antivirus vista 2010

View previous topic View next topic Go down

antivirus vista 2010

Post by mcphersondk on 21st February 2010, 1:54 am

I followed the steps in another post. I downloaded the getsystem & ran the check report, uploaded it to GSIParser. What do I need to do now?

[You must be registered and logged in to see this link.]

HEEELLLPPPPP Smile

Thank you!

mcphersondk
Novice
Novice

Posts Posts : 7
Joined Joined : 2010-02-21
OS OS : Vista
Points Points : 24923
# Likes # Likes : 0

View user profile

Back to top Go down

Re: antivirus vista 2010

Post by Belahzur on 21st February 2010, 2:00 am

Download [You must be registered and logged in to see this link.] by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245101
# Likes # Likes : 1

View user profile

Back to top Go down

Re: antivirus vista 2010

Post by mcphersondk on 21st February 2010, 2:17 am

OTL Extras logfile created on: 2/20/2010 8:07:10 PM - Run 1
OTL by OldTimer - Version 3.1.30.1 Folder = C:\Users\Gretchen\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18882)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 55.00% Memory free
6.00 Gb Paging File | 4.00 Gb Available in Paging File | 71.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 218.20 Gb Total Space | 165.83 Gb Free Space | 76.00% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 14.65 Gb Total Space | 8.87 Gb Free Space | 60.54% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: GRETCHEN-PC
Current User Name: Gretchen
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.exe [@ = secfile] -- C:\Users\Gretchen\AppData\Local\av.exe ()
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0094D644-3EB8-44CD-ADAA-EDD8C4C41116}" = lport=139 | protocol=6 | dir=in | app=system |
"{138D49CE-8F69-4D35-931E-86E6D16C4C1F}" = rport=138 | protocol=17 | dir=out | app=system |
"{1F83A47D-2500-43EA-B8EC-8E8BF94E8CAF}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{24E2C45D-F00F-42CF-874C-7BBDA9E8BE95}" = rport=445 | protocol=6 | dir=out | app=system |
"{40A1A1D5-5643-4F11-9EF7-A0005902F1C3}" = lport=137 | protocol=17 | dir=in | app=system |
"{43575F2A-10FE-4C3E-B831-71A0A3E9CED6}" = rport=2869 | protocol=6 | dir=out | app=system |
"{4E17FEAA-40DC-4DBC-9159-74800A1BF9BB}" = lport=40090 | protocol=6 | dir=in | name=streaming web cam |
"{4EB97317-23C6-4E49-AFC3-0285ECA6E037}" = lport=2869 | protocol=6 | dir=in | app=system |
"{51EC01C7-92E3-456E-91F4-202EDC1D0263}" = rport=139 | protocol=6 | dir=out | app=system |
"{58A27A2B-DF31-43CD-AEB2-C3AF899A6860}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{597048D3-6044-4762-99BB-8E72B4D00EF9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{61CCF802-E120-4B11-99B0-50A4E08AE91F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{768E5916-AE15-4BF7-8028-7D9458B8A900}" = lport=40091 | protocol=6 | dir=in | name=streaming web cam |
"{79E55764-30E1-4A76-A24B-1A6B7ACF1491}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{819D1103-2AA7-45BE-95F5-550907BC58BE}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{AE4C57A9-A0D2-401E-98C4-9DE40CA26DB6}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{B43512DE-F83A-493F-BE57-EFEC89E7C87B}" = lport=138 | protocol=17 | dir=in | app=system |
"{B7226898-7212-47EA-AB02-2C3EBA025703}" = lport=40080 | protocol=6 | dir=in | name=remote access media server |
"{C1FB12B8-DCCE-45AA-A439-C33A29C3FCF5}" = lport=40092 | protocol=6 | dir=in | name=streaming web cam |
"{D74B069C-093C-48AE-A8CD-54D9D0BF0B42}" = rport=137 | protocol=17 | dir=out | app=system |
"{D9D14115-7C8A-4CF2-A28F-648CE66F063F}" = lport=40094 | protocol=6 | dir=in | name=streaming web cam |
"{E2D2F614-B519-4D0D-A93C-FD78B5753033}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{E4B37803-E6E0-4523-9F1A-35E45C491165}" = lport=40093 | protocol=6 | dir=in | name=streaming web cam |
"{E909CC09-1D19-4DD2-BC72-B5751BD10F44}" = lport=2869 | protocol=6 | dir=in | app=system |
"{EB3760C7-4047-4B16-A78F-6F4A86B5E1FD}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{FE0C1A58-C05B-4B75-961A-BD3179B7DC9D}" = lport=445 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00258C63-99D3-471C-8184-95528AAF50EC}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\powerdvd.exe |
"{07C6CCFF-C3CC-419E-B506-A777C5F99972}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{07FC16D4-88A3-41A3-A041-3C932A36CC53}" = protocol=6 | dir=in | app=c:\program files\common files\dell\apache\bin\httpd.exe |
"{0F107BF8-38C0-4ACE-A198-FAB7EDD01EBE}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{0F50B8FC-D02A-4E7C-B4F8-A260B2632381}" = protocol=6 | dir=in | app=c:\program files\common files\aol\system information\sinf.exe |
"{0FC3F436-4A4C-41DD-BC9C-4AD5C4136A7F}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{15A1A5A7-554A-4199-9FF0-CA148A0526CA}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe |
"{161446CD-2591-40FC-ABFA-2345F4DD3D08}" = protocol=6 | dir=in | app=c:\program files\common files\dell\mysql\bin\mysqld.exe |
"{1DF732D6-0AD7-4461-A6D5-8D28557AD4DC}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{250ED90C-17AC-4798-8BF5-A51F37642941}" = protocol=17 | dir=in | app=c:\program files\common files\dell\mysql\bin\mysql.exe |
"{2E5F623F-A669-437A-B4B7-5DB505CF2638}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{31E7AA81-AC43-4CD2-BB53-E3CFDA753671}" = protocol=17 | dir=in | app=c:\program files\common files\aol\1253935377\ee\aolsoftware.exe |
"{34751BDE-19A7-487D-B2FF-E796ABBD1760}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{37DC8ECE-BCD2-4E79-A5C5-287E237E956C}" = protocol=17 | dir=in | app=c:\program files\common files\aol\topspeed\3.0\aoltpsd3.exe |
"{3BA90375-144A-49F2-A9EA-03130D507AE8}" = protocol=6 | dir=in | app=c:\program files\dell remote access\ezi_ra.exe |
"{3C21A54C-654C-42DA-ABED-5D903B1C84B3}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{418FA4AE-C19A-45C4-AE81-BCD15067F2CB}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{42E87318-9CF8-44FB-889B-48B9B7156393}" = dir=in | app=c:\program files\common files\mcafee\mna\mcnasvc.exe |
"{4602FEC1-1B13-4F17-B9A9-EF378E7BD202}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{4763DA54-BFC9-47DD-B189-57F3EEB090F7}" = protocol=6 | dir=in | app=c:\program files\common files\aol\1253935377\ee\aolsoftware.exe |
"{4D9DD4AD-1FE1-4A11-990C-1B9F2B17D93D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{4DFD0A17-B5C9-4A31-A01C-5C781C007D32}" = protocol=6 | dir=in | app=c:\program files\common files\dell\mysql\bin\mysql.exe |
"{58DA242B-57EF-4B09-8770-4393C53889D7}" = protocol=17 | dir=in | app=c:\program files\common files\dell\advanced networking service\hnm_svc.exe |
"{59ABBC7C-619B-4C27-9938-BBEC4A4D1557}" = protocol=6 | dir=in | app=c:\program files\common files\aol\topspeed\3.0\aoltpsd3.exe |
"{5A064B03-1FED-49A6-81C4-895B05C5B323}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{5A296E91-32EC-4E60-804E-D036D68FDFCF}" = protocol=17 | dir=in | app=c:\program files\common files\aol\system information\sinf.exe |
"{5CEAEAC2-9DE1-40A2-8C21-828708D4D9C5}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{65EE8B3A-A9F9-4B62-B4BA-0948FFE4D127}" = protocol=6 | dir=in | app=c:\program files\common files\dell\apache\php.exe |
"{6D8FC74C-D35D-4675-9347-3FAA44D99091}" = protocol=17 | dir=in | app=c:\program files\common files\dell\apache\bin\httpd.exe |
"{6E5A47F1-F00E-4057-8DE1-004BD2181DBA}" = protocol=6 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{74DE4CA3-2BCC-4395-8CDB-D4E60D067DB1}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{79816086-651D-4565-B360-00138999DA3B}" = protocol=17 | dir=in | app=c:\windows\system32\dlbacoms.exe |
"{79CFF6DC-2F6A-429B-8498-6744B7AD937F}" = protocol=6 | dir=in | app=c:\program files\common files\dell\remote access file sync service\dsl_fs_sync.exe |
"{7F188871-A39A-4530-907F-879E5DAFBD39}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{81A4CC89-DFA1-4B2C-965F-F368CFF6D1D0}" = protocol=17 | dir=in | app=c:\program files\dell remote access\ezi_ra.exe |
