/08/12 21:55:59 | 00,774,144 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files\RngInterstitial.dll <br/>[2006/05/16 08:41:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\McAfee.com Personal Firewall <br/>[2004/08/10 11:57:26 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft <br/> <br/>[color=#E56717]========== Files - Modified Within 30 Days ==========[/color] <br/> <br/>[2049/12/31 15:00:00 | 00,041,975 | ---- | M] () -- C:\Documents and Settings\Sean\IMAG0126.JPG <br/>[2049/12/31 15:00:00 | 00,039,932 | ---- | M] () -- C:\Documents and Settings\Sean\IMAG0125.JPG <br/>[2049/12/31 15:00:00 | 00,039,173 | ---- | M] () -- C:\Documents and Settings\Sean\IMAG0124.JPG <br/>[2010/01/26 19:46:45 | 00,524,288 | ---- | M] () -- C:\Documents and Settings\Sean\Desktop\dds.scr <br/>[2010/01/23 21:15:41 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT <br/>[2010/01/23 21:14:57 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat <br/>[2010/01/23 21:11:40 | 17,039,360 | -H-- | M] () -- C:\Documents and Settings\Sean\NTUSER.DAT <br/>[2010/01/23 21:11:09 | 00,000,278 | -HS- | M] () -- C:\Documents and Settings\Sean\ntuser.ini <br/>[2010/01/23 09:47:06 | 00,000,280 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job <br/>[2010/01/22 03:30:30 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl <br/>[2010/01/20 20:38:13 | 00,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk <br/>[2010/01/18 03:02:37 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK <br/>[2010/01/17 21:24:34 | 00,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb <br/>[2010/01/17 21:24:34 | 00,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb <br/>[2010/01/17 21:05:00 | 00,001,207 | ---- | M] () -- C:\WINDOWS\win.ini <br/>[2010/01/17 21:02:02 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx <br/>[2010/01/17 20:59:36 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf <br/>[2010/01/06 02:49:37 | 00,000,274 | ---- | M] () -- C:\WINDOWS\system.ini <br/>[2010/01/06 02:49:37 | 00,000,210 | -HS- | M] () -- C:\boot.ini <br/>[2010/01/05 14:05:38 | 00,535,032 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI <br/>[2010/01/05 14:05:38 | 00,453,098 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat <br/>[2010/01/05 14:05:38 | 00,075,028 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat <br/>[2009/12/29 16:03:29 | 00,001,773 | ---- | M] () -- C:\Documents and Settings\Sean\Desktop\HijackThis.lnk <br/> <br/>[color=#E56717]========== Files Created - No Company Name ==========[/color] <br/> <br/>[2010/01/26 19:46:41 | 00,524,288 | ---- | C] () -- C:\Documents and Settings\Sean\Desktop\dds.scr <br/>[2010/01/17 20:59:36 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf <br/>[2010/01/06 02:22:36 | 00,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK <br/>[2009/12/29 16:03:28 | 00,001,773 | ---- | C] () -- C:\Documents and Settings\Sean\Desktop\HijackThis.lnk <br/>[2009/12/26 10:58:32 | 00,315,408 | ---- | C] () -- C:\WINDOWS\System32\fabbfae.dll.vir <br/>[2009/12/10 23:24:33 | 00,000,036 | ---- | C] () -- C:\Documents and Settings\Sean\Local Settings\Application Data\housecall.guid.cache <br/>[2009/01/09 16:08:32 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\VeoSetup532.dll <br/>[2009/01/09 16:08:15 | 00,069,632 | ---- | C] () -- C:\WINDOWS\System32\Veo532ut.dll <br/>[2008/12/21 20:00:16 | 00,000,092 | R--- | C] () -- C:\WINDOWS\System32\ftdiun2k.ini <br/>[2008/12/21 19:47:34 | 00,000,005 | ---- | C] () -- C:\WINDOWS\System32\tykt7.dll <br/>[2008/12/10 21:07:05 | 00,000,029 | ---- | C] () -- C:\WINDOWS\Battle.ini <br/>[2008/09/28 11:30:24 | 00,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll <br/>[2008/09/28 11:29:30 | 00,006,642 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini <br/>[2008/09/11 21:30:02 | 00,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll <br/>[2008/07/18 18:40:30 | 00,000,503 | ---- | C] () -- C:\WINDOWS\track.INI <br/>[2008/06/21 11:41:01 | 00,137,472 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys <br/>[2008/03/10 17:39:29 | 00,000,000 | ---- | C] () -- C:\Program Files\temp01 <br/>[2008/02/15 07:44:51 | 00,108,032 | ---- | C] () -- C:\WINDOWS\System32\sh33w32.dll <br/>[2008/01/28 18:27:30 | 00,021,508 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\.DS_Store <br/>[2008/01/08 10:32:40 | 00,000,144 | ---- | C] () -- C:\WINDOWS\Eudcedit.ini <br/>[2007/12/21 13:48:45 | 00,049,152 | ---- | C] () -- C:\WINDOWS\fwCallWndRetProc.dll <br/>[2007/11/15 21:30:56 | 00,106,496 | ---- | C] () -- C:\WINDOWS\fileutil.dll <br/>[2007/11/03 12:26:03 | 00,027,136 | ---- | C] () -- C:\WINDOWS\System32\QTUninst.dll <br/>[2007/09/13 15:26:31 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Textart.INI <br/>[2007/08/21 22:52:56 | 00,860,211 | --S- | C] () -- C:\WINDOWS\System32\XSIFtk-3.6.2.1.dll <br/>[2007/03/27 01:55:48 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll <br/>[2006/12/28 12:52:49 | 00,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini <br/>[2006/12/27 15:24:44 | 00,086,016 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll <br/>[2006/12/27 15:24:26 | 00,757,760 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll <br/>[2006/12/25 09:42:39 | 00,110,592 | ---- | C] () -- C:\WINDOWS\System32\MKCoInstaller.dll <br/>[2006/12/12 10:24:42 | 00,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll <br/>[2006/11/18 13:50:57 | 00,025,601 | ---- | C] () -- C:\WINDOWS\CSTBox.INI <br/>[2006/11/03 13:05:43 | 00,002,828 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys <br/>[2006/11/01 00:54:30 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll <br/>[2006/11/01 00:52:38 | 00,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll <br/>[2006/10/25 17:56:07 | 00,000,027 | ---- | C] () -- C:\WINDOWS\MK4.INI <br/>[2006/10/25 14:58:17 | 00,000,019 | ---- | C] () -- C:\WINDOWS\KNP.INI <br/>[2006/10/08 07:38:51 | 00,000,070 | ---- | C] () -- C:\WINDOWS\dbinside.ini <br/>[2006/09/24 16:16:18 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI <br/>[2006/09/24 16:09:36 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS64.DLL <br/>[2006/09/16 16:05:40 | 00,000,127 | ---- | C] () -- C:\Documents and Settings\Sean\Local Settings\Application Data\fusioncache.dat <br/>[2006/09/11 07:48:07 | 00,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll <br/>[2006/09/02 14:05:07 | 00,000,041 | ---- | C] () -- C:\WINDOWS\MinGW.INI <br/>[2006/08/28 14:07:40 | 00,210,944 | ---- | C] () -- C:\WINDOWS\System32\MSVCRT10.DLL <br/>[2006/08/12 22:00:29 | 00,000,094 | -H-- | C] () -- C:\WINDOWS\System32\tbd_G1ssg.ini <br/>[2006/07/26 04:56:36 | 00,001,359 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache <br/>[2006/06/19 15:00:35 | 00,242,688 | ---- | C] () -- C:\Documents and Settings\Sean\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini <br/>[2006/05/28 18:39:17 | 00,061,678 | ---- | C] () -- C:\Documents and Settings\Sean\Application Data\PFP120JPR.{PB <br/>[2006/05/28 18:39:17 | 00,012,358 | ---- | C] () -- C:\Documents and Settings\Sean\Application Data\PFP120JCM.{PB <br/>[2006/05/28 18:36:42 | 00,000,056 | RHS- | C] () -- C:\WINDOWS\System32\8BE7E2EEFB.sys <br/>[2006/05/27 12:52:54 | 00,000,000 | ---- | C] () -- C:\WINDOWS\mtstack16.INI <br/>[2006/05/27 09:44:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\syscheck.INI <br/>[2006/05/20 09:46:37 | 00,000,039 | ---- | C] () -- C:\Documents and Settings\Sean\Application Data\Deimos Rising License.lcs <br/>[2006/05/19 18:20:56 | 00,000,000 | ---- | C] () -- C:\WINDOWS\vpc32.INI <br/>[2006/05/17 19:53:12 | 00,007,743 | ---- | C] () -- C:\WINDOWS\cdPlayer.ini <br/>[2006/05/17 19:18:55 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI <br/>[2006/05/17 14:43:57 | 00,000,677 | ---- | C] () -- C:\WINDOWS\SIERRA.INI <br/>[2006/05/16 19:54:10 | 00,000,000 | ---- | C] () -- C:\WINDOWS\pcfriend.INI <br/>[2006/05/16 15:57:20 | 00,000,024 | ---- | C] () -- C:\WINDOWS\X6813.INI <br/>[2005/10/06 17:38:29 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini <br/>[2005/10/06 17:32:27 | 00,004,243 | ---- | C] () -- C:\WINDOWS\wininit.ini <br/>[2005/10/06 17:25:02 | 00,000,004 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\QSLLPSVCShare <br/>[2005/10/06 17:01:40 | 00,000,390 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI <br/>[2005/01/28 07:08:34 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini <br/>[2005/01/25 03:39:50 | 00,098,304 | ---- | C] () -- C:\WINDOWS\System32\AnimWnd.dll <br/>[2004/08/10 12:12:05 | 00,000,803 | ---- | C] () -- C:\WINDOWS\orun32.ini <br/>[2003/06/17 04:25:12 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\zlib.dll <br/>[2003/05/19 19:40:06 | 00,126,976 | ---- | C] () -- C:\WINDOWS\System32\IrrShape.dll <br/>[2003/01/07 14:05:08 | 00,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI <br/>[2001/10/10 21:14:40 | 00,017,408 | ---- | C] () -- C:\WINDOWS\System32\lfwmp12n.dll <br/>[2000/04/12 02:28:12 | 00,118,784 | ---- | C] () -- C:\WINDOWS\System32\lfkodak.dll <br/>[2000/04/12 02:24:10 | 00,338,944 | ---- | C] () -- C:\WINDOWS\System32\lffpx7.dll <br/>[1999/01/22 12:46:58 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL <br/>[1998/10/10 23:07:38 | 00,088,576 | ---- | C] () -- C:\WINDOWS\System32\Iticheck.dll <br/>[1998/08/16 05:00:00 | 00,004,096 | ---- | C] () -- C:\WINDOWS\System32\sysres.dll <br/>[1998/01/12 02:00:00 | 00,040,448 | ---- | C] () -- C:\WINDOWS\System32\REGOBJ.DLL <br/> <br/>[color=#E56717]========== LOP Check ==========[/color] <br/> <br/>[2007/09/04 20:07:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Acoustica <br/>[2008/02/24 17:09:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Autodesk <br/>[2009/12/05 20:39:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\boost_interprocess <br/>[2008/03/26 21:05:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Grey Alien Games <br/>[2008/09/28 12:11:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MAGIX <br/>[2009/09/03 