Antivirus The shield deluxe 2010

View previous topic View next topic Go down

Antivirus The shield deluxe 2010

Post by tinyskids on Wed Apr 07, 2010 2:22 am

you guys are great. You have helped me before. I seem to be in another jam. I did not download anything!!!!!, the problem started when my husband clicked on a profile picture from facebook. Now all these windows popup saying Antivirus the shield deluxe 2010.
I have tried runing mbam but it says that it can not run the exe file.
Also can you tell for sure that it came from facebook profile pix so I could let that person know????

Here is my hijack this file:

Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 10:19:00 PM, on 4/6/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\zHotkey.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Digital Media Reader\shwiconem.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Common Files\AOL\1127605169\ee\AOLSoftware.exe
C:\PROGRA~1\VERIZO~1\HELPSU~1\VERIZO~1.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Verizon\VSP\VerizonServicepoint.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Carbonite\CarbonitePreinstaller.exe
C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\AMERIC~1.0C\waol.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe
C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\runservice.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\Microsoft SQL Server\MSSQL$SOSHOME22\Binn\sqlservr.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
c:\program files\common files\aol\1127605169\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe
C:\Program Files\Common Files\Verizon Online\ConnMgr\cmisrv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\Common Files\Verizon Online\AppMgr\vzOpenUIServer.exe
C:\PROGRA~1\AMERIC~1.0C\shellmon.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
c:\PROGRA~1\mcafee\msc\mcupdmgr.exe
c:\PROGRA~1\mcafee\msc\mcupdui.exe
c:\program files\common files\aol\1127605169\ee\aolsoftware.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
c:\program files\aol email toolbar\AolMailTbServer.exe
C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll
O2 - BHO: (no name) - {ca3a50d1-1be1-452e-9cea-1122de2dd222} - pozapevi.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Lincmediaplayer - {fbaa6932-b59b-4854-8041-27a233394ba3} - C:\Program Files\Linksador\Lincmediaplayer\adxloader.dll
O2 - BHO: AOL Email Toolbar Loader - {fbea8524-8c72-4208-9d12-7fb73e9926eb} - C:\Program Files\AOL Email Toolbar\aolmailtb.dll
O3 - Toolbar: (no name) - {b6bb2c0a-8d74-4664-a1cd-103bd9a69de9} - C:\Program Files\Linksador\Lincmediaplayer\adxloader.dll
O3 - Toolbar: AOL Email Toolbar - {a3704fa3-dbf6-46b5-b95e-0677dfd39577} - C:\Program Files\AOL Email Toolbar\aolmailtb.dll
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [CHotkey] zHotkey.exe
O4 - HKLM\..\Run: [ShowWnd] ShowWnd.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunKistEM] C:\Program Files\Digital Media Reader\shwiconem.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1127605169\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe" -Run
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [A Verizon App] C:\PROGRA~1\VERIZO~1\HELPSU~1\VERIZO~1.EXE
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl06a\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [VerizonServicepoint.exe] "C:\Program Files\Verizon\VSP\VerizonServicepoint.exe" /AUTORUN
O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [McAfee Backup] "C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [CarboniteSetupLite] "C:\Program Files\Carbonite\CarbonitePreinstaller.exe" /preinstalled /showonfirst /reshowat=900
O4 - HKLM\..\Run: [MaxMenuMgr] "C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe"
O4 - HKLM\..\Run: [ContentTransferWMDetector.exe] C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
O4 - HKLM\..\Run: [mavuzodoja] Rundll32.exe "jalezada.dll",s
O4 - HKLM\..\Run: [saboyefif] Rundll32.exe "c:\windows\system32\jolaneki.dll",a
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [EzineExpress] C:\Documents and Settings\Owner\My Documents\LivingBooksEXPRESS.exe -minimize
O4 - HKCU\..\Run: [I&F Viewer toolbar] "C:\Program Files\Photo Toolkit\ivbar\phototoolkitmem.exe" -start
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\PROGRA~1\AMERIC~1.0C\AOL.EXE" -b
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150596.exe -Update -1150596 -"Mozilla/5.0_(Windows;_U;_Windows_NT_5.1;_en-US;_rv:1.9.1.8)_Gecko/20100202_Firefox/3.5.8_(.NET_CLR_3.5.30729)" -"http://www.bigideafun.com/veggietales/arcade/sweatnsumo/default.htm"
O4 - Startup: FAXRX.lnk = C:\Program Files\Brother\Brmfl06a\FAXRX.exe
O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
O4 - Startup: RCA Detective.lnk = C:\Documents and Settings\Owner\My Documents\RCA Detective\RCADetective.exe
O4 - Startup: Seagate 2GEXMLG7 Product Registration.lnk = C:\Documents and Settings\Owner\Application Data\Leadertech\PowerRegister\Seagate 2GEXMLG7 Product Registration.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
O8 - Extra context menu item: &AOL Email Toolbar Search - C:\Documents and Settings\All Users\Application Data\AOL Email Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: E&xport to Microsoft Excel - [You must be registered and logged in to see this link.]
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.aol.com
O15 - Trusted Zone: [You must be registered and logged in to see this link.]
O15 - Trusted Zone: *.west.com
O15 - Trusted Zone: [You must be registered and logged in to see this link.]
O15 - Trusted Zone: *.workathomeagent.com
O15 - Trusted Zone: connect.workathomeagent.net
O15 - Trusted Zone: *.workathomeagent.net
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - [You must be registered and logged in to see this link.]
O16 - DPF: {13149882-F480-4F6B-8C6A-0764F75B99ED} (CrazyTalk4 Control) - [You must be registered and logged in to see this link.]
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - [You must be registered and logged in to see this link.]
O16 - DPF: {195B4BBF-E1E4-4020-9773-0A8C6F65EA35} (CPlayFirstCookingDasControl Object) - [You must be registered and logged in to see this link.]
O16 - DPF: {26E6B759-DEEB-42A1-A21C-78CD29098411} (CPlayFirstFitnessDasControl Object) - [You must be registered and logged in to see this link.]
O16 - DPF: {37DF41B2-61DB-4CAC-A755-CFB3C7EE7F40} (AOL Content Update) - [You must be registered and logged in to see this link.]
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - [You must be registered and logged in to see this link.]
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - [You must be registered and logged in to see this link.]
O16 - DPF: {4EC99A0B-E57C-4FBE-B9C4-8428424FBF88} (McciUtilsSpecialFolder Class) - [You must be registered and logged in to see this link.]
O16 - DPF: {74C861A1-D548-4916-BC8A-FDE92EDFF62C} - [You must be registered and logged in to see this link.]
O16 - DPF: {7FE26BE2-B923-4B41-9834-E84DA1CC1F96} (Maid Control) - [You must be registered and logged in to see this link.]
O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - [You must be registered and logged in to see this link.]
O16 - DPF: {B7A59580-B39D-4BF9-B968-1BFA25156691} (TTS Engine Control) - [You must be registered and logged in to see this link.]
O16 - DPF: {C606BA60-AB76-48B6-96A7-2C4D5C386F70} (PreQualifier Class) - [You must be registered and logged in to see this link.]
O16 - DPF: {C6D25826-96AE-462F-A852-BB33B882B723} (SFImageUpload1_4.ImageUpload) - [You must be registered and logged in to see this link.]
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - [You must be registered and logged in to see this link.]
O16 - DPF: {E7D2588A-7FB5-47DC-8830-832605661009} (Live Collaboration) - [You must be registered and logged in to see this link.]
O16 - DPF: {E9B80D94-D8BB-43CC-9138-75605A8D9666} (CPlayFirstWeddingDashControl Object) - [You must be registered and logged in to see this link.]
O16 - DPF: {F135A813-7152-4532-AC8D-28AC2136DFC7} (CPlayFirstParkingDasControl Object) - [You must be registered and logged in to see this link.]
O16 - DPF: {F89EF74A-956B-4BD3-A066-4F23DF891982} (Drag and Drop Uploader Control) - [You must be registered and logged in to see this link.]
O20 - AppInit_DLLs: tahisepi.dll c:\windows\system32\jolaneki.dll
O21 - SSODL: kirebitiw - {f8cd408c-ee3f-4217-babb-53163a3b233e} - c:\windows\system32\jolaneki.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: gahurihor - {f8cd408c-ee3f-4217-babb-53163a3b233e} - c:\windows\system32\jolaneki.dll
O23 - Service: McAfee Application Installer Cleanup (0270771270599176) (0270771270599176mcinstcleanup) - McAfee, Inc. - C:\WINDOWS\TEMP\027077~1.EXE
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Seagate Service (FreeAgentGoNext Service) - Seagate Technology LLC - C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
O23 - Service: GameConsoleService - Unknown owner - C:\Program Files\WildGames\Game Console - WildGames\GameConsoleService.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\WINDOWS\runservice.exe
O23 - Service: MBackMonitor - McAfee - C:\Program Files\McAfee\MBK\MBackMonitor.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS

--
End of file - 16483 bytes

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by Dr Jay on Wed Apr 07, 2010 4:53 am

Please download [You must be registered and logged in to see this link.] and save it to your Desktop.

Note: You must be logged on to the system with an account that has Administrator privileges to run this program.
  • Close ALL OTHER PROGRAMS.
  • Double-click on OTS to start the program (if you are running on Vista then right-click the program and
    choose Run as Administrator).
  • At the top, tick on Scan All Users section and Include MD5.
  • At File Age set it to 90 Days
  • In the Processes, Modules, Services, Drivers, and Registry
    section, please set on Safe List.
  • In the Files Created Within and Files Modified Within section, set it to File Age
  • At the bottom, tick on all Safe List and Use Company Name WhiteList option
  • Under Additional Scans, tick on the "Extras" button and then click the checkboxes in front of the following items to select them:
      Reg - Disabled MS Config Items
      Reg - Drivers32
      Reg - Ext
      Reg - IE
      Explorer Bar
      Reg - NetSvcs
      Reg - Safeboot Minimal
      Reg - Safeboot Network
      File - Lop Check
      File - Purity Scan
  • Do NOT change any other settings.
  • Then, in the Custom Scans box, place this in:

    %systemroot%\*. /mp /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\system32\*.exe /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /lockedfiles
    %systemroot%\System32\config\*.sav
    %system%\*.sys
    %system%\drivers\*.dll
    %system%\drivers\*.ini
    %system%\drivers\*.exe
    %SYSTEMDRIVE%\*.*
    %PROGRAMFILES%\*.
    %appdata%\*.*


  • Now click the Run Scan button on the toolbar.
  • Let it run unhindered until it finishes.
  • When the scan is complete Notepad will open with the report file loaded in it.
  • Click the Format menu and make sure that Wordwrap is not checked. If it is then click on it to uncheck it.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13716
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302112
# Likes # Likes : 10

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 12:43 am

[code]
OTS logfile created on: 4/7/2010 8:09:26 PM - Run 1
OTS by OldTimer - Version 3.1.28.0 Folder = C:\Documents and Settings\Owner\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

502.00 Mb Total Physical Memory | 268.00 Mb Available Physical Memory | 53.00% Memory free
1.00 Gb Paging File | 1.00 Gb Available in Paging File | 67.00% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 144.83 Gb Total Space | 96.30 Gb Free Space | 66.49% Space Free | Partition Type: NTFS
Drive D: | 4.20 Gb Total Space | 1.62 Gb Free Space | 38.42% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BIBLE
Current User Name: Owner
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 90 Days

[Processes - Safe List]
ots.exe -> C:\Documents and Settings\Owner\Desktop\OTS.exe -> [2010/04/07 19:55:59 | 000,638,976 | ---- | M | MD5 = 0699456F9835951BCB3304564244386F] (OldTimer Tools)
mcagent.exe -> C:\Program Files\McAfee.com\Agent\mcagent.exe -> [2009/10/29 07:54:44 | 001,218,008 | ---- | M | MD5 = 796AD8EBEA1CBC334D07FCBE152E6167] (McAfee, Inc.)
mpfsrv.exe -> C:\Program Files\McAfee\MPF\MpfSrv.exe -> [2009/10/27 12:19:46 | 000,895,696 | ---- | M | MD5 = DB4D0DFE069E995B3F45CE4623ABFDD9] (McAfee, Inc.)
freeagentservice.exe -> C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -> [2009/09/26 00:32:18 | 000,189,736 | ---- | M | MD5 = 9513B437B7ADB1E6065B7F0D83D11ECF] (Seagate Technology LLC)
stxmenumgr.exe -> C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe -> [2009/09/26 00:31:32 | 000,185,640 | ---- | M | MD5 = 473E323057CF9893D7E8C1E2D0CCED23] (Seagate LLC)
realsched.exe -> C:\Program Files\Common Files\Real\Update_OB\realsched.exe -> [2009/09/17 19:36:56 | 000,198,160 | ---- | M | MD5 = 4C784423B8F0DAE1392398356C9BE1FC] (RealNetworks, Inc.)
mcsysmon.exe -> C:\Program Files\McAfee\VirusScan\mcsysmon.exe -> [2009/09/16 09:28:38 | 000,606,736 | ---- | M | MD5 = F2A433E0EA959028E349FB1D5BAE01E7] (McAfee, Inc.)
contenttransferwmdetector.exe -> C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe -> [2009/07/30 17:05:58 | 000,497,000 | ---- | M | MD5 = A93047583ED0EFC8F78A85DC9DEADF3A] (Sony Corporation)
mcmscsvc.exe -> C:\Program Files\McAfee\MSC\mcmscsvc.exe -> [2009/07/10 00:26:20 | 000,865,832 | ---- | M | MD5 = 0FC36E77D779F8D021D338BDC7368181] (McAfee, Inc.)
mcafeedatabackup.exe -> C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe -> [2009/07/08 20:22:24 | 005,134,864 | ---- | M | MD5 = B00C78ECE1D0442CA3DE709492AA3C9B] (McAfee)
mcproxy.exe -> c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe -> [2009/07/08 11:54:34 | 000,359,952 | ---- | M | MD5 = C85968D24449E37653B891B03188140C] (McAfee, Inc.)
mcnasvc.exe -> c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe -> [2009/07/07 19:10:02 | 002,482,848 | ---- | M | MD5 = 2988E515570E4F8B9D9B256137F8E8F4] (McAfee, Inc.)
rcadetective.exe -> C:\Documents and Settings\Owner\My Documents\RCA Detective\RCADetective.exe -> [2009/01/09 11:40:26 | 000,942,592 | ---- | M | MD5 = 00A703156E931BC6A72F5CDF7A4C81F4] (Audiovox Electronics Corp.)
explorer.exe -> C:\WINDOWS\explorer.exe -> [2008/04/13 20:12:19 | 001,033,728 | ---- | M | MD5 = 12896823FB95BFB3DC9B46BCAEDC9923] (Microsoft Corporation)
verizonservicepoint.exe -> C:\Program Files\Verizon\VSP\VerizonServicepoint.exe -> [2007/11/16 17:30:14 | 002,065,648 | ---- | M | MD5 = FC5F0E91E208AC28C31C247ACFAF4A64] (Verizon)
apdproxy.exe -> C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe -> [2007/03/09 11:09:58 | 000,063,712 | ---- | M | MD5 = FC9E59FE8BC4FE05382CFF5C8FC59DE1] (Adobe Systems Incorporated)
aolsp scheduler.exe -> c:\Program Files\Common Files\AOL\1127605169\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe -> [2006/10/23 15:04:42 | 000,001,536 | ---- | M | MD5 = 87A2CD3AD5BF4F57C0DF046CC3A8C5A7] ()
aolacsd.exe -> C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe -> [2006/10/23 08:50:35 | 000,046,640 | R--- | M | MD5 = 85180CF88C5EBAD73B452A43A004CA51] (AOL LLC)
aolsoftware.exe -> C:\Program Files\Common Files\AOL\1127605169\ee\aolsoftware.exe -> [2006/09/25 20:52:48 | 000,050,736 | ---- | M | MD5 = C482C535CBFEFE722EC1EB7F11F680A3] (America Online, Inc.)
runservice.exe -> C:\WINDOWS\Runservice.exe -> [2006/07/18 20:23:21 | 000,002,560 | ---- | M | MD5 = 29FAB5363138F6E322F4CD780ED9D337] ()
prismxl.sys -> C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -> [2005/06/09 00:32:02 | 000,172,032 | ---- | M | MD5 = 33D7285F12D934268A34206DFC4AD1B3] (New Boundary Technologies, Inc.)
verizo~1.exe -> C:\Program Files\Verizon Online\Help Support\VerizonSupport.exe -> [2005/05/23 13:20:28 | 000,050,744 | ---- | M | MD5 = E01342C064A91E547181E86C077D3419] (Verizon Internet Solutions)
cmisrv.exe -> C:\Program Files\Common Files\Verizon Online\ConnMgr\cmisrv.exe -> [2005/05/20 10:11:52 | 000,357,944 | ---- | M | MD5 = C8A39041FA64F754E3030882CA17E55D] (Verizon Internet Solutions)
vzopenuiserver.exe -> C:\Program Files\Common Files\Verizon Online\AppMgr\vzOpenUIServer.exe -> [2005/05/11 12:05:10 | 000,108,088 | ---- | M | MD5 = 018155EEA4DBE2BEF4CC15F3B1B063A6] (Verizon Internet Solutions)
bgsvcgen.exe -> C:\WINDOWS\system32\bgsvcgen.exe -> [2005/04/30 18:02:26 | 000,086,016 | ---- | M | MD5 = 71489FA2C4A238F178E30AE6E4449013] (B.H.A Corporation)
pptd40nt.exe -> C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe -> [2005/03/17 14:25:54 | 000,057,393 | ---- | M | MD5 = 852803AAF50A785BAFE788D2AD666C78] (ScanSoft, Inc.)
shwiconem.exe -> C:\Program Files\Digital Media Reader\shwiconEM.exe -> [2004/10/18 17:05:12 | 000,135,168 | ---- | M | MD5 = 06A6145CDDF7DB1EFBE6280A57880111] (Alcor Micro, Corp.)
aoltsmon.exe -> C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe -> [2004/10/15 16:54:14 | 000,100,016 | ---- | M | MD5 = 7FB54900AA9792AB6307C699EC1859D4] (America Online, Inc)
aoltpspd.exe -> C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe -> [2004/10/15 16:54:12 | 000,046,768 | ---- | M | MD5 = CAF7C2FDDADF73A02AC84C6FB6030BBF] (America Online Inc)
alcwzrd.exe -> C:\WINDOWS\ALCWZRD.EXE -> [2004/09/24 21:06:46 | 002,559,488 | ---- | M | MD5 = 924650C4F4D4D17E42282EE08C4118DD] (RealTek Semicoductor Corp.)
soundman.exe -> C:\WINDOWS\SOUNDMAN.EXE -> [2004/09/23 22:27:18 | 000,077,824 | ---- | M | MD5 = 4D80259D6997D3F4B40D21AF275662A4] (Realtek Semiconductor Corp.)
zhotkey.exe -> C:\WINDOWS\zHotkey.exe -> [2004/05/17 21:30:04 | 000,543,232 | ---- | M | MD5 = 91E1B0577D9662AA0A83C75418F6F6F8] ()
sqlservr.exe -> C:\Program Files\Microsoft SQL Server\MSSQL$SOSHOME22\Binn\sqlservr.exe -> [2002/12/17 17:26:22 | 007,520,337 | ---- | M | MD5 = F80EEC5E1D6CDF82CB974DAADA0C57DD] (Microsoft Corporation)

