Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

ROOTKIT HIDDEN


  • This topic is locked This topic is locked
20 replies to this topic

#1 Doomsis

Doomsis

  • Members
  • 150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Kaysville, UT
  • Local time:09:40 AM

Posted 22 September 2010 - 02:03 PM

I was able to get the gmer to scan, but it froze after i used it. I was able to save to a file before it ended. I was instructed to start at step 6. Plz say which computer you are referring to Post 1 or 2/comp1 or comp2:

DDS (Ver_10-03-17.01) - NTFSx86
Run by rey at 2:31:01.81 on Wed 09/22/2010
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_17
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1014.506 [GMT -7:00]

AV: CyberDefender Internet Security *On-access scanning enabled* (Updated) {39A103CD-420D-4E98-920E-D8706FD87EB4}

============== Running Processes ===============

D:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
D:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
D:\WINDOWS\System32\WLTRYSVC.EXE
D:\WINDOWS\System32\bcmwltry.exe
D:\WINDOWS\system32\spoolsv.exe
svchost.exe
D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
D:\Program Files\Bonjour\mDNSResponder.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\WINDOWS\system32\lxdncoms.exe
D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
D:\WINDOWS\system32\svchost.exe -k imgsvc
D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
D:\WINDOWS\system32\atwtusb.exe
D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\igfxpers.exe
D:\WINDOWS\system32\WLTRAY.exe
D:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
D:\Program Files\Java\jre6\bin\jusched.exe
D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
D:\WINDOWS\system32\igfxsrvc.exe
D:\WINDOWS\system32\WTMKM.exe
C:\iTunesHelper.exe
D:\Program Files\Lexmark 2600 Series\lxdnmon.exe
D:\Program Files\Mighty Magoo\mightymagoo32.exe
D:\Program Files\AIM\aim.exe
D:\WINDOWS\system32\atwtusb.exe
D:\Program Files\Digital Line Detect\DLG.exe
D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
D:\WINDOWS\System32\svchost.exe -k HTTPFilter
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
D:\Program Files\MSN Toolbar\Platform\5.0.1423.0\mswinext.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Documents and Settings\rey\Desktop\dds.scr

============== Pseudo HJT Report ===============

uSearch Bar = hxxp://safesearch.cyberdefender.com/smallsearch.html
uInternet Settings,ProxyOverride = ;*.local;<local>
uInternet Settings,ProxyServer = http=127.0.0.1:5555
uURLSearchHooks: H - No File
uURLSearchHooks: H - No File
uURLSearchHooks: H - No File
uURLSearchHooks: MyIdentityDefender: {a26503fe-b3b8-4910-a9dc-9cbd25c6b8d6} - d:\documents and settings\rey\local settings\application data\cyberdefender\cdmyidd.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - d:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AOLSearchHook Class: {54eb34ea-e6be-4cfd-9f4f-c4a0c2eafa22} - d:\program files\aim search\AOLSearch.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - d:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: Mighty Magoo Text: {97e74a14-e5f1-40cc-9b0f-0d11946e5469} - d:\program files\mighty magoo\mmagootl.dll
BHO: MyIdentityDefender: {a26503fe-b3b8-4910-a9dc-9cbd25c6b8d6} - d:\documents and settings\rey\local settings\application data\cyberdefender\cdmyidd.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\program files\java\jre6\bin\jp2ssv.dll
BHO: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - No File
BHO: Mighty Magoo: {eead004e-7e2d-49f8-831c-a01647e85b53} - d:\program files\mighty magoo\mightymagoolib32.dll
TB: MyIdentityDefender: {a26503fe-b3b8-4910-a9dc-9cbd25c6b8d6} - d:\documents and settings\rey\local settings\application data\cyberdefender\cdmyidd.dll
TB: Search Toolbar: {9d425283-d487-4337-bab6-ab8354a81457} -
TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} -
TB: @d:\program files\msn toolbar\platform\5.0.1423.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - d:\program files\msn toolbar\platform\5.0.1423.0\npwinext.dll
uRun: [Aim] "d:\program files\aim\aim.exe" /d locale=en-US
uRun: [CyberDefender Early Detection Center] "d:\program files\cyberdefender\antispyware\cdas17.exe" /minimize
uRun: [cdloader] "d:\documents and settings\rey\application data\mjusbsp\cdloader2.exe" MAGICJACK
uRun: [CyberDefender Registry Cleaner] d:\program files\cyberdefender\registry cleaner\CDregclean.exe
mRun: [IgfxTray] d:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] d:\windows\system32\hkcmd.exe
mRun: [Persistence] d:\windows\system32\igfxpers.exe
mRun: [Broadcom Wireless Manager UI] d:\windows\system32\WLTRAY.exe
mRun: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe
mRun: [SunJavaUpdateSched] "d:\program files\java\jre6\bin\jusched.exe"
mRun: [Adobe Reader Speed Launcher] "d:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [AdobeCS4ServiceManager] "d:\program files\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin
mRun: [MacrokeyManager] WTMKM.exe
mRun: [QuickTime Task] "c:\program files\qttask.exe" -atboottime
mRun: [iTunesHelper] "C:\iTunesHelper.exe"
mRun: [lxdnmon.exe] "d:\program files\lexmark 2600 series\lxdnmon.exe"
mRun: [Mightymagoo] d:\program files\mighty magoo\mightymagoo32.exe a
mRun: [CyberDefender Registry Cleaner]
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - d:\program files\digital line detect\DLG.exe
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\mcafee~1.lnk - d:\program files\mcafee security scan\2.0.181\SSScheduler.exe
IE: E&xport to Microsoft Excel - c:\progra~1\office11\EXCEL.EXE/3000
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683}
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Notify: !SASWinLogon - d:\program files\superantispyware\SASWINLO.DLL
Notify: igfxcui - igfxdev.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - d:\program files\superantispyware\SASSEH.DLL

================= FIREFOX ===================

FF - ProfilePath - d:\docume~1\rey\applic~1\mozilla\firefox\profiles\mywz4lhb.default\
FF - prefs.js: browser.search.defaulturl - hxxp://aim.search.aol.com/search/search?query={searchTerms}&invocationType=tb50-ff-aim-chromesbox-en-us
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL -
FF - component: d:\program files\microsoft\search enhancement pack\search helper\firefoxextension\searchhelperextension\components\SEPsearchhelperff.dll
FF - component: d:\program files\msn toolbar\platform\5.0.1423.0\firefox\components\DomBridge.dll
FF - plugin: c:\mozilla plugins\npitunes.dll
FF - plugin: c:\program files\plugins\npqtplugin.dll
FF - plugin: c:\program files\plugins\npqtplugin2.dll
FF - plugin: c:\program files\plugins\npqtplugin3.dll
FF - plugin: c:\program files\plugins\npqtplugin4.dll
FF - plugin: c:\program files\plugins\npqtplugin5.dll
FF - plugin: c:\program files\plugins\npqtplugin6.dll
FF - plugin: c:\program files\plugins\npqtplugin7.dll
FF - plugin: d:\documents and settings\rey\application data\facebook\npfbplugin_1_0_3.dll
FF - plugin: d:\documents and settings\rey\application data\mozilla\firefox\profiles\mywz4lhb.default\extensions\{38ab6a6c-cc4c-4f9e-a3dd-3c5681ef18a1}\plugins\npsoe.dll
FF - plugin: d:\program files\ksolo\npAVX.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npclntax_HBLiteSA.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npdnu.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npdnupdater2.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npijjiCHPlugin.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npijjiFFPlugin1.dll
FF - plugin: d:\program files\msn toolbar\platform\5.0.1423.0\npwinext.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - d:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\

---- FIREFOX POLICIES ----
FF - user.js: network.protocol-handler.warn-external.dnupdate - false);user_pref(network.protocol-handler.warn-external.dnupdate, false);user_pref(network.protocol-handler.warn-external.dnupdate, falsed:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
d:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
d:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
d:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
d:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
d:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
d:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
d:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
d:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
d:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
d:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
d:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
d:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
d:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");

============= SERVICES / DRIVERS ===============

R1 SASDIFSV;SASDIFSV;d:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]
R1 SASKUTIL;SASKUTIL;d:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656]
R2 lxdn_device;lxdn_device;d:\windows\system32\lxdncoms.exe -service --> d:\windows\system32\lxdncoms.exe -service [?]
R2 WTService;WTService;d:\windows\system32\atwtusb.exe -s --> d:\windows\system32\atwtusb.exe -s [?]
S2 lxdnCATSCustConnectService;lxdnCATSCustConnectService;d:\windows\system32\spool\drivers\w32x86\3\lxdnserv.exe [2010-8-30 94208]
S3 CDAVFS;CDAVFS;d:\windows\system32\drivers\CDAVFS.sys [2010-3-3 67424]
S3 McComponentHostService;McAfee Security Scan Component Host Service;d:\program files\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
S3 Normandy;Normandy SR2; [x]
S3 npggsvc;nProtect GameGuard Service;d:\windows\system32\gamemon.des -service --> d:\windows\system32\GameMon.des -service [?]

=============== Created Last 30 ================

2010-09-22 09:23:07 0 ----a-w- d:\documents and settings\rey\defogger_reenable
2010-09-19 19:16:17 0 d-----w- d:\docume~1\rey\applic~1\CyberDefender
2010-09-19 19:14:49 0 d-----w- d:\program files\Microsoft
2010-09-19 19:14:48 0 d-----w- d:\program files\MSN Toolbar
2010-09-19 19:13:52 0 d-----w- d:\program files\Bing Bar Installer
2010-09-16 18:28:56 0 d-----w- d:\windows\system32\wbem\Repository
2010-09-15 02:55:54 48 ----a-w- d:\windows\TaxACT09.ini
2010-09-10 22:54:00 0 d-----w- d:\docume~1\rey\applic~1\SUPERAntiSpyware.com
2010-09-10 22:54:00 0 d-----w- d:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2010-09-10 22:53:52 0 d-----w- d:\program files\SUPERAntiSpyware
2010-09-10 19:29:04 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2010-09-10 19:29:03 20952 ----a-w- d:\windows\system32\drivers\mbam.sys
2010-09-10 19:29:03 0 d-----w- d:\program files\Malwarebytes' Anti-Malware
2010-09-10 19:29:03 0 d-----w- d:\docume~1\alluse~1\applic~1\Malwarebytes
2010-09-08 05:07:15 0 d--h--w- d:\windows\PIF
2010-09-06 20:27:49 0 d-----w- d:\docume~1\alluse~1\applic~1\magicJack
2010-09-06 20:23:18 0 d-----w- d:\docume~1\rey\applic~1\mjusbsp
2010-09-06 20:23:12 59264 ----a-w- d:\windows\system32\drivers\USBAUDIO.sys
2010-09-03 04:24:15 0 d-----w- d:\program files\LimeWire
2010-09-02 21:50:47 0 d-----w- d:\program files\Mighty Magoo
2010-09-02 19:23:45 0 d-----w- d:\program files\Microsoft ActiveSync
2010-08-31 05:44:02 0 d-----w- d:\documents and settings\all users\Lx_cats
2010-08-31 05:41:10 40960 ----a-w- d:\windows\system32\lxdnvs.dll
2010-08-31 05:41:08 409600 ----a-w- d:\windows\system32\lxdncoin.dll
2010-08-31 05:41:01 61218 ----a-w- d:\windows\system32\lxdnprpr.chm
2010-08-31 05:40:27 0 d-----w- d:\program files\Lexmark Toolbar
2010-08-31 05:39:47 0 d-----w- d:\program files\Lexmark 2600 Series
2010-08-27 18:51:45 0 d-----w- d:\program files\NCH Software
2010-08-27 18:51:41 0 d-----w- d:\docume~1\rey\applic~1\NCH Software
2010-08-27 16:38:01 0 d-----w- d:\program files\iPod
2010-08-27 16:37:46 0 d-----w- d:\docume~1\alluse~1\applic~1\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-08-27 16:29:40 0 d-----w- d:\program files\Bonjour
2010-08-26 17:29:26 0 d-----w- d:\windows\SHELLNEW

==================== Find3M ====================

2010-08-27 17:27:17 17692 ---ha-w- d:\windows\system32\mlfcache.dat
2010-08-24 20:38:25 99 ----a-w- d:\documents and settings\rey\jagex_runescape_preferences2.dat
2010-08-24 17:01:01 46 ----a-w- d:\documents and settings\rey\jagex_runescape_preferences.dat
2010-08-08 04:25:41 94208 ----a-w- d:\windows\ScUnin.exe
2010-08-08 04:25:41 10494 ----a-w- d:\windows\scunin.dat
2010-08-02 20:07:10 0 ----a-w- d:\documents and settings\rey\jagex__preferences3.dat

============= FINISH: 2:31:19.64 ===============





UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume3
Install Date: 9/3/2008 11:02:35 PM
System Uptime: 9/22/2010 2:24:52 AM (0 hours ago)

Motherboard: Dell Inc. | | 0KD882
Processor: Genuine Intel® CPU T2060 @ 1.60GHz | Microprocessor | 1595/133mhz
Processor: Genuine Intel® CPU T2060 @ 1.60GHz | Microprocessor | 1595/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 100 GiB total, 24.594 GiB free.
D: is FIXED (NTFS) - 10 GiB total, 0.618 GiB free.
E: is CDROM (CDFS)

==== Disabled Device Manager Items =============

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Dell Wireless 1390 WLAN Mini-Card
Device ID: PCI\VEN_14E4&DEV_4311&SUBSYS_00071028&REV_01\4&6C79FC5&0&00E0
Manufacturer: Broadcom
Name: Dell Wireless 1390 WLAN Mini-Card
PNP Device ID: PCI\VEN_14E4&DEV_4311&SUBSYS_00071028&REV_01\4&6C79FC5&0&00E0
Service: BCM43XX

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Base System Device
Device ID: PCI\VEN_1180&DEV_0843&SUBSYS_01BD1028&REV_01\4&2FE911E8&0&0AF0
Manufacturer:
Name: Base System Device
PNP Device ID: PCI\VEN_1180&DEV_0843&SUBSYS_01BD1028&REV_01\4&2FE911E8&0&0AF0
Service:

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Base System Device
Device ID: PCI\VEN_1180&DEV_0592&SUBSYS_01BD1028&REV_0A\4&2FE911E8&0&0BF0
Manufacturer:
Name: Base System Device
PNP Device ID: PCI\VEN_1180&DEV_0592&SUBSYS_01BD1028&REV_0A\4&2FE911E8&0&0BF0
Service:

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Base System Device
Device ID: PCI\VEN_1180&DEV_0852&SUBSYS_01BD1028&REV_05\4&2FE911E8&0&0CF0
Manufacturer:
Name: Base System Device
PNP Device ID: PCI\VEN_1180&DEV_0852&SUBSYS_01BD1028&REV_05\4&2FE911E8&0&0CF0
Service:

==== System Restore Points ===================

RP115: 9/15/2010 11:07:10 PM - Software Distribution Service 3.0
RP116: 9/16/2010 10:59:36 AM - Restore Operation
RP117: 9/16/2010 11:00:19 AM - Restore Operation
RP118: 9/16/2010 11:27:45 AM - Restore Operation
RP119: 9/18/2010 2:49:56 PM - System Checkpoint
RP120: 9/18/2010 3:25:44 PM - Software Distribution Service 3.0
RP121: 9/19/2010 12:23:46 PM - CyberDefender Registry Cleaner Sun, Sep 19, 10 12:23
RP122: 9/20/2010 3:08:34 AM - CyberDefender Registry Cleaner Mon, Sep 20, 10 03:07

==== Installed Programs ======================


Adobe AIR
Adobe Anchor Service CS4
Adobe Bridge CS4
Adobe CMaps CS4
Adobe Color - Photoshop Specific CS4
Adobe Color EU Extra Settings CS4
Adobe Color JA Extra Settings CS4
Adobe Color NA Recommended Settings CS4
Adobe Color Video Profiles CS CS4
Adobe CSI CS4
Adobe Default Language CS4
Adobe Device Central CS4
Adobe Drive CS4
Adobe ExtendScript Toolkit CS4
Adobe Extension Manager CS4
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Fonts All
Adobe Linguistics CS4
Adobe Media Player
Adobe Output Module
Adobe PDF Library Files CS4
Adobe Photoshop CS4
Adobe Photoshop CS4 Support
Adobe Reader 9.3
Adobe Search for Help
Adobe Service Manager Extension
Adobe Setup
Adobe Type Support CS4
Adobe Update Manager CS4
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS4
AdobeColorCommonSetCMYK
AdobeColorCommonSetRGB
AIM 7
AIM Search
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Ask Toolbar
AutoUpdate
Bing Bar
Bing Bar Platform
BitTorrent
Bonjour
Broadcom 440x 10/100 Integrated Controller
Conexant HDA D110 MDC V.92 Modem
Connect
CyberDefender Early Detection Center
CyberDefender Registry Cleaner
Dell Wireless WLAN Card
Digital Line Detect
DivX Codec
Download Updater (AOL LLC)
Facebook Plug-In
Google SketchUp 8
High Definition Audio Driver Package - KB835221
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB981793)
ijji FireFox Launcher 1.0
Intel® Graphics Media Accelerator Driver
iTunes
Java™ 6 Update 17
kSolo Recorder
kuler
LANPoker Version 0.07.11.15c
Lexmark 2600 Series
magicJack
Malwarebytes' Anti-Malware
Manga Studio Debut 4.0
McAfee Security Scan Plus
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Default Manager
Microsoft Office Professional Edition 2003
Microsoft Search Enhancement Pack
Microsoft Silverlight
Mighty Magoo
Mozilla Firefox (3.5.13)
MSXML 6 Service Pack 2 (KB973686)
MyIdentityDefender Toolbar (CyberDefender Corporation)
PDF Settings CS4
Pen Pad Driver with Macro Key Manager
Photoshop Camera Raw
Prism Video File Converter
QuickPar 0.9
QuickTime
Safari
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB944338-v2)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958470)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971032)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB981350)
Security Update for Windows XP (KB982381)
SigmaTel Audio
SPORE™
Starcraft
Steam
Suite Shared Configuration CS4
SUPERAntiSpyware
TaxACT 2009
Ultima Online: Mondain's Legacy
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB896256)
Update for Windows XP (KB898461)
Update for Windows XP (KB925720)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
VideoPad Video Editor
VobSub v2.23 (Remove Only)
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Imaging Component
Windows Installer 3.1 (KB893803)
Windows Live ID Sign-in Assistant
Windows Media Player Firefox Plugin
WinRAR archiver

==== Event Viewer Messages From Past Week ========

9/16/2010 11:22:26 AM, error: Service Control Manager [7034] - The Bonjour Service service terminated unexpectedly. It has done this 1 time(s).
9/16/2010 11:21:09 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the HTTP SSL service to connect.
9/16/2010 11:21:09 AM, error: Service Control Manager [7000] - The HTTP SSL service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
9/16/2010 10:47:15 AM, error: System Error [1003] - Error code 1000007f, parameter1 0000000d, parameter2 00000000, parameter3 00000000, parameter4 00000000.
9/16/2010 10:45:26 AM, error: Print [19] - Sharing printer failed + 1722, Printer Microsoft XPS Document Writer share name Printer.
9/16/2010 10:36:23 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
9/16/2010 10:36:20 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
9/16/2010 10:36:05 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss SASDIFSV SASKUTIL Tcpip
9/16/2010 10:36:05 AM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
9/16/2010 10:36:05 AM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
9/16/2010 10:36:05 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
9/16/2010 10:36:05 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
9/16/2010 10:36:05 AM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
9/16/2010 10:36:05 AM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
9/16/2010 10:27:43 AM, error: Service Control Manager [7034] - The iPod Service service terminated unexpectedly. It has done this 1 time(s).
9/15/2010 5:32:10 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the lxdnCATSCustConnectService service to connect.
9/15/2010 5:32:10 PM, error: Service Control Manager [7000] - The lxdnCATSCustConnectService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
9/15/2010 5:32:07 PM, error: Print [23] - Printer Lexmark 4200 Series,1 failed to initialize because a suitable Lexmark 4200 Series driver could not be found.

==== End Of File ===========================

I noticed when i logged into Facebook on someone else's computer and i believe the rootkit went on their computer because their experiencing the same popups that won't disappear. The person tried to help their best but nothing seems to want to remove it. So after i solve this computer, I would need help on the other computer.

Here's the gmer log:

GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-09-22 09:07:35
Windows 5.1.2600 Service Pack 2
Running: gmer.exe; Driver: D:\DOCUME~1\rey\LOCALS~1\Temp\axldapow.sys


---- Devices - GMER 1.0.15 ----

Device \FileSystem\Fastfat \Fat A859BC8A

AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----

Here's my 2nd computer. It runs windows 7 so it wouldnt let the program gmer run. A windows error or something. You don't have to solve this computer yet. I just want the first computer fixed for now. This second computer is really new didn't know by logging in facebook, didn't know they would get affected x_x. If the 2nd computer has the same problem i followed the directions i was given to start at step 6.

DDS (Ver_10-03-17.01) - NTFSX64
Run by Myrna at 21:28:08.19 on Wed 09/22/2010
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.2008.973 [GMT -4:00]


============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
C:\Windows\system32\lxdncoms.exe
C:\Windows\system32\mfevtps.exe
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files (x86)\Lexmark 2600 Series\lxdnMsdMon.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files (x86)\Mighty Magoo\mightymagoo32.exe
C:\Program Files (x86)\Nova Development\Greeting Card Factory Deluxe 6.0\ReminderApp.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\conhost.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Users\Myrna\AppData\Roaming\mjusbsp\magicJack.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Myrna\Desktop\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.yahoo.com/
mLocal Page = c:\windows\syswow64\blank.htm
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~1\mcafee\msk\mskapbho.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files (x86)\microsoft\search enhancement pack\search helper\SearchHelper.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files (x86)\common files\mcafee\systemcore\ScriptSn.20100917130456.dll
BHO: Mighty Magoo Text: {97e74a14-e5f1-40cc-9b0f-0d11946e5469} - c:\program files (x86)\mighty magoo\mmagootl.dll
BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files (x86)\java\jre6\bin\jp2ssv.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files (x86)\windows live\toolbar\wltcore.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files (x86)\windows live\toolbar\wltcore.dll
uRun: [msnmsgr] "c:\program files (x86)\windows live\messenger\msnmsgr.exe" /background
uRun: [cdloader] "c:\users\myrna\appdata\roaming\mjusbsp\cdloader2.exe" MAGICJACK
mRun: [Adobe Reader Speed Launcher] "c:\program files (x86)\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Dell DataSafe Online] "c:\program files (x86)\dell datasafe online\DataSafeOnline.exe" /m
mRun: [PDVDDXSrv] "c:\program files (x86)\cyberlink\powerdvd dx\PDVDDXSrv.exe"
mRun: [Desktop Disc Tool] "c:\program files (x86)\roxio\roxio burn\RoxioBurnLauncher.exe"
mRun: [DellSupportCenter] "c:\program files (x86)\dell support center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey
mRun: [Mightymagoo] c:\program files (x86)\mighty magoo\mightymagoo32.exe a
mRun: [<NO NAME>]
mRun: [ReminderApp] c:\program files (x86)\nova development\greeting card factory deluxe 6.0\ReminderApp.exe
mRunOnce: [Launcher] c:\program files (x86)\dell datasafe local backup\components\scheduler\Launcher.exe
mRunOnce: [STToasterLauncher] c:\program files (x86)\dell datasafe local backup\toasterLauncher.exe
StartupFolder: c:\users\myrna\appdata\roaming\micros~1\windows\startm~1\programs\startup\delldo~1.lnk - c:\program files\dell\delldock\DellDock.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-explorer: ForceActiveDesktopOn = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~2\micros~2\office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files (x86)\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~2\micros~2\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~2\micros~2\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - c:\program files (x86)\cozi express\CoziProtocolHandler.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~2\common~1\skype\SKYPE4~1.DLL
BHO-X64: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\MSKAPB~1.DLL
BHO-X64: McAfee Phishing Filter - No File
BHO-X64: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20100917130456.dll
BHO-X64: scriptproxy - No File
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
mRun-x64: [Apoint] c:\program files\delltpad\Apoint.exe
mRun-x64: [SysTrayApp] c:\program files\idt\wdm\sttray64.exe
mRun-x64: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun-x64: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun-x64: [Persistence] c:\windows\system32\igfxpers.exe
mRun-x64: [Broadcom Wireless Manager UI] c:\program files\dell\dell wireless wlan card\WLTRAY.exe
mRun-x64: [QuickSet] c:\program files\dell\quickset\QuickSet.exe
mRun-x64: [IAAnotif] c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe
mRun-x64: [lxdnmon.exe] "c:\program files (x86)\lexmark 2600 series\lxdnmon.exe"
mRun-x64: [lxdnamon] "c:\program files (x86)\lexmark 2600 series\lxdnamon.exe"
mRunOnce-x64: [DSUpdateLauncher] "c:\program files (x86)\dell datasafe local backup\components\dsupdate\hstart.exe" /noconsole /d="c:\program files (x86)\dell datasafe local backup\components\dsupdate" /runas "c:\program files (x86)\dell datasafe local backup\components\dsupdate\DSUpd.exe"

================= FIREFOX ===================

FF - ProfilePath - c:\users\myrna\appdata\roaming\mozilla\firefox\profiles\ayr9v402.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: network.proxy.type - 0
FF - component: c:\users\myrna\appdata\roaming\mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@mmagoo.com\components\mmagootlf.dll
FF - plugin: c:\program files (x86)\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files (x86)\google\update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files (x86)\windows live\photo gallery\NPWLPG.dll

---- FIREFOX POLICIES ----
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files (x86)\mozilla firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files (x86)\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files (x86)\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

============= SERVICES / DRIVERS ===============

R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2010-9-17 529000]
R0 PxHlpa64;PxHlpa64;c:\windows\system32\drivers\PxHlpa64.sys [2010-6-13 55280]
R1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\drivers\mfenlfk.sys [2010-9-17 75032]
R1 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-9-17 283232]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 59904]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\adobe\elements organizer 8.0\PhotoshopElementsFileAgent.exe [2009-9-18 169312]
R2 DockLoginService;Dock Login Service;c:\program files\dell\delldock\DockLogin.exe [2009-6-9 155648]
R2 lxdn_device;lxdn_device;c:\windows\system32\lxdncoms.exe -service --> c:\windows\system32\lxdncoms.exe -service [?]
R2 McMPFSvc;McAfee Personal Firewall Service;"c:\program files\common files\mcafee\mcsvchost\McSvHost.exe" /McCoreSvc [2010-9-17 355440]
R2 McNaiAnn;McAfee VirusScan Announcer;"c:\program files\common files\mcafee\mcsvchost\McSvHost.exe" /McCoreSvc [2010-9-17 355440]
R2 McProxy;McAfee Proxy Service;"c:\program files\common files\mcafee\mcsvchost\McSvHost.exe" /McCoreSvc [2010-9-17 355440]
R2 McShield;McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2010-9-17 200056]
R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2010-9-17 245352]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2010-9-17 149032]
R2 SftService;SoftThinks Agent Service;c:\program files (x86)\dell datasafe local backup\SftService.exe [2010-6-13 658656]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-9-17 62800]
R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2010-9-17 190136]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-9-17 441072]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-5-3 215552]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\drivers\yk62x64.sys [2010-5-3 393728]
S2 gupdate;Google Update Service (gupdate);c:\program files (x86)\google\update\GoogleUpdate.exe [2010-9-20 136176]
S2 lxdnCATSCustConnectService;lxdnCATSCustConnectService;c:\windows\system32\spool\drivers\x64\3\lxdnserv.exe [2009-4-28 29184]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-9-17 94736]
S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-9-15 1255736]

