Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Please Check My Logs(OTL Logs)


  • This topic is locked This topic is locked
2 replies to this topic

#1 Jimi Hendrix

Jimi Hendrix

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:09 AM

Posted 05 December 2009 - 12:51 PM

Okay, so I had the same problem as this guy, so i used the same things that were suggested to him, so my computer seems to be better now. And now I'm on this step. Can you please tell me if everything is fine?

Here are my logs:
Extras.Txt

OTL Extras logfile created on: 12/5/2009 9:43:13 AM - Run 1
OTL by OldTimer - Version 3.1.11.7 Folder = C:\Documents and Settings\HomeComputer\My Documents\Downloads
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

958.48 Mb Total Physical Memory | 391.26 Mb Available Physical Memory | 40.82% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): C:\pagefile.sys 6000 8192 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.78 Gb Total Space | 92.50 Gb Free Space | 82.75% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: FAMILY
Current User Name: HomeComputer
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE -nohome (Microsoft Corporation)
https [open] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"67:UDP" = 67:UDP:*:Enabled:DHCP Discovery Service

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\FlashFXP\FlashFXP.exe" = C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- (IniCom Networks, Inc.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\FlashFXP\FlashFXP.exe" = C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- (IniCom Networks, Inc.)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\AIM\aim.exe" = C:\Program Files\AIM\aim.exe:*:Enabled:AIM -- (AOL LLC)
"C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe" = C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe:LocalSubNet:Enabled:Pure Networks Platform Service -- File not found
"C:\Program Files\AVG\AVG9\avgam.exe" = C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgdiagex.exe" = C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgemc.exe" = C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0893078B-8A9A-84D6-D393-119B9B0B033A}" = CCC Help French
"{0CA14F11-6F47-4613-8E40-6AC088E464A0}" = Cisco Network Magic
"{0E2A60F7-2907-5718-FF16-7D8FAF70051E}" = CCC Help Chinese Standard
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP160" = Canon MP160
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{14FAE013-AE19-4FC9-B5BF-E56ADC01ECE6}" = CCC Help Turkish
"{17BB2784-6EE4-D7FF-FE63-58A3AD2B3708}" = CCC Help Russian
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{233588CF-96D5-46AF-EF74-7EC382662791}" = Catalyst Control Center Graphics Full Existing
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java™ 6 Update 17
"{3260ECBC-9DDF-E7A3-0863-449473BC7BD5}" = CCC Help Chinese Traditional
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39C6C229-CFFD-639E-229A-E463FCD87478}" = CCC Help German
"{3B1A4366-8DFA-4582-91F6-27F7A4714FCC}" = Pure Networks Platform
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{4F11FC80-CE8C-1BD4-5C39-EBE5744E5135}" = CCC Help Portuguese
"{4FAB2BA7-E16C-95D2-F326-60A68409373F}" = Catalyst Control Center HydraVision Full
"{529AA9A8-5020-6CFB-A809-BC5943C87077}" = CCC Help Thai
"{53604297-26FD-516D-6FF7-1063BA64A0A4}" = Catalyst Control Center Graphics Light
"{55BD3B0B-F054-9341-514F-295A5F7EA450}" = CCC Help Spanish
"{5A4FA9C8-ED56-08C3-153B-FC5C19256290}" = CCC Help Dutch
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6C390D51-E5F0-4FCD-24C4-731ACAF34571}" = CCC Help Japanese
"{6D8D64BE-F500-55B6-705D-DFD08AFE0624}" = Acrobat.com
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7AA8FA9A-1656-7DBD-633B-FE7A62BBED0C}" = CCC Help Czech
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8C22131B-8634-CECF-F0D1-A2ECC160B450}" = CCC Help Norwegian
"{90FBE4D0-2ACA-A8A8-2CC4-CFFBAE528504}" = CCC Help Finnish
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96E3AED5-3D0B-4BB0-84C2-1EDADB204487}" = FlashFXP v3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9D74375E-3012-E7D2-9229-B220C91F326A}" = Catalyst Control Center Core Implementation
"{9EE8BDCA-7505-4895-D91E-8108DD16292E}" = CCC Help English
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}" = iTunes
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8AF8BD3-61B5-7945-4D1B-217421F604FC}" = CCC Help Hungarian
"{AA46E1C5-A709-6D9B-D99D-92E4C6E042A9}" = CCC Help Korean
"{AA62A33C-9E5E-3913-7D88-7E58A8CB1493}" = CCC Help Greek
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{B653F643-A1B4-9936-2DB6-FEA9A3110D8D}" = ccc-core-preinstall
"{B71C4637-0247-78CE-6A3D-D61645CB8921}" = ccc-utility
"{BC2E7C0B-1AC6-5F6C-F31D-E1E72D8E0B5C}" = CCC Help Danish
"{BF8C7DA7-2DE6-ED67-6C82-6BE82F8BA8D3}" = Catalyst Control Center Graphics Full New
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C34FAEF3-4241-4C4E-9CFF-7BBD8BCEABE7}" = WebEx Support Manager for Internet Explorer
"{C409F338-BB20-6C4A-F40D-20CA07AF714C}" = CCC Help Polish
"{C4124E95-5061-4776-8D5D-E3D931C778E1}" = Microsoft VC9 runtime libraries
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D4B7B2DC-E688-A9D6-6EC0-56AE540E074C}" = Catalyst Control Center Localization All
"{D9CD701B-3F04-FC69-D974-F3A7F5E9BA30}" = CCC Help Swedish
"{D9D93D74-107D-4BD3-87D0-AABCF7C98BD5}" = Catalyst Control Center - Branding
"{E213321B-1E88-B38D-DAB2-D8CB9355984A}" = Skins
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F4148D8F-ED3A-3097-509C-04D5560220F9}" = ccc-core-static
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F7E68997-E626-952B-A7BF-F72066CD5D77}" = Catalyst Control Center Graphics Previews Common
"{FA36C82B-464D-51F2-A6A1-0BC9140BE067}" = CCC Help Italian
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FE3997D3-6B56-4AC4-A99C-9DDFC45359BF}" = TuneUp Utilities Language Pack (en-US)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AIM_7" = AIM 7
"All ATI Software" = ATI - Software Uninstall Utility
"ATI Display Driver" = ATI Display Driver
"AVG9Uninstall" = AVG 9.0
"CCleaner" = CCleaner
"CleanUp!" = CleanUp!
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"HijackThis" = HijackThis 2.0.2
"ie8" = Windows Internet Explorer 8
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.5)" = Mozilla Firefox (3.5.5)
"MP Navigator 3.0" = Canon MP Navigator 3.0
"Network MagicUninstall" = Network Magic
"Security Task Manager" = Security Task Manager 1.7h
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"TeamViewer 4" = TeamViewer 4
"Time Stopper2.00" = Time Stopper
"Trojan Remover_is1" = Trojan Remover 6.8.1
"TuneUp Utilities" = TuneUp Utilities
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 12/2/2009 8:26:11 PM | Computer Name = FAMILY | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at:
with error: An internal certificate chaining error has occurred.

Error - 12/2/2009 8:26:11 PM | Computer Name = FAMILY | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at:
with error: An internal certificate chaining error has occurred.

Error - 12/3/2009 10:15:41 PM | Computer Name = FAMILY | Source = Application Error | ID = 1000
Description = Faulting application integrator.exe, version 9.0.2020.1, faulting
module rtl120.bpl, version 12.0.3210.17555, fault address 0x000095d0.

Error - 12/3/2009 11:19:49 PM | Computer Name = FAMILY | Source = Application Hang | ID = 1002
Description = Hanging application OneClick.exe, version 9.0.2020.1, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/3/2009 11:28:09 PM | Computer Name = FAMILY | Source = Media Center Scheduler | ID = 0
Description =

Error - 12/3/2009 11:41:13 PM | Computer Name = FAMILY | Source = Application Error | ID = 1000
Description = Faulting application integrator.exe, version 9.0.2020.1, faulting
module integrator.exe, version 9.0.2020.1, fault address 0x000345a2.

Error - 12/3/2009 11:47:33 PM | Computer Name = FAMILY | Source = Media Center Scheduler | ID = 0
Description =

Error - 12/4/2009 12:01:25 AM | Computer Name = FAMILY | Source = Media Center Scheduler | ID = 0
Description =

Error - 12/4/2009 12:27:55 AM | Computer Name = FAMILY | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 1.9.1.3593, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 12/5/2009 11:24:37 AM | Computer Name = FAMILY | Source = MsiInstaller | ID = 11306
Description = Product: ParetoLogic Anti-Virus PLUS -- Error 1306.Another application
has exclusive access to the file C:\Documents and Settings\All Users\Application
Data\ParetoLogic Anti-Virus PLUS\6\Ignore.db. Please shut down all other applications,
then click Retry.

[ System Events ]
Error - 11/15/2009 2:33:09 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/15/2009 3:59:18 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/15/2009 5:13:26 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/15/2009 8:15:24 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/15/2009 9:14:02 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/15/2009 11:55:40 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/16/2009 7:46:47 PM | Computer Name = FAMILY | Source = NetBT | ID = 4321
Description = The name "WORKGROUP :1d" could not be registered on the Interface
with IP address 192.168.0.103. The machine with the IP address 192.168.0.101 did
not allow the name to be claimed by this machine.

Error - 11/16/2009 7:56:32 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/16/2009 8:49:10 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/16/2009 9:04:13 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.