[Modules - Safe List]
ots.exe -> C:\Documents and Settings\Owner\Desktop\OTS.exe -> [2010/04/07 19:55:59 | 000,638,976 | ---- | M | MD5 = 0699456F9835951BCB3304564244386F] (OldTimer Tools)
pivejehu.dll -> C:\WINDOWS\system32\pivejehu.dll -> [2010/01/07 08:15:38 | 000,096,256 | -HS- | M | MD5 = 81F7B39561A26B25EF6268B761E55845] ()
hkntdll.dll -> C:\WINDOWS\HKNTDLL.dll -> [2001/07/02 23:36:30 | 000,024,576 | ---- | M | MD5 = 9D711D318BE62AC3245AFD4A7D555FBF] ()

[Win32 Services - Safe List]
(GameConsoleService) GameConsoleService [On_Demand | Stopped] -> -> File not found
(Akamai) Akamai NetSession Interface [Auto | Running] -> c:\Program Files\Common Files\Akamai\rswin_3653.dll -> [2010/04/06 06:37:34 | 002,504,280 | ---- | M | MD5 = CEA3AD38A20726AC32E9B626FF852ACA] ()
(MpfService) McAfee Personal Firewall Service [Auto | Running] -> C:\Program Files\McAfee\MPF\MPFSrv.exe -> [2009/10/27 12:19:46 | 000,895,696 | ---- | M | MD5 = DB4D0DFE069E995B3F45CE4623ABFDD9] (McAfee, Inc.)
(FreeAgentGoNext Service) Seagate Service [Auto | Running] -> C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -> [2009/09/26 00:32:18 | 000,189,736 | ---- | M | MD5 = 9513B437B7ADB1E6065B7F0D83D11ECF] (Seagate Technology LLC)
(McODS) McAfee Scanner [On_Demand | Stopped] -> C:\Program Files\McAfee\VirusScan\mcods.exe -> [2009/09/16 11:23:32 | 000,365,072 | ---- | M | MD5 = 35180C22036174B76B448EE42747F6F0] (McAfee, Inc.)
(McShield) McAfee Real-time Scanner [Unknown | Stopped] -> C:\Program Files\McAfee\VirusScan\Mcshield.exe -> [2009/09/16 10:22:08 | 000,144,704 | ---- | M | MD5 = D075DF11C65F1D370FCC5D3B976E6E72] (McAfee, Inc.)
(McSysmon) McAfee SystemGuards [On_Demand | Running] -> C:\Program Files\McAfee\VirusScan\mcsysmon.exe -> [2009/09/16 09:28:38 | 000,606,736 | ---- | M | MD5 = F2A433E0EA959028E349FB1D5BAE01E7] (McAfee, Inc.)
(mcmscsvc) McAfee Services [Auto | Running] -> C:\Program Files\McAfee\MSC\mcmscsvc.exe -> [2009/07/10 00:26:20 | 000,865,832 | ---- | M | MD5 = 0FC36E77D779F8D021D338BDC7368181] (McAfee, Inc.)
(MBackMonitor) MBackMonitor [On_Demand | Stopped] -> C:\Program Files\McAfee\MBK\MBackMonitor.exe -> [2009/07/08 20:22:22 | 000,068,112 | ---- | M | MD5 = A919F919EAED8D7E8C0AC5BBD5EA32DD] (McAfee)
(McProxy) McAfee Proxy Service [Auto | Running] -> c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe -> [2009/07/08 11:54:34 | 000,359,952 | ---- | M | MD5 = C85968D24449E37653B891B03188140C] (McAfee, Inc.)
(McNASvc) McAfee Network Agent [Auto | Running] -> c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe -> [2009/07/07 19:10:02 | 002,482,848 | ---- | M | MD5 = 2988E515570E4F8B9D9B256137F8E8F4] (McAfee, Inc.)
(AOL ACS) AOL Connectivity Service [Auto | Running] -> C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe -> [2006/10/23 08:50:35 | 000,046,640 | R--- | M | MD5 = 85180CF88C5EBAD73B452A43A004CA51] (AOL LLC)
(LicCtrlService) LicCtrl Service [Auto | Running] -> C:\WINDOWS\Runservice.exe -> [2006/07/18 20:23:21 | 000,002,560 | ---- | M | MD5 = 29FAB5363138F6E322F4CD780ED9D337] ()
(PrismXL) PrismXL [Auto | Running] -> C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -> [2005/06/09 00:32:02 | 000,172,032 | ---- | M | MD5 = 33D7285F12D934268A34206DFC4AD1B3] (New Boundary Technologies, Inc.)
(bgsvcgen) B's Recorder GOLD Library General Service [Auto | Running] -> C:\WINDOWS\system32\bgsvcgen.exe -> [2005/04/30 18:02:26 | 000,086,016 | ---- | M | MD5 = 71489FA2C4A238F178E30AE6E4449013] (B.H.A Corporation)
(AOL TopSpeedMonitor) AOL TopSpeed Monitor [Auto | Running] -> C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe -> [2004/10/15 16:54:14 | 000,100,016 | ---- | M | MD5 = 7FB54900AA9792AB6307C699EC1859D4] (America Online, Inc)
(MSSQL$SOSHOME22) MSSQL$SOSHOME22 [Auto | Running] -> C:\Program Files\Microsoft SQL Server\MSSQL$SOSHOME22\Binn\sqlservr.exe -> [2002/12/17 17:26:22 | 007,520,337 | ---- | M | MD5 = F80EEC5E1D6CDF82CB974DAADA0C57DD] (Microsoft Corporation)
(SQLAgent$SOSHOME22) SQLAgent$SOSHOME22 [On_Demand | Stopped] -> C:\Program Files\Microsoft SQL Server\MSSQL$SOSHOME22\Binn\sqlagent.EXE -> [2002/12/17 17:23:30 | 000,311,872 | ---- | M | MD5 = E3F974BDEDC336490A2E6F3A703F016A] (Microsoft Corporation)

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 12:46 am

[Driver Services - Safe List]
(mfehidk) McAfee Inc. mfehidk [Kernel | System | Running] -> C:\WINDOWS\system32\drivers\mfehidk.sys -> [2009/09/16 10:22:48 | 000,214,664 | ---- | M | MD5 = 3F138A1C8A0659F329F242D1E389B2CF] (McAfee, Inc.)
(mfeavfk) McAfee Inc. mfeavfk [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\mfeavfk.sys -> [2009/09/16 10:22:48 | 000,079,816 | ---- | M | MD5 = BAFDD5E28BAEA99D7F4772AF2F5EC7EE] (McAfee, Inc.)
(mfesmfk) McAfee Inc. mfesmfk [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\mfesmfk.sys -> [2009/09/16 10:22:48 | 000,040,552 | ---- | M | MD5 = 096B52EA918AA909BA5903D79E129005] (McAfee, Inc.)
(mfebopk) McAfee Inc. mfebopk [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\mfebopk.sys -> [2009/09/16 10:22:48 | 000,035,272 | ---- | M | MD5 = 1D003E3056A43D881597D6763E83B943] (McAfee, Inc.)
(mferkdk) McAfee Inc. mferkdk [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\mferkdk.sys -> [2009/09/16 10:22:14 | 000,034,248 | ---- | M | MD5 = 41FE2F288E05A6C8AB85DD56770FFBAD] (McAfee, Inc.)
(MPFP) MPFP [Kernel | System | Running] -> C:\WINDOWS\system32\drivers\Mpfp.sys -> [2009/07/16 12:32:26 | 000,120,136 | ---- | M | MD5 = 136157E79849B9E5316BA4008D6075A8] (McAfee, Inc.)
(usbaudio) USB Audio Driver (WDM) [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\usbaudio.sys -> [2008/04/13 14:45:12 | 000,060,032 | ---- | M | MD5 = E919708DB44ED8543A7C017953148330] (Microsoft Corporation)
(amdagp) AMD AGP Bus Filter Driver [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\amdagp.sys -> [2008/04/13 14:36:39 | 000,043,008 | ---- | M | MD5 = 95B4FB835E28AA1336CEEB07FD5B9398] (Advanced Micro Devices, Inc.)
(sisagp) SIS AGP Bus Filter [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\sisagp.sys -> [2008/04/13 14:36:39 | 000,040,960 | ---- | M | MD5 = 6B33D0EBD30DB32E27D1D78FE946A754] (Silicon Integrated Systems Corporation)
(HDAudBus) Microsoft UAA Bus Driver for High Definition Audio [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\hdaudbus.sys -> [2008/04/13 12:36:05 | 000,144,384 | ---- | M | MD5 = 573C7D0A32852B48F3058CFD8026F511] (Windows (R) Server 2003 DDK provider)
(BrUsbSer) Brother MFC USB Serial WDM Driver [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\BrUsbSer.sys -> [2006/01/19 03:17:38 | 000,011,904 | ---- | M | MD5 = 8FA0AC830A8312912A3AA0C0431CBA0D] (Brother Industries Ltd.)
(BrSerIf) Brother MFC Serial Port Interface WDM Driver [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\BrSerIf.sys -> [2006/01/18 22:44:46 | 000,053,248 | ---- | M | MD5 = D48C13F4A409AEE8DAFADDAC81E34557] (Brother Industries Ltd.)
(WUSB54GPV4SRV) Linksys Home Wireless-G USB Adaptor Driver [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\rt2500usb.sys -> [2005/11/17 05:42:48 | 000,245,376 | ---- | M | MD5 = 70AEEC67E87A2002E6B2CC353D56E222] (Ralink Technology Inc.)
(sscdserd) SAMSUNG CDMA Modem Diagnostic Serial Port (WDM) [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\sscdserd.sys -> [2005/08/17 09:47:48 | 000,073,696 | ---- | M | MD5 = 751E66EB32EFA80633B80F5D7FF0A1D8] (MCCI)
(sscdmdm) SAMSUNG CDMA Modem Drivers [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\sscdmdm.sys -> [2005/08/17 09:46:26 | 000,093,872 | ---- | M | MD5 = 5AB0B1987F682A59B15B78F84C6AD7D0] (MCCI)
(sscdmdfl) SAMSUNG CDMA Modem Filter [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\sscdmdfl.sys -> [2005/08/17 09:46:20 | 000,008,272 | ---- | M | MD5 = 8A1BE0C347814F482F493AEA619D57F6] (MCCI)
(sscdbus) SAMSUNG USB Composite Device driver (WDM) [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\sscdbus.sys -> [2005/08/17 09:45:00 | 000,058,352 | ---- | M | MD5 = D5DFFEAA1E15D4EFFABB9D9A3068AC5B] (MCCI)
(cdrbsdrv) cdrbsdrv [Kernel | System | Running] -> C:\WINDOWS\system32\drivers\cdrbsdrv.sys -> [2005/05/11 01:33:12 | 000,032,256 | ---- | M | MD5 = 248349293CA42EE5DB61DC1FD85A2F49] (B.H.A Corporation)
(SunkFilt) Alcor Micro Corp - 9360 [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\Sunkfilt.sys -> [2004/10/20 14:39:32 | 000,040,724 | ---- | M | MD5 = 9152DC78005A58A17E79390AA0853BB1] (Alcor Micro Corp.)
(SunkFilt39) Alcor Micro Corp - 3239 [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\Sunkfilt39.sys -> [2004/10/18 17:05:12 | 000,042,968 | ---- | M | MD5 = ED67900E1553B2FC56DAA64AAB4B304F] (Alcor Micro Corp.)
(BrScnUsb) Brother USB Still Image driver [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\BrScnUsb.sys -> [2004/10/15 12:50:20 | 000,015,295 | ---- | M | MD5 = 92A964547B96D697E5E9ED43B4297F5A] (Brother Industries Ltd.)
(IntcAzAudAddService) Service for Realtek HD Audio (WDM) [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\RtkHDAud.sys -> [2004/09/24 21:14:40 | 002,276,672 | ---- | M | MD5 = C60B77A9EAC40774556201A736E050A8] (Realtek Semiconductor Corp.)
(nv) nv [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\nv4_mini.sys -> [2004/08/04 01:29:56 | 001,897,408 | ---- | M | MD5 = 2B298519EDBFCF451D43E0F1E8F1006D] (NVIDIA Corporation)
(HSFHWBS2) HSFHWBS2 [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\HSFHWBS2.sys -> [2004/06/17 18:56:22 | 000,220,032 | ---- | M | MD5 = 33DFC0AFA95F9A2C753FF2ADB7D4A21F] (Conexant Systems, Inc.)
(winachsf) winachsf [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\HSF_CNXT.sys -> [2004/06/17 18:55:38 | 000,685,056 | ---- | M | MD5 = 2DC7C0B6175A0A8ED84A4F70199C93B5] (Conexant Systems, Inc.)
(HSF_DP) HSF_DP [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\HSF_DP.sys -> [2004/06/17 18:55:04 | 001,041,536 | ---- | M | MD5 = B2DFC168D6F7512FAEA085253C5A37AD] (Conexant Systems, Inc.)
(HdAudAddService) Microsoft UAA Function Driver for High Definition Audio Service [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\Hdaudio.sys -> [2004/03/17 18:10:40 | 000,113,664 | ---- | M | MD5 = 160B24FD894E79E71C983EA403A6E6E7] (Windows (R) Server 2003 DDK provider)
(wanatw) WAN Miniport (ATW) [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\wanatw4.sys -> [2003/01/10 17:13:04 | 000,033,588 | R--- | M | MD5 = 0A716C08CB13C3A8F4F51E882DBF7416] (America Online, Inc.)
(sonypvs1) Sony Digital Imaging Video2 [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\sonypvs1.sys -> [2002/10/15 22:41:06 | 000,102,220 | ---- | M | MD5 = DFADFC2C86662F40759BF02ADD27D569] (Sony Corporation)
(Sparrow) Sparrow [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\sparrow.sys -> [2001/08/18 00:07:44 | 000,019,072 | ---- | M | MD5 = 83C0F71F86D3BDAF915685F3D568B20E] (Adaptec, Inc.)
(sym_u3) sym_u3 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\sym_u3.sys -> [2001/08/18 00:07:42 | 000,030,688 | ---- | M | MD5 = BF4FAB949A382A8E105F46EBB4937058] (LSI Logic)
(sym_hi) sym_hi [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\sym_hi.sys -> [2001/08/18 00:07:40 | 000,028,384 | ---- | M | MD5 = 80AC1C4ABBE2DF3B738BF15517A51F2C] (LSI Logic)
(symc8xx) symc8xx [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\symc8xx.sys -> [2001/08/18 00:07:36 | 000,032,640 | ---- | M | MD5 = 070E001D95CF725186EF8B20335F933C] (LSI Logic)
(symc810) symc810 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\symc810.sys -> [2001/08/18 00:07:34 | 000,016,256 | ---- | M | MD5 = 1FF3217614018630D0A6758630FC698C] (Symbios Logic Inc.)
(ultra) ultra [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\ultra.sys -> [2001/08/17 23:52:22 | 000,036,736 | ---- | M | MD5 = 1B698A51CD528D8DA4FFAED66DFC51B9] (Promise Technology, Inc.)
(ql12160) ql12160 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\ql12160.sys -> [2001/08/17 23:52:20 | 000,045,312 | ---- | M | MD5 = 156ED0EF20C15114CA097A34A30D8A01] (QLogic Corporation)
(ql1080) ql1080 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\ql1080.sys -> [2001/08/17 23:52:20 | 000,040,320 | ---- | M | MD5 = 0A63FB54039EB5662433CABA3B26DBA7] (QLogic Corporation)
(ql1280) ql1280 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\ql1280.sys -> [2001/08/17 23:52:18 | 000,049,024 | ---- | M | MD5 = 907F0AEEA6BC451011611E732BD31FCF] (QLogic Corporation)
(dac2w2k) dac2w2k [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -> [2001/08/17 23:52:16 | 000,179,584 | ---- | M | MD5 = E550E7418984B65A78299D248F0A7F36] (Mylex Corporation)
(mraid35x) mraid35x [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\mraid35x.sys -> [2001/08/17 23:52:12 | 000,017,280 | ---- | M | MD5 = 3F4BB95E5A44F3BE34824E8E7CAF0737] (American Megatrends Inc.)
(asc) asc [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\asc.sys -> [2001/08/17 23:52:00 | 000,026,496 | ---- | M | MD5 = 62D318E9A0C8FC9B780008E724283707] (Advanced System Products, Inc.)
(asc3550) asc3550 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\asc3550.sys -> [2001/08/17 23:51:58 | 000,014,848 | ---- | M | MD5 = 5D8DE112AA0254B907861E9E9C31D597] (Advanced System Products, Inc.)
(AliIde) AliIde [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\aliide.sys -> [2001/08/17 23:51:56 | 000,005,248 | ---- | M | MD5 = 1140AB9938809700B46BB88E46D72A96] (Acer Laboratories Inc.)
(CmdIde) CmdIde [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\cmdide.sys -> [2001/08/17 23:51:54 | 000,006,656 | ---- | M | MD5 = E5DCB56C533014ECBC556A8357C929D5] (CMD Technology, Inc.)
(mxnic) Macronix MX987xx Family Fast Ethernet NT Driver [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\mxnic.sys -> [2001/08/17 16:49:32 | 000,019,968 | ---- | M | MD5 = E1CDF20697D992CF83FF86DD04DF1285] (Macronix International Co., Ltd. )
(BrPar) BrPar [Kernel | Auto | Running] -> C:\WINDOWS\System32\drivers\BrPar.sys -> [2000/07/24 02:01:00 | 000,019,537 | ---- | M | MD5 = 2FE6D5BE0629F706197B30C0AA05DE30] (Brother Industries Ltd.)

