Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google searches being redirected to scour.com


  • This topic is locked This topic is locked
2 replies to this topic

#1 Patrick P

Patrick P

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:47 PM

Posted 07 March 2011 - 10:02 AM

Hello,

For the past few months, I've been having a problem with Google searches. I get randomly redirected when clicking on the search results links and regardless of whether I actually get to the website I'm trying to get to or an advertisement, it opens a new window when I'd rather it open in my current tab. I use IE 8 but I tried using Google Chrome to no avail; same problem exists.

I've run scans with Malwarebytes' Anti-Malware and avast antivirus but neither one detects any problems or infections.
I don't know what to do! This is really starting to get annoying and I hope someone can help me fix this.

Thanks so much!

Also, here is my OldTimer log, if it might help you guys figure this out faster. I appreciate any help you all can give me!



Here is OTL.txt:

OTL logfile created on: 3/7/2011 8:29:29 AM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 63.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 133.03 Gb Total Space | 101.78 Gb Free Space | 76.51% Space Free | Partition Type: NTFS
Drive D: | 16.00 Gb Total Space | 10.49 Gb Free Space | 65.56% Space Free | Partition Type: NTFS

Computer Name: THRIFTYINN | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 360 Days

========== Processes (SafeList) ==========

PRC - [2011/03/07 08:23:02 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2010/12/30 10:52:32 | 027,284,808 | ---- | M] (Anand Systems Inc) -- C:\Program Files\ASI\ASI FrontDesk 5.3\ASIFD.exe
PRC - [2010/09/07 10:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/09/07 10:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/01/17 10:29:57 | 000,312,320 | ---- | M] (Ashkon Technology LLC) -- C:\Program Files\WebAllow\weballow.exe
PRC - [2010/01/15 06:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
PRC - [2008/12/08 09:36:48 | 001,086,776 | ---- | M] (brother) -- C:\Program Files\Brownie\BrStsWnd.exe
PRC - [2008/04/13 19:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/04/07 08:10:52 | 000,576,024 | ---- | M] (PDF Complete Inc) -- C:\Program Files\PDF Complete\pdfsvc.exe
PRC - [2007/07/24 12:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2007/01/04 20:48:50 | 000,112,152 | ---- | M] (InterVideo) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
PRC - [2006/07/10 11:53:08 | 000,872,448 | ---- | M] () -- C:\WINDOWS\SMINST\Scheduler.exe


========== Modules (SafeList) ==========

MOD - [2011/03/07 08:23:02 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
MOD - [2010/08/23 10:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (0303801263746719mcinstcleanup) McAfee Application Installer Cleanup (0303801263746719)
SRV - [2010/09/07 10:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010/09/07 10:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010/09/07 10:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/01/15 06:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2008/04/07 08:10:52 | 000,576,024 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2007/07/24 12:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2007/01/04 20:48:50 | 000,112,152 | ---- | M] (InterVideo) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)


========== Driver Services (SafeList) ==========

DRV - [2010/09/07 09:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010/09/07 09:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010/09/07 09:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010/09/07 09:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\windows\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010/09/07 09:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/09/07 09:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009/02/02 07:44:56 | 000,054,656 | ---- | M] (DEVGURU Co., LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ATMFVsp.sys -- (ATMFVsp)
DRV - [2009/02/02 07:44:20 | 000,103,424 | ---- | M] (DEVGURU Co., LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ATMFNET.sys -- (ATMFNET)
DRV - [2009/02/02 07:44:00 | 000,054,656 | ---- | M] (DEVGURU Co., LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ATMFNVsp.sys -- (ATMFNVsp)
DRV - [2009/02/02 07:43:46 | 000,054,656 | ---- | M] (DEVGURU Co., LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ATMFCVsp.sys -- (ATMFCVsp)
DRV - [2009/02/02 07:43:32 | 000,054,528 | ---- | M] (DEVGURU Co., LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ATMFMdm.sys -- (ATMFMdm)
DRV - [2009/02/02 07:43:20 | 000,038,528 | ---- | M] (DEVGURU Co., LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ATMFBUS.sys -- (ATMFBUS)
DRV - [2009/01/05 04:18:16 | 000,011,520 | ---- | M] (DEVGURU Co., LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ATMFFLT.sys -- (ATMFFLT)
DRV - [2008/04/13 11:04:34 | 000,019,455 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wVchNTxx.sys -- (iAimFP4)
DRV - [2008/04/13 11:04:32 | 000,012,063 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wSiINTxx.sys -- (iAimFP3)
DRV - [2008/04/13 11:04:30 | 000,033,599 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV04nt.sys -- (iAimTV3)
DRV - [2008/04/13 11:04:30 | 000,029,311 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV01nt.sys -- (iAimTV0)
DRV - [2008/04/13 11:04:30 | 000,025,471 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV10nt.sys -- (iAimTV5)
DRV - [2008/04/13 11:04:30 | 000,023,615 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wCh7xxNT.sys -- (iAimTV4)
DRV - [2008/04/13 11:04:30 | 000,022,271 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV06nt.sys -- (iAimTV6)
DRV - [2008/04/13 11:04:30 | 000,019,551 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV02NT.sys -- (iAimTV1)
DRV - [2008/04/13 11:04:28 | 000,161,020 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\i81xnt5.sys -- (i81x)
DRV - [2008/04/13 11:04:28 | 000,012,415 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV01nt.sys -- (iAimFP0)
DRV - [2008/04/13 11:04:28 | 000,012,127 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV02NT.sys -- (iAimFP1)
DRV - [2008/04/13 11:04:28 | 000,011,871 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV09NT.sys -- (iAimFP7)
DRV - [2008/04/13 11:04:28 | 000,011,807 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV07nt.sys -- (iAimFP5)
DRV - [2008/04/13 11:04:28 | 000,011,775 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV05NT.sys -- (iAimFP2)
DRV - [2008/04/13 11:04:28 | 000,011,295 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV08NT.sys -- (iAimFP6)
DRV - [2007/05/11 13:00:14 | 000,045,056 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HECI.sys -- (HECI) Intel®
DRV - [2007/04/17 21:09:28 | 000,011,032 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\regi.sys -- (regi)
DRV - [2007/01/23 14:13:26 | 000,036,608 | ---- | M] (Infineon Technologies AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ifxtpm.sys -- (IFXTPM)
DRV - [2002/04/04 00:32:06 | 000,028,416 | R--- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\windows\system32\DRIVERS\symmpi.sys -- (Symmpi)
DRV - [2000/07/24 01:01:00 | 000,019,537 | ---- | M] (Brother Industries Ltd.) [Kernel | Auto | Running] -- C:\windows\System32\drivers\BrPar.sys -- (BrPar)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=93&bd=all&pf=cmdt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [Binary data over 100 bytes]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=93&bd=all&pf=cmdt

