Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

And in this corner....another Google re-direct log


  • This topic is locked This topic is locked
4 replies to this topic

#1 justinfrim

justinfrim

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:43 AM

Posted 03 August 2010 - 01:43 AM

OTL.Txt (below) and Extras.Txt (after line breaks)


OTL logfile created on: 8/2/2010 11:32:10 PM - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Users\Justin\Desktop
64bit-Windows Vista Business Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

6.00 Gb Total Physical Memory | 5.00 Gb Available Physical Memory | 77.00% Memory free
12.00 Gb Paging File | 11.00 Gb Available in Paging File | 90.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.76 Gb Total Space | 38.17 Gb Free Space | 16.40% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 1397.27 Gb Total Space | 262.68 Gb Free Space | 18.80% Space Free | Partition Type: NTFS
Drive I: | 931.50 Gb Total Space | 284.42 Gb Free Space | 30.53% Space Free | Partition Type: NTFS

Computer Name: JUSTIN-PC
Current User Name: Justin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/08/02 23:31:15 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Justin\Desktop\OTL.exe
PRC - [2010/07/22 19:06:53 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010/07/02 17:33:10 | 002,347,216 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 3\AWC.exe
PRC - [2010/05/04 23:58:36 | 000,077,824 | ---- | M] (Avid Technology, Inc.) -- C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
PRC - [2009/10/20 20:39:28 | 000,340,456 | ---- | M] (Kaspersky Lab) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
PRC - [2007/05/28 09:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe


========== Modules (SafeList) ==========

MOD - [2010/08/02 23:31:15 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Justin\Desktop\OTL.exe
MOD - [2008/01/20 19:48:23 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2008/01/20 19:46:25 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/06/29 10:49:27 | 000,128,752 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2009/07/15 12:13:36 | 001,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2008/12/11 07:08:52 | 004,297,728 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe -- (NVIDIA Performance Driver Service)
SRV:64bit: - [2008/01/20 19:50:33 | 000,252,928 | ---- | M] () [Disabled | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2008/01/20 19:50:17 | 000,598,016 | ---- | M] () [Disabled | Stopped] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2008/01/20 19:49:41 | 000,195,584 | ---- | M] () [Disabled | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008/01/20 19:45:48 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/05/04 23:58:36 | 000,077,824 | ---- | M] (Avid Technology, Inc.) [Auto | Running] -- C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe -- (DigiRefresh)
SRV - [2009/10/20 20:39:28 | 000,340,456 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe -- (AVP)
SRV - [2009/07/15 12:08:29 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2007/05/28 09:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\RimUsb_AMD64.sys -- (RimUsb)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\ipinip.sys -- (IpInIp)
DRV:64bit: - [2010/07/28 02:58:14 | 000,353,296 | ---- | M] () [File_System | System | Running] -- C:\Windows\SysNative\DRIVERS\klif.sys -- (KLIF)
DRV:64bit: - [2010/02/17 11:23:05 | 000,014,920 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2010/02/17 11:23:05 | 000,012,360 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2009/10/14 21:18:38 | 000,040,464 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\DRIVERS\klbg.sys -- (KLBG)
DRV:64bit: - [2009/10/02 19:39:32 | 000,021,008 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\klmouflt.sys -- (klmouflt)
DRV:64bit: - [2009/09/14 14:46:42 | 000,027,152 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\klim6.sys -- (KLIM6)
DRV:64bit: - [2009/09/01 15:29:56 | 000,157,712 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\DRIVERS\kl1.sys -- (kl1)
DRV:64bit: - [2009/08/11 06:48:32 | 000,021,520 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\diginet.sys -- (DigiNet)
DRV:64bit: - [2009/07/15 11:49:59 | 000,860,656 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\sptd.sys -- (sptd)
DRV:64bit: - [2009/04/28 13:20:06 | 000,055,024 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2008/01/20 19:50:17 | 000,460,800 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2008/01/20 19:48:05 | 000,011,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\RootMdm.sys -- (ROOTMODEM)
DRV:64bit: - [2008/01/20 19:45:42 | 000,048,768 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\avc.sys -- (Avc)
DRV:64bit: - [2008/01/20 19:45:42 | 000,046,080 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2008/01/20 19:45:41 | 000,214,016 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2008/01/20 19:45:11 | 000,058,496 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\61883.sys -- (61883)
DRV:64bit: - [2008/01/20 19:45:07 | 000,061,568 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\msdv.sys -- (MSDV)
DRV:64bit: - [2007/04/27 07:40:00 | 000,142,120 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Sentinel64.sys -- (Sentinel64)
DRV:64bit: - [2007/04/27 07:40:00 | 000,056,872 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\SNTUSB64.SYS -- (SNTUSB64)
DRV:64bit: - [2007/02/05 09:49:20 | 001,529,856 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\P17.sys -- (P17)
DRV:64bit: - [2007/01/18 16:10:22 | 000,030,336 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\RimSerial_AMD64.sys -- (RimVSerPort)
DRV:64bit: - [2006/09/18 14:36:24 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\Wbem\ntfs.mof -- (Ntfs)
DRV - [2009/10/05 15:10:42 | 000,025,244 | ---- | M] (Adaptec) [Kernel | System | Stopped] -- C:\Windows\SysWow64\drivers\aspi32.sys -- (Aspi32)
DRV - [2008/08/14 07:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysWow64\drivers\adfs.sys -- (adfs)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:5643

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.5.4.20081105
FF - prefs.js..network.proxy.type: 0


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/07/30 15:24:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/07/30 15:24:45 | 000,000,000 | ---D | M]

[2009/06/04 17:08:17 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\Mozilla\Extensions
[2010/08/02 01:44:40 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\3evkpt8c.default\extensions
[2010/08/02 01:38:18 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\3evkpt8c.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/07/28 02:06:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/07/28 02:06:39 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru

O1 HOSTS File: ([2010/07/29 21:58:22 | 000,002,175 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 19 more lines...
O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\x64\ievkbd.dll (Kaspersky Lab)
O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\x64\klwtbbho.dll (Kaspersky Lab)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll (Kaspersky Lab)
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL ()
O4:64bit: - HKLM..\Run: [NvMediaCenter] C:\Windows\SysNative\NvMcTray.DLL ()
O4:64bit: - HKLM..\Run: [nwiz] C:\Windows\SysNative\nwiz.exe ()
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe (Avid Technology, Inc.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O9:64bit: - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\x64\klwtbbho.dll (Kaspersky Lab)
O9:64bit: - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\x64\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll (Kaspersky Lab)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: aol.com ([free] http in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2010\mzvkbd3.dll (Kaspersky Lab)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\klogon: DllName - Reg Error: Key error. - C:\Windows\SysNative\klogon.dll ()
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img11.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img11.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/11 15:15:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{52113044-728f-11df-a76a-001ec94728c2}\Shell\AutoRun\command - "" = E:\Setup.exe -- File not found
O33 - MountPoints2\{52113044-728f-11df-a76a-001ec94728c2}\Shell\Install\command - "" = E:\Setup.exe -- File not found
O33 - MountPoints2\{9fa4bc8b-561c-11de-a3a0-001ec94728c2}\Shell\AutoRun\command - "" = I:\Setup.exe -- File not found
O33 - MountPoints2\{c10d7577-5a34-11df-8635-001ec94728c2}\Shell - "" = AutoRun
O33 - MountPoints2\{c10d7577-5a34-11df-8635-001ec94728c2}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- File not found
O33 - MountPoints2\{f31b7c9d-4bd8-11df-a5e0-001ec94728c2}\Shell\AutoRun\command - "" = E:\InstallSeagateManager.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll ()