=============== Created Last 30 ================

2010-09-23 01:25:30 0 ----a-w- c:\users\myrna\defogger_reenable
2010-09-20 03:39:00 0 d-----w- c:\program files (x86)\common files\Nova Development
2010-09-20 03:38:36 0 d-----w- c:\program files (x86)\Nova Development
2010-09-19 01:08:30 0 d-----w- c:\program files (x86)\Mighty Magoo
2010-09-18 17:38:42 0 d-----w- c:\program files (x86)\Cozi Express
2010-09-17 17:05:04 0 d-----w- c:\program files\McAfee.com
2010-09-17 17:04:56 9984 ----a-w- c:\windows\system32\drivers\mfeclnk.sys
2010-09-17 17:04:49 149032 ----a-w- c:\windows\system32\mfevtps.exe
2010-09-17 17:04:48 94736 ----a-w- c:\windows\system32\drivers\mferkdet.sys
2010-09-17 17:04:48 75032 ----a-w- c:\windows\system32\drivers\mfenlfk.sys
2010-09-17 17:04:48 529000 ----a-w- c:\windows\system32\drivers\mfehidk.sys
2010-09-17 17:04:48 441072 ----a-w- c:\windows\system32\drivers\mfefirek.sys
2010-09-17 17:04:48 283232 ----a-w- c:\windows\system32\drivers\mfewfpk.sys
2010-09-17 17:04:47 62800 ----a-w- c:\windows\system32\drivers\cfwids.sys
2010-09-17 17:04:47 190136 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2010-09-17 17:04:47 121248 ----a-w- c:\windows\system32\drivers\mfeapfk.sys
2010-09-17 02:03:39 0 d-----w- c:\users\myrna\pandecoco_files
2010-09-17 02:03:38 4642 ----a-w- c:\users\myrna\pandecoco.shtml
2010-09-16 19:06:25 0 d-----w- c:\users\myrna\appdata\roaming\Lexmark Productivity Studio
2010-09-16 17:32:10 308736 ----a-w- c:\users\myrna\18 - 24 Sept 10.xls
2010-09-16 05:28:57 2058752 ----a-w- c:\windows\syswow64\iertutil.dll
2010-09-15 10:18:53 0 d-----w- c:\windows\syswow64\Wat
2010-09-15 10:18:53 0 d-----w- c:\windows\system32\Wat
2010-09-15 07:02:47 99176 ----a-w- c:\windows\syswow64\PresentationHostProxy.dll
2010-09-15 07:02:47 49472 ----a-w- c:\windows\syswow64\netfxperf.dll
2010-09-15 07:02:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-15 07:02:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2010-09-15 07:02:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-15 07:02:47 297808 ----a-w- c:\windows\syswow64\mscoree.dll
2010-09-15 07:02:47 295264 ----a-w- c:\windows\syswow64\PresentationHost.exe
2010-09-15 07:02:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2010-09-15 07:02:47 1130824 ----a-w- c:\windows\syswow64\dfshim.dll
2010-09-15 07:02:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-15 06:11:31 558592 ----a-w- c:\windows\system32\spoolsv.exe
2010-09-14 14:48:09 0 d-----w- c:\programdata\magicJack
2010-09-14 14:47:30 0 d-----w- c:\users\myrna\appdata\roaming\mjusbsp
2010-09-14 14:41:05 84992 ----a-w- c:\windows\system32\asycfilt.dll
2010-09-14 14:41:05 67584 ----a-w- c:\windows\syswow64\asycfilt.dll
2010-09-14 14:40:56 463360 ----a-w- c:\windows\system32\drivers\srv.sys
2010-09-14 14:40:56 404992 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-09-14 14:40:56 162304 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-09-14 14:40:48 1736608 ----a-w- c:\windows\system32\ntdll.dll
2010-09-14 14:40:48 1289528 ----a-w- c:\windows\syswow64\ntdll.dll
2010-09-14 14:40:39 612352 ----a-w- c:\windows\system32\vbscript.dll
2010-09-14 14:40:39 427520 ----a-w- c:\windows\syswow64\vbscript.dll
2010-09-14 14:40:30 340992 ----a-w- c:\windows\system32\schannel.dll
2010-09-14 14:40:30 224256 ----a-w- c:\windows\syswow64\schannel.dll
2010-09-14 14:39:47 12867584 ----a-w- c:\windows\syswow64\shell32.dll
2010-09-14 14:39:31 976896 ----a-w- c:\windows\system32\inetcomm.dll
2010-09-14 14:39:31 740864 ----a-w- c:\windows\syswow64\inetcomm.dll
2010-09-14 14:39:22 1896832 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-09-14 14:39:05 5507968 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-09-14 14:39:05 3955080 ----a-w- c:\windows\syswow64\ntkrnlpa.exe
2010-09-14 14:39:05 3899784 ----a-w- c:\windows\syswow64\ntoskrnl.exe
2010-09-14 14:37:53 223448 ----a-w- c:\windows\system32\drivers\fvevol.sys
2010-09-14 14:37:45 144384 ----a-w- c:\windows\system32\cdd.dll
2010-09-14 14:37:37 961024 ----a-w- c:\windows\system32\CPFilters.dll
2010-09-14 14:37:37 641536 ----a-w- c:\windows\syswow64\CPFilters.dll
2010-09-14 14:37:37 258560 ----a-w- c:\windows\system32\mpg2splt.ax
2010-09-14 14:37:36 552960 ----a-w- c:\windows\system32\msdri.dll
2010-09-14 14:37:36 288256 ----a-w- c:\windows\system32\MSNP.ax
2010-09-14 14:37:36 204288 ----a-w- c:\windows\syswow64\MSNP.ax
2010-09-14 14:37:36 199680 ----a-w- c:\windows\syswow64\mpg2splt.ax
2010-09-14 14:37:15 3122688 ----a-w- c:\windows\system32\win32k.sys
2010-09-14 14:37:06 1877504 ----a-w- c:\windows\system32\msxml3.dll
2010-09-14 14:37:06 1233920 ----a-w- c:\windows\syswow64\msxml3.dll
2010-09-14 14:36:57 96768 ----a-w- c:\windows\syswow64\sspicli.dll
2010-09-14 14:36:57 22016 ----a-w- c:\windows\syswow64\secur32.dll
2010-09-14 14:36:57 153160 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2010-09-14 14:36:57 1446912 ----a-w- c:\windows\system32\lsasrv.dll
2010-09-14 14:36:44 46080 ----a-w- c:\windows\system32\atmlib.dll
2010-09-14 14:36:44 366080 ----a-w- c:\windows\system32\atmfd.dll
2010-09-14 14:36:44 34304 ----a-w- c:\windows\syswow64\atmlib.dll
2010-09-14 14:36:44 293888 ----a-w- c:\windows\syswow64\atmfd.dll
2010-09-14 14:36:42 2048 ----a-w- c:\windows\syswow64\tzres.dll
2010-09-14 14:36:42 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-14 00:18:30 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-09-13 23:33:51 0 d-----w- c:\programdata\FLEXnet
2010-09-13 21:56:15 0 d-----w- c:\users\myrna\Tracing
2010-09-13 21:52:55 376 ----a-w- c:\windows\ODBC.INI
2010-09-13 21:52:04 0 d-----w- c:\program files (x86)\Microsoft ActiveSync
2010-09-13 21:27:27 0 d-----w- c:\programdata\Lx_cats
2010-09-13 21:25:15 61218 ----a-w- c:\windows\system32\lxdnprpr.chm
2010-09-13 21:25:07 1462272 ----a-w- c:\windows\system32\lxdng.dll
2010-09-13 21:25:05 745984 ----a-w- c:\windows\system32\lxdncoin.dll
2010-09-13 21:25:01 411368 ----a-w- c:\windows\syswow64\deployJava1.dll
2010-09-13 21:25:01 153376 ----a-w- c:\windows\syswow64\javaws.exe
2010-09-13 21:25:01 145184 ----a-w- c:\windows\syswow64\javaw.exe
2010-09-13 21:25:01 145184 ----a-w- c:\windows\syswow64\java.exe
2010-09-13 21:23:13 0 d-----w- c:\program files\Lexmark Tools for Office
2010-09-13 21:22:02 0 d-----w- c:\program files (x86)\Lexmark Toolbar
2010-09-13 21:21:41 0 d-----w- c:\program files (x86)\Lexmark 2600 Series
2010-09-13 21:20:49 0 d-----w- c:\program files\Lexmark 2600 Series
2010-09-13 20:42:34 220672 ----a-w- c:\windows\system32\wintrust.dll
2010-09-13 20:42:34 172032 ----a-w- c:\windows\syswow64\wintrust.dll
2010-09-13 20:42:34 139264 ----a-w- c:\windows\system32\cabview.dll
2010-09-13 20:42:34 132608 ----a-w- c:\windows\syswow64\cabview.dll
2010-09-13 18:14:16 0 d-----w- c:\users\myrna\appdata\roaming\WildTangent
2010-09-13 18:09:23 0 d-sh--w- C:\System Recovery
2010-09-13 18:08:40 0 d-----w- c:\users\myrna\appdata\roaming\Dell

==================== Find3M ====================

2010-07-29 06:30:34 82944 ----a-w- c:\windows\syswow64\iccvid.dll
2010-06-30 07:13:46 1192960 ----a-w- c:\windows\system32\wininet.dll
2010-06-30 06:25:31 978432 ----a-w- c:\windows\syswow64\wininet.dll
2010-06-30 06:25:18 1226240 ----a-w- c:\windows\syswow64\urlmon.dll
2010-06-30 06:22:45 606208 ----a-w- c:\windows\syswow64\mstime.dll
2010-06-30 06:22:34 5971456 ----a-w- c:\windows\syswow64\mshtml.dll
2010-06-30 06:22:33 64512 ----a-w- c:\windows\syswow64\msfeedsbs.dll
2010-06-30 06:21:57 48128 ----a-w- c:\windows\syswow64\jsproxy.dll
2010-06-30 06:21:47 185856 ----a-w- c:\windows\syswow64\iepeers.dll
2010-06-30 06:21:47 176640 ----a-w- c:\windows\syswow64\ieui.dll
2010-06-30 06:21:46 10985472 ----a-w- c:\windows\syswow64\ieframe.dll
2010-06-30 06:21:44 381440 ----a-w- c:\windows\syswow64\iedkcs32.dll
2010-06-30 06:19:16 12800 ----a-w- c:\windows\syswow64\msfeedssync.exe
2009-07-14 05:37:38 31548 ----a-w- c:\windows\inf\perflib\0409\perfd.dat
2009-07-14 05:37:38 31548 ----a-w- c:\windows\inf\perflib\0409\perfc.dat
2009-07-14 05:37:38 291294 ----a-w- c:\windows\inf\perflib\0409\perfi.dat
2009-07-14 05:37:38 291294 ----a-w- c:\windows\inf\perflib\0409\perfh.dat
2009-07-14 04:54:24 174 --sha-w- c:\program files\desktop.ini
2009-07-14 04:54:24 174 --sha-w- c:\program files (x86)\desktop.ini
2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfi.dat
2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfh.dat
2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfd.dat
2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfc.dat
2009-06-10 20:44:08 9633792 --sha-r- c:\windows\fonts\StaticCache.dat
2009-07-14 01:39:53 398848 --sha-w- c:\windows\winsxs\amd64_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_4d4d1f2f696639a2\WinMail.exe
2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe

============= FINISH: 21:29:20.04 ===============



UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 9/13/2010 2:03:59 PM
System Uptime: 9/22/2010 11:54:22 AM (10 hours ago)

Motherboard: Dell Inc. | | 0G848F
Processor: Pentium® Dual-Core CPU T4500 @ 2.30GHz | Microprocessor | 2300/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 218 GiB total, 185.33 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is Removable

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP6: 9/13/2010 5:03:08 PM - Windows Update
RP7: 9/13/2010 5:23:52 PM - Installed Java™ 6 Update 20
RP8: 9/13/2010 5:49:56 PM - Installed Microsoft Office Professional Edition 2003
RP9: 9/15/2010 3:00:13 AM - Windows Update
RP10: 9/16/2010 1:28:32 AM - Windows Update
RP11: 9/16/2010 7:43:51 AM - Removed Windows Live Upload Tool
RP12: 9/16/2010 7:44:50 AM - Removed Windows Live Sign-in Assistant
RP13: 9/16/2010 7:45:14 AM - Removed Windows Live Sign-in Assistant
RP14: 9/18/2010 1:38:20 PM - Installed Cozi
RP15: 9/19/2010 11:37:57 PM - Installed Greeting Card Factory Deluxe 6.0.

==== Installed Programs ======================

Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Photoshop Elements 8.0
Adobe Reader 9.1.2
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Compatibility Pack for the 2007 Office system
Consumer In-Home Service Agreement
Cozi
Dell DataSafe Local Backup
Dell DataSafe Local Backup - Support Software
Dell DataSafe Online
Dell Dock
Dell Getting Started Guide
Dell Support Center (Support Software)
Google Earth
Google Update Helper
GoToAssist 8.0.0.514
Greeting Card Factory Deluxe 6.0
Java Auto Updater
Java™ 6 Update 20
Lexmark Tools for Office
magicJack
McAfee SecurityCenter
Microsoft Choice Guard
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Professional Edition 2003
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
Mighty Magoo
Mozilla Firefox (3.6.10)
MSVCRT
PowerDVD DX
Roxio Burn
Security Update for CAPICOM (KB931906)
Skype Toolbars
Skype™ 4.1
Update for Microsoft Office Word 2007 (KB974631)
Update for Office 2007 (KB934528)
Update for Office System 2007 Setup (KB929722)
WildTangent Games
Windows Live Communications Platform
Windows Live Essentials
Windows Live Movie Maker
Windows Live Photo Gallery
Windows Live Sync
Windows Live Toolbar
Windows Live Upload Tool
Windows Live Writer

==== Event Viewer Messages From Past Week ========

9/22/2010 9:11:54 PM, Error: bowser [8003] - The master browser has received a server announcement from the computer KOPECKI that believes that it is the master browser for the domain on transport NetBT_Tcpip_{476458B3-068C-4BCD-BF46-0AACF8E5A8CE}. The master browser is stopping or an election is being forced.
9/22/2010 10:10:26 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the lxdnCATSCustConnectService service to connect.
9/22/2010 10:10:26 AM, Error: Service Control Manager [7000] - The lxdnCATSCustConnectService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
9/22/2010 10:10:15 AM, Error: Application Popup [1060] - \SystemRoot\SysWow64\drivers\pfc.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
9/21/2010 10:11:35 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
9/21/2010 10:11:03 AM, Error: VDS Basic Provider [1] - Unexpected failure. Error code: D@01010004
9/20/2010 12:07:04 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
9/20/2010 10:48:34 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
9/19/2010 5:38:00 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the lmhosts service.
9/18/2010 9:05:39 AM, Error: Virtual Disk Service [9] - Unexpected provider failure. Restarting the service may fix the problem. Error code: 8007001F@02000014
9/17/2010 8:52:45 AM, Error: Service Control Manager [7000] - The McAfee Inc. mferkdk service failed to start due to the following error: The specified procedure could not be found.
9/15/2010 6:21:39 AM, Error: Service Control Manager [7030] - The SupportSoft Sprocket Service (DellComms) service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
9/15/2010 6:17:16 AM, Error: Service Control Manager [7023] - The Windows Modules Installer service terminated with the following error: The process cannot access the file because it is being used by another process.

==== End Of File ===========================

EDIT: Posts merged ~BP

Edited by Budapest, 26 September 2010 - 04:15 PM.


BC AdBot (Login to Remove)

 


#2 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,774 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:04:40 PM

Posted 29 September 2010 - 04:58 AM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

Please include a clear description of the problems you're having, along with any steps you may have performed so far.

Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.

Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.
We need to create an OTL Report
  1. Please download OTL from one of the following mirrors:
  2. Save it to your desktop.
  3. Double click on the icon on your desktop.
  4. Click the "Scan All Users" checkbox.
  5. In the custom scan box paste the following:
    CODE
    msconfig
    safebootminimal
    activex
    drivers32
    netsvcs
    %SYSTEMDRIVE%\*.exe
    /md5start
    eventlog.dll
    scecli.dll
    netlogon.dll
    cngaudit.dll
    sceclt.dll
    ntelogon.dll
    logevent.dll
    iaStor.sys
    nvstor.sys
    atapi.sys
    IdeChnDr.sys
    viasraid.sys
    AGP440.sys
    vaxscsi.sys
    nvatabus.sys
    viamraid.sys
    nvata.sys
    nvgts.sys
    iastorv.sys
    ViPrt.sys
    eNetHook.dll
    ahcix86.sys
    KR10N.sys
    nvstor32.sys
    ahcix86s.sys
    nvrd32.sys
    symmpi.sys
    adp3132.sys
    mv61xx.sys
    nvraid.sys
    /md5stop
    %systemroot%\*. /mp /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /lockedfiles
    %systemroot%\System32\config\*.sav
    %systemroot%\system32\drivers\*.sys /90
  6. Push the button.
  7. Two reports will open, copy and paste them in a reply here:
    • OTL.txt <-- Will be opened
    • Extra.txt<--Will be minimized

In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. I suggest you do this and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#3 Doomsis

Doomsis
  • Topic Starter

  • Members
  • 150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Kaysville, UT
  • Local time:09:40 AM

Posted 29 September 2010 - 07:49 PM

This is for POst #1 COmputer:

OTL logfile created on: 9/29/2010 5:35:55 PM - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = D:\Documents and Settings\rey\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,014.00 Mb Total Physical Memory | 424.00 Mb Available Physical Memory | 42.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): D:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 99.74 Gb Total Space | 24.59 Gb Free Space | 24.65% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 0.20 Gb Free Space | 2.04% Space Free | Partition Type: NTFS
Drive E: | 641.05 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: POKEMON
Current User Name: rey
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/09/29 17:34:44 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\rey\Desktop\OTL.exe
PRC - [2010/09/17 07:57:19 | 000,908,248 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/09/02 14:50:48 | 000,159,232 | ---- | M] () -- D:\Program Files\Mighty Magoo\mightymagoo32.exe
PRC - [2010/08/30 10:47:42 | 000,636,232 | ---- | M] (CyberDefender Corp.) -- D:\Program Files\CyberDefender\AntiSpyware\cdas17.exe
PRC - [2010/08/27 10:18:38 | 007,314,760 | ---- | M] (CyberDefender) -- D:\Program Files\CyberDefender\Registry Cleaner\CDregclean.exe
PRC - [2010/06/10 21:03:08 | 000,144,176 | ---- | M] (Apple Inc.) -- D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/03/24 16:26:02 | 000,243,544 | ---- | M] (Microsoft Corp.) -- D:\Program Files\MSN Toolbar\Platform\5.0.1423.0\mswinext.exe
PRC - [2010/03/08 14:04:49 | 003,972,440 | ---- | M] (AOL Inc.) -- D:\Program Files\AIM\aim.exe
PRC - [2010/02/03 21:05:54 | 000,660,136 | ---- | M] () -- D:\Program Files\Lexmark 2600 Series\lxdnmon.exe
PRC - [2010/01/15 05:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
PRC - [2010/01/14 21:05:28 | 000,311,168 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
PRC - [2010/01/14 21:05:26 | 000,242,048 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2009/12/22 17:49:18 | 005,873,384 | ---- | M] () -- D:\WINDOWS\system32\WTMKM.exe
PRC - [2009/11/26 14:48:10 | 000,515,816 | ---- | M] () -- D:\WINDOWS\system32\atwtusb.exe
PRC - [2009/08/18 11:29:22 | 001,529,728 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
PRC - [2009/08/18 11:29:22 | 000,183,152 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
PRC - [2007/11/28 03:12:40 | 000,589,824 | ---- | M] ( ) -- D:\WINDOWS\system32\lxdncoms.exe
PRC - [2007/05/10 10:22:32 | 000,405,504 | ---- | M] (SigmaTel, Inc.) -- D:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
PRC - [2004/08/04 02:56:50 | 001,032,192 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\explorer.exe
PRC - [2003/10/29 02:06:00 | 000,024,576 | ---- | M] (BVRP Software) -- D:\Program Files\Digital Line Detect\DLG.exe


========== Modules (SafeList) ==========

MOD - [2010/09/29 17:34:44 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\rey\Desktop\OTL.exe
MOD - [2007/03/30 19:59:08 | 000,102,400 | ---- | M] (Intel Corporation) -- D:\WINDOWS\system32\hccutils.dll
MOD - [2004/08/04 02:57:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004/08/04 01:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\msscript.ocx


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- D:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - [2010/06/10 21:03:08 | 000,144,176 | ---- | M] (Apple Inc.) [Auto | Running] -- D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/03/19 02:37:03 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/01/15 05:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- D:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2010/01/14 21:05:26 | 000,242,048 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2009/11/26 14:48:10 | 000,515,816 | ---- | M] () [Auto | Running] -- D:\WINDOWS\System32\atwtusb.exe -- (WTService)
SRV - [2009/10/29 02:02:00 | 003,407,292 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- D:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2009/08/18 11:29:22 | 001,529,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2009/04/27 22:58:24 | 000,094,208 | ---- | M] () [Auto | Stopped] -- D:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdnserv.exe -- (lxdnCATSCustConnectService)
SRV - [2007/11/28 03:12:40 | 000,589,824 | ---- | M] ( ) [Auto | Running] -- D:\WINDOWS\System32\lxdncoms.exe -- (lxdn_device)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- D:\WINDOWS\System32\DRIVERS\UIUSYS.SYS -- (UIUSys)
DRV - [2010/05/10 11:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- D:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/03/03 03:44:10 | 000,067,424 | ---- | M] (CyberDefender Corp.) [File_System | On_Demand | Running] -- D:\WINDOWS\system32\drivers\CDAVFS.sys -- (CDAVFS)
DRV - [2010/02/17 11:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- D:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2008/08/14 07:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- D:\WINDOWS\System32\drivers\adfs.sys -- (adfs)
DRV - [2007/05/10 10:24:34 | 001,222,840 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2007/03/30 21:34:14 | 005,704,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2007/03/16 18:10:56 | 000,604,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2006/11/21 04:25:44 | 000,045,568 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2005/12/01 01:40:56 | 000,936,960 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\HSX_DPV.sys -- (HSF_DPV)
DRV - [2005/12/01 01:40:12 | 000,192,512 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\HSXHWAZL.sys -- (HSXHWAZL)
DRV - [2005/12/01 01:40:08 | 000,669,696 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\HSX_CNXT.sys -- (winachsf)
DRV - [2004/08/12 17:45:54 | 000,137,728 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004/08/03 23:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\..\URLSearchHook: {A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - D:\Documents and Settings\rey\Local Settings\Application Data\CyberDefender\cdmyidd.dll (CyberDefender Corp.)
IE - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\..\URLSearchHook: ~03402f96-3dc7-4285-bc50-9e81fefafe43} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\..\URLSearchHook: ~54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\..\URLSearchHook: ~CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = ;*.local;<local>
IE - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:5555

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.defaulturl: "http://aim.search.aol.com/search/search?query={searchTerms}&invocationType=tb50-ff-aim-chromesbox-en-us"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledItems: {38AB6A6C-CC4C-4f9e-A3DD-3C5681EF18A1}:1.0.3.105
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: msntoolbar@msn.com:5.0
FF - prefs.js..extensions.enabledItems: {27182e60-b5f3-411c-b545-b44205977502}:1.0
FF - prefs.js..keyword.URL: ""


FF - HKLM\software\mozilla\Firefox\extensions\\msntoolbar@msn.com: D:\Program Files\MSN Toolbar\Platform\5.0.1423.0\Firefox [2010/09/19 12:14:48 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{27182e60-b5f3-411c-b545-b44205977502}: D:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2010/09/19 12:14:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.13\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2010/09/17 07:57:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.13\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2010/09/17 07:57:25 | 000,000,000 | ---D | M]

[2010/04/14 00:45:17 | 000,000,000 | ---D | M] -- D:\Documents and Settings\rey\Application Data\Mozilla\Extensions
[2010/04/14 00:45:17 | 000,000,000 | ---D | M] -- D:\Documents and Settings\rey\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2010/09/28 09:05:11 | 000,000,000 | ---D | M] -- D:\Documents and Settings\rey\Application Data\Mozilla\Firefox\Profiles\mywz4lhb.default\extensions
[2010/08/27 10:04:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- D:\Documents and Settings\rey\Application Data\Mozilla\Firefox\Profiles\mywz4lhb.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/03/18 02:12:47 | 000,000,000 | ---D | M] () -- D:\Documents and Settings\rey\Application Data\Mozilla\Firefox\Profiles\mywz4lhb.default\extensions\{38AB6A6C-CC4C-4f9e-A3DD-3C5681EF18A1}
[2009/12/25 23:22:53 | 000,000,000 | ---D | M] (AIM Toolbar) -- D:\Documents and Settings\rey\Application Data\Mozilla\Firefox\Profiles\mywz4lhb.default\extensions\{c2f863cd-0429-48c7-bb54-db756a951760}
[2010/09/10 12:18:12 | 000,000,000 | ---D | M] -- D:\Documents and Settings\rey\Application Data\Mozilla\Firefox\Profiles\mywz4lhb.default\extensions\savefileto@mozdev.org
[2009/12/25 23:22:59 | 000,004,546 | ---- | M] () -- D:\Documents and Settings\rey\Application Data\Mozilla\Firefox\Profiles\mywz4lhb.default\searchplugins\aim-search.xml
[2010/03/22 14:16:07 | 000,000,000 | ---D | M] -- D:\Program Files\Mozilla Firefox\extensions
[2008/12/10 18:21:54 | 000,132,528 | ---- | M] (NHN USA Inc.) -- D:\Program Files\Mozilla Firefox\plugins\npijjiCHPlugin.dll
[2008/09/10 00:39:42 | 000,075,184 | ---- | M] (NHN USA Inc. ) -- D:\Program Files\Mozilla Firefox\plugins\npijjiFFPlugin1.dll