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=93&bd=all&pf=cmdt
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.webcheckinn.com/index2.cfm
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: pt-PT@dictionaries.addons.mozilla.org:9.10.13.0
FF - prefs.js..extensions.enabledItems: danish@dictionaries.addons.mozilla.org:1.6.17
FF - prefs.js..extensions.enabledItems: es-es@dictionaries.addons.mozilla.org:1.3.0
FF - prefs.js..extensions.enabledItems: es-AR@dictionaries.addons.mozilla.org:1.1.1
FF - prefs.js..extensions.enabledItems: fr-FR@dictionaries.addons.mozilla.org:3.5
FF - prefs.js..extensions.enabledItems: fr@dictionaries.addons.mozilla.org:3.5
FF - prefs.js..extensions.enabledItems: it-IT@dictionaries.addons.mozilla.org:3.1
FF - prefs.js..extensions.enabledItems: en-AU@dictionaries.addons.mozilla.org:2.1.1
FF - prefs.js..extensions.enabledItems: pl@dictionaries.addons.mozilla.org:1.0.20091103
FF - prefs.js..extensions.enabledItems: ru@dictionaries.addons.mozilla.org:0.4.3
FF - prefs.js..extensions.enabledItems: fi@dictionaries.addons.mozilla.org:0.11.0
FF - prefs.js..extensions.enabledItems: nl-NL@dictionaries.addons.mozilla.org:2.2.0
FF - prefs.js..extensions.enabledItems: sl@dictionaries.addons.mozilla.org:0.1.1


[2010/02/05 18:12:34 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2010/02/25 23:00:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions
[2010/01/20 20:11:19 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/02/05 18:33:37 | 000,000,000 | ---D | M] (Dansk ordbog) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\danish@dictionaries.addons.mozilla.org
[2010/02/05 18:33:37 | 000,000,000 | ---D | M] (Diccionario espa˝ol Argentina) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\es-AR@dictionaries.addons.mozilla.org
[2010/02/05 18:33:37 | 000,000,000 | ---D | M] (Diccionario de Espa├▒ol/Espa├▒a) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\es-es@dictionaries.addons.mozilla.org
[2010/02/05 18:33:39 | 000,000,000 | ---D | M] (Suomen kielen oikoluku) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\fi@dictionaries.addons.mozilla.org
[2010/02/10 17:09:38 | 000,000,000 | ---D | M] (Dictionnaire fran├žais ┬źR├ęforme 1990┬╗) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\fr@dictionaries.addons.mozilla.org
[2010/02/10 17:09:38 | 000,000,000 | ---D | M] (Dictionnaire fran├žais ┬źClassique┬╗) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\fr-FR@dictionaries.addons.mozilla.org
[2010/02/05 18:33:39 | 000,000,000 | ---D | M] (Woordenboek Nederlands) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\nl-NL@dictionaries.addons.mozilla.org
[2010/02/05 18:33:37 | 000,000,000 | ---D | M] (Polski slownik poprawnej pisowni) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\pl@dictionaries.addons.mozilla.org
[2010/02/05 18:33:37 | 000,000,000 | ---D | M] (Corrector para Português Europeu) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\pt-PT@dictionaries.addons.mozilla.org
[2010/02/05 18:33:38 | 000,000,000 | ---D | M] (Russian spellchecking dictionary) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\ru@dictionaries.addons.mozilla.org
[2010/02/05 18:33:39 | 000,000,000 | ---D | M] (─îrkovalnik za slovenski jezik) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\g33xb8ux.default\extensions\sl@dictionaries.addons.mozilla.org
File not found (No name found) -- C:\PROGRAM FILES\VIRTUAL FIREFOX\EXTENSIONS\EN-AU@DICTIONARIES.ADDONS.MOZILLA.ORG
File not found (No name found) -- C:\PROGRAM FILES\VIRTUAL FIREFOX\EXTENSIONS\IT-IT@DICTIONARIES.ADDONS.MOZILLA.ORG

O1 HOSTS File: ([2008/04/13 19:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BrStsWnd] C:\Program Files\Brownie\BrstsWnd.exe (brother)
O4 - HKLM..\Run: [hpbdfawep] C:\Program Files\HP\Dfawep\bin\hpbdfawep.exe ()
O4 - HKLM..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe (PDF Complete Inc)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [Reminder] C:\WINDOWS\CREATOR\Remind_XP.exe ()
O4 - HKLM..\Run: [Scheduler] C:\WINDOWS\SMINST\Scheduler.exe ()
O4 - HKLM..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe (Hewlett-Packard Company)
O4 - HKCU..\RunOnce: [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\LMIR0001.tmp.bat.js] C:\Documents and Settings\Administrator\Local Settings\Temp\LMIR0001.tmp.bat.js ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.10.10.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/04/30 18:01:00 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ NTFS ]
O33 - MountPoints2\{2481fa55-d62e-11de-af20-0025b3ce40b3}\Shell\AutoRun\command - "" = WDSetup.exe
O33 - MountPoints2\{5853e53b-ae05-11de-af0d-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{5853e53b-ae05-11de-af0d-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5853e53b-ae05-11de-af0d-806d6172696f}\Shell\AutoRun\command - "" = C:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480
O33 - MountPoints2\{5853e540-ae05-11de-af0d-0025b3ce40b3}\Shell - "" = AutoRun
O33 - MountPoints2\{5853e540-ae05-11de-af0d-0025b3ce40b3}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5853e540-ae05-11de-af0d-0025b3ce40b3}\Shell\AutoRun\command - "" = F:\start.exe
O33 - MountPoints2\{8bbd343a-c64e-11de-af14-0025b3ce40b3}\Shell - "" = AutoRun
O33 - MountPoints2\{8bbd343a-c64e-11de-af14-0025b3ce40b3}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8bbd343a-c64e-11de-af14-0025b3ce40b3}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 360 Days ==========