< End of report >

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE -nohome (Microsoft Corporation)
https [open] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"67:UDP" = 67:UDP:*:Enabled:DHCP Discovery Service

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\FlashFXP\FlashFXP.exe" = C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- (IniCom Networks, Inc.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\FlashFXP\FlashFXP.exe" = C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- (IniCom Networks, Inc.)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\AIM\aim.exe" = C:\Program Files\AIM\aim.exe:*:Enabled:AIM -- (AOL LLC)
"C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe" = C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe:LocalSubNet:Enabled:Pure Networks Platform Service -- File not found
"C:\Program Files\AVG\AVG9\avgam.exe" = C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgdiagex.exe" = C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgemc.exe" = C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0893078B-8A9A-84D6-D393-119B9B0B033A}" = CCC Help French
"{0CA14F11-6F47-4613-8E40-6AC088E464A0}" = Cisco Network Magic
"{0E2A60F7-2907-5718-FF16-7D8FAF70051E}" = CCC Help Chinese Standard
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP160" = Canon MP160
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{14FAE013-AE19-4FC9-B5BF-E56ADC01ECE6}" = CCC Help Turkish
"{17BB2784-6EE4-D7FF-FE63-58A3AD2B3708}" = CCC Help Russian
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{233588CF-96D5-46AF-EF74-7EC382662791}" = Catalyst Control Center Graphics Full Existing
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java™ 6 Update 17
"{3260ECBC-9DDF-E7A3-0863-449473BC7BD5}" = CCC Help Chinese Traditional
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39C6C229-CFFD-639E-229A-E463FCD87478}" = CCC Help German
"{3B1A4366-8DFA-4582-91F6-27F7A4714FCC}" = Pure Networks Platform
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{4F11FC80-CE8C-1BD4-5C39-EBE5744E5135}" = CCC Help Portuguese
"{4FAB2BA7-E16C-95D2-F326-60A68409373F}" = Catalyst Control Center HydraVision Full
"{529AA9A8-5020-6CFB-A809-BC5943C87077}" = CCC Help Thai
"{53604297-26FD-516D-6FF7-1063BA64A0A4}" = Catalyst Control Center Graphics Light
"{55BD3B0B-F054-9341-514F-295A5F7EA450}" = CCC Help Spanish
"{5A4FA9C8-ED56-08C3-153B-FC5C19256290}" = CCC Help Dutch
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6C390D51-E5F0-4FCD-24C4-731ACAF34571}" = CCC Help Japanese
"{6D8D64BE-F500-55B6-705D-DFD08AFE0624}" = Acrobat.com
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7AA8FA9A-1656-7DBD-633B-FE7A62BBED0C}" = CCC Help Czech
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8C22131B-8634-CECF-F0D1-A2ECC160B450}" = CCC Help Norwegian
"{90FBE4D0-2ACA-A8A8-2CC4-CFFBAE528504}" = CCC Help Finnish
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96E3AED5-3D0B-4BB0-84C2-1EDADB204487}" = FlashFXP v3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9D74375E-3012-E7D2-9229-B220C91F326A}" = Catalyst Control Center Core Implementation
"{9EE8BDCA-7505-4895-D91E-8108DD16292E}" = CCC Help English
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}" = iTunes
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8AF8BD3-61B5-7945-4D1B-217421F604FC}" = CCC Help Hungarian
"{AA46E1C5-A709-6D9B-D99D-92E4C6E042A9}" = CCC Help Korean
"{AA62A33C-9E5E-3913-7D88-7E58A8CB1493}" = CCC Help Greek
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{B653F643-A1B4-9936-2DB6-FEA9A3110D8D}" = ccc-core-preinstall
"{B71C4637-0247-78CE-6A3D-D61645CB8921}" = ccc-utility
"{BC2E7C0B-1AC6-5F6C-F31D-E1E72D8E0B5C}" = CCC Help Danish
"{BF8C7DA7-2DE6-ED67-6C82-6BE82F8BA8D3}" = Catalyst Control Center Graphics Full New
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C34FAEF3-4241-4C4E-9CFF-7BBD8BCEABE7}" = WebEx Support Manager for Internet Explorer
"{C409F338-BB20-6C4A-F40D-20CA07AF714C}" = CCC Help Polish
"{C4124E95-5061-4776-8D5D-E3D931C778E1}" = Microsoft VC9 runtime libraries
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D4B7B2DC-E688-A9D6-6EC0-56AE540E074C}" = Catalyst Control Center Localization All
"{D9CD701B-3F04-FC69-D974-F3A7F5E9BA30}" = CCC Help Swedish
"{D9D93D74-107D-4BD3-87D0-AABCF7C98BD5}" = Catalyst Control Center - Branding
"{E213321B-1E88-B38D-DAB2-D8CB9355984A}" = Skins
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F4148D8F-ED3A-3097-509C-04D5560220F9}" = ccc-core-static
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F7E68997-E626-952B-A7BF-F72066CD5D77}" = Catalyst Control Center Graphics Previews Common
"{FA36C82B-464D-51F2-A6A1-0BC9140BE067}" = CCC Help Italian
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FE3997D3-6B56-4AC4-A99C-9DDFC45359BF}" = TuneUp Utilities Language Pack (en-US)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AIM_7" = AIM 7
"All ATI Software" = ATI - Software Uninstall Utility
"ATI Display Driver" = ATI Display Driver
"AVG9Uninstall" = AVG 9.0
"CCleaner" = CCleaner
"CleanUp!" = CleanUp!
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"HijackThis" = HijackThis 2.0.2
"ie8" = Windows Internet Explorer 8
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.5)" = Mozilla Firefox (3.5.5)
"MP Navigator 3.0" = Canon MP Navigator 3.0
"Network MagicUninstall" = Network Magic
"Security Task Manager" = Security Task Manager 1.7h
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"TeamViewer 4" = TeamViewer 4
"Time Stopper2.00" = Time Stopper
"Trojan Remover_is1" = Trojan Remover 6.8.1
"TuneUp Utilities" = TuneUp Utilities
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 12/2/2009 8:26:11 PM | Computer Name = FAMILY | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at:
with error: An internal certificate chaining error has occurred.

Error - 12/2/2009 8:26:11 PM | Computer Name = FAMILY | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at:
with error: An internal certificate chaining error has occurred.

Error - 12/3/2009 10:15:41 PM | Computer Name = FAMILY | Source = Application Error | ID = 1000
Description = Faulting application integrator.exe, version 9.0.2020.1, faulting
module rtl120.bpl, version 12.0.3210.17555, fault address 0x000095d0.

Error - 12/3/2009 11:19:49 PM | Computer Name = FAMILY | Source = Application Hang | ID = 1002
Description = Hanging application OneClick.exe, version 9.0.2020.1, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/3/2009 11:28:09 PM | Computer Name = FAMILY | Source = Media Center Scheduler | ID = 0
Description =

Error - 12/3/2009 11:41:13 PM | Computer Name = FAMILY | Source = Application Error | ID = 1000
Description = Faulting application integrator.exe, version 9.0.2020.1, faulting
module integrator.exe, version 9.0.2020.1, fault address 0x000345a2.

Error - 12/3/2009 11:47:33 PM | Computer Name = FAMILY | Source = Media Center Scheduler | ID = 0
Description =

Error - 12/4/2009 12:01:25 AM | Computer Name = FAMILY | Source = Media Center Scheduler | ID = 0
Description =

Error - 12/4/2009 12:27:55 AM | Computer Name = FAMILY | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 1.9.1.3593, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 12/5/2009 11:24:37 AM | Computer Name = FAMILY | Source = MsiInstaller | ID = 11306
Description = Product: ParetoLogic Anti-Virus PLUS -- Error 1306.Another application
has exclusive access to the file C:\Documents and Settings\All Users\Application
Data\ParetoLogic Anti-Virus PLUS\6\Ignore.db. Please shut down all other applications,
then click Retry.

[ System Events ]
Error - 11/15/2009 2:33:09 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/15/2009 3:59:18 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/15/2009 5:13:26 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/15/2009 8:15:24 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/15/2009 9:14:02 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/15/2009 11:55:40 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/16/2009 7:46:47 PM | Computer Name = FAMILY | Source = NetBT | ID = 4321
Description = The name "WORKGROUP :1d" could not be registered on the Interface
with IP address 192.168.0.103. The machine with the IP address 192.168.0.101 did
not allow the name to be claimed by this machine.

Error - 11/16/2009 7:56:32 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/16/2009 8:49:10 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.

Error - 11/16/2009 9:04:13 PM | Computer Name = FAMILY | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
USER-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{166D1B2E-9F4E-4D50-9. The master browser is stopping or an election
is being forced.