O1 HOSTS File: ([2001/08/23 06:00:00 | 000,000,734 | ---- | M]) - D:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AOLSearchHook Class) - {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - D:\Program Files\AIM Search\AOLSearch.dll File not found
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - D:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Mighty Magoo Text) - {97E74A14-E5F1-40cc-9B0F-0D11946E5469} - D:\Program Files\Mighty Magoo\mmagootl.dll ()
O2 - BHO: (MyIdentityDefender) - {A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - D:\Documents and Settings\rey\Local Settings\Application Data\CyberDefender\cdmyidd.dll (CyberDefender Corp.)
O2 - BHO: (no name) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - No CLSID value found.
O2 - BHO: (Mighty Magoo) - {EEAD004E-7E2D-49f8-831C-A01647E85B53} - D:\Program Files\Mighty Magoo\mightymagoolib32.dll ()
O3 - HKLM\..\Toolbar: (@D:\Program Files\MSN Toolbar\Platform\5.0.1423.0\npwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - D:\Program Files\MSN Toolbar\Platform\5.0.1423.0\npwinext.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found.
O3 - HKLM\..\Toolbar: (MyIdentityDefender) - {A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - D:\Documents and Settings\rey\Local Settings\Application Data\CyberDefender\cdmyidd.dll (CyberDefender Corp.)
O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\..\Toolbar\ShellBrowser: (no name) - {61539ECD-CC67-4437-A03C-9AACCBD14326} - No CLSID value found.
O3 - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\..\Toolbar\WebBrowser: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found.
O3 - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\..\Toolbar\WebBrowser: (MyIdentityDefender) - {A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - D:\Documents and Settings\rey\Local Settings\Application Data\CyberDefender\cdmyidd.dll (CyberDefender Corp.)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] D:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [CyberDefender Registry Cleaner] File not found
O4 - HKLM..\Run: [iTunesHelper] C:\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [lxdnmon.exe] D:\Program Files\Lexmark 2600 Series\lxdnmon.exe ()
O4 - HKLM..\Run: [MacrokeyManager] D:\WINDOWS\System32\WTMKM.exe ()
O4 - HKLM..\Run: [Mightymagoo] D:\Program Files\Mighty Magoo\mightymagoo32.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\qttask.exe (Apple Inc.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] D:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe (SigmaTel, Inc.)
O4 - HKU\S-1-5-21-448539723-1897051121-1801674531-1003..\Run: [Aim] D:\Program Files\AIM\aim.exe (AOL Inc.)
O4 - HKU\S-1-5-21-448539723-1897051121-1801674531-1003..\Run: [cdloader] D:\Documents and Settings\rey\Application Data\mjusbsp\cdloader2.exe (magicJack L.P.)
O4 - HKU\S-1-5-21-448539723-1897051121-1801674531-1003..\Run: [CyberDefender Early Detection Center] D:\Program Files\CyberDefender\AntiSpyware\cdas17.exe (CyberDefender Corp.)
O4 - HKU\S-1-5-21-448539723-1897051121-1801674531-1003..\Run: [CyberDefender Registry Cleaner] D:\Program Files\CyberDefender\Registry Cleaner\CDregclean.exe (CyberDefender)
O4 - Startup: D:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk = D:\Program Files\Digital Line Detect\DLG.exe (BVRP Software)
O4 - Startup: D:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk = D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-448539723-1897051121-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwa...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - D:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - D:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - D:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: D:\Documents and Settings\rey\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: D:\Documents and Settings\rey\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - D:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 14:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [1998/01/08 20:06:18 | 000,000,040 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\F\Shell\AutoRun - "" = Auto&Play
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection D:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4b218e3e-bc98-4770-93d3-2731b9329278} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection MarketplaceLinkInstall 896 %systemroot%\inf\ie.inf
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5056b317-8d4c-43ee-8543-b9d1e234b8f4} - Security Update for Windows XP (KB923789)
ActiveX: {5929769E-92D3-5F5B-119F-D838937429AD} - Microsoft Windows Media Player 6.4
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection D:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {68855742-43F8-5E51-6F71-4DD3227B5626} - Dynamic HTML Data Binding for Java
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - D:\WINDOWS\system32\Rundll32.exe D:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} -
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - D:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

Drivers32: msacm.iac2 - D:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - D:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - D:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - D:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - D:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - D:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - D:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - D:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - D:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - D:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - D:\WINDOWS\System32\DivX.dll (DivX, Inc.)

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - D:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

========== Files/Folders - Created Within 30 Days ==========

[2010/09/29 17:34:44 | 000,575,488 | ---- | C] (OldTimer Tools) -- D:\Documents and Settings\rey\Desktop\OTL.exe
[2010/09/24 09:06:27 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\LogFiles
[2010/09/22 02:33:55 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Desktop\gmer
[2010/09/19 12:16:17 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Application Data\CyberDefender
[2010/09/19 12:14:49 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft
[2010/09/19 12:14:48 | 000,000,000 | ---D | C] -- D:\Program Files\MSN Toolbar
[2010/09/19 12:14:33 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Silverlight
[2010/09/19 12:13:52 | 000,000,000 | ---D | C] -- D:\Program Files\Bing Bar Installer
[2010/09/19 12:13:47 | 007,314,760 | ---- | C] (CyberDefender) -- D:\Documents and Settings\rey\Desktop\CDregclean.exe
[2010/09/19 12:13:29 | 003,067,720 | ---- | C] (CyberDefender) -- D:\Documents and Settings\rey\Desktop\InstallCyberDefenderREG-025837.exe
[2010/09/18 17:26:38 | 001,293,400 | ---- | C] (Kaspersky Lab ZAO) -- D:\Documents and Settings\rey\Desktop\tdsskiller.exe
[2010/09/16 10:45:24 | 000,000,000 | ---D | C] -- D:\WINDOWS\Minidump
[2010/09/15 22:36:14 | 345,913,725 | ---- | C] (Softnyx co.,ltd. ) -- D:\Documents and Settings\rey\Desktop\GunBound_GIS_S2_100907_Ver905.exe
[2010/09/14 19:55:59 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\My Documents\TaxACT 2009
[2010/09/10 15:54:00 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Application Data\SUPERAntiSpyware.com
[2010/09/10 15:54:00 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2010/09/10 15:53:52 | 000,000,000 | ---D | C] -- D:\Program Files\SUPERAntiSpyware
[2010/09/10 15:53:20 | 009,333,808 | ---- | C] (SUPERAntiSpyware.com) -- D:\Documents and Settings\rey\Desktop\SUPERAntiSpyware.exe
[2010/09/10 15:46:48 | 000,446,464 | ---- | C] (OldTimer Tools) -- D:\Documents and Settings\rey\Desktop\TFC.exe
[2010/09/10 12:29:04 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- D:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/09/10 12:29:03 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- D:\WINDOWS\System32\drivers\mbam.sys
[2010/09/10 12:29:03 | 000,000,000 | ---D | C] -- D:\Program Files\Malwarebytes' Anti-Malware
[2010/09/10 12:29:03 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/09/10 12:28:01 | 006,153,352 | ---- | C] (Malwarebytes Corporation ) -- D:\Documents and Settings\rey\Desktop\bubbles.exe
[2010/09/10 12:06:43 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Local Settings\Application Data\Help
[2010/09/10 12:06:43 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Application Data\Help
[2010/09/08 00:05:46 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Application Data\Google
[2010/09/08 00:05:11 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\Google
[2010/09/07 22:10:18 | 000,000,000 | ---D | C] -- D:\Program Files\Google
[2010/09/07 22:07:15 | 000,000,000 | -H-D | C] -- D:\WINDOWS\PIF
[2010/09/07 22:04:25 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\My Documents\ichigo paper-replika.com
[2010/09/07 21:27:27 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Desktop\Kingdom Hearts Moogle
[2010/09/07 01:33:09 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Local Settings\Application Data\tjnet
[2010/09/06 20:48:54 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Desktop\Mom's Reciepe
[2010/09/06 13:27:58 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Local Settings\Application Data\magicJack
[2010/09/06 13:27:49 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\magicJack
[2010/09/06 13:23:18 | 000,000,000 | ---D | C] -- D:\Documents and Settings\rey\Application Data\mjusbsp
[2010/09/06 13:23:12 | 000,059,264 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\drivers\USBAUDIO.sys
[2010/09/02 21:24:15 | 000,000,000 | ---D | C] -- D:\Program Files\LimeWire
[2010/09/02 14:50:47 | 000,000,000 | ---D | C] -- D:\Program Files\Mighty Magoo
[2010/09/02 12:23:45 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft ActiveSync
[2010/08/30 22:44:02 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Lx_cats
[2010/08/30 22:41:08 | 000,409,600 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdncoin.dll
[2010/08/30 22:40:27 | 000,000,000 | ---D | C] -- D:\Program Files\Lexmark Toolbar
[2010/08/30 22:40:19 | 000,012,288 | ---- | C] (Lexmark International, Inc.) -- D:\WINDOWS\System32\lxdnwupd.exe
[2010/08/30 22:40:18 | 000,102,400 | ---- | C] (Lexmark International, Inc.) -- D:\WINDOWS\System32\lxdnwupd.dll
[2010/08/30 22:40:05 | 000,843,776 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdnusb1.dll
[2010/08/30 22:40:05 | 000,540,672 | ---- | C] (Lexmark International, Inc.) -- D:\WINDOWS\System32\lxdnutil.dll
[2010/08/30 22:40:05 | 000,438,272 | ---- | C] ( ) -- D:\WINDOWS\System32\LXDNhcp.dll
[2010/08/30 22:40:05 | 000,364,544 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdninpa.dll
[2010/08/30 22:40:05 | 000,339,968 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdniesc.dll
[2010/08/30 22:40:04 | 001,101,824 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdnserv.dll
[2010/08/30 22:40:04 | 000,647,168 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdnpmui.dll
[2010/08/30 22:40:04 | 000,569,344 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdnlmpm.dll
[2010/08/30 22:40:04 | 000,147,456 | ---- | C] (Lexmark International, Inc.) -- D:\WINDOWS\System32\lxdnjswr.dll
[2010/08/30 22:40:04 | 000,053,248 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdnprox.dll
[2010/08/30 22:40:03 | 000,983,121 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\lxdngf.dll
[2010/08/30 22:40:03 | 000,663,552 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdnhbn3.dll
[2010/08/30 22:40:03 | 000,315,392 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdnih.exe
[2010/08/30 22:40:03 | 000,200,704 | ---- | C] (Lexmark International, Inc.) -- D:\WINDOWS\System32\lxdninsb.dll
[2010/08/30 22:40:03 | 000,176,128 | ---- | C] (Lexmark International, Inc.) -- D:\WINDOWS\System32\lxdnins.dll
[2010/08/30 22:40:03 | 000,106,496 | ---- | C] (Lexmark International, Inc.) -- D:\WINDOWS\System32\lxdninsr.dll
[2010/08/30 22:40:02 | 000,589,824 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdncoms.exe
[2010/08/30 22:40:02 | 000,376,832 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdncomm.dll
[2010/08/30 22:40:02 | 000,090,112 | ---- | C] (Lexmark International, Inc.) -- D:\WINDOWS\System32\lxdncub.dll
[2010/08/30 22:40:02 | 000,077,824 | ---- | C] (Lexmark International, Inc.) -- D:\WINDOWS\System32\lxdncu.dll
[2010/08/30 22:40:02 | 000,036,864 | ---- | C] (Lexmark International, Inc.) -- D:\WINDOWS\System32\lxdncur.dll
[2010/08/30 22:40:01 | 000,851,968 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdncomc.dll
[2010/08/30 22:40:01 | 000,360,448 | ---- | C] ( ) -- D:\WINDOWS\System32\lxdncfg.exe
[2010/08/30 22:40:01 | 000,077,906 | ---- | C] (Lexmark International) -- D:\WINDOWS\System32\LXDNcfg.dll
[2010/08/30 22:39:47 | 000,000,000 | ---D | C] -- D:\Program Files\Lexmark 2600 Series

========== Files - Modified Within 30 Days ==========

[2010/09/29 17:34:44 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\rey\Desktop\OTL.exe
[2010/09/29 17:22:16 | 000,000,260 | ---- | M] () -- D:\WINDOWS\tasks\WGASetup.job
[2010/09/29 17:22:12 | 000,000,709 | ---- | M] () -- D:\WINDOWS\win.ini
[2010/09/29 17:22:03 | 000,002,206 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl
[2010/09/29 17:21:49 | 000,000,006 | -H-- | M] () -- D:\WINDOWS\tasks\SA.DAT
[2010/09/29 17:21:47 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2010/09/29 12:01:45 | 003,407,872 | ---- | M] () -- D:\Documents and Settings\rey\ntuser.dat
[2010/09/29 12:01:38 | 000,000,178 | -HS- | M] () -- D:\Documents and Settings\rey\ntuser.ini
[2010/09/29 12:01:28 | 004,314,656 | -H-- | M] () -- D:\Documents and Settings\rey\Local Settings\Application Data\IconCache.db
[2010/09/28 13:12:44 | 000,000,022 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\snes9x-1.51-win32.zip
[2010/09/28 13:11:47 | 000,291,608 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\SoftonicDownloader_for_snes9x.exe
[2010/09/28 12:56:35 | 001,352,933 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\Secret of Mana.zip
[2010/09/28 12:54:10 | 002,072,708 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\Earthbound.zip
[2010/09/28 11:47:08 | 000,312,693 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\Rukia-School-Uniform-Costume-from-Bleach.jpg
[2010/09/28 09:23:45 | 000,010,765 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\4c5cfda96e49a_169861n.jpg
[2010/09/26 13:11:51 | 000,139,327 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\Ichigo-School-Cosplay-Uniform-from-Bleach.jpg
[2010/09/26 12:07:01 | 000,010,765 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\4c5cfda96e49a_169861b.jpg
[2010/09/26 08:36:59 | 000,302,167 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\1-11.jpg
[2010/09/24 23:01:48 | 000,432,924 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat
[2010/09/24 23:01:47 | 000,508,956 | ---- | M] () -- D:\WINDOWS\System32\PerfStringBackup.INI
[2010/09/24 23:01:47 | 000,067,714 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat
[2010/09/22 14:47:25 | 000,044,693 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\inuyasha-fleece-cap-(white-color).jpg
[2010/09/22 13:50:27 | 000,050,922 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\il_430xN.176176504.jpg
[2010/09/22 13:16:58 | 000,160,051 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\anbu.jpg
[2010/09/22 02:29:31 | 000,525,824 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\dds.scr
[2010/09/22 02:23:07 | 000,000,000 | ---- | M] () -- D:\Documents and Settings\rey\defogger_reenable
[2010/09/22 02:22:21 | 000,050,477 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\Defogger.exe
[2010/09/20 12:26:51 | 000,027,916 | ---- | M] () -- D:\Documents and Settings\rey\My Documents\e
[2010/09/20 12:12:20 | 000,022,016 | ---- | M] () -- D:\Documents and Settings\rey\My Documents\The article is about opoid prescription drugs that have been mainly prescribed to reduce pain in cancer patients.doc
[2010/09/20 11:32:33 | 000,133,632 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\RKUnhookerLE.EXE
[2010/09/20 02:56:26 | 000,026,112 | ---- | M] () -- D:\Documents and Settings\rey\My Documents\63-78B.doc
[2010/09/20 01:24:14 | 001,992,352 | ---- | M] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2010/09/19 22:30:14 | 000,009,342 | ---- | M] () -- D:\Documents and Settings\rey\My Documents\63-78.rtf
[2010/09/19 12:16:15 | 000,000,814 | ---- | M] () -- D:\Documents and Settings\rey\Application Data\Microsoft\Internet Explorer\Quick Launch\CyberDefender Registry Cleaner.lnk
[2010/09/19 12:16:15 | 000,000,796 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Fix PC Errors Now.lnk
[2010/09/19 12:13:30 | 003,067,720 | ---- | M] (CyberDefender) -- D:\Documents and Settings\rey\Desktop\InstallCyberDefenderREG-025837.exe
[2010/09/18 17:26:38 | 001,293,400 | ---- | M] (Kaspersky Lab ZAO) -- D:\Documents and Settings\rey\Desktop\tdsskiller.exe
[2010/09/16 12:35:38 | 000,007,963 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\34268_1371500489761_1299217783_30926862_407368_s.jpg
[2010/09/15 22:46:19 | 345,913,725 | ---- | M] (Softnyx co.,ltd. ) -- D:\Documents and Settings\rey\Desktop\GunBound_GIS_S2_100907_Ver905.exe
[2010/09/14 23:24:34 | 000,036,446 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\62033_431916307815_654112815_5718106_7507290_n.jpg
[2010/09/14 23:24:22 | 000,045,248 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\61920_431916117815_654112815_5718104_4225709_n.jpg
[2010/09/14 20:11:28 | 000,018,941 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\ga pam 09.pdf
[2010/09/14 20:09:55 | 000,031,377 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\federal tax pam 09.pdf
[2010/09/14 19:55:59 | 000,000,048 | ---- | M] () -- D:\WINDOWS\TaxACT09.ini
[2010/09/14 19:55:55 | 000,000,592 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\TaxACT 2009.lnk
[2010/09/14 19:55:15 | 017,420,846 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\ta09stdw.exe
[2010/09/13 00:07:28 | 000,000,992 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\magicJack.lnk
[2010/09/11 03:50:56 | 000,008,572 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\images.jpg
[2010/09/10 15:59:58 | 000,010,044 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\directions.rtf
[2010/09/10 15:53:55 | 000,001,678 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010/09/10 15:53:20 | 009,333,808 | ---- | M] (SUPERAntiSpyware.com) -- D:\Documents and Settings\rey\Desktop\SUPERAntiSpyware.exe
[2010/09/10 15:46:49 | 000,446,464 | ---- | M] (OldTimer Tools) -- D:\Documents and Settings\rey\Desktop\TFC.exe
[2010/09/10 12:50:44 | 000,000,835 | R--- | M] () -- D:\Documents and Settings\rey\Desktop\CyberDefender.lnk
[2010/09/10 12:29:06 | 000,000,696 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/10 12:28:02 | 006,153,352 | ---- | M] (Malwarebytes Corporation ) -- D:\Documents and Settings\rey\Desktop\bubbles.exe
[2010/09/10 12:24:36 | 000,007,523 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\e.php
[2010/09/10 12:08:04 | 000,363,520 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\rkill.scr
[2010/09/10 00:24:41 | 001,133,954 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\New Picture.bmp
[2010/09/10 00:23:55 | 000,016,182 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\chorechart.gif
[2010/09/10 00:20:32 | 000,006,796 | ---- | M] () -- D:\Documents and Settings\rey\Desktop\chart.htm
[2010/09/09 19:33:01 | 000,000,284 | ---- | M] () -- D:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/09/08 23:23:45 | 000,010,457 | ---- | M] () -- D:\Documents and Settings\rey\My Documents\journal.rtf
[2010/09/07 22:10:48 | 000,001,762 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Google SketchUp 8.lnk
[2010/09/07 21:26:46 | 003,900,058 | R--- | M] () -- D:\Documents and Settings\rey\Desktop\Kingdom Hearts Moogle.rar
[2010/09/07 21:22:34 | 000,386,024 | ---- | M] () -- D:\Documents and Settings\rey\My Documents\wewrw4r3a4534.pdf
[2010/09/02 19:10:54 | 000,002,187 | ---- | M] () -- D:\Documents and Settings\All Users\Desktop\Safari.lnk
[2010/08/30 22:41:41 | 000,017,106 | ---- | M] () -- D:\WINDOWS\System32\LexFiles.ulf

========== Files Created - No Company Name ==========

[2010/09/28 13:12:05 | 000,000,022 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\snes9x-1.51-win32.zip
[2010/09/28 13:11:47 | 000,291,608 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\SoftonicDownloader_for_snes9x.exe
[2010/09/28 12:56:34 | 001,352,933 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\Secret of Mana.zip
[2010/09/28 12:54:08 | 002,072,708 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\Earthbound.zip
[2010/09/28 11:47:08 | 000,312,693 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\Rukia-School-Uniform-Costume-from-Bleach.jpg
[2010/09/28 09:23:44 | 000,010,765 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\4c5cfda96e49a_169861n.jpg
[2010/09/26 13:11:51 | 000,139,327 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\Ichigo-School-Cosplay-Uniform-from-Bleach.jpg
[2010/09/26 12:07:00 | 000,010,765 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\4c5cfda96e49a_169861b.jpg
[2010/09/26 08:36:58 | 000,302,167 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\1-11.jpg
[2010/09/22 14:47:25 | 000,044,693 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\inuyasha-fleece-cap-(white-color).jpg
[2010/09/22 13:50:27 | 000,050,922 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\il_430xN.176176504.jpg
[2010/09/22 13:16:57 | 000,160,051 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\anbu.jpg
[2010/09/22 02:29:31 | 000,525,824 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\dds.scr
[2010/09/22 02:23:07 | 000,000,468 | ---- | C] () -- D:\Documents and Settings\rey\defogger_disable.log
[2010/09/22 02:23:07 | 000,000,000 | ---- | C] () -- D:\Documents and Settings\rey\defogger_reenable
[2010/09/22 02:22:20 | 000,050,477 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\Defogger.exe
[2010/09/20 12:26:51 | 000,027,916 | ---- | C] () -- D:\Documents and Settings\rey\My Documents\e
[2010/09/20 12:11:51 | 000,022,016 | ---- | C] () -- D:\Documents and Settings\rey\My Documents\The article is about opoid prescription drugs that have been mainly prescribed to reduce pain in cancer patients.doc
[2010/09/20 11:32:33 | 000,133,632 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\RKUnhookerLE.EXE
[2010/09/20 01:26:51 | 000,026,112 | ---- | C] () -- D:\Documents and Settings\rey\My Documents\63-78B.doc
[2010/09/19 12:16:15 | 000,000,814 | ---- | C] () -- D:\Documents and Settings\rey\Application Data\Microsoft\Internet Explorer\Quick Launch\CyberDefender Registry Cleaner.lnk
[2010/09/19 12:16:15 | 000,000,796 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\Fix PC Errors Now.lnk
[2010/09/16 12:39:36 | 000,007,963 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\34268_1371500489761_1299217783_30926862_407368_s.jpg
[2010/09/15 23:07:07 | 003,407,872 | ---- | C] () -- D:\Documents and Settings\rey\ntuser.dat
[2010/09/14 23:24:33 | 000,036,446 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\62033_431916307815_654112815_5718106_7507290_n.jpg
[2010/09/14 23:24:21 | 000,045,248 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\61920_431916117815_654112815_5718104_4225709_n.jpg
[2010/09/14 20:48:14 | 000,009,342 | ---- | C] () -- D:\Documents and Settings\rey\My Documents\63-78.rtf
[2010/09/14 20:11:28 | 000,018,941 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\ga pam 09.pdf
[2010/09/14 20:09:55 | 000,031,377 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\federal tax pam 09.pdf
[2010/09/14 19:55:54 | 000,000,592 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\TaxACT 2009.lnk
[2010/09/14 19:55:54 | 000,000,048 | ---- | C] () -- D:\WINDOWS\TaxACT09.ini
[2010/09/14 19:54:58 | 017,420,846 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\ta09stdw.exe
[2010/09/11 03:50:55 | 000,008,572 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\images.jpg
[2010/09/10 15:59:58 | 000,010,044 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\directions.rtf
[2010/09/10 15:53:55 | 000,001,678 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010/09/10 12:50:44 | 000,000,835 | R--- | C] () -- D:\Documents and Settings\rey\Desktop\CyberDefender.lnk
[2010/09/10 12:29:06 | 000,000,696 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/09/10 12:24:36 | 000,007,523 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\e.php
[2010/09/10 12:08:04 | 000,363,520 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\rkill.scr
[2010/09/10 00:24:41 | 001,133,954 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\New Picture.bmp
[2010/09/10 00:23:54 | 000,016,182 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\chorechart.gif
[2010/09/10 00:20:31 | 000,006,796 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\chart.htm
[2010/09/08 21:31:25 | 000,010,457 | ---- | C] () -- D:\Documents and Settings\rey\My Documents\journal.rtf
[2010/09/07 22:10:48 | 000,001,762 | ---- | C] () -- D:\Documents and Settings\All Users\Desktop\Google SketchUp 8.lnk
[2010/09/07 21:26:46 | 003,900,058 | R--- | C] () -- D:\Documents and Settings\rey\Desktop\Kingdom Hearts Moogle.rar
[2010/09/07 21:22:34 | 000,386,024 | ---- | C] () -- D:\Documents and Settings\rey\My Documents\wewrw4r3a4534.pdf
[2010/09/06 13:27:31 | 000,000,992 | ---- | C] () -- D:\Documents and Settings\rey\Desktop\magicJack.lnk
[2010/08/30 22:41:10 | 000,040,960 | ---- | C] () -- D:\WINDOWS\System32\lxdnvs.dll
[2010/08/30 22:41:01 | 000,061,218 | ---- | C] () -- D:\WINDOWS\System32\lxdnprpr.chm
[2010/08/30 22:40:44 | 000,782,336 | ---- | C] () -- D:\WINDOWS\System32\lxdndrs.dll
[2010/08/30 22:40:44 | 000,081,920 | ---- | C] () -- D:\WINDOWS\System32\lxdncaps.dll
[2010/08/30 22:40:44 | 000,069,632 | ---- | C] () -- D:\WINDOWS\System32\lxdncnv4.dll
[2010/08/30 22:40:44 | 000,000,504 | ---- | C] () -- D:\Documents and Settings\All Users\FastPics.log
[2010/08/30 22:40:17 | 000,000,044 | ---- | C] () -- D:\WINDOWS\System32\lxdnrwrd.ini
[2010/08/30 22:40:06 | 000,348,160 | ---- | C] () -- D:\WINDOWS\System32\LXDNinst.dll
[2010/08/30 22:40:06 | 000,017,106 | ---- | C] () -- D:\WINDOWS\System32\LexFiles.ulf
[2010/08/30 22:40:03 | 000,208,896 | ---- | C] () -- D:\WINDOWS\System32\lxdngrd.dll
[2010/08/30 22:40:01 | 000,001,633 | ---- | C] () -- D:\WINDOWS\System32\lxdn.loc
[2010/07/23 20:16:12 | 000,032,768 | ---- | C] () -- D:\WINDOWS\System32\LXBRPMON.DLL
[2010/07/23 20:16:12 | 000,020,480 | ---- | C] () -- D:\WINDOWS\System32\LXBRPMUI.DLL
[2010/07/23 20:14:30 | 000,000,399 | ---- | C] () -- D:\WINDOWS\lexstat.ini
[2010/06/08 19:54:45 | 000,180,224 | ---- | C] () -- D:\WINDOWS\System32\ATWTINK.DLL
[2010/06/08 19:54:44 | 000,010,251 | ---- | C] () -- D:\WINDOWS\System32\Default_2.ini
[2010/06/08 19:54:44 | 000,009,868 | ---- | C] () -- D:\WINDOWS\System32\Default_1.ini
[2010/06/08 19:54:44 | 000,000,677 | ---- | C] () -- D:\WINDOWS\System32\MKProfile.ini
[2010/06/08 19:54:43 | 000,008,229 | ---- | C] () -- D:\WINDOWS\aiptbl.ini
[2010/03/03 03:52:28 | 000,000,068 | ---- | C] () -- D:\WINDOWS\st_affiliate.ini
[2010/03/03 03:45:57 | 000,000,058 | ---- | C] () -- D:\WINDOWS\av_affiliate.ini
[2010/03/03 03:45:54 | 000,000,058 | ---- | C] () -- D:\WINDOWS\as_affiliate.ini
[2010/02/01 22:44:28 | 000,000,376 | ---- | C] () -- D:\WINDOWS\ODBC.INI
[2008/09/15 03:43:09 | 000,027,648 | ---- | C] () -- D:\Documents and Settings\rey\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/09/04 01:05:34 | 000,757,760 | ---- | C] () -- D:\WINDOWS\System32\bcm1xsup.dll
[2008/09/04 01:05:33 | 000,086,016 | ---- | C] () -- D:\WINDOWS\System32\preflib.dll
[2008/09/04 00:54:12 | 000,204,800 | ---- | C] () -- D:\WINDOWS\System32\igfxCoIn_v4814.dll
[2008/08/05 15:02:12 | 003,596,288 | ---- | C] () -- D:\WINDOWS\System32\qt-dx331.dll
[2008/08/05 14:59:04 | 000,000,416 | ---- | C] () -- D:\WINDOWS\System32\dtu100.dll.manifest
[2008/08/05 14:59:04 | 000,000,416 | ---- | C] () -- D:\WINDOWS\System32\dpl100.dll.manifest
[2008/08/05 14:58:14 | 000,012,288 | ---- | C] () -- D:\WINDOWS\System32\DivXWMPExtType.dll
[2002/10/15 15:54:04 | 000,153,088 | ---- | C] () -- D:\WINDOWS\System32\unrar.dll