[2011/03/07 08:23:01 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2011/03/04 21:17:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\MICROSOFT 2007
[2011/03/04 20:57:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Google
[2011/03/04 20:29:48 | 000,032,592 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msonpmon.dll
[2011/03/04 20:27:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Visual Studio 2005
[2011/03/04 20:27:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2011/01/21 08:44:37 | 000,439,296 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\shimgvw.dll
[2010/12/29 17:19:19 | 000,000,000 | ---D | C] -- C:\windows\pss
[2010/12/29 14:20:29 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\hidserv.dll
[2010/12/29 14:20:20 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\usbaudio.sys
[2010/12/16 19:06:21 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\mfc42.dll
[2010/12/16 19:06:09 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\comctl32.dll
[2010/12/16 19:01:30 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\ndproxy.sys
[2010/12/16 13:52:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2010/12/16 13:44:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2010/12/16 13:44:41 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010/12/16 13:44:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2010/12/16 13:44:30 | 000,038,848 | ---- | C] (AVAST Software) -- C:\windows\avastSS.scr
[2010/12/16 13:44:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/12/16 12:56:09 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\windows\System32\drivers\mbamswissarmy.sys
[2010/12/16 12:56:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2010/12/16 12:56:05 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\windows\System32\drivers\mbam.sys
[2010/12/16 12:56:04 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/12/15 15:49:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\RcIncidents
[2010/12/14 15:36:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\B75F3F34C8874FCC80B0D97EFB230902
[2010/11/09 08:52:35 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\msado15.dll
[2010/11/09 08:52:35 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\odbc32.dll
[2010/11/09 08:52:35 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\msadox.dll
[2010/11/08 06:41:00 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\msado25.tlb
[2010/09/18 12:23:26 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\mfc42u.dll
[2010/08/26 23:57:43 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\srvsvc.dll
[2010/08/17 07:17:06 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\spoolsv.exe
[2010/07/16 06:05:55 | 001,288,192 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\ole32.dll
[2010/07/13 14:45:55 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\helpsvc.exe
[2010/06/18 11:45:17 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\winsrv.dll
[2010/06/08 23:19:43 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\iedvtool.dll
[2010/05/28 12:04:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ASI FrontDesk 5.3
[2010/05/28 12:04:13 | 000,000,000 | ---D | C] -- C:\Binaries
[2010/05/28 10:06:36 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Installer Clean Up
[2010/05/28 10:06:29 | 000,000,000 | ---D | C] -- C:\Program Files\MSECACHE
[2010/05/28 09:03:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PDF Writer
[2010/05/28 09:03:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\PDF Writer
[2010/05/28 09:03:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\PDF Writer
[2010/05/13 17:33:53 | 000,008,192 | ---- | C] (bioPDF) -- C:\windows\System32\BioPdf.PdfWriter.Lib.dll
[2010/05/13 17:33:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Bullzip
[2010/05/13 17:33:52 | 000,227,840 | ---- | C] (Bullzip) -- C:\windows\System32\bzFlRdr.dll
[2010/05/13 17:33:52 | 000,135,168 | ---- | C] (Bullzip) -- C:\windows\System32\bzpdfc.dll
[2010/05/13 17:33:52 | 000,103,424 | ---- | C] (Bullzip) -- C:\windows\System32\bzDCT.dll
[2010/05/13 17:33:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Bullzip
[2010/05/13 17:33:49 | 000,195,584 | ---- | C] (Bullzip) -- C:\windows\System32\bzpdf.dll
[2010/05/13 17:33:43 | 000,000,000 | ---D | C] -- C:\Program Files\Bullzip
[2010/05/13 15:06:15 | 000,134,656 | ---- | C] (Sysview Technology Inc.) -- C:\windows\System32\CSSN800.DLL
[2010/05/13 15:05:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CSActApp
[2010/04/19 23:30:08 | 000,290,048 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\System32\dllcache\atmfd.dll
[2010/04/16 09:36:56 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\usp10.dll
[2010/03/30 23:16:34 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\PresentationHostProxy.dll
[2010/03/30 23:10:40 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\PresentationHost.exe
[2010/03/20 19:00:04 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ptpusb.dll
[2010/03/20 19:00:03 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ptpusd.dll
[5 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[1 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ]