< End of report >


OTL.Txt

OTL logfile created on: 12/5/2009 9:43:13 AM - Run 1
OTL by OldTimer - Version 3.1.11.7 Folder = C:\Documents and Settings\HomeComputer\My Documents\Downloads
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

958.48 Mb Total Physical Memory | 391.26 Mb Available Physical Memory | 40.82% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): C:\pagefile.sys 6000 8192 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.78 Gb Total Space | 92.50 Gb Free Space | 82.75% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: FAMILY
Current User Name: HomeComputer
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009/12/05 09:42:36 | 00,536,576 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HomeComputer\My Documents\Downloads\OTL.exe
PRC - [2009/12/04 21:42:07 | 01,055,000 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2009/12/04 21:41:57 | 00,600,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2009/12/04 21:41:56 | 00,502,040 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2009/12/04 21:41:55 | 00,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2009/12/04 21:41:49 | 02,020,120 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2009/12/04 21:41:43 | 00,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2009/12/04 21:41:43 | 00,827,160 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2009/12/04 21:41:42 | 00,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2009/11/17 01:17:38 | 00,486,216 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
PRC - [2009/11/17 01:15:36 | 01,021,256 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
PRC - [2009/11/07 20:40:38 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/10/11 04:17:35 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009/08/28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/07/21 07:42:04 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/04/14 04:42:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2009/12/05 09:42:36 | 00,536,576 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HomeComputer\My Documents\Downloads\OTL.exe


========== Win32 Services (SafeList) ==========

SRV - File not found -- -- (nmservice)
SRV - [2009/12/04 21:41:43 | 00,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2009/12/04 21:41:42 | 00,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2009/12/03 18:06:54 | 00,435,016 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009/11/17 01:15:36 | 01,021,256 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2009/11/17 01:12:10 | 00,030,024 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2009/11/12 16:33:00 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2009/10/11 04:17:35 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009/08/28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/07/21 09:40:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart)
SRV - [2009/07/21 07:42:04 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller)
SRV - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)


========== Driver Services (SafeList) ==========

DRV - [2009/12/04 21:42:32 | 00,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2009/12/04 21:42:32 | 00,161,800 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2009/12/04 21:42:24 | 00,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009/12/04 21:42:23 | 00,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2009/10/14 07:24:44 | 00,010,064 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2009/07/21 08:30:48 | 03,565,056 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009/05/18 14:17:00 | 00,026,600 | ---- | M] (GEAR Software Inc.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2009/02/18 14:41:10 | 00,186,128 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2008/12/12 18:05:20 | 00,025,264 | ---- | M] (Cisco Systems, Inc.) -- C:\WINDOWS\system32\drivers\purendis.sys -- (purendis)
DRV - [2008/12/12 18:05:18 | 00,023,984 | ---- | M] (Cisco Systems, Inc.) -- C:\WINDOWS\system32\drivers\pnarp.sys -- (pnarp)
DRV - [2008/04/13 21:09:16 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2006/07/21 06:10:44 | 04,011,264 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004/08/10 04:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2004/08/10 02:39:56 | 00,019,840 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2004/08/03 14:31:34 | 00,020,992 | ---- | M] (Realtek Semiconductor Corporation) -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2002/09/23 13:49:44 | 00,068,672 | ---- | M] (2Wire, Inc.) -- C:\WINDOWS\system32\drivers\2WirePCP.sys -- (2WIREPCP)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.juno.com/dsl/sp
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = searchap.untd.com;127.0.0.1;localhost;*microsoft.com;*windowsupdate.com;*wustat.windows.com;*test-speed.com;liveupdate.symantecliveupdate.com;*symantec.com;*.nai.com;*.networkassociates.com;cf.netzero.net;qs.netzero.net;*.quicken.com;*.pogo.com;;*.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: {6AC85730-7D0F-4de0-B3FA-21142DD85326}:2.0.2
FF - prefs.js..extensions.enabledItems: piclens@cooliris.com:1.11.5
FF - prefs.js..extensions.enabledItems: {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}:2.7.6.0623
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.4.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.8
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.701
FF - prefs.js..extensions.enabledItems: avg@igeared:2.710.016.005
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 7900
FF - prefs.js..network.proxy.no_proxies_on: "searchap.untd.com,127.0.0.1,localhost,*microsoft.com,*windowsupdate.com,*wustat.windows.com,*test-speed.com,liveupdate.symantecliveupdate.com,*symantec.com,*.nai.com,*.networkassociates.com,cf.netzero.net,qs.netzero.net,*.quicken.com,*.pogo.com,localhost,127.0.0.1"
FF - prefs.js..network.proxy.type: 4


FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2009/12/04 21:41:41 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2009/12/04 21:42:18 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/24 18:33:22 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/12/01 19:20:31 | 00,000,000 | ---D | M]

[2009/10/14 14:34:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Extensions
[2009/12/04 21:44:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions
[2009/11/22 10:58:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}
[2009/11/28 17:39:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2009/11/21 12:01:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}
[2009/11/14 16:00:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/11/15 14:44:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\firebug@software.joehewitt.com
[2009/11/21 12:02:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\piclens@cooliris.com
[2009/12/04 21:44:59 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/09/21 12:24:16 | 00,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml

O1 HOSTS File: (23 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (FlashFXP Helper for Internet Explorer) - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\Program Files\FlashFXP\IEFlash.dll (IniCom Networks, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {5854FAC4-5BF0-47DD-B5A9-A5EA8CFF3CF4} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {8E613EAF-E16E-415C-BD39-F71D6A3B5518} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe (Simply Super Software)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Toolbars present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/...b?1255460484812 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (Reg Error: Value error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/10/13 10:36:41 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2009/12/05 08:22:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\Malwarebytes
[2009/12/05 08:22:26 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/12/05 08:22:23 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/12/05 08:08:26 | 00,000,000 | RHSD | C] -- C:\cmdcons
[2009/12/05 08:04:50 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2009/12/05 08:04:50 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2009/12/05 08:04:50 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2009/12/05 08:04:50 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009/12/05 08:04:17 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009/12/05 08:04:14 | 00,000,000 | --SD | C] -- C:\thcbytes
[2009/12/05 08:03:23 | 00,000,000 | ---D | C] -- C:\Qoobox
[2009/12/05 07:44:22 | 00,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2009/12/05 07:34:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/12/05 07:32:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\My Documents\Simply Super Software
[2009/12/05 07:31:11 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ztvcabinet.dll
[2009/12/05 07:31:08 | 00,000,000 | ---D | C] -- C:\Program Files\Trojan Remover
[2009/12/05 07:31:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\Simply Super Software
[2009/12/05 07:31:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Simply Super Software
[2009/12/04 22:13:32 | 00,186,128 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2009/12/04 22:10:09 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\ParetoLogic
[2009/12/04 22:10:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic
[2009/12/04 22:08:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\Downloaded Installations
[2009/12/04 21:44:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\AVG Security Toolbar
[2009/12/04 21:42:32 | 00,360,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2009/12/04 21:42:32 | 00,161,800 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys
[2009/12/04 21:42:32 | 00,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2009/12/04 21:42:24 | 00,333,192 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2009/12/04 21:42:23 | 00,028,424 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2009/12/04 21:42:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2009/12/04 21:41:40 | 00,000,000 | ---D | C] -- C:\Program Files\AVG
[2009/12/04 21:23:34 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\HomeComputer\Recent
[2009/12/04 21:19:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\My Documents\AVG.I.S.8.0.199.1387
[2009/12/04 19:58:44 | 00,000,000 | ---D | C] -- C:\WINDOWS\pss
[2009/12/04 19:50:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\My Documents\Spyware Doctor-6.0.0.386
[2009/12/04 18:11:11 | 00,000,000 | ---D | C] -- C:\Program Files\CleanUp!
[2009/12/04 18:08:14 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009/12/04 17:28:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\Help
[2009/12/04 17:28:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\Help
[2009/12/04 17:26:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan
[2009/12/04 17:26:49 | 00,000,000 | ---D | C] -- C:\Program Files\Security Task Manager
[2009/12/04 16:56:22 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Avg
[2009/12/04 16:55:34 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2009/12/04 16:26:30 | 00,000,000 | ---D | C] -- C:\WINDOWS\123456789ABCDEFG
[2009/12/03 20:58:25 | 00,000,000 | ---D | C] -- C:\fixwareout
[2009/12/03 20:50:54 | 00,000,000 | ---D | C] -- C:\!KillBox
[2009/12/03 20:46:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009/12/03 20:46:06 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/12/03 20:24:05 | 00,000,000 | ---D | C] -- C:\Program Files\WinClamAVShield
[2009/12/03 20:20:50 | 00,000,000 | ---D | C] -- C:\Program Files\Crawler
[2009/12/03 20:20:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\Spyware Terminator
[2009/12/03 20:20:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
[2009/12/03 20:20:42 | 00,000,000 | ---D | C] -- C:\Program Files\Spyware Terminator
[2009/12/03 20:10:07 | 00,000,000 | ---D | C] -- C:\Config.Msi
[2009/12/03 20:08:25 | 00,000,000 | -H-D | C] -- C:\$AVG
[2009/12/03 20:08:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\avg9
[2009/12/03 19:17:10 | 00,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll.install_backup
[2009/12/03 18:03:03 | 00,029,512 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2009/12/03 18:03:01 | 00,030,024 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2009/12/03 18:02:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\TuneUp Software
[2009/12/03 18:01:15 | 00,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2010
[2009/12/03 18:00:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2009/12/02 17:50:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2009/12/01 19:24:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\acccore
[2009/12/01 19:24:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\AIM
[2009/12/01 19:24:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\AOL
[2009/12/01 19:20:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AIM
[2009/12/01 19:20:36 | 00,000,000 | ---D | C] -- C:\Program Files\AIM
[2009/12/01 19:20:30 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Software Update Utility
[2009/12/01 19:20:30 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\AOL
[2009/11/26 10:32:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\My Documents\(TVC30) Log In As Member v1.0.1
[2009/11/23 16:25:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\Apple Computer
[2009/11/23 16:24:19 | 00,107,368 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\GEARAspi.dll
[2009/11/23 16:24:19 | 00,026,600 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys
[2009/11/23 16:23:28 | 00,000,000 | ---D | C] -- C:\Program Files\iPod
[2009/11/23 16:23:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/11/23 16:23:23 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes
[2009/11/23 16:22:47 | 00,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2009/11/23 16:21:58 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/11/23 16:21:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2009/11/22 15:26:11 | 00,000,000 | ---D | C] -- C:\Program Files\FlashFXP
[2009/11/22 15:26:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\FlashFXP
[2009/11/21 19:41:26 | 00,946,176 | ---- | C] (WeOnlyDo! Inc.) -- C:\WINDOWS\System32\wodFtpDLXG.OCX
[2009/11/21 19:41:26 | 00,224,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TABCTL32.OCX
[2009/11/21 19:41:25 | 00,000,000 | ---D | C] -- C:\Program Files\GoFTP
[2009/11/21 12:02:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\Cooliris
[2009/11/19 15:57:36 | 00,000,000 | ---D | C] -- C:\Program Files\Pure Networks
[2009/11/19 15:56:13 | 00,023,984 | ---- | C] (Cisco Systems, Inc.) -- C:\WINDOWS\System32\drivers\pnarp.sys
[2009/11/19 15:56:07 | 00,025,264 | ---- | C] (Cisco Systems, Inc.) -- C:\WINDOWS\System32\drivers\purendis.sys
[2009/11/19 15:55:59 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Pure Networks Shared
[2009/11/19 15:54:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Pure Networks
[2009/11/14 15:32:58 | 00,000,000 | ---D | C] -- C:\Program Files\Minefield
[2009/11/10 23:08:24 | 00,094,208 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2009/11/10 23:08:24 | 00,069,632 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2009/11/07 15:10:32 | 00,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2009/12/05 09:45:24 | 00,663,072 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009/12/05 09:28:11 | 00,000,000 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\prvlcl.dat
[2009/12/05 09:18:48 | 00,028,960 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2009/12/05 08:42:11 | 00,000,500 | ---- | M] () -- C:\WINDOWS\tasks\Automatic troubleshooting.job
[2009/12/05 08:28:51 | 00,000,972 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Desktop\Shortcut to Win32kDiag.lnk
[2009/12/05 08:22:29 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/12/05 08:19:40 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/12/05 08:15:29 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/12/05 08:14:34 | 03,145,728 | ---- | M] () -- C:\Documents and Settings\HomeComputer\ntuser.dat
[2009/12/05 08:14:33 | 00,009,236 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2009/12/05 08:14:33 | 00,003,476 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx
[2009/12/05 08:14:11 | 00,000,178 | -HS- | M] () -- C:\Documents and Settings\HomeComputer\ntuser.ini
[2009/12/05 08:08:39 | 00,000,279 | RHS- | M] () -- C:\boot.ini
[2009/12/05 07:31:55 | 00,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Trojan Remover.lnk
[2009/12/05 07:25:50 | 46,203,422 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2009/12/05 07:25:02 | 00,112,779 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2009/12/04 22:18:37 | 00,000,456 | ---- | M] () -- C:\WINDOWS\tasks\ParetoLogic Registration.job
[2009/12/04 22:15:19 | 00,003,506 | ---- | M] () -- C:\rollback.ini
[2009/12/04 21:42:33 | 00,001,507 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AVG 9.0.lnk
[2009/12/04 21:42:32 | 00,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2009/12/04 21:42:32 | 00,161,800 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys
[2009/12/04 21:42:32 | 00,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2009/12/04 21:42:24 | 00,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2009/12/04 21:42:23 | 06,061,540 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\avi7.avg
[2009/12/04 21:42:23 | 00,492,629 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2009/12/04 21:42:23 | 00,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2009/12/04 21:42:07 | 00,113,461 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2009/12/04 19:59:04 | 00,000,534 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/12/04 19:59:04 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/12/04 19:59:04 | 00,000,209 | ---- | M] () -- C:\Boot.bak
[2009/12/04 18:08:15 | 00,001,548 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Desktop\CCleaner.lnk
[2009/12/04 15:57:22 | 00,237,600 | ---- | M] () -- C:\WINDOWS\System32\drivers\str.sys.vir
[2009/12/03 20:12:50 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/12/03 19:17:10 | 00,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll.install_backup
[2009/12/03 18:06:51 | 00,001,731 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TuneUp 1-Click Maintenance.lnk
[2009/12/03 18:06:51 | 00,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TuneUp Utilities.lnk
[2009/12/03 16:14:06 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/12/03 16:13:56 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/12/02 18:38:19 | 00,002,869 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\usernav.png
[2009/12/02 18:36:52 | 00,002,892 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\usernavborder.png
[2009/12/02 15:58:16 | 00,030,376 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/12/02 15:57:30 | 00,181,112 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/12/01 19:24:05 | 00,000,459 | -H-- | M] () -- C:\IPH.PH
[2009/12/01 19:20:40 | 00,001,576 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AIM.lnk
[2009/11/30 18:23:32 | 01,218,177 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\math.psd
[2009/11/30 18:22:04 | 00,020,768 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\r.png
[2009/11/30 17:27:44 | 00,175,891 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\bw.psd
[2009/11/30 14:31:22 | 00,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2009/11/29 19:09:04 | 00,000,412 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\spider.sav
[2009/11/29 19:03:18 | 00,000,288 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\SAMANTHA ROOM FUTURE.rtf
[2009/11/29 18:39:39 | 00,002,856 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\miceandmen.rtf
[2009/11/29 16:18:58 | 00,399,305 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\body_bg.png
[2009/11/28 19:28:42 | 00,003,831 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\admin.png
[2009/11/28 19:27:05 | 00,003,616 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\staff.png
[2009/11/27 17:56:11 | 00,033,082 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\lol.jpg
[2009/11/27 14:16:04 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/11/27 14:06:22 | 01,201,214 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\chrisbrown.psd
[2009/11/26 17:46:56 | 00,008,662 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\f_read.png
[2009/11/26 17:46:27 | 00,008,723 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\f_unread.png
[2009/11/26 11:38:14 | 00,004,932 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\whitetrans.png
[2009/11/26 11:34:15 | 00,218,806 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\logo.png
[2009/11/26 10:55:32 | 00,926,894 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\horselogo.psd
[2009/11/25 21:32:19 | 00,276,222 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\acplogo.psd
[2009/11/25 21:32:06 | 00,155,654 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\staff.psd
[2009/11/25 21:05:52 | 00,002,870 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\branding_bg.png
[2009/11/25 19:13:12 | 00,003,220 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\transbright.png
[2009/11/25 18:54:52 | 00,004,794 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\transart.png
[2009/11/25 12:31:52 | 00,000,153 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\acp_bar.png
[2009/11/25 12:23:23 | 00,337,555 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\trans_bird.png
[2009/11/25 08:31:17 | 00,002,868 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\gmap2.png
[2009/11/25 08:19:27 | 00,002,876 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\gmap.png
[2009/11/24 18:21:56 | 00,002,803 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\trans40.png
[2009/11/24 18:13:01 | 00,002,803 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\trans.png
[2009/11/23 16:22:20 | 00,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2009/11/22 16:15:00 | 00,000,178 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\Webhost.rtf
[2009/11/22 15:27:25 | 00,001,740 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Desktop\FlashFXP.lnk
[2009/11/22 14:26:50 | 00,004,010 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\cat_right.png
[2009/11/22 14:25:37 | 00,003,193 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\catend_tile.png
[2009/11/22 14:20:09 | 00,446,078 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\body-bg.png
[2009/11/22 14:08:40 | 00,004,163 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\cat_left.png
[2009/11/22 13:01:40 | 00,002,961 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\tile_cat.png
[2009/11/22 12:37:36 | 00,003,039 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\f_cat_read.png
[2009/11/22 12:36:41 | 00,003,055 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\f_cat_unread.png
[2009/11/22 12:04:56 | 00,000,202 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\tab_left.png
[2009/11/21 19:43:35 | 01,345,040 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\dave.psd
[2009/11/21 13:34:24 | 01,140,174 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\nazis.psd
[2009/11/21 12:02:20 | 00,001,271 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Desktop\Launch Cooliris.lnk
[2009/11/19 18:46:39 | 00,029,833 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\avy.png
[2009/11/19 15:57:45 | 00,001,800 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Network Magic.lnk
[2009/11/19 15:56:53 | 08,673,792 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\atscie.msi
[2009/11/17 17:00:39 | 00,508,420 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/11/17 17:00:39 | 00,432,796 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/11/17 17:00:39 | 00,067,370 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/11/17 01:17:58 | 00,029,512 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2009/11/17 01:12:10 | 00,030,024 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2009/11/14 01:47:57 | 00,260,608 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2009/11/13 15:45:39 | 00,000,021 | ---- | M] () -- C:\txlog.xml
[2009/11/12 19:23:17 | 00,029,696 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\Of Mice And Men Final.doc
[2009/11/11 18:21:47 | 00,198,675 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\r.gif
[2009/11/10 23:08:24 | 00,094,208 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2009/11/10 23:08:24 | 00,069,632 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2009/11/08 13:00:08 | 00,000,000 | -H-- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\Default.rdp
[2009/11/05 17:36:33 | 00,022,528 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\Of Mice and Men BP#1.2.doc
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2009/12/05 08:28:51 | 00,000,972 | ---- | C] () -- C:\Documents and Settings\HomeComputer\Desktop\Shortcut to Win32kDiag.lnk
[2009/12/05 08:22:29 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/12/05 08:08:38 | 00,000,209 | ---- | C] () -- C:\Boot.bak
[2009/12/05 08:08:29 | 00,260,272 | ---- | C] () -- C:\cmldr
[2009/12/05 08:04:50 | 00,260,608 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2009/12/05 08:04:50 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2009/12/05 08:04:50 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2009/12/05 08:04:50 | 00,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2009/12/05 08:04:50 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009/12/05 07:31:55 | 00,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Trojan Remover.lnk
[2009/12/05 07:31:11 | 00,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
[2009/12/05 07:31:11 | 00,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
[2009/12/05 07:31:11 | 00,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
[2009/12/05 07:31:11 | 00,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
[2009/12/04 22:18:34 | 00,000,456 | ---- | C] () -- C:\WINDOWS\tasks\ParetoLogic Registration.job
[2009/12/04 22:15:31 | 00,659,488 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009/12/04 22:15:31 | 00,028,960 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2009/12/04 22:15:31 | 00,009,236 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2009/12/04 22:15:31 | 00,003,476 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.idx
[2009/12/04 22:15:18 | 00,003,506 | ---- | C] () -- C:\rollback.ini
[2009/12/04 21:42:33 | 00,001,507 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AVG 9.0.lnk
[2009/12/04 21:42:23 | 06,061,540 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\avi7.avg
[2009/12/04 21:42:23 | 00,492,629 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2009/12/04 21:42:23 | 00,112,779 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2009/12/04 21:42:07 | 00,113,461 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2009/12/04 21:41:57 | 46,203,422 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2009/12/04 18:08:14 | 00,001,548 | ---- | C] () -- C:\Documents and Settings\HomeComputer\Desktop\CCleaner.lnk
[2009/12/04 15:56:33 | 00,237,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\str.sys.vir
[2009/12/03 20:07:19 | 03,145,728 | ---- | C] () -- C:\Documents and Settings\HomeComputer\ntuser.dat
[2009/12/03 18:03:10 | 00,000,500 | ---- | C] () -- C:\WINDOWS\tasks\Automatic troubleshooting.job
[2009/12/03 18:02:55 | 00,001,731 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TuneUp 1-Click Maintenance.lnk
[2009/12/03 18:02:55 | 00,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TuneUp Utilities.lnk
[2009/12/03 17:58:25 | 01,461,006 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\dot_splatter_3.abr
[2009/12/02 18:33:07 | 00,002,892 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\usernavborder.png
[2009/12/02 18:29:04 | 00,002,869 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\usernav.png
[2009/12/01 19:20:40 | 00,001,576 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AIM.lnk
[2009/12/01 19:19:02 | 00,000,459 | -H-- | C] () -- C:\IPH.PH
[2009/12/01 18:09:42 | 00,043,268 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\Amputa Bangiz.ttf
[2009/11/30 18:17:41 | 01,218,177 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\math.psd
[2009/11/30 17:27:43 | 00,175,891 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\bw.psd
[2009/11/29 19:09:04 | 00,000,412 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\spider.sav
[2009/11/29 19:03:18 | 00,000,288 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\SAMANTHA ROOM FUTURE.rtf
[2009/11/29 18:39:39 | 00,002,856 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\miceandmen.rtf
[2009/11/27 17:54:09 | 00,033,082 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\lol.jpg
[2009/11/27 14:06:21 | 01,201,214 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\chrisbrown.psd
[2009/11/26 11:37:07 | 00,004,932 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\whitetrans.png
[2009/11/26 10:09:05 | 00,003,798 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\ban_member.png
[2009/11/26 10:09:05 | 00,003,640 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\unban_member.png
[2009/11/25 21:32:18 | 00,276,222 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\acplogo.psd
[2009/11/25 21:32:06 | 00,155,654 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\staff.psd
[2009/11/25 21:30:51 | 00,003,616 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\staff.png
[2009/11/25 21:27:50 | 00,003,831 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\admin.png
[2009/11/25 21:05:51 | 00,002,870 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\branding_bg.png
[2009/11/25 21:00:05 | 00,008,662 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\f_read.png
[2009/11/25 20:59:36 | 00,008,723 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\f_unread.png
[2009/11/25 20:56:47 | 00,926,894 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\horselogo.psd
[2009/11/25 19:11:06 | 00,003,220 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\transbright.png
[2009/11/25 18:54:50 | 00,004,794 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\transart.png
[2009/11/25 18:50:05 | 00,399,305 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\body_bg.png
[2009/11/25 12:30:35 | 00,000,153 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\acp_bar.png
[2009/11/25 12:23:19 | 00,337,555 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\trans_bird.png
[2009/11/25 08:27:28 | 00,002,868 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\gmap2.png
[2009/11/24 18:28:16 | 00,002,876 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\gmap.png
[2009/11/24 18:21:56 | 00,002,803 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\trans40.png
[2009/11/24 18:12:48 | 00,002,803 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\trans.png
[2009/11/23 16:24:28 | 00,002,137 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2009/11/23 16:22:20 | 00,001,604 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2009/11/22 16:15:00 | 00,000,178 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\Webhost.rtf
[2009/11/22 15:27:25 | 00,001,740 | ---- | C] () -- C:\Documents and Settings\HomeComputer\Desktop\FlashFXP.lnk
[2009/11/22 13:01:39 | 00,002,961 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\tile_cat.png
[2009/11/22 12:57:22 | 00,003,193 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\catend_tile.png
[2009/11/22 12:54:07 | 00,004,010 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\cat_right.png
[2009/11/22 12:51:19 | 00,004,163 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\cat_left.png
[2009/11/22 12:37:36 | 00,003,039 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\f_cat_read.png
[2009/11/22 12:34:29 | 00,003,055 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\f_cat_unread.png
[2009/11/22 12:17:50 | 00,218,806 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\logo.png
[2009/11/22 12:04:22 | 00,000,202 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\tab_left.png
[2009/11/22 11:59:41 | 00,446,078 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\body-bg.png
[2009/11/21 19:43:33 | 01,345,040 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\dave.psd
[2009/11/21 12:02:20 | 00,001,271 | ---- | C] () -- C:\Documents and Settings\HomeComputer\Desktop\Launch Cooliris.lnk
[2009/11/20 19:00:38 | 01,140,174 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\nazis.psd
[2009/11/19 18:46:38 | 00,029,833 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\avy.png
[2009/11/19 15:57:45 | 00,001,800 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Network Magic.lnk
[2009/11/11 18:21:47 | 00,198,675 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\r.gif
[2009/11/11 15:45:10 | 00,029,696 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\Of Mice And Men Final.doc
[2009/11/08 13:00:08 | 00,000,000 | -H-- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\Default.rdp
[2009/11/03 20:02:18 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\prvlcl.dat
[2009/10/23 17:15:33 | 08,673,792 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\atscie.msi
[2009/10/13 11:06:49 | 00,143,360 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2009/10/13 11:01:40 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/10/13 11:01:39 | 00,000,063 | ---- | C] () -- C:\WINDOWS\mdm.ini
[2009/10/13 11:01:33 | 00,000,000 | ---- | C] () -- C:\WINDOWS\NSREX.INI