"{88C08040-C0AC-4FCC-BF4D-4FB6D4B91C58}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{89525838-B039-4BBD-80DB-0C9632AA2C05}" = protocol=17 | dir=in | app=c:\program files\aol 9.1\waol.exe |
"{89A6EF88-9B56-467F-BF1E-5AEC987BE159}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe |
"{96E494D1-A4C0-44B8-AE5F-1291D66A8E21}" = protocol=17 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe |
"{9727333E-423F-4065-9CD4-24E6F950FF65}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{9ED6F960-2AD7-422B-9B5B-0553FB306714}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe |
"{A3879B5C-0BF3-4239-AD50-15B4DEEA61B4}" = protocol=6 | dir=in | app=c:\program files\aol 9.1\waol.exe |
"{A76CB62D-DB6E-4377-9DCF-5D17BD2433F9}" = protocol=6 | dir=in | app=c:\program files\common files\dell\advanced networking service\hnm_svc.exe |
"{A9758763-3078-46E4-9A9C-E2C5384809E4}" = protocol=17 | dir=in | app=c:\program files\common files\dell\apache\php.exe |
"{AB3130DF-0199-4F97-887B-6CFACDA64F30}" = protocol=17 | dir=in | app=c:\program files\common files\dell\vlc\vlc.exe |
"{BD4CE53B-D7A2-4629-905B-7A5811227C2B}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{BFBC3D51-4AD1-4F3D-AC21-E680CEBAE5D5}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{C5401ABB-C0B5-411C-8F76-CBFC4A0AB649}" = protocol=6 | dir=in | app=c:\program files\common files\dell\vlc\vlc.exe |
"{C86DCE25-41C4-49FB-96B3-ABCCDA1C2988}" = protocol=17 | dir=in | app=c:\program files\common files\dell\remote access file sync service\dsl_fs_sync.exe |
"{D37C2113-EBB3-40DF-BED9-821F407879C4}" = protocol=17 | dir=in | app=c:\program files\common files\dell\mysql\bin\mysqld.exe |
"{D3B977BA-6307-46AA-92B0-DADB8B765784}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{D8EDBE86-9B04-42B9-808A-819259042C66}" = protocol=6 | dir=in | app=c:\windows\system32\dlbacoms.exe |
"{EC9EAEE9-BCA3-43E6-9147-DA83ACDD0D60}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{F126F38D-F6BA-4B9A-BAFC-408123CF957D}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\pdvddxsrv.exe |
"{FD2CF5E7-591A-44DE-9887-302DEF7B2E36}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe |
"TCP Query User{F41B41D3-781C-4289-A18A-E495C8DE797B}C:\program files\spyware terminator\spywareterminatorupdate.exe" = protocol=6 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"UDP Query User{E95A4C83-B9FD-43A4-BA86-D27427E17248}C:\program files\spyware terminator\spywareterminatorupdate.exe" = protocol=17 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0076E1AC-9E7B-4B9F-A62A-4CC9511AD8E3}" = Zune Language Pack (FR)
"{020D8396-D6D9-4B53-A9A1-83C47E2E27AA}" = Windows Live Call
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data
"{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE
"{0AAA9C97-74D4-47CE-B089-0B147EF3553C}" = Windows Live Messenger
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 16
"{27F00C63-449B-2FAB-CBE8-24AB80E17449}" = Acrobat.com
"{2B4C7E1E-E446-4740-ADB5-9842E742EE8A}" = Windows Live Toolbar
"{2EA870FA-585F-4187-903D-CB9FFD21E2E0}" = DHTML Editing Component
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{3138EAD3-700B-4A10-B617-B3F8096EE30D}" = Dell Edoc Viewer
"{3AC54383-31D1-4907-961B-B12CBB1D0AE8}" = MobileMe Control Panel
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{415B2719-AD3A-4944-B404-C472DB6085B3}" = Cisco EAP-FAST Module
"{44CDBD1B-89FB-4E02-8319-2A4C550F664A}" = RTC Client API v1.2
"{48B3FB4D-CE22-488C-8E9F-24EBB77EAC0F}" = Microsoft Security Essentials
"{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}" = Junk Mail filter update
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4E868D3D-6EEB-4273-926C-2287236B5B79}" = 3DVIA player 5.0
"{63C1109E-D977-49ED-BCE3-D00D0BF187D6}" = Windows Live Mail
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}" = Cisco PEAP Module
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD DX
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6A92E5C5-0578-443D-91F3-92ECE5F2CAE2}" = Windows Live Writer
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{83770D14-21B9-44B3-8689-F7B523F94560}" = Cisco LEAP Module
"{888FFC82-688D-46AB-A776-B417885432B6}" = Zune
"{8927E07C-97F7-4A54-88FB-D976F50DD46E}" = Turbo Lister 2
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{90850409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{9422C8EA-B0C6-4197-B8FC-DC797658CA00}" = Windows Live Sign-in Assistant
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad
"{A0A77CDC-2419-4D5C-AD2C-E09E5926B806}" = Microsoft Antimalware
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A5E0582D-85DA-4BEA-A9E9-C17099585E76}" = PC Care Center
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy
"{B935C985-A17F-484B-8470-09E4FC27DC26}" = Dell-eBay
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C4972073-2BFE-475D-8441-564EA97DA161}" = QuickSet
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D6E4E5D6-7693-4BB4-95BA-21F38FAFEE90}" = Safari
"{D9D754A1-EAC5-406C-A28B-C49B1E846711}" = Windows Live Essentials
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{E6B87DC4-2B3D-4483-ADFF-E483BF718991}" = OpenOffice.org 3.1
"{EBB7C1C1-D439-4D9B-9FDC-954C10F266B0}" = Adobe Photoshop Elements 4.0
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE
"{EE4ACABF-531E-419A-9225-B8E0FA4955AF}" = Zune Language Pack (ES)
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F226C1DA-66D7-4ABC-86B5-3F978A660EBF}" = AOL Mail and AIM Gadget
"{F439D7AF-03F3-4F8E-AEC4-571BFE977C61}" = iTunes
"{F66A31D9-7831-4FBA-BA02-C411C0047CC5}" = Dell Remote Access
"{F69E83CF-B440-43F8-89E6-6EA80712109B}" = Windows Live Communications Platform
"{F6CB42B9-F033-4152-8813-FF11DA8E6A78}" = Dell Dock
"{F73A5B18-EB75-4B2C-B32D-9457576E2417}" = Windows Live Photo Gallery
"{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}" = Windows Live Sync
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 4" = Adobe Photoshop Elements 4.0
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AOL Emergency Connect Utility 1.0" = Uninstall AOL Emergency Connect Utility 1.0
"AOL Toolbar" = AOL Toolbar
"AOL Uninstaller" = AOL Uninstaller (Choose which Products to Remove)
"Broadcom 802.11 Application" = Dell Wireless WLAN Card Utility
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"EasyLinkAdvisor" = Linksys EasyLink Advisor 1.5 (1010)
"GoToAssist" = GoToAssist 8.0.0.514
"HOMESTUDENTR" = Microsoft Office Home and Student 2007 Trial
"McAfee Security Scan" = McAfee Security Scan
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Essentials" = Microsoft Security Essentials
"Mozilla Firefox (3.5.7)" = Mozilla Firefox (3.5.7)
"MSC" = McAfee SecurityCenter
"NSS" = Norton Security Scan
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"TVWiz" = Intel(R) TV Wizard
"UnityWebPlayer" = Unity Web Player
"ViewpointMediaPlayer" = Viewpoint Media Player
"WinLiveSuite_Wave3" = Windows Live Essentials
"Yahoo! Mail" = AT&T Yahoo! Internet Mail
"YInstHelper" = Yahoo! Install Manager
"Zune" = Zune

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Move Media Player" = Move Media Player
"ROES.whcc" = ROES.whcc

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1/23/2010 12:36:26 PM | Computer Name = Gretchen-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/24/2010 4:54:28 PM | Computer Name = Gretchen-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/28/2010 5:19:39 AM | Computer Name = Gretchen-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/30/2010 7:35:54 PM | Computer Name = Gretchen-PC | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.6001.18882 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 22c8 Start Time: 01caa1c05aa51710 Termination Time: 0

Error - 1/31/2010 1:11:15 PM | Computer Name = Gretchen-PC | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18882, time stamp
0x4b3ed243, faulting module UNITYW~1.OCX, version 2.5.1.24931, time stamp 0x4a4a8b26,
exception code 0xc0000005, fault offset 0x00002e4a, process id 0x273c, application
start time 0x01caa204fa9f6f10.