========== Files - Modified Within 360 Days ==========

[2011/03/07 08:23:02 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2011/03/07 08:08:58 | 000,000,438 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{F331B1C9-6B87-4D51-B54C-0129DE69B5B2}.job
[2011/03/07 06:58:00 | 000,000,332 | ---- | M] () -- C:\windows\tasks\HP WEP.job
[2011/03/06 11:54:59 | 000,002,383 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ASI FrontDesk 5.3.lnk
[2011/03/04 21:33:18 | 000,527,162 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2011/03/04 21:33:18 | 000,104,754 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2011/03/04 21:29:26 | 000,001,158 | ---- | M] () -- C:\windows\System32\wpa.dbl
[2011/03/04 21:28:44 | 000,000,295 | ---- | M] () -- C:\windows\Brownie.ini
[2011/03/04 21:28:16 | 000,002,048 | --S- | M] () -- C:\windows\bootstat.dat
[2011/03/04 21:28:11 | 2119,483,392 | -HS- | M] () -- C:\hiberfil.sys
[2011/02/17 13:50:03 | 000,000,426 | ---- | M] () -- C:\windows\BRWMARK.INI
[2011/02/09 17:18:27 | 000,274,168 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2011/02/09 17:02:29 | 000,001,355 | ---- | M] () -- C:\windows\imsins.BAK
[2011/01/27 10:06:54 | 000,002,391 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ASI FrontDesk Configuration 5.3.lnk
[2011/01/21 08:44:37 | 008,462,336 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\shell32.dll
[2011/01/21 08:44:37 | 000,439,296 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\shimgvw.dll
[2011/01/07 08:09:02 | 000,290,048 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\dllcache\atmfd.dll
[2011/01/07 08:09:02 | 000,290,048 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\atmfd.dll
[2010/12/31 07:10:33 | 001,854,976 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\win32k.sys
[2010/12/31 07:10:33 | 001,854,976 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\win32k.sys
[2010/12/22 06:34:28 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\kerberos.dll
[2010/12/21 05:29:20 | 011,080,704 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\ieframe.dll
[2010/12/20 17:59:20 | 005,961,216 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\mshtml.dll
[2010/12/20 17:59:20 | 001,210,880 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\urlmon.dll
[2010/12/20 17:59:20 | 000,916,480 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\wininet.dll
[2010/12/20 17:59:20 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mstime.dll
[2010/12/20 17:59:20 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\mstime.dll
[2010/12/20 17:59:20 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\occache.dll
[2010/12/20 17:59:20 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\mshtmled.dll
[2010/12/20 17:59:19 | 001,991,680 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\iertutil.dll
[2010/12/20 17:59:19 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\inetcpl.cpl
[2010/12/20 17:59:19 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\inetcpl.cpl
[2010/12/20 17:59:19 | 000,602,112 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2010/12/20 17:59:19 | 000,602,112 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msfeeds.dll
[2010/12/20 17:59:19 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iepeers.dll
[2010/12/20 17:59:19 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\iepeers.dll
[2010/12/20 17:59:19 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msfeedsbs.dll
[2010/12/20 17:59:19 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msfeedsbs.dll
[2010/12/20 17:59:19 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\licmgr10.dll
[2010/12/20 17:59:19 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\licmgr10.dll
[2010/12/20 17:59:19 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jsproxy.dll
[2010/12/20 17:59:19 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\jsproxy.dll
[2010/12/20 17:59:16 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\iedvtool.dll
[2010/12/20 17:59:16 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iedkcs32.dll
[2010/12/20 17:59:16 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\iedkcs32.dll
[2010/12/20 11:26:00 | 000,730,112 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\lsasrv.dll
[2010/12/20 11:26:00 | 000,730,112 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\lsasrv.dll
[2010/12/20 06:55:27 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ie4uinit.exe
[2010/12/20 06:55:27 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\ie4uinit.exe
[2010/12/20 06:55:26 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\html.iec
[2010/12/16 13:44:39 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2010/12/16 13:44:38 | 000,002,626 | ---- | M] () -- C:\windows\System32\CONFIG.NT
[2010/12/16 12:56:09 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/15 15:54:26 | 000,000,686 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\RAInvitation.msrcincident
[2010/12/09 08:30:22 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\csrsrv.dll
[2010/12/09 08:30:22 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\csrsrv.dll
[2010/12/09 07:42:26 | 002,148,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ntoskrnl.exe
[2010/12/09 07:42:26 | 002,148,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\ntkrnlmp.exe
[2010/12/09 07:38:47 | 002,192,768 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\ntoskrnl.exe
[2010/12/09 07:07:07 | 002,027,008 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\ntkrpamp.exe
[2010/12/09 07:07:07 | 002,027,008 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ntkrnlpa.exe
[2010/12/09 07:07:05 | 002,069,376 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\ntkrnlpa.exe
[2010/11/29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\windows\System32\drivers\mbamswissarmy.sys
[2010/11/29 17:42:06 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\windows\System32\drivers\mbam.sys
[2010/11/18 12:12:44 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\isign32.dll
[2010/11/18 12:12:44 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\isign32.dll
[2010/11/09 08:52:35 | 000,536,576 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msado15.dll