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 90 Days ==========

[2010/08/02 23:31:17 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Users\Justin\Desktop\OTL.exe
[2010/08/02 01:38:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner
[2010/08/01 23:28:46 | 000,000,000 | ---D | C] -- C:\Users\Justin\AppData\Roaming\SUPERAntiSpyware.com
[2010/08/01 23:28:46 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2010/08/01 23:28:42 | 000,000,000 | ---D | C] -- C:\ProgramData\!SASCORE
[2010/08/01 23:28:37 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010/08/01 23:27:40 | 009,190,248 | ---- | C] (SUPERAntiSpyware.com) -- C:\Users\Justin\Desktop\SUPERAntiSpyware.exe
[2010/08/01 20:42:38 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2010/07/30 16:12:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Licenses
[2010/07/30 16:10:16 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\MEDIA
[2010/07/30 16:06:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Avid
[2010/07/30 15:54:16 | 000,000,000 | ---D | C] -- C:\Users\Justin\Desktop\MediaComposer_5.0.1
[2010/07/30 15:23:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2010/07/29 22:42:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sorenson Media
[2010/07/29 21:57:20 | 000,000,000 | ---D | C] -- C:\Users\Justin\AppData\Roaming\SorensonMedia
[2010/07/29 21:57:11 | 000,060,273 | ---- | C] (Open Source Software community project) -- C:\Windows\SysWow64\pthreadGC2.dll
[2010/07/29 21:57:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ffdshow
[2010/07/29 21:32:04 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\URTTEMP
[2010/07/28 02:04:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2010/07/28 02:04:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Kaspersky Lab
[2010/07/28 02:03:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab Setup Files
[2010/07/28 01:19:24 | 000,000,000 | ---D | C] -- C:\Users\Justin\Desktop\TMPGEnc 4.0 XPress v4.7.4.299 Retail
[2010/07/28 01:04:18 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2010/07/25 23:28:41 | 000,000,000 | ---D | C] -- C:\Users\Justin\AppData\Roaming\Malwarebytes
[2010/07/25 23:28:34 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/07/25 23:28:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/07/25 23:28:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/07/25 22:14:44 | 000,000,000 | ---D | C] -- C:\Users\Justin\AppData\Local\wcdvygrmu
[2010/07/25 20:53:40 | 000,000,000 | ---D | C] -- C:\Users\Justin\AppData\Roaming\.purple
[2010/07/25 20:53:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pidgin
[2010/07/21 20:15:24 | 000,000,000 | ---D | C] -- C:\Users\Justin\AppData\Roaming\Canon
[2010/07/21 20:13:05 | 000,000,000 | ---D | C] -- C:\Users\Justin\AppData\Local\CANON_INC
[2010/07/21 19:30:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Canon
[2010/07/21 19:27:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Canon
[2010/07/17 23:17:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2010/07/17 22:49:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Alwil Software
[2010/07/17 22:49:24 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010/07/14 12:24:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Winamp
[2010/07/14 11:48:07 | 000,000,000 | ---D | C] -- C:\Users\Justin\Desktop\Hip hop tracks fro Born and Bred
[2010/06/30 22:44:14 | 000,543,232 | ---- | C] (Avid Technology, Inc.) -- C:\Windows\SysWow64\mmclient.dll
[2010/06/30 22:43:44 | 000,032,768 | ---- | C] (Avid Technology, Inc.) -- C:\Windows\SysWow64\AvidQTUpdaterVC7.dll
[2010/06/08 21:58:27 | 000,000,000 | ---D | C] -- C:\Users\Justin\Desktop\images
[2010/06/02 16:03:03 | 000,000,000 | ---D | C] -- C:\Users\Justin\AppData\Roaming\IObit
[2010/06/02 16:03:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2010/05/30 20:02:49 | 000,000,000 | ---D | C] -- C:\Users\Justin\Desktop\Veze music used
[2010/05/22 14:39:31 | 000,000,000 | ---D | C] -- C:\Users\Justin\Desktop\Photoshop Projects Born and Bred
[2010/05/20 12:34:11 | 000,000,000 | ---D | C] -- C:\Users\Justin\Desktop\OScar in Mexico
[2010/05/18 09:45:21 | 000,000,000 | ---D | C] -- C:\Users\Justin\Desktop\Receipts for final costs for BORN AND BRED
[2010/05/17 22:14:31 | 000,000,000 | ---D | C] -- C:\Users\Justin\Desktop\hogwild_pc
[2010/05/17 17:05:46 | 000,000,000 | ---D | C] -- C:\Users\Justin\AppData\Roaming\SmartFTP
[2010/05/17 17:05:14 | 000,000,000 | ---D | C] -- C:\Program Files\SmartFTP Client
[2010/05/17 17:04:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SmartFTP Client 4.0 (x64) Setup Files
[2010/05/05 02:42:46 | 000,038,928 | ---- | C] (Avid Technology, Inc.) -- C:\Windows\SysWow64\drivers\dgfwboot.sys
[2010/05/05 02:42:38 | 002,558,716 | ---- | C] (Avid Technology, Inc.) -- C:\Windows\SysWow64\dgfwdio.dll
[2010/05/05 00:00:04 | 000,014,848 | ---- | C] (Avid Technology, Inc.) -- C:\Windows\SysWow64\digicoin.dll
[2010/05/04 23:58:26 | 000,155,648 | ---- | C] (Avid Technology, Inc.) -- C:\Windows\SysWow64\Diomidi.DLL
[18 C:\*.tmp files -> C:\*.tmp -> ]