Error - 1/31/2010 8:50:52 PM | Computer Name = Gretchen-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/31/2010 9:12:53 PM | Computer Name = Gretchen-PC | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18882, time stamp
0x4b3ed243, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc0000005, fault offset 0x082ed414, process id 0x1e50, application start time
0x01caa2d91c517813.

Error - 1/31/2010 9:40:28 PM | Computer Name = Gretchen-PC | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.18882, time stamp
0x4b3ed243, faulting module ntdll.dll, version 6.0.6001.18000, time stamp 0x4791a7a6,
exception code 0xc0000005, fault offset 0x0003d13a, process id 0x1b24, application
start time 0x01caa2ddf72241e4.

Error - 1/31/2010 10:26:54 PM | Computer Name = Gretchen-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/31/2010 10:30:00 PM | Computer Name = Gretchen-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 10/11/2009 7:28:09 PM | Computer Name = Gretchen-PC | Source = HTTP | ID = 15016
Description =

Error - 10/11/2009 7:29:19 PM | Computer Name = Gretchen-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 10/11/2009 7:29:19 PM | Computer Name = Gretchen-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 10/11/2009 8:13:18 PM | Computer Name = Gretchen-PC | Source = Service Control Manager | ID = 7031
Description =

Error - 10/12/2009 1:03:43 PM | Computer Name = Gretchen-PC | Source = Service Control Manager | ID = 7031
Description =

Error - 10/12/2009 1:23:58 PM | Computer Name = Gretchen-PC | Source = Service Control Manager | ID = 7031
Description =

Error - 10/12/2009 1:26:14 PM | Computer Name = Gretchen-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 10/12/2009 1:26:38 PM | Computer Name = Gretchen-PC | Source = Service Control Manager | ID = 7031
Description =

Error - 10/12/2009 11:00:06 PM | Computer Name = Gretchen-PC | Source = ipnathlp | ID = 31004
Description = The DNS proxy agent was unable to allocate 0 bytes of memory. This
may indicate that the system is low on virtual memory, or that the memory manager
has encountered an internal error.

Error - 10/14/2009 9:34:50 PM | Computer Name = Gretchen-PC | Source = ipnathlp | ID = 31004
Description = The DNS proxy agent was unable to allocate 0 bytes of memory. This
may indicate that the system is low on virtual memory, or that the memory manager
has encountered an internal error.


< End of report >

mcphersondk
Novice
Novice

Posts Posts : 7
Joined Joined : 2010-02-21
OS OS : Vista
Points Points : 24923
# Likes # Likes : 0

View user profile

Back to top Go down

Re: antivirus vista 2010

Post by mcphersondk on 21st February 2010, 2:19 am

OTL logfile created on: 2/20/2010 8:07:09 PM - Run 1
OTL by OldTimer - Version 3.1.30.1 Folder = C:\Users\Gretchen\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18882)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 55.00% Memory free
6.00 Gb Paging File | 4.00 Gb Available in Paging File | 71.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 218.20 Gb Total Space | 165.83 Gb Free Space | 76.00% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 14.65 Gb Total Space | 8.87 Gb Free Space | 60.54% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: GRETCHEN-PC
Current User Name: Gretchen
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/02/20 20:05:59 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Users\Gretchen\Desktop\OTL.exe
PRC - [2010/02/19 22:57:48 | 000,184,320 | -HS- | M] () -- C:\Users\Gretchen\AppData\Local\av.exe
PRC - [2010/01/22 19:16:42 | 000,141,608 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2010/01/22 19:16:30 | 000,545,576 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2009/11/13 16:15:00 | 001,807,600 | ---- | M] () -- C:\Program Files\Dell DataSafe Online\DataSafeOnline.exe
PRC - [2009/10/29 06:54:44 | 001,218,008 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2009/10/27 11:19:46 | 000,895,696 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MpfSrv.exe
PRC - [2009/10/02 12:02:56 | 000,026,640 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSK\msksrver.exe
PRC - [2009/09/17 13:29:04 | 000,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe
PRC - [2009/09/16 08:28:38 | 000,606,736 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe
PRC - [2009/09/13 18:52:50 | 001,048,392 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Essentials\msseces.exe
PRC - [2009/09/04 13:16:54 | 000,158,448 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Zune\ZuneLauncher.exe
PRC - [2009/08/19 10:23:24 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2009/08/19 10:23:22 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2009/07/31 14:23:21 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/07/27 18:19:10 | 000,199,184 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe
PRC - [2009/07/09 11:22:18 | 000,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/07/08 10:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
PRC - [2009/07/07 18:10:02 | 002,482,848 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
PRC - [2009/07/02 17:36:52 | 000,203,800 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Essentials\MpCmdRun.exe
PRC - [2009/07/02 17:36:52 | 000,017,904 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
PRC - [2009/06/03 13:46:38 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe
PRC - [2009/05/19 10:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2009/04/11 00:28:08 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
PRC - [2009/04/11 00:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/04/01 02:55:48 | 000,252,952 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxsrvc.exe
PRC - [2009/04/01 02:55:48 | 000,141,848 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxtray.exe
PRC - [2009/04/01 02:55:34 | 000,150,552 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxpers.exe
PRC - [2009/04/01 02:55:22 | 000,173,592 | ---- | M] (Intel Corporation) -- C:\Windows\System32\hkcmd.exe
PRC - [2009/04/01 01:00:24 | 000,483,428 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2009/04/01 01:00:18 | 000,254,042 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\stacsv.exe
PRC - [2009/04/01 01:00:04 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\AEstSrv.exe
PRC - [2009/04/01 00:18:54 | 000,049,250 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe
PRC - [2009/04/01 00:18:34 | 000,217,088 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe
PRC - [2009/04/01 00:18:32 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe
PRC - [2009/02/27 14:10:16 | 001,316,192 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DellDock.exe
PRC - [2009/02/23 08:48:06 | 000,632,048 | ---- | M] (SoftThinks) -- C:\Windows\sminst\SftService.exe
PRC - [2009/02/04 20:26:38 | 000,128,232 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2009/01/29 23:50:06 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2009/01/09 11:06:32 | 001,735,760 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\QuickSet\quickset.exe
PRC - [2009/01/05 16:19:10 | 000,824,560 | ---- | M] (Dell Inc.) -- c:\Program Files\Common Files\Dell\Advanced Networking Service\hnm_svc.exe
PRC - [2009/01/05 16:19:08 | 000,173,296 | ---- | M] (SingleClick Systems) -- C:\Program Files\Common Files\Dell\Remote Access File Sync Service\dsl_fs_sync.exe
PRC - [2008/12/22 04:34:46 | 003,810,304 | ---- | M] (Dell Inc.) -- C:\Windows\System32\WLTRAY.EXE
PRC - [2008/12/22 04:34:46 | 000,026,112 | ---- | M] () -- C:\Windows\System32\WLTRYSVC.EXE
PRC - [2008/12/22 04:32:44 | 002,809,856 | ---- | M] (Dell Inc.) -- C:\Windows\System32\BCMWLTRY.EXE
PRC - [2008/12/18 12:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
PRC - [2008/12/12 11:17:38 | 000,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/11/06 05:42:59 | 000,039,208 | ---- | M] (AOL, LLC.) -- C:\Program Files\AOL 9.1\waol.exe
PRC - [2008/09/19 16:44:16 | 000,459,408 | ---- | M] (N.E.W. North America, Corp.) -- C:\Program Files\PC Care Center\Bin\EndUserService.exe
PRC - [2008/05/07 16:41:14 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/05/07 16:41:12 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/03/15 20:49:21 | 000,156,304 | ---- | M] (N.E.W. North America, Corp.) -- C:\Program Files\PC Care Center\Bin\WWTray.exe
PRC - [2008/01/20 20:25:33 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2007/09/21 12:26:34 | 000,015,872 | ---- | M] (Apache Software Foundation) -- C:\Program Files\Common Files\Dell\apache\bin\httpd.exe
PRC - [2007/09/14 12:35:04 | 005,730,304 | ---- | M] () -- C:\Program Files\Common Files\Dell\MySQL\bin\mysqld.exe
PRC - [2007/05/25 11:16:08 | 000,042,032 | ---- | M] (AOL LLC) -- C:\Program Files\Common Files\aol\1253935377\ee\aolsoftware.exe
PRC - [2007/03/13 08:41:02 | 000,042,032 | ---- | M] (AOL LLC) -- C:\Program Files\Common Files\aol\1253935377\ee\anotify.exe
PRC - [2007/03/05 19:57:30 | 000,538,096 | ---- | M] ( ) -- C:\Windows\System32\dlbacoms.exe
PRC - [2006/10/23 06:50:35 | 000,046,640 | R--- | M] (AOL LLC) -- C:\Program Files\Common Files\aol\acs\AOLacsd.exe
PRC - [2006/04/02 20:07:44 | 000,389,120 | ---- | M] (Linksys, a Division of Cisco Systems, Inc.) -- C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
PRC - [2005/09/09 02:24:30 | 000,102,400 | ---- | M] () -- C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
PRC - [2005/09/09 00:18:10 | 000,057,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe


========== Modules (SafeList) ==========

MOD - [2010/02/20 20:05:59 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Users\Gretchen\Desktop\OTL.exe
MOD - [2009/04/11 00:21:38 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2010/02/19 22:58:35 | 000,135,664 | ---- | M] (Google Inc.) [Auto | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate) Google Update Service (gupdate)
SRV - [2010/02/17 19:59:09 | 000,182,768 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2010/01/22 19:16:30 | 000,545,576 | ---- | M] (Apple Inc.) [On_Demand | Running] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2009/10/27 11:19:46 | 000,895,696 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MPF\MpfSrv.exe -- (MpfService)
SRV - [2009/10/02 12:02:56 | 000,026,640 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSK\MskSrver.exe -- (MSK80Service)
SRV - [2009/09/24 19:27:04 | 000,793,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/09/17 13:29:04 | 000,865,832 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSC\mcmscsvc.exe -- (mcmscsvc)
SRV - [2009/09/16 10:23:32 | 000,365,072 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2009/09/16 09:22:08 | 000,144,704 | ---- | M] (McAfee, Inc.) [Unknown | Stopped] -- C:\Program Files\McAfee\VirusScan\Mcshield.exe -- (McShield)
SRV - [2009/09/16 08:28:38 | 000,606,736 | ---- | M] (McAfee, Inc.) [On_Demand | Running] -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe -- (McSysmon)
SRV - [2009/09/04 13:17:00 | 000,447,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ZuneWlanCfgSvc.exe -- (ZuneWlanCfgSvc)
SRV - [2009/09/04 13:16:54 | 005,893,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Zune\ZuneNss.exe -- (ZuneNetworkSvc)
SRV - [2009/07/09 11:22:18 | 000,144,712 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/07/08 10:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McProxy\McProxy.exe -- (McProxy)
SRV - [2009/07/07 18:10:02 | 002,482,848 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe -- (McNASvc)
SRV - [2009/07/02 17:36:52 | 000,017,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV - [2009/06/22 03:16:27 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2009/05/19 10:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2009/04/01 01:00:18 | 000,254,042 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\stacsv.exe -- (STacSV)
SRV - [2009/04/01 01:00:04 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\AEstSrv.exe -- (AESTFilters)
SRV - [2009/02/23 08:48:06 | 000,632,048 | ---- | M] (SoftThinks) [Auto | Running] -- C:\Windows\sminst\sftservice.EXE -- (SftService)
SRV - [2009/01/29 23:50:06 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter)
SRV - [2009/01/05 16:19:10 | 000,824,560 | ---- | M] (Dell Inc.) [Auto | Running] -- c:\Program Files\Common Files\Dell\Advanced Networking Service\hnm_svc.exe -- (hnmsvc)
SRV - [2009/01/05 16:19:08 | 000,173,296 | ---- | M] (SingleClick Systems) [Auto | Running] -- C:\Program Files\Common Files\Dell\Remote Access File Sync Service\dsl_fs_sync.exe -- (dsl-fs-sync)
SRV - [2008/12/22 04:34:46 | 000,026,112 | ---- | M] () [Auto | Running] -- C:\Windows\System32\WLTRYSVC.EXE -- (wltrysvc)
SRV - [2008/12/18 12:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV - [2008/12/12 11:17:38 | 000,238,888 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2008/11/04 01:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2008/09/19 16:44:16 | 000,459,408 | ---- | M] (N.E.W. North America, Corp.) [Auto | Running] -- C:\Program Files\PC Care Center\Bin\EndUserService.exe -- (WarrantyWare)
SRV - [2008/05/07 16:41:14 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2008/03/24 06:35:22 | 000,074,384 | R--- | M] (MicroVision Development, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- (stllssvr)
SRV - [2008/01/20 20:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/09/21 12:26:34 | 000,015,872 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\Program Files\Common Files\Dell\apache\bin\httpd.exe -- (Apache2.2)
SRV - [2007/09/14 12:35:04 | 005,730,304 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\Dell\MySQL\bin\mysqld.exe -- (dsl-db)
SRV - [2007/03/05 19:57:30 | 000,538,096 | ---- | M] ( ) [Auto | Running] -- C:\Windows\System32\dlbacoms.exe -- (dlba_device)
SRV - [2006/11/02 06:35:29 | 000,013,312 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\ehome\ehstart.dll -- (ehstart)
SRV - [2006/10/26 13:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006/10/23 06:50:35 | 000,046,640 | R--- | M] (AOL LLC) [Auto | Running] -- C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe -- (AOL ACS)
SRV - [2005/09/09 02:24:30 | 000,102,400 | ---- | M] () [Auto | Running] -- C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor4.0)