[2010/11/09 08:52:35 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\odbc32.dll
[2010/11/09 08:52:35 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\odbc32.dll
[2010/11/09 08:52:35 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msadox.dll
[2010/11/09 08:52:35 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msadomd.dll
[2010/11/09 08:52:35 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msadco.dll
[2010/11/09 08:52:35 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msjro.dll
[2010/11/08 06:41:00 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msado27.tlb
[2010/11/08 06:41:00 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msado26.tlb
[2010/11/08 06:41:00 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msado25.tlb
[2010/11/08 06:41:00 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msado21.tlb
[2010/11/08 06:41:00 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msado20.tlb
[2010/11/02 09:17:02 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\ndproxy.sys
[2010/10/11 08:59:30 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\wab.exe
[2010/09/18 12:23:26 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mfc42u.dll
[2010/09/18 12:23:26 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\mfc42u.dll
[2010/09/18 00:53:25 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mfc42.dll
[2010/09/18 00:53:25 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\mfc42.dll
[2010/09/18 00:53:25 | 000,954,368 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mfc40.dll
[2010/09/18 00:53:25 | 000,954,368 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\mfc40.dll
[2010/09/18 00:53:25 | 000,953,856 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mfc40u.dll
[2010/09/18 00:53:25 | 000,953,856 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\mfc40u.dll
[2010/09/07 10:12:17 | 000,038,848 | ---- | M] (AVAST Software) -- C:\windows\avastSS.scr
[2010/09/07 10:11:54 | 000,167,592 | ---- | M] (AVAST Software) -- C:\windows\System32\aswBoot.exe
[2010/09/07 09:52:25 | 000,046,672 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswTdi.sys
[2010/09/07 09:52:03 | 000,165,584 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswSP.sys
[2010/09/07 09:47:46 | 000,023,376 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswRdr.sys
[2010/09/07 09:47:19 | 000,100,176 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswmon2.sys
[2010/09/07 09:47:16 | 000,094,544 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswmon.sys
[2010/09/07 09:47:07 | 000,017,744 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswFsBlk.sys
[2010/09/07 09:46:51 | 000,028,880 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aavmker4.sys
[2010/08/27 02:02:29 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\t2embed.dll
[2010/08/27 02:02:29 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\t2embed.dll
[2010/08/26 23:57:43 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\srvsvc.dll
[2010/08/26 17:16:34 | 004,886,528 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\wmp.dll
[2010/08/26 07:39:50 | 000,357,248 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\srv.sys
[2010/08/23 10:12:04 | 000,617,472 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\comctl32.dll
[2010/08/17 07:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\spoolsv.exe
[2010/08/16 02:45:00 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\rpcrt4.dll
[2010/07/16 06:05:55 | 001,288,192 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\ole32.dll
[2010/06/30 06:31:35 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\schannel.dll
[2010/06/18 11:45:17 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\winsrv.dll
[2010/06/18 11:45:17 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\winsrv.dll
[2010/06/18 07:36:12 | 003,558,912 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\moviemk.exe
[2010/06/17 08:03:00 | 000,080,384 | ---- | M] (Radius Inc.) -- C:\windows\System32\iccvid.dll
[2010/06/15 10:17:24 | 000,143,422 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\windows\System32\l3codecx.ax
[2010/06/14 08:31:20 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\helpsvc.exe
[2010/06/14 01:41:45 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\msxml3.dll
[2010/06/10 02:13:14 | 028,919,296 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\asiHotel_ASIFD_100610_530049.dat
[2010/06/09 01:43:36 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\inetcomm.dll
[2010/05/28 16:15:08 | 000,003,584 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/05/28 12:04:11 | 027,084,288 | ---- | M] () -- C:\windows\asifd530_05-28-2010_13-04-08-623.asifd
[2010/05/28 08:50:41 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/05/13 17:33:59 | 000,002,100 | ---- | M] () -- C:\windows\System32\BioPdf.PdfWriter.Lib.tlb
[2010/05/13 15:07:48 | 000,000,033 | ---- | M] () -- C:\windows\SLib.INI
[2010/05/07 10:02:42 | 000,195,584 | ---- | M] (Bullzip) -- C:\windows\System32\bzpdf.dll
[2010/05/07 09:59:06 | 000,135,168 | ---- | M] (Bullzip) -- C:\windows\System32\bzpdfc.dll
[2010/04/16 09:36:56 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\usp10.dll
[2010/04/08 13:03:50 | 002,113,536 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\WMVCore.dll
[2010/04/08 13:03:50 | 002,113,536 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\WMVCore.dll
[2010/04/05 10:54:04 | 000,384,512 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mp4sdmod.dll
[2010/04/05 10:54:04 | 000,384,512 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\mp4sdmod.dll
[2010/03/30 23:16:34 | 000,099,176 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\PresentationHostProxy.dll
[2010/03/30 23:10:40 | 000,295,264 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\PresentationHost.exe
[2010/03/29 23:52:26 | 000,262,416 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mpg4ds32.ax
[2010/03/29 23:52:26 | 000,262,416 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dllcache\mpg4ds32.ax
[2010/03/15 07:46:20 | 000,716,800 | ---- | M] () -- C:\windows\System32\TwainScan.exe
[2010/03/15 07:46:18 | 000,032,768 | ---- | M] () -- C:\windows\System32\CS4K.dll