20:02:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound <br/>[2008/02/24 17:09:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap <br/>[2009/04/02 15:55:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Propellerhead Software <br/>[2008/02/24 17:09:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SBT <br/>[2006/11/11 11:48:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SpinTop Games <br/>[2008/07/06 07:59:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft <br/>[2009/12/28 09:15:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP <br/>[2005/10/06 17:32:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint <br/>[2009/09/30 21:06:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD} <br/>[2009/07/24 17:18:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} <br/>[2008/10/27 19:54:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Acoustica <br/>[2006/08/07 07:33:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Aim <br/>[2006/08/19 00:27:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Atari <br/>[2009/11/13 21:02:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Autodesk <br/>[2009/01/02 12:52:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Butel <br/>[2009/10/29 19:56:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Canon <br/>[2007/11/15 23:16:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Comcast <br/>[2010/01/27 19:09:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\DNA <br/>[2006/10/24 15:48:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Free Download Manager <br/>[2007/12/26 01:33:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\fretsonfire <br/>[2006/06/13 21:38:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Leadertech <br/>[2008/09/28 12:14:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\MAGIX <br/>[2009/12/05 20:45:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Multi File Downloader <br/>[2009/09/03 20:03:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\NCH Swift Sound <br/>[2007/12/25 14:03:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\NetMedia Providers <br/>[2009/04/02 15:55:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Propellerhead Software <br/>[2008/04/05 19:00:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Publish Providers <br/>[2007/12/25 14:03:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Sony <br/>[2009/08/07 01:54:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\WeGame <br/>[2006/06/04 21:29:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Sean\Application Data\Wildfire <br/> <br/>[color=#E56717]========== Purity Check ==========[/color] <br/> <br/> <br/> <br/>[color=#E56717]========== Alternate Data Streams ==========[/color] <br/> <br/>@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\regini.exe:SummaryInformation <br/>@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\hid.dll:SummaryInformation <br/>@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\drivers\battc.sys:SummaryInformation <br/>@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\doskey.exe:SummaryInformation <br/>@Alternate Data Stream - 88 bytes -> C:\NTDETECT.PIF:SummaryInformation <br/>@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Sean\My Documents\cc_20090713_183003.reg:SummaryInformation <br/>@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Sean\My Documents\~$PPart1.doc:SummaryInformation <br/>@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Sean\Desktop\spider.exe:SummaryInformation <br/>@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\All Users\Documents\Track09.cda:SummaryInformation <br/>@Alternate Data Stream - 88 bytes -> C:\c1.lvl:SummaryInformation <br/>@Alternate Data Stream - 362 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:05EE1EEF <br/>@Alternate Data Stream - 202 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:93F3E4C9 <br/>@Alternate Data Stream - 147 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D667795F <br/>@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C39E55C5 <br/>@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CB0AACC9 <br/>@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2 <br/>< End of report > <br/> <br/>OTL Extras logfile created on: 12/28/2009 2:37:36 PM - Run 1 <br/>OTL by OldTimer - Version 3.1.20.1 Folder = C:\Documents and Settings\Sean\Desktop <br/>Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation <br/>Internet Explorer (Version = 8.0.6001.18702) <br/>Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy <br/> <br/>503.00 Mb Total Physical Memory | 216.00 Mb Available Physical Memory | 43.00% Memory free <br/>1.00 Gb Paging File | 1.00 Gb Available in Paging File | 72.00% Paging File free <br/>Paging file location(s): C:\pagefile.sys 754 1512 [binary data] <br/> <br/>%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files <br/>Drive C: | 34.23 Gb Total Space | 11.65 Gb Free Space | 34.03% Space Free | Partition Type: NTFS <br/>D: Drive not present or media not loaded <br/>E: Drive not present or media not loaded <br/>F: Drive not present or media not loaded <br/>G: Drive not present or media not loaded <br/>H: Drive not present or media not loaded <br/>I: Drive not present or media not loaded <br/> <br/>Computer Name: PAUL-LAPTOP <br/>Current User Name: Sean <br/>Logged in as Administrator. <br/> <br/>Current Boot Mode: Normal <br/>Scan Mode: Current user <br/>Company Name Whitelist: Off <br/>Skip Microsoft Files: Off <br/>File Age = 30 Days <br/>Output = Standard <br/> <br/>[color=#E56717]========== Extra Registry (SafeList) ==========[/color] <br/> <br/> <br/>[color=#E56717]========== File Associations ==========[/color] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] <br/>.