========== Driver Services (SafeList) ==========

DRV - [2009/11/25 09:54:23 | 000,029,184 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\goprot51.sys -- (GoProto)
DRV - [2009/09/16 09:22:48 | 000,214,664 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2009/09/16 09:22:48 | 000,079,816 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2009/09/16 09:22:48 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mfesmfk.sys -- (mfesmfk)
DRV - [2009/09/16 09:22:48 | 000,035,272 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2009/09/16 09:22:14 | 000,034,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mferkdk.sys -- (mferkdk)
DRV - [2009/07/16 11:32:26 | 000,130,424 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\Mpfp.sys -- (MPFP)
DRV - [2009/06/18 18:48:04 | 000,142,832 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\MpFilter.sys -- (MpFilter)
DRV - [2009/06/18 18:48:04 | 000,042,480 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2009/05/18 13:17:00 | 000,026,600 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2009/04/10 22:45:24 | 000,113,664 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rmcast.sys -- (RMCAST) RMCAST (Pgm)
DRV - [2009/04/10 22:42:54 | 000,073,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2009/04/01 02:55:26 | 004,568,064 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2009/04/01 02:53:56 | 000,062,976 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTSTOR.sys -- (RTSTOR)
DRV - [2009/04/01 01:00:26 | 000,398,336 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2009/04/01 00:18:30 | 000,192,048 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2008/12/22 04:32:18 | 000,018,424 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\bcm42rly.sys -- (BCM42RLY)
DRV - [2008/12/17 03:22:02 | 001,331,192 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XX)
DRV - [2008/11/04 17:16:40 | 000,022,904 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Dell Support Center\HWDiag\bin\pcd5srvc.pkms -- (PCD5SRVC{3F6A8B78-EC003E00-05040104})
DRV - [2008/09/01 04:19:40 | 000,304,128 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk60x86.sys -- (yukonwlh)
DRV - [2008/09/01 04:15:54 | 000,317,976 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\iastor.sys -- (iaStor)
DRV - [2008/06/17 10:01:06 | 000,022,016 | ---- | M] (SingleClick Systems) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\packet.sys -- (Packet)
DRV - [2008/01/20 20:23:27 | 000,386,616 | ---- | M] (LSI Corporation, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasr.sys -- (MegaSR)
DRV - [2008/01/20 20:23:27 | 000,149,560 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2008/01/20 20:23:27 | 000,031,288 | ---- | M] (LSI Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2008/01/20 20:23:26 | 000,101,432 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2008/01/20 20:23:26 | 000,074,808 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2008/01/20 20:23:26 | 000,040,504 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2008/01/20 20:23:26 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUSB)
DRV - [2008/01/20 20:23:25 | 000,300,600 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2008/01/20 20:23:25 | 000,220,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel(R)
DRV - [2008/01/20 20:23:25 | 000,089,656 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2008/01/20 20:23:24 | 001,122,360 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2008/01/20 20:23:24 | 000,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2008/01/20 20:23:24 | 000,079,928 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2008/01/20 20:23:23 | 000,235,064 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2008/01/20 20:23:23 | 000,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2008/01/20 20:23:23 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2008/01/20 20:23:23 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2008/01/20 20:23:23 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2008/01/20 20:23:23 | 000,079,416 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2008/01/20 20:23:22 | 000,342,584 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2008/01/20 20:23:21 | 000,422,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2008/01/20 20:23:21 | 000,102,968 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2008/01/20 20:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2008/01/20 20:23:20 | 000,238,648 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2008/01/20 20:23:00 | 000,020,024 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2008/01/20 20:23:00 | 000,019,000 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2008/01/20 20:23:00 | 000,017,464 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2007/11/14 02:00:00 | 000,043,840 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2006/11/29 16:24:57 | 000,033,588 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
DRV - [2006/11/02 03:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 03:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 03:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 03:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 03:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 03:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 03:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 03:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 03:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 03:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 03:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 02:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 02:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 02:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 02:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 02:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 02:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 01:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006/11/02 01:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2006/11/02 00:37:21 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL LLC)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

mcphersondk
Novice
Novice

Posts Posts : 7
Joined Joined : 2010-02-21
OS OS : Vista
Points Points : 24923
# Likes # Likes : 0

View user profile

Back to top Go down

Re: antivirus vista 2010

Post by mcphersondk on 21st February 2010, 2:19 am

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Crawler Search"
FF - prefs.js..browser.search.order.1: "Crawler Search"
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "http://www.aol.com/"
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:7
FF - prefs.js..keyword.URL: "http://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60347&qkw="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"


FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/02/01 23:43:06 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/02/20 15:05:44 | 000,000,000 | ---D | M]

[2009/10/04 11:07:09 | 000,000,000 | ---D | M] -- C:\Users\Gretchen\AppData\Roaming\Mozilla\Extensions
[2010/02/19 23:30:59 | 000,000,000 | ---D | M] -- C:\Users\Gretchen\AppData\Roaming\Mozilla\Firefox\Profiles\ngdu8217.default\extensions
[2009/10/11 15:01:55 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Gretchen\AppData\Roaming\Mozilla\Firefox\Profiles\ngdu8217.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/01/30 23:11:51 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/02/01 23:43:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
[2009/09/21 11:24:16 | 000,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml

O1 HOSTS File: ([2006/09/18 15:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho.dll ()
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (AOL Toolbar Loader) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL LLC)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.)
O2 - BHO: (BrowserHelper Class) - {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} - C:\Program Files\SGPSA\SearchAssistant.dll File not found
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL LLC)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Photo Downloader] C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Windows\System32\WLTRAY.EXE (Dell Inc.)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files\Dell DataSafe Online\DataSafeOnline.exe ()
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [FBSSA] C:\Program Files\SGPSA\ie3sh.exe File not found
O4 - HKLM..\Run: [HostManager] C:\Program Files\Common Files\aol\1253935377\ee\aolsoftware.exe (AOL LLC)
O4 - HKLM..\Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\Windows\System32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [MSSE] c:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Persistence] C:\Windows\System32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Zune Launcher] c:\Program Files\Zune\ZuneLauncher.exe (Microsoft Corporation)
O4 - HKCU..\Run: [AOL Fast Start] C:\Program Files\AOL 9.1\AOL.EXE (AOL, LLC.)
O4 - HKCU..\Run: [EasyLinkAdvisor] C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe (Linksys, a Division of Cisco Systems, Inc.)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - HKCU..\RunOnce: [Shockwave Updater] C:\Windows\System32\Adobe\Shockwave 11\SwHelper_1151601.exe -Update -1151601 -Mozilla\4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident\4.0; File not found
O4 - Startup: C:\Users\Gretchen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
O4 - Startup: C:\Users\Gretchen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O15 - HKCU\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} [You must be registered and logged in to see this link.] (Shockwave ActiveX Control)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper20073151.dll (Installation Support)
O16 - DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} [You must be registered and logged in to see this link.] (UploadListView Class)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} [You must be registered and logged in to see this link.] (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_11)
O16 - DPF: {C7DEDA04-2FFF-4B81-AE66-0A0E0EF4AD2F} [You must be registered and logged in to see this link.] (Image Uploader Control)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_16)
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} [You must be registered and logged in to see this link.] (Virtools WebPlayer Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [You must be registered and logged in to see this link.] (get_atlcom Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\GoToAssist: DllName - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll - C:\Program Files\Citrix\GoToAssist\514\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\Cityscape_1920x1200.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\Cityscape_1920x1200.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 15:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2004/04/30 15:01:00 | 000,000,053 | -HS- | M] () - E:\AUTORUN.INF -- [ NTFS ]
O33 - MountPoints2\{2f965db6-cea3-11de-b772-00038a000015}\Shell - "" = AutoRun
O33 - MountPoints2\{2f965db6-cea3-11de-b772-00038a000015}\Shell\AutoRun\command - "" = D:\LapNetWizard.exe -- File not found
O33 - MountPoints2\{2f965dc0-cea3-11de-b772-00038a000015}\Shell - "" = AutoRun
O33 - MountPoints2\{2f965dc0-cea3-11de-b772-00038a000015}\Shell\AutoRun\command - "" = D:\LapNetWizard.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~2\SPYWAR~1\sp_rsdel.exe "\??\C:\PROGRA~2\SPYWAR~1\sp_rsdel.dat,) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/02/20 20:05:38 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Users\Gretchen\Desktop\OTL.exe
[2010/02/20 15:20:24 | 000,181,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010/02/19 23:13:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2010/02/17 20:01:34 | 000,000,000 | ---D | C] -- C:\Users\Gretchen\AppData\Roaming\Google
[2010/02/17 20:01:34 | 000,000,000 | ---D | C] -- C:\Users\Gretchen\AppData\Local\Google
[2010/02/17 19:58:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2010/02/17 19:58:57 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010/02/10 13:47:12 | 003,600,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010/02/10 13:47:12 | 003,548,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010/02/10 13:46:51 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010/02/10 13:46:50 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010/02/10 13:46:50 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010/02/10 13:46:49 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010/02/08 12:31:43 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2010/02/08 12:31:30 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2010/02/08 12:22:43 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010/02/05 22:22:11 | 000,000,000 | ---D | C] -- C:\Users\Gretchen\Documents\what_if_11
[2010/02/01 03:22:08 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2010/02/01 03:05:36 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2010/02/01 03:05:35 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll
[2010/02/01 03:05:34 | 003,023,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
[2010/02/01 03:04:51 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2010/02/01 03:04:50 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2010/02/01 03:04:49 | 000,829,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2010/02/01 03:04:49 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2010/02/01 03:04:49 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2010/02/01 03:04:49 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2010/02/01 03:04:48 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
[2010/02/01 03:04:48 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll
[2010/02/01 03:04:48 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2010/02/01 03:04:48 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2010/02/01 03:04:48 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2010/02/01 03:04:48 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2010/02/01 03:04:48 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2010/02/01 03:04:48 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2010/02/01 03:04:48 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2010/02/01 03:04:47 | 001,554,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll
[2010/02/01 03:04:47 | 001,064,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2010/02/01 03:04:47 | 001,030,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2010/02/01 03:04:47 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2010/02/01 03:04:47 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2010/02/01 03:04:47 | 000,486,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2010/02/01 03:04:47 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2010/02/01 03:04:47 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2010/02/01 03:04:47 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2010/02/01 03:04:47 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2010/02/01 03:04:03 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll
[2010/02/01 03:04:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2010/02/01 03:04:00 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll
[2010/02/01 03:03:58 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtpUS.dll
[2010/02/01 03:03:58 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdConns.dll
[2010/02/01 03:03:57 | 000,546,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2010/02/01 03:03:57 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll
[2010/02/01 03:03:57 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2010/02/01 03:03:57 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtp.dll
[2010/02/01 03:03:57 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll
[2010/02/01 03:03:57 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2010/02/01 03:03:57 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2010/02/01 03:02:04 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll
[2010/02/01 03:02:03 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2010/01/31 20:19:26 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2010/01/31 20:19:26 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2010/01/31 20:19:23 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2010/01/31 19:42:29 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2010/01/22 08:55:37 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010/01/22 08:55:37 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010/01/22 08:55:37 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010/01/22 08:55:37 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010/01/22 08:55:37 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010/01/22 08:55:37 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010/01/22 08:55:37 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010/01/22 08:55:37 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010/01/22 08:55:37 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2010/01/22 08:55:37 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010/01/22 08:55:37 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010/01/22 08:55:37 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010/01/22 08:55:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010/01/22 08:55:37 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2009/08/29 18:31:26 | 008,653,312 | ---- | C] (Dell, Inc. ) -- C:\Users\Gretchen\AppData\Roaming\DataSafeDotNet.exe
[2007/01/30 13:47:52 | 000,643,072 | ---- | C] ( ) -- C:\Windows\System32\dlbapmui.dll
[2007/01/30 13:46:00 | 001,224,704 | ---- | C] ( ) -- C:\Windows\System32\dlbaserv.dll
[2007/01/30 13:38:18 | 000,421,888 | ---- | C] ( ) -- C:\Windows\System32\dlbacomm.dll
[2007/01/30 13:36:30 | 000,585,728 | ---- | C] ( ) -- C:\Windows\System32\dlbalmpm.dll
[2007/01/30 13:35:00 | 000,397,312 | ---- | C] ( ) -- C:\Windows\System32\dlbaiesc.dll
[2007/01/30 13:32:06 | 000,094,208 | ---- | C] ( ) -- C:\Windows\System32\dlbapplc.dll
[2007/01/30 13:31:08 | 000,684,032 | ---- | C] ( ) -- C:\Windows\System32\dlbacomc.dll
[2007/01/30 13:30:30 | 000,163,840 | ---- | C] ( ) -- C:\Windows\System32\dlbaprox.dll
[2007/01/30 13:22:32 | 000,413,696 | ---- | C] ( ) -- C:\Windows\System32\dlbainpa.dll
[2007/01/30 13:21:46 | 000,995,328 | ---- | C] ( ) -- C:\Windows\System32\dlbausb1.dll
[2007/01/30 13:17:02 | 000,696,320 | ---- | C] ( ) -- C:\Windows\System32\dlbahbn3.dll