[5 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[1 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/12/22 13:34:49 | 028,919,296 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\asiHotel_ASIFD_100610_530049.dat
[2010/12/21 10:05:05 | 000,000,438 | -H-- | C] () -- C:\windows\tasks\User_Feed_Synchronization-{F331B1C9-6B87-4D51-B54C-0129DE69B5B2}.job
[2010/12/19 10:10:51 | 000,000,332 | ---- | C] () -- C:\windows\tasks\HP WEP.job
[2010/12/16 13:44:39 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2010/12/16 12:56:09 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/12/15 15:54:26 | 000,000,686 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\RAInvitation.msrcincident
[2010/05/28 16:15:08 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/05/28 12:04:15 | 000,002,391 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ASI FrontDesk Configuration 5.3.lnk
[2010/05/28 12:04:15 | 000,002,383 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ASI FrontDesk 5.3.lnk
[2010/05/28 12:04:08 | 027,084,288 | ---- | C] () -- C:\windows\asifd530_05-28-2010_13-04-08-623.asifd
[2010/05/28 10:06:36 | 000,002,343 | ---- | C] () -- C:\Documents and Settings\Administrator\Start Menu\Programs\Windows Install Clean Up.lnk
[2010/05/13 17:33:59 | 000,002,100 | ---- | C] () -- C:\windows\System32\BioPdf.PdfWriter.Lib.tlb
[2010/05/13 15:07:48 | 000,000,033 | ---- | C] () -- C:\windows\SLib.INI
[2010/05/13 15:05:56 | 000,716,800 | ---- | C] () -- C:\windows\System32\TwainScan.exe
[2010/05/13 15:05:56 | 000,032,768 | ---- | C] () -- C:\windows\System32\CS4K.dll
[2010/02/14 23:15:10 | 000,000,044 | ---- | C] () -- C:\windows\SMWizard.INI
[2010/01/17 10:42:01 | 000,000,731 | ---- | C] () -- C:\windows\System32\McOEMAppRules.dat
[2010/01/17 10:06:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\23281.exe
[2010/01/17 09:46:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\28145.exe
[2010/01/17 09:26:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\5705.exe
[2010/01/17 09:06:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\24464.exe
[2010/01/17 08:46:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\26962.exe
[2010/01/17 08:26:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\29358.exe
[2010/01/17 08:06:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\11478.exe
[2010/01/17 07:46:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\15724.exe
[2010/01/17 07:26:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\19169.exe
[2010/01/17 07:06:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\26500.exe
[2010/01/17 06:46:11 | 000,000,000 | ---- | C] () -- C:\windows\System32\6334.exe
[2010/01/17 04:30:28 | 000,000,000 | ---- | C] () -- C:\windows\System32\18467.exe
[2010/01/06 13:34:49 | 000,000,552 | ---- | C] () -- C:\windows\System32\d3d8caps.dat
[2009/11/07 16:28:23 | 000,000,140 | ---- | C] () -- C:\windows\BRVIDEO.INI
[2009/11/07 16:28:23 | 000,000,000 | ---- | C] () -- C:\windows\brmx2001.ini
[2009/11/07 16:27:55 | 000,000,426 | ---- | C] () -- C:\windows\BRWMARK.INI
[2009/11/07 16:27:50 | 000,031,244 | ---- | C] () -- C:\windows\HL-5340D.INI
[2009/11/07 16:27:13 | 000,045,056 | ---- | C] () -- C:\windows\System32\BRTCPCON.DLL
[2009/11/07 16:27:13 | 000,000,114 | ---- | C] () -- C:\windows\System32\BRLMW03A.INI
[2009/11/07 16:27:12 | 000,000,050 | ---- | C] () -- C:\windows\System32\BRADM08A.DAT
[2009/11/07 16:27:03 | 000,000,295 | ---- | C] () -- C:\windows\Brownie.ini
[2009/11/02 16:10:13 | 006,244,864 | ---- | C] () -- C:\windows\System32\ASIFD530_530035_20091102_161013.dat
[2009/11/02 16:09:56 | 006,244,864 | ---- | C] () -- C:\windows\System32\ASIFD530_530035_20091102_160956.dat
[2009/10/31 15:33:23 | 006,310,400 | ---- | C] () -- C:\windows\System32\ASIFD530_530035_20091031_163323.dat
[2009/10/31 15:33:13 | 006,310,400 | ---- | C] () -- C:\windows\System32\ASIFD530_530035_20091031_163313.dat
[2009/10/31 14:40:50 | 006,179,328 | ---- | C] () -- C:\windows\System32\ASIFD530_530035_20091031_154050.dat
[2009/10/31 14:40:39 | 006,179,328 | ---- | C] () -- C:\windows\System32\ASIFD530_530035_20091031_154039.dat
[2009/10/28 16:38:24 | 000,331,264 | ---- | C] () -- C:\windows\System32\CSS8RWIA.dll
[2009/10/28 15:54:17 | 006,187,520 | ---- | C] () -- C:\windows\System32\ASIFD530_530035_20091028_165417.dat
[2009/09/30 15:37:30 | 000,065,536 | ---- | C] () -- C:\windows\System32\HPPLVS.dll
[2009/09/02 02:43:46 | 000,000,061 | ---- | C] () -- C:\windows\smscfg.ini
[2009/09/02 02:04:41 | 000,147,456 | ---- | C] () -- C:\windows\System32\igfxCoIn_v4864.dll
[2009/04/06 01:00:44 | 000,002,048 | --S- | C] () -- C:\windows\bootstat.dat
[2009/04/06 00:51:50 | 000,527,162 | ---- | C] () -- C:\windows\System32\perfh009.dat
[2009/04/06 00:51:50 | 000,104,754 | ---- | C] () -- C:\windows\System32\perfc009.dat
[2009/04/06 00:48:38 | 000,274,168 | ---- | C] () -- C:\windows\System32\FNTCACHE.DAT
[2009/04/06 00:40:42 | 000,004,161 | ---- | C] () -- C:\windows\ODBCINST.INI
[2009/04/06 00:35:20 | 000,021,640 | ---- | C] () -- C:\windows\System32\emptyregdb.dat
[2008/04/13 19:00:00 | 000,673,088 | ---- | C] () -- C:\windows\System32\mlang.dat
[2008/04/13 19:00:00 | 000,272,128 | ---- | C] () -- C:\windows\System32\perfi009.dat
[2008/04/13 19:00:00 | 000,218,003 | ---- | C] () -- C:\windows\System32\dssec.dat
[2008/04/13 19:00:00 | 000,046,258 | ---- | C] () -- C:\windows\System32\mib.bin
[2008/04/13 19:00:00 | 000,028,626 | ---- | C] () -- C:\windows\System32\perfd009.dat
[2008/04/13 19:00:00 | 000,004,569 | ---- | C] () -- C:\windows\System32\secupd.dat
[2008/04/13 19:00:00 | 000,001,804 | ---- | C] () -- C:\windows\System32\Dcache.bin
[2008/04/13 19:00:00 | 000,000,741 | ---- | C] () -- C:\windows\System32\noise.dat
[2008/03/19 07:30:00 | 000,180,224 | ---- | C] () -- C:\windows\System32\SLIMCDTC.dll
[2008/02/07 09:05:18 | 000,163,840 | ---- | C] () -- C:\windows\System32\hppatusg01.dll
[2002/05/28 02:55:42 | 013,107,200 | ---- | C] () -- C:\windows\System32\oembios.bin
[2002/05/28 02:54:40 | 000,004,605 | ---- | C] () -- C:\windows\System32\oembios.dat
[2002/05/08 04:12:22 | 000,000,797 | ---- | C] () -- C:\windows\System32\oeminfo.ini