========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: AGP440.SYS >
[2004/08/04 03:05:44 | 018,738,937 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/04/13 11:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\SoftwareDistribution\Download\79123dd72d0f61d4ed8c7a816ed338d7\agp440.sys

< MD5 for: ATAPI.SYS >
[2004/08/04 03:05:44 | 018,738,937 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/04/13 11:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\SoftwareDistribution\Download\79123dd72d0f61d4ed8c7a816ed338d7\atapi.sys
[2004/08/03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\system32\dllcache\atapi.sys
[2004/08/03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\system32\drivers\atapi.sys
[2004/08/04 00:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2008/04/13 17:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- D:\WINDOWS\SoftwareDistribution\Download\79123dd72d0f61d4ed8c7a816ed338d7\eventlog.dll
[2004/08/04 02:56:44 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- D:\WINDOWS\system32\dllcache\eventlog.dll
[2004/08/04 02:56:44 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- D:\WINDOWS\system32\eventlog.dll

< MD5 for: NETLOGON.DLL >
[2008/04/13 17:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- D:\WINDOWS\SoftwareDistribution\Download\79123dd72d0f61d4ed8c7a816ed338d7\netlogon.dll
[2009/02/06 11:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- D:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009/02/06 11:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- D:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2004/08/04 02:56:46 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- D:\WINDOWS\system32\dllcache\netlogon.dll
[2004/08/04 02:56:46 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- D:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004/08/04 02:56:46 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- D:\WINDOWS\system32\dllcache\scecli.dll
[2004/08/04 02:56:46 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- D:\WINDOWS\system32\scecli.dll
[2008/04/13 17:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- D:\WINDOWS\SoftwareDistribution\Download\79123dd72d0f61d4ed8c7a816ed338d7\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2004/08/04 02:56:44 | 000,344,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- D:\WINDOWS\system32\hnetcfg.dll
[2010/04/16 08:36:45 | 000,251,392 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- D:\WINDOWS\system32\iepeers.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2008/09/03 15:22:11 | 000,094,208 | ---- | M] () -- D:\WINDOWS\system32\config\default.sav
[2008/09/03 15:22:11 | 000,659,456 | ---- | M] () -- D:\WINDOWS\system32\config\software.sav
[2008/09/03 15:22:10 | 000,897,024 | ---- | M] () -- D:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\drivers\*.sys /90 >
< End of report >

--------------------------------------------------------------------------------------------------------------------
OTL Extras logfile created on: 9/29/2010 5:35:55 PM - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = D:\Documents and Settings\rey\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,014.00 Mb Total Physical Memory | 424.00 Mb Available Physical Memory | 42.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): D:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 99.74 Gb Total Space | 24.59 Gb Free Space | 24.65% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 0.20 Gb Free Space | 2.04% Space Free | Partition Type: NTFS
Drive E: | 641.05 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: POKEMON
Current User Name: rey
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_USERS\S-1-5-21-448539723-1897051121-1801674531-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- Reg Error: Key error.
Directory [Winamp.Enqueue] -- Reg Error: Key error.
Directory [Winamp.Play] -- Reg Error: Key error.
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\Starcraft\StarCraft.exe" = D:\Starcraft\StarCraft.exe:*:Enabled:Starcraft -- File not found
"D:\Program Files\EA Games\Ultima Online Mondain's Legacy\client.exe" = D:\Program Files\EA Games\Ultima Online Mondain's Legacy\client.exe:*:Enabled:client -- (Electronic Arts)
"D:\Program Files\AIM\aim.exe" = D:\Program Files\AIM\aim.exe:*:Enabled:AIM -- (AOL Inc.)
"D:\Program Files\Mozilla Firefox\firefox.exe" = D:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox -- (Mozilla Corporation)
"C:\LimeWire\LimeWire.exe" = C:\LimeWire\LimeWire.exe:*:Disabled:LimeWire -- File not found
"D:\Program Files\Skype\Plugin Manager\skypePM.exe" = D:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Disabled:Skype Extras Manager -- File not found
"C:\iTunes.exe" = C:\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"D:\WINDOWS\system32\lxdncoms.exe" = D:\WINDOWS\system32\lxdncoms.exe:*:Enabled:Lexmark Communications System -- ( )
"D:\WINDOWS\system32\spool\drivers\w32x86\3\lxdnpswx.exe" = D:\WINDOWS\system32\spool\drivers\w32x86\3\lxdnpswx.exe:*:Enabled:Printer Status Window Interface -- ()
"D:\WINDOWS\system32\spool\drivers\w32x86\3\lxdntime.exe" = D:\WINDOWS\system32\spool\drivers\w32x86\3\lxdntime.exe:*:Enabled:Lexmark Connect Time Executable -- (Lexmark International, Inc.)
"D:\Program Files\Lexmark 2600 Series\lxdnmon.exe" = D:\Program Files\Lexmark 2600 Series\lxdnmon.exe:*:Enabled:Printer Device Monitor -- ()
"D:\WINDOWS\system32\spool\drivers\w32x86\3\lxdnjswx.exe" = D:\WINDOWS\system32\spool\drivers\w32x86\3\lxdnjswx.exe:*:Enabled:Job Status Window Interface -- ()
"D:\Program Files\LimeWire\LimeWire.exe" = D:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found
"D:\Documents and Settings\rey\Application Data\mjusbsp\magicJack.exe" = D:\Documents and Settings\rey\Application Data\mjusbsp\magicJack.exe:*:Enabled:magicJack -- (magicJack L.P.)
"D:\Program Files\CyberDefender\AntiSpyware\cdas17.exe" = D:\Program Files\CyberDefender\AntiSpyware\cdas17.exe:*:Enabled:CyberDefender Internet Security -- (CyberDefender Corp.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{08234a0d-cf39-4dca-99f0-0c5cb496da81}" = Bing Bar
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0CB9668D-F979-4F31-B8B8-67FE90F929F8}" = Bonjour
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java™ 6 Update 17
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3D9892BB-A751-4E48-ADC8-E4289956CE1D}" = QuickTime
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{5E4B86E5-CD0E-4D3D-BE21-45A30326850A}" = Microsoft Search Enhancement Pack
"{612B9183-67A9-4B44-9877-2F059E35B86A}" = Broadcom 440x 10/100 Integrated Controller
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6DE18AB5-540B-4981-87D5-6CF7E923D983}_is1" = CyberDefender Registry Cleaner
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83682B4C-B98C-4BEB-97CC-8EAD2AF9E4C6}" = MyIdentityDefender Toolbar (CyberDefender Corporation)
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{85991ED2-010C-4930-96FA-52F43C2CE98A}" = Apple Mobile Device Support
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{91F7F3F3-CE80-48C3-8327-7D24A0A5716A}" = iTunes
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{9DF0196F-B6B8-4C3A-8790-DE42AA530101}" = SPORE™
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A93944F2-D2D4-4750-BFE7-9A288FEAF2CF}" = Apple Application Support
"{AA63780B-DDB7-417b-8A13-E5AFBE08E807}" =
"{AC5352DA-F4F2-4A59-A1BF-41546342746B}" = CyberDefender Early Detection Center
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B700113B-24A8-4D4C-8484-0CC944F764C8}" = Google SketchUp 8
"{B95B1BA9-F887-4B3C-8D3A-CCD4C4675120}" = Microsoft Default Manager
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DF7B213D-2065-41ED-BB51-7A3EED31EA7B}" = Ultima Online: Mondain's Legacy
"{E21DA178-9FB0-4F91-B79C-5A6DDEEBFB8D}" = Bing Bar Platform
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E646DCF0-5A68-11D5-B229-002078017FBF}" = Digital Line Detect
"{EAFEF30E-3789-49C7-A6D9-77C12E005BAC}" = Safari
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"AIM Search" = AIM Search
"AIM_7" = AIM 7
"BitTorrent" = BitTorrent
"Broadcom 802.11b Network Adapter" = Dell Wireless WLAN Card
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3" = Conexant HDA D110 MDC V.92 Modem
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"HDMI" = Intel® Graphics Media Accelerator Driver
"kSolo" = kSolo Recorder
"Lexmark 2600 Series" = Lexmark 2600 Series
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Manga Studio Debut 4.0" = Manga Studio Debut 4.0
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mightymagoo" = Mighty Magoo
"Mozilla Firefox (3.5.13)" = Mozilla Firefox (3.5.13)
"My Program_is1" = LANPoker Version 0.07.11.15c
"Prism" = Prism Video File Converter
"QuickPar" = QuickPar 0.9
"Rmtablet" = Pen Pad Driver with Macro Key Manager
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"Starcraft" = Starcraft
"TaxACT 2009" = TaxACT 2009
"VideoPad" = VideoPad Video Editor
"VobSub" = VobSub v2.23 (Remove Only)
"WIC" = Windows Imaging Component
"WinRAR archiver" = WinRAR archiver

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-448539723-1897051121-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Facebook Plug-In" = Facebook Plug-In
"ijji FireFox Launcher" = ijji FireFox Launcher 1.0
"magicJack" = magicJack

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 9/27/2010 2:59:52 PM | Computer Name = POKEMON | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2088062

Error - 9/27/2010 2:59:54 PM | Computer Name = POKEMON | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 9/27/2010 2:59:54 PM | Computer Name = POKEMON | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2090062

Error - 9/27/2010 2:59:54 PM | Computer Name = POKEMON | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2090062

Error - 9/28/2010 12:03:57 PM | Computer Name = POKEMON | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: This operation returned because the timeout period expired.

Error - 9/28/2010 12:03:57 PM | Computer Name = POKEMON | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: The specified server cannot perform the requested operation.

Error - 9/28/2010 12:03:57 PM | Computer Name = POKEMON | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: The specified server cannot perform the requested operation.

Error - 9/28/2010 12:03:57 PM | Computer Name = POKEMON | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: The specified server cannot perform the requested operation.

Error - 9/28/2010 12:03:57 PM | Computer Name = POKEMON | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: The specified server cannot perform the requested operation.

Error - 9/28/2010 12:03:57 PM | Computer Name = POKEMON | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: The specified server cannot perform the requested operation.

[ System Events ]
Error - 9/28/2010 11:52:54 AM | Computer Name = POKEMON | Source = Service Control Manager | ID = 7000
Description = The lxdnCATSCustConnectService service failed to start due to the
following error: %%1053

Error - 9/29/2010 5:03:48 AM | Computer Name = POKEMON | Source = Print | ID = 23
Description = Printer Lexmark 4200 Series,1 failed to initialize because a suitable
Lexmark 4200 Series driver could not be found.

Error - 9/29/2010 5:03:48 AM | Computer Name = POKEMON | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the lxdnCATSCustConnectService
service to connect.

Error - 9/29/2010 5:03:48 AM | Computer Name = POKEMON | Source = Service Control Manager | ID = 7000
Description = The lxdnCATSCustConnectService service failed to start due to the
following error: %%1053

Error - 9/29/2010 5:03:51 AM | Computer Name = POKEMON | Source = Print | ID = 19
Description = Sharing printer failed + 1722, Printer Microsoft XPS Document Writer
share name Printer.

Error - 9/29/2010 8:21:51 PM | Computer Name = POKEMON | Source = Print | ID = 23
Description = Printer Lexmark 4200 Series,1 failed to initialize because a suitable
Lexmark 4200 Series driver could not be found.

Error - 9/29/2010 8:21:51 PM | Computer Name = POKEMON | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the lxdnCATSCustConnectService
service to connect.

Error - 9/29/2010 8:21:51 PM | Computer Name = POKEMON | Source = Service Control Manager | ID = 7000
Description = The lxdnCATSCustConnectService service failed to start due to the
following error: %%1053

Error - 9/29/2010 8:23:25 PM | Computer Name = POKEMON | Source = Service Control Manager | ID = 7023
Description = The iPod Service service terminated with the following error: %%2147549465

Error - 9/29/2010 8:23:30 PM | Computer Name = POKEMON | Source = DCOM | ID = 10010
Description = The server {063D34A4-BF84-4B8D-B699-E8CA06504DDE} did not register
with DCOM within the required timeout.


< End of report >


#4 Doomsis

Doomsis
  • Topic Starter

  • Members
  • 150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Kaysville, UT
  • Local time:09:40 AM

Posted 29 September 2010 - 08:17 PM

pOST#2 Computer 2:

OTL logfile created on: 9/29/2010 8:40:31 PM - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Users\Myrna\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 53.00% Memory free
4.00 Gb Paging File | 2.00 Gb Available in Paging File | 55.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 218.20 Gb Total Space | 180.80 Gb Free Space | 82.86% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MYRNA-PC
Current User Name: Myrna
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/09/29 20:39:32 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Myrna\Desktop\OTL.exe
PRC - [2010/09/19 12:59:34 | 000,014,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
PRC - [2010/09/19 12:59:33 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010/09/18 21:08:30 | 000,159,744 | ---- | M] () -- C:\Program Files (x86)\Mighty Magoo\mightymagoo32.exe
PRC - [2010/09/09 08:09:54 | 022,156,688 | ---- | M] (magicJack L.P.) -- C:\Users\Myrna\AppData\Roaming\mjusbsp\magicJack.exe
PRC - [2010/03/31 12:42:56 | 000,786,432 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
PRC - [2010/03/25 18:08:06 | 001,573,376 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2010/03/04 13:28:08 | 000,658,656 | ---- | M] (SoftThinks) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2010/02/04 00:05:54 | 000,660,136 | ---- | M] () -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe
PRC - [2010/02/04 00:05:52 | 000,025,256 | ---- | M] () -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnmsdmon.exe
PRC - [2009/12/29 17:35:38 | 000,140,520 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2009/11/13 17:15:00 | 001,807,600 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
PRC - [2009/10/15 04:10:28 | 000,498,160 | ---- | M] () -- C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
PRC - [2009/09/18 05:54:20 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) -- c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
PRC - [2009/06/09 10:11:14 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
PRC - [2009/06/04 20:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/06/04 20:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2009/05/21 09:59:08 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
PRC - [2009/05/21 09:59:08 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
PRC - [2009/01/14 18:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2006/09/19 14:41:32 | 000,155,648 | ---- | M] () -- C:\Program Files (x86)\Nova Development\Greeting Card Factory Deluxe 6.0\ReminderApp.exe


========== Modules (SafeList) ==========

MOD - [2010/09/29 20:39:32 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Myrna\Desktop\OTL.exe
MOD - [2009/07/13 21:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009/07/13 21:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/08/24 14:57:38 | 000,245,352 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -- (mfefire)
SRV:64bit: - [2010/08/24 14:57:38 | 000,200,056 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV:64bit: - [2010/08/24 14:57:38 | 000,149,032 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:64bit: - [2010/04/15 09:45:10 | 000,509,416 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV:64bit: - [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:64bit: - [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McProxy)
SRV:64bit: - [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV:64bit: - [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:64bit: - [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV:64bit: - [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:64bit: - [2009/07/16 21:06:22 | 000,033,280 | ---- | M] () [Auto | Running] -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE -- (wltrysvc)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/06/29 00:44:38 | 000,240,128 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe -- (STacSV)
SRV:64bit: - [2009/06/09 10:11:14 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV:64bit: - [2009/04/28 01:58:52 | 000,029,184 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysNative\spool\DRIVERS\x64\3\\lxdnserv.exe -- (lxdnCATSCustConnectService)
SRV:64bit: - [2007/11/28 06:51:42 | 001,039,872 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\lxdncoms.exe -- (lxdn_device)
SRV - [2010/07/28 17:36:52 | 000,246,520 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2010/06/13 18:21:55 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/06/13 18:02:27 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2010/03/04 13:28:08 | 000,658,656 | ---- | M] (SoftThinks) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE -- (SftService)
SRV - [2009/09/18 05:54:20 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor8.0)
SRV - [2009/06/04 20:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2009/05/21 09:59:08 | 000,206,064 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter)
SRV - [2009/01/14 18:53:02 | 000,226,656 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2007/11/28 06:12:40 | 000,589,824 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWow64\lxdncoms.exe -- (lxdn_device)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pfc.sys -- (pfc)
DRV:64bit: - [2010/08/24 14:57:38 | 000,529,000 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:64bit: - [2010/08/24 14:57:38 | 000,441,072 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:64bit: - [2010/08/24 14:57:38 | 000,283,232 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:64bit: - [2010/08/24 14:57:38 | 000,190,136 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:64bit: - [2010/08/24 14:57:38 | 000,121,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:64bit: - [2010/08/24 14:57:38 | 000,094,736 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mferkdet.sys -- (mferkdet)
DRV:64bit: - [2010/08/24 14:57:38 | 000,075,032 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mfenlfk.sys -- (mfenlfk)
DRV:64bit: - [2010/08/24 14:57:38 | 000,062,800 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:64bit: - [2009/12/26 03:41:32 | 000,280,624 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2009/07/16 21:06:20 | 000,022,520 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcm42rly.sys -- (BCM42RLY)
DRV:64bit: - [2009/07/16 21:06:18 | 002,769,400 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2009/07/13 21:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/13 21:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 04:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/06/29 00:44:38 | 000,487,424 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2009/06/10 16:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/04 06:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/06/02 23:16:56 | 007,333,472 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/05/19 23:10:00 | 000,393,728 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/05/08 04:15:18 | 000,215,552 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2006/11/01 12:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2006/05/23 16:00:26 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\pfc.sys -- (pfc)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3916433058-672650087-373204734-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKU\S-1-5-21-3916433058-672650087-373204734-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKU\S-1-5-21-3916433058-672650087-373204734-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
FF - prefs.js..extensions.enabledItems: textlinks@mmagoo.com:1.0.0
FF - prefs.js..network.proxy.type: 0

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/09/19 12:59:35 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/09/25 03:02:36 | 000,000,000 | ---D | M]

[2010/09/13 18:54:41 | 000,000,000 | ---D | M] -- C:\Users\Myrna\AppData\Roaming\Mozilla\Extensions
[2010/09/13 18:54:41 | 000,000,000 | ---D | M] -- C:\Users\Myrna\AppData\Roaming\Mozilla\Firefox\Profiles\ayr9v402.default\extensions
[2010/09/13 18:54:19 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/08/24 14:57:38 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\components\Scriptff.dll

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho64.dll ()
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20100917130456.dll (McAfee, Inc.)
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho.dll ()
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20100917130456.dll (McAfee, Inc.)
O2 - BHO: (no name) - {97E74A14-E5F1-40cc-9B0F-0D11946E5469} - C:\Program Files (x86)\Mighty Magoo\mmagootl.dll ()
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-3916433058-672650087-373204734-1000\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE (Dell Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [lxdnamon] C:\Program Files (x86)\Lexmark 2600 Series\lxdnamon.exe ()
O4:64bit: - HKLM..\Run: [lxdnmon.exe] C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe ()
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe ()
O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [Desktop Disc Tool] c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [Mightymagoo] C:\Program Files (x86)\Mighty Magoo\mightymagoo32.exe ()
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [ReminderApp] C:\Program Files (x86)\Nova Development\Greeting Card Factory Deluxe 6.0\ReminderApp.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3916433058-672650087-373204734-1000..\Run: [cdloader] C:\Users\Myrna\AppData\Roaming\mjusbsp\cdloader2.exe (magicJack L.P.)
O4 - HKU\S-1-5-21-3916433058-672650087-373204734-1000..\Run: [msnmsgr] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe File not found
O4:64bit: - HKLM..\RunOnce: [DSUpdateLauncher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe (Dell)
O4 - HKLM..\RunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe (Softthinks)
O4 - HKLM..\RunOnce: [STToasterLauncher] C:\Program Files (x86)\Dell DataSafe Local Backup\ToasterLauncher.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files (x86)\Dell\DellDock\DellDock.exe File not found
O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files (x86)\Dell\DellDock\DellDock.exe File not found
O4 - Startup: C:\Users\Myrna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = C:\Program Files (x86)\Dell\DellDock\DellDock.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O18 - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files (x86)\Common Files\microsoft shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\GoToAssist: DllName - Reg Error: Key error. - C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\autorun.exe -- File not found
O33 - MountPoints2\E\Shell\phone\command - "" = E:\autorun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*


SafeBootMin:64bit: AppMgmt - Service
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootMin:64bit: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: vmms - Service
SafeBootMin:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX:64bit: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {9BBF6B83-D08E-A347-5A09-D894F1D05E2B} - Internet Explorer
ActiveX: {A170FCC5-8D18-B18C-B751-C01E95EF6CCB} - Themes Setup
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)