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation) <br/> <br/>[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] <br/>.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) <br/> <br/>[color=#E56717]========== Shell Spawning ==========[/color] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] <br/>batfile [open] -- "%1" %* <br/>cmdfile [open] -- "%1" %* <br/>comfile [open] -- "%1" %* <br/>exefile [open] -- "%1" %* <br/>htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation) <br/>htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation) <br/>htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) <br/>htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation) <br/>http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation) <br/>https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation) <br/>piffile [open] -- "%1" %* <br/>regfile [merge] -- Reg Error: Key error. <br/>scrfile [config] -- "%1" <br/>scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) <br/>scrfile [open] -- "%1" /S <br/>txtfile [edit] -- Reg Error: Key error. <br/>Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 <br/>Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) <br/>Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) <br/>Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) <br/>Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) <br/>Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) <br/>CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) <br/> <br/>[color=#E56717]========== Security Center Settings ==========[/color] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] <br/>"FirstRunDisabled" = 1 <br/>"AntiVirusDisableNotify" = 0 <br/>"AntiVirusOverride" = 0 <br/>"FirewallOverride" = 0 <br/>"FirewallDisableNotify" = 0 <br/>"UpdatesDisableNotify" = 0 <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] <br/>"DisableMonitoring" = 1 <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] <br/> <br/>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] <br/> <br/>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] <br/>"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 <br/>"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 <br/>"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 <br/>"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 <br/>"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 <br/>"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 <br/>"3587:TCP" = 3587:TCP:*:Enabled:Windows Peer-to-Peer Grouping <br/>"3540:UDP" = 3540:UDP:*:Enabled:Peer Name Resolution Protocol (PNRP) <br/> <br/>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] <br/>"EnableFirewall" = 1 <br/>"DoNotAllowExceptions" = 0 <br/>"DisableNotifications" = 0 <br/> <br/>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] <br/>"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 <br/>"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 <br/>"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 <br/>"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 <br/>"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 <br/>"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 <br/>"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009 <br/>"3587:TCP" = 3587:TCP:*:Enabled:Windows Peer-to-Peer Grouping <br/>"3540:UDP" = 3540:UDP:*:Enabled:Peer Name Resolution Protocol (PNRP) <br/> <br/>[color=#E56717]========== Authorized Applications List ==========[/color] <br/> <br/>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] <br/>"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL -- File not found <br/>"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL -- File not found <br/>"C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AMERIC~1.0 -- File not found <br/> <br/>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] <br/>"C:\StubInstaller.exe" = C:\StubInstaller.exe:*:Disabled:LimeWire swarmed installer -- (LimeWire) <br/>"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found <br/>"C:\Program Files\Java\jre1.5.0_06\bin\javaw.exe" = C:\Program Files\Java\jre1.5.0_06\bin\javaw.exe:*:Enabled:Java(TM) 2 Platform Standard Edition binary -- File not found <br/>"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation) <br/>"C:\Program Files\AIM\aim.exe" = C:\Program