[Registry - Safe List]
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
< Internet Explorer Settings [HKEY_USERS\.DEFAULT\] > -> ->
HKEY_USERS\.DEFAULT\: Main\\"Start Page" -> [You must be registered and logged in to see this link.] ->
HKEY_USERS\.DEFAULT\: "ProxyEnable" -> 1 ->
HKEY_USERS\.DEFAULT\: "ProxyOverride" -> ->
< Internet Explorer Settings [HKEY_USERS\S-1-5-18\] > -> ->
HKEY_USERS\S-1-5-18\: Main\\"Start Page" -> [You must be registered and logged in to see this link.] ->
HKEY_USERS\S-1-5-18\: "ProxyEnable" -> 1 ->
HKEY_USERS\S-1-5-18\: "ProxyOverride" -> ->
< Internet Explorer Settings [HKEY_USERS\S-1-5-19\] > -> ->
< Internet Explorer Settings [HKEY_USERS\S-1-5-20\] > -> ->
< Internet Explorer Settings [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\] > -> ->
HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\: SearchURL\\"" -> [You must be registered and logged in to see this link.] ->
HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\: "ProxyEnable" -> 1 ->
HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\: "ProxyOverride" -> ->
< FireFox Settings [Prefs.js] > -> C:\Documents and Settings\Owner\Application Data\Mozilla\FireFox\Profiles\ee1z34lm.default\prefs.js ->
browser.search.useDBForOrder -> true ->
browser.startup.homepage -> "http://webmail.aol.com/37563/aol/en-us/Suite.aspx" ->
extensions.enabledItems -> [You must be registered and logged in to see this link.]:1.0 ->
extensions.enabledItems -> [You must be registered and logged in to see this link.]:7 ->
extensions.enabledItems -> {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0 ->
extensions.enabledItems -> {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.5.200812101546 ->
< FireFox Settings [User.js] > -> C:\Documents and Settings\Owner\Application Data\Mozilla\FireFox\Profiles\ee1z34lm.default\user.js ->
< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
HKLM\software\mozilla\Firefox\Extensions -> ->
HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions -> ->
HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Components -> C:\Program Files\Mozilla Firefox\components [C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS] -> [2010/03/31 16:48:10 | 000,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Plugins -> C:\Program Files\Mozilla Firefox\plugins [C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS] -> [2010/03/31 16:48:10 | 000,000,000 | ---D | M]
< FireFox Extensions [User Folders] > ->
-> C:\Documents and Settings\Owner\Application Data\Mozilla\Extensions -> [2008/12/10 08:24:51 | 000,000,000 | ---D | M]
-> C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\ee1z34lm.default\extensions -> [2010/04/06 19:50:16 | 000,000,000 | ---D | M]
Bible Blue Basic -> C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\ee1z34lm.default\extensions\{0c2508e6-de4c-11db-8314-0800200c9a66} -> [2008/12/10 08:27:07 | 000,000,000 | ---D | M]
Microsoft .NET Framework Assistant -> C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\ee1z34lm.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} -> [2009/09/04 10:42:35 | 000,000,000 | ---D | M]
Yahoo! Toolbar -> C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\ee1z34lm.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} -> [2009/02/26 23:17:19 | 000,000,000 | ---D | M]
Bible Fox -> C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\ee1z34lm.default\extensions\{646f1212-bb24-11db-8314-0800200c9a66} -> [2008/12/10 08:26:43 | 000,000,000 | ---D | M]
AOL Toolbar -> C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\ee1z34lm.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1} -> [2008/11/15 16:10:10 | 000,000,000 | ---D | M]
-> C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\ee1z34lm.default\extensions\firefox@tvunetworks.com -> [2009/06/13 16:09:18 | 000,000,000 | ---D | M]
< FireFox SearchPlugins [User Folders] > ->
aol-search.xml -> C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\ee1z34lm.default\searchplugins\aol-search.xml -> [2009/11/11 12:15:35 | 000,001,744 | ---- | M | MD5 = A038A5489E91659CC40347D11FEF0F4D] ()
< FireFox Extensions [Program Folders] > ->
-> C:\Program Files\Mozilla Firefox\extensions -> [2010/04/06 19:50:16 | 000,000,000 | ---D | M]
~[Filtered]~
Reset Hosts
127.0.0.1 localhost
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ ->
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKLM] -> C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [Adobe PDF Reader Link Helper] -> [2006/12/18 04:16:42 | 000,059,032 | ---- | M | MD5 = 4EA3A6CD9D20584FFAFDB1E47DBF0E20] (Adobe Systems Incorporated)
{3049C3E9-B461-4BC5-8870-4C09146192CA} [HKLM] -> c:\Program Files\Real\realplayer\rpbrowserrecordplugin.dll [RealPlayer Download and Record Plugin for Internet Explorer] -> [2009/09/17 19:38:26 | 000,329,312 | ---- | M | MD5 = 98EA10E878D73C261E0C6316A3A48658] (RealPlayer)
{7DB2D5A0-7241-4E79-B68D-6309F01C5231} [HKLM] -> C:\Program Files\McAfee\VirusScan\scriptsn.dll [scriptproxy] -> [2009/09/16 10:22:16 | 000,062,784 | ---- | M | MD5 = 2F2D790D560CE6B8C7BC4DD6CA766A0E] (McAfee, Inc.)
{ca3a50d1-1be1-452e-9cea-1122de2dd222} [HKLM] -> [Reg Error: Value error.] -> File not found
{fbaa6932-b59b-4854-8041-27a233394ba3} [HKLM] -> C:\Program Files\Linksador\Lincmediaplayer\adxloader.dll [Lincmediaplayer] -> [2008/08/04 14:11:56 | 000,315,392 | ---- | M | MD5 = 0F68B52E9BCDFBF74402D53236DC5E46] (Add-in Express Ltd)
{fbea8524-8c72-4208-9d12-7fb73e9926eb} [HKLM] -> C:\Program Files\AOL Email Toolbar\aolmailtb.dll [AOL Email Toolbar Loader] -> [2009/05/05 14:19:46 | 001,275,176 | ---- | M | MD5 = BF49B8BCDA7E91D06F196A175991CE01] (AOL LLC)
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar ->
"{a3704fa3-dbf6-46b5-b95e-0677dfd39577}" [HKLM] -> C:\Program Files\AOL Email Toolbar\aolmailtb.dll [AOL Email Toolbar] -> [2009/05/05 14:19:46 | 001,275,176 | ---- | M | MD5 = BF49B8BCDA7E91D06F196A175991CE01] (AOL LLC)
"{b6bb2c0a-8d74-4664-a1cd-103bd9a69de9}" [HKLM] -> C:\Program Files\Linksador\Lincmediaplayer\adxloader.dll [] -> [2008/08/04 14:11:56 | 000,315,392 | ---- | M | MD5 = 0F68B52E9BCDFBF74402D53236DC5E46] (Add-in Express Ltd)
< Internet Explorer ToolBars [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\ ->
WebBrowser\\"{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
WebBrowser\\"{4982D40A-C53B-4615-B15B-B5B5E98D167C}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< Internet Explorer ToolBars [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\ ->
WebBrowser\\"{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
WebBrowser\\"{4982D40A-C53B-4615-B15B-B5B5E98D167C}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< Internet Explorer ToolBars [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\Software\Microsoft\Internet Explorer\Toolbar\ ->
ShellBrowser\\"{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
WebBrowser\\"{4E7BD74F-2B8D-469E-D0FC-E57AF4D5FA7D}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
WebBrowser\\"{A3704FA3-DBF6-46B5-B95E-0677DFD39577}" [HKLM] -> C:\Program Files\AOL Email Toolbar\aolmailtb.dll [AOL Email Toolbar] -> [2009/05/05 14:19:46 | 001,275,176 | ---- | M | MD5 = BF49B8BCDA7E91D06F196A175991CE01] (AOL LLC)
WebBrowser\\"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"" -> [] -> File not found
"A Verizon App" -> C:\Program Files\Verizon Online\Help Support\VerizonSupport.exe [C:\PROGRA~1\VERIZO~1\HELPSU~1\VERIZO~1.EXE] -> [2005/05/23 13:20:28 | 000,050,744 | ---- | M | MD5 = E01342C064A91E547181E86C077D3419] (Verizon Internet Solutions)
"Adobe Photo Downloader" -> C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe ["C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"] -> [2007/03/09 11:09:58 | 000,063,712 | ---- | M | MD5 = FC9E59FE8BC4FE05382CFF5C8FC59DE1] (Adobe Systems Incorporated)
"Alcmtr" -> C:\WINDOWS\ALCMTR.EXE [ALCMTR.EXE] -> [2004/09/24 00:44:36 | 000,057,344 | ---- | M | MD5 = 5BA6EC2F9B8BD4D7D372C1CC6F3EE552] (Realtek Semiconductor Corp.)
"AlcWzrd" -> C:\WINDOWS\ALCWZRD.EXE [ALCWZRD.EXE] -> [2004/09/24 21:06:46 | 002,559,488 | ---- | M | MD5 = 924650C4F4D4D17E42282EE08C4118DD] (RealTek Semicoductor Corp.)
"AOLDialer" -> C:\Program Files\Common Files\AOL\ACS\AOLDial.exe [C:\Program Files\Common Files\AOL\ACS\AOLDial.exe] -> [2006/10/23 08:50:37 | 000,071,216 | R--- | M | MD5 = B9B78F0D9AEBCA8F717680FBABBB5FF4] (AOL LLC)
"BrMfcWnd" -> C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN] -> [2006/06/28 07:46:30 | 000,622,592 | ---- | M | MD5 = 28D28D75BD4C4A4738E2C5F1B596A48E] ()
"CarboniteSetupLite" -> C:\Program Files\Carbonite\CarbonitePreinstaller.exe ["C:\Program Files\Carbonite\CarbonitePreinstaller.exe" /preinstalled /showonfirst /reshowat=900] -> [2009/08/04 04:49:00 | 000,318,096 | ---- | M | MD5 = 2BC2FB9F702B62E2BDA8ACF8870F0822] (Carbonite, Inc.)
"CHotkey" -> C:\WINDOWS\zHotkey.exe [zHotkey.exe] -> [2004/05/17 21:30:04 | 000,543,232 | ---- | M | MD5 = 91E1B0577D9662AA0A83C75418F6F6F8] ()
"ContentTransferWMDetector.exe" -> C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe [C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe] -> [2009/07/30 17:05:58 | 000,497,000 | ---- | M | MD5 = A93047583ED0EFC8F78A85DC9DEADF3A] (Sony Corporation)
"ControlCenter3" -> C:\Program Files\Brother\ControlCenter3\brctrcen.exe [C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun] -> [2006/06/29 12:18:06 | 000,077,824 | ---- | M | MD5 = 39A7F8EF96E3B9DB548B75497A912EEB] (Brother Industries, Ltd.)
"Easy Dock" -> [] -> File not found
"High Definition Audio Property Page Shortcut" -> C:\WINDOWS\System32\Hdaudpropshortcut.exe [HDAudPropShortcut.exe] -> [2004/03/17 18:10:40 | 000,061,952 | ---- | M | MD5 = 3E7A11C1C4EBD2C3C52197238DF4E14B] (Windows (R) Server 2003 DDK provider)
"HostManager" -> C:\Program Files\Common Files\AOL\1127605169\ee\aolsoftware.exe [C:\Program Files\Common Files\AOL\1127605169\ee\AOLSoftware.exe] -> [2006/09/25 20:52:48 | 000,050,736 | ---- | M | MD5 = C482C535CBFEFE722EC1EB7F11F680A3] (America Online, Inc.)
"IndexSearch" -> C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe] -> [2005/03/17 14:45:52 | 000,040,960 | ---- | M | MD5 = EE25C4A5AA0839EF66ED3AF0A79EEF75] (ScanSoft, Inc.)
"mavuzodoja" -> [Rundll32.exe "sujegaru.dll",s] -> File not found
"MaxMenuMgr" -> C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe ["C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe"] -> [2009/09/26 00:31:32 | 000,185,640 | ---- | M | MD5 = 473E323057CF9893D7E8C1E2D0CCED23] (Seagate LLC)
"McAfee Backup" -> C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe ["C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe"] -> [2009/07/08 20:22:24 | 005,134,864 | ---- | M | MD5 = B00C78ECE1D0442CA3DE709492AA3C9B] (McAfee)
"mcagent_exe" -> C:\Program Files\McAfee.com\Agent\mcagent.exe ["C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey] -> [2009/10/29 07:54:44 | 001,218,008 | ---- | M | MD5 = 796AD8EBEA1CBC334D07FCBE152E6167] (McAfee, Inc.)
"NeroFilterCheck" -> C:\WINDOWS\system32\NeroCheck.exe [C:\WINDOWS\system32\NeroCheck.exe] -> [2001/07/09 14:50:42 | 000,155,648 | ---- | M | MD5 = 3E4C03CEFAD8DE135263236B61A49C90] (Ahead Software Gmbh)
"PaperPort PTD" -> C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe] -> [2005/03/17 14:25:54 | 000,057,393 | ---- | M | MD5 = 852803AAF50A785BAFE788D2AD666C78] (ScanSoft, Inc.)
"Pure Networks Port Magic" -> C:\Program Files\Pure Networks\Port Magic\PortAOL.exe ["C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe" -Run] -> [2004/05/07 16:54:22 | 000,099,480 | ---- | M | MD5 = BA99C608A075C44026720D5383F3D75B] (Pure Networks, Inc.)
"Recguard" -> C:\WINDOWS\SMINST\Recguard.exe [C:\WINDOWS\SMINST\RECGUARD.EXE] -> [2002/09/13 16:42:26 | 000,212,992 | ---- | M | MD5 = D3CC7A3813123E955B3A497C04B404E2] ()
"saboyefif" -> C:\WINDOWS\System32\pivejehu.DLL [Rundll32.exe "c:\windows\system32\pivejehu.dll",a] -> [2010/01/07 08:15:38 | 000,096,256 | -HS- | M | MD5 = 81F7B39561A26B25EF6268B761E55845] ()
"SetDefPrt" -> C:\Program Files\Brother\Brmfl06a\BrStDvPt.exe [C:\Program Files\Brother\Brmfl06a\BrStDvPt.exe] -> [2005/01/26 18:02:22 | 000,049,152 | ---- | M | MD5 = 0C6DC7F88DF16A6851BD11A48A03DA1B] (Brother Industories, Ltd.)
"ShowWnd" -> C:\WINDOWS\ShowWnd.exe [ShowWnd.exe] -> [2003/09/19 12:09:22 | 000,036,864 | ---- | M | MD5 = B8E7353996D0757E2B8F47BE702074BE] ()
"SoundMan" -> C:\WINDOWS\SOUNDMAN.EXE [SOUNDMAN.EXE] -> [2004/09/23 22:27:18 | 000,077,824 | ---- | M | MD5 = 4D80259D6997D3F4B40D21AF275662A4] (Realtek Semiconductor Corp.)
"SSBkgdUpdate" -> C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe ["C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot] -> [2003/10/14 10:22:30 | 000,155,648 | R--- | M | MD5 = 1C3CA3E7807F915933BB4E08E599DDAB] (Scansoft, Inc.)
"SunKistEM" -> C:\Program Files\Digital Media Reader\shwiconEM.exe [C:\Program Files\Digital Media Reader\shwiconem.exe] -> [2004/10/18 17:05:12 | 000,135,168 | ---- | M | MD5 = 06A6145CDDF7DB1EFBE6280A57880111] (Alcor Micro, Corp.)
"TkBellExe" -> C:\Program Files\Common Files\Real\Update_OB\realsched.exe ["C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot] -> [2009/09/17 19:36:56 | 000,198,160 | ---- | M | MD5 = 4C784423B8F0DAE1392398356C9BE1FC] (RealNetworks, Inc.)
"VerizonServicepoint.exe" -> C:\Program Files\Verizon\VSP\VerizonServicepoint.exe ["C:\Program Files\Verizon\VSP\VerizonServicepoint.exe" /AUTORUN] -> [2007/11/16 17:30:14 | 002,065,648 | ---- | M | MD5 = FC5F0E91E208AC28C31C247ACFAF4A64] (Verizon)
< Run [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"AOL Fast Start" -> C:\Program Files\America Online 9.0c\aol.exe ["C:\PROGRA~1\AMERIC~1.0C\AOL.EXE" -b] -> [2005/07/12 01:17:42 | 000,050,776 | ---- | M | MD5 = 9C4239915E23D7DF1DDFB88512C08249] (America Online, Inc.)
"EzineExpress" -> C:\Documents and Settings\Owner\My Documents\LivingBooksEXPRESS.exe [C:\Documents and Settings\Owner\My Documents\LivingBooksEXPRESS.exe -minimize] -> File not found
"I&F Viewer toolbar" -> C:\Program Files\Photo Toolkit\ivbar\phototoolkitmem.exe ["C:\Program Files\Photo Toolkit\ivbar\phototoolkitmem.exe" -start] -> File not found
< RunOnce [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce ->
"Shockwave Updater" -> C:\WINDOWS\System32\Adobe\Shockwave 11\SwHelper_1150596.exe -Update -1150596 -Mozilla\5.0_( [C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150596.exe -Update -1150596 -"Mozilla/5.0_(Windows;_U;_Windows_NT_5.1;_en-US;_rv:1.9.1.8)_Gecko/20100202_Firefox/3.5.8_(.NET_CLR_3.5.30729)" -"http://www.bigideafun.com/veggietales/arcade/sweatnsumo/default.htm"] -> File not found
< All Users Startup Folder > -> C:\Documents and Settings\All Users\Start Menu\Programs\Startup ->
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk -> C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe -> [2008/04/23 03:38:16 | 000,029,696 | ---- | M | MD5 = DFCB9ADE94A4F8A7C42EEF41101A30AD] (Adobe Systems Incorporated)
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office10\OSA.EXE -> [2001/02/13 01:01:04 | 000,083,360 | ---- | M | MD5 = 5BC65464354A9FD3BEAA28E18839734A] (Microsoft Corporation)
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Service Manager.lnk -> C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe -> [2002/12/17 17:23:32 | 000,074,308 | ---- | M | MD5 = A6455ADF66EE2FDD53B81AAE74F40C4C] (Microsoft Corporation)
< Default User Startup Folder > -> C:\Documents and Settings\Default User\Start Menu\Programs\Startup ->
< Owner Startup Folder > -> C:\Documents and Settings\Owner\Start Menu\Programs\Startup ->
C:\Documents and Settings\Owner\Start Menu\Programs\Startup\FAXRX.lnk -> C:\Program Files\Brother\Brmfl06a\FAXRX.exe -> [2006/02/01 11:18:04 | 000,499,712 | ---- | M | MD5 = 2FC86B6F31B80392B299B21ACE6F9EF9] (Brother Industries Ltd.)
C:\Documents and Settings\Owner\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk -> C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe -> [2008/01/21 15:41:28 | 000,393,216 | ---- | M | MD5 = F5CECCFE0CF964B209DCAB226D4C1DE3] ()
C:\Documents and Settings\Owner\Start Menu\Programs\Startup\RCA Detective.lnk -> C:\Documents and Settings\Owner\My Documents\RCA Detective\RCADetective.exe -> [2009/01/09 11:40:26 | 000,942,592 | ---- | M | MD5 = 00A703156E931BC6A72F5CDF7A4C81F4] (Audiovox Electronics Corp.)
C:\Documents and Settings\Owner\Start Menu\Programs\Startup\Seagate 2GEXMLG7 Product Registration.lnk -> C:\Documents and Settings\Owner\Application Data\Leadertech\PowerRegister\Seagate 2GEXMLG7 Product Registration.exe -> [2009/01/16 04:19:56 | 001,731,736 | ---- | M | MD5 = 228166AAAE00F9F4BD2A1E8D279E2ABE] (Leader Technologies/Seagate)
< CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"HonorAutoRunSetting" -> [1] -> File not found
< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
< CurrentVersion Policy Settings [HKEY_USERS\.DEFAULT] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoDriveTypeAutoRun" -> [145] -> File not found
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-18] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoDriveTypeAutoRun" -> [145] -> File not found
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-19] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoDriveTypeAutoRun" -> [145] -> File not found
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-20] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoDriveTypeAutoRun" -> [145] -> File not found
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoDriveTypeAutoRun" -> [145] -> File not found
\\"NoDriveAutoRun" -> [00 1C 00 00 [binary data]] -> File not found
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
< Internet Explorer Menu Extensions [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\MenuExt\ ->
&AOL Toolbar search -> C:\Program Files\AOL Toolbar\toolbar.dll [res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML] -> File not found
< Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\MenuExt\ ->
&AOL Toolbar search -> C:\Program Files\AOL Toolbar\toolbar.dll [res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML] -> File not found
< Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\Software\Microsoft\Internet Explorer\MenuExt\ ->
&AOL Email Toolbar Search -> C:\Documents and Settings\All Users\Application Data\AOL Email Toolbar\ieToolbar\resources\en-US\local\search.html [C:\Documents and Settings\All Users\Application Data\AOL Email Toolbar\ieToolbar\resources\en-US\local\search.html] -> [2008/05/22 10:44:38 | 000,000,747 | ---- | M | MD5 = 9E46AF9EC78CE778ECC46CBAC1D258D8] ()
E&xport to Microsoft Excel -> C:\Program Files\Microsoft Office\Office10\EXCEL.EXE [res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000] -> [2001/02/16 01:05:38 | 009,164,192 | R--- | M | MD5 = D72AE78292A746115179FF5ED6B367A8] (Microsoft Corporation)
< Internet Explorer Extensions [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Extensions\ ->
CmdMapping\\"{08B0E5C0-4FCB-11CF-AAA5-00401C608501}" [HKLM] -> [Reg Error: Value error.] -> File not found
CmdMapping\\"{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F}" [HKLM] -> [Reg Error: Key error.] -> File not found
CmdMapping\\"{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F}" [HKLM] -> [Reg Error: Key error.] -> File not found
CmdMapping\\"{3369AF0D-62E9-4bda-8103-B4C75499B578}" [HKLM] -> [Reg Error: Key error.] -> File not found
CmdMapping\\"{4982D40A-C53B-4615-B15B-B5B5E98D167C}" [HKLM] -> [Reg Error: Key error.] -> File not found
CmdMapping\\"{CD67F990-D8E9-11d2-98FE-00C0F0318AFE}" [HKLM] -> [Reg Error: Value error.] -> File not found
< Internet Explorer Extensions [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Extensions\ ->
CmdMapping\\"{08B0E5C0-4FCB-11CF-AAA5-00401C608501}" [HKLM] -> [Reg Error: Value error.] -> File not found
CmdMapping\\"{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F}" [HKLM] -> [Reg Error: Key error.] -> File not found
CmdMapping\\"{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F}" [HKLM] -> [Reg Error: Key error.] -> File not found
CmdMapping\\"{3369AF0D-62E9-4bda-8103-B4C75499B578}" [HKLM] -> [Reg Error: Key error.] -> File not found
CmdMapping\\"{4982D40A-C53B-4615-B15B-B5B5E98D167C}" [HKLM] -> [Reg Error: Key error.] -> File not found
CmdMapping\\"{CD67F990-D8E9-11d2-98FE-00C0F0318AFE}" [HKLM] -> [Reg Error: Value error.] -> File not found
< Internet Explorer Extensions [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\Software\Microsoft\Internet Explorer\Extensions\ ->
CmdMapping\\"{08B0E5C0-4FCB-11CF-AAA5-00401C608501}" [HKLM] -> [Reg Error: Value error.] -> File not found
CmdMapping\\"{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F}" [HKLM] -> [Reg Error: Key error.] -> File not found
CmdMapping\\"{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F}" [HKLM] -> [Reg Error: Key error.] -> File not found
CmdMapping\\"{CD67F990-D8E9-11d2-98FE-00C0F0318AFE}" [HKLM] -> [Reg Error: Value error.] -> File not found
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ ->
Extension\.spop -> C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll [Reg Error: Value error.] -> [2001/08/01 17:05:42 | 000,270,336 | ---- | M | MD5 = 9D63F257E9CC6367692B92DA4CB4DDAC] (Intertrust Technologies, Inc.)
< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> [You must be registered and logged in to see this link.]
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 1 domain(s) found. ->
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 12:49 am