========== Files/Folders - Created Within 30 Days ==========

[2010/09/29 20:39:32 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Myrna\Desktop\OTL.exe
[2010/09/29 13:38:03 | 000,000,000 | ---D | C] -- C:\YouTubeDownload
[2010/09/29 13:38:02 | 000,000,000 | ---D | C] -- C:\ConverterOutput
[2010/09/29 13:37:59 | 000,000,000 | ---D | C] -- C:\Users\Myrna\Documents\Cucusoft
[2010/09/29 13:36:15 | 000,258,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unicows.dll
[2010/09/29 13:36:15 | 000,060,273 | ---- | C] (Open Source Software community project) -- C:\Windows\SysWow64\pthreadGC2.dll
[2010/09/29 13:36:14 | 000,110,592 | ---- | C] (Cucusoft Inc.) -- C:\Windows\SysWow64\PropListCtrl.ocx
[2010/09/29 13:36:14 | 000,098,304 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\SysWow64\L3CODECX.AX
[2010/09/29 13:36:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cucusoft
[2010/09/29 13:35:37 | 009,650,223 | ---- | C] (Cucusoft, Inc. ) -- C:\Users\Myrna\YouTube-FLV-Video-Converter.exe
[2010/09/27 17:34:15 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Macrovision
[2010/09/24 20:46:27 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Template
[2010/09/20 16:03:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2010/09/20 16:02:48 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\Google
[2010/09/20 01:00:39 | 000,000,000 | ---D | C] -- C:\Users\Myrna\Documents\MemoriesOnTV
[2010/09/20 00:08:44 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\Nova Development
[2010/09/19 23:39:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nova Development
[2010/09/19 23:38:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nova Development
[2010/09/18 21:08:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mighty Magoo
[2010/09/18 13:38:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cozi Express
[2010/09/17 13:05:04 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee.com
[2010/09/17 13:04:56 | 000,009,984 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfeclnk.sys
[2010/09/17 13:04:49 | 000,149,032 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\mfevtps.exe
[2010/09/17 13:04:48 | 000,529,000 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfehidk.sys
[2010/09/17 13:04:48 | 000,441,072 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfefirek.sys
[2010/09/17 13:04:48 | 000,283,232 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfewfpk.sys
[2010/09/17 13:04:48 | 000,094,736 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mferkdet.sys
[2010/09/17 13:04:48 | 000,075,032 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfenlfk.sys
[2010/09/17 13:04:47 | 000,190,136 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfeavfk.sys
[2010/09/17 13:04:47 | 000,121,248 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\mfeapfk.sys
[2010/09/17 13:04:47 | 000,062,800 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\cfwids.sys
[2010/09/17 10:17:10 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\Microsoft Help
[2010/09/16 22:03:39 | 000,000,000 | ---D | C] -- C:\Users\Myrna\pandecoco_files
[2010/09/16 15:06:25 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Lexmark Productivity Studio
[2010/09/16 15:04:29 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Documents\Scanned Documents
[2010/09/16 15:04:28 | 000,000,000 | ---D | C] -- C:\Users\Myrna\Documents\Fax
[2010/09/16 01:28:57 | 002,441,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2010/09/15 06:21:54 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\tjnet
[2010/09/15 06:18:53 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2010/09/15 06:18:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2010/09/15 03:02:47 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2010/09/15 03:02:47 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2010/09/15 03:02:47 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2010/09/15 03:02:47 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2010/09/15 03:02:47 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2010/09/15 03:02:47 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2010/09/15 03:02:47 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2010/09/15 03:02:47 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2010/09/14 10:48:16 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\magicJack
[2010/09/14 10:48:09 | 000,000,000 | ---D | C] -- C:\ProgramData\magicJack
[2010/09/14 10:47:30 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\mjusbsp
[2010/09/14 10:40:48 | 001,736,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2010/09/14 10:40:39 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2010/09/14 10:40:39 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbscript.dll
[2010/09/14 10:39:05 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2010/09/14 10:39:05 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2010/09/14 10:39:05 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2010/09/14 10:38:56 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010/09/14 10:38:56 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010/09/14 10:38:56 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010/09/14 10:38:56 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010/09/14 10:38:56 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010/09/14 10:38:56 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010/09/14 10:38:40 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2010/09/14 10:38:32 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2010/09/14 10:38:32 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2010/09/14 10:38:02 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010/09/14 10:37:45 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2010/09/14 10:37:37 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2010/09/14 10:37:37 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2010/09/14 10:37:37 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2010/09/14 10:37:36 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2010/09/14 10:37:36 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2010/09/14 10:37:36 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2010/09/14 10:37:36 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2010/09/14 10:36:57 | 001,446,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2010/09/14 10:36:44 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2010/09/14 10:36:44 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010/09/14 10:36:44 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2010/09/14 10:36:44 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2010/09/13 19:33:51 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2010/09/13 18:54:23 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Mozilla
[2010/09/13 18:54:23 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\Mozilla
[2010/09/13 18:54:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010/09/13 18:08:15 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\Diagnostics
[2010/09/13 17:56:15 | 000,000,000 | ---D | C] -- C:\Users\Myrna\Tracing
[2010/09/13 17:55:41 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Skype
[2010/09/13 17:52:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft ActiveSync
[2010/09/13 17:27:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Lx_cats
[2010/09/13 17:25:07 | 001,462,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lxdng.dll
[2010/09/13 17:25:05 | 000,745,984 | ---- | C] ( ) -- C:\Windows\SysNative\lxdncoin.dll
[2010/09/13 17:25:01 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/09/13 17:25:01 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/09/13 17:25:01 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/09/13 17:25:01 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/09/13 17:23:13 | 000,000,000 | ---D | C] -- C:\Program Files\Lexmark Tools for Office
[2010/09/13 17:22:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lexmark Toolbar
[2010/09/13 17:21:46 | 000,110,592 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdnwupd.dll
[2010/09/13 17:21:46 | 000,011,264 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdnwupd.exe
[2010/09/13 17:21:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lexmark 2600 Series
[2010/09/13 17:21:40 | 000,364,544 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdninpa.dll
[2010/09/13 17:21:40 | 000,339,968 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdniesc.dll
[2010/09/13 17:21:40 | 000,126,976 | ---- | C] (Lexmark International Inc.) -- C:\Windows\SysWow64\lxdnlnks.dll
[2010/09/13 17:21:39 | 000,647,168 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdnpmui.dll
[2010/09/13 17:21:39 | 000,540,672 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdnutil.dll
[2010/09/13 17:21:39 | 000,147,456 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdnjswr.dll
[2010/09/13 17:21:39 | 000,106,496 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdninsr.dll
[2010/09/13 17:21:39 | 000,036,864 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdncur.dll
[2010/09/13 17:21:38 | 000,983,121 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\lxdngf.dll
[2010/09/13 17:21:38 | 000,200,704 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdninsb.dll
[2010/09/13 17:21:38 | 000,176,128 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdnins.dll
[2010/09/13 17:21:38 | 000,090,112 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdncub.dll
[2010/09/13 17:21:37 | 001,101,824 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdnserv.dll
[2010/09/13 17:21:37 | 000,843,776 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdnusb1.dll
[2010/09/13 17:21:37 | 000,077,824 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdncu.dll
[2010/09/13 17:21:36 | 000,663,552 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdnhbn3.dll
[2010/09/13 17:21:36 | 000,569,344 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdnlmpm.dll
[2010/09/13 17:21:36 | 000,315,392 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdnih.exe
[2010/09/13 17:21:36 | 000,053,248 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdnprox.dll
[2010/09/13 17:21:35 | 000,851,968 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdncomc.dll
[2010/09/13 17:21:35 | 000,589,824 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdncoms.exe
[2010/09/13 17:21:35 | 000,376,832 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdncomm.dll
[2010/09/13 17:21:35 | 000,360,448 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdncfg.exe
[2010/09/13 17:21:34 | 000,077,906 | ---- | C] (Lexmark International) -- C:\Windows\SysWow64\LXDNcfg.dll
[2010/09/13 17:21:27 | 000,672,256 | ---- | C] ( ) -- C:\Windows\SysNative\LXDNhcp.dll
[2010/09/13 17:21:27 | 000,545,792 | ---- | C] ( ) -- C:\Windows\SysNative\lxdninpa.dll
[2010/09/13 17:21:27 | 000,509,952 | ---- | C] ( ) -- C:\Windows\SysNative\lxdniesc.dll
[2010/09/13 17:21:26 | 001,733,632 | ---- | C] ( ) -- C:\Windows\SysNative\lxdnserv.dll
[2010/09/13 17:21:26 | 001,319,936 | ---- | C] ( ) -- C:\Windows\SysNative\lxdnusb1.dll
[2010/09/13 17:21:26 | 000,757,760 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdnutil.dll
[2010/09/13 17:21:25 | 000,977,920 | ---- | C] ( ) -- C:\Windows\SysNative\lxdnpmui.dll
[2010/09/13 17:21:25 | 000,884,736 | ---- | C] ( ) -- C:\Windows\SysNative\lxdnlmpm.dll
[2010/09/13 17:21:25 | 000,047,104 | ---- | C] ( ) -- C:\Windows\SysNative\lxdnprox.dll
[2010/09/13 17:21:24 | 000,514,048 | ---- | C] ( ) -- C:\Windows\SysNative\lxdnih.exe
[2010/09/13 17:21:24 | 000,235,520 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdnins.dll
[2010/09/13 17:21:24 | 000,184,320 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdninsb.dll
[2010/09/13 17:21:24 | 000,131,072 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdnjswr.dll
[2010/09/13 17:21:24 | 000,090,624 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdninsr.dll
[2010/09/13 17:21:23 | 001,070,080 | ---- | C] ( ) -- C:\Windows\SysNative\lxdnhbn3.dll
[2010/09/13 17:21:23 | 000,983,121 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lxdngf.dll
[2010/09/13 17:21:22 | 001,039,872 | ---- | C] ( ) -- C:\Windows\SysNative\lxdncoms.exe
[2010/09/13 17:21:22 | 000,102,400 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdncu.dll
[2010/09/13 17:21:22 | 000,073,216 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdncub.dll
[2010/09/13 17:21:22 | 000,022,528 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdncur.dll
[2010/09/13 17:21:21 | 001,472,512 | ---- | C] ( ) -- C:\Windows\SysNative\lxdncomc.dll
[2010/09/13 17:21:21 | 000,598,528 | ---- | C] ( ) -- C:\Windows\SysNative\lxdncfg.exe
[2010/09/13 17:21:21 | 000,578,560 | ---- | C] ( ) -- C:\Windows\SysNative\lxdncomm.dll
[2010/09/13 17:21:21 | 000,065,536 | ---- | C] (Lexmark International) -- C:\Windows\SysNative\LXDNcfg.dll
[2010/09/13 17:20:49 | 000,000,000 | ---D | C] -- C:\Program Files\Lexmark 2600 Series
[2010/09/13 17:19:28 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\CyberLink
[2010/09/13 16:42:34 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2010/09/13 16:42:34 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll
[2010/09/13 16:42:34 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2010/09/13 16:42:34 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2010/09/13 14:14:16 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\WildTangent
[2010/09/13 14:12:46 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\Adobe
[2010/09/13 14:11:28 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Macromedia
[2010/09/13 14:11:27 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Adobe
[2010/09/13 14:09:23 | 000,000,000 | -HSD | C] -- C:\System Recovery
[2010/09/13 14:08:40 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Dell
[2010/09/13 14:08:22 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\DataSafeOnline
[2010/09/13 14:08:19 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\Stardock_Corporation
[2010/09/13 14:08:16 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Roxio
[2010/09/13 14:08:05 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\SupportSoft
[2010/09/13 14:07:39 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Searches
[2010/09/13 14:07:39 | 000,000,000 | -H-D | C] -- C:\Users\Myrna\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2010/09/13 14:07:29 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Identities
[2010/09/13 14:07:24 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Contacts
[2010/09/13 14:07:20 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\VirtualStore
[2010/09/13 14:04:03 | 000,000,000 | --SD | C] -- C:\Users\Myrna\AppData\Roaming\Microsoft
[2010/09/13 14:04:03 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Videos
[2010/09/13 14:04:03 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Saved Games
[2010/09/13 14:04:03 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Pictures
[2010/09/13 14:04:03 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Music
[2010/09/13 14:04:03 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Links
[2010/09/13 14:04:03 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Favorites
[2010/09/13 14:04:03 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Downloads
[2010/09/13 14:04:03 | 000,000,000 | R--D | C] -- C:\Users\Myrna\My Documents
[2010/09/13 14:04:03 | 000,000,000 | R--D | C] -- C:\Users\Myrna\Desktop
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\AppData\Local\Temporary Internet Files
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\Templates
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\Start Menu
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\SendTo
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\Recent
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\PrintHood
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\NetHood
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\Documents\My Videos
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\Documents\My Pictures
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\Documents\My Music
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\My Documents
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\Local Settings
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\AppData\Local\History
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\Cookies
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\Application Data
[2010/09/13 14:04:03 | 000,000,000 | -HSD | C] -- C:\Users\Myrna\AppData\Local\Application Data
[2010/09/13 14:04:03 | 000,000,000 | -H-D | C] -- C:\Users\Myrna\AppData
[2010/09/13 14:04:03 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\Temp
[2010/09/13 14:04:03 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\SoftThinks
[2010/09/13 14:04:03 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Local\Microsoft
[2010/09/13 14:04:03 | 000,000,000 | ---D | C] -- C:\Users\Myrna\AppData\Roaming\Media Center Programs

========== Files - Modified Within 30 Days ==========

[2010/09/29 20:44:24 | 002,097,152 | -HS- | M] () -- C:\Users\Myrna\NTUSER.DAT
[2010/09/29 20:39:32 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Myrna\Desktop\OTL.exe
[2010/09/29 20:08:01 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/09/29 16:08:00 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/09/29 14:06:53 | 000,000,995 | ---- | M] () -- C:\Users\Myrna\Desktop\magicJack.lnk
[2010/09/29 13:35:40 | 009,650,223 | ---- | M] (Cucusoft, Inc. ) -- C:\Users\Myrna\YouTube-FLV-Video-Converter.exe
[2010/09/28 10:26:08 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/09/28 10:26:08 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/09/28 10:17:29 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/09/28 10:17:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/09/28 10:17:18 | 1579,438,080 | -HS- | M] () -- C:\hiberfil.sys
[2010/09/27 23:58:40 | 002,651,822 | -H-- | M] () -- C:\Users\Myrna\AppData\Local\IconCache.db
[2010/09/27 19:15:55 | 000,055,296 | ---- | M] () -- C:\Users\Myrna\Documents\raypot bday.fgc
[2010/09/27 10:55:04 | 000,713,888 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/09/27 10:55:04 | 000,615,360 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/09/27 10:55:04 | 000,103,702 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/09/26 15:42:08 | 005,836,521 | ---- | M] () -- C:\Users\Myrna\Documents\halloween_edited-3.psd
[2010/09/26 15:42:02 | 017,659,321 | ---- | M] () -- C:\Users\Myrna\Documents\shirt design_edited-1.psd
[2010/09/26 15:03:44 | 001,695,394 | ---- | M] () -- C:\Users\Myrna\Documents\shirt design.psd
[2010/09/25 20:57:10 | 000,388,928 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/09/25 15:16:45 | 000,105,056 | ---- | M] () -- C:\Users\Myrna\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/09/24 20:47:08 | 000,027,648 | ---- | M] () -- C:\Users\Myrna\Documents\1.xlr
[2010/09/24 20:47:08 | 000,000,170 | ---- | M] () -- C:\Users\Myrna\AppData\Roaming\wklnhst.dat
[2010/09/23 22:48:40 | 000,309,248 | ---- | M] () -- C:\Users\Myrna\18 - 24 Sept 10.xls
[2010/09/23 17:41:25 | 000,043,290 | ---- | M] () -- C:\Users\Myrna\Desktop\new idol judges.jpg
[2010/09/23 15:55:55 | 007,745,739 | ---- | M] () -- C:\Users\Myrna\Documents\Untitled (3).wma
[2010/09/23 15:41:25 | 000,126,209 | ---- | M] () -- C:\Users\Myrna\Documents\Untitled (2).wma
[2010/09/23 15:39:53 | 006,210,159 | ---- | M] () -- C:\Users\Myrna\Documents\Untitled (8).wma
[2010/09/23 06:57:36 | 000,018,944 | ---- | M] () -- C:\Users\Myrna\Documents\set list cavern.xls
[2010/09/22 21:26:46 | 000,525,824 | ---- | M] () -- C:\Users\Myrna\Desktop\dds.scr
[2010/09/20 15:26:44 | 005,835,128 | ---- | M] () -- C:\Users\Myrna\Documents\halloween_edited-2.psd
[2010/09/20 00:39:16 | 000,228,352 | ---- | M] () -- C:\Users\Myrna\Documents\mom bday.fgc
[2010/09/19 23:34:59 | 005,541,998 | ---- | M] () -- C:\Users\Myrna\Documents\halloween_edited-1.psd
[2010/09/19 22:14:38 | 003,761,289 | ---- | M] () -- C:\Users\Myrna\Documents\halloween.psd
[2010/09/17 11:23:58 | 000,260,656 | ---- | M] () -- C:\Users\Myrna\Documents\big - one.jpg
[2010/09/17 11:21:13 | 001,132,468 | ---- | M] () -- C:\Users\Myrna\Documents\small - flyer_edited-1.psd
[2010/09/17 11:15:50 | 000,260,656 | ---- | M] () -- C:\Users\Myrna\Documents\big one copy.jpg
[2010/09/17 11:15:27 | 004,560,580 | ---- | M] () -- C:\Users\Myrna\Documents\big one.psd
[2010/09/16 22:03:40 | 000,004,642 | ---- | M] () -- C:\Users\Myrna\pandecoco.shtml
[2010/09/16 15:17:07 | 001,688,228 | ---- | M] () -- C:\Users\Myrna\Documents\MACON COLLEGE.JPG
[2010/09/15 15:05:28 | 000,184,238 | ---- | M] () -- C:\Users\Myrna\Documents\small - flyer.jpg
[2010/09/15 01:44:59 | 000,018,941 | ---- | M] () -- C:\Users\Myrna\Documents\Ga. State Tax 2009.pdf
[2010/09/15 01:44:09 | 000,031,377 | ---- | M] () -- C:\Users\Myrna\Documents\Federal Tax 2009.pdf
[2010/09/13 21:36:52 | 001,441,890 | ---- | M] () -- C:\Users\Myrna\Documents\flyer1.psd
[2010/09/13 20:18:30 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010/09/13 17:52:55 | 000,000,376 | ---- | M] () -- C:\Windows\ODBC.INI
[2010/09/13 17:25:51 | 000,082,285 | ---- | M] () -- C:\Windows\SysNative\LexFiles.ulf
[2010/09/13 17:06:13 | 000,001,439 | ---- | M] () -- C:\Users\Myrna\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/09/13 16:27:22 | 000,524,288 | -HS- | M] () -- C:\Users\Myrna\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010/09/13 16:27:22 | 000,524,288 | -HS- | M] () -- C:\Users\Myrna\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010/09/13 16:27:22 | 000,065,536 | -HS- | M] () -- C:\Users\Myrna\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010/09/13 14:08:20 | 000,001,980 | ---- | M] () -- C:\Users\Myrna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
[2010/09/13 14:04:03 | 000,000,020 | -HS- | M] () -- C:\Users\Myrna\ntuser.ini
[2010/09/13 14:02:07 | 000,039,219 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2010/09/13 14:02:07 | 000,039,219 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2010/08/31 01:19:12 | 002,441,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll

========== Files Created - No Company Name ==========

[2010/09/29 13:36:15 | 000,094,650 | ---- | C] () -- C:\Windows\SysWow64\HKCU_GNU.reg
[2010/09/29 13:36:15 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010/09/29 13:36:15 | 000,006,144 | ---- | C] () -- C:\Windows\SysWow64\ff_acm.acm
[2010/09/29 13:36:15 | 000,002,004 | ---- | C] () -- C:\Windows\SysWow64\HKLM_GNU.reg
[2010/09/29 13:36:15 | 000,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2010/09/29 13:36:14 | 000,372,736 | ---- | C] () -- C:\Windows\SysWow64\xvid.ax
[2010/09/29 13:36:14 | 000,014,909 | ---- | C] () -- C:\Windows\SysWow64\A_reg.reg
[2010/09/27 18:59:22 | 000,055,296 | ---- | C] () -- C:\Users\Myrna\Documents\raypot bday.fgc
[2010/09/26 15:42:07 | 005,836,521 | ---- | C] () -- C:\Users\Myrna\Documents\halloween_edited-3.psd
[2010/09/26 15:15:01 | 017,659,321 | ---- | C] () -- C:\Users\Myrna\Documents\shirt design_edited-1.psd
[2010/09/26 15:03:15 | 001,695,394 | ---- | C] () -- C:\Users\Myrna\Documents\shirt design.psd
[2010/09/24 20:47:08 | 000,027,648 | ---- | C] () -- C:\Users\Myrna\Documents\1.xlr
[2010/09/24 20:46:26 | 000,000,170 | ---- | C] () -- C:\Users\Myrna\AppData\Roaming\wklnhst.dat
[2010/09/23 17:40:01 | 000,043,290 | ---- | C] () -- C:\Users\Myrna\Desktop\new idol judges.jpg
[2010/09/23 15:55:55 | 007,745,739 | ---- | C] () -- C:\Users\Myrna\Documents\Untitled (3).wma
[2010/09/23 15:41:25 | 000,126,209 | ---- | C] () -- C:\Users\Myrna\Documents\Untitled (2).wma
[2010/09/23 15:39:53 | 006,210,159 | ---- | C] () -- C:\Users\Myrna\Documents\Untitled (8).wma
[2010/09/23 06:51:49 | 000,018,944 | ---- | C] () -- C:\Users\Myrna\Documents\set list cavern.xls
[2010/09/22 21:26:46 | 000,525,824 | ---- | C] () -- C:\Users\Myrna\Desktop\dds.scr
[2010/09/20 16:03:38 | 000,000,896 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/09/20 16:03:36 | 000,000,892 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/09/20 00:39:16 | 000,228,352 | ---- | C] () -- C:\Users\Myrna\Documents\mom bday.fgc
[2010/09/19 23:35:09 | 005,835,128 | ---- | C] () -- C:\Users\Myrna\Documents\halloween_edited-2.psd
[2010/09/19 23:19:50 | 005,541,998 | ---- | C] () -- C:\Users\Myrna\Documents\halloween_edited-1.psd
[2010/09/19 21:09:14 | 003,761,289 | ---- | C] () -- C:\Users\Myrna\Documents\halloween.psd
[2010/09/17 11:23:56 | 000,260,656 | ---- | C] () -- C:\Users\Myrna\Documents\big - one.jpg
[2010/09/17 11:21:13 | 001,132,468 | ---- | C] () -- C:\Users\Myrna\Documents\small - flyer_edited-1.psd
[2010/09/17 11:15:47 | 000,260,656 | ---- | C] () -- C:\Users\Myrna\Documents\big one copy.jpg
[2010/09/17 11:15:27 | 004,560,580 | ---- | C] () -- C:\Users\Myrna\Documents\big one.psd
[2010/09/16 22:03:38 | 000,004,642 | ---- | C] () -- C:\Users\Myrna\pandecoco.shtml
[2010/09/16 15:17:49 | 001,688,228 | ---- | C] () -- C:\Users\Myrna\Documents\MACON COLLEGE.JPG
[2010/09/16 13:32:10 | 000,309,248 | ---- | C] () -- C:\Users\Myrna\18 - 24 Sept 10.xls
[2010/09/16 07:48:33 | 000,000,995 | ---- | C] () -- C:\Users\Myrna\Desktop\magicJack.lnk
[2010/09/15 15:05:25 | 000,184,238 | ---- | C] () -- C:\Users\Myrna\Documents\small - flyer.jpg
[2010/09/15 01:44:59 | 000,018,941 | ---- | C] () -- C:\Users\Myrna\Documents\Ga. State Tax 2009.pdf
[2010/09/15 01:44:09 | 000,031,377 | ---- | C] () -- C:\Users\Myrna\Documents\Federal Tax 2009.pdf
[2010/09/13 21:36:52 | 001,441,890 | ---- | C] () -- C:\Users\Myrna\Documents\flyer1.psd
[2010/09/13 20:18:30 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010/09/13 17:52:55 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2010/09/13 17:25:15 | 000,061,218 | ---- | C] () -- C:\Windows\SysNative\lxdnprpr.chm
[2010/09/13 17:21:44 | 000,000,044 | ---- | C] () -- C:\Windows\SysNative\lxdnrwrd.ini
[2010/09/13 17:21:41 | 000,348,160 | ---- | C] () -- C:\Windows\SysWow64\LXDNinst.dll
[2010/09/13 17:21:40 | 000,335,872 | ---- | C] () -- C:\Windows\SysWow64\lxdncomx.dll
[2010/09/13 17:21:34 | 000,001,633 | ---- | C] () -- C:\Windows\SysWow64\lxdn.loc
[2010/09/13 17:21:28 | 000,528,384 | ---- | C] () -- C:\Windows\SysNative\LXDNinst.dll
[2010/09/13 17:21:23 | 000,299,520 | ---- | C] () -- C:\Windows\SysNative\lxdngrd.dll
[2010/09/13 17:21:21 | 000,001,633 | ---- | C] () -- C:\Windows\SysNative\lxdn.loc
[2010/09/13 17:21:20 | 000,082,285 | ---- | C] () -- C:\Windows\SysNative\LexFiles.ulf
[2010/09/13 17:06:13 | 000,001,439 | ---- | C] () -- C:\Users\Myrna\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/09/13 14:08:20 | 000,001,980 | ---- | C] () -- C:\Users\Myrna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
[2010/09/13 14:04:03 | 000,524,288 | -HS- | C] () -- C:\Users\Myrna\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2010/09/13 14:04:03 | 000,524,288 | -HS- | C] () -- C:\Users\Myrna\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2010/09/13 14:04:03 | 000,262,144 | -HS- | C] () -- C:\Users\Myrna\ntuser.dat.LOG1
[2010/09/13 14:04:03 | 000,065,536 | -HS- | C] () -- C:\Users\Myrna\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2010/09/13 14:04:03 | 000,000,290 | ---- | C] () -- C:\Users\Myrna\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2010/09/13 14:04:03 | 000,000,272 | ---- | C] () -- C:\Users\Myrna\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2010/09/13 14:04:03 | 000,000,020 | -HS- | C] () -- C:\Users\Myrna\ntuser.ini
[2010/09/13 14:04:03 | 000,000,000 | -HS- | C] () -- C:\Users\Myrna\ntuser.dat.LOG2
[2010/09/13 14:04:02 | 002,097,152 | -HS- | C] () -- C:\Users\Myrna\NTUSER.DAT
[2009/07/23 11:49:04 | 000,782,336 | ---- | C] () -- C:\Windows\SysWow64\lxdndrs.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/05/14 05:46:40 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\lxdncaps.dll
[2007/10/02 06:51:09 | 000,069,632 | ---- | C] () -- C:\Windows\SysWow64\lxdncnv4.dll

========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >


< MD5 for: AGP440.SYS >
[2009/07/13 21:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/13 21:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_1a38e2b78a3fe5b8\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.20575_none_39c1885e54505643\atapi.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/13 21:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: IASTOR.SYS >
[2009/06/04 06:54:36 | 000,408,600 | ---- | M] (Intel Corporation) MD5=1D004CB1DA6323B1F55CAEF7F94B61D9 -- C:\Drivers\storage\R228436\f6flpy64\IaStor.sys
[2009/06/04 19:54:36 | 000,408,600 | ---- | M] (Intel Corporation) MD5=1D004CB1DA6323B1F55CAEF7F94B61D9 -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\driver64\IaStor.sys
[2009/06/04 19:54:36 | 000,408,600 | ---- | M] (Intel Corporation) MD5=1D004CB1DA6323B1F55CAEF7F94B61D9 -- C:\Windows\SysWow64\DriverStore\FileRepository\iaahci.inf_amd64_neutral_7fb62b08f6b7117a\iaStor.sys
[2009/06/04 06:54:36 | 000,408,600 | ---- | M] (Intel Corporation) MD5=1D004CB1DA6323B1F55CAEF7F94B61D9 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastor.inf_amd64_neutral_c065a1006c648409\iaStor.sys
[2009/06/04 19:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\driver\IaStor.sys

< MD5 for: IASTORV.SYS >
[2009/07/13 21:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/13 21:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: NETLOGON.DLL >
[2009/07/13 21:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009/07/13 21:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009/07/13 21:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009/07/13 21:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 21:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/13 21:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\drivers\*.sys /90 >
< End of report >
--------------------------------------------------------------------------------------------------------------------

OTL Extras logfile created on: 9/29/2010 8:40:31 PM - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Users\Myrna\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 53.00% Memory free
4.00 Gb Paging File | 2.00 Gb Available in Paging File | 55.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 218.20 Gb Total Space | 180.80 Gb Free Space | 82.86% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MYRNA-PC
Current User Name: Myrna
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-3916433058-672650087-373204734-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{26A24AE4-039D-4CA4-87B4-2F86416018FF}" = Java™ 6 Update 18 (64-bit)
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C73A3942-84C8-4597-9F9B-EE227DCBA758}" = Dell Dock
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"Dell Wireless WLAN Card Utility" = Dell Wireless WLAN Card Utility
"HDMI" = Intel® Graphics Media Accelerator Driver
"Lexmark 2600 Series" = Lexmark 2600 Series

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{10812DE7-2E57-4740-B226-6B3BE34AF9D7}" = Lexmark Tools for Office
"{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{17DFE37C-064E-4834-AD8F-A4B2B4DF68F8}" = Adobe Photoshop Elements 8.0
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java™ 6 Update 20
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3D5044A5-97B8-45C0-B956-BB2376569188}" = Windows Live Movie Maker
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{67635FB6-2F63-4FFB-830B-D4C01597EBA4}" = Microsoft Office Suite Activation Assistant
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD DX
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{81F1C6DE-C053-4C6C-9DE8-ED23D28FA9AB}" = Cozi
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{9C627F78-DBB9-4293-AA89-E83119C39CE9}" = Greeting Card Factory Deluxe 6.0
"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack
"{A33E7B0C-B99C-4EC9-B702-8A328B161AF9}" = Roxio Burn
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1.2
"{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}" = Roxio Burn
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F47C37A4-7189-430A-B81D-739FF8A7A554}" = Consumer In-Home Service Agreement
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 8.0" = Adobe Photoshop Elements 8.0
"Cucusoft YouTube Mate (Downloader+Player+Converter)_is1" = Cucusoft YouTube Mate 7.17
"Dell Dock" = Dell Dock
"GoToAssist" = GoToAssist 8.0.0.514
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"MightyMagoo" = Mighty Magoo
"Mozilla Firefox (3.6.10)" = Mozilla Firefox (3.6.10)
"MSC" = McAfee SecurityCenter
"WildTangent dell Master Uninstall" = WildTangent Games
"WinLiveSuite_Wave3" = Windows Live Essentials

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3916433058-672650087-373204734-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"magicJack" = magicJack

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 9/23/2010 6:43:40 AM | Computer Name = Myrna-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Program Files (x86)\Cozi
Express\CoziExpress.exe".Error in manifest or policy file "" on line . A component
version required by the application conflicts with another component version already
active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 9/23/2010 6:43:40 AM | Computer Name = Myrna-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Program Files (x86)\Cozi
Express\CoziExpress.exe".Error in manifest or policy file "" on line . A component
version required by the application conflicts with another component version already
active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 9/23/2010 12:22:55 PM | Computer Name = Myrna-PC | Source = Application Error | ID = 1000
Description = Faulting application name: splwow64.exe, version: 6.1.7600.16385,
time stamp: 0x4a5bd3ca Faulting module name: ntdll.dll, version: 6.1.7600.16559,
time stamp: 0x4ba9b802 Exception code: 0xc0000710 Fault offset: 0x000000000006e3f9
Faulting
process id: 0x11fc Faulting application start time: 0x01cb5b3b1ecafe37 Faulting application
path: C:\Windows\splwow64.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: d1c033c1-c72e-11df-9db0-a4badbc91046

Error - 9/24/2010 1:47:49 AM | Computer Name = Myrna-PC | Source = Application Error | ID = 1000
Description = Faulting application name: splwow64.exe, version: 6.1.7600.16385,
time stamp: 0x4a5bd3ca Faulting module name: ntdll.dll, version: 6.1.7600.16559,
time stamp: 0x4ba9b802 Exception code: 0xc0000710 Fault offset: 0x000000000006e3f9
Faulting
process id: 0x1868 Faulting application start time: 0x01cb5babe51f6bcf Faulting application
path: C:\Windows\splwow64.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: 435cfd0b-c79f-11df-9db0-a4badbc91046

Error - 9/24/2010 6:35:54 AM | Computer Name = Myrna-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Program Files (x86)\Cozi
Express\CoziExpress.exe".Error in manifest or policy file "" on line . A component
version required by the application conflicts with another component version already
active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 9/24/2010 6:35:54 AM | Computer Name = Myrna-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Program Files (x86)\Cozi
Express\CoziExpress.exe".Error in manifest or policy file "" on line . A component
version required by the application conflicts with another component version already
active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 9/24/2010 6:38:10 AM | Computer Name = Myrna-PC | Source = EventSystem | ID = 4622
Description =

Error - 9/24/2010 4:52:46 PM | Computer Name = Myrna-PC | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Program Files (x86)\Cozi
Express\CoziExpress.exe".Error in manifest or policy file "" on line . A component
version required by the application conflicts with another component version already
active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.