Files\AIM\aim.exe:*:Disabled:AOL Instant Messenger -- File not found <br/>"C:\Program Files\Yahoo! Games\Bejeweled 2 Deluxe\WinBej2.exe" = C:\Program Files\Yahoo! Games\Bejeweled 2 Deluxe\WinBej2.exe:*:Disabled:Bejeweled2 -- File not found <br/>"C:\Program Files\GameHouse\CollapseCrunch\Collapse3.exe" = C:\Program Files\GameHouse\CollapseCrunch\Collapse3.exe:*:Disabled:Collapse! Crunch -- File not found <br/>"C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Disabled:AMERIC~1.0 -- File not found <br/>"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Disabled:AOL -- File not found <br/>"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Disabled:AOL -- File not found <br/>"C:\Program Files\eGames\Bowling Mania\bowling.exe" = C:\Program Files\eGames\Bowling Mania\bowling.exe:*:Disabled:bowling -- File not found <br/>"C:\Program Files\E Games\Super 1 Karting\Kart.exe" = C:\Program Files\E Games\Super 1 Karting\Kart.exe:*:Disabled:Kart -- File not found <br/>"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Disabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation) <br/>"C:\Program Files\Penguin Puzzle\Penguin Puzzle.exe" = C:\Program Files\Penguin Puzzle\Penguin Puzzle.exe:*:Disabled:NcSkel -- File not found <br/>"C:\Program Files\Real\RealPlayer\realplay.exe" = C:\Program Files\Real\RealPlayer\realplay.exe:*:Disabled:RealPlayer -- (RealNetworks, Inc.) <br/>"C:\Program Files\DropBox\DropBox\DropBox.exe" = C:\Program Files\DropBox\DropBox\DropBox.exe:*:Enabled:DropBox -- File not found <br/>"C:\WINDOWS\system32\mmc.exe" = C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console -- (Microsoft Corporation) <br/>"C:\Program Files\PlayOnline\SquareEnix\PlayOnlineViewer\pol.exe" = C:\Program Files\PlayOnline\SquareEnix\PlayOnlineViewer\pol.exe:*:Enabled:PlayOnline Viewer -- (SQUARE ENIX CO., LTD.) <br/>"C:\Program Files\NETAMIN\UBO_2007\game\ubo.exe" = C:\Program Files\NETAMIN\UBO_2007\game\ubo.exe:*:Enabled:UBOnline -- (Netamin Communication) <br/>"C:\Program Files\NETAMIN\Real Baseball\game\RealBaseball.exe" = C:\Program Files\NETAMIN\Real Baseball\game\RealBaseball.exe:*:Enabled:RealBaseball -- File not found <br/>"C:\Program Files\CyberLink\PCM4Everio\PCM4Everio.exe" = C:\Program Files\CyberLink\PCM4Everio\PCM4Everio.exe:*:Enabled:CyberLink PowerCinema NE for Everio -- File not found <br/>"C:\Program Files\CyberLink\PCM4Everio\EverioService.exe" = C:\Program Files\CyberLink\PCM4Everio\EverioService.exe:*:Enabled:CyberLink PowerCinema NE for Everio Resident Program -- File not found <br/>"C:\Program Files\Steam\steamapps\rageraptor101\counter-strike source\hl2.exe" = C:\Program Files\Steam\steamapps\rageraptor101\counter-strike source\hl2.exe:*:Enabled:hl2 -- File not found <br/>"C:\Program Files\Steam\steamapps\common\trials 2 second edition\launcher.exe" = C:\Program Files\Steam\steamapps\common\trials 2 second edition\launcher.exe:*:Enabled:Trials 2: Second Edition -- File not found <br/>"C:\Program Files\Steam\steamapps\rageraptor101\half-life 2 deathmatch\hl2.exe" = C:\Program Files\Steam\steamapps\rageraptor101\half-life 2 deathmatch\hl2.exe:*:Enabled:hl2 -- File not found <br/>"C:\Program Files\Steam\steamapps\rageraptor101\source dedicated server\srcds.exe" = C:\Program Files\Steam\steamapps\rageraptor101\source dedicated server\srcds.exe:*:Enabled:srcds -- File not found <br/>"C:\Program Files\SmartFTP Client\SmartFTP.exe" = C:\Program Files\SmartFTP Client\SmartFTP.exe:*:Enabled:SmartFTP Client 3.0 -- (SmartSoft Ltd.) <br/>"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.) <br/>"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.) <br/>"C:\Program Files\Steam\steam.exe" = C:\Program Files\Steam\steam.exe:*:Enabled:Steam -- File not found <br/>"C:\Program Files\Steam\steamapps\rageraptor101\garrysmod\hl2.exe" = C:\Program Files\Steam\steamapps\rageraptor101\garrysmod\hl2.exe:*:Disabled:hl2 -- File not found <br/>"C:\SRCDS\srcds.exe" = C:\SRCDS\srcds.exe:*:Enabled:srcds -- () <br/>"C:\Program Files\PFPortChecker\PFPortChecker.exe" = C:\Program Files\PFPortChecker\PFPortChecker.exe:*:Enabled:PFPortchecker by portforward.com helps check if your ports are properly forwarded. -- (portforward.com) <br/>"C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe" = C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player -- (Veoh Networks) <br/>"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.) <br/> <br/> <br/>[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] <br/>"{00040409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Disc 2 <br/>"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR <br/>"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 <br/>"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour <br/>"{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic RecordNow Data <br/>"{099B096F-A916-4ECE-8EF2-A6E5F7C4D113}" = Veo Connect <br/>"{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}" = Microsoft Plus! Photo Story 2 LE <br/>"{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}" = Sonic DLA <br/>"{13515135-48BB-4184-8C1F-2FAE0138E200}" = TBS WMP Plug-in <br/>"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime <br/>"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate <br/>"{1F528948-0E80-4C96-B455-DE4167CB1DF7}" = Internal Network Card Power Management <br/>"{26E1BFB0-E87E-4696-9F89-B467F01F81E5}" = Broadcom Management Programs <br/>"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2 <br/>"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager <br/>"{3248E093-5288-4CA9-B3AB-11A675FEA1F9}" = Symantec AntiVirus <br/>"{3248F0A8-6813-11D6-A77B-00B0D0150100}" = J2SE Runtime Environment 5.0 Update 10 <br/>"{33BB4982-DC52-4886-A03B-F4C5C80BEE89}" = Windows Media Player 10 <br/>"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP <br/>"{352310C3-E46B-42D3-8F32-54721FDD72D9}" = NetZeroInstallers <br/>"{35BDEFF1-A610-4956-A00D-15453C116395}" = Internet Explorer Default Page <br/>"{3AC54383-31D1-4907-961B-B12CBB1D0AE8}" = MobileMe Control Panel <br/>"{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting <br/>"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support <br/>"{4192EAC0-6B36-4723-B216-D0E86E7757AC}" = Jasc Paint Shop Photo Album 5 <br/>"{46FEBCF5-CA45-44AD-9BBC-B144F162B636}_is1" = Disk Doctors Digital Media Recovery Version 1.0.0 <br/>"{47004155-7376-403E-89E9-4C9F44AAF0D0}" = PlayOnline Viewer and Tetra Master <br/>"{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager <br/>"{5783F2D7-0209-0409-0000-0060B0CE6BBA}" = AutoCAD LT 2004 <br/>"{58A8E2AC-7223-4F43-881E-5ED8BD2477AB}" = UBO 2007 Edition <br/>"{5905F42D-3F5F-4916-ADA6-94A3646AEE76}" = Dell Driver Reset Tool <br/>"{59E5F42B-D992-4DBA-B54D-7BD9B67B5DA7}" = oRipa Screen Recorder <br/>"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver <br/>"{62BD0AE0-4EB1-4BBB-8F43-B6400C8FEB2C}" = AOLIcon <br/>"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD 5.5 <br/>"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update <br/>"{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}" = Microsoft Plus! Digital Media Edition Installer <br/>"{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03 <br/>"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK <br/>"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable <br/>"{74F7662C-B1DB-489E-A8AC-07A06B24978B}" = Dell System Restore <br/>"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 <br/>"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com <br/>"{78B50D1D-642C-4B89-BCC7-352EAE3614D7}" = iPod for Windows 2005-02-07 <br/>"{7A3F0566-5E05-4919-9C98-456F6B5CF831}" = Get High Speed Internet! <br/>"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec <br/>"{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}" = DellSupport <br/>"{7F142D56-3326-11D5-B229-002078017FBF}" = Modem Helper <br/>"{85C83EBB-DF7C-44C7-94C3-AED6BA91C063}" = ARC433 for Radioshack PRO433/PRO528/PRO2051 <br/>"{885A63EA-382B-4DD4-A755-14809B8557D6}" = Macromedia Flash Player 8 <br/>"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Graphics Media Accelerator Driver for Mobile <br/>"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player <br/>"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder <br/>"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 <br/>"{91057632-CA70-413C-B628-2D3CDBBB906B}" = Macromedia Flash Player 8 Plugin <br/>"{985818E9-F444-4271-A614-C7DF8394DB2E}" = SmartFTP Client <br/>"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 <br/>"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 <br/>"{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}" = iTunes <br/>"{A73EFA95-4872-4AE3-8EE9-10D2E2D713CF}" = RoadRunner <br/>"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support <br/>"{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic RecordNow Audio <br/>"{AC0EE5B0-A8FB-4D0A-AF03-2EDC518F841B}" = Dell Media Experience <br/>"{AC76BA86-7AD7-1033-7B44-A90000000001}" = Adobe Reader 9 <br/>"{AF06CAE4-C134-44B1-B699-14FBDB63BD37}" = Dell Picture Studio v3.0 <br/>"{AF19F291-F22F-4798-9662-525305AE9E48}" = WordPerfect Office 12 <br/>"{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic RecordNow Copy <br/>"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter <br/>"{B360A8E5-C171-4AAE-9777-65B3CDB0072C}" = CanoScan LiDE20,30 Manual <br/>"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy <br/>"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player <br/>"{BCE46757-7674-4416-BEDB-68205A60409E}" = Canon CanoScan Toolbox 4.1 <br/>"{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator <br/>"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 <br/>"{C5074CC4-0E26-4716-A307-960272A90040}" = QuickSet <br/>"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 <br/>"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 <br/>"{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}" = Digital Photo Navigator 1.5 <br/>"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software) <br/>"{E646DCF0-5A68-11D5-B229-002078017FBF}" = Digital