< Trusted Sites Ranges [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 8 domain(s) found. ->
objects_aol.com [*] -> Out of zone range - ( 5 ) ->
internet .[about] -> Trusted sites ->
mcafee.com .[http] -> Trusted sites ->
mcafee.com .[https] -> Trusted sites ->
*.update_microsoft.com [http] -> Trusted sites ->
*.update_microsoft.com [https] -> Trusted sites ->
update_microsoft.com [http] -> Trusted sites ->
update_microsoft.com [https] -> Trusted sites ->
west.com .[*] -> Trusted sites ->
download_windowsupdate.com [http] -> Trusted sites ->
workathomeagent.com .[*] -> Trusted sites ->
workathomeagent.net .[*] -> Trusted sites ->
connect_workathomeagent.net [*] -> Trusted sites ->
< Trusted Sites Ranges [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ ->
{02BCC737-B171-4746-94C9-0D8A0B2C0089} [HKLM] -> [You must be registered and logged in to see this link.] [Microsoft Office Template and Media Control] ->
{0CCA191D-13A6-4E29-B746-314DEE697D83} [HKLM] -> [You must be registered and logged in to see this link.] [Facebook Photo Uploader 5 Control] ->
{13149882-F480-4F6B-8C6A-0764F75B99ED} [HKLM] -> [You must be registered and logged in to see this link.] [CrazyTalk4 Control] ->
{166B1BCA-3F9C-11CF-8075-444553540000} [HKLM] -> [You must be registered and logged in to see this link.] [Shockwave ActiveX Control] ->
{17492023-C23A-453E-A040-C7C580BBF700} [HKLM] -> [You must be registered and logged in to see this link.] [Windows Genuine Advantage Validation Tool] ->
{195B4BBF-E1E4-4020-9773-0A8C6F65EA35} [HKLM] -> [You must be registered and logged in to see this link.] [CPlayFirstCookingDasControl Object] ->
{26E6B759-DEEB-42A1-A21C-78CD29098411} [HKLM] -> [You must be registered and logged in to see this link.] [CPlayFirstFitnessDasControl Object] ->
{31435657-9980-0010-8000-00AA00389B71} [HKLM] -> [You must be registered and logged in to see this link.] [Reg Error: Key error.] ->
{37DF41B2-61DB-4CAC-A755-CFB3C7EE7F40} [HKLM] -> [You must be registered and logged in to see this link.] [AOL Content Update] ->
{3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} [HKLM] -> [You must be registered and logged in to see this link.] [CTVUAxCtrl Object] ->
{406B5949-7190-4245-91A9-30A17DE16AD0} [HKLM] -> [You must be registered and logged in to see this link.] [Snapfish Activia] ->
{4EC99A0B-E57C-4FBE-B9C4-8428424FBF88} [HKLM] -> [You must be registered and logged in to see this link.] [McciUtilsSpecialFolder Class] ->
{74C861A1-D548-4916-BC8A-FDE92EDFF62C} [HKLM] -> [You must be registered and logged in to see this link.] [Reg Error: Key error.] ->
{7FE26BE2-B923-4B41-9834-E84DA1CC1F96} [HKLM] -> [You must be registered and logged in to see this link.] [Maid Control] ->
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> [You must be registered and logged in to see this link.] [Java Plug-in 1.6.0_17] ->
{9600F64D-755F-11D4-A47F-0001023E6D5A} [HKLM] -> [You must be registered and logged in to see this link.] [Shutterfly Picture Upload Plugin] ->
{B7A59580-B39D-4BF9-B968-1BFA25156691} [HKLM] -> [You must be registered and logged in to see this link.] [TTS Engine Control] ->
{C606BA60-AB76-48B6-96A7-2C4D5C386F70} [HKLM] -> [You must be registered and logged in to see this link.] [PreQualifier Class] ->
{C6D25826-96AE-462F-A852-BB33B882B723} [HKLM] -> [You must be registered and logged in to see this link.] [SFImageUpload1_4.ImageUpload] ->
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [HKLM] -> [You must be registered and logged in to see this link.] [Java Plug-in 1.6.0_17] ->
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> [You must be registered and logged in to see this link.] [Java Plug-in 1.6.0_17] ->
{CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} [HKLM] -> [You must be registered and logged in to see this link.] [get_atlcom Class] ->
{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> [You must be registered and logged in to see this link.] [Shockwave Flash Object] ->
{E7D2588A-7FB5-47DC-8830-832605661009} [HKLM] -> [You must be registered and logged in to see this link.] [Live Collaboration] ->
{E9B80D94-D8BB-43CC-9138-75605A8D9666} [HKLM] -> [You must be registered and logged in to see this link.] [CPlayFirstWeddingDashControl Object] ->
{F135A813-7152-4532-AC8D-28AC2136DFC7} [HKLM] -> [You must be registered and logged in to see this link.] [CPlayFirstParkingDasControl Object] ->
{F89EF74A-956B-4BD3-A066-4F23DF891982} [HKLM] -> [You must be registered and logged in to see this link.] [Drag and Drop Uploader Control] ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ ->
DhcpNameServer -> 192.168.1.1 192.168.1.1 ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ ->
{4489EC0B-699C-4C87-ACDC-F06BCB257DC4}\\DhcpNameServer -> 192.168.1.1 192.168.1.1 (Intel(R) PRO/100 VE Network Connection) ->
IE Styles -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Styles
"Use My Stylesheet" -> Reg Error: Invalid data type.
"User Stylesheet" ->
< AppInit_DLLs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs ->
*AppInit_DLLs* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls ->
c:\windows\system32\pivejehu.dll -> C:\WINDOWS\system32\pivejehu.dll -> [2010/01/07 08:15:38 | 000,096,256 | -HS- | M | MD5 = 81F7B39561A26B25EF6268B761E55845] ()
hafatipo.dll -> -> File not found
*MultiFile Done* -> ->
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell ->
Explorer.exe -> C:\WINDOWS\explorer.exe -> [2008/04/13 20:12:19 | 001,033,728 | ---- | M | MD5 = 12896823FB95BFB3DC9B46BCAEDC9923] (Microsoft Corporation)
*MultiFile Done* -> ->
< Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ ->
igfxcui -> C:\WINDOWS\System32\igfxsrvc.dll -> [2004/08/20 18:50:54 | 000,344,064 | ---- | M | MD5 = 461F66F25460703B0F9A766A54DA7836] (Intel Corporation)
< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad ->
"{8cf1f80d-101b-45d8-971b-16ac88469286}" [HKLM] -> C:\WINDOWS\system32\pivejehu.dll [zihewojeg] -> [2010/01/07 08:15:38 | 000,096,256 | -HS- | M | MD5 = 81F7B39561A26B25EF6268B761E55845] ()
< SharedTaskScheduler [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler ->
"{8cf1f80d-101b-45d8-971b-16ac88469286}" [HKLM] -> C:\WINDOWS\system32\pivejehu.dll [gahurihor] -> [2010/01/07 08:15:38 | 000,096,256 | -HS- | M | MD5 = 81F7B39561A26B25EF6268B761E55845] ()
< IFEO [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ ->
MpCmdRun.exe -> C:\WINDOWS\system32\svchost.exe [Debugger: C:\WINDOWS\system32\svchost.exe] -> [2008/04/13 20:12:36 | 000,014,336 | ---- | M | MD5 = 27C6D03BCDB8CFEB96B716F3D8BE3E18] (Microsoft Corporation)
MSASCui.exe -> C:\WINDOWS\system32\svchost.exe [Debugger: C:\WINDOWS\system32\svchost.exe] -> [2008/04/13 20:12:36 | 000,014,336 | ---- | M | MD5 = 27C6D03BCDB8CFEB96B716F3D8BE3E18] (Microsoft Corporation)
MsMpEng.exe -> C:\WINDOWS\system32\svchost.exe [Debugger: C:\WINDOWS\system32\svchost.exe] -> [2008/04/13 20:12:36 | 000,014,336 | ---- | M | MD5 = 27C6D03BCDB8CFEB96B716F3D8BE3E18] (Microsoft Corporation)
msseces.exe -> C:\WINDOWS\system32\svchost.exe [Debugger: C:\WINDOWS\system32\svchost.exe] -> [2008/04/13 20:12:36 | 000,014,336 | ---- | M | MD5 = 27C6D03BCDB8CFEB96B716F3D8BE3E18] (Microsoft Corporation)
< Domain Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List ->
"C:\Program Files\America Online 9.0\waol.exe" -> C:\Program Files\America Online 9.0\waol.exe [C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AMERIC~1.0] -> File not found
"C:\Program Files\America Online 9.0b\waol.exe" -> C:\Program Files\America Online 9.0b\waol.exe [C:\Program Files\America Online 9.0b\waol.exe:*:Enabled:AOL] -> File not found
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" -> C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe [C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL] -> [2006/10/23 08:50:35 | 000,046,640 | R--- | M | MD5 = 85180CF88C5EBAD73B452A43A004CA51] (AOL LLC)
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" -> C:\Program Files\Common Files\AOL\ACS\AOLDial.exe [C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL] -> [2006/10/23 08:50:37 | 000,071,216 | R--- | M | MD5 = B9B78F0D9AEBCA8F717680FBABBB5FF4] (AOL LLC)
< Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List ->
"C:\Documents and Settings\Owner\Application Data\SopCast\adv\SopAdver.exe" -> C:\Documents and Settings\Owner\Application Data\SopCast\adv\SopAdver.exe [C:\Documents and Settings\Owner\Application Data\SopCast\adv\SopAdver.exe:*:Disabled:SopCast Adver] -> [2007/06/09 22:41:45 | 000,260,944 | ---- | M | MD5 = 3F78FA1DFAF868B50602A7A1D83DB9F2] ([You must be registered and logged in to see this link.]
"C:\Documents and Settings\Owner\Local Settings\Apps\2.0\J0WCYEV4.REM\HTB70RP0.CCV\west..kage_28b3eab364833aef_0001.0002_4a04786571555234\WelcomeHome.exe" -> C:\Documents and Settings\Owner\Local Settings\Apps\2.0\J0WCYEV4.REM\HTB70RP0.CCV\west..kage_28b3eab364833aef_0001.0002_4a04786571555234\WelcomeHome.exe [C:\Documents and Settings\Owner\Local Settings\Apps\2.0\J0WCYEV4.REM\HTB70RP0.CCV\west..kage_28b3eab364833aef_0001.0002_4a04786571555234\WelcomeHome.exe:*:Enabled:West At Home] -> File not found
"C:\Program Files\America Online 9.0\waol.exe" -> C:\Program Files\America Online 9.0\waol.exe [C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AMERIC~1.0] -> File not found
"C:\Program Files\America Online 9.0a\waol.exe" -> C:\Program Files\America Online 9.0a\waol.exe [C:\Program Files\America Online 9.0a\waol.exe:*:Enabled:AOL] -> File not found
"C:\Program Files\America Online 9.0b\waol.exe" -> C:\Program Files\America Online 9.0b\waol.exe [C:\Program Files\America Online 9.0b\waol.exe:*:Enabled:AOL] -> File not found
"C:\Program Files\America Online 9.0c\waol.exe" -> C:\Program Files\America Online 9.0c\waol.exe [C:\Program Files\America Online 9.0c\waol.exe:*:Enabled:AOL] -> [2005/07/12 01:17:51 | 000,037,464 | ---- | M | MD5 = 7FAB3C273C8214D517BDD0CBD2BA1815] (America Online, Inc.)
"C:\Program Files\Common Files\AOL\1127605169\ee\aim6.exe" -> C:\Program Files\Common Files\AOL\1127605169\ee\aim6.exe [C:\Program Files\Common Files\AOL\1127605169\ee\aim6.exe:*:Enabled:AIM] -> [2006/08/28 16:22:24 | 000,050,768 | ---- | M | MD5 = 4B203CC3ECA7EA2A66513366ECA4708F] (America Online, Inc.)
"C:\Program Files\Common Files\AOL\1127605169\ee\AOLServiceHost.exe" -> C:\Program Files\Common Files\AOL\1127605169\ee\AOLServiceHost.exe [C:\Program Files\Common Files\AOL\1127605169\ee\AOLServiceHost.exe:*:Enabled:AOL] -> [2005/07/29 12:53:51 | 000,151,128 | ---- | M | MD5 = 44A2EDD53616FD034FFFB9CBC4193E8E] (America Online, Inc.)
"C:\Program Files\Common Files\AOL\1127605169\ee\aolsoftware.exe" -> C:\Program Files\Common Files\AOL\1127605169\ee\aolsoftware.exe [C:\Program Files\Common Files\AOL\1127605169\ee\aolsoftware.exe:*:Enabled:AOL Services] -> [2006/09/25 20:52:48 | 000,050,736 | ---- | M | MD5 = C482C535CBFEFE722EC1EB7F11F680A3] (America Online, Inc.)
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" -> C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe [C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL] -> [2006/10/23 08:50:35 | 000,046,640 | R--- | M | MD5 = 85180CF88C5EBAD73B452A43A004CA51] (AOL LLC)
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" -> C:\Program Files\Common Files\AOL\ACS\AOLDial.exe [C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL] -> [2006/10/23 08:50:37 | 000,071,216 | R--- | M | MD5 = B9B78F0D9AEBCA8F717680FBABBB5FF4] (AOL LLC)
"C:\Program Files\Common Files\AOL\AOL Spyware Protection\AOLSP Scheduler.exe" -> C:\Program Files\Common Files\AOL\AOL Spyware Protection\AOLSP Scheduler.exe [C:\Program Files\Common Files\AOL\AOL Spyware Protection\AOLSP Scheduler.exe:*:Enabled:AOL] -> File not found
"C:\Program Files\Common Files\AOL\AOL Spyware Protection\asp.exe" -> C:\Program Files\Common Files\AOL\AOL Spyware Protection\asp.exe [C:\Program Files\Common Files\AOL\AOL Spyware Protection\asp.exe:*:Enabled:AOL] -> File not found
"C:\Program Files\Common Files\AOL\Loader\aolload.exe" -> C:\Program Files\Common Files\AOL\Loader\aolload.exe [C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL] -> [2005/07/11 17:35:18 | 000,011,352 | ---- | M | MD5 = 83DFB4DFC46F398AD8CEA833529CDCD7] (America Online, Inc.)
"C:\Program Files\Common Files\AOL\System Information\sinf.exe" -> C:\Program Files\Common Files\AOL\System Information\sinf.exe [C:\Program Files\Common Files\AOL\System Information\sinf.exe:*:Enabled:AOL] -> [2005/04/05 20:06:43 | 000,140,888 | ---- | M | MD5 = A5D75EE3BEC8343914FAD188F8703CD3] (America Online Inc.)
"C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe" -> C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe [C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe:*:Enabled:AOLTopSpeed] -> [2004/10/15 16:54:12 | 000,046,768 | ---- | M | MD5 = CAF7C2FDDADF73A02AC84C6FB6030BBF] (America Online Inc)
"C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe" -> C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe [C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe:*:Enabled:AOLTsMon] -> [2004/10/15 16:54:14 | 000,100,016 | ---- | M | MD5 = 7FB54900AA9792AB6307C699EC1859D4] (America Online, Inc)
"C:\Program Files\Common Files\AolCoach\en_en\player\AOLNySEV.exe" -> C:\Program Files\Common Files\AolCoach\en_en\player\AOLNySEV.exe [C:\Program Files\Common Files\AolCoach\en_en\player\AOLNySEV.exe:*:Enabled:AOL] -> [2004/10/14 17:34:06 | 000,059,992 | ---- | M | MD5 = ED8C9349C60F90F4BBF225D0D1F9D947] (Gteko Ltd.)
"C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe" -> C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe [C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent] -> [2009/07/07 19:10:02 | 002,482,848 | ---- | M | MD5 = 2988E515570E4F8B9D9B256137F8E8F4] (McAfee, Inc.)
"C:\Program Files\EA SPORTS\Madden NFL 2003\mainapp.exe" -> C:\Program Files\EA SPORTS\Madden NFL 2003\mainapp.exe [C:\Program Files\EA SPORTS\Madden NFL 2003\mainapp.exe:*:Disabled:mainapp] -> File not found
"C:\Program Files\FTP Explorer\ftpx.exe" -> C:\Program Files\FTP Explorer\ftpx.exe [C:\Program Files\FTP Explorer\ftpx.exe:*:Enabled:FTP Explorer Application] -> File not found
"C:\Program Files\iTunes\iTunes.exe" -> C:\Program Files\iTunes\iTunes.exe [C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes] -> [2009/07/13 14:02:56 | 014,074,656 | ---- | M | MD5 = F5BDBF356BC29A09C12F7BF576A7CD2E] (Apple Inc.)
"C:\Program Files\Real\RealPlayer\realplay.exe" -> C:\Program Files\Real\RealPlayer\realplay.exe [C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer] -> [2009/09/17 19:37:02 | 000,222,728 | ---- | M | MD5 = 7EC577C30DA696EE91A6409290A7D213] (RealNetworks, Inc.)
"C:\Program Files\SopCast\SopCast.exe" -> C:\Program Files\SopCast\SopCast.exe [C:\Program Files\SopCast\SopCast.exe:*:Disabled:SopCast Main Application] -> [2008/04/30 04:32:48 | 001,892,352 | ---- | M | MD5 = D2C63C0E561ACCDADCBA382C8867EF33] ([You must be registered and logged in to see this link.]
"C:\Program Files\uTorrent\uTorrent.exe" -> C:\Program Files\uTorrent\uTorrent.exe [C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:uTorrent] -> File not found
"C:\Program Files\Windows Media Player\wmplayer.exe" -> C:\Program Files\Windows Media Player\wmplayer.exe [C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player] -> [2006/10/18 21:46:20 | 000,064,000 | ---- | M | MD5 = D478331FEE85E840F7D89EDD06190DFC] (Microsoft Corporation)
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -> C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe [C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger] -> File not found
"C:\Program Files\Yahoo!\Messenger\YServer.exe" -> C:\Program Files\Yahoo!\Messenger\YServer.exe [C:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server] -> File not found
"C:\WINDOWS\explorer.exe" -> C:\WINDOWS\explorer.exe [C:\WINDOWS\explorer.exe:*:Enabled:Explorer] -> [2008/04/13 20:12:19 | 001,033,728 | ---- | M | MD5 = 12896823FB95BFB3DC9B46BCAEDC9923] (Microsoft Corporation)
"C:\WINDOWS\system32\java.exe" -> C:\WINDOWS\System32\java.exe [C:\WINDOWS\system32\java.exe:*:Enabled:java] -> [2009/12/30 21:44:47 | 000,145,184 | ---- | M | MD5 = 7F1875210672BB9338B0F86955948ECB] (Sun Microsystems, Inc.)
"E:\INSTALL.EXE" -> E:\INSTALL.EXE [E:\INSTALL.EXE:*:Enabled:INSTALL] -> File not found
"F:\INSTALL.EXE" -> F:\INSTALL.EXE [F:\INSTALL.EXE:*:Enabled:INSTALL] -> File not found
"F:\Updater.exe" -> F:\Updater.exe [F:\Updater.exe:*:Enabled:Updater] -> File not found
< SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot ->
< CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->
"AutoRun" -> 1 ->
"DisplayName" -> CD-ROM Driver ->
"ImagePath" -> [system32\DRIVERS\cdrom.sys] -> File not found
< Drives with AutoRun files > -> ->
C:\AUTOEXEC.BAT [PATH=%PATH%;C:\PROGRA~1\COMMON~1\MUVEET~1\030625 | PATH=%PATH%;C:\PROGRA~1\COMMON~1\MUVEET~1\030625 | ] -> C:\AUTOEXEC.BAT [ NTFS ] -> [2009/12/31 22:19:51 | 000,000,100 | ---- | M | MD5 = E7EB038D6FFE32C75E0509E5212358E1] ()
D:\Autorun.inf [[AUTORUN] | SHELLEXECUTE=Info.exe folder.htt 480 480 | ] -> D:\Autorun.inf [ FAT32 ] -> [2004/09/13 12:15:24 | 000,000,053 | -HS- | M | MD5 = A09D73C07892E2C770B865716C556949] ()
D:\autorun.inf.aug.8 [[AUTORUN] | OPEN=Info.exe folder.htt 480 480 | ] -> D:\autorun.inf.aug.8 [ FAT32 ] -> [2003/08/08 17:24:26 | 000,000,045 | -HS- | M | MD5 = 6EAFAECB8B87E517DD021A9B8D57D592] ()
< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 ->
\D
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\Shell
\D\Shell\\"" -> [AutoRun] -> File not found
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\Shell\AutoRun
\D\Shell\AutoRun\\"" -> [Auto&Play] -> File not found
\{6f478f8e-7818-11dc-9fbd-00038a000015}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\AutoRun\command
\{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\AutoRun\command\\"" -> L:\system\viewer\Viewer.exe [L:\system\viewer\Viewer.exe] -> File not found
\{6f478f8e-7818-11dc-9fbd-00038a000015}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\View your videos\command
\{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\View your videos\command\\"" -> L:\system\viewer\Viewer.exe [L:\system\viewer\Viewer.exe] -> File not found
< Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command ->
comfile [open] -> "%1" %* ->
exefile [open] -> "%1" %* ->
< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ ->
.com [@ = comfile] -> "%1" %* ->
.exe [@ = exefile] -> "%1" %* ->