Error - 9/24/2010 4:55:00 PM | Computer Name = Myrna-PC | Source = SideBySide | ID = 16842787
Description = Activation context generation failed for "c:\program files (x86)\windows
live\photo gallery\MovieMaker.Exe".Error in manifest or policy file "c:\program
files (x86)\windows live\photo gallery\WLMFDS.DLL" on line 8. Component identity
found in manifest does not match the identity of the component requested. Reference
is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition
is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Please use
sxstrace.exe for detailed diagnosis.

Error - 9/24/2010 4:56:18 PM | Computer Name = Myrna-PC | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "c:\program files (x86)\microsoft\search
enhancement pack\search helper\searchhelper.dll".Error in manifest or policy file
"c:\program files (x86)\microsoft\search enhancement pack\search helper\searchhelper.dll"
on line 2. Invalid Xml syntax.

[ Broadcom Wireless LAN Events ]
Error - 9/13/2010 2:08:35 PM | Computer Name = Myrna-PC | Source = WLAN-Tray | ID = 0
Description = 14:08:35, Mon, Sep 13, 10 Error - Unable to get current user admin
status

Error - 9/13/2010 2:09:54 PM | Computer Name = Myrna-PC | Source = WLAN-Tray | ID = 0
Description = 14:09:54, Mon, Sep 13, 10 Error - Unable to get current user admin
status

Error - 9/13/2010 2:11:31 PM | Computer Name = Myrna-PC | Source = WLAN-Tray | ID = 0
Description = 13:11:31, Mon, Sep 13, 10 Error - Unable to switch user context, authentication
information not set correctly

[ System Events ]
Error - 9/26/2010 1:40:49 PM | Computer Name = Myrna-PC | Source = bowser | ID = 8003
Description =

Error - 9/26/2010 1:52:47 PM | Computer Name = Myrna-PC | Source = bowser | ID = 8003
Description =

Error - 9/26/2010 7:20:34 PM | Computer Name = Myrna-PC | Source = bowser | ID = 8003
Description =

Error - 9/26/2010 7:22:34 PM | Computer Name = Myrna-PC | Source = bowser | ID = 8003
Description =

Error - 9/26/2010 7:26:32 PM | Computer Name = Myrna-PC | Source = bowser | ID = 8003
Description =

Error - 9/26/2010 7:34:32 PM | Computer Name = Myrna-PC | Source = bowser | ID = 8003
Description =

Error - 9/26/2010 8:38:14 PM | Computer Name = Myrna-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the lmhosts service.

Error - 9/26/2010 9:32:03 PM | Computer Name = Myrna-PC | Source = Application Popup | ID = 1060
Description = \SystemRoot\SysWow64\drivers\pfc.sys has been blocked from loading
due to incompatibility with this system. Please contact your software vendor for
a compatible version of the driver.

Error - 9/26/2010 9:32:18 PM | Computer Name = Myrna-PC | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the lxdnCATSCustConnectService
service to connect.

Error - 9/26/2010 9:32:18 PM | Computer Name = Myrna-PC | Source = Service Control Manager | ID = 7000
Description = The lxdnCATSCustConnectService service failed to start due to the
following error: %%1053


< End of report >


#5 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,774 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:04:40 PM

Posted 30 September 2010 - 04:03 AM

Hi Doomsis,

the 2 PC in one thread thing is not going to work out, it will only cause confusion. I am unclear on what your problem is with the original PC anyways. Are you getting Popups?

You can not spread an infection by logging into an account from someone that has an infected PC at home, however it can happen if you click on links send to you from the infected PC.

There are currently no rootkits for 64bit PCs, which is why gmer and similar tools do not run on 64bit operating systems, as you have them.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#6 Doomsis

Doomsis
  • Topic Starter

  • Members
  • 150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Kaysville, UT
  • Local time:09:40 AM

Posted 01 October 2010 - 10:43 PM

Computer 1 Post #1 is the original computer, which is not a 64 bit. But the 2nd computer is experiencing fake popups. So what you need me to do? The 2nd computer is a 64 bit( computer #2), not mine. I was told to post here because he couldn't help any further and told me it might be a rootkit. Currently i am experiencing something. Someone keeps minimizing my window and it gets on my nerves. It must be clicking randomly or somethin. I go to suntrust and it popups a false advertisement because suntrust never did that before. Of course i'm not dumb enough to click on it. But i did click on one and that's when my computer went crazy. Even pop up blocker won't stop it. Not even my antivirus can't get rid of it. I fell for the farmville advertisement v.v. I heard from person they had to reboot their whole system, but i thought if there is a really bad virus, even thought you reboot, it stays in the computer. O_o unless im wrong?

This is the original computer: "This is for POst #1 COmputer:"

Edited by Doomsis, 01 October 2010 - 10:47 PM.


#7 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,774 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:04:40 PM

Posted 04 October 2010 - 06:48 AM

Hi,

ok. let's do just PC1 for now. Please post the OTL log from that one only and run a scan with Rootkit Unhooker:

Please download Rootkit Unhooker and save it to your Desktop
  • Double-click on RKUnhookerLE to run it
  • Click the Report tab, then click Scan
  • Check Drivers, Stealth, and uncheck the rest
  • Click OK
  • Wait until it's finished and then go to File > Save Report
  • Save the report to your Desktop
Copy the entire contents of the report and paste it in a reply here.

Note** you may get this warning it is ok, just ignore

"Rootkit Unhooker has detected a parasite inside itself!
It is recommended to remove parasite, okay?"


As well as MBRCheck:
Please download MBRCheck.exe to your desktop.
  1. Double click to run it
  2. It will prompt you with some text
  3. Left click on title bar (where program name and path is written)
  4. From menu chose Edit -> Select All
  5. Now just click Enter key on keyboard to copy selected text
  6. Now paste that text here for me.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#8 Doomsis

Doomsis
  • Topic Starter

  • Members
  • 150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Kaysville, UT
  • Local time:09:40 AM

Posted 06 October 2010 - 08:24 PM

MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows XP Professional
Windows Information: Service Pack 2 (build 2600)
Logical Drives Mask: 0x0000001c

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000002`83000000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000000`03000000 (NTFS)

Size Device Name MBR Status
--------------------------------------------
111 GB \\.\PhysicalDrive0 Windows XP MBR code detected
SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644A


Done!
Press ENTER to exit...




RkU Version: 3.8.388.590, Type LE (SR2)
==============================================
OS Name: Windows XP
Version 5.1.2600 (Service Pack 2)
Number of processors #2
==============================================
>Drivers
==============================================
0xF63FD000 D:\WINDOWS\system32\DRIVERS\igxpmp32.sys 5705728 bytes (Intel Corporation, Intel Graphics Miniport Driver)
0xBF1D8000 D:\WINDOWS\System32\igxpdx32.DLL 2605056 bytes (Intel Corporation, DirectDraw® Driver for Intel® Graphics Technology)
0x804D7000 D:\WINDOWS\system32\ntkrnlpa.exe 2142208 bytes (Microsoft Corporation, NT Kernel & System)
0x804D7000 PnpManager 2142208 bytes
0x804D7000 RAW 2142208 bytes
0x804D7000 WMIxWDM 2142208 bytes
0xBF800000 Win32k 1851392 bytes
0xBF800000 D:\WINDOWS\System32\win32k.sys 1851392 bytes (Microsoft Corporation, Multi-User Win32 Driver)
0xBF04E000 D:\WINDOWS\System32\igxpdv32.DLL 1613824 bytes (Intel Corporation, Component GHAL Driver)
0xAA4BB000 D:\WINDOWS\system32\drivers\sthda.sys 1171456 bytes (SigmaTel, Inc., NDRC)
0xAA368000 D:\WINDOWS\system32\DRIVERS\HSX_DPV.sys 1011712 bytes (Conexant Systems, Inc., HSF_DP driver)
0xAA2B2000 D:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys 745472 bytes (Conexant Systems, Inc., HSF_CNXT driver)
0xF734B000 Ntfs.sys 577536 bytes (Microsoft Corporation, NT File System Driver)
0xAA0D7000 D:\WINDOWS\system32\DRIVERS\mrxsmb.sys 454656 bytes (Microsoft Corporation, Windows NT SMB Minirdr)
0xAA227000 D:\WINDOWS\system32\DRIVERS\tcpip.sys 360448 bytes (Microsoft Corporation, TCP/IP Protocol Driver)
0xA858B000 D:\WINDOWS\system32\DRIVERS\srv.sys 356352 bytes (Microsoft Corporation, Server driver)
0xBFFA0000 D:\WINDOWS\System32\ATMFD.DLL 286720 bytes (Adobe Systems Incorporated, Windows NT OpenType/Type 1 Font Driver)
0xA7D88000 D:\WINDOWS\System32\Drivers\HTTP.sys 266240 bytes (Microsoft Corporation, HTTP Protocol Stack)
0xAA45F000 D:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys 237568 bytes (Conexant Systems, Inc., HSF_HWAZL WDM driver)
0xF623F000 D:\WINDOWS\system32\DRIVERS\update.sys 212992 bytes (Microsoft Corporation, Update Driver)
0xF6313000 D:\WINDOWS\system32\DRIVERS\rdpdr.sys 200704 bytes (Microsoft Corporation, Microsoft RDP Device redirector)
0xF748E000 ACPI.sys 188416 bytes (Microsoft Corporation, ACPI Driver for NT)
0xA86E3000 D:\WINDOWS\system32\DRIVERS\mrxdav.sys 184320 bytes (Microsoft Corporation, Windows NT WebDav Minirdr)
0xF731E000 NDIS.sys 184320 bytes (Microsoft Corporation, NDIS 5.1 wrapper driver)
0xAA146000 D:\WINDOWS\system32\DRIVERS\rdbss.sys 180224 bytes (Microsoft Corporation, Redirected Drive Buffering SubSystem Driver)
0xBF024000 D:\WINDOWS\System32\igxpgd32.dll 172032 bytes (Intel Corporation, Intel Graphics 2D Driver)
0xA7746000 D:\WINDOWS\system32\drivers\kmixer.sys 172032 bytes (Microsoft Corporation, Kernel Mode Audio Mixer)
0xAA1D7000 D:\WINDOWS\system32\DRIVERS\netbt.sys 163840 bytes (Microsoft Corporation, MBT Transport driver)
0xF7438000 dmio.sys 155648 bytes (Microsoft Corp., Veritas Software, NT Disk Manager I/O Driver)
0xF63C3000 D:\WINDOWS\system32\DRIVERS\HDAudBus.sys 155648 bytes (Windows ® Server 2003 DDK provider, High Definition Audio Bus Driver v1.0)
0xF636C000 D:\WINDOWS\system32\DRIVERS\ks.sys 143360 bytes (Microsoft Corporation, Kernel CSA Library)
0xF63A0000 D:\WINDOWS\system32\DRIVERS\USBPORT.SYS 143360 bytes (Microsoft Corporation, USB 1.1 & 2.0 Port Driver)
0xAA194000 D:\WINDOWS\System32\drivers\afd.sys 139264 bytes (Microsoft Corporation, Ancillary Function Driver for WinSock)
0xAA499000 D:\WINDOWS\system32\drivers\portcls.sys 139264 bytes (Microsoft Corporation, Port Class (Class Driver for Port/Miniport Devices))
0xAA172000 D:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS 139264 bytes (SUPERAdBlocker.com and SUPERAntiSpyware.com, SASKUTIL.SYS)
0xAA1B6000 D:\WINDOWS\system32\DRIVERS\ipnat.sys 135168 bytes (Microsoft Corporation, IP Network Address Translator)
0x806E2000 ACPI_HAL 134400 bytes
0x806E2000 D:\WINDOWS\system32\hal.dll 134400 bytes (Microsoft Corporation, Hardware Abstraction Layer DLL)
0xF7401000 fltMgr.sys 126976 bytes (Microsoft Corporation, Microsoft Filesystem Filter Manager)
0xF745E000 ftdisk.sys 126976 bytes (Microsoft Corporation, FT Disk Driver)
0xF7303000 Mup.sys 110592 bytes (Microsoft Corporation, Multiple UNC Provider driver)
0xF7420000 atapi.sys 98304 bytes (Microsoft Corporation, IDE/ATAPI Port Driver)
0xA89E0000 D:\WINDOWS\System32\Drivers\dump_atapi.sys 98304 bytes
0xF73D8000 KSecDD.sys 94208 bytes (Microsoft Corporation, Kernel Security Support Provider Interface)
0xF6355000 D:\WINDOWS\system32\DRIVERS\ndiswan.sys 94208 bytes (Microsoft Corporation, MS PPP Framing Driver (Strong Encryption))
0xA8166000 D:\WINDOWS\system32\drivers\wdmaud.sys 86016 bytes (Microsoft Corporation, MMSYSTEM Wave/Midi API mapper)
0xF63E9000 D:\WINDOWS\system32\DRIVERS\VIDEOPRT.SYS 81920 bytes (Microsoft Corporation, Video Port Driver)
0xAA27F000 D:\WINDOWS\system32\DRIVERS\ipsec.sys 77824 bytes (Microsoft Corporation, IPSec Driver)
0xBF000000 D:\WINDOWS\System32\drivers\dxg.sys 73728 bytes (Microsoft Corporation, DirectX Graphics Driver)
0xBF012000 D:\WINDOWS\System32\igxprd32.dll 73728 bytes (Intel Corporation, Intel Graphics 2D Rotation Driver)
0xF73EF000 sr.sys 73728 bytes (Microsoft Corporation, System Restore Filesystem Filter Driver)
0xA86D2000 D:\WINDOWS\System32\Drivers\adfs.SYS 69632 bytes (Adobe Systems, Inc., Adobe Drive File System Driver)
0xF747D000 pci.sys 69632 bytes (Microsoft Corporation, NT Plug and Play PCI Enumerator)
0xF6344000 D:\WINDOWS\system32\DRIVERS\psched.sys 69632 bytes (Microsoft Corporation, MS QoS Packet Scheduler)
0xF638F000 D:\WINDOWS\system32\DRIVERS\sdbus.sys 69632 bytes (Microsoft Corporation, SecureDigital Bus Driver)
0xF77DD000 D:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys 65536 bytes (Broadcom Corporation, Broadcom Corporation NDIS 5.1 ethernet driver)
0xF62E3000 D:\WINDOWS\System32\Drivers\Cdfs.SYS 65536 bytes (Microsoft Corporation, CD-ROM File System Driver)
0xF77ED000 D:\WINDOWS\system32\DRIVERS\nic1394.sys 65536 bytes (Microsoft Corporation, IEEE1394 Ndis Miniport and Call Manager)
0xF772D000 D:\WINDOWS\system32\DRIVERS\arp1394.sys 61440 bytes (Microsoft Corporation, IP/1394 Arp Client)
0xA8493000 D:\WINDOWS\system32\DRIVERS\CDAVFS.sys 61440 bytes (CyberDefender Corp., Antivirus Driver)
0xF76CD000 D:\WINDOWS\system32\drivers\drmk.sys 61440 bytes (Microsoft Corporation, Microsoft Kernel DRM Descrambler Filter)
0xF75CD000 ohci1394.sys 61440 bytes (Microsoft Corporation, 1394 OpenHCI Port Driver)
0xF782D000 D:\WINDOWS\system32\DRIVERS\redbook.sys 61440 bytes (Microsoft Corporation, Redbook Audio Filter Driver)
0xA87A8000 D:\WINDOWS\system32\drivers\sysaudio.sys 61440 bytes (Microsoft Corporation, System Audio WDM Filter)
0xF76ED000 D:\WINDOWS\system32\DRIVERS\usbhub.sys 61440 bytes (Microsoft Corporation, Default Hub Driver for USB)
0xF75DD000 D:\WINDOWS\system32\DRIVERS\1394BUS.SYS 53248 bytes (Microsoft Corporation, 1394 Bus Device Driver)
0xF781D000 D:\WINDOWS\system32\DRIVERS\cdrom.sys 53248 bytes (Microsoft Corporation, SCSI CD-ROM Driver)
0xF761D000 D:\WINDOWS\system32\DRIVERS\CLASSPNP.SYS 53248 bytes (Microsoft Corporation, SCSI Class System Dll)
0xF77FD000 D:\WINDOWS\system32\DRIVERS\i8042prt.sys 53248 bytes (Microsoft Corporation, i8042 Port Driver)
0xF763D000 D:\WINDOWS\system32\DRIVERS\rasl2tp.sys 53248 bytes (Microsoft Corporation, RAS L2TP mini-port/call-manager driver)
0xF75FD000 VolSnap.sys 53248 bytes (Microsoft Corporation, Volume Shadow Copy Driver)
0xF765D000 D:\WINDOWS\system32\DRIVERS\raspptp.sys 49152 bytes (Microsoft Corporation, Peer-to-Peer Tunneling Protocol)
0xF780D000 D:\WINDOWS\system32\DRIVERS\imapi.sys 45056 bytes (Microsoft Corporation, IMAPI Kernel Driver)
0xF75ED000 MountMgr.sys 45056 bytes (Microsoft Corporation, Mount Manager)
0xF764D000 D:\WINDOWS\system32\DRIVERS\raspppoe.sys 45056 bytes (Microsoft Corporation, RAS PPPoE mini-port/call-manager driver)
0xF769D000 D:\WINDOWS\System32\Drivers\NDProxy.SYS 40960 bytes (Microsoft Corporation, NDIS Proxy)
0xF767D000 D:\WINDOWS\system32\DRIVERS\termdd.sys 40960 bytes (Microsoft Corporation, Terminal Server Driver)
0xF760D000 disk.sys 36864 bytes (Microsoft Corporation, PnP Disk Driver)
0xF770D000 D:\WINDOWS\System32\Drivers\Fips.SYS 36864 bytes (Microsoft Corporation, FIPS Crypto Driver)
0xF77CD000 D:\WINDOWS\system32\DRIVERS\intelppm.sys 36864 bytes (Microsoft Corporation, Processor Device Driver)
0xF75BD000 isapnp.sys 36864 bytes (Microsoft Corporation, PNP ISA Bus Driver)
0xF766D000 D:\WINDOWS\system32\DRIVERS\msgpc.sys 36864 bytes (Microsoft Corporation, MS General Packet Classifier)
0xF76FD000 D:\WINDOWS\system32\DRIVERS\netbios.sys 36864 bytes (Microsoft Corporation, NetBIOS interface driver)
0xA76C6000 D:\WINDOWS\System32\Drivers\Normandy.SYS 36864 bytes (RKU Driver)
0xF771D000 D:\WINDOWS\system32\DRIVERS\wanarp.sys 36864 bytes (Microsoft Corporation, MS Remote Access and Routing ARP Driver)
0xF7965000 D:\WINDOWS\System32\Drivers\Modem.SYS 32768 bytes (Microsoft Corporation, Modem Device Driver)
0xF79AD000 D:\WINDOWS\System32\Drivers\Npfs.SYS 32768 bytes (Microsoft Corporation, NPFS Driver)
0xF7995000 D:\WINDOWS\system32\DRIVERS\HIDPARSE.SYS 28672 bytes (Microsoft Corporation, Hid Parsing Library)
0xF783D000 D:\WINDOWS\system32\DRIVERS\PCIIDEX.SYS 28672 bytes (Microsoft Corporation, PCI IDE Bus Driver Extension)
0xF791D000 D:\WINDOWS\system32\DRIVERS\usbehci.sys 28672 bytes (Microsoft Corporation, EHCI eUSB Miniport Driver)
0xF7935000 D:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 24576 bytes (GEAR Software Inc., CD DVD Filter)
0xF792D000 D:\WINDOWS\system32\DRIVERS\kbdclass.sys 24576 bytes (Microsoft Corporation, Keyboard Class Driver)
0xF7925000 D:\WINDOWS\system32\DRIVERS\mouclass.sys 24576 bytes (Microsoft Corporation, Mouse Class Driver)
0xF79BD000 D:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS 24576 bytes (SUPERAdBlocker.com and SUPERAntiSpyware.com, SASDIFSV.SYS)
0xF799D000 D:\WINDOWS\System32\drivers\vga.sys 24576 bytes (Microsoft Corporation, VGA/Super VGA Video Driver)
0xF79A5000 D:\WINDOWS\System32\Drivers\Msfs.SYS 20480 bytes (Microsoft Corporation, Mailslot driver)
0xF7845000 PartMgr.sys 20480 bytes (Microsoft Corporation, Partition Manager)
0xF7945000 D:\WINDOWS\system32\DRIVERS\ptilink.sys 20480 bytes (Parallel Technologies, Inc., Parallel Technologies DirectParallel IO Library)
0xF794D000 D:\WINDOWS\system32\DRIVERS\raspti.sys 20480 bytes (Microsoft Corporation, PTI DirectParallel® mini-port/call-manager driver)
0xF793D000 D:\WINDOWS\system32\DRIVERS\TDI.SYS 20480 bytes (Microsoft Corporation, TDI Wrapper)
0xF7915000 D:\WINDOWS\system32\DRIVERS\usbuhci.sys 20480 bytes (Microsoft Corporation, UHCI USB Miniport Driver)
0xF78FD000 D:\WINDOWS\System32\watchdog.sys 20480 bytes (Microsoft Corporation, Watchdog Driver)
0xF79D5000 D:\WINDOWS\system32\DRIVERS\BATTC.SYS 16384 bytes (Microsoft Corporation, Battery Class Driver)
0xF7AB9000 D:\WINDOWS\system32\DRIVERS\CmBatt.sys 16384 bytes (Microsoft Corporation, Control Method Battery Driver)
0xA8724000 D:\WINDOWS\system32\DRIVERS\mdmxsdk.sys 16384 bytes (Conexant, Diagnostic Interface DRIVER)
0xF72BF000 D:\WINDOWS\system32\DRIVERS\mssmbios.sys 16384 bytes (Microsoft Corporation, System Management BIOS Driver)
0xA8990000 D:\WINDOWS\system32\DRIVERS\ndisuio.sys 16384 bytes (Microsoft Corporation, NDIS User mode I/O Driver)
0xF79CD000 D:\WINDOWS\system32\BOOTVID.dll 12288 bytes (Microsoft Corporation, VGA Boot Driver)
0xF79D1000 compbatt.sys 12288 bytes (Microsoft Corporation, Composite Battery Driver)
0xA8A14000 D:\WINDOWS\System32\drivers\Dxapi.sys 12288 bytes (Microsoft Corporation, DirectX API Driver)
0xF72DB000 D:\WINDOWS\system32\DRIVERS\ndistapi.sys 12288 bytes (Microsoft Corporation, NDIS 3.0 connection wrapper driver)
0xF697E000 D:\WINDOWS\system32\DRIVERS\rasacd.sys 12288 bytes (Microsoft Corporation, RAS Automatic Connection Driver)
0xA8622000 D:\WINDOWS\system32\DRIVERS\secdrv.sys 12288 bytes (Macrovision Europe Ltd, Macrovision SECURITY Driver)
0xF7AB5000 D:\WINDOWS\system32\DRIVERS\wmiacpi.sys 12288 bytes (Microsoft Corporation, Windows Management Interface for ACPI)
0xF7B19000 D:\WINDOWS\System32\Drivers\Beep.SYS 8192 bytes (Microsoft Corporation, BEEP Driver)
0xF7AC1000 dmload.sys 8192 bytes (Microsoft Corp., Veritas Software., NT Disk Manager Startup Driver)
0xF7B77000 D:\WINDOWS\System32\Drivers\dump_WMILIB.SYS 8192 bytes
0xF7B17000 D:\WINDOWS\System32\Drivers\Fs_Rec.SYS 8192 bytes (Microsoft Corporation, File System Recognizer Driver)
0xF7ABD000 D:\WINDOWS\system32\KDCOM.DLL 8192 bytes (Microsoft Corporation, Kernel Debugger HW Extension DLL)
0xF7B1B000 D:\WINDOWS\System32\Drivers\mnmdd.SYS 8192 bytes (Microsoft Corporation, Frame buffer simulator)
0xF7B1D000 D:\WINDOWS\System32\DRIVERS\RDPCDD.sys 8192 bytes (Microsoft Corporation, RDP Miniport)
0xF7AFD000 D:\WINDOWS\system32\DRIVERS\swenum.sys 8192 bytes (Microsoft Corporation, Plug and Play Software Device Enumerator)
0xF7B15000 D:\WINDOWS\system32\DRIVERS\USBD.SYS 8192 bytes (Microsoft Corporation, Universal Serial Bus Driver)
0xF7ABF000 D:\WINDOWS\system32\DRIVERS\WMILIB.SYS 8192 bytes (Microsoft Corporation, WMILIB WMI support library Dll)
0xF7CB5000 D:\WINDOWS\system32\DRIVERS\audstub.sys 4096 bytes (Microsoft Corporation, AudStub Driver)
0xF7CBA000 D:\WINDOWS\System32\drivers\dxgthk.sys 4096 bytes (Microsoft Corporation, DirectX Graphics Driver Thunk)
0xF7BB6000 D:\WINDOWS\System32\Drivers\Null.SYS 4096 bytes (Microsoft Corporation, NULL Driver)
0xF7B85000 pciide.sys 4096 bytes (Microsoft Corporation, Generic PCI IDE Bus Driver)
==============================================
>Stealth
==============================================
0x0B460000 Hidden Image-->AWSDLL.dll [ EPROCESS 0x864D6BE0 ] PID: 2752, 176128 bytes


#9 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,774 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:04:40 PM

Posted 07 October 2010 - 03:30 AM

Hi,

please run ComboFix next:

Please download ComboFix from one of these locations:

Link 1
Link 2

* IMPORTANT !!! Save ComboFix.exe to your Desktop
  • Temporarily disable isable your AntiVirus and AntiSpyware applications. They may otherwise interfere with our tools
    Usually this can be done via a right click on the System Tray icon, check this tutorial for disabling the most common security programs: Link

  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.



Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:



Click on Yes, to continue scanning for malware.

When finished, it will produce a log for you. Please include the C:\ComboFix.txt in your next reply.

This tool is not a toy and not for everyday use.
ComboFix SHOULD NOT be used unless requested by a forum helper


If you need help, see this link:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#10 Doomsis

Doomsis
  • Topic Starter

  • Members
  • 150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Kaysville, UT
  • Local time:09:40 AM

Posted 09 October 2010 - 08:24 PM

Wow didn't know that program was fake. my computer starting to run better since it was eliminated =).

ComboFix 10-10-09.03 - rey 10/09/2010 8:21.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1014.683 [GMT -7:00]
Running from: d:\documents and settings\rey\Desktop\ComboFix.exe
AV: CyberDefender Internet Security *On-access scanning enabled* (Updated) {57779648-62F9-46C1-AB54-69938CF6BB7B}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Uninstall.exe
C:\WinRAR.exe
d:\documents and settings\All Users\Start Menu\Programs\CyberDefender
d:\documents and settings\All Users\Start Menu\Programs\CyberDefender\Registry Cleaner\CyberDefender Registry Cleaner.lnk
d:\documents and settings\All Users\Start Menu\Programs\CyberDefender\Registry Cleaner\Uninstall CyberDefender Registry Cleaner.lnk
d:\documents and settings\rey\Application Data\CyberDefender
d:\documents and settings\rey\Application Data\CyberDefender\Registry Cleaner\cdrcupdate.ini
d:\documents and settings\rey\Application Data\CyberDefender\Registry Cleaner\lastresults.cdr
d:\documents and settings\rey\Application Data\CyberDefender\Registry Cleaner\Regclean\1284924218.reg
d:\documents and settings\rey\Application Data\CyberDefender\Registry Cleaner\Regclean\1284977262.reg
d:\documents and settings\rey\Application Data\CyberDefender\Registry Cleaner\SystemRestore.dat
d:\program files\CyberDefender
d:\program files\CyberDefender\AdPresenter\cdNetAd.dll
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Alert\IE Extensions.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Alert\Service.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Err\Adware.Hotbar.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Err\Casalemedia.com.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Err\Explorer Plugins.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Alert Index.html
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Alert.html
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Cookie Index.html
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Firewall Index.html
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\InstalledMSUpdate Index.html
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\OnLoadMSUpdate.html
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Report Index.html
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Report.html
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Restore Index.html
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Restore.html
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\procrun.log
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Report\2o7.net Cookie.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Report\AtlasDMT.com.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Report\DoubleClick.com.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Report\network.realmedia.com.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Report\QuestionMarket.com.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Report\realmedia.com.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Report\yieldmanager.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\DelayLoad.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Explorer Bars.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Explorer Plugins.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Hosts.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Extensions.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Main.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Menubar.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Searchbar.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Toolbar.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Run.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\ScanActionControl.Ini
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Service.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Startup.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\URLSearchHooks.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\WinLogon.dat
d:\program files\CyberDefender\AntiSpyware\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Status.ini
d:\program files\CyberDefender\AntiSpyware\AWSDLL.dll
d:\program files\CyberDefender\AntiSpyware\cdas17.exe
d:\program files\CyberDefender\AntiSpyware\CDAScfg.ini
d:\program files\CyberDefender\AntiSpyware\cdaspat.dat.03
d:\program files\CyberDefender\AntiSpyware\cdaspat1.dat.03
d:\program files\CyberDefender\AntiSpyware\cdaspat11.dat.03
d:\program files\CyberDefender\AntiSpyware\cdaspat12.dat.03
d:\program files\CyberDefender\AntiSpyware\cdaspat13.dat.03
d:\program files\CyberDefender\AntiSpyware\cdaspat14.dat.03
d:\program files\CyberDefender\AntiSpyware\cdaspat2.dat.03
d:\program files\CyberDefender\AntiSpyware\cdaspat3.dat.03
d:\program files\CyberDefender\AntiSpyware\cdaspat4.dat.03
d:\program files\CyberDefender\AntiSpyware\CDASSettings.ini
d:\program files\CyberDefender\AntiSpyware\CDASUpdateHost.ini
d:\program files\CyberDefender\AntiSpyware\CDAVFS.dll
d:\program files\CyberDefender\AntiSpyware\cdDownloadList.ini
d:\program files\CyberDefender\AntiSpyware\cdissversion.ini
d:\program files\CyberDefender\AntiSpyware\cdspnsrv.dll
d:\program files\CyberDefender\AntiSpyware\config.ini
d:\program files\CyberDefender\AntiSpyware\ConsolidatedResources.dll
d:\program files\CyberDefender\AntiSpyware\CybDefSB.dll
d:\program files\CyberDefender\AntiSpyware\CybDefSBUI.dll
d:\program files\CyberDefender\AntiSpyware\CybDefSysUI.dll
d:\program files\CyberDefender\AntiSpyware\CyberDefenderEDC.exe
d:\program files\CyberDefender\AntiSpyware\Download\cdaspat.dat.03
d:\program files\CyberDefender\AntiSpyware\Download\cdaspat1.dat.03
d:\program files\CyberDefender\AntiSpyware\Download\cdaspat11.dat.03
d:\program files\CyberDefender\AntiSpyware\Download\cdaspat12.dat.03
d:\program files\CyberDefender\AntiSpyware\Download\cdaspat13.dat.03
d:\program files\CyberDefender\AntiSpyware\Download\cdaspat14.dat.03
d:\program files\CyberDefender\AntiSpyware\Download\cdaspat2.dat.03
d:\program files\CyberDefender\AntiSpyware\Download\cdaspat3.dat.03
d:\program files\CyberDefender\AntiSpyware\Download\cdaspat4.dat.03
d:\program files\CyberDefender\AntiSpyware\EDCConfig.exe
d:\program files\CyberDefender\AntiSpyware\gacutil.exe
d:\program files\CyberDefender\AntiSpyware\Includes\Alert.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Adware.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Alert Internet Explorer.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Alert Startup Program.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Browser Changer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Browser Plugin.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\BrowserChanger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\BrowserPlugin.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Bundler.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\categories.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Commercial Key Logger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\CommercialKeyLogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Cookie.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Data Miner.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\DataMiner.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Key Logger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\KeyLogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Low Risk Adware.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\LowRiskAdware.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Malware.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\P2P.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\RAT.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Report Tracking Cookie.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Restore tracking cookie.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Search Hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\SearchHijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Spyware.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Stealth.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Trojan Downloader.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Trojan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\TrojanDownloader.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Category\Worm.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\007 Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\007 Spy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\123mania.com.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\180ad Solution.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\180search Assistant.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\180SearchAssistant.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\180Solutions.com SurfAssistant.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\2020Search.com.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\2020Search.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\2nd-thought.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\2nd thought.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\404search.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\7AdPower.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\7FaSSt.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\7search-BrowserAccelerator.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\911-search.info.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ABC Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ABetterInternet.Aurora.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ABetterInternet.Ceres.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ABetterInternet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\About Blank.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Abox.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Absolute Key Logger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\abxtoolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Ace Club Casino.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AceNotes Free.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Aconti-Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Aconti.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ActiveSearch (411 Ferret).txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ActiveSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ActMon Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Acx Install.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Ad-Flow.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Ad-Popper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AdBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AdBars.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AdBreak.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AdBureau.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AdDestroyer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Adintelligence.AproposToolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Adlogix Browser Hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Adlogix.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Admanager Controller.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Admess.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Admilli Service.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AdPlus-SurferBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AdRoar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Adrotator.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AdShooter.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Adtomi.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Advanced Searchbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Advertbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Advertising.com.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Adviva.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AdvSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Advware.BetterInternet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ADWARE.BINET.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Adware.FOne.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Adware.HotSearchBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AFA Internet Enhancement.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Ahead Nero Burning Rom.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Alexa Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Alexa.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\All-In-One Telcom.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AllCyberSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Altnet Software.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Altnet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AltnetBDE.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AlwaysUpdatedNews.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Alyon.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Andlotsmore.com dialler.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AntiLamer Light.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AntivirusGold.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Aornum.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Apropos.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Ares.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AsianRaw Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Atwola Cookie.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Aureate-Radiate.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Aureate Group Mail.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Aureate or Radiate.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Aureate.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AutoSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\AutoUpdate.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Avenue Media.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Azesearch Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BackDoor-BDI.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Backdoor.Agent.EN.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Backdoor.Delf.is.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Backdoor.Hackdoor.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Backdoor.Jeem.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Backdoor.Prorat.16.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Backdoor.Rbot.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Backdoor.Thunk.E.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Backdoor.win32.bifrose.d.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BackWeb Lite.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BackWeb.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BargainBuddy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BDE Projector.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BDHelper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BDPlugin.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BDSearch Plugin.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BearShare.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Begin2search.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Belcaro GoldenRetriever.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Berbew Trojan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BFast.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BHO_DealHelper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Bho_SEP.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Bho_SideFind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BigTrafficNetwork.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Bikinidesk.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BingoFun Games.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BlazeFind.Bridge.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BlazeFind.Browserhelper2.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BlazeFind.SearchEnhancer.ISTbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BlazeFind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BlazingTools Perfect Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Blondes.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Bluemountain.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Bokja NetInfo.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BonziBuddy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BookedSpace.Remanent.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BookedSpace.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BPS Spyware Remover.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Bridge.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Brilliant Digital.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BroadCastPC.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BrowserAid.Featured-Results.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BrowserAid.INetP.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BrowserAid.RunDLL16.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BrowserAid.SearchandClick.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BrowserAid.Startium.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BrowserAid.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BrowserPal.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BrowserToolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BuddyLinks.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BuddyMediaBHO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Bulla.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Bullguard Popup Ad.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BullsEye Network.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BullsEye.CashBack.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BullsEye.eXact Advertising.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BullsEye.eXact.ISEXEng.Trojan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\BullsEye.NaviSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\C-Dilla.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\C2.lop.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CallingHome.biz.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Carpe Diem.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Carpediem.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CAS.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Cashback.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CasinoClient.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CasinoOnNet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CasinoPalazzo.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Central-24 Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CES webmail.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Claria.Dashbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Claria.Precision Time.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Claria.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Claria.Weatherscope.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ClearSearch.Net.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CleverIEHooker.Jeired.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ClickAgents.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ClickAlchemy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ClickSpring.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ClickSpring_MediaTickets.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ClickSpring_PurityScan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Clickyes2enter.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ClimaxBucks.InternetOptimizer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ClipGenie.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Clkoptimizer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Clocksync.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Comedy-Planet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Comet Cursor.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Comet Systems.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Comload.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Commander Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Common Components for About Blank.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Common Components for BC Computing spy software.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Common Components for IGetNet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Common Components for Keyloggers.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Common Components for MBP dialers.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Common Components for SBSoft.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Common Components For Spectorsoft.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Common Components for Transponders.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CommonName.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Comsoft.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Conducent FlexPak.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Conducent TimeSink.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ConfuSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Connector Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CoolSavings.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CoolWebSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CoreMetrics.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Coulomb Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Coulomb Ltd.Content Access Plugin.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CouponAge.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CouponsAndOffers.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CrackSpider.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CrazyWinnings.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Crush.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\CustomToolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Cydoor.TOPicks.a.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Cydoor.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Daily Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DailyWinner.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DailyWinnerBHO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Daosearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DAP.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Dapsol Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Dapsol.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DashBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Date Regon.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DateMaker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DCON.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DealHelper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DelfinProject.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Derbiz.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Desktop Hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Dialer.Axload.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Dialer.IEDisco.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Dialer.Scom.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Dialer.UDconnect.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Dialer2004.com.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DialerData Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DialerMaker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DialerOffline.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Dialerplatform.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DialXS.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Diamond Deal Casino.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Divago.Surfairy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DivX Pro 5.1.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Dluca-M.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Domain Sponsor Cookie.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DoubleClick.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Download Accelerator Plus ads.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Download Accelerator.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Downloader.Lunii.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DownloadPlus.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DownloadReceiver.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DownloadWare.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DSO Exploit.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DSSAgent.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DyFuCA.InternetOptimizer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\DyFuCA.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\E2G.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\E2Give.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\EasyBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\EasySearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\EasyWebSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eBates MoneyMaker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eBates.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eBayToolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eBlaster.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eGroup.InstantAccess.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eGroupDialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Elite toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\EliteBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Elitum.EliteBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Emesx.dll.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\emusic.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\EnConfidence.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ePlugin.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ErrorGuard.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ESP Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eSyndicate BHO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eUniverse.IncrediFind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eUniverse.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eUniverse.UpdMgr.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\EverAd.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eXact Advertising.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eXact ISEXEng.Trojan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ExactSearchBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Excite.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ExDialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ezCyberSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\EzSearchbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\eZula HotText.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\EzuLa.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\F__kSite.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FactoryNetwork Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Fairtale Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Farmmext.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Farsighter.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Fast Video Player Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FastClick.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Fastfind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FastSeeker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Fastvideoplayer dialler.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FastVideoPlayer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FavoriteMan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FCI.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FileFreedom.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FindSpy.A.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FindWhateverNow.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FizzleWizzle Search Bar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FlashEnhancer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FlashenhancerBHO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FlashGet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FlashTrack.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Flingstone Infamous Downloader.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Flyswat.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Forbes.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Free Scratch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FreeConnectLtd.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FreeScratchAndWin.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FreeScratchCards.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Fresh Bar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Funny Trojan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FunWeb.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\FunWebProducts.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GAIN-eWallet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GAIN-Supported Software.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GAIN.DashBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GAIN.Date Manager.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GAIN.Precision Time.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GAIN.Screen Scenes.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GAIN.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GAIN.Weatherscope.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GameSpy Arcade.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Gator.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GetMirar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GigaTech SuperBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GigexAgent-SpeedDelivery.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Global Netcom Inc.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GlobalCS Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GlobalDialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GloboSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Gloggle.Shing.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Gloogle Downloader.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GMSoft Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GogoTools.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GoHip.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GoIndirect.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Golden Eye.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Golden Palace Casino.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GoZilla.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Grip Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Grokster.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\GSIM.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\H@tKeysH@@k.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Hacker.ag.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Haczyk.Ulubione.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\HalfLemon.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\HangUpTeam.TechnicRat.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Haxdoor-H.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Hellz Little Spy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Hi-Wire.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Hijacker.IEHost.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\HitBox.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\HitHopper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\HitsLink.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Holystic-Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Holystic.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\HomepageProtector.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Hotsearchbar Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\HotSearchBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Hungry Hands porn hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\HungryHands BHO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\HuntBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\HuntToolBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Huysuzseks.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Hyperlinker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Ibero Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IberoDialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IBIS Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\icannnews.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ICOO Loader.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IE Access.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IE Driver.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IE Plugin.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ie2bar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEAccess.IEDial.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEFeats.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEHijacker.Find4u.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEHijacker.HereToFind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEHijacker.Hotoffers.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEHijacker.richfind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEHIjacker.SearchExe.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEHijacker.ZestyFind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IELoader.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEMenuExtension Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEPageHelper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IEPlugin.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IESearchToolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\iGetNet.Natural Language Navigation.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IGetNet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ILookup.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ILookup.Vroomsearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ImIServer IEPlugin.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IncrediFindBHO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\InetSpeak.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Instafinder.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Instant Access.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IntermixMedia.KeenValue.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Internet Washer Pro.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\InternetDelivery.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\InternetOptimizer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\InternetWasher.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IntexusDial.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IPinsight.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\iSearch desktop search.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\iSearch Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\iSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ISearchTech.ISTactiveX.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ISearchTech.ISTbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ISearchTech.ISTsvc.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ISearchTech.ISTsvc_Updater.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ISearchTech.PowerScan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ISearchTech.SideFind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ISearchTech.Slotch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ISearchTech.YSB.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\istbar.dotcomToolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ISTbar.Slotch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\istbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\IwantSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\iWon.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Jeem.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Jeired.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Jraun.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\KazaaLite.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Kazoom.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\KeenValue PerfectNav.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\KeenValue.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\KEXplorer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\KeyCaptor.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Keyhost Hijacker - JRaun.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Klez.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\LimeShop.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Limewire.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\LinkGrabber 99.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\LinkMaker Hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\LinkMaker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\LinkSynergy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Locators.com Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Look2Me.Topconverting.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Look2Me.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Lop.com.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Lop.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\LoudMarketing.WinFavorites.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Lovefreegames Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Lycos Sidesearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Lycos.SideSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\LZIO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MagicControl.Agent.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MagicControl.Av.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MagicControl.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MagicControl.WinMgts.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MainPean Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Mainpean Stardialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MainPean.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MakeThemCry.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Malware.Psguard.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Malware.TopAntiSpyware.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MarketDart.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Marketscore Internet Accelerator.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Marketscore Netsetter.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Marketscore(Netsetter).txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Masta Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Mastacash.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MatrixDialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Maxifiles.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Media Pass.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Media Tickets.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MediaBuddy (FileFreedom).txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MediaCharger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MediaGateway.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MediaLoads Enhanced.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MediaMotor.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MediaPass.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MediaPlex.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MediaTicket.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MediaTickets.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MediaUpdate.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MegaSearch Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Megasearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Memory Watcher.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MemoryMeter.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MemoryWatcher.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Metadirect hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Metadirect.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\metareward.com Cookie.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MicroGaming.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\midADdle.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Mindset Interactive - Favoriteman.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MiniBug.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Mirar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MoeMoney.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MOM.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MoneyTree.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Morpheus.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MPGCom Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MSConnect.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MSView.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MX-Targeting.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\My Daily Horoscope.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\My Search.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\My Way.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\myDoom.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MyNetProtector.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MyPointsPointAlert.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\MySearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\n-CASE.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NavExcel.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NavHelper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NaviSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Navpmc.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\nCASE.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NeededWare.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Neo Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Netpal.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NetRatings Premeter.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NetRatings.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Netservices BV.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Netsonic.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Netster Searchbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Netvenda.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Netvision Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Netword Agent.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Network Essentials.Hopper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Network Essentials.ScBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Network Essentials.Search-Exe.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Network Essentials.SmartpopOops.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Network Essentials.SmartPops.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Network Essentials.WindowEnhancer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Network1.Popups.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NetworkEssentials.SCBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NetworkEssentials.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\New.net.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NewDotNet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NewsUpdate.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NJStar Asian Explorer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NN_Bar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NoCreditCard Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NowBox.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NV-Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\NVDialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Oemji Bar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Oemji Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OfferAgent.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OffshoreClicks.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\One2one Viewer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OnFlow.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OnlDial.MaConnect.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OnlDial.Ole.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OnWebMedia.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Oodlz.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OpenSite.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OpinionBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OrbitExplorer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OutLaster.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Overpro.com.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\OverPro.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\P2P Networking.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ParisVoyeur Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PeopleOnPage.Apropos.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PeopleOnPage.AproposMedia.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PeopleOnPage.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PeoplePC Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Peper Trojan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Peper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Perfect Keylogger Lite.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Perfect Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Phony search redirector.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Piratos.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PKings-IEHelper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Pops-Stop.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Pops Stop.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PopUpDefence.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Popuper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Popuppers Advertising.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PowerReg Scheduler.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PowerSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Powerstrip.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PrecisionPop.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PrecisionTime.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Preview AdService.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ProDyne Webinstall.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PromulGate.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Prutect.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PSGuard Desktop Hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PSGuard.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Puper.UpdateSearches.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\PurityScan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\QHosts.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Qidion Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Quicknavigate Hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\QuickPage.SwitchDialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\QuickSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Radlight 3 PRO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Radlight Divx Player.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RadLight Media Player.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Radlight.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RapidBlaster.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RasDial.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RCPrograms.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Redhotnetworks.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RedV.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Regsync.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RelatedLinks BHO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RelatedLinks.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Remote Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ReplaceSearch.BHO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Rex Services.Adtrojan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RichFind.Q.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RightFinder.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RiverSoftware.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Roings.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Rsync.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Ruboskizo.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RVP.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\RXToolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Rydial.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Safecast.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Safeguard Protect.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SafeSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SafeSurfing.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SahAgent.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SandBoxer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SaveNow - WhenUSave.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SaveNow.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Scam.Trackzapper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SCBAR.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SDBot.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Search-Pounder.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Search Assistant.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Search Miracle.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Search Relevancy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Search Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Searchalot.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchAndClick.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchbarCash.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchCentrix.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchEnhancement hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchEnhancement.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchExe.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchFast.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchForIt Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Searchforit.com.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchForIt.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Searchit.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchMaid.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchMiracle.EliteBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Searchmiracle.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchPounders Hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchRelevancy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchSquire.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchV.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\searchwww.hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SearchWWW.IEToolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SecondThought.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Secret-Crush.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SecretCrush.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Security iGuard.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\seekseek hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Seeq Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Sesso.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ShareDocs.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ShopAtHome.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ShopAtHomeSelect.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ShopForGood.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ShopNav Hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ShopNav.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ShopNavSearch.Srng.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ShowBehind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\sICRO Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SideFind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SideSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SinSource.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Slagent.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SlimFTP.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SlotchBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SmartBrowser.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SmartPops - Network Essentials.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SmitFraud.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Softomate Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Specific911 Hijack.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Spector Pro Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpediaBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Speedblaster.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpeedDelivery.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Spy Recon Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpyArsenal HomeKeylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpyBlast.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpyBuddy Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpyDeleter.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpyKeylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpyKiller 2005.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpyPC Keylogger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpySheriff.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Spyware.Perezzz.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpywareNo.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SpywareNuker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SquireSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Srng.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\StarInstall(MainPean).txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Startnow.Hyperbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Startpage.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Starware Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Starware.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Statblaster.MemoryWatcher.b.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Statblaster.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\StoolBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\StopPop.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SubSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SunInfoConnect.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SupaSeek.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Super-gals.com.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Super-spider Hijacker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SuperBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Superlogy.com.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Supersmileys.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SupremeSpy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SureBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Surf Accuracy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Surfairy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SurfAssistant.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Surfbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SurfSideKick.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SwimSuitNetwork.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SwitchDialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SyncroAd.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SySsfitb.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\System Soap Pro.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\System Soap.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\System Spy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\System1060.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SysWeb-Telecom Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SysWebTelecom.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\SyvumClickTM.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TafBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Target Saver.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TargetNet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Targetsaver.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Targetsoft.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Teknum Updater.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TestTimer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TheSearchMall.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TIB Browser.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TIBS Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TIBS dialers.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TIBS Premium Rate Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TIBS Premium Rate Dialler.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TightVNC.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Timbuktu Pro.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Timesink.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TinTel dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TinTel.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TinyBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Tinyo.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ToolbarCC.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TopConverting Crazywinnings.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TopConverting Downloader.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Topconverting.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TOPicks.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TopMoxie.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TopPicks.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TopRebates.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TopSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TrafficHog.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.Ahexe.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.Alchemy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.BI.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.Bolger.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.Ceres.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.LocalNRD.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.Multimpp.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.MXTarget.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.Pynix.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.Speer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.Twain-tech.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Transponder.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Troj.Dloader.FQ.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan-Downloader-Hidden.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan-Downloader-Stubby.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan-Fake Warning.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan Common Components.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan Downloader Apher.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan drsnsrch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Banker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.CallingHome.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Delf.IT.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Dialer.FU.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.DNS Changer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Downloader.BHOmod.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Downloader.CT.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Downloader.Domcom.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Downloader.FH.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Downloader.FQ.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Downloader.Pacimedia.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Downloader.Small.BDZ.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Dropper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Drsnsrch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Dumaru.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.FakeAlert.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.FakeSpy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.FavAdd.ae.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Favadd.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Hacktool.Rootkit.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Pakes.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Popuper.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Proxy.BK.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Proxy.Webber.O.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Sheldor.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Spywad.A.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.StartPage.BN.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.startpage.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Stubby.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Win32.Revop.c.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Win32.Sdbot-QG.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Trojan.Wuviewer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TSCash.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Tubby Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TubbyBHO.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TurboDownload.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TV Media Display.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TvMedia.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Twain-tech.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TwainTech.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Twister.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\TX4.BrowserAd.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\UCmore.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\UKVideo2 Dialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Unknown Trojan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ValueAd.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Virtumonde.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\VLoading.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\vx2 (Transponder).txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\VX2 Transponder variant.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\VX2.aBetterInternet.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\VX2.BTGrab.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\VX2.DealsOnline.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\VX2.Host.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\VX2.LocalNRD.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\VX2.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\W32.Bagle.I.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\W32.HLLW.Xolox.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WareOut.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Web3000.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WebDialer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WebHancer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WebInstall.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WebRebates.TopRebates.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WebRebates.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WebSearch Toolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WebSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WebTrends live.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WhenU.ClockSync.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WhenU.Control.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WhenU.DesktopToolbar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WhenU.SaveNow.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WhenU.Search.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WhenU.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WhenU.WeatherCast.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WhenUSave.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WhenUSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WildMedia.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WildTangent.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Win-Spy.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Win32.Backdoor.Jeem.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\win32.blaster.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Win32.Downloader.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Win32.LolaWeb.Trojan.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\win32.mydoom.p@mm.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Win32.Netsky.B.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Win32.Perfiler.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Win32.Sasser.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Win32.Welchia.B.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Win32.winshow.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WinAD.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WindowEnhancer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Windows AdControl.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WindUpdate.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WindUpdates.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WinFavorites.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Wink.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Winpage Blocker.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Winpup.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Winpup32.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WinTools.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Wishbone.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Wowvirgins.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\WurldMedia.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Xrenoder.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Xupiter.OrbitExplorer.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Xupiter.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\YourSiteBar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ZANGO Search Assistant.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Zango.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Zestyfind.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ZipClix.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\Zoombar.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Description\ZSearch.txt
d:\program files\CyberDefender\AntiSpyware\Includes\Loading Index.htm
d:\program files\CyberDefender\AntiSpyware\Includes\NoItems Index.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Notify.wav
d:\program files\CyberDefender\AntiSpyware\Includes\Report Spyware.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Report.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Restore Spyware.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Restore.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Settings Browser Helper Objects.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Settings Internet Explorer.htm
d:\program files\CyberDefender\AntiSpyware\Includes\Settings Startup Program.htm
d:\program files\CyberDefender\AntiSpyware\InstallResource.dll
d:\program files\CyberDefender\AntiSpyware\iss_sm.ico
d:\program files\CyberDefender\AntiSpyware\ISSIntro.exe
d:\program files\CyberDefender\AntiSpyware\sum.htm
d:\program files\CyberDefender\AntiSpyware\support.ico
d:\program files\CyberDefender\AntiSpyware\support_sm.ico
d:\program files\CyberDefender\AntiSpyware\UserGuide\cdaschk.ini
d:\program files\CyberDefender\AntiSpyware\UserGuide\cybdefantispy.set
d:\program files\CyberDefender\AntiSpyware\uwfile.dat
d:\program files\CyberDefender\AntiSpyware\WsLiveUpdateHost.ini
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdaspat1.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdaspat11.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdaspat12.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdaspat13.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdaspat14.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdaspat2.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdaspat3.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdaspat4.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdavpat.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdavpat.dat.04
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdavpat.dat.06
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\cdiss03.exe
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\stbar03.exe
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\stbarpat.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\tmp\cdavpat.dat.03
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\tmp\cdavpat.dat.05
d:\program files\CyberDefender\AntiSpyware\WsLiveUpFiles\tmp\cdiss03.exe
d:\program files\CyberDefender\AntiSpyware\wslvucfg.ini
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\History\2010-03-05.ini
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\History\2010-03-19.ini
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\History\2010-10-04.ini
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Activity Index.html
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Activity.html
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Html\Quarantine Index.html
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\DelayLoad.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Explorer Bars.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Explorer Plugins.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Hosts.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Extensions.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Main.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Menubar.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Plugins.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Searchbar.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\IE Toolbar.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\NT Run.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Run.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\RunOnce.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\RunOnceEx.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\RunServices.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Service.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Shell.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\Startup.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\URLSearchHooks.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Shield\WinLogon.dat
d:\program files\CyberDefender\AntiVirus\{106E035A-17C5-40A6-AFCD-823947C4E88D}\Status.ini
d:\program files\CyberDefender\AntiVirus\cdav19.exe
d:\program files\CyberDefender\AntiVirus\CDAVcfg.ini
d:\program files\CyberDefender\AntiVirus\CDAVFS.dll
d:\program files\CyberDefender\AntiVirus\CDAVFS.inf
d:\program files\CyberDefender\AntiVirus\CDAVFS.INF.OLD
d:\program files\CyberDefender\AntiVirus\CDAVFS.sys
d:\program files\CyberDefender\AntiVirus\cdavpat.dat.03
d:\program files\CyberDefender\AntiVirus\cdavpat.dat.04
d:\program files\CyberDefender\AntiVirus\cdavpat.dat.05
d:\program files\CyberDefender\AntiVirus\cdavpat.dat.06
d:\program files\CyberDefender\AntiVirus\CDAVSettings.ini
d:\program files\CyberDefender\AntiVirus\CDAVUpdateHost.ini
d:\program files\CyberDefender\AntiVirus\cdiss03.exe
d:\program files\CyberDefender\AntiVirus\cdissversion.ini
d:\program files\CyberDefender\AntiVirus\cdspnsrv.dll
d:\program files\CyberDefender\AntiVirus\CybDefAV.dll
d:\program files\CyberDefender\AntiVirus\CybDefAVUI.dll
d:\program files\CyberDefender\AntiVirus\CybDefExt.dll
d:\program files\CyberDefender\AntiVirus\CyberDefenderEDC.exe
d:\program files\CyberDefender\AntiVirus\DisableWindowsFirewall.exe
d:\program files\CyberDefender\AntiVirus\Download\cdavpat.dat.03
d:\program files\CyberDefender\AntiVirus\Download\cdavpat.dat.04
d:\program files\CyberDefender\AntiVirus\Download\cdavpat.dat.06
d:\program files\CyberDefender\AntiVirus\Download\cdiss03.exe
d:\program files\CyberDefender\AntiVirus\EnableWindowsFirewall.exe
d:\program files\CyberDefender\AntiVirus\Html\History eMail.htm
d:\program files\CyberDefender\AntiVirus\Html\History File.htm
d:\program files\CyberDefender\AntiVirus\Html\Loading Index.htm
d:\program files\CyberDefender\AntiVirus\Html\NoItems Index.htm
d:\program files\CyberDefender\AntiVirus\Html\Notify.wav
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-03-16.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-03-17.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-03-22.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-03-24.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-03-25.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-03-27.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-03-30.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-04-01.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-04-05.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-04-08.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-04-12.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-04-16.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-04-26.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-08-30.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-01.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-04.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-06.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-08.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-09.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-11.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-13.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-14.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-15.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-20.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-23.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-24.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-28.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-09-29.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-10-01.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-10-03.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-10-04.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-10-06.ini
d:\program files\CyberDefender\AntiVirus\UpdateHistory\2010-10-07.ini
d:\program files\CyberDefender\AntiVirus\UserGuide\CybDefAV.set
d:\program files\CyberDefender\AntiVirus\UserGuide\CybDefAVchk.ini
d:\program files\CyberDefender\AntiVirus\uwcdsoe.dll
d:\program files\CyberDefender\AntiVirus\uwcdsolk.dll
d:\program files\CyberDefender\AntiVirus\uwhook32.dll
d:\program files\CyberDefender\AntiVirus\wslvucfg.ini
d:\program files\CyberDefender\cdinstx.exe
d:\program files\CyberDefender\cdinstx.log
d:\program files\CyberDefender\cdrun.exe
d:\program files\CyberDefender\earlySpam\cdaspm.dll
d:\program files\CyberDefender\earlySpam\cdinstx.log
d:\program files\CyberDefender\earlySpam\images\block_normal.bmp
d:\program files\CyberDefender\earlySpam\images\block_over.bmp
d:\program files\CyberDefender\earlySpam\images\earlySPAMBtn.bmp
d:\program files\CyberDefender\earlySpam\images\grant_normal.bmp
d:\program files\CyberDefender\earlySpam\images\grant_over.bmp
d:\program files\CyberDefender\earlySpam\images\options_normal.bmp
d:\program files\CyberDefender\earlySpam\images\options_over.bmp
d:\program files\CyberDefender\earlySpam\images\spy_normal.bmp
d:\program files\CyberDefender\earlySpam\images\spy_over.bmp
d:\program files\CyberDefender\earlySpam\oeapiinitcom.dll
d:\program files\CyberDefender\earlySpam\oecom.dll
d:\program files\CyberDefender\earlySpam\oestore.dll
d:\program files\CyberDefender\earlySpam\uwmyjunk.ini
d:\program files\CyberDefender\eula.rtf
d:\program files\CyberDefender\HomePage\CDWebVw.dll
d:\program files\CyberDefender\InstallModule\AdPresenter\CSIDL_PROGRAM_FILES\AdPresenter\cdNetAd.dll
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\cdaspm.dll
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\images\block_normal.bmp
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\images\block_over.bmp
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\images\earlySPAMBtn.bmp
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\images\grant_normal.bmp
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\images\grant_over.bmp
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\images\options_normal.bmp
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\images\options_over.bmp
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\images\spy_normal.bmp
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\images\spy_over.bmp
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\oeapiinitcom.dll
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\oecom.dll
d:\program files\CyberDefender\InstallModule\AntiSpam\CSIDL_PROGRAM_FILES\earlySpam\oestore.dll
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\AWSDLL.DLL
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\cdinstx.exe
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\cdmyidd.dll
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\database.db
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\gacutil.exe
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Includes\Loading.htm
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Includes\NoItems Index.htm
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Includes\Password Cookie.htm
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Includes\Passwords Index.htm
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Includes\Privacy Index.htm
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\charset.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\cookie.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\defaultCharset.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\form.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\frame.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\gray.htm
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\green.htm
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\host.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bg.jpg
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bg_button.jpg
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bg_top.jpg
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bt_go.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bt_go_down.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bt_go_over.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bt_grey.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bt_red - Copy.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bt_red.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bt_red_down.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\bt_red_over.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\caution.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\frame.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\logo.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\logo.jpg
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\logo_orange.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\topbar.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\topbar_orange.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\images\warning.gif
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\popup.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\port.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\protocol.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\red.htm
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\referrer.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\scamalert.htm
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\scamalert.htm1
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\script.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\security.html
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\style.css
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\Scam Alert\yellow.htm
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\st.ico
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\stbarpat.dat.03
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\UserGuide\cybdefstbar.set
d:\program files\CyberDefender\InstallModule\SecurityToolbar\CSIDL_LOCAL_APPDATA\CyberDefender\UserGuide\stbarchk.ini
d:\program files\CyberDefender\Registry Cleaner\BeforeUninstall.exe
d:\program files\CyberDefender\Registry Cleaner\cdinstx.ini
d:\program files\CyberDefender\Registry Cleaner\CDRC.dll
d:\program files\CyberDefender\Registry Cleaner\CDRCU.DLL
d:\program files\CyberDefender\Registry Cleaner\CDregclean.exe
d:\program files\CyberDefender\Registry Cleaner\cdswx.exe
d:\program files\CyberDefender\Registry Cleaner\cduninstx.exe
d:\program files\CyberDefender\Registry Cleaner\InstallManager_CY3_CY3.exe
d:\program files\CyberDefender\Registry Cleaner\KillCDRCProcesses.exe
d:\program files\CyberDefender\Registry Cleaner\startcdrc.exe
d:\program files\CyberDefender\Registry Cleaner\support.ico
d:\program files\CyberDefender\Registry Cleaner\unins000.dat
d:\program files\CyberDefender\Registry Cleaner\unins000.exe
d:\program files\CyberDefender\Registry Cleaner\unins000.msg
d:\program files\CyberDefender\SecurityStatus.ini
d:\program files\CyberDefender\UserGuide\CybDefISS.set
d:\program files\CyberDefender\UserGuide\CybDefISSchk.ini
d:\program files\CyberDefender\VistaAdmin.exe
d:\program files\Mighty Magoo\miGHtymagoolib32.dll
d:\program files\Mighty Magoo\mmAGootl.dll