========== Files - Modified Within 90 Days ==========

[2010/08/02 23:31:53 | 002,359,296 | -HS- | M] () -- C:\Users\Justin\NTUSER.DAT
[2010/08/02 23:31:15 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Justin\Desktop\OTL.exe
[2010/08/02 23:29:59 | 000,000,460 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{DAF7C101-5C88-4142-8B58-38C5708B57F3}.job
[2010/08/02 23:08:51 | 000,704,434 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/08/02 23:08:51 | 000,604,214 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/08/02 23:08:51 | 000,105,170 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/08/02 23:02:38 | 000,004,784 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/08/02 23:02:38 | 000,004,784 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/08/02 23:02:38 | 000,000,396 | ---- | M] () -- C:\Windows\tasks\AWC Startup.job
[2010/08/02 23:02:34 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/08/02 23:02:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/08/02 16:22:15 | 000,524,288 | -HS- | M] () -- C:\Users\Justin\NTUSER.DAT{865d07f1-6a85-11db-acd0-9270719989e3}.TMContainer00000000000000000001.regtrans-ms
[2010/08/02 16:22:15 | 000,065,536 | -HS- | M] () -- C:\Users\Justin\NTUSER.DAT{865d07f1-6a85-11db-acd0-9270719989e3}.TM.blf
[2010/08/02 12:29:05 | 002,842,640 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/08/02 12:28:23 | 000,052,560 | ---- | M] () -- C:\Users\Justin\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/08/02 12:26:49 | 001,664,876 | -H-- | M] () -- C:\Users\Justin\AppData\Local\IconCache.db
[2010/08/02 11:58:00 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3100543473-1735899929-2361016832-1000UA.job
[2010/08/02 01:38:13 | 000,000,846 | ---- | M] () -- C:\Users\Justin\Desktop\CCleaner.lnk
[2010/08/01 23:28:42 | 000,001,756 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010/08/01 23:27:59 | 009,190,248 | ---- | M] (SUPERAntiSpyware.com) -- C:\Users\Justin\Desktop\SUPERAntiSpyware.exe
[2010/08/01 21:14:49 | 000,293,376 | ---- | M] () -- C:\Users\Justin\Desktop\x8f5l4rc.exe
[2010/08/01 21:00:34 | 000,002,561 | ---- | M] () -- C:\Users\Justin\Desktop\HiJackThis.lnk
[2010/07/30 16:13:24 | 000,001,974 | ---- | M] () -- C:\Users\Public\Desktop\Avid Media Composer.lnk
[2010/07/30 15:37:18 | 1416,414,967 | ---- | M] () -- C:\Users\Justin\Desktop\MediaComposer_5.0.1.zip
[2010/07/30 15:24:37 | 000,001,756 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010/07/30 14:48:12 | 000,001,460 | ---- | M] () -- C:\Users\Justin\AppData\Local\d3d9caps64.dat
[2010/07/30 13:29:32 | 000,000,418 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2010/07/29 22:42:20 | 000,000,759 | ---- | M] () -- C:\Users\Public\Desktop\Sorenson Squeeze Trial.lnk
[2010/07/29 21:59:21 | 000,040,448 | ---- | M] () -- C:\Users\Justin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/07/29 21:32:32 | 000,721,356 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/07/29 21:30:45 | 000,149,773 | ---- | M] () -- C:\Windows\SysNative\drivers\klin.dat
[2010/07/29 21:30:45 | 000,106,765 | ---- | M] () -- C:\Windows\SysNative\drivers\klick.dat
[2010/07/28 20:41:27 | 4205,709,316 | ---- | M] () -- C:\Users\Justin\Desktop\BornAndBredScreener2.mpg
[2010/07/28 18:58:02 | 000,000,860 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3100543473-1735899929-2361016832-1000Core.job
[2010/07/28 03:00:03 | 000,002,047 | ---- | M] () -- C:\Users\Justin\Desktop\Google Chrome.lnk
[2010/07/28 03:00:03 | 000,002,009 | ---- | M] () -- C:\Users\Justin\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010/07/28 02:58:14 | 000,353,296 | ---- | M] () -- C:\Windows\SysNative\drivers\klif.sys
[2010/07/28 01:42:45 | 000,001,978 | ---- | M] () -- C:\Users\Public\Desktop\TMPGEnc 4.0 XPress.lnk
[2010/07/26 00:19:39 | 000,001,802 | ---- | M] () -- C:\Users\Justin\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/07/26 00:19:39 | 000,001,778 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010/07/25 23:28:36 | 000,000,848 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/07/25 11:06:37 | 747,478,972 | ---- | M] () -- C:\Users\Justin\Desktop\Comp 1.mov
[2010/07/25 11:04:30 | 738,464,905 | ---- | M] () -- C:\Users\Justin\Desktop\24th Hour Productions Intro.mov
[2010/07/25 10:37:18 | 000,054,156 | -H-- | M] () -- C:\Windows\QTFont.qfn
[2010/07/21 19:30:37 | 000,000,902 | ---- | M] () -- C:\Users\Public\Desktop\EOS Utility.lnk
[2010/07/21 19:30:25 | 000,000,967 | ---- | M] () -- C:\Users\Public\Desktop\Digital Photo Professional.lnk
[2010/07/21 18:54:45 | 1687,104,118 | ---- | M] () -- C:\Users\Justin\Desktop\Score_071910.wav
[2010/07/17 22:50:12 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2010/07/15 17:51:06 | 030,641,999 | ---- | M] () -- C:\Users\Justin\Desktop\LAMontageSong.mov
[2010/06/30 22:44:14 | 000,543,232 | ---- | M] (Avid Technology, Inc.) -- C:\Windows\SysWow64\mmclient.dll
[2010/06/30 22:43:44 | 000,032,768 | ---- | M] (Avid Technology, Inc.) -- C:\Windows\SysWow64\AvidQTUpdaterVC7.dll
[2010/06/25 16:03:48 | 000,240,140 | ---- | M] () -- C:\Users\Justin\Documents\Fine Cut 2010 Screener.txp4
[2010/06/23 11:32:04 | 002,229,899 | ---- | M] () -- C:\Users\Justin\Desktop\Purebred Title for Born and Bred.psd
[2010/06/18 20:06:54 | 000,001,409 | ---- | M] () -- C:\Windows\QTFont.for
[2010/06/14 16:47:31 | 000,000,497 | ---- | M] () -- C:\Users\Justin\Desktop\new projects.rtf
[2010/06/14 14:23:17 | 000,014,906 | ---- | M] () -- C:\Users\Justin\Desktop\bluephoto.jpg
[2010/06/09 01:49:20 | 000,000,680 | ---- | M] () -- C:\Users\Justin\AppData\Local\d3d9caps.dat