[Registry - Additional Scans - Safe List]
< Drivers32 [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32 ->
"msacm.iac2" -> C:\WINDOWS\system32\iac25_32.ax [C:\WINDOWS\system32\iac25_32.ax] -> [2008/04/13 20:12:42 | 000,199,680 | ---- | M | MD5 = 877C90686858D899B042BBA45E9B7F2C] (Intel Corporation)
"msacm.l3acm" -> C:\WINDOWS\system32\l3codeca.acm [C:\WINDOWS\system32\l3codeca.acm] -> [2008/04/13 20:09:57 | 000,290,816 | ---- | M | MD5 = 452705AC9E4C0DDE91A61F0E02292423] (Fraunhofer Institut Integrierte Schaltungen IIS)
"msacm.sl_anet" -> C:\WINDOWS\System32\sl_anet.acm [sl_anet.acm] -> [2008/04/13 20:10:50 | 000,086,016 | ---- | M | MD5 = 0DBB250A89E2E1C9281009AC269F0805] (Sipro Lab Telecom Inc.)
"msacm.trspch" -> C:\WINDOWS\System32\tssoft32.acm [tssoft32.acm] -> [2004/08/04 15:00:00 | 000,008,192 | ---- | M | MD5 = E8CD0D7E169ECCE2D4FD829DAAB786ED] (DSP GROUP, INC.)
"MSVideo8" -> C:\WINDOWS\System32\vfwwdm32.dll [VfWWDM32.dll] -> [2008/04/13 20:12:08 | 000,053,760 | ---- | M | MD5 = E2A57AC21705D3A05BB89BE201FA5C0C] (Microsoft Corporation)
"vidc.3IV2" -> C:\WINDOWS\System32\3ivxVfWCodec_dec.dll [3ivxVfWCodec_dec.dll] -> [2004/01/27 09:35:32 | 000,270,336 | ---- | M | MD5 = 07C3DFFF0D61FE8C1D76C05C7BCB87DE] (3ivx.com)
"vidc.cvid" -> C:\WINDOWS\System32\iccvid.dll [iccvid.dll] -> [2008/04/13 20:11:54 | 000,080,384 | ---- | M | MD5 = 7E86D471EF8DED7B9D15106002120271] (Radius Inc.)
"vidc.iv31" -> C:\WINDOWS\System32\ir32_32.dll [ir32_32.dll] -> [2004/08/04 15:00:00 | 000,199,168 | ---- | M | MD5 = 43ECA1576906BA76FB3E329A338A3CAE] ()
"vidc.iv32" -> C:\WINDOWS\System32\ir32_32.dll [ir32_32.dll] -> [2004/08/04 15:00:00 | 000,199,168 | ---- | M | MD5 = 43ECA1576906BA76FB3E329A338A3CAE] ()
"vidc.iv41" -> C:\WINDOWS\System32\ir41_32.ax [ir41_32.ax] -> [2008/04/13 20:12:42 | 000,848,384 | ---- | M | MD5 = 948E1498C6438625247F94534AAA82FE] (Intel Corporation)
"vidc.iv50" -> C:\WINDOWS\System32\ir50_32.dll [ir50_32.dll] -> [2008/04/13 20:11:55 | 000,755,200 | ---- | M | MD5 = 5F10DC19D92CCF6B719B494572F4F74B] (Intel Corporation)
"VIDC.SP50" -> [SP5X_32.DLL] -> File not found
"VIDC.SP51" -> [SP5X_32.DLL] -> File not found
"VIDC.SP52" -> [SP5X_32.DLL] -> File not found
"VIDC.SP53" -> [SP5X_32.DLL] -> File not found
"VIDC.SP54" -> [SP5X_32.DLL] -> File not found
"VIDC.SP55" -> [SP5X_32.DLL] -> File not found
"VIDC.SP56" -> [SP5X_32.DLL] -> File not found
"VIDC.SP57" -> [SP5X_32.DLL] -> File not found
"VIDC.SP58" -> [SP5X_32.DLL] -> File not found
"VIDC.SP59" -> [SP5X_32.DLL] -> File not found
< Ext (PreApproved) - [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ ->
{02478D38-C3F9-4efb-9B51-7695ECA05670} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} [HKLM] -> C:\Program Files\QuickTime\QTPlugin.ocx [QuickTime Object] -> [2009/05/26 17:18:52 | 000,779,568 | ---- | M | MD5 = 119F55DAE2859632F2DD950031CD0A3B] (Apple Inc.)
{03F998B2-0E00-11D3-A498-00104B6EB52E} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{166B1BCA-3F9C-11CF-8075-444553540000} [HKLM] -> C:\WINDOWS\system32\Macromed\Director\SwDir.dll [Shockwave ActiveX Control] -> [2006/09/04 00:10:30 | 000,054,960 | ---- | M | MD5 = EB271B21EA6104B7C6946EF32D558C91] (Adobe Systems, Inc.)
{1B00725B-C455-4DE6-BFB6-AD540AD427CD} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{233C1507-6A77-46A4-9443-F871F945D258} [HKLM] -> C:\WINDOWS\system32\Adobe\Director\swdir.dll [Shockwave ActiveX Control] -> [2009/04/29 06:29:00 | 000,202,168 | ---- | M | MD5 = 1B3A14C57997CC19974BA9F2BE5BD543] (Adobe Systems, Inc.)
{4063BE15-3B08-470D-A0D5-B37161CFFD69} [HKLM] -> C:\Program Files\QuickTime\QTPlugin.ocx [QuickTime Object] -> [2009/05/26 17:18:52 | 000,779,568 | ---- | M | MD5 = 119F55DAE2859632F2DD950031CD0A3B] (Apple Inc.)
{5852F5ED-8BF4-11D4-A245-0080C6F74284} [HKLM] -> C:\Program Files\Java\jre6\bin\wsdetect.dll [isInstalled Class] -> [2009/12/30 21:44:58 | 000,102,400 | ---- | M | MD5 = 414984FF35B2EFB8EE1A64ED8F157A98] (Sun Microsystems, Inc.)
{7379F0FF-EA46-4536-BEF5-68B6B5E54F9B} [HKLM] -> C:\Program Files\Verizon\VSP\VerizonServicepointComHandler.exe [RpClientGatewayscriptInterface2 Class] -> [2007/11/16 17:30:16 | 000,308,464 | ---- | M | MD5 = 22389F747B0C22A6AF427C2B2C178EB9] (Radialpoint Inc.)
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{7B089B94-D1DC-4C6B-87E1-8156E22C1D96} [HKLM] -> C:\Program Files\Common Files\Software Update Utility\dnu.exe [DownloadUpdController Class] -> [2008/09/26 12:40:32 | 000,189,224 | ---- | M | MD5 = D4C9262CE53F74716683BD13BB4F264E] (AOL LLC)
{88d96a05-f192-11d4-a65f-0040963251e5} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_17.dll [Java Plug-in 1.6.0_17] -> [2009/12/30 21:44:55 | 000,136,992 | ---- | M | MD5 = 3D58770680F268A23A8CE1F14B49AA2F] (Sun Microsystems, Inc.)
{9F81C14C-04C0-4378-9A0F-70B5F25397BC} [HKLM] -> C:\Program Files\Netflix\Netflix Movie Viewer\AxPlayer.ocx [AxPlayer Control] -> [2007/06/26 14:53:36 | 000,683,072 | ---- | M | MD5 = 60932E11D312DEBE12CFCEB1150B0F0A] (Netflix, Inc.)
{B3E658DF-D425-430C-82C2-D54295915020} [HKLM] -> C:\Program Files\Netflix\Netflix Movie Viewer\AxVersion.ocx [AxVersion Control] -> [2007/06/26 14:53:28 | 000,371,776 | ---- | M | MD5 = B008599074D3953C0C407D68813BC84D] (Netflix Inc.)
{BE373603-040E-4BDA-864C-F28CB6FFAE45} [HKLM] -> C:\Program Files\Verizon\VSP\VerizonServicepointComHandler.exe [RpClientGatewayscriptInterface Class] -> [2007/11/16 17:30:16 | 000,308,464 | ---- | M | MD5 = 22389F747B0C22A6AF427C2B2C178EB9] (Radialpoint Inc.)
{CA8A9780-280D-11CF-A24D-444553540000} [HKLM] -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll [Adobe PDF Reader] -> [2007/05/10 22:26:40 | 000,632,432 | R--- | M | MD5 = 97E41D0A84A5318A970F41A8058D9529] (Adobe Systems, Inc.)
{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_17.dll [Java Plug-in 1.6.0_17] -> [2009/12/30 21:44:55 | 000,136,992 | ---- | M | MD5 = 3D58770680F268A23A8CE1F14B49AA2F] (Sun Microsystems, Inc.)
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_17.dll [Java Plug-in 1.6.0_17] -> [2009/12/30 21:44:55 | 000,136,992 | ---- | M | MD5 = 3D58770680F268A23A8CE1F14B49AA2F] (Sun Microsystems, Inc.)
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_17.dll [Java Plug-in 1.6.0_17] -> [2009/12/30 21:44:55 | 000,136,992 | ---- | M | MD5 = 3D58770680F268A23A8CE1F14B49AA2F] (Sun Microsystems, Inc.)
{CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA} [HKLM] -> C:\WINDOWS\system32\deploytk.dll [Deployment Toolkit] -> [2009/12/30 21:44:44 | 000,411,368 | ---- | M | MD5 = 3862A8602F0B99E8E3475EFD3A6DAE21] (Sun Microsystems, Inc.)
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBC} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{CB927D12-4FF7-4A9E-A169-56E4B8A75598} [HKLM] -> C:\Program Files\QuickTime\QTPlugin.ocx [Behavior Object] -> [2009/05/26 17:18:52 | 000,779,568 | ---- | M | MD5 = 119F55DAE2859632F2DD950031CD0A3B] (Apple Inc.)
{CD3E5421-3A0A-47CB-B789-7929E6F5DE33} [HKLM] -> C:\Program Files\Radialpoint\Security Advisor\SecurityAdvisorLogic.exe [SecurityDetectorLogic Object] -> [2008/06/30 18:44:34 | 000,197,872 | ---- | M | MD5 = F4F1A3FC392D0581B744E58153B9D08B] (Radialpoint Inc.)
{CFCDAA03-8BE4-11cf-B84B-0020AFBBCCFA} [HKLM] -> C:\WINDOWS\system32\rmoc3260.dll [RealPlayer G2 Control] -> [2009/09/17 19:38:10 | 000,185,920 | ---- | M | MD5 = ADE9CF5CACD26425854C343997F021E4] (RealNetworks, Inc.)
{D27CDB6E-AE6D-11cf-96B8-444553540000} [HKLM] -> C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx [Shockwave Flash Object] -> [2008/10/04 23:16:26 | 003,789,728 | R--- | M | MD5 = 466C1355934925768822E380DA6E6E4A] (Adobe Systems, Inc.)
{D719897A-B07A-4C0C-AEA9-9B663A28DFCB} [HKLM] -> C:\Program Files\iTunes\ITDetector.ocx [iTunesDetector Class] -> [2009/07/13 14:02:52 | 000,111,912 | ---- | M | MD5 = A64AD94ED646B2CDBED0CEBC9018EC19] (Apple Inc.)
{DFEAF541-F3E1-4c24-ACAC-99C30715084A} [HKLM] -> c:\Program Files\Microsoft Silverlight\3.0.50106.0\npctrl.dll [Microsoft Silverlight] -> [2010/01/06 01:33:56 | 000,876,872 | ---- | M | MD5 = 98C15480C8AD4FEF5CF62769FAE65C92] ( Microsoft Corporation)
{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 12:52 am