========== LOP Check ==========

[2009/12/01 19:20:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AIM
[2009/12/04 21:43:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2009/12/04 21:42:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2009/11/03 20:24:35 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/11/22 15:26:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FlashFXP
[2009/12/05 07:24:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic
[2009/12/04 21:53:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan
[2009/12/05 07:31:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Simply Super Software
[2009/12/04 16:54:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
[2009/12/05 07:34:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/12/03 18:01:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2009/11/23 16:24:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/12/04 16:55:34 | 00,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2009/12/01 19:24:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\acccore
[2009/11/03 20:25:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Canon
[2009/12/05 07:31:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Simply Super Software
[2009/12/04 16:54:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Spyware Terminator
[2009/10/28 18:05:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\TeamViewer
[2009/12/03 18:02:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\TuneUp Software
[2009/12/05 08:42:11 | 00,000,500 | ---- | M] () -- C:\WINDOWS\Tasks\Automatic troubleshooting.job
[2009/12/04 22:18:37 | 00,000,456 | ---- | M] () -- C:\WINDOWS\Tasks\ParetoLogic Registration.job

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2009/11/15 13:38:52 | 00,000,036 | ---- | M] ()(C:\WINDOWS\System32\?) -- C:\WINDOWS\System32\游
[2009/11/15 13:38:52 | 00,000,036 | ---- | C] ()(C:\WINDOWS\System32\?) -- C:\WINDOWS\System32\游
< End of report >

========== Processes (SafeList) ==========

PRC - [2009/12/05 09:42:36 | 00,536,576 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HomeComputer\My Documents\Downloads\OTL.exe
PRC - [2009/12/04 21:42:07 | 01,055,000 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2009/12/04 21:41:57 | 00,600,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2009/12/04 21:41:56 | 00,502,040 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2009/12/04 21:41:55 | 00,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2009/12/04 21:41:49 | 02,020,120 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2009/12/04 21:41:43 | 00,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2009/12/04 21:41:43 | 00,827,160 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2009/12/04 21:41:42 | 00,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2009/11/17 01:17:38 | 00,486,216 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
PRC - [2009/11/17 01:15:36 | 01,021,256 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
PRC - [2009/11/07 20:40:38 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/10/11 04:17:35 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009/08/28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/07/21 07:42:04 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/04/14 04:42:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2009/12/05 09:42:36 | 00,536,576 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HomeComputer\My Documents\Downloads\OTL.exe


========== Win32 Services (SafeList) ==========

SRV - File not found -- -- (nmservice)
SRV - [2009/12/04 21:41:43 | 00,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2009/12/04 21:41:42 | 00,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2009/12/03 18:06:54 | 00,435,016 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009/11/17 01:15:36 | 01,021,256 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2009/11/17 01:12:10 | 00,030,024 | ---- | M] (TuneUp Software) -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2009/11/12 16:33:00 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2009/10/11 04:17:35 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009/08/28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/07/21 09:40:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart)
SRV - [2009/07/21 07:42:04 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller)
SRV - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)