Line Detect <br/>"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 <br/>"Action Replay Code Manager_is1" = Action Replay Code Manager <br/>"Adobe AIR" = Adobe AIR <br/>"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin <br/>"Adobe Photoshop 7.0" = Adobe Photoshop 7.0 <br/>"Adobe Shockwave Player" = Adobe Shockwave Player 11.5 <br/>"ASIO4ALL" = ASIO4ALL <br/>"Autodesk Express Viewer" = Autodesk Express Viewer <br/>"Broadcom 802.11b Network Adapter" = Dell Wireless WLAN Card <br/>"CANONBJ_Deinstall_CNMCP64.DLL" = Canon PIXMA iP4000 <br/>"CCleaner" = CCleaner <br/>"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3" = Conexant HDA D110 MDC V.92 Modem <br/>"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com <br/>"Dell Digital Jukebox Driver" = Dell Digital Jukebox Driver <br/>"Easy-WebPrint" = Easy-WebPrint <br/>"Firebird SQL Server US" = Firebird SQL Server - MAGIX Edition <br/>"FTDICOMM" = FTDI USB Serial Converter Drivers <br/>"GameHouse" = GameHouse <br/>"Half-Life Dedicated Server Update Tool" = Half-Life Dedicated Server Update Tool <br/>"ie8" = Windows Internet Explorer 8 <br/>"InstallShield_{13515135-48BB-4184-8C1F-2FAE0138E200}" = TBS WMP Plug-in <br/>"InstallShield_{47004155-7376-403E-89E9-4C9F44AAF0D0}" = PlayOnline Viewer and Tetra Master <br/>"InstallShield_{78B50D1D-642C-4B89-BCC7-352EAE3614D7}" = iPod for Windows 2005-02-07 <br/>"LiveUpdate" = LiveUpdate 2.6 (Symantec Corporation) <br/>"Macromedia Shockwave Player" = Macromedia Shockwave Player <br/>"MAGIX Goya burnR US" = MAGIX Goya burnR 1.3.1.3 (US) <br/>"MAGIX PC Visit US" = MAGIX PC Visit <br/>"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware <br/>"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 <br/>"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 <br/>"MinGW_is1" = "MinGW 2.0.0" <br/>"Mozilla Firefox (3.5.6)" = Mozilla Firefox (3.5.6) <br/>"MS-MPEG4" = Microsoft MPEG-4 VKI Video Codec V1/V2/V3 <br/>"MSNINST" = MSN <br/>"Network Play System (Patching)" = Network Play System (Patching) <br/>"OpenAL" = OpenAL <br/>"PCFriendly" = PCFriendly <br/>"PFPortChecker" = PFPortChecker 1.0.30 <br/>"PopCap Browser Plugin" = PopCap Browser Plugin <br/>"ProtectDisc Driver 11" = ProtectDisc Driver, Version 11 <br/>"QuickTime 3.0" = QuickTime 3.0 <br/>"RealPlayer 6.0" = RealPlayer <br/>"ShockwaveFlash" = Macromedia Flash Player 8 <br/>"SmartFTP Client 3.0 Setup Files" = SmartFTP Client 3.0 Setup Files (remove only) <br/>"StreetPlugin" = Learn2 Player (Uninstall Only) <br/>"Switch" = Switch Sound File Converter <br/>"SynTPDeinstKey" = Synaptics Pointing Device Driver <br/>"Tweak UI 2.10" = Tweak UI <br/>"ViewpointMediaPlayer" = Viewpoint Media Player <br/>"Virtools3DLifePlayer" = Virtools 3D Life Player <br/>"WebCyberCoach_wtrb" = WebCyberCoach 3.2 Dell <br/>"WIC" = Windows Imaging Component <br/>"Windows Media Format Runtime" = Windows Media Format Runtime <br/>"Windows Media Player" = Windows Media Player 10 <br/>"WinGTK-2_is1" = GTK+ 2.8.18-1 runtime environment <br/>"WinRAR archiver" = WinRAR archiver <br/>"WinZip" = WinZip <br/>"xvid" = XviD MPEG-4 Video Codec <br/>"Yahoo! Companion" = Yahoo! Toolbar <br/>"Yahoo! Toolbar" = Yahoo! Toolbar <br/> <br/>[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] <br/> <br/>[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] <br/>"BitTorrent DNA" = DNA <br/> <br/>[color=#E56717]========== Last 10 Event Log Errors ==========[/color] <br/> <br/>[ Application Events ] <br/>Error - 12/14/2009 6:07:46 AM | Computer Name = PAUL-LAPTOP | Source = Symantec AntiVirus | ID = 16711685 <br/>Description = Threat Found!Threat: Spyware.TypeRecorder in File: C:\Documents and <br/> Settings\Jacque\Templates\TypeAgent.exe by: Auto-Protect scan. Action: Pending <br/> Side Effects Analysis. Action Description: <br/> <br/>Error - 12/14/2009 6:07:47 AM | Computer Name = PAUL-LAPTOP | Source = Symantec AntiVirus | ID = 16711685 <br/>Description = Threat Found!Threat: Spyware.Keylogger in File: C:\Documents and Settings\Jacque\Templates\icr.dll <br/> by: Auto-Protect scan. Action: Pending Side Effects Analysis. Action Description: <br/> <br/> <br/>Error - 12/14/2009 6:07:48 AM | Computer Name = PAUL-LAPTOP | Source = Symantec AntiVirus | ID = 16711685 <br/>Description = Threat Found!Threat: Trojan Horse in File: by: Auto-Protect scan. <br/> Action: Quarantine succeeded : Access denied. Action Description: The file was <br/> quarantined successfully. <br/> <br/>Error - 12/14/2009 6:10:26 AM | Computer Name = PAUL-LAPTOP | Source = Symantec AntiVirus | ID = 16711726 <br/>Description = Security Risk Found!Threat: Spyware.TypeRecorder in File: C:\Documents <br/> and Settings\Jacque\Templates\TypeAgent.exe by: Auto-Protect scan. Action: Leave <br/> Alone succeeded. Action Description: The file was left unchanged. <br/> <br/>Error - 12/14/2009 6:10:28 AM | Computer Name = PAUL-LAPTOP | Source = Symantec AntiVirus | ID = 16711685 <br/>Description = Threat