[2010/06/08 22:16:42 | 000,000,603 | ---- | M] () -- C:\Users\Justin\Desktop\index.html
[2010/06/08 11:32:18 | 035,564,517 | ---- | M] () -- C:\Users\Justin\Desktop\PurebredFilmsWebsiteTemplate.rar
[2010/06/08 10:53:38 | 1056,212,293 | ---- | M] () -- C:\Users\Justin\Desktop\fnf hd lower gig.mov
[2010/06/07 18:12:08 | 000,028,160 | ---- | M] () -- C:\Users\Justin\Desktop\Website Changes.doc
[2010/06/07 18:11:35 | 011,923,968 | ---- | M] () -- C:\Users\Justin\Desktop\newmain_v8.fla
[2010/06/02 16:10:53 | 000,000,239 | ---- | M] () -- C:\Users\Justin\Desktop\EandO Insurance Companies.rtf
[2010/06/02 16:03:05 | 000,001,056 | ---- | M] () -- C:\Users\Public\Desktop\Advanced SystemCare.lnk
[2010/06/02 15:38:16 | 000,023,552 | ---- | M] () -- C:\Users\Justin\Desktop\Born and Bred Credit List.doc
[2010/06/02 09:28:52 | 017,764,681 | ---- | M] () -- C:\Users\Justin\Desktop\ESPNFootageJavy.mov
[2010/06/02 09:25:33 | 009,129,976 | ---- | M] () -- C:\Users\Justin\Desktop\ESPNFootage.wav
[2010/06/02 09:25:33 | 000,011,197 | ---- | M] () -- C:\Users\Justin\Desktop\ESPNFootage.mov
[2010/05/27 16:13:28 | 000,000,484 | ---- | M] () -- C:\Users\Justin\Desktop\Costs for Stock Footage and Archive Footage.rtf
[2010/05/23 21:51:00 | 4270,317,572 | ---- | M] () -- C:\Users\Justin\Desktop\Final Cut 2010 Fine Cut Out.mpg
[2010/05/22 13:27:06 | 069,076,221 | ---- | M] () -- C:\Users\Justin\Desktop\TitlePaint.mov
[2010/05/22 13:22:41 | 016,810,562 | ---- | M] () -- C:\Users\Justin\Desktop\Title Blotches.psd
[2010/05/22 12:57:53 | 018,782,890 | ---- | M] () -- C:\Users\Justin\Desktop\barehanded Films image.psd
[2010/05/20 15:59:34 | 000,001,253 | ---- | M] () -- C:\Users\Justin\Desktop\CorbisMotion Clips - Time Code - BORN AND BRED - CUTDOWN.rtf
[2010/05/20 13:40:01 | 000,278,778 | ---- | M] () -- C:\Users\Justin\Documents\OScarfightMExico.txp4
[2010/05/19 15:17:51 | 000,001,280 | ---- | M] () -- C:\Users\Justin\Desktop\CorbisMotion Clips - Time Code - BORN AND BRED.rtf
[2010/05/19 15:11:34 | 005,393,539 | ---- | M] () -- C:\Users\Justin\Desktop\KALB698.mov
[2010/05/19 15:05:00 | 004,841,347 | ---- | M] () -- C:\Users\Justin\Desktop\KALB850.mov
[2010/05/19 12:34:34 | 000,000,902 | ---- | M] () -- C:\Users\Justin\Desktop\Timecode eFootage Boxing Clips.rtf
[2010/05/18 15:16:48 | 000,202,240 | ---- | M] () -- C:\Users\Justin\Desktop\Footage Clearance Request - BORN AND BRED.doc
[2010/05/18 15:13:37 | 081,193,647 | ---- | M] () -- C:\Users\Justin\Desktop\KTLAFootageImmigration.mov
[2010/05/18 14:31:08 | 000,290,943 | ---- | M] () -- C:\Users\Justin\Desktop\BORN AND BRED - Work-in-Progress Press Kit.pdf
[2010/05/18 13:45:56 | 000,031,232 | ---- | M] () -- C:\Users\Justin\Desktop\BORN AND BRED - Narration Script.doc
[2010/05/18 13:32:32 | 025,504,768 | ---- | M] () -- C:\Users\Justin\Desktop\BORN AND BRED - Work-in-Progress Press Kit.doc
[2010/05/18 11:49:14 | 1058,051,167 | ---- | M] () -- C:\Users\Justin\Desktop\Houston Aerial Footage.mov
[2010/05/18 10:35:31 | 205,445,303 | ---- | M] () -- C:\Users\Justin\Desktop\KTLAFootage.mov
[2010/05/17 22:13:22 | 003,172,825 | R--- | M] () -- C:\Users\Justin\Desktop\hogwild_pc.zip
[2010/05/17 17:05:16 | 000,001,844 | ---- | M] () -- C:\Users\Public\Desktop\SmartFTP Client.lnk
[2010/05/05 02:42:46 | 000,038,928 | ---- | M] (Avid Technology, Inc.) -- C:\Windows\SysWow64\drivers\dgfwboot.sys
[2010/05/05 02:42:38 | 002,558,716 | ---- | M] (Avid Technology, Inc.) -- C:\Windows\SysWow64\dgfwdio.dll
[2010/05/05 00:00:04 | 000,014,848 | ---- | M] (Avid Technology, Inc.) -- C:\Windows\SysWow64\digicoin.dll
[2010/05/04 23:58:26 | 000,155,648 | ---- | M] (Avid Technology, Inc.) -- C:\Windows\SysWow64\Diomidi.DLL
[18 C:\*.tmp files -> C:\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/08/02 01:38:13 | 000,000,846 | ---- | C] () -- C:\Users\Justin\Desktop\CCleaner.lnk
[2010/08/01 23:28:42 | 000,001,756 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010/08/01 21:14:49 | 000,293,376 | ---- | C] () -- C:\Users\Justin\Desktop\x8f5l4rc.exe
[2010/07/30 16:13:24 | 000,001,974 | ---- | C] () -- C:\Users\Public\Desktop\Avid Media Composer.lnk
[2010/07/30 15:59:11 | 000,416,076 | ---- | C] () -- C:\Users\Justin\AppData\Local\dd_vcredistMSI4A9E.txt
[2010/07/30 15:59:11 | 000,011,440 | ---- | C] () -- C:\Users\Justin\AppData\Local\dd_vcredistUI4A9E.txt
[2010/07/30 15:24:37 | 000,001,756 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010/07/30 15:11:38 | 1416,414,967 | ---- | C] () -- C:\Users\Justin\Desktop\MediaComposer_5.0.1.zip
[2010/07/29 22:42:20 | 000,000,759 | ---- | C] () -- C:\Users\Public\Desktop\Sorenson Squeeze Trial.lnk
[2010/07/29 21:57:12 | 000,007,680 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010/07/29 21:57:12 | 000,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2010/07/29 21:32:30 | 000,721,356 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/07/28 02:06:08 | 000,149,773 | ---- | C] () -- C:\Windows\SysNative\drivers\klin.dat
[2010/07/28 02:06:08 | 000,106,765 | ---- | C] () -- C:\Windows\SysNative\drivers\klick.dat
[2010/07/28 02:04:28 | 000,353,296 | ---- | C] () -- C:\Windows\SysNative\drivers\klif.sys
[2010/07/28 01:53:00 | 4205,709,316 | ---- | C] () -- C:\Users\Justin\Desktop\BornAndBredScreener2.mpg
[2010/07/28 01:42:45 | 000,001,978 | ---- | C] () -- C:\Users\Public\Desktop\TMPGEnc 4.0 XPress.lnk
[2010/07/26 11:27:06 | 000,000,418 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010/07/25 23:28:36 | 000,000,848 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/07/25 23:28:33 | 000,024,664 | ---- | C] () -- C:\Windows\SysNative\drivers\mbam.sys
[2010/07/25 11:04:24 | 747,478,972 | ---- | C] () -- C:\Users\Justin\Desktop\Comp 1.mov