{FDA3CE84-8199-40BE-87FE-74C65164A620} [HKLM] -> C:\Program Files\Verizon\VSP\VerizonServicepointComHandler.exe [RpSoftwareVersion Class] -> [2007/11/16 17:30:16 | 000,308,464 | ---- | M | MD5 = 22389F747B0C22A6AF427C2B2C178EB9] (Radialpoint Inc.)
< Ext (Settings) - [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\ ->
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKLM] -> C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [Adobe PDF Reader Link Helper] -> [2006/12/18 04:16:42 | 000,059,032 | ---- | M | MD5 = 4EA3A6CD9D20584FFAFDB1E47DBF0E20] (Adobe Systems Incorporated)
{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{3049C3E9-B461-4BC5-8870-4C09146192CA} [HKLM] -> c:\Program Files\Real\realplayer\rpbrowserrecordplugin.dll [RealPlayer Download and Record Plugin for Internet Explorer] -> [2009/09/17 19:38:26 | 000,329,312 | ---- | M | MD5 = 98EA10E878D73C261E0C6316A3A48658] (RealPlayer)
{754FF233-5D4E-11D2-875B-00A0C93C09B3} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{7DB2D5A0-7241-4E79-B68D-6309F01C5231} [HKLM] -> C:\Program Files\McAfee\VirusScan\scriptsn.dll [scriptproxy] -> [2009/09/16 10:22:16 | 000,062,784 | ---- | M | MD5 = 2F2D790D560CE6B8C7BC4DD6CA766A0E] (McAfee, Inc.)
{A3704FA3-DBF6-46B5-B95E-0677DFD39577} [HKLM] -> C:\Program Files\AOL Email Toolbar\aolmailtb.dll [AOL Email Toolbar] -> [2009/05/05 14:19:46 | 001,275,176 | ---- | M | MD5 = BF49B8BCDA7E91D06F196A175991CE01] (AOL LLC)
{AA58ED58-01DD-4D91-8333-CF10577473F7} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{B1549E58-3894-11D2-BB7F-00A0C999C4C1} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{B6BB2C0A-8D74-4664-A1CD-103BD9A69DE9} [HKLM] -> C:\Program Files\Linksador\Lincmediaplayer\adxloader.dll [] -> [2008/08/04 14:11:56 | 000,315,392 | ---- | M | MD5 = 0F68B52E9BCDFBF74402D53236DC5E46] (Add-in Express Ltd)
{BDD307C3-7BC0-4542-9F8F-A9611FE6C1BF} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{C533ADF1-0C80-11D1-8C54-00A02468F316} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx [Shockwave Flash Object] -> [2008/10/04 23:16:26 | 003,789,728 | R--- | M | MD5 = 466C1355934925768822E380DA6E6E4A] (Adobe Systems, Inc.)
{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{FBAA6932-B59B-4854-8041-27A233394BA3} [HKLM] -> C:\Program Files\Linksador\Lincmediaplayer\adxloader.dll [Lincmediaplayer] -> [2008/08/04 14:11:56 | 000,315,392 | ---- | M | MD5 = 0F68B52E9BCDFBF74402D53236DC5E46] (Add-in Express Ltd)
{FBEA8524-8C72-4208-9D12-7FB73E9926EB} [HKLM] -> C:\Program Files\AOL Email Toolbar\aolmailtb.dll [AOL Email Toolbar Loader] -> [2009/05/05 14:19:46 | 001,275,176 | ---- | M | MD5 = BF49B8BCDA7E91D06F196A175991CE01] (AOL LLC)
< Ext (Stats) - [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\ ->
{01415ED5-9799-48A9-8784-BEEED9FD9EE3} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{02478D38-C3F9-4EFB-9B51-7695ECA05670} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} [HKLM] -> C:\Program Files\QuickTime\QTPlugin.ocx [QuickTime Object] -> [2009/05/26 17:18:52 | 000,779,568 | ---- | M | MD5 = 119F55DAE2859632F2DD950031CD0A3B] (Apple Inc.)
{03F998B2-0E00-11D3-A498-00104B6EB52E} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{06310052-121A-4361-BDFF-588C5CDBF19D} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKLM] -> C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [Adobe PDF Reader Link Helper] -> [2006/12/18 04:16:42 | 000,059,032 | ---- | M | MD5 = 4EA3A6CD9D20584FFAFDB1E47DBF0E20] (Adobe Systems Incorporated)
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> Reg Error: Key error. [Reg Error: Value error.] -> File not found
{0CCA191D-13A6-4E29-B746-314DEE697D83} [HKLM] -> C:\WINDOWS\Downloaded Program Files\PhotoUploader5.ocx [Facebook Photo Uploader 5 Control] -> [2008/10/10 15:44:58 | 003,536,384 | ---- | M | MD5 = 3F703EC5DB5638C08008132A78430136] ()
{10072CEC-8CC1-11D1-986E-00A0C955B42E} [HKLM] -> C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll [PeerDraw Class] -> [2009/03/08 05:33:48 | 000,759,296 | ---- | M | MD5 = E9B8DFF0C25C3933A1B4216AFC3619B0] (Microsoft Corporation)
{13149882-F480-4F6B-8C6A-0764F75B99ED} [HKLM] -> C:\Program Files\Common Files\Reallusion\CT Player\crazytalk4.ocx [CrazyTalk4 Control] -> [2007/05/22 15:25:30 | 000,069,632 | ---- | M | MD5 = 9D222CBE4FA40087B1B0168475DD9B4E] (C3D)
{166B1BCA-3F9C-11CF-8075-444553540000} [HKLM] -> C:\WINDOWS\system32\Macromed\Director\SwDir.dll [Shockwave ActiveX Control] -> [2006/09/04 00:10:30 | 000,054,960 | ---- | M | MD5 = EB271B21EA6104B7C6946EF32D558C91] (Adobe Systems, Inc.)
{195B4BBF-E1E4-4020-9773-0A8C6F65EA35} [HKLM] -> C:\WINDOWS\Downloaded Program Files\CookingDashWeb.1.0.0.9.dll [CPlayFirstCookingDasControl Object] -> [2008/09/08 13:50:38 | 002,151,784 | ---- | M | MD5 = 1881FEC549E4AF8A7E33427B1AE2D129] ()
{1A7793DE-2598-4FA8-9EC5-9442CDE5E1CC} [HKLM] -> Reg Error: Key error. [Installer Class] -> File not found
{1EB0FE44-B210-47FE-BADE-04D617312B39} [HKLM] -> C:\Program Files\Veetle\plugins\Veetle.ocx [Veetle TV Core] -> [2010/03/17 19:35:48 | 000,886,808 | ---- | M | MD5 = 6506DB6ED281ED9FE27A917EC8ABDF1A] (Veetle Inc)
{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{233C1507-6A77-46A4-9443-F871F945D258} [HKLM] -> C:\WINDOWS\system32\Adobe\Director\swdir.dll [Shockwave ActiveX Control] -> [2009/04/29 06:29:00 | 000,202,168 | ---- | M | MD5 = 1B3A14C57997CC19974BA9F2BE5BD543] (Adobe Systems, Inc.)
{26E6B759-DEEB-42A1-A21C-78CD29098411} [HKLM] -> C:\WINDOWS\Downloaded Program Files\FitnessDashWeb.1.0.0.11.dll [CPlayFirstFitnessDasControl Object] -> [2008/12/05 13:27:08 | 002,196,840 | ---- | M | MD5 = 35A136AB1A79F73791B60AB2B0EA4C5D] ()
{2C70F37F-144A-49B4-BC53-3CB658E6D247} [HKLM] -> Reg Error: Key error. [Sinstaller Class] -> File not found
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} [HKLM] -> C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx [DHTML Edit Control Safe for scripting for IE5] -> [2009/07/27 18:27:12 | 000,128,512 | ---- | M | MD5 = AB2618C157C8D7BC89BA3402C6E52638] (Microsoft Corporation)
{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{3049C3E9-B461-4BC5-8870-4C09146192CA} [HKLM] -> c:\Program Files\Real\realplayer\rpbrowserrecordplugin.dll [RealPlayer Download and Record Plugin for Internet Explorer] -> [2009/09/17 19:38:26 | 000,329,312 | ---- | M | MD5 = 98EA10E878D73C261E0C6316A3A48658] (RealPlayer)
{3369AF0D-62E9-4BDA-8103-B4C75499B578} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} [HKLM] -> C:\WINDOWS\Downloaded Program Files\npTVUAx.dll [CTVUAxCtrl Object] -> [2009/01/17 13:34:50 | 001,338,480 | ---- | M | MD5 = 88622D9D1E58540C1929ED6E55D87535] ()
{4063BE15-3B08-470D-A0D5-B37161CFFD69} [HKLM] -> C:\Program Files\QuickTime\QTPlugin.ocx [QuickTime Object] -> [2009/05/26 17:18:52 | 000,779,568 | ---- | M | MD5 = 119F55DAE2859632F2DD950031CD0A3B] (Apple Inc.)
{406B5949-7190-4245-91A9-30A17DE16AD0} [HKLM] -> C:\WINDOWS\Downloaded Program Files\SnapfishActivia1000.ocx [Snapfish Activia] -> [2005/06/03 12:24:32 | 000,286,720 | ---- | M | MD5 = F5C79C45F1ADF877DC3AFDFF3565AE7B] ()
{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{47635B55-2E80-4154-86C5-6AA15C56456B} [HKLM] -> C:\Program Files\Internet Explorer\XRPActiveX40.OCX [XRPXRP Control] -> [2005/12/07 15:28:52 | 001,581,056 | ---- | M | MD5 = 029B38B50963C306274D14785290DA11] (XStream Software Inc.)
{48DD0448-9209-4F81-9F6D-D83562940134} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{4982D40A-C53B-4615-B15B-B5B5E98D167C} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{4E7BD74F-2B8D-469E-D0FC-E57AF4D5FA7D} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{4EC99A0B-E57C-4FBE-B9C4-8428424FBF88} [HKLM] -> C:\Program Files\Common Files\Motive\McciUtilsX.dll [McciUtilsSpecialFolder Class] -> [2005/05/18 15:40:18 | 000,741,376 | ---- | M | MD5 = 9593AEEB334CC524EF585784F1D437BB] (Motive Communications, Inc.)
{528BF874-2681-4CE3-8C62-AA0D3BC0A719} [HKLM] -> C:\Program Files\Common Files\Motive\McciSysX.dll [McciSysSCM Class] -> [2005/06/02 19:22:15 | 000,700,416 | ---- | M | MD5 = BD96A084FFEFCF64A8C20FE980A18CCE] (Motive Communications, Inc.)
{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{639658F3-B141-4D6B-B936-226F75A5EAC3} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{67DABFBF-D0AB-41FA-9C46-CC0F21721616} [HKLM] -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [DivXBrowserPlugin Object] -> [2008/09/15 20:11:52 | 001,335,600 | ---- | M | MD5 = 56E18C09654020009012A53FD332D397] (DivX,Inc.)
{7379F0FF-EA46-4536-BEF5-68B6B5E54F9B} [HKLM] -> C:\Program Files\Verizon\VSP\VerizonServicepointComHandler.exe [RpClientGatewayscriptInterface2 Class] -> [2007/11/16 17:30:16 | 000,308,464 | ---- | M | MD5 = 22389F747B0C22A6AF427C2B2C178EB9] (Radialpoint Inc.)
{74C861A1-D548-4916-BC8A-FDE92EDFF62C} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{7C554162-8CB7-45A4-B8F4-8EA1C75885F9} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{7DB2D5A0-7241-4E79-B68D-6309F01C5231} [HKLM] -> C:\Program Files\McAfee\VirusScan\scriptsn.dll [scriptproxy] -> [2009/09/16 10:22:16 | 000,062,784 | ---- | M | MD5 = 2F2D790D560CE6B8C7BC4DD6CA766A0E] (McAfee, Inc.)
{8100D56A-5661-482C-BEE8-AFECE305D968} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{88D96A05-F192-11D4-A65F-0040963251E5} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{8A4227BF-0CC2-4EEF-B076-DAFFF941EEA5} [HKLM] -> C:\Program Files\Veetle\Player\axvlc.dll [Veetle TV Player 0.9.17] -> [2010/03/22 19:40:08 | 000,208,408 | ---- | M | MD5 = 3C4969CF956E30019071778266B392A8] ()
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> C:\Program Files\Java\jre6\bin\npjpi160_17.dll [Java Plug-in 1.6.0_17] -> [2009/12/30 21:44:55 | 000,136,992 | ---- | M | MD5 = 3D58770680F268A23A8CE1F14B49AA2F] (Sun Microsystems, Inc.)
{8FD68625-2346-418A-8899-67CB36B1917F} [HKLM] -> C:\Program Files\Common Files\Motive\McciSMX.dll [McciSM Class] -> [2005/06/02 19:10:05 | 000,110,592 | ---- | M | MD5 = 35C1A4BF7E568B656DB04F1998AD6140] (Motive Communications, Inc.)
{8FEFF364-6A5F-4966-A917-A3AC28411659} [HKLM] -> C:\Program Files\SopCast\sopocx.ocx [SopCore Control] -> [2008/04/30 04:32:02 | 001,732,608 | ---- | M | MD5 = 40ED450182D2ADF939690C8A6DA07F58] (SopCast.com)
{9600F64D-755F-11D4-A47F-0001023E6D5A} [HKLM] -> C:\WINDOWS\Downloaded Program Files\sfuploadplugin.ocx [Shutterfly Picture Upload Plugin] -> [2007/01/04 11:43:24 | 001,898,216 | ---- | M | MD5 = 080FA21337AE2364B39A263E5AF7D326] ()
{9E30754B-29A9-41CE-8892-70E9E07D15DC} [HKLM] -> C:\Program Files\Common Files\Microsoft Shared\MSInfo\OFFPRV10.EXE [OfficeObj10 Class] -> [2000/10/23 09:45:00 | 000,065,536 | ---- | M | MD5 = 9C00C99D19C107589C9BFEE21A370080] (Microsoft Corporation)
{9F81C14C-04C0-4378-9A0F-70B5F25397BC} [HKLM] -> C:\Program Files\Netflix\Netflix Movie Viewer\AxPlayer.ocx [AxPlayer Control] -> [2007/06/26 14:53:36 | 000,683,072 | ---- | M | MD5 = 60932E11D312DEBE12CFCEB1150B0F0A] (Netflix, Inc.)
{A3704FA3-DBF6-46B5-B95E-0677DFD39577} [HKLM] -> C:\Program Files\AOL Email Toolbar\aolmailtb.dll [AOL Email Toolbar] -> [2009/05/05 14:19:46 | 001,275,176 | ---- | M | MD5 = BF49B8BCDA7E91D06F196A175991CE01] (AOL LLC)