Found!Threat: Spyware.TypeRecorder in File: c:\documents and <br/> settings\Jacque\templates\typeagent.exe by: Auto-Protect scan. Action: Quarantine <br/> succeeded. Action Description: The file was quarantined successfully. <br/> <br/>Error - 12/14/2009 6:10:29 AM | Computer Name = PAUL-LAPTOP | Source = Symantec AntiVirus | ID = 16711685 <br/>Description = Threat Found!Threat: Spyware.TypeRecorder in File: c:\documents and <br/> settings\Jacque\templates\TRKbd.dll by: Auto-Protect scan. Action: Quarantine <br/>succeeded. Action Description: The file was quarantined successfully. <br/> <br/>Error - 12/14/2009 6:11:05 AM | Computer Name = PAUL-LAPTOP | Source = Symantec AntiVirus | ID = 16711731 <br/>Description = Security Risk Found!Threat: Spyware.TypeRecorder in File: C:\Documents <br/> and Settings\Jacque\Templates\TypeAgent.exe by: Auto-Protect scan. Action: Quarantine <br/> succeeded : Access allowed. Action Description: The file was quarantined successfully. <br/> <br/>Error - 12/14/2009 6:14:36 AM | Computer Name = PAUL-LAPTOP | Source = Symantec AntiVirus | ID = 16711726 <br/>Description = Security Risk Found!Threat: Spyware.Keylogger in File: C:\Documents <br/> and Settings\Jacque\Templates\icr.dll by: Auto-Protect scan. Action: Leave Alone <br/> succeeded. Action Description: The file was left unchanged. <br/> <br/>Error - 12/14/2009 6:14:38 AM | Computer Name = PAUL-LAPTOP | Source = Symantec AntiVirus | ID = 16711685 <br/>Description = Threat Found!Threat: Spyware.Keylogger in File: c:\documents and settings\Jacque\templates\icr.dll <br/> by: Auto-Protect scan. Action: Quarantine succeeded. Action Description: The <br/>file was quarantined successfully. <br/> <br/>Error - 12/14/2009 6:14:51 AM | Computer Name = PAUL-LAPTOP | Source = Symantec AntiVirus | ID = 16711731 <br/>Description = Security Risk Found!Threat: Spyware.Keylogger in File: C:\Documents <br/> and Settings\Jacque\Templates\icr.dll by: Auto-Protect scan. Action: Quarantine <br/> succeeded : Access allowed. Action Description: The file was quarantined successfully. <br/> <br/>[ System Events ] <br/>Error - 12/26/2009 12:26:45 PM | Computer Name = PAUL-LAPTOP | Source = Service Control Manager | ID = 7000 <br/>Description = The SupportSoft Sprocket Service (dellsupportcenter) service failed <br/> to start due to the following error: %%1053 <br/> <br/>Error - 12/26/2009 12:27:51 PM | Computer Name = PAUL-LAPTOP | Source = Service Control Manager | ID = 7009 <br/>Description = Timeout (30000 milliseconds) waiting for the Application Layer Gateway <br/> Service service to connect. <br/> <br/>Error - 12/26/2009 12:28:00 PM | Computer Name = PAUL-LAPTOP | Source = Service Control Manager | ID = 7000 <br/>Description = The Application Layer Gateway Service service failed to start due <br/>to the following error: %%1053 <br/> <br/>Error - 12/26/2009 12:28:35 PM | Computer Name = PAUL-LAPTOP | Source = Service Control Manager | ID = 7009 <br/>Description = Timeout (30000 milliseconds) waiting for the iPod Service service <br/>to connect. <br/> <br/>Error - 12/26/2009 12:28:35 PM | Computer Name = PAUL-LAPTOP | Source = Service Control Manager | ID = 7000 <br/>Description = The iPod Service service failed to start due to the following error: <br/> %%1053 <br/> <br/>Error - 12/26/2009 12:28:42 PM | Computer Name = PAUL-LAPTOP | Source = DCOM | ID = 10005 <br/>Description = DCOM got error "%1053" attempting to start the service iPod Service <br/> with arguments "-Service" in order to run the server: {063D34A4-BF84-4B8D-B699-E8CA06504DDE} <br/> <br/>Error - 12/26/2009 6:15:44 PM | Computer Name = PAUL-LAPTOP | Source = Service Control Manager | ID = 7026 <br/>Description = The following boot-start or system-start driver(s) failed to load: <br/> IntelIde <br/> <br/>Error - 12/26/2009 6:18:14 PM | Computer Name = PAUL-LAPTOP | Source = Service Control Manager | ID = 7009 <br/>Description = Timeout (30000 milliseconds) waiting for the Application Layer Gateway <br/> Service service to connect. <br/> <br/>Error - 12/26/2009 6:18:23 PM | Computer Name = PAUL-LAPTOP | Source = Service Control Manager | ID = 7000 <br/>Description = The Application Layer Gateway Service service failed to start due <br/>to the following error: %%1053 <br/> <br/>Error - 12/28/2009 11:13:37 AM | Computer Name = PAUL-LAPTOP | Source = Service Control Manager | ID = 7034 <br/>Description = The PC Tools Security Service service terminated unexpectedly. It <br/> has done this 1 time(s). <br/> <br/> <br/>< End of report >
Posted 2/3/2010 1:06 AM
#82590
User avatar

Paul L. Member

Date Joined Nov 2016
Total Posts: 4
Is anyone still doing this?
  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Thursday, December 8, 2016, 7:17 AM (GMT +1)
There are a total of 61,161 posts in 13,450 threads.
In the last 3 days there were 1 new threads and 1 reply posts.

Who's online

This forum has 37,968 registered members. Please welcome our newest member, Crawlerz.
There are currently no users on-line.