< End of report >


Here is Extras.txt:

OTL Extras logfile created on: 3/7/2011 8:29:29 AM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 63.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 85.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 133.03 Gb Total Space | 101.78 Gb Free Space | 76.51% Space Free | Partition Type: NTFS
Drive D: | 16.00 Gb Total Space | 10.49 Gb Free Space | 65.56% Space Free | Partition Type: NTFS

Computer Name: THRIFTYINN | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 360 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1"
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1"
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"1375:TCP" = 1375:TCP:*:Enabled:ASIFD530
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe" = C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe:*:Enabled:Managed Services Agent

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\SMINST\Scheduler.exe" = C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler -- ()
"C:\WINDOWS\LMIE0.tmp\lmi_rescue.exe" = C:\WINDOWS\LMIE0.tmp\lmi_rescue.exe:*:Disabled:LogMeIn Rescue
"C:\WINDOWS\LMI6E.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI6E.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMIBD.tmp\lmi_rescue.exe" = C:\WINDOWS\LMIBD.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\Program Files\Hewlett-Packard\Firefox - HP Virtual Browser Edition\fslrdr\2\[_B_]PROGRAMFILES[_E_]\Virtual Firefox\firefox.exe" = C:\Program Files\Hewlett-Packard\Firefox - HP Virtual Browser Edition\fslrdr\2\[_B_]PROGRAMFILES[_E_]\Virtual Firefox\firefox.exe:*:Disabled:Firefox
"C:\WINDOWS\LMI371.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI371.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI372.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI372.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI37E.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI37E.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI2AF.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI2AF.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI170.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI170.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI2DD.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI2DD.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI2DF.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI2DF.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMIE2C.tmp\lmi_rescue.exe" = C:\WINDOWS\LMIE2C.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI181B.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI181B.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI2D.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI2D.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI36C.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI36C.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMIE7.tmp\lmi_rescue.exe" = C:\WINDOWS\LMIE7.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMIE9.tmp\lmi_rescue.exe" = C:\WINDOWS\LMIE9.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI10A.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI10A.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMIF.tmp\lmi_rescue.exe" = C:\WINDOWS\LMIF.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMIF5.tmp\lmi_rescue.exe" = C:\WINDOWS\LMIF5.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI18F.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI18F.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI241.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI241.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI247.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI247.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI24F.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI24F.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI491.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI491.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI98.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI98.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI5.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI5.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI43.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI43.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI4C.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI4C.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI72.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI72.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI130.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI130.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI8.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI8.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI45.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI45.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI1BF.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI1BF.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI46.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI46.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI95.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI95.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI5C.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI5C.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI1B.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI1B.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI50.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI50.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI125.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI125.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMIAD.tmp\lmi_rescue.exe" = C:\WINDOWS\LMIAD.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMIE2.tmp\lmi_rescue.exe" = C:\WINDOWS\LMIE2.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI47.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI47.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\LMI4A.tmp\lmi_rescue.exe" = C:\WINDOWS\LMI4A.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\WINDOWS\LMID1.tmp\lmi_rescue.exe" = C:\WINDOWS\LMID1.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue
"C:\Documents and Settings\Administrator\Local Settings\Temp\LMIR0001.tmp\lmi_rescue.exe" = C:\Documents and Settings\Administrator\Local Settings\Temp\LMIR0001.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue -- (LogMeIn, Inc.)
"C:\Documents and Settings\Administrator\Local Settings\Temp\LMIR0002.tmp\lmi_rescue.exe" = C:\Documents and Settings\Administrator\Local Settings\Temp\LMIR0002.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{121634B0-2F4B-11D3-ADA3-00C04F52DD52}" = Windows Installer Clean Up
"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{25055BAA-8488-4225-AD4F-8BC46AE98F7A}" = Brother HL-5340D
"{2767DEDE-EA9D-4FCE-A06A-40F4DD293330}" = hppusgP1000
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java™ 6 Update 7
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}" = HP Backup and Recovery Manager
"{50120000-1105-0000-0000-0000000FF1CE}" = Microsoft Office 2007 Primary Interop Assemblies
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{58ECE031-9AAD-4011-B34A-BC78E77527E2}" = hppMSRedist
"{5FEBF468-5AC2-4C66-AD80-DF85C085AA73}" = InterVideo WinDVD 8
"{777CA40C-0206-4EF6-A0FC-618BF06BF8D0}" = Intel® PRO Network Connections 12.1.14.1
"{7902E313-FF0F-4493-ACB1-A8147B78DCD0}" = HPSSupply
"{7B02BF60-796D-4616-908B-B31A63CFDEFB}" = HPCarePackCore
"{8215AC14-BFC2-4ECC-96D6-1030202F8BDF}" = Visual C++ 8.0 x86 Runtime Setup Package
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{926CC8AE-8414-43DF-8EB4-CF26D9C3C663}" =
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90A40409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{9DBCF56A-CDF0-41bf-BE0F-E00A88B18F56}" = Cricket EVDO Modem
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A82D052A-0806-42DF-80CD-1730A1AC0ED3}" = MrvlUsgTracking
"{A939D341-5A04-4E0A-BB55-3E65B386432D}" = Microsoft Office Small Business Connectivity Components
"{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}" = HP Help and Support
"{B32C4059-6E7A-41EF-AD20-56DF1872B923}" = Business Contact Manager for Outlook 2007
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (ASI)
"{E9F44C98-B8B6-480F-AF7B-E42A0A46F4E3}" = Microsoft SQL Server VSS Writer
"{ECA31632-C2AD-4774-A3CA-2813D47E4DD0}" = HPCarePackProducts
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F9B3DD02-B0B3-42E9-8650-030DFF0D133D}" = Microsoft SQL Server Native Client
"{FA0B2D37-54F4-4C0A-841A-620F3022FFA3}" = ASI FrontDesk 5.3
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"avast5" = avast! Free Antivirus
"Bullzip PDF Printer_is1" = Bullzip PDF Printer 7.1.0.1186
"Business Contact Manager for Outlook 2007" = Business Contact Manager for Outlook 2007
"CSSN SDK Version 9.40.11" = CSSN SDK Version 9.40.11
"ENTERPRISE" = Microsoft Office Enterprise 2007
"GPL Ghostscript Lite_is1" = GPL Ghostscript Lite 8.70
"HDMI" = Intel® Graphics Media Accelerator Driver
"HECI" = Intel« Management Engine Interface
"HP LaserJet P1000 series" = HP LaserJet P1000 series
"ie8" = Windows Internet Explorer 8
"InstallShield_{5FEBF468-5AC2-4C66-AD80-DF85C085AA73}" = InterVideo WinDVD 8
"InstallShield_{8099F5A3-F3D8-48E7-9316-8E2F2EA26128}" = ASI FrontDesk 5.3 Service Pack
"InstallShield_{FA0B2D37-54F4-4C0A-841A-620F3022FFA3}" = ASI FrontDesk 5.3
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"PDF Complete" = PDF Complete
"PROHYBRIDR" = 2007 Microsoft Office system
"WebAllow_is1" = WebAllow 3.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2/19/2011 1:48:37 AM | Computer Name = THRIFTYINN | Source = Application Hang | ID = 1002
Description = Hanging application ASIFD.exe, version 5.3.0.60, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 2/19/2011 1:50:00 AM | Computer Name = THRIFTYINN | Source = Application Hang | ID = 1002
Description = Hanging application ASIFD.exe, version 5.3.0.60, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 2/26/2011 7:36:00 PM | Computer Name = THRIFTYINN | Source = Application Hang | ID = 1002
Description = Hanging application ASIFD.exe, version 5.3.0.60, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 2/28/2011 5:52:15 PM | Computer Name = THRIFTYINN | Source = Application Hang | ID = 1002
Description = Hanging application ASIFD.exe, version 5.3.0.60, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 3/4/2011 11:18:09 PM | Computer Name = THRIFTYINN | Source = Application Error | ID = 1000
Description = Faulting application explorer.exe, version 6.0.2900.5512, faulting
module unknown, version 0.0.0.0, fault address 0x023a6b79.