{A8F2B9BD-A6A0-486A-9744-18920D898429} [HKLM] -> C:\Program Files\Sibelius Software\Scorch\ActiveXPlugin\ScorchAxPlugin.dll [ScorchPlugin Class] -> [2009/03/10 10:05:18 | 007,389,936 | ---- | M | MD5 = B996C3FD586C202164915DD24E47CE4F] ()
{A9FC132B-096D-460B-B7D5-1DB0FAE0C062} [HKLM] -> C:\WINDOWS\system32\msnetobj.dll [RMGetLicense Class] -> [2006/10/18 21:47:16 | 000,179,712 | ---- | M | MD5 = 2F806282AAC35D6DC7E053E89EF90CB4] (Microsoft Corporation)
{AA58ED58-01DD-4D91-8333-CF10577473F7} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{B3E658DF-D425-430C-82C2-D54295915020} [HKLM] -> C:\Program Files\Netflix\Netflix Movie Viewer\AxVersion.ocx [AxVersion Control] -> [2007/06/26 14:53:28 | 000,371,776 | ---- | M | MD5 = B008599074D3953C0C407D68813BC84D] (Netflix Inc.)
{B6BB2C0A-8D74-4664-A1CD-103BD9A69DE9} [HKLM] -> C:\Program Files\Linksador\Lincmediaplayer\adxloader.dll [] -> [2008/08/04 14:11:56 | 000,315,392 | ---- | M | MD5 = 0F68B52E9BCDFBF74402D53236DC5E46] (Add-in Express Ltd)
{B7A59580-B39D-4BF9-B968-1BFA25156691} [HKLM] -> C:\Documents and Settings\Owner\Application Data\Reallusion\TTSComponent\TTSComponentCT4.ocx [TTS Engine Control] -> [2006/02/10 15:52:00 | 000,077,824 | ---- | M | MD5 = 5D96AE85304F4CA2E720866DC2247CD7] (Reallusion Inc.)
{B91B0A7A-B6E9-476d-8560-4ACA2E3C01B1} [HKLM] -> C:\Program Files\Veetle\VLCBroadcast\axvbp.dll [Veetle Broadcaster Plugin 0.9.17] -> [2010/03/22 19:40:08 | 000,747,032 | ---- | M | MD5 = 9CA67BB11360F44268D18D5C1D69C34F] ()
{BA52B914-B692-46C4-B683-905236F6F655} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{BCD5A227-8720-497B-AF5F-4403E94342E3} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{BD96C556-65A3-11D0-983A-00C04FC29E36} [HKLM] -> C:\Program Files\Common Files\System\msadc\msadco.dll [RDS.DataSpace] -> [2008/04/13 20:11:58 | 000,143,360 | ---- | M | MD5 = E0E6648BD34E9BA999C7BD6FD9675398] (Microsoft Corporation)
{BDF3E430-B101-42AD-A544-FADC6B084872} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{BE373603-040E-4BDA-864C-F28CB6FFAE45} [HKLM] -> C:\Program Files\Verizon\VSP\VerizonServicepointComHandler.exe [RpClientGatewayscriptInterface Class] -> [2007/11/16 17:30:16 | 000,308,464 | ---- | M | MD5 = 22389F747B0C22A6AF427C2B2C178EB9] (Radialpoint Inc.)
{C3D45694-CDD5-494B-9EF1-20B6FE9F2492} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{CA3A50D1-1BE1-452E-9CEA-1122DE2DD222} [HKLM] -> [Reg Error: Value error.] -> File not found
{CA8A9780-280D-11CF-A24D-444553540000} [HKLM] -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll [Adobe PDF Reader] -> [2007/05/10 22:26:40 | 000,632,432 | R--- | M | MD5 = 97E41D0A84A5318A970F41A8058D9529] (Adobe Systems, Inc.)
{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{CD3E5421-3A0A-47CB-B789-7929E6F5DE33} [HKLM] -> C:\Program Files\Radialpoint\Security Advisor\SecurityAdvisorLogic.exe [SecurityDetectorLogic Object] -> [2008/06/30 18:44:34 | 000,197,872 | ---- | M | MD5 = F4F1A3FC392D0581B744E58153B9D08B] (Radialpoint Inc.)
{CD67F990-D8E9-11D2-98FE-00C0F0318AFE} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{CEDDF50D-9FA7-41A8-BCD0-6350D1ED2306} [HKLM] -> C:\Program Files\Common Files\Verizon Online\SFP\BJAXSecurityManager.dll [SecurityManager Class] -> [2003/07/11 14:19:54 | 000,040,448 | ---- | M | MD5 = A2C4D7DAA9E3B62A4C721B3200D228A4] ()
{CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} [HKLM] -> C:\WINDOWS\Downloaded Program Files\gp.ocx [get_atlcom Class] -> [2007/05/16 08:22:06 | 000,166,512 | ---- | M | MD5 = 9BCFC46ECA1BF28E039ECCE2D331086E] ()
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} [HKLM] -> C:\WINDOWS\system32\rmoc3260.dll [RealPlayer G2 Control] -> [2009/09/17 19:38:10 | 000,185,920 | ---- | M | MD5 = ADE9CF5CACD26425854C343997F021E4] (RealNetworks, Inc.)
{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> C:\WINDOWS\system32\Macromed\Flash\Flash10a.ocx [Shockwave Flash Object] -> [2008/10/04 23:16:26 | 003,789,728 | R--- | M | MD5 = 466C1355934925768822E380DA6E6E4A] (Adobe Systems, Inc.)
{DA4F543C-C8A9-4E88-9A79-548CBB46F18F} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{DB0474CC-8EF6-47FC-905B-23FC58A70817} [HKLM] -> C:\Program Files\Common Files\Verizon Online\RegProps\vzRegPropsAx.dll [RegPropsCtrl Class] -> [2005/01/11 17:27:48 | 000,128,064 | ---- | M | MD5 = 77B7B04D338C4B880507D6C2A845434A] (TODO: )
{DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} [HKLM] -> C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx [QuickTimeCheck Class] -> [2009/05/26 17:18:52 | 000,116,016 | ---- | M | MD5 = 720A898D07E8BEF59303596E6186F4F8] (Apple Inc.)
{DE9C389F-3316-41A7-809B-AA305ED9D922} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{DFEAF541-F3E1-4C24-ACAC-99C30715084A} [HKLM] -> c:\Program Files\Microsoft Silverlight\3.0.50106.0\npctrl.dll [Microsoft Silverlight] -> [2010/01/06 01:33:56 | 000,876,872 | ---- | M | MD5 = 98C15480C8AD4FEF5CF62769FAE65C92] ( Microsoft Corporation)
{E0FEE963-BB53-4215-81AD-B28C77384644} [HKLM] -> C:\Program Files\Common Files\Motive\McciAppsX.dll [WebBrowserType Class] -> [2005/05/18 15:08:55 | 000,372,736 | ---- | M | MD5 = A2FFC1026EB0B00EAE29389B705CCB05] (Motive Communications, Inc.)
{E2E2DD38-D088-4134-82B7-F2BA38496583} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{E3E02F12-2ADB-478C-8742-5F0819F9F0F4} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{e473a65c-8087-49a3-affd-c5bc4a10669b} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{E7D2588A-7FB5-47DC-8830-832605661009} [HKLM] -> C:\WINDOWS\DOWNLO~1\RntX.dll [Live Collaboration] -> [2003/05/14 16:28:10 | 000,102,400 | ---- | M | MD5 = 8876464E526F1F1742D52656FBDF69C7] ()
{E9B80D94-D8BB-43CC-9138-75605A8D9666} [HKLM] -> C:\WINDOWS\Downloaded Program Files\WeddingDash.1.0.0.50.dll [CPlayFirstWeddingDashControl Object] -> [2008/06/24 16:08:24 | 000,210,280 | ---- | M | MD5 = D77A50DBC19F7792ECE2C392BFF8636F] ()
{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{F135A813-7152-4532-AC8D-28AC2136DFC7} [HKLM] -> C:\WINDOWS\Downloaded Program Files\ParkingDashWeb.1.0.0.15.dll [CPlayFirstParkingDasControl Object] -> [2008/12/01 19:49:58 | 002,221,416 | ---- | M | MD5 = 6DCC1C5F3D85A15EE4EC53C752DA5556] ()
{FB5F1910-F110-11D2-BB9E-00C04F795683} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{FBAA6932-B59B-4854-8041-27A233394BA3} [HKLM] -> C:\Program Files\Linksador\Lincmediaplayer\adxloader.dll [Lincmediaplayer] -> [2008/08/04 14:11:56 | 000,315,392 | ---- | M | MD5 = 0F68B52E9BCDFBF74402D53236DC5E46] (Add-in Express Ltd)
{FBEA8524-8C72-4208-9D12-7FB73E9926EB} [HKLM] -> C:\Program Files\AOL Email Toolbar\aolmailtb.dll [AOL Email Toolbar Loader] -> [2009/05/05 14:19:46 | 001,275,176 | ---- | M | MD5 = BF49B8BCDA7E91D06F196A175991CE01] (AOL LLC)
{fc345d4c-b8f4-4674-bff7-3c37d2e535ee} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{fd6484ed-ebe3-4c3d-938a-8238003b41b7} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{FDD3B846-8D59-4FFB-8758-209B6AD74ACC} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ ->
.bat [@ = batfile] -> "%1" %* ->
.cmd [@ = cmdfile] -> "%1" %* ->
.com [@ = comfile] -> "%1" %* ->
.exe [@ = exefile] -> "%1" %* ->
.pif [@ = piffile] -> "%1" %* ->
.scr [@ = scrfile] -> "%1" /S ->
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost > -> ->
*netsvcs* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ->
6to4 -> -> File not found
Ias -> C:\WINDOWS\system32\ias -> [2004/08/26 14:03:54 | 000,000,000 | ---D | M]
Iprip -> -> File not found
Irmon -> -> File not found
NWCWorkstation -> -> File not found
Nwsapagent -> -> File not found
Wmi -> C:\WINDOWS\system32\wmi.dll -> [2008/04/13 20:11:15 | 000,005,632 | ---- | M | MD5 = 7B0770526801F05D58C51A3DFB87B4BD] (Microsoft Corporation)
WmdmPmSp -> -> File not found
*MultiFile Done* -> ->
< Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ ->
< SafeBoot-Minimal Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ ->
{36FC9E60-C465-11CF-8056-444553540000} -> Universal Serial Bus controllers
{4D36E965-E325-11CE-BFC1-08002BE10318} -> CD-ROM Drive
{4D36E967-E325-11CE-BFC1-08002BE10318} -> DiskDrive
{4D36E969-E325-11CE-BFC1-08002BE10318} -> Standard floppy disk controller
{4D36E96A-E325-11CE-BFC1-08002BE10318} -> Hdc
{4D36E96B-E325-11CE-BFC1-08002BE10318} -> Keyboard
{4D36E96F-E325-11CE-BFC1-08002BE10318} -> Mouse
{4D36E977-E325-11CE-BFC1-08002BE10318} -> PCMCIA Adapters
{4D36E97B-E325-11CE-BFC1-08002BE10318} -> SCSIAdapter
{4D36E97D-E325-11CE-BFC1-08002BE10318} -> System
{4D36E980-E325-11CE-BFC1-08002BE10318} -> Floppy disk drive
{533C5B84-EC70-11D2-9505-00C04F79DEAF} -> Volume shadow copy
{71A27CDD-812A-11D0-BEC7-08002BE2092F} -> Volume
{745A17A0-74D3-11D0-B6FE-00A0C90F57DA} -> Human Interface Devices
Base -> Driver Group
Boot Bus Extender -> Driver Group
Boot file system -> Driver Group
File system -> Driver Group
Filter -> Driver Group
mcmscsvc -> C:\Program Files\McAfee\MSC\mcmscsvc.exe -> [2009/07/10 00:26:20 | 000,865,832 | ---- | M | MD5 = 0FC36E77D779F8D021D338BDC7368181] (McAfee, Inc.)
MCODS -> C:\Program Files\McAfee\VirusScan\mcods.exe -> [2009/09/16 11:23:32 | 000,365,072 | ---- | M | MD5 = 35180C22036174B76B448EE42747F6F0] (McAfee, Inc.)
PCI Configuration -> Driver Group
PNP Filter -> Driver Group
Primary disk -> Driver Group
SCSI Class -> Driver Group
sermouse.sys -> Driver
System Bus Extender -> Driver Group
vds -> Service
vga.sys -> Driver
< SafeBoot-Network Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ ->
{36FC9E60-C465-11CF-8056-444553540000} -> Universal Serial Bus controllers
{4D36E965-E325-11CE-BFC1-08002BE10318} -> CD-ROM Drive
{4D36E967-E325-11CE-BFC1-08002BE10318} -> DiskDrive
{4D36E969-E325-11CE-BFC1-08002BE10318} -> Standard floppy disk controller
{4D36E96A-E325-11CE-BFC1-08002BE10318} -> Hdc
{4D36E96B-E325-11CE-BFC1-08002BE10318} -> Keyboard
{4D36E96F-E325-11CE-BFC1-08002BE10318} -> Mouse
{4D36E972-E325-11CE-BFC1-08002BE10318} -> Net
{4D36E973-E325-11CE-BFC1-08002BE10318} -> NetClient
{4D36E974-E325-11CE-BFC1-08002BE10318} -> NetService
{4D36E975-E325-11CE-BFC1-08002BE10318} -> NetTrans
{4D36E977-E325-11CE-BFC1-08002BE10318} -> PCMCIA Adapters
{4D36E97B-E325-11CE-BFC1-08002BE10318} -> SCSIAdapter
{4D36E97D-E325-11CE-BFC1-08002BE10318} -> System
{4D36E980-E325-11CE-BFC1-08002BE10318} -> Floppy disk drive
{71A27CDD-812A-11D0-BEC7-08002BE2092F} -> Volume
{745A17A0-74D3-11D0-B6FE-00A0C90F57DA} -> Human Interface Devices
Base -> Driver Group
Boot Bus Extender -> Driver Group
Boot file system -> Driver Group
File system -> Driver Group
Filter -> Driver Group
mcmscsvc -> C:\Program Files\McAfee\MSC\mcmscsvc.exe -> [2009/07/10 00:26:20 | 000,865,832 | ---- | M | MD5 = 0FC36E77D779F8D021D338BDC7368181] (McAfee, Inc.)
MCODS -> C:\Program Files\McAfee\VirusScan\mcods.exe -> [2009/09/16 11:23:32 | 000,365,072 | ---- | M | MD5 = 35180C22036174B76B448EE42747F6F0] (McAfee, Inc.)
MpfService -> C:\Program Files\McAfee\MPF\MPFSrv.exe -> [2009/10/27 12:19:46 | 000,895,696 | ---- | M | MD5 = DB4D0DFE069E995B3F45CE4623ABFDD9] (McAfee, Inc.)
NDIS Wrapper -> Driver Group
NetBIOSGroup -> Driver Group
NetDDEGroup -> Driver Group
Network -> Driver Group
NetworkProvider -> Driver Group
PCI Configuration -> Driver Group
PNP Filter -> Driver Group
PNP_TDI -> Driver Group
Primary disk -> Driver Group
SCSI Class -> Driver Group
sermouse.sys -> Driver