[2010/07/25 10:51:51 | 738,464,905 | ---- | C] () -- C:\Users\Justin\Desktop\24th Hour Productions Intro.mov
[2010/07/21 19:30:37 | 000,000,902 | ---- | C] () -- C:\Users\Public\Desktop\EOS Utility.lnk
[2010/07/21 19:30:25 | 000,000,967 | ---- | C] () -- C:\Users\Public\Desktop\Digital Photo Professional.lnk
[2010/07/21 18:31:48 | 1687,104,118 | ---- | C] () -- C:\Users\Justin\Desktop\Score_071910.wav
[2010/07/17 23:17:42 | 000,002,561 | ---- | C] () -- C:\Users\Justin\Desktop\HiJackThis.lnk
[2010/07/17 22:50:12 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2010/07/17 22:49:35 | 000,421,266 | ---- | C] () -- C:\Users\Justin\AppData\Local\dd_vcredistMSI0CFC.txt
[2010/07/17 22:49:34 | 000,011,618 | ---- | C] () -- C:\Users\Justin\AppData\Local\dd_vcredistUI0CFC.txt
[2010/07/15 17:48:00 | 030,641,999 | ---- | C] () -- C:\Users\Justin\Desktop\LAMontageSong.mov
[2010/06/25 16:03:48 | 000,240,140 | ---- | C] () -- C:\Users\Justin\Documents\Fine Cut 2010 Screener.txp4
[2010/06/23 10:53:51 | 002,229,899 | ---- | C] () -- C:\Users\Justin\Desktop\Purebred Title for Born and Bred.psd
[2010/06/18 20:06:54 | 000,054,156 | -H-- | C] () -- C:\Windows\QTFont.qfn
[2010/06/18 20:06:54 | 000,001,409 | ---- | C] () -- C:\Windows\QTFont.for
[2010/06/14 16:47:31 | 000,000,497 | ---- | C] () -- C:\Users\Justin\Desktop\new projects.rtf
[2010/06/14 14:23:16 | 000,014,906 | ---- | C] () -- C:\Users\Justin\Desktop\bluephoto.jpg
[2010/06/08 21:58:10 | 000,000,603 | ---- | C] () -- C:\Users\Justin\Desktop\index.html
[2010/06/08 11:37:28 | 035,564,517 | ---- | C] () -- C:\Users\Justin\Desktop\PurebredFilmsWebsiteTemplate.rar
[2010/06/08 10:19:17 | 1056,212,293 | ---- | C] () -- C:\Users\Justin\Desktop\fnf hd lower gig.mov
[2010/06/07 18:12:08 | 000,028,160 | ---- | C] () -- C:\Users\Justin\Desktop\Website Changes.doc
[2010/06/07 18:11:22 | 011,923,968 | ---- | C] () -- C:\Users\Justin\Desktop\newmain_v8.fla
[2010/06/07 14:11:52 | 000,023,552 | ---- | C] () -- C:\Users\Justin\Desktop\Born and Bred Credit List.doc
[2010/06/02 16:10:53 | 000,000,239 | ---- | C] () -- C:\Users\Justin\Desktop\EandO Insurance Companies.rtf
[2010/06/02 16:03:08 | 000,000,396 | ---- | C] () -- C:\Windows\tasks\AWC Startup.job
[2010/06/02 16:03:05 | 000,001,056 | ---- | C] () -- C:\Users\Public\Desktop\Advanced SystemCare.lnk
[2010/06/02 09:27:40 | 017,764,681 | ---- | C] () -- C:\Users\Justin\Desktop\ESPNFootageJavy.mov
[2010/06/02 09:25:32 | 009,129,976 | ---- | C] () -- C:\Users\Justin\Desktop\ESPNFootage.wav
[2010/06/02 09:25:32 | 000,011,197 | ---- | C] () -- C:\Users\Justin\Desktop\ESPNFootage.mov
[2010/05/23 18:15:06 | 4270,317,572 | ---- | C] () -- C:\Users\Justin\Desktop\Final Cut 2010 Fine Cut Out.mpg
[2010/05/22 13:26:56 | 069,076,221 | ---- | C] () -- C:\Users\Justin\Desktop\TitlePaint.mov
[2010/05/22 13:14:05 | 016,810,562 | ---- | C] () -- C:\Users\Justin\Desktop\Title Blotches.psd
[2010/05/20 16:28:41 | 000,000,484 | ---- | C] () -- C:\Users\Justin\Desktop\Costs for Stock Footage and Archive Footage.rtf
[2010/05/20 15:39:28 | 000,001,253 | ---- | C] () -- C:\Users\Justin\Desktop\CorbisMotion Clips - Time Code - BORN AND BRED - CUTDOWN.rtf
[2010/05/20 13:40:00 | 000,278,778 | ---- | C] () -- C:\Users\Justin\Documents\OScarfightMExico.txp4
[2010/05/19 15:08:41 | 005,393,539 | ---- | C] () -- C:\Users\Justin\Desktop\KALB698.mov
[2010/05/19 15:04:50 | 004,841,347 | ---- | C] () -- C:\Users\Justin\Desktop\KALB850.mov
[2010/05/19 14:47:01 | 000,001,280 | ---- | C] () -- C:\Users\Justin\Desktop\CorbisMotion Clips - Time Code - BORN AND BRED.rtf
[2010/05/19 12:34:34 | 000,000,902 | ---- | C] () -- C:\Users\Justin\Desktop\Timecode eFootage Boxing Clips.rtf
[2010/05/18 15:22:22 | 000,202,240 | ---- | C] () -- C:\Users\Justin\Desktop\Footage Clearance Request - BORN AND BRED.doc
[2010/05/18 15:08:44 | 081,193,647 | ---- | C] () -- C:\Users\Justin\Desktop\KTLAFootageImmigration.mov
[2010/05/18 14:33:52 | 000,290,943 | ---- | C] () -- C:\Users\Justin\Desktop\BORN AND BRED - Work-in-Progress Press Kit.pdf
[2010/05/18 13:50:07 | 025,504,768 | ---- | C] () -- C:\Users\Justin\Desktop\BORN AND BRED - Work-in-Progress Press Kit.doc
[2010/05/18 13:50:07 | 000,031,232 | ---- | C] () -- C:\Users\Justin\Desktop\BORN AND BRED - Narration Script.doc
[2010/05/18 12:01:59 | 000,000,680 | ---- | C] () -- C:\Users\Justin\AppData\Local\d3d9caps.dat
[2010/05/18 11:25:15 | 1058,051,167 | ---- | C] () -- C:\Users\Justin\Desktop\Houston Aerial Footage.mov
[2010/05/18 10:28:20 | 205,445,303 | ---- | C] () -- C:\Users\Justin\Desktop\KTLAFootage.mov
[2010/05/17 22:13:22 | 003,172,825 | R--- | C] () -- C:\Users\Justin\Desktop\hogwild_pc.zip
[2010/05/17 17:05:16 | 000,001,844 | ---- | C] () -- C:\Users\Public\Desktop\SmartFTP Client.lnk
[2010/05/17 13:23:10 | 018,782,890 | ---- | C] () -- C:\Users\Justin\Desktop\barehanded Films image.psd
[2009/12/14 22:08:20 | 000,122,880 | ---- | C] () -- C:\Windows\SysWow64\PtSSE2.dll
[2009/12/14 22:08:18 | 000,019,968 | ---- | C] () -- C:\Windows\SysWow64\Cpuinf32.dll
[2009/10/05 15:09:42 | 001,658,973 | ---- | C] () -- C:\Windows\SysWow64\libmmd.dll
[2009/07/13 11:28:18 | 000,002,369 | ---- | C] () -- C:\Windows\BorisFX9.2.ini
[2009/06/05 14:58:24 | 000,237,568 | R--- | C] () -- C:\Windows\SysWow64\qtmlClient.dll
[2009/06/04 17:18:03 | 001,507,328 | ---- | C] () -- C:\Windows\SysWow64\nView.dll
[2009/06/04 17:18:03 | 001,101,824 | ---- | C] () -- C:\Windows\SysWow64\nvwimg.dll
[2008/01/20 19:48:25 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2008/01/20 19:48:07 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll

========== LOP Check ==========

[2010/07/25 20:56:28 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\.purple
[2009/06/04 23:02:07 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\Avid
[2010/07/21 20:15:24 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\Canon
[2010/06/02 16:03:03 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\IObit
[2009/06/05 22:03:43 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\LEAPS
[2009/06/04 18:54:33 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\PACE Anti-Piracy
[2009/06/05 21:58:14 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\Pegasys Inc
[2009/11/16 22:12:05 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\Smith Micro
[2010/07/29 22:44:55 | 000,000,000 | ---D | M] -- C:\Users\Justin\AppData\Roaming\SorensonMedia
[2010/08/02 23:02:38 | 000,000,396 | ---- | M] () -- C:\Windows\Tasks\AWC Startup.job
[2010/08/02 16:22:16 | 000,032,552 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010/08/02 23:29:59 | 000,000,460 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{DAF7C101-5C88-4142-8B58-38C5708B57F3}.job

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: AGP440.SYS >
[2004/08/04 03:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\i386\sp2.cab:AGP440.sys
[2004/08/03 21:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\i386\AGP440.SYS
[2008/01/20 19:45:05 | 000,064,568 | ---- | M] (Microsoft Corporation) MD5=F6F6793B7F17B550ECFDBD3B229173F7 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_163188bf770e4ab0\AGP440.sys

< MD5 for: ATAPI.SYS >
[2004/08/04 03:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\i386\sp2.cab:atapi.sys
[2008/01/20 19:45:04 | 000,022,584 | ---- | M] (Microsoft Corporation) MD5=1898FAE8E07D97F2F6C2D5326C633FAC -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_3956c39dd9e73fd2\atapi.sys
[2004/08/03 20:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\i386\atapi.sys

< MD5 for: CNGAUDIT.DLL >
[2006/11/02 04:16:48 | 000,014,848 | ---- | M] (Microsoft Corporation) MD5=21322B1A2AD337C579F4A65EA0D25193 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_424bc4aceb06de1c\cngaudit.dll
[2006/11/02 02:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\SysWOW64\cngaudit.dll
[2006/11/02 02:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\SysWOW64\cngaudit.dll
[2006/11/02 02:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll

< MD5 for: EVENTLOG.DLL >
[2004/08/04 03:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\i386\eventlog.dll

< MD5 for: IASTOR.SYS >
[2007/12/03 17:40:32 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\drivers\storage\R173412\IaStor.sys
[2007/12/03 17:40:32 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\i386\iaStor.sys

< MD5 for: IASTORV.SYS >
[2008/01/20 19:45:13 | 000,290,872 | ---- | M] (Intel Corporation) MD5=3E3BF3627D886736D0B4E90054F929F6 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_0b2fedfc40256bc5\iaStorV.sys

< MD5 for: NETLOGON.DLL >
[2008/01/20 19:49:23 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=5D0A4891F8CD0E9E64FF57A6A34044F5 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_59d652c6f057598d\netlogon.dll
[2004/08/04 03:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\i386\netlogon.dll
[2008/01/20 19:46:46 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\SysWOW64\netlogon.dll
[2008/01/20 19:46:46 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\SysWOW64\netlogon.dll
[2008/01/20 19:46:46 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_642afd1924b81b88\netlogon.dll

< MD5 for: NVSTOR.SYS >
[2008/01/20 19:45:08 | 000,054,328 | ---- | M] (NVIDIA Corporation) MD5=F7EA0FE82842D05EDA3EFDD376DBFDBA -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_95f95eab775c159d\nvstor.sys

< MD5 for: SCECLI.DLL >
[2004/08/04 03:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\i386\scecli.dll
[2008/01/20 19:48:49 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\SysWOW64\scecli.dll
[2008/01/20 19:48:49 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\SysWOW64\scecli.dll
[2008/01/20 19:48:49 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_9e812831c5d9a243\scecli.dll
[2008/01/20 19:48:07 | 000,235,520 | ---- | M] (Microsoft Corporation) MD5=35F1DD99F9903BC267C2AF16B09F9BF7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_942c7ddf9178e048\scecli.dll

< %systemroot%\*. /mp /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 1231 bytes -> C:\Users\Justin\AppData\Local\3Xor1HrOh:teFB1s9P4hm951xnro56IEsbNZN
@Alternate Data Stream - 1196 bytes -> C:\ProgramData\Microsoft:sRxHuwG3buQOCAtFfuempdRO95Of
@Alternate Data Stream - 1123 bytes -> C:\ProgramData\Microsoft:pa2roBy5hUUnZQl0aC
@Alternate Data Stream - 1120 bytes -> C:\Users\Justin\AppData\Local\jYNNdid6oVo6c:BLAbnxBkA5HjiOeUsRLtmkqaD
@Alternate Data Stream - 1093 bytes -> C:\ProgramData\Microsoft:HsWUMKyV2enwGVTHbmk6b8
< End of report >










OTL Extras logfile created on: 8/2/2010 11:32:10 PM - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Users\Justin\Desktop
64bit-Windows Vista Business Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

6.00 Gb Total Physical Memory | 5.00 Gb Available Physical Memory | 77.00% Memory free
12.00 Gb Paging File | 11.00 Gb Available in Paging File | 90.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.76 Gb Total Space | 38.17 Gb Free Space | 16.40% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 1397.27 Gb Total Space | 262.68 Gb Free Space | 18.80% Space Free | Partition Type: NTFS
Drive I: | 931.50 Gb Total Space | 284.42 Gb Free Space | 30.53% Space Free | Partition Type: NTFS

Computer Name: JUSTIN-PC
Current User Name: Justin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" ()
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l ()
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" ()
Directory [Digital Photo Professional] -- C:\Program Files (x86)\Canon\Digital Photo Professional\DPPViewer.exe /path "%1" (CANON INC.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [Digital Photo Professional] -- C:\Program Files (x86)\Canon\Digital Photo Professional\DPPViewer.exe /path "%1" (CANON INC.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = 62 71 2D 74 DC 5B C8 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
"" =