Error - 3/4/2011 11:18:13 PM | Computer Name = THRIFTYINN | Source = Application Error | ID = 1000
Description = Faulting application drwtsn32.exe, version 5.1.2600.0, faulting module
dbghelp.dll, version 5.1.2600.5512, fault address 0x0001295d.

Error - 3/4/2011 11:18:16 PM | Computer Name = THRIFTYINN | Source = Application Error | ID = 1001
Description = Fault bucket 223121472.

Error - 3/5/2011 9:56:36 PM | Computer Name = THRIFTYINN | Source = Application Hang | ID = 1002
Description = Hanging application ASIFD.exe, version 5.3.0.60, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 3/6/2011 1:54:25 AM | Computer Name = THRIFTYINN | Source = Application Error | ID = 1000
Description = Faulting application asifd.exe, version 5.3.0.60, faulting module
unknown, version 0.0.0.0, fault address 0x04694ef0.

Error - 3/6/2011 1:54:56 PM | Computer Name = THRIFTYINN | Source = Application Error | ID = 1000
Description = Faulting application asifd.exe, version 5.3.0.60, faulting module
unknown, version 0.0.0.0, fault address 0x0495d3c0.

[ System Events ]
Error - 2/7/2011 12:43:31 AM | Computer Name = THRIFTYINN | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
ROVINGPC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{9BBE348F-5C1A-40A3-. The master browser is stopping or an election
is being forced.

Error - 2/7/2011 12:20:04 PM | Computer Name = THRIFTYINN | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
LATYSHA-PC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{9BBE348F-5C1A-40A. The master browser is stopping or an election is
being forced.

Error - 2/7/2011 6:15:00 PM | Computer Name = THRIFTYINN | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
ROVINGPC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{9BBE348F-5C1A-40A3-. The master browser is stopping or an election
is being forced.

Error - 2/7/2011 10:15:09 PM | Computer Name = THRIFTYINN | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
ROVINGPC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{9BBE348F-5C1A-40A3-. The master browser is stopping or an election
is being forced.

Error - 2/7/2011 11:27:03 PM | Computer Name = THRIFTYINN | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
ROVINGPC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{9BBE348F-5C1A-40A3-. The master browser is stopping or an election
is being forced.

Error - 2/8/2011 12:27:04 AM | Computer Name = THRIFTYINN | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
ROVINGPC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{9BBE348F-5C1A-40A3-. The master browser is stopping or an election
is being forced.

Error - 2/8/2011 6:34:41 PM | Computer Name = THRIFTYINN | Source = MRxSmb | ID = 8003
Description = The master browser has received a server announcement from the computer
ROVINGPC that believes that it is the master browser for the domain on transport
NetBT_Tcpip_{9BBE348F-5C1A-40A3-. The master browser is stopping or an election
is being forced.

Error - 2/8/2011 11:28:06 PM | Computer Name = THRIFTYINN | Source = Dhcp | ID = 1002
Description = The IP address lease 10.10.10.3 for the Network Card with network
address 0025B3CE40B3 has been denied by the DHCP server 10.10.10.1 (The DHCP Server
sent a DHCPNACK message).

Error - 3/3/2011 11:26:07 PM | Computer Name = THRIFTYINN | Source = Dhcp | ID = 1002
Description = The IP address lease 10.10.10.3 for the Network Card with network
address 0025B3CE40B3 has been denied by the DHCP server 10.10.10.1 (The DHCP Server
sent a DHCPNACK message).

Error - 3/4/2011 11:26:09 PM | Computer Name = THRIFTYINN | Source = Dhcp | ID = 1002
Description = The IP address lease 10.10.10.3 for the Network Card with network
address 0025B3CE40B3 has been denied by the DHCP server 10.10.10.1 (The DHCP Server
sent a DHCPNACK message).


< End of report >


If you need any other information, please let me know. Thanks!

Patrick

BC AdBot (Login to Remove)

 


#2 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,779 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:05:47 AM

Posted 13 March 2011 - 06:57 AM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.
If you are unable to create a log because your computer cannot start up successfully please provide detailed information about the Windows version you are using: What we in particular need to know is version, edition and if it is a 32bit or a 64bit system. [/b]
If you are unsure about any of these caracteristics, just let us know and we'll help you figuring it out. Please also tell us if you have your Windows CD/DVD handy.


Please include a clear description of the problems you're having, along with any steps you may have performed so far.

Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.

Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.
We need to create an OTL Report
  • Please download OTL from one of the following mirrors:
  • Save it to your desktop.
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • In the custom scan box paste the following:
    msconfig
    safebootminimal
    activex
    drivers32
    netsvcs
    %SYSTEMDRIVE%\*.exe
    /md5start
    explorer.exe
    winlogon.exe
    wininit.exe
    hlp.dat
    /md5stop
  • Push the Posted Image button.
  • Two reports will open, copy and paste them in a reply here:
    • OTL.txt <-- Will be opened
    • Extra.txt<--Will be minimized

In the upper right hand corner of the topic you will see a button called Watch Topic.I suggest you click it and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#3 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,779 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:05:47 AM

Posted 03 April 2011 - 07:33 AM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users