.
((((((((((((((((((((((((( Files Created from 2010-09-09 to 2010-10-09 )))))))))))))))))))))))))))))))
.

2010-10-08 04:44 . 2010-10-08 04:44 14808 ----a-w- d:\program files\Mozilla Firefox\plugin-container.exe
2010-10-08 04:44 . 2010-10-08 04:44 718296 ----a-w- d:\program files\Mozilla Firefox\mozcpp19.dll
2010-09-24 16:06 . 2010-09-24 16:06 -------- d-----w- d:\windows\system32\LogFiles
2010-09-19 19:14 . 2010-09-19 19:14 -------- d-----w- d:\program files\Microsoft
2010-09-19 19:14 . 2010-09-19 19:14 -------- d-----w- d:\program files\MSN Toolbar
2010-09-19 19:14 . 2010-09-19 19:14 -------- d-----w- d:\program files\Microsoft Silverlight
2010-09-16 18:28 . 2010-09-16 18:28 -------- d-----w- d:\windows\system32\wbem\Repository
2010-09-10 22:54 . 2010-09-10 22:54 -------- d-----w- d:\documents and settings\rey\Application Data\SUPERAntiSpyware.com
2010-09-10 22:54 . 2010-09-10 22:54 -------- d-----w- d:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2010-09-10 22:53 . 2010-09-10 22:54 -------- d-----w- d:\program files\SUPERAntiSpyware
2010-09-10 19:29 . 2010-04-29 22:39 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2010-09-10 19:29 . 2010-10-04 20:15 -------- d-----w- d:\program files\Malwarebytes' Anti-Malware
2010-09-10 19:29 . 2010-09-10 19:29 -------- d-----w- d:\documents and settings\All Users\Application Data\Malwarebytes
2010-09-10 19:29 . 2010-04-29 22:39 20952 ----a-w- d:\windows\system32\drivers\mbam.sys
2010-09-10 19:06 . 2010-09-10 19:06 -------- d-----w- d:\documents and settings\rey\Local Settings\Application Data\Help

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6}"= "d:\documents and settings\rey\Local Settings\Application Data\CyberDefender\cdmyidd.dll" [2010-03-10 3958088]

[HKEY_CLASSES_ROOT\clsid\{a26503fe-b3b8-4910-a9dc-9cbd25c6b8d6}]
[HKEY_CLASSES_ROOT\Cdmyidd.SecurityToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{CD24EB02-9831-4838-99D0-726D411B1328}]
[HKEY_CLASSES_ROOT\Cdmyidd.SecurityToolbar]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6}]
2010-03-10 00:07 3958088 ----a-w- d:\documents and settings\rey\Local Settings\Application Data\CyberDefender\cdmyidd.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6}"= "d:\documents and settings\rey\Local Settings\Application Data\CyberDefender\cdmyidd.dll" [2010-03-10 3958088]

[HKEY_CLASSES_ROOT\clsid\{a26503fe-b3b8-4910-a9dc-9cbd25c6b8d6}]
[HKEY_CLASSES_ROOT\Cdmyidd.SecurityToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{CD24EB02-9831-4838-99D0-726D411B1328}]
[HKEY_CLASSES_ROOT\Cdmyidd.SecurityToolbar]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6}"= "d:\documents and settings\rey\Local Settings\Application Data\CyberDefender\cdmyidd.dll" [2010-03-10 3958088]

[HKEY_CLASSES_ROOT\clsid\{a26503fe-b3b8-4910-a9dc-9cbd25c6b8d6}]
[HKEY_CLASSES_ROOT\Cdmyidd.SecurityToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{CD24EB02-9831-4838-99D0-726D411B1328}]
[HKEY_CLASSES_ROOT\Cdmyidd.SecurityToolbar]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Aim"="d:\program files\AIM\aim.exe" [2010-03-08 3972440]
"cdloader"="d:\documents and settings\rey\Application Data\mjusbsp\cdloader2.exe" [2010-08-15 50592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="d:\windows\system32\igfxtray.exe" [2007-03-31 138008]
"HotKeysCmds"="d:\windows\system32\hkcmd.exe" [2007-03-31 162584]
"Persistence"="d:\windows\system32\igfxpers.exe" [2007-03-31 138008]
"Broadcom Wireless Manager UI"="d:\windows\system32\WLTRAY.exe" [2007-03-17 1392640]
"SigmatelSysTrayApp"="d:\program files\SigmaTel\C-Major Audio\WDM\stsystra.exe" [2007-05-10 405504]
"SunJavaUpdateSched"="d:\program files\Java\jre6\bin\jusched.exe" [2010-01-12 149280]
"Adobe Reader Speed Launcher"="d:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-22 35760]
"AdobeCS4ServiceManager"="d:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"MacrokeyManager"="WTMKM.exe" [2009-12-23 5873384]
"QuickTime Task"="c:\program files\qttask.exe" [2010-03-19 421888]
"iTunesHelper"="C:\iTunesHelper.exe" [2010-07-21 141608]
"lxdnmon.exe"="d:\program files\Lexmark 2600 Series\lxdnmon.exe" [2010-02-04 660136]
"Mightymagoo"="d:\program files\Mighty Magoo\mightymagoo32.exe" [2010-09-02 159232]

d:\documents and settings\All Users\Start Menu\Programs\Startup\
Digital Line Detect.lnk - d:\program files\Digital Line Detect\DLG.exe [2008-9-4 24576]
McAfee Security Scan Plus.lnk - d:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "d:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 22:21 548352 ----a-w- d:\program files\SUPERAntiSpyware\SASWINLO.DLL

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\EA Games\\Ultima Online Mondain's Legacy\\client.exe"=
"d:\\Program Files\\AIM\\aim.exe"=
"d:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"d:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\iTunes.exe"=
"d:\\WINDOWS\\system32\\lxdncoms.exe"=
"d:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdnpswx.exe"=
"d:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdntime.exe"=
"d:\\Program Files\\Lexmark 2600 Series\\lxdnmon.exe"=
"d:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdnjswx.exe"=
"d:\\Documents and Settings\\rey\\Application Data\\mjusbsp\\magicJack.exe"=

R1 SASDIFSV;SASDIFSV;d:\program files\SUPERAntiSpyware\sasdifsv.sys [2/17/2010 11:25 AM 12872]
R1 SASKUTIL;SASKUTIL;d:\program files\SUPERAntiSpyware\SASKUTIL.SYS [5/10/2010 11:41 AM 67656]
R2 lxdn_device;lxdn_device;d:\windows\system32\lxdncoms.exe -service --> d:\windows\system32\lxdncoms.exe -service [?]
R2 WTService;WTService;d:\windows\system32\atwtusb.exe -s --> d:\windows\system32\atwtusb.exe -s [?]
S2 lxdnCATSCustConnectService;lxdnCATSCustConnectService;d:\windows\system32\spool\drivers\w32x86\3\lxdnserv.exe [8/30/2010 10:41 PM 94208]
S3 CDAVFS;CDAVFS;d:\windows\system32\drivers\CDAVFS.sys [3/3/2010 3:44 AM 67424]
S3 McComponentHostService;McAfee Security Scan Component Host Service;d:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [1/15/2010 5:49 AM 227232]
S3 npggsvc;nProtect GameGuard Service;d:\windows\system32\GameMon.des -service --> d:\windows\system32\GameMon.des -service [?]
.
Contents of the 'Scheduled Tasks' folder

2010-10-08 d:\windows\Tasks\AppleSoftwareUpdate.job
- d:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 18:50]

2010-08-30 d:\windows\Tasks\prismShakeIcon.job
- d:\program files\NCH Software\Prism\prism.exe [2010-08-27 18:51]

2010-08-27 d:\windows\Tasks\videopadSevenDays.job
- d:\program files\NCH Software\VideoPad\videopad.exe [2010-08-27 18:53]

2010-08-30 d:\windows\Tasks\videopadShakeIcon.job
- d:\program files\NCH Software\VideoPad\videopad.exe [2010-08-27 18:53]

2010-10-09 d:\windows\Tasks\WGASetup.job
- d:\windows\system32\KB905474\wgasetup.exe [2010-07-11 05:18]
.
.
------- Supplementary Scan -------
.
uInternet Settings,ProxyOverride = ;*.local;<local>
uInternet Settings,ProxyServer = http=127.0.0.1:5555
IE: E&xport to Microsoft Excel - c:\progra~1\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - d:\documents and settings\rey\Application Data\Mozilla\Firefox\Profiles\mywz4lhb.default\
FF - prefs.js: browser.search.defaulturl - hxxp://aim.search.aol.com/search/search?query={searchTerms}&invocationType=tb50-ff-aim-chromesbox-en-us
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL -
FF - plugin: c:\mozilla plugins\npitunes.dll
FF - plugin: c:\program files\Plugins\npqtplugin.dll
FF - plugin: c:\program files\Plugins\npqtplugin2.dll
FF - plugin: c:\program files\Plugins\npqtplugin3.dll
FF - plugin: c:\program files\Plugins\npqtplugin4.dll
FF - plugin: c:\program files\Plugins\npqtplugin5.dll
FF - plugin: c:\program files\Plugins\npqtplugin6.dll
FF - plugin: c:\program files\Plugins\npqtplugin7.dll
FF - plugin: d:\documents and settings\rey\Application Data\Facebook\npfbplugin_1_0_3.dll
FF - plugin: d:\documents and settings\rey\Application Data\Mozilla\Firefox\Profiles\mywz4lhb.default\extensions\{38AB6A6C-CC4C-4f9e-A3DD-3C5681EF18A1}\plugins\npsoe.dll
FF - plugin: d:\program files\kSolo\npAVX.dll
FF - plugin: d:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: d:\program files\Mozilla Firefox\plugins\npdnupdater2.dll
FF - plugin: d:\program files\Mozilla Firefox\plugins\npijjiCHPlugin.dll
FF - plugin: d:\program files\Mozilla Firefox\plugins\npijjiFFPlugin1.dll
FF - plugin: d:\program files\MSN Toolbar\Platform\5.0.1423.0\npwinext.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - d:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
FF - user.js: network.protocol-handler.warn-external.dnupdate - false);user_pref(network.protocol-handler.warn-external.dnupdate, false);user_pref(network.protocol-handler.warn-external.dnupdate, falsed:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
d:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
d:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - ORPHANS REMOVED - - - -

URLSearchHooks-~03402f96-3dc7-4285-bc50-9e81fefafe43} - (no file)
URLSearchHooks-~54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - (no file)
URLSearchHooks-~CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
URLSearchHooks-HookURL - (no file)
URLSearchHooks-Rank - (no file)
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-CyberDefender Early Detection Center - d:\program files\CyberDefender\AntiSpyware\cdas17.exe
HKCU-Run-CyberDefender Registry Cleaner - d:\program files\CyberDefender\Registry Cleaner\CDregclean.exe
HKLM-Run-CyberDefender Registry Cleaner - (no file)
AddRemove-Malwarebytes' Anti-Malware_is1 - d:\program files\Malwarebytes' Anti-Malware\unins000.exe
AddRemove-WinRAR archiver - C:\uninstall.exe
AddRemove-{08234a0d-cf39-4dca-99f0-0c5cb496da81} - d:\program files\Bing Bar Installer\InstallManager.exe
AddRemove-{AA63780B-DDB7-417b-8A13-E5AFBE08E807} - d:\program files\CyberDefender\cdinstx.exe
AddRemove-{AC5352DA-F4F2-4A59-A1BF-41546342746B} - d:\program files\CyberDefender\cdinstx.exe



[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
"ImagePath"="d:\windows\system32\GameMon.des -service"
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-448539723-1897051121-1801674531-1003\Software\SecuROM\License information*]
"datasecu"=hex:5a,eb,97,cd,3b,9c,87,15,f6,46,40,15,77,95,5f,19,fe,ab,9f,64,01,
5e,56,82,1f,87,eb,4f,b2,50,c7,c7,b0,8c,d5,59,17,74,77,9a,74,4d,af,4c,06,08,\
"rkeysecu"=hex:cb,bd,f2,61,5a,4e,c6,95,f2,29,8b,82,ba,6b,3d,44
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(676)
d:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
Completion time: 2010-10-09 08:29:46
ComboFix-quarantined-files.txt 2010-10-09 15:29

Pre-Run: 462,307,328 bytes free
Post-Run: 758,378,496 bytes free

- - End Of File - - D3E867A8EE99E70B61A399DA9AA62419

#11 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,774 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:04:40 PM

Posted 11 October 2010 - 08:54 AM

Hi,

I will be checking on that and post back shortly.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#12 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,774 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:04:40 PM

Posted 12 October 2010 - 03:03 AM

Hi,

CyberDefender was previously listed as a rogue on the Rogue/Suspect Anti-Spyware Products List out of concerns that the vendor behind the product was the same company that previously released Spyblocs/eBlocs, an application with a bad history of aggressive, deceptive advertising and illegal force-installs. After a probation period and further testing it was determined the program exhibited no serious problems and it was de-listed from the Rogue/Suspect list. However, there are have other reports of concern:As such, I would recommend removing this program and replacing it with one that has a proven track record like Malwarebytes Anti-Malware or those mentioned in Bleeping Computer's Freeware Replacements For Common Commercial Apps.

If you wish, we can restore the program, but I would advise to use a different, more reliable one.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#13 Doomsis

Doomsis
  • Topic Starter

  • Members
  • 150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Kaysville, UT
  • Local time:09:40 AM

Posted 13 October 2010 - 12:17 AM

everytime i restart i see the recovery console option. Am i suppose to reboot? Do i have to? Well i don't want the program back >_<. well i have a computer experiencing those bad popups i used to have. You said the only way that computer got infected because a file sent from my infected computer to that the new computer. This computer is a more newer computer. its the computer posted as post#2 computer 2.

Edited by Doomsis, 13 October 2010 - 12:23 AM.


#14 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,774 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:04:40 PM

Posted 14 October 2010 - 05:20 PM

Hi,

if you have been on the same websites it could well be that you have infected the PCs indepedendly.

Before looking at the different PC, I would like to run the following script on the first PC, to remove some leftovers:
1. Close any open browsers.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

3. Open notepad and copy/paste the text in the quotebox below into it:

QUOTE
SecCenter::
AV: CyberDefender Internet Security *On-access scanning enabled* (Updated) {57779648-62F9-46C1-AB54-69938CF6BB7B}
DDS::
uInternet Settings,ProxyServer = http=127.0.0.1:5555
Registry::
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6}"=-
[-HKEY_CLASSES_ROOT\clsid\{a26503fe-b3b8-4910-a9dc-9cbd25c6b8d6}]
[-HKEY_CLASSES_ROOT\Cdmyidd.SecurityToolbar.1]
[-HKEY_CLASSES_ROOT\TypeLib\{CD24EB02-9831-4838-99D0-726D411B1328}]
[-HKEY_CLASSES_ROOT\Cdmyidd.SecurityToolbar]
folder::
d:\documents and settings\rey\Local Settings\Application Data\CyberDefender


Save this as CFScript.txt, in the same location as ComboFix.exe




Refering to the picture above, drag CFScript into ComboFix.exe

When finished, it shall produce a log for you at C:\ComboFix.txt which I will require in your next reply.

If you want to install a different anti virus program two good antivirus programs free for non-commercial home use are Avast! and Antivir
Note: You should only have one antivirus installed at a time. Having more than one antivirus program installed at once is likely to cause conflicts and may well decrease your overall protection as wellas impairing the performance of your PC.

Please install an anti virus program as quickly as possible.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#15 Doomsis

Doomsis
  • Topic Starter

  • Members
  • 150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Kaysville, UT
  • Local time:09:40 AM

Posted 15 October 2010 - 04:27 PM

it says Cyberdefender is still activated and won't allow for it to run




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users