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{199C018E-567C-4363-8C82-EFB69E7D9464}" = rport=139 | protocol=6 | dir=out | app=system |
"{516A135B-2162-45AA-94E5-05E6C4C89D01}" = lport=445 | protocol=6 | dir=in | app=system |
"{57311516-9D6E-49D3-A1A5-F1761FB54CF1}" = lport=138 | protocol=17 | dir=in | app=system |
"{A1F38A12-6ECB-4A7C-AD22-E970AC1CA3C4}" = rport=445 | protocol=6 | dir=out | app=system |
"{A7E2DEB7-FF03-48A1-9926-C10B91A52BE2}" = rport=138 | protocol=17 | dir=out | app=system |
"{ADBBD51D-CD33-4F1F-8779-0C56C18F4306}" = rport=137 | protocol=17 | dir=out | app=system |
"{B458850B-0C00-4A10-BF85-FA0B87974C8A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E793BA1C-16CE-4172-B874-495070D9F4F7}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{F014A249-40AD-48A5-A7A3-90E7F06C1BD6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F99E1408-5572-4733-B09C-1B40AC88575E}" = lport=139 | protocol=6 | dir=in | app=system |
"{FEA05AB9-385B-4783-A4FF-53F82FBA727F}" = lport=137 | protocol=17 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{115C3DD4-B9EF-4FEC-8223-275AF0B7532A}" = protocol=17 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{2146DEB9-5884-4F03-B888-D7CDE1DE05C0}" = protocol=17 | dir=in | app=c:\program files\smartftp client\smartftp.exe |
"{392CAB56-76BC-4548-9AE6-3E2AEDBBF299}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{4F39DD02-46DF-4A15-B3D3-9073F382F6BB}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{625ADB25-A80B-42F2-BA68-8DB13FA178DE}" = protocol=6 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{77C289A9-97DA-42B8-BA48-65780813869E}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{7941478D-3F8C-4B2E-B8A7-5FF7A511DF20}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{A47D66F0-7BB0-40E5-9A3A-48E153DE038E}" = protocol=6 | dir=in | app=c:\program files\smartftp client\smartftp.exe |
"{F1B59B55-110F-4876-8271-BAE01D2C8F61}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{FE4F9ED4-1110-4864-BE19-8A64546ABDE8}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"TCP Query User{56E5FFA5-EAC1-4C79-BBEF-4D7480FC59BF}C:\program files (x86)\sorenson media\sorenson squeeze 6\squeeze.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sorenson media\sorenson squeeze 6\squeeze.exe |
"UDP Query User{620C466E-CE95-4076-A7CA-B623F78E71B0}C:\program files (x86)\sorenson media\sorenson squeeze 6\squeeze.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sorenson media\sorenson squeeze 6\squeeze.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64
"{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64
"{2F227ACA-204C-4529-BA33-D095C42C72DB}" = Avid Audio Drivers (x64)
"{4C0A8D65-4286-4B58-87FE-18AD24289285}" = NVIDIA Performance Drivers
"{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64
"{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64
"{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4
"{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4
"{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64
"{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4
"{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit)
"{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4
"{F74B11BF-3361-4B33-AF8D-75812E184973}" = SmartFTP Client
"NVIDIA Drivers" = NVIDIA Drivers
"nView Desktop Manager" = NVIDIA nView Desktop Manager
"OEMInformation" = OEM Logo and Information
"WinRAR archiver" = WinRAR archiver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{02807340-8FA2-44B6-ABA1-E443E4FF0A20}" = VZAccess Manager for RIM
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{14F70205-1940-4000-88C7-BE799A6B2CAD}" = Adobe Soundbooth CS4
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}" = Adobe CS4 American English Speech Analysis Models
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{37EADA02-5920-47A6-A17D-A6E010187587}" = Boris FX
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{43509E18-076E-40FE-AF38-CA5ED400A5A9}" = Pixel Bender Toolkit
"{44E240EC-2224-4078-A88B-2CEE0D3016EF}" = Adobe After Effects CS4 Presets
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{45EC816C-0771-4C14-AE6D-72D1B578F4C8}" = Adobe After Effects CS4
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{561968FD-56A1-49FD-9ED0-F55482C7C5BC}" = Adobe Media Encoder CS4 Exporter
"{5A180ED5-0AC1-410A-B790-5E0319CD0A93}" = Sentinel Protection Installer 7.4.0
"{5EAD5443-7194-46CC-A055-428E6ABB1BAF}" = Adobe Encore CS4
"{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support
"{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}" = Adobe Creative Suite 4 Master Collection
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{7CC1B162-08BD-49E8-97B7-93487D29BA0A}" = Avid Media Composer
"{8186FF34-D389-4B7E-9A2F-C197585BCFBD}" = Adobe Media Encoder CS4 Importer
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{841D4524-7950-4A4F-A4E6-931A1A2E201C}" = TMPGEnc 4.0 XPress
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{8CC166BD-94E6-457E-95B3-E903C402DD27}" = Sorenson Squeeze Trial
"{8EB8E60B-315D-44EB-A896-10D88602EE46}" = Adobe Setup
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{943B6738-4801-4982-90EC-0442EF7AEB16}" = Kaspersky Anti-Virus 2010
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9F8FDE1A-FA91-43F2-887B-CF080156D57E}" = Adobe Setup
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
"{B0870386-2559-4762-A46D-020E60FB9BA9}" = Apple ProRes QuickTime Decoder
"{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}" = Adobe Media Encoder CS4 Additional Exporter
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C86E7C99-E4AD-79C7-375B-1AEF9A91EC2B}" = Acrobat.com
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{D48A4ACB-1CF9-48EA-9E37-C20CD9456845}" = Boris Continuum Complete AVX 5.0
"{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}" = Adobe Media Encoder CS4
"{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}" = Adobe Setup
"{EC68232E-C74E-4F1A-B296-DFD2E1944E10}" = Adobe Setup
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_5aab5a491a3a52ae624fd639f6aaa95" = Adobe After Effects CS4 Third Party Content
"Adobe_5eba9bbdf1514a06b1a4c79a2920188" = Adobe Media Encoder CS4 Exporter
"Adobe_7774cb1e022c49962995a9014500066" = Adobe Media Encoder CS4 Importer
"Adobe_b2d6abde968e6f277ddbfd501383e02" = Adobe Creative Suite 4 Master Collection
"Advanced SystemCare 3_is1" = Advanced SystemCare 3
"Ashampoo Burning Studio 9_is1" = Ashampoo Burning Studio 9.10
"CCleaner" = CCleaner
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"DPP" = Canon Utilities Digital Photo Professional 3.8
"EOS Utility" = Canon Utilities EOS Utility
"ffdshow_is1" = ffdshow [rev 2033] [2008-07-05]
"InstallWIX_{943B6738-4801-4982-90EC-0442EF7AEB16}" = Kaspersky Anti-Virus 2010
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"Pidgin" = Pidgin
"SmartFTP Client 4.0 (x64) Setup Files" = SmartFTP Client Setup Files 4.0 (x64) (remove only)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 7/30/2010 7:05:16 PM | Computer Name = Justin-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 7/30/2010 7:05:16 PM | Computer Name = Justin-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 7/30/2010 7:05:16 PM | Computer Name = Justin-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 7/30/2010 7:05:16 PM | Computer Name = Justin-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 7/30/2010 7:48:23 PM | Computer Name = Justin-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 7/30/2010 7:48:23 PM | Computer Name = Justin-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/2/2010 2:47:53 PM | Computer Name = Justin-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/2/2010 2:47:53 PM | Computer Name = Justin-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/3/2010 2:31:59 AM | Computer Name = Justin-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 8/3/2010 2:31:59 AM | Computer Name = Justin-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

[ System Events ]
Error - 8/2/2010 7:12:21 PM | Computer Name = Justin-PC | Source = volmgr | ID = 262190
Description = Crash dump initialization failed!