========== Driver Services (SafeList) ==========

DRV - [2009/12/04 21:42:32 | 00,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2009/12/04 21:42:32 | 00,161,800 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2009/12/04 21:42:24 | 00,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009/12/04 21:42:23 | 00,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2009/10/14 07:24:44 | 00,010,064 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2009/07/21 08:30:48 | 03,565,056 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009/05/18 14:17:00 | 00,026,600 | ---- | M] (GEAR Software Inc.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2009/02/18 14:41:10 | 00,186,128 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2008/12/12 18:05:20 | 00,025,264 | ---- | M] (Cisco Systems, Inc.) -- C:\WINDOWS\system32\drivers\purendis.sys -- (purendis)
DRV - [2008/12/12 18:05:18 | 00,023,984 | ---- | M] (Cisco Systems, Inc.) -- C:\WINDOWS\system32\drivers\pnarp.sys -- (pnarp)
DRV - [2008/04/13 21:09:16 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2006/07/21 06:10:44 | 04,011,264 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004/08/10 04:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2004/08/10 02:39:56 | 00,019,840 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2004/08/03 14:31:34 | 00,020,992 | ---- | M] (Realtek Semiconductor Corporation) -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Realtek RTL8139(A/B/C)
DRV - [2002/09/23 13:49:44 | 00,068,672 | ---- | M] (2Wire, Inc.) -- C:\WINDOWS\system32\drivers\2WirePCP.sys -- (2WIREPCP)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.juno.com/dsl/sp
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = searchap.untd.com;127.0.0.1;localhost;*microsoft.com;*windowsupdate.com;*wustat.windows.com;*test-speed.com;liveupdate.symantecliveupdate.com;*symantec.com;*.nai.com;*.networkassociates.com;cf.netzero.net;qs.netzero.net;*.quicken.com;*.pogo.com;;*.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: {6AC85730-7D0F-4de0-B3FA-21142DD85326}:2.0.2
FF - prefs.js..extensions.enabledItems: piclens@cooliris.com:1.11.5
FF - prefs.js..extensions.enabledItems: {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}:2.7.6.0623
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.4.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.8
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.701
FF - prefs.js..extensions.enabledItems: avg@igeared:2.710.016.005
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 7900
FF - prefs.js..network.proxy.no_proxies_on: "searchap.untd.com,127.0.0.1,localhost,*microsoft.com,*windowsupdate.com,*wustat.windows.com,*test-speed.com,liveupdate.symantecliveupdate.com,*symantec.com,*.nai.com,*.networkassociates.com,cf.netzero.net,qs.netzero.net,*.quicken.com,*.pogo.com,localhost,127.0.0.1"
FF - prefs.js..network.proxy.type: 4


FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2009/12/04 21:41:41 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared [2009/12/04 21:42:18 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/24 18:33:22 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/12/01 19:20:31 | 00,000,000 | ---D | M]

[2009/10/14 14:34:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Extensions
[2009/12/04 21:44:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions
[2009/11/22 10:58:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}
[2009/11/28 17:39:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2009/11/21 12:01:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}
[2009/11/14 16:00:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/11/15 14:44:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\firebug@software.joehewitt.com
[2009/11/21 12:02:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Mozilla\Firefox\Profiles\cc4w1vaz.default\extensions\piclens@cooliris.com
[2009/12/04 21:44:59 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/09/21 12:24:16 | 00,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml

O1 HOSTS File: (23 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (FlashFXP Helper for Internet Explorer) - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\Program Files\FlashFXP\IEFlash.dll (IniCom Networks, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {5854FAC4-5BF0-47DD-B5A9-A5EA8CFF3CF4} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {8E613EAF-E16E-415C-BD39-F71D6A3B5518} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe (Simply Super Software)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Toolbars present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/...b?1255460484812 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (Reg Error: Value error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/10/13 10:36:41 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2009/12/05 08:22:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\Malwarebytes
[2009/12/05 08:22:26 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/12/05 08:22:23 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/12/05 08:08:26 | 00,000,000 | RHSD | C] -- C:\cmdcons
[2009/12/05 08:04:50 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2009/12/05 08:04:50 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2009/12/05 08:04:50 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2009/12/05 08:04:50 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009/12/05 08:04:17 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009/12/05 08:04:14 | 00,000,000 | --SD | C] -- C:\thcbytes
[2009/12/05 08:03:23 | 00,000,000 | ---D | C] -- C:\Qoobox
[2009/12/05 07:44:22 | 00,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2009/12/05 07:34:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/12/05 07:32:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\My Documents\Simply Super Software
[2009/12/05 07:31:11 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ztvcabinet.dll
[2009/12/05 07:31:08 | 00,000,000 | ---D | C] -- C:\Program Files\Trojan Remover
[2009/12/05 07:31:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\Simply Super Software
[2009/12/05 07:31:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Simply Super Software
[2009/12/04 22:13:32 | 00,186,128 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2009/12/04 22:10:09 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\ParetoLogic
[2009/12/04 22:10:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic
[2009/12/04 22:08:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\Downloaded Installations
[2009/12/04 21:44:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\AVG Security Toolbar
[2009/12/04 21:42:32 | 00,360,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2009/12/04 21:42:32 | 00,161,800 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys
[2009/12/04 21:42:32 | 00,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2009/12/04 21:42:24 | 00,333,192 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2009/12/04 21:42:23 | 00,028,424 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2009/12/04 21:42:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2009/12/04 21:41:40 | 00,000,000 | ---D | C] -- C:\Program Files\AVG
[2009/12/04 21:23:34 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\HomeComputer\Recent
[2009/12/04 21:19:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\My Documents\AVG.I.S.8.0.199.1387
[2009/12/04 19:58:44 | 00,000,000 | ---D | C] -- C:\WINDOWS\pss
[2009/12/04 19:50:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\My Documents\Spyware Doctor-6.0.0.386
[2009/12/04 18:11:11 | 00,000,000 | ---D | C] -- C:\Program Files\CleanUp!
[2009/12/04 18:08:14 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009/12/04 17:28:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\Help
[2009/12/04 17:28:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\Help
[2009/12/04 17:26:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan
[2009/12/04 17:26:49 | 00,000,000 | ---D | C] -- C:\Program Files\Security Task Manager
[2009/12/04 16:56:22 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Avg
[2009/12/04 16:55:34 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2009/12/04 16:26:30 | 00,000,000 | ---D | C] -- C:\WINDOWS\123456789ABCDEFG
[2009/12/03 20:58:25 | 00,000,000 | ---D | C] -- C:\fixwareout
[2009/12/03 20:50:54 | 00,000,000 | ---D | C] -- C:\!KillBox
[2009/12/03 20:46:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009/12/03 20:46:06 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/12/03 20:24:05 | 00,000,000 | ---D | C] -- C:\Program Files\WinClamAVShield
[2009/12/03 20:20:50 | 00,000,000 | ---D | C] -- C:\Program Files\Crawler
[2009/12/03 20:20:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\Spyware Terminator
[2009/12/03 20:20:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
[2009/12/03 20:20:42 | 00,000,000 | ---D | C] -- C:\Program Files\Spyware Terminator
[2009/12/03 20:10:07 | 00,000,000 | ---D | C] -- C:\Config.Msi
[2009/12/03 20:08:25 | 00,000,000 | -H-D | C] -- C:\$AVG
[2009/12/03 20:08:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\avg9
[2009/12/03 19:17:10 | 00,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll.install_backup
[2009/12/03 18:03:03 | 00,029,512 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2009/12/03 18:03:01 | 00,030,024 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2009/12/03 18:02:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\TuneUp Software
[2009/12/03 18:01:15 | 00,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2010
[2009/12/03 18:00:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2009/12/02 17:50:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2009/12/01 19:24:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\acccore
[2009/12/01 19:24:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\AIM
[2009/12/01 19:24:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\AOL
[2009/12/01 19:20:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AIM
[2009/12/01 19:20:36 | 00,000,000 | ---D | C] -- C:\Program Files\AIM
[2009/12/01 19:20:30 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Software Update Utility
[2009/12/01 19:20:30 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\AOL
[2009/11/26 10:32:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\My Documents\(TVC30) Log In As Member v1.0.1
[2009/11/23 16:25:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Application Data\Apple Computer
[2009/11/23 16:24:19 | 00,107,368 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\GEARAspi.dll
[2009/11/23 16:24:19 | 00,026,600 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys
[2009/11/23 16:23:28 | 00,000,000 | ---D | C] -- C:\Program Files\iPod
[2009/11/23 16:23:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/11/23 16:23:23 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes
[2009/11/23 16:22:47 | 00,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2009/11/23 16:21:58 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/11/23 16:21:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2009/11/22 15:26:11 | 00,000,000 | ---D | C] -- C:\Program Files\FlashFXP
[2009/11/22 15:26:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\FlashFXP
[2009/11/21 19:41:26 | 00,946,176 | ---- | C] (WeOnlyDo! Inc.) -- C:\WINDOWS\System32\wodFtpDLXG.OCX
[2009/11/21 19:41:26 | 00,224,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TABCTL32.OCX
[2009/11/21 19:41:25 | 00,000,000 | ---D | C] -- C:\Program Files\GoFTP
[2009/11/21 12:02:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\Cooliris
[2009/11/19 15:57:36 | 00,000,000 | ---D | C] -- C:\Program Files\Pure Networks
[2009/11/19 15:56:13 | 00,023,984 | ---- | C] (Cisco Systems, Inc.) -- C:\WINDOWS\System32\drivers\pnarp.sys
[2009/11/19 15:56:07 | 00,025,264 | ---- | C] (Cisco Systems, Inc.) -- C:\WINDOWS\System32\drivers\purendis.sys
[2009/11/19 15:55:59 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Pure Networks Shared
[2009/11/19 15:54:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Pure Networks
[2009/11/14 15:32:58 | 00,000,000 | ---D | C] -- C:\Program Files\Minefield
[2009/11/10 23:08:24 | 00,094,208 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2009/11/10 23:08:24 | 00,069,632 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2009/11/07 15:10:32 | 00,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2009/12/05 09:46:24 | 00,664,864 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009/12/05 09:28:11 | 00,000,000 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\prvlcl.dat
[2009/12/05 09:18:48 | 00,028,960 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2009/12/05 08:42:11 | 00,000,500 | ---- | M] () -- C:\WINDOWS\tasks\Automatic troubleshooting.job
[2009/12/05 08:28:51 | 00,000,972 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Desktop\Shortcut to Win32kDiag.lnk
[2009/12/05 08:22:29 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/12/05 08:19:40 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/12/05 08:15:29 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/12/05 08:14:34 | 03,145,728 | ---- | M] () -- C:\Documents and Settings\HomeComputer\ntuser.dat
[2009/12/05 08:14:33 | 00,009,236 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2009/12/05 08:14:33 | 00,003,476 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx
[2009/12/05 08:14:11 | 00,000,178 | -HS- | M] () -- C:\Documents and Settings\HomeComputer\ntuser.ini
[2009/12/05 08:08:39 | 00,000,279 | RHS- | M] () -- C:\boot.ini
[2009/12/05 07:31:55 | 00,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Trojan Remover.lnk
[2009/12/05 07:25:50 | 46,203,422 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2009/12/05 07:25:02 | 00,112,779 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2009/12/04 22:18:37 | 00,000,456 | ---- | M] () -- C:\WINDOWS\tasks\ParetoLogic Registration.job
[2009/12/04 22:15:19 | 00,003,506 | ---- | M] () -- C:\rollback.ini
[2009/12/04 21:42:33 | 00,001,507 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AVG 9.0.lnk
[2009/12/04 21:42:32 | 00,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2009/12/04 21:42:32 | 00,161,800 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys
[2009/12/04 21:42:32 | 00,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2009/12/04 21:42:24 | 00,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2009/12/04 21:42:23 | 06,061,540 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\avi7.avg
[2009/12/04 21:42:23 | 00,492,629 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2009/12/04 21:42:23 | 00,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2009/12/04 21:42:07 | 00,113,461 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2009/12/04 19:59:04 | 00,000,534 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/12/04 19:59:04 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/12/04 19:59:04 | 00,000,209 | ---- | M] () -- C:\Boot.bak
[2009/12/04 18:08:15 | 00,001,548 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Desktop\CCleaner.lnk
[2009/12/04 15:57:22 | 00,237,600 | ---- | M] () -- C:\WINDOWS\System32\drivers\str.sys.vir
[2009/12/03 20:12:50 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/12/03 19:17:10 | 00,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll.install_backup
[2009/12/03 18:06:51 | 00,001,731 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TuneUp 1-Click Maintenance.lnk
[2009/12/03 18:06:51 | 00,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TuneUp Utilities.lnk
[2009/12/03 16:14:06 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/12/03 16:13:56 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/12/02 18:38:19 | 00,002,869 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\usernav.png
[2009/12/02 18:36:52 | 00,002,892 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\usernavborder.png
[2009/12/02 15:58:16 | 00,030,376 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/12/02 15:57:30 | 00,181,112 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/12/01 19:24:05 | 00,000,459 | -H-- | M] () -- C:\IPH.PH
[2009/12/01 19:20:40 | 00,001,576 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AIM.lnk
[2009/11/30 18:23:32 | 01,218,177 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\math.psd
[2009/11/30 18:22:04 | 00,020,768 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\r.png
[2009/11/30 17:27:44 | 00,175,891 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\bw.psd
[2009/11/30 14:31:22 | 00,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2009/11/29 19:09:04 | 00,000,412 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\spider.sav
[2009/11/29 19:03:18 | 00,000,288 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\SAMANTHA ROOM FUTURE.rtf
[2009/11/29 18:39:39 | 00,002,856 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\miceandmen.rtf
[2009/11/29 16:18:58 | 00,399,305 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\body_bg.png
[2009/11/28 19:28:42 | 00,003,831 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\admin.png
[2009/11/28 19:27:05 | 00,003,616 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\staff.png
[2009/11/27 17:56:11 | 00,033,082 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\lol.jpg
[2009/11/27 14:16:04 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/11/27 14:06:22 | 01,201,214 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\chrisbrown.psd
[2009/11/26 17:46:56 | 00,008,662 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\f_read.png
[2009/11/26 17:46:27 | 00,008,723 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\f_unread.png
[2009/11/26 11:38:14 | 00,004,932 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\whitetrans.png
[2009/11/26 11:34:15 | 00,218,806 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\logo.png
[2009/11/26 10:55:32 | 00,926,894 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\horselogo.psd
[2009/11/25 21:32:19 | 00,276,222 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\acplogo.psd
[2009/11/25 21:32:06 | 00,155,654 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\staff.psd
[2009/11/25 21:05:52 | 00,002,870 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\branding_bg.png
[2009/11/25 19:13:12 | 00,003,220 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\transbright.png
[2009/11/25 18:54:52 | 00,004,794 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\transart.png
[2009/11/25 12:31:52 | 00,000,153 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\acp_bar.png
[2009/11/25 12:23:23 | 00,337,555 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\trans_bird.png
[2009/11/25 08:31:17 | 00,002,868 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\gmap2.png
[2009/11/25 08:19:27 | 00,002,876 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\gmap.png
[2009/11/24 18:21:56 | 00,002,803 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\trans40.png
[2009/11/24 18:13:01 | 00,002,803 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\trans.png
[2009/11/23 16:22:20 | 00,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2009/11/22 16:15:00 | 00,000,178 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\Webhost.rtf
[2009/11/22 15:27:25 | 00,001,740 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Desktop\FlashFXP.lnk
[2009/11/22 14:26:50 | 00,004,010 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\cat_right.png
[2009/11/22 14:25:37 | 00,003,193 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\catend_tile.png
[2009/11/22 14:20:09 | 00,446,078 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\body-bg.png
[2009/11/22 14:08:40 | 00,004,163 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\cat_left.png
[2009/11/22 13:01:40 | 00,002,961 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\tile_cat.png
[2009/11/22 12:37:36 | 00,003,039 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\f_cat_read.png
[2009/11/22 12:36:41 | 00,003,055 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\f_cat_unread.png
[2009/11/22 12:04:56 | 00,000,202 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\tab_left.png
[2009/11/21 19:43:35 | 01,345,040 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\dave.psd
[2009/11/21 13:34:24 | 01,140,174 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\nazis.psd
[2009/11/21 12:02:20 | 00,001,271 | ---- | M] () -- C:\Documents and Settings\HomeComputer\Desktop\Launch Cooliris.lnk
[2009/11/19 18:46:39 | 00,029,833 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\avy.png
[2009/11/19 15:57:45 | 00,001,800 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Network Magic.lnk
[2009/11/19 15:56:53 | 08,673,792 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\atscie.msi
[2009/11/17 17:00:39 | 00,508,420 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/11/17 17:00:39 | 00,432,796 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/11/17 17:00:39 | 00,067,370 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/11/17 01:17:58 | 00,029,512 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2009/11/17 01:12:10 | 00,030,024 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2009/11/14 01:47:57 | 00,260,608 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2009/11/13 15:45:39 | 00,000,021 | ---- | M] () -- C:\txlog.xml
[2009/11/12 19:23:17 | 00,029,696 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\Of Mice And Men Final.doc
[2009/11/11 18:21:47 | 00,198,675 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\r.gif
[2009/11/10 23:08:24 | 00,094,208 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2009/11/10 23:08:24 | 00,069,632 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2009/11/08 13:00:08 | 00,000,000 | -H-- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\Default.rdp
[2009/11/05 17:36:33 | 00,022,528 | ---- | M] () -- C:\Documents and Settings\HomeComputer\My Documents\Of Mice and Men BP#1.2.doc
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2009/12/05 08:28:51 | 00,000,972 | ---- | C] () -- C:\Documents and Settings\HomeComputer\Desktop\Shortcut to Win32kDiag.lnk
[2009/12/05 08:22:29 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/12/05 08:08:38 | 00,000,209 | ---- | C] () -- C:\Boot.bak
[2009/12/05 08:08:29 | 00,260,272 | ---- | C] () -- C:\cmldr
[2009/12/05 08:04:50 | 00,260,608 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2009/12/05 08:04:50 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2009/12/05 08:04:50 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2009/12/05 08:04:50 | 00,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2009/12/05 08:04:50 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009/12/05 07:31:55 | 00,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Trojan Remover.lnk
[2009/12/05 07:31:11 | 00,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
[2009/12/05 07:31:11 | 00,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
[2009/12/05 07:31:11 | 00,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
[2009/12/05 07:31:11 | 00,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
[2009/12/04 22:18:34 | 00,000,456 | ---- | C] () -- C:\WINDOWS\tasks\ParetoLogic Registration.job
[2009/12/04 22:15:31 | 00,664,864 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009/12/04 22:15:31 | 00,028,960 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2009/12/04 22:15:31 | 00,009,236 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2009/12/04 22:15:31 | 00,003,476 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.idx
[2009/12/04 22:15:18 | 00,003,506 | ---- | C] () -- C:\rollback.ini
[2009/12/04 21:42:33 | 00,001,507 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AVG 9.0.lnk
[2009/12/04 21:42:23 | 06,061,540 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\avi7.avg
[2009/12/04 21:42:23 | 00,492,629 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2009/12/04 21:42:23 | 00,112,779 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2009/12/04 21:42:07 | 00,113,461 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2009/12/04 21:41:57 | 46,203,422 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2009/12/04 18:08:14 | 00,001,548 | ---- | C] () -- C:\Documents and Settings\HomeComputer\Desktop\CCleaner.lnk
[2009/12/04 15:56:33 | 00,237,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\str.sys.vir
[2009/12/03 20:07:19 | 03,145,728 | ---- | C] () -- C:\Documents and Settings\HomeComputer\ntuser.dat
[2009/12/03 18:03:10 | 00,000,500 | ---- | C] () -- C:\WINDOWS\tasks\Automatic troubleshooting.job
[2009/12/03 18:02:55 | 00,001,731 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TuneUp 1-Click Maintenance.lnk
[2009/12/03 18:02:55 | 00,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TuneUp Utilities.lnk
[2009/12/03 17:58:25 | 01,461,006 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\dot_splatter_3.abr
[2009/12/02 18:33:07 | 00,002,892 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\usernavborder.png
[2009/12/02 18:29:04 | 00,002,869 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\usernav.png
[2009/12/01 19:20:40 | 00,001,576 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AIM.lnk
[2009/12/01 19:19:02 | 00,000,459 | -H-- | C] () -- C:\IPH.PH
[2009/12/01 18:09:42 | 00,043,268 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\Amputa Bangiz.ttf
[2009/11/30 18:17:41 | 01,218,177 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\math.psd
[2009/11/30 17:27:43 | 00,175,891 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\bw.psd
[2009/11/29 19:09:04 | 00,000,412 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\spider.sav
[2009/11/29 19:03:18 | 00,000,288 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\SAMANTHA ROOM FUTURE.rtf
[2009/11/29 18:39:39 | 00,002,856 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\miceandmen.rtf
[2009/11/27 17:54:09 | 00,033,082 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\lol.jpg
[2009/11/27 14:06:21 | 01,201,214 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\chrisbrown.psd
[2009/11/26 11:37:07 | 00,004,932 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\whitetrans.png
[2009/11/26 10:09:05 | 00,003,798 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\ban_member.png
[2009/11/26 10:09:05 | 00,003,640 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\unban_member.png
[2009/11/25 21:32:18 | 00,276,222 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\acplogo.psd
[2009/11/25 21:32:06 | 00,155,654 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\staff.psd
[2009/11/25 21:30:51 | 00,003,616 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\staff.png
[2009/11/25 21:27:50 | 00,003,831 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\admin.png
[2009/11/25 21:05:51 | 00,002,870 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\branding_bg.png
[2009/11/25 21:00:05 | 00,008,662 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\f_read.png
[2009/11/25 20:59:36 | 00,008,723 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\f_unread.png
[2009/11/25 20:56:47 | 00,926,894 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\horselogo.psd
[2009/11/25 19:11:06 | 00,003,220 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\transbright.png
[2009/11/25 18:54:50 | 00,004,794 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\transart.png
[2009/11/25 18:50:05 | 00,399,305 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\body_bg.png
[2009/11/25 12:30:35 | 00,000,153 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\acp_bar.png
[2009/11/25 12:23:19 | 00,337,555 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\trans_bird.png
[2009/11/25 08:27:28 | 00,002,868 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\gmap2.png
[2009/11/24 18:28:16 | 00,002,876 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\gmap.png
[2009/11/24 18:21:56 | 00,002,803 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\trans40.png
[2009/11/24 18:12:48 | 00,002,803 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\trans.png
[2009/11/23 16:24:28 | 00,002,137 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2009/11/23 16:22:20 | 00,001,604 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2009/11/22 16:15:00 | 00,000,178 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\Webhost.rtf
[2009/11/22 15:27:25 | 00,001,740 | ---- | C] () -- C:\Documents and Settings\HomeComputer\Desktop\FlashFXP.lnk
[2009/11/22 13:01:39 | 00,002,961 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\tile_cat.png
[2009/11/22 12:57:22 | 00,003,193 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\catend_tile.png
[2009/11/22 12:54:07 | 00,004,010 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\cat_right.png
[2009/11/22 12:51:19 | 00,004,163 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\cat_left.png
[2009/11/22 12:37:36 | 00,003,039 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\f_cat_read.png
[2009/11/22 12:34:29 | 00,003,055 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\f_cat_unread.png
[2009/11/22 12:17:50 | 00,218,806 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\logo.png
[2009/11/22 12:04:22 | 00,000,202 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\tab_left.png
[2009/11/22 11:59:41 | 00,446,078 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\body-bg.png
[2009/11/21 19:43:33 | 01,345,040 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\dave.psd
[2009/11/21 12:02:20 | 00,001,271 | ---- | C] () -- C:\Documents and Settings\HomeComputer\Desktop\Launch Cooliris.lnk
[2009/11/20 19:00:38 | 01,140,174 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\nazis.psd
[2009/11/19 18:46:38 | 00,029,833 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\avy.png
[2009/11/19 15:57:45 | 00,001,800 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Network Magic.lnk
[2009/11/11 18:21:47 | 00,198,675 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\r.gif
[2009/11/11 15:45:10 | 00,029,696 | ---- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\Of Mice And Men Final.doc
[2009/11/08 13:00:08 | 00,000,000 | -H-- | C] () -- C:\Documents and Settings\HomeComputer\My Documents\Default.rdp
[2009/11/03 20:02:18 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\HomeComputer\Local Settings\Application Data\prvlcl.dat
[2009/10/23 17:15:33 | 08,673,792 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\atscie.msi
[2009/10/13 11:06:49 | 00,143,360 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2009/10/13 11:01:40 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/10/13 11:01:39 | 00,000,063 | ---- | C] () -- C:\WINDOWS\mdm.ini
[2009/10/13 11:01:33 | 00,000,000 | ---- | C] () -- C:\WINDOWS\NSREX.INI

========== LOP Check ==========

[2009/12/01 19:20:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AIM
[2009/12/04 21:43:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
[2009/12/04 21:42:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2009/11/03 20:24:35 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/11/22 15:26:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FlashFXP
[2009/12/05 07:24:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ParetoLogic
[2009/12/04 21:53:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan
[2009/12/05 07:31:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Simply Super Software
[2009/12/04 16:54:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
[2009/12/05 07:34:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/12/03 18:01:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2009/11/23 16:24:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/12/04 16:55:34 | 00,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2009/12/01 19:24:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\acccore
[2009/11/03 20:25:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Canon
[2009/12/05 07:31:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Simply Super Software
[2009/12/04 16:54:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\Spyware Terminator
[2009/10/28 18:05:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\TeamViewer
[2009/12/03 18:02:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\HomeComputer\Application Data\TuneUp Software
[2009/12/05 08:42:11 | 00,000,500 | ---- | M] () -- C:\WINDOWS\Tasks\Automatic troubleshooting.job
[2009/12/04 22:18:37 | 00,000,456 | ---- | M] () -- C:\WINDOWS\Tasks\ParetoLogic Registration.job

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2009/11/15 13:38:52 | 00,000,036 | ---- | M] ()(C:\WINDOWS\System32\?) -- C:\WINDOWS\System32\游
[2009/11/15 13:38:52 | 00,000,036 | ---- | C] ()(C:\WINDOWS\System32\?) -- C:\WINDOWS\System32\游

< End of report >


So can you guys tell me what to put in the "Custom Scans/Fixes"

Edited by Jimi Hendrix, 05 December 2009 - 12:57 PM.


BC AdBot (Login to Remove)

 


#2 extremeboy

extremeboy

  • Malware Response Team
  • 12,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:09 AM

Posted 19 December 2009 - 04:18 PM

Hi,

My name is Extremeboy (or EB for short), and I will be helping you with your log.

We apologize for the delay of response.

If you still require assistance we would like to see the current condition of your system so please post a new set of DDS Logs as well as a RootRepeal log and a description of any remaining problems or symptoms you may still have please.

If for any reason you did not post a DDS log or RootRepeal log please refer to this page and in step #6 and Step #7 for further instructions on downloading and running DDS & RootRepeal. If you have any problems just let me know in your next reply or simply post a Hijackthis log.


For your next reply I would like to see:
-The DDS logs
---DDS.txt and Attach logs
-RootRepeal logs
-Description of any remaining problems you may still have.


Thanks again and we apologize for the delay.

With Regards,
Extremeboy
Note: Please do not PM me asking for help, instead please post it in the correct forum requesting for help. Help requests via the PM system will be ignored.

If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.

The help you receive here is always free but if you wish to show your appreciation, you may wish to Posted Image.

#3 extremeboy

extremeboy

  • Malware Response Team
  • 12,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:09 AM

Posted 24 December 2009 - 12:09 PM

Hello.

Due to Lack of feedback, this topic is now Closed

If you need this topic reopened, please Send Me a Message. In your message please include the address of this thread in your request.
This applies only to the original topic starter.

Everyone else please start a new topic.

With Regards,
Extremeboy
Note: Please do not PM me asking for help, instead please post it in the correct forum requesting for help. Help requests via the PM system will be ignored.

If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.

The help you receive here is always free but if you wish to show your appreciation, you may wish to Posted Image.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users