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 12:58 am

Streams Drivers -> Driver Group
System Bus Extender -> Driver Group
TDI -> Driver Group
vga.sys -> Driver
< Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
\\"FirstRunDisabled" -> [1] -> File not found
\\"AntiVirusDisableNotify" -> [0] -> File not found
\\"FirewallDisableNotify" -> [0] -> File not found
\\"UpdatesDisableNotify" -> [1] -> File not found
\\"AntiVirusOverride" -> [0] -> File not found
\\"FirewallOverride" -> [0] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus
\Monitoring\McAfeeAntiVirus\\"DisableMonitoring" -> [1] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall
\Monitoring\McAfeeFirewall\\"DisableMonitoring" -> [1] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall\ -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
\\"EnableFirewall" -> [0] -> File not found
\\"DoNotAllowExceptions" -> [0] -> File not found
\\"DisableNotifications" -> [0] -> File not found
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\ -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\ -> ->
< Winsock2 Catalogs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\ ->
NameSpace_Catalog5\Catalog_Entries\000000000004 [mdnsNSP] -> C:\Program Files\Bonjour\mdnsNSP.dll -> [2008/12/12 11:11:44 | 000,147,456 | ---- | M | MD5 = 292F92469EFB2FD402E00742C06D539D] (Apple Inc.)
< Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} -> PDFCreator
{008EF266-872C-4D71-9D9D-C4A9B9B733D7} -> PlayLinc
{07287123-B8AC-41CE-8346-3D777245C35B} -> Bonjour
{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A} -> HiJackThis
{0B59A227-CAC2-4688-8759-580B4DC5F220} -> BlackBerry Device Software v4.5.0 for the BlackBerry 8330 smartphone
{0D048BE8-AE02-4CB5-A428-616B9848E4A7} -> BlackBerry Desktop Software 4.3
{15CCBC5D-66A7-4131-8D36-E05F27B0E68F} -> Sibelius Scorch (ActiveX Only)
{1D643CD7-4DD6-11D7-A4E0-000874180BB3} -> Microsoft Money 2004
{1E85CABF-0984-482A-BF5D-E9AC4BF33694} -> Basic Facts Worksheet Factory
{25EF03E6-F17B-11D6-88EA-000476CD2443} -> Verizon Online Help & Support
{265C893D-9D3D-4CE6-A317-9FFF1C6C9C44} -> RealProducer Basic 11
{26A24AE4-039D-4CA4-87B4-2F83216017FF} -> Java(TM) 6 Update 17
{2A30052B-831C-41D3-8044-3C0388066350} -> Seagate Manager Installer
{31C2F32D-C5DD-4583-8181-B48591CA231C} -> RapidPlayer v4.0 ActiveX Control
{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227} -> WebFldrs XP
{3AE242D6-608E-4067-8BC1-89B8A957A531} -> OverDrive Media Console
{416D80BA-6F6D-4672-B7CF-F54DA2F80B44} -> Microsoft Works
{4F41AD68-89F2-4262-A32C-2F70B01FCE9E} -> Photo Story 3 for Windows
{5C29CB8B-AC1E-4114-8D68-9CD080140D4A} -> Sony USB Driver
{6956856F-B6B3-4BE0-BA0B-8F495BE32033} -> Apple Software Update
{6E4D4E0B-02F6-46C1-BAE5-1B6B2E486A7B} -> Microsoft Office Live Meeting 2007
{71C97545-E547-4A8B-B0C8-61FF853270AC} -> PaperPort
{7299052b-02a4-4627-81f2-1818da5d550d} -> Microsoft Visual C++ 2005 Redistributable
{76EFFC7C-17A6-479D-9E47-8E658C1695AE} -> Windows Backup Utility
{81EED1A1-AE78-4B11-BE47-C6AE9F5E87F1} -> Digital Media Reader
{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} -> Microsoft Silverlight
{8A708DD8-A5E6-11D4-A706-000629E95E20} -> Intel(R) Graphics Media Accelerator Driver
{8C64E145-54BA-11D6-91B1-00500462BE80} -> Microsoft Money 2004 System Pack
{90280409-6000-11D3-8CFE-0050048383C9} -> Microsoft Office XP Professional with FrontPage
{90840409-6000-11D3-8CFE-0150048383C9} -> Microsoft Office Excel Viewer 2003
{90850409-6000-11D3-8CFE-0150048383C9} -> Microsoft Office Word Viewer 2003
{99ECF41F-5CCA-42BD-B8B8-A8333E2E2944} -> iTunes
{9A912C12-A7DA-44D7-BD57-5CA85E2F33E1} -> Brother MFL-Pro Suite
{9B687071-76A3-11D9-B807-00055DE8348F} -> VTech Laptop PC Program
{9E5AE5C0-423C-4F4F-823B-57781C2B77F5} -> RTC Client API v1.2 Setup
{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} -> Microsoft .NET Framework 3.0 Service Pack 2
{A654A805-41D9-40C7-AA46-4AF04F044D61} -> Adobe® Photoshop® Album Starter Edition 3.2
{A7DB362E-16DC-4E29-8A34-E74381E00B5B} -> Adobe Shockwave Player
{AB4862FB-0396-4E75-A523-850577EBFC73} -> Security Advisor
{AC76BA86-7AD7-1033-7B44-A71000000002} -> Adobe Reader 7.1.0
{AD528602-C32D-4E9B-A5A5-609F2A186808} -> Homeschool Tracker Basic
{B6F7DBE7-2FE2-458F-A738-B10832746036} -> Microsoft Reader
{B7050CBDB2504B34BC2A9CA0A692CC29} -> DivX Web Player
{BADFDEC0-0F36-4390-BF01-048179FB171B} -> Brother HL-5250DN
{BB65C393-C76E-4F06-9B0C-2124AA8AF97B} -> Adobe Flash Player 9 ActiveX
{BCE72AED-3332-4863-9567-C5DCB9052CA2} -> Netflix Movie Viewer
{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} -> Microsoft .NET Framework 2.0 Service Pack 2
{C337BDAF-CB4E-47E2-BE1A-CB31BB7DD0E3} -> Apple Mobile Device Support
{C4FCA2BC-AFAC-4444-9B15-DBAF914E0566} -> Switched-On Schoolhouse 2007 - Home Edition
{C78EAC6F-7A73-452E-8134-DBB2165C5A68} -> QuickTime
{C797EAF2-707A-4239-BDF3-F2672314A734} -> First Step Guide
{C880E328-DA82-47F2-B429-3E42C73C7549} -> muvee autoProducer 6.1 Seagate Edition
{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} -> Microsoft .NET Framework 1.1
{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} -> Microsoft .NET Framework 3.5 SP1
{CFADE4AF-C0CF-4A04-A776-741318F1658F} -> Content Transfer
{D4A2EF65-9888-4EFF-8EA0-A2D2C3152A29} -> Samsung USB Driver (MCCI 4.34) WHQL v3.4
{D95877BE-0165-42EC-B558-727F9F41372C} -> oobeFlagNetscape0
{DBA8B9E1-C6FF-4624-9598-73D3B41A0903} -> Microsoft Picture It! Photo Premium 9
{E09B48B5-E141-427A-AB0C-D3605127224A} -> Microsoft SQL Server Desktop Engine (SOSHOME22)
{E33956B7-301C-429D-9E6C-2C12EACB8A62} -> NWZ-E340 WALKMAN Guide
{E3EABDC7-B7A6-4269-AFB9-2A09A90E4EA0} -> Lincmediaplayer
{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} -> Realtek High Definition Audio Driver
{F87A8E11-02A4-4875-A3A5-5961081B0E4E} -> OpenOffice.org 2.4
{FF262740-C85A-11D5-BBEC-00D0B740900A} -> Multimedia Keyboard Driver
3ivx D4 4.5.1 Decoder -> 3ivx D4 4.5.1 Decoder (remove only)
Adobe Acrobat 5.0 -> Adobe Acrobat 5.0

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 1:01 am

Adobe Flash Player ActiveX -> Adobe Flash Player 10 ActiveX
Adobe Flash Player Plugin -> Adobe Flash Player 10 Plugin
Adobe Shockwave Player -> Adobe Shockwave Player 11.5
Adobe® Photoshop® Album Starter Edition 3.2 -> Adobe® Photoshop® Album Starter Edition 3.2
Akamai -> Akamai NetSession Interface
Amazon MP3 Downloader -> Amazon MP3 Downloader 1.0.5
AOL Deskbar -> AOL Deskbar
AOL Email Toolbar -> AOL Email Toolbar
AOL Uninstaller -> AOL Uninstaller (Choose which Products to Remove)
AOL YGP Screensaver -> AOL You've Got Pictures Screensaver
AOLCoach -> AOL Coach Version 1.0(Build:20040229.1 en)
AolCoach2_en -> AOL Coach Version 2.0(Build:20041026.5 en)
BlackBerry_{0D048BE8-AE02-4CB5-A428-616B9848E4A7} -> BlackBerry Desktop Software 4.3
Carbonite Setup Lite -> Carbonite Online Backup Setup
CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200014F1 -> SoftV92 Data Fax Modem with SmartCP
CombiMovie (Freeware)_is1 -> CombiMovie Version 1.31
DebugMode Wink -> DebugMode Wink
Diner Dash Hometown Hero - Gourmet -> Diner Dash Hometown Hero - Gourmet
Doggie Dash -> Doggie Dash
EB88B6218325D2AB47CFFBF7170236B60A6198FF -> Windows Driver Package - Microsoft Corporation (usbvideo) Image (05/25/2007 1.0.3656.0)
Film Factory -> Film Factory
getPlus(R)_ocx -> getPlus(R)_ocx
High Achiever Grammar -> High Achiever Grammar
Homeworkhelp.com Algebra 1 -> Homeworkhelp.com Algebra 1
IDNMitigationAPIs -> Microsoft Internationalized Domain Names Mitigation APIs
ie7 -> Windows Internet Explorer 7
ie8 -> Windows Internet Explorer 8
InstallShield_{2A30052B-831C-41D3-8044-3C0388066350} -> Seagate Manager Installer
InstallShield_{81EED1A1-AE78-4B11-BE47-C6AE9F5E87F1} -> Digital Media Reader
InterActual Player -> InterActual Player
Malwarebytes' Anti-Malware_is1 -> Malwarebytes' Anti-Malware
MetaFrame Presentation Server Web Client for Win32 -> MetaFrame Presentation Server Web Client for Win32
Microsoft .NET Framework 1.1 (1033) -> Microsoft .NET Framework 1.1
Microsoft .NET Framework 3.5 SP1 -> Microsoft .NET Framework 3.5 SP1
Mozilla Firefox (3.5.9) -> Mozilla Firefox (3.5.9)
MSC -> McAfee SecurityCenter
MSCompPackV1 -> Microsoft Compression Client Pack 1.0 for Windows XP
Nero - Burning Rom!UninstallKey -> Nero OEM
Nero BurnRights!UninstallKey -> Nero BurnRights
NLSDownlevelMapping -> Microsoft National Language Support Downlevel APIs
oggcodecs -> oggcodecs 0.71.0946
Photo Viewer -> Photo Viewer 2.3
PictureIt_v9 -> Microsoft Picture It! Photo Premium 9
Port Magic -> Pure Networks Port Magic
Powerbullet Presenter free v1.35_is1 -> Powerbullet Presenter
PROSet -> Intel(R) PRO Network Adapters and Drivers
QuickTime32 -> QuickTime for Windows (32-bit)
RadialpointClientGateway_is1 -> Verizon Servicepoint 1.5.20
RCA Detective™_is1 -> RCA Detective™ 2.0.0.99
RCA easyRip_is1 -> RCA easyRip 2.1.7.0
RCA easyRip™_is1 -> RCA easyRip™ 1.4.6.0
RealPlayer 12.0 -> RealPlayer
ResumeMaker -> ResumeMaker
Robinson Curriculum -> Robinson Curriculum
SecureRedirClient -> RUMBA SecureRedirector Client
Showoff Home Design -> Showoff Home Design 1.0
SoftwareUpdUtility -> Download Updater (AOL LLC)
SopCast -> SopCast 1.1.2
StartWrite50 -> StartWrite
Veetle TV -> Veetle TV 0.9.17
Verizon SmartCall -> Verizon SmartCall
VZBB -> Verizon Broadband Toolbar
Wedding Dash -> Wedding Dash
WIC -> Windows Imaging Component
Wild Things! by Wild Ginger Software, Inc. -> Wild Things! by Wild Ginger Software, Inc.
WildTangent wildgames Master Uninstall -> WildTangent Games
Windows Media Format Runtime -> Windows Media Format 11 runtime
Windows Media Player -> Windows Media Player 11
Windows XP Service Pack -> Windows XP Service Pack 3
WinGimp-2.0_is1 -> GIMP 2.4.5
WMFDist11 -> Windows Media Format 11 runtime
wmp11 -> Windows Media Player 11
Wudf01000 -> Microsoft User-Mode Driver Framework Feature Pack 1.0
XpsEPSC -> XML Paper Specification Shared Components Pack 1.0
< Uninstall List [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
Move Media Player -> Move Media Player
< EventViewer Logs - Last 10 Errors > -> Event Information -> Description
Application [ Error ] 4/6/2010 9:35:23 PM Computer Name = BIBLE | Source = Application Hang | ID = 1002 -> Description = Hanging application firefox.exe, version 1.9.1.3726, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Application [ Error ] 4/7/2010 8:16:32 AM Computer Name = BIBLE | Source = Application Error | ID = 1000 -> Description = Faulting application soffice.bin, version 2.3.9280.500, faulting module unknown, version 0.0.0.0, fault address 0x027f1cc2.
Application [ Error ] 4/7/2010 11:37:24 AM Computer Name = BIBLE | Source = McLogEvent | ID = 5051 -> Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took longer than 90000 ms to complete a request. The process will be terminated. Thread id : 3384 (0xd38) Thread address : 0x00000000 Thread message : Build VSCORE.14.0.0.435 / 5400.1158 Object being scanned = \Device\HarddiskVolume1\Program Files\OpenOffice.org 2.4\program\svx680mi.dll by C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN 4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)
Application [ Error ] 4/7/2010 11:37:24 AM Computer Name = BIBLE | Source = McLogEvent | ID = 5051 -> Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took longer than 90000 ms to complete a request. The process will be terminated. Thread id : 3500 (0xdac) Thread address : 0x00000000 Thread message : Build VSCORE.14.0.0.435 / 5400.1158 Object being scanned = \Device\HarddiskVolume1\WINDOWS\system32\SHELL32.dll by C:\Program Files\Brother\Brmfl06a\BrStDvPt.exe 4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)
Application [ Error ] 4/7/2010 11:38:19 AM Computer Name = BIBLE | Source = Application Error | ID = 1000 -> Description = Faulting application soffice.bin, version 2.3.9280.500, faulting module unknown, version 0.0.0.0, fault address 0x10001d10.
Application [ Error ] 4/7/2010 7:28:20 PM Computer Name = BIBLE | Source = McLogEvent | ID = 5051 -> Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took longer than 90000 ms to complete a request. The process will be terminated. Thread id : 3488 (0xda0) Thread address : 0x00000000 Thread message : Build VSCORE.14.0.0.435 / 5400.1158 Object being scanned = \Device\HarddiskVolume1\WINDOWS\system32\wbem\wbemprox.dll by C:\Program Files\McAfee\MPF\MPFSrv.exe 17018(250)(0) 17017(0)(1) 7007(0)(0) 5006(0)(0) 5004(0)(0) 5003(0)(0) 5002(0)(2) 15002(0)(0)
Application [ Error ] 4/7/2010 7:29:39 PM Computer Name = BIBLE | Source = Application Error | ID = 1000 -> Description = Faulting application soffice.bin, version 2.3.9280.500, faulting module sujegaru.dll, version 0.0.0.0, fault address 0x00001d10.
Application [ Error ] 4/7/2010 7:34:37 PM Computer Name = BIBLE | Source = McLogEvent | ID = 5051 -> Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took longer than 90000 ms to complete a request. The process will be terminated. Thread id : 4992 (0x1380) Thread address : 0x00000000 Thread message : Build VSCORE.14.0.0.435 / 5400.1158 Object being scanned = \Device\HarddiskVolume1\WINDOWS\system32\rakomali by C:\Program Files\Common Files\AOL\1127605169\ee\AOLSoftware.exe 4(125)(0) 4(125)(0) 7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)
Application [ Error ] 4/7/2010 7:40:02 PM Computer Name = BIBLE | Source = McLogEvent | ID = 5051 -> Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took longer than 90000 ms to complete a request. The process will be terminated. Thread id : 4600 (0x11f8) Thread address : 0x00000000 Thread message : Build VSCORE.14.0.0.435 / 5400.1158 Object being scanned = \Device\HarddiskVolume1\WINDOWS\system32\Msctf.dll by \??\C:\WINDOWS\system32\winlogon.exe 4(0)(0) 4(0)(0) 7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)
Application [ Error ] 4/7/2010 7:41:26 PM Computer Name = BIBLE | Source = Application Hang | ID = 1002 -> Description = Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
System [ Error ] 4/7/2010 7:37:18 PM Computer Name = BIBLE | Source = Disk | ID = 262151 -> Description = The device, \Device\Harddisk0\D, has a bad block.
System [ Error ] 4/7/2