Error - 8/2/2010 7:12:26 PM | Computer Name = Justin-PC | Source = Application Popup | ID = 1060
Description = \SystemRoot\SysWow64\Drivers\Aspi32.SYS has been blocked from loading
due to incompatibility with this system. Please contact your software vendor for
a compatible version of the driver.

Error - 8/2/2010 7:12:31 PM | Computer Name = Justin-PC | Source = volmgr | ID = 262190
Description = Crash dump initialization failed!

Error - 8/2/2010 7:12:37 PM | Computer Name = Justin-PC | Source = HTTP | ID = 15016
Description =

Error - 8/2/2010 7:14:16 PM | Computer Name = Justin-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 8/3/2010 2:02:16 AM | Computer Name = Justin-PC | Source = volmgr | ID = 262190
Description = Crash dump initialization failed!

Error - 8/3/2010 2:02:24 AM | Computer Name = Justin-PC | Source = Application Popup | ID = 1060
Description = \SystemRoot\SysWow64\Drivers\Aspi32.SYS has been blocked from loading
due to incompatibility with this system. Please contact your software vendor for
a compatible version of the driver.

Error - 8/3/2010 2:02:29 AM | Computer Name = Justin-PC | Source = volmgr | ID = 262190
Description = Crash dump initialization failed!

Error - 8/3/2010 2:02:34 AM | Computer Name = Justin-PC | Source = HTTP | ID = 15016
Description =

Error - 8/3/2010 2:04:12 AM | Computer Name = Justin-PC | Source = Service Control Manager | ID = 7026
Description =


< End of report >


BC AdBot (Login to Remove)

 


#2 aommaster

aommaster

    I !<3 malware


  • Malware Response Team
  • 5,294 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Dubai
  • Local time:12:43 PM

Posted 11 August 2010 - 02:13 AM

Hello, justinfrim.
My name is aommaster and I will be helping you with your log.

I apologize for the delay in response we get overwhelmed at times but we are trying our best to keep up.
If you have since resolved the original problem you were having, I would appreciate you letting us know. If not please perform the following below so I can have a look at the current condition of your machine.

Thanks

Should you still require assistance, please take note of the points below:
  • Please track this topic by either adding it to your favourites or clicking the Options button at the top of this thread and then Track this topic.
  • Please disable word-wrap before posting logs. This can be done by clicking Format and un-ticking the word-wrap feature in notepad.
  • The logs that you post should be copied and pasted directly into the reply. Only attach them if requested or if they do not fit into the post.
  • If you do not reply within 5 days, I will have to close your topic. Should you not be able to meet this, please notify me so that I will leave the topic open.
  • Please do not install, update, or run any programs for the duration of the fix.
  • If you do not understand the instructions I provide, please don't hesitate to ask. That's what I'm here for smile.gif
  • Please continue to reply to this topic until I give you the all clean. Just because there are no symptoms of infection doesn't mean that the computer is clean.
  • If you are running Vista, please run all the fixes as an administrator. This is done by right-clicking the program and clicking "Run as Administrator".

Please do the following so I can take a look at the current state of your system.
We need to run Defogger
  1. Please download DeFogger to your desktop.
  2. Double click DeFogger to run the tool.
  3. The application window will appear
  4. Click the Disable button to disable your CD Emulation drivers
  5. Click Yes to continue
  6. A 'Finished!' message will appear
  7. Click OK
  8. DeFogger will now ask to reboot the machine - click OK
Note: If you receive an error message while running DeFogger, please post the log defogger_disable which will appear on your desktop.
Do not re-enable these drivers until the end of the fix.

We need to run RSIT
  1. Download random's system information tool (RSIT) by random/random and save it to your desktop.
  2. Double click on RSIT.exe.
  3. Click Continue at the disclaimer screen.
  4. Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)

NEXT:
We need to run an Anti-Rootkit (ARK) scan
  1. Download GMER and save to your desktop. Note that the file will be randomly named to prevent active malware from stopping the download.
  2. Close all other open programs as there is a slight chance your computer will crash.
  3. Double click the GMER program. Your security programs may detect GMER's driver trying to load. Allow it.
  4. You may see a warning saying "GMER has detected rootkit activity". If so, select NO.
  5. Make sure all options are checked except:
    • IAT/EAT
    • Drives/Partition other than Systemdrive, which is typically C:\
    • Show All (This is important, so do not miss it.)
    Note: If GMER crashes or hangs, please retry running a scan. Only this time, in addition to the options mentioned above, uncheck Devices as well.
  6. When the scan is complete, click Save and save the log onto your desktop.

If GMER crashes, hangs or blue-screens, do the following
  1. Please Download Rootkit Unhooker Save it to your desktop.
  2. Now double-click on RKUnhookerLE.exe to run it.
  3. Click the Report tab, then click Scan.
  4. Check (Tick) Drivers, Stealth,. Uncheck the rest. then Click OK.
  5. Wait till the scanner has finished and then click File, Save Report.
  6. Save the report somewhere where you can find it. Click Close.
Copy the entire contents of the report and paste it in a reply here.
Note:You may get this warning. If so, please ignore it.
"Rootkit Unhooker has detected a parasite inside itself! It is recommended to remove parasite, okay?"


In your next reply, please include the following:
  • Log.txt
  • info.txt
  • gmer.log/RKUnhooker log

My website: http://aommaster.com
unite_blue.png
Please do not send me PM's requesting for help. The forums are there for a reason : )
If I am helping you and do not respond to your thread for 48 hours, please send me a PM


#3 aommaster

aommaster

    I !<3 malware


  • Malware Response Team
  • 5,294 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Dubai
  • Local time:12:43 PM

Posted 14 August 2010 - 01:05 AM

Hello justinfrim
Are you still with us?

My website: http://aommaster.com
unite_blue.png
Please do not send me PM's requesting for help. The forums are there for a reason : )
If I am helping you and do not respond to your thread for 48 hours, please send me a PM


#4 justinfrim

justinfrim
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:43 AM

Posted 15 August 2010 - 12:46 AM

Thanks for the response but I ended up just using the opportunity to upgrade to Windows 7 and re-installed my OS...

Thanks again.



#5 aommaster

aommaster

    I !<3 malware


  • Malware Response Team
  • 5,294 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Dubai
  • Local time:12:43 PM

Posted 15 August 2010 - 01:48 AM

Thanks for letting me know smile.gif

Since this problem appears to be resolved, this thread will now be closed. If you need this topic reopened, please send me a PM with the address of this thread. If you should have a new issue, please start a new topic. This applies only to the original topic starter. Everyone else please begin a New Topic.

My website: http://aommaster.com
unite_blue.png
Please do not send me PM's requesting for help. The forums are there for a reason : )
If I am helping you and do not respond to your thread for 48 hours, please send me a PM





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users