========== Files - Modified Within 30 Days ==========

[2010/02/20 20:10:31 | 002,359,296 | -HS- | M] () -- C:\Users\Gretchen\ntuser.dat
[2010/02/20 20:05:59 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Users\Gretchen\Desktop\OTL.exe
[2010/02/20 20:04:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/02/20 19:46:16 | 000,170,790 | ---- | M] () -- C:\Users\Gretchen\Desktop\GetSystemInfo_GRETCHEN-PC_Gretchen_2010_02_20_19_41_56.zip
[2010/02/20 19:16:22 | 000,010,716 | -HS- | M] () -- C:\Users\Gretchen\AppData\Local\v66l66MW5Tq
[2010/02/20 19:06:30 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/02/20 19:06:30 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/02/20 18:52:41 | 000,025,074 | ---- | M] () -- C:\Windows\System32\Config.MPF
[2010/02/20 16:27:46 | 000,000,428 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{B5916BA7-F939-42B2-AF8D-945F99774781}.job
[2010/02/20 15:15:41 | 000,690,960 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/02/20 15:15:41 | 000,595,684 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/02/20 15:15:41 | 000,101,350 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/02/20 15:07:30 | 000,000,439 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
[2010/02/20 15:06:54 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/02/20 15:06:51 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/02/20 15:06:36 | 000,524,288 | -HS- | M] () -- C:\Users\Gretchen\ntuser.dat{0e765714-1e63-11df-b0c7-f5f60d782337}.TMContainer00000000000000000002.regtrans-ms
[2010/02/20 15:06:36 | 000,524,288 | -HS- | M] () -- C:\Users\Gretchen\ntuser.dat{0e765714-1e63-11df-b0c7-f5f60d782337}.TMContainer00000000000000000001.regtrans-ms
[2010/02/20 15:06:36 | 000,065,536 | -HS- | M] () -- C:\Users\Gretchen\ntuser.dat{0e765714-1e63-11df-b0c7-f5f60d782337}.TM.blf
[2010/02/20 15:06:19 | 3181,760,512 | -HS- | M] () -- C:\hiberfil.sys
[2010/02/20 15:04:18 | 000,524,288 | -HS- | M] () -- C:\Users\Gretchen\NTUSER.DAT{646a564e-1de3-11df-8642-00038a000015}.TMContainer00000000000000000001.regtrans-ms
[2010/02/20 15:04:18 | 000,065,536 | -HS- | M] () -- C:\Users\Gretchen\NTUSER.DAT{646a564e-1de3-11df-8642-00038a000015}.TM.blf
[2010/02/19 23:58:51 | 000,031,596 | ---- | M] () -- C:\Users\Gretchen\Documents\newresume.odt
[2010/02/19 23:47:49 | 000,524,288 | -HS- | M] () -- C:\Users\Gretchen\NTUSER.DAT{646a564e-1de3-11df-8642-00038a000015}.TMContainer00000000000000000002.regtrans-ms
[2010/02/19 23:13:32 | 000,000,944 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010/02/19 22:57:48 | 000,184,320 | -HS- | M] () -- C:\Users\Gretchen\AppData\Local\av.exe
[2010/02/19 10:12:36 | 000,025,600 | ---- | M] () -- C:\Users\Gretchen\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/02/18 19:48:13 | 000,000,564 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for Gretchen.job
[2010/02/09 16:39:36 | 000,035,730 | ---- | M] () -- C:\Users\Gretchen\Documents\resume critique.odt
[2010/02/09 08:43:18 | 000,001,889 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/02/08 12:34:49 | 000,001,804 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/02/08 12:04:24 | 000,001,854 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2010/02/06 13:31:33 | 001,199,649 | ---- | M] () -- C:\Users\Gretchen\Documents\girlsfrontprintready.pdf
[2010/02/06 13:25:33 | 000,815,409 | ---- | M] () -- C:\Users\Gretchen\Documents\boysfrontprintready.pdf
[2010/02/05 22:22:11 | 000,020,052 | ---- | M] () -- C:\Users\Gretchen\Documents\what_if_11.zip
[2010/02/03 11:22:22 | 000,031,232 | ---- | M] () -- C:\Users\Gretchen\Documents\kristin.mcphersonnd.doc
[2010/02/03 11:22:04 | 000,031,232 | ---- | M] () -- C:\Users\Gretchen\Documents\resume.doc
[2010/02/03 11:04:36 | 000,014,523 | ---- | M] () -- C:\Users\Gretchen\Documents\kristin.mcphersonnd.html
[2010/02/01 13:24:16 | 011,593,013 | ---- | M] () -- C:\Users\Gretchen\Documents\ddflyer.final.pdf
[2010/02/01 03:21:49 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2010/02/01 03:21:36 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2010/02/01 03:21:29 | 000,524,288 | -HS- | M] () -- C:\Users\Gretchen\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2010/02/01 03:21:29 | 000,065,536 | -HS- | M] () -- C:\Users\Gretchen\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2010/02/01 00:51:56 | 000,287,180 | ---- | M] () -- C:\Users\Gretchen\Documents\gf.jpg
[2010/02/01 00:48:11 | 000,287,180 | ---- | M] () -- C:\Users\Gretchen\Documents\girlsfront.jpg
[2010/02/01 00:20:12 | 000,186,993 | ---- | M] () -- C:\Users\Gretchen\Documents\boysfront.jpg
[2010/01/31 20:26:05 | 000,430,616 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/01/31 15:08:01 | 011,741,073 | ---- | M] () -- C:\Users\Gretchen\Documents\ddflyer4.pdf
[2010/01/31 01:03:29 | 011,168,711 | ---- | M] () -- C:\Users\Gretchen\Documents\ddflyer3.pdf
[2010/01/30 22:44:43 | 012,848,251 | ---- | M] () -- C:\Users\Gretchen\Documents\ddflyer2.pdf
[2010/01/29 16:11:38 | 011,140,795 | ---- | M] () -- C:\Users\Gretchen\Documents\ddflyer.pdf
[2010/01/27 11:34:26 | 000,015,832 | ---- | M] () -- C:\Users\Gretchen\Documents\POSTER SIGN-UP.pdf
[2010/01/27 11:19:40 | 000,808,876 | ---- | M] () -- C:\Users\Gretchen\Documents\ddtickets.odt
[2010/01/27 11:19:10 | 000,511,482 | ---- | M] () -- C:\Users\Gretchen\Documents\DDtickets.pdf
[2010/01/27 11:02:11 | 000,508,896 | ---- | M] () -- C:\Users\Gretchen\Documents\ticketbackadultflip.jpg
[2010/01/27 10:48:40 | 000,355,564 | ---- | M] () -- C:\Users\Gretchen\Documents\ticketfront.jpg
[2010/01/25 17:23:10 | 000,011,681 | ---- | M] () -- C:\Users\Gretchen\Documents\Untitled 1.ods
[2010/01/25 10:50:09 | 000,023,718 | ---- | M] () -- C:\Users\Gretchen\Documents\volunteer sign-up.pdf
[2010/01/22 23:32:15 | 000,018,466 | ---- | M] () -- C:\Users\Gretchen\Documents\material needs.pdf
[2010/01/21 22:47:06 | 001,163,619 | ---- | M] () -- C:\Users\Gretchen\Documents\order form.odt

========== Files Created - No Company Name ==========

[2010/02/20 19:42:06 | 000,170,790 | ---- | C] () -- C:\Users\Gretchen\Desktop\GetSystemInfo_GRETCHEN-PC_Gretchen_2010_02_20_19_41_56.zip
[2010/02/20 15:06:36 | 000,524,288 | -HS- | C] () -- C:\Users\Gretchen\ntuser.dat{0e765714-1e63-11df-b0c7-f5f60d782337}.TMContainer00000000000000000002.regtrans-ms
[2010/02/20 15:06:36 | 000,524,288 | -HS- | C] () -- C:\Users\Gretchen\ntuser.dat{0e765714-1e63-11df-b0c7-f5f60d782337}.TMContainer00000000000000000001.regtrans-ms
[2010/02/20 15:06:36 | 000,065,536 | -HS- | C] () -- C:\Users\Gretchen\ntuser.dat{0e765714-1e63-11df-b0c7-f5f60d782337}.TM.blf
[2010/02/20 15:06:19 | 3181,760,512 | -HS- | C] () -- C:\hiberfil.sys
[2010/02/19 23:58:48 | 000,031,596 | ---- | C] () -- C:\Users\Gretchen\Documents\newresume.odt
[2010/02/19 23:47:49 | 000,524,288 | -HS- | C] () -- C:\Users\Gretchen\NTUSER.DAT{646a564e-1de3-11df-8642-00038a000015}.TMContainer00000000000000000002.regtrans-ms
[2010/02/19 23:47:49 | 000,524,288 | -HS- | C] () -- C:\Users\Gretchen\NTUSER.DAT{646a564e-1de3-11df-8642-00038a000015}.TMContainer00000000000000000001.regtrans-ms
[2010/02/19 23:47:49 | 000,065,536 | -HS- | C] () -- C:\Users\Gretchen\NTUSER.DAT{646a564e-1de3-11df-8642-00038a000015}.TM.blf
[2010/02/19 23:13:32 | 000,000,944 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010/02/19 22:59:09 | 000,000,886 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/02/19 22:59:06 | 000,000,882 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/02/19 22:57:49 | 000,010,716 | -HS- | C] () -- C:\Users\Gretchen\AppData\Local\v66l66MW5Tq
[2010/02/19 22:57:48 | 000,184,320 | -HS- | C] () -- C:\Users\Gretchen\AppData\Local\av.exe
[2010/02/09 16:39:32 | 000,035,730 | ---- | C] () -- C:\Users\Gretchen\Documents\resume critique.odt
[2010/02/09 08:43:18 | 000,001,889 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/02/08 12:34:49 | 000,001,804 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/02/08 12:04:24 | 000,001,854 | ---- | C] () -- C:\Users\Public\Desktop\Safari.lnk
[2010/02/06 13:31:30 | 001,199,649 | ---- | C] () -- C:\Users\Gretchen\Documents\girlsfrontprintready.pdf
[2010/02/06 13:25:29 | 000,815,409 | ---- | C] () -- C:\Users\Gretchen\Documents\boysfrontprintready.pdf
[2010/02/05 22:22:10 | 000,020,052 | ---- | C] () -- C:\Users\Gretchen\Documents\what_if_11.zip
[2010/02/03 11:22:21 | 000,031,232 | ---- | C] () -- C:\Users\Gretchen\Documents\kristin.mcphersonnd.doc
[2010/02/03 11:21:54 | 000,031,232 | ---- | C] () -- C:\Users\Gretchen\Documents\resume.doc
[2010/02/03 11:04:34 | 000,014,523 | ---- | C] () -- C:\Users\Gretchen\Documents\kristin.mcphersonnd.html
[2010/02/01 13:24:05 | 011,593,013 | ---- | C] () -- C:\Users\Gretchen\Documents\ddflyer.final.pdf
[2010/02/01 03:21:49 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2010/02/01 03:21:36 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2010/02/01 00:51:54 | 000,287,180 | ---- | C] () -- C:\Users\Gretchen\Documents\gf.jpg
[2010/02/01 00:48:11 | 000,287,180 | ---- | C] () -- C:\Users\Gretchen\Documents\girlsfront.jpg
[2010/02/01 00:20:11 | 000,186,993 | ---- | C] () -- C:\Users\Gretchen\Documents\boysfront.jpg
[2010/01/31 15:07:42 | 011,741,073 | ---- | C] () -- C:\Users\Gretchen\Documents\ddflyer4.pdf
[2010/01/31 01:03:15 | 011,168,711 | ---- | C] () -- C:\Users\Gretchen\Documents\ddflyer3.pdf
[2010/01/30 22:44:29 | 012,848,251 | ---- | C] () -- C:\Users\Gretchen\Documents\ddflyer2.pdf
[2010/01/29 16:11:28 | 011,140,795 | ---- | C] () -- C:\Users\Gretchen\Documents\ddflyer.pdf
[2010/01/27 11:34:24 | 000,015,832 | ---- | C] () -- C:\Users\Gretchen\Documents\POSTER SIGN-UP.pdf
[2010/01/27 11:19:35 | 000,808,876 | ---- | C] () -- C:\Users\Gretchen\Documents\ddtickets.odt
[2010/01/27 11:16:24 | 000,511,482 | ---- | C] () -- C:\Users\Gretchen\Documents\DDtickets.pdf
[2010/01/27 11:02:10 | 000,508,896 | ---- | C] () -- C:\Users\Gretchen\Documents\ticketbackadultflip.jpg
[2010/01/27 10:48:39 | 000,355,564 | ---- | C] () -- C:\Users\Gretchen\Documents\ticketfront.jpg
[2010/01/25 17:23:02 | 000,011,681 | ---- | C] () -- C:\Users\Gretchen\Documents\Untitled 1.ods
[2010/01/25 10:50:07 | 000,023,718 | ---- | C] () -- C:\Users\Gretchen\Documents\volunteer sign-up.pdf
[2010/01/21 22:47:03 | 001,163,619 | ---- | C] () -- C:\Users\Gretchen\Documents\order form.odt
[2010/01/21 22:42:44 | 000,018,466 | ---- | C] () -- C:\Users\Gretchen\Documents\material needs.pdf
[2009/11/25 09:18:35 | 000,000,260 | ---- | C] () -- C:\Windows\SetupWizard.INI
[2009/11/18 12:22:44 | 000,000,680 | ---- | C] () -- C:\Users\Gretchen\AppData\Local\d3d9caps.dat
[2009/09/21 16:32:32 | 000,000,102 | ---- | C] () -- C:\Windows\dellstat.ini
[2009/09/18 21:23:32 | 000,025,600 | ---- | C] () -- C:\Users\Gretchen\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/09/18 21:08:19 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/08/30 12:11:52 | 000,000,128 | ---- | C] () -- C:\Users\Gretchen\AppData\Roaming\wklnhst.dat
[2009/06/22 03:20:20 | 000,385,024 | ---- | C] () -- C:\Windows\System32\STODD.dll
[2009/06/22 03:20:20 | 000,380,928 | ---- | C] () -- C:\Windows\System32\STODDRD.dll
[2009/06/22 03:20:20 | 000,266,240 | ---- | C] () -- C:\Windows\System32\STODDIM.dll
[2009/06/22 03:20:20 | 000,253,952 | ---- | C] () -- C:\Windows\System32\STODDSC.dll
[2009/06/22 03:20:20 | 000,229,376 | ---- | C] () -- C:\Windows\System32\STFiles.dll
[2009/06/22 03:20:20 | 000,122,880 | ---- | C] () -- C:\Windows\System32\STLog.dll
[2009/06/22 03:20:20 | 000,118,784 | ---- | C] () -- C:\Windows\System32\STCrypto.dll
[2009/06/22 03:20:20 | 000,115,712 | ---- | C] () -- C:\Windows\System32\STNLS.dll
[2009/06/22 03:20:20 | 000,106,496 | ---- | C] () -- C:\Windows\System32\STPE.dll
[2009/06/22 03:20:20 | 000,098,304 | ---- | C] () -- C:\Windows\System32\STFileMonitor.dll
[2009/06/22 03:20:20 | 000,094,208 | ---- | C] () -- C:\Windows\System32\STMsXml.dll
[2009/06/22 03:20:20 | 000,077,824 | ---- | C] () -- C:\Windows\System32\STLangXml.dll
[2009/06/22 03:20:20 | 000,069,632 | ---- | C] () -- C:\Windows\System32\STRegistry.dll
[2009/06/22 03:20:20 | 000,066,048 | ---- | C] () -- C:\Windows\System32\STWiz.dll
[2009/06/22 03:20:20 | 000,065,536 | ---- | C] () -- C:\Windows\System32\STProcess.dll
[2009/06/22 03:20:19 | 000,471,040 | ---- | C] () -- C:\Windows\System32\PSTImage.dll
[2009/06/22 03:20:19 | 000,126,976 | ---- | C] () -- C:\Windows\System32\STWmiM.dll
[2009/06/22 03:20:19 | 000,110,592 | ---- | C] () -- C:\Windows\System32\PSTVdsDisk.dll
[2009/06/22 03:20:19 | 000,090,112 | ---- | C] () -- C:\Windows\System32\wnaspi32.dll
[2009/06/22 03:20:19 | 000,073,728 | ---- | C] () -- C:\Windows\System32\zlib1.dll
[2009/06/22 03:20:18 | 000,102,400 | ---- | C] () -- C:\Windows\System32\STShellVC6.dll
[2009/06/22 03:20:18 | 000,053,248 | ---- | C] () -- C:\Windows\System32\STCoreXml.dll
[2009/06/22 03:20:17 | 001,118,208 | ---- | C] () -- C:\Windows\System32\libxml2.dll
[2009/06/22 03:04:21 | 000,054,784 | ---- | C] () -- C:\Windows\System32\bcmwlrmt.dll
[2009/06/22 03:04:21 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2009/06/22 02:56:58 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll
[2007/02/26 17:08:32 | 000,479,232 | ---- | C] () -- C:\Windows\System32\dlbajswr.dll
[2007/02/26 17:08:26 | 000,090,112 | ---- | C] () -- C:\Windows\System32\dlbacur.dll
[2007/02/26 16:59:24 | 000,073,728 | ---- | C] () -- C:\Windows\System32\dlbacu.dll
[2007/02/26 16:59:12 | 000,413,696 | ---- | C] () -- C:\Windows\System32\dlbautil.dll
[2007/02/22 21:32:00 | 000,344,064 | ---- | C] () -- C:\Windows\System32\dlbacoin.dll
[2006/11/02 06:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 04:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 01:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2005/12/16 18:15:18 | 000,040,960 | ---- | C] () -- C:\Windows\System32\dlbavs.dll
[2005/09/13 16:27:08 | 000,061,440 | ---- | C] () -- C:\Windows\System32\dlbacnv4.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:5D432CE3
< End of report >

mcphersondk
Novice
Novice

Posts Posts : 7
Joined Joined : 2010-02-21
OS OS : Vista
Points Points : 24923
# Likes # Likes : 0

View user profile

Back to top Go down

Re: antivirus vista 2010

Post by Belahzur on 21st February 2010, 4:29 pm

Hello.

Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose CopyCrying


    :OTL
    PRC - [2010/02/19 22:57:48 | 000,184,320 | -HS- | M] () -- C:\Users\Gretchen\AppData\Local\av.exe
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
    [2010/02/20 19:16:22 | 000,010,716 | -HS- | M] () -- C:\Users\Gretchen\AppData\Local\v66l66MW5Tq
    [2010/02/19 22:57:48 | 000,184,320 | -HS- | M] () -- C:\Users\Gretchen\AppData\Local\av.exe



  • Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.

  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245101
# Likes # Likes : 1

View user profile

Back to top Go down

Re: antivirus vista 2010

Post by mcphersondk on 21st February 2010, 8:17 pm

After running the fix, notepad did not appear.

A box popped up saying it was complete & to click to open the log, but nothing happens from there. I did try it a few times to make sure.

mcphersondk
Novice
Novice

Posts Posts : 7
Joined Joined : 2010-02-21
OS OS : Vista
Points Points : 24923
# Likes # Likes : 0

View user profile

Back to top Go down

Re: antivirus vista 2010

Post by Belahzur on 21st February 2010, 8:20 pm

Please go here:
C:\_OTL

Inside that folder should be the log file.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245101
# Likes # Likes : 1

View user profile

Back to top Go down

Re: antivirus vista 2010

Post by mcphersondk on 21st February 2010, 8:24 pm

Smile

========== OTL ==========
Process av.exe killed successfully!
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
C:\Users\Gretchen\AppData\Local\v66l66MW5Tq moved successfully.
C:\Users\Gretchen\AppData\Local\av.exe moved successfully.

OTL by OldTimer - Version 3.1.30.1 log created on 02212010_141052

mcphersondk
Novice
Novice

Posts Posts : 7
Joined Joined : 2010-02-21
OS OS : Vista
Points Points : 24923
# Likes # Likes : 0

View user profile

Back to top Go down

Re: antivirus vista 2010

Post by Belahzur on 21st February 2010, 8:34 pm

Hello.

  • Click Start >> Control Panel.
  • Under the Programs click Uninstall a Program
  • Highlight the following:

    Java(TM) 6 Update 16
    Viewpoint Media Player

  • Click on the Uninstall/Change button at the top.

To remove all of the tools we used and the files and folders they created do the following:
Double click OTL.exe.

  • Click the CleanUp! button.
  • Select Yes when the "Begin cleanup Process?" prompt appears.
  • If you are prompted to Reboot during the cleanup, select Yes.
  • The tool will delete itself once it finishes.
How is the machine running now?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245101
# Likes # Likes : 1

View user profile

Back to top Go down

Re: antivirus vista 2010

Post by mcphersondk on 21st February 2010, 8:50 pm

Voilą!
Thank you Hooray!

mcphersondk
Novice
Novice

Posts Posts : 7
Joined Joined : 2010-02-21
OS OS : Vista
Points Points : 24923
# Likes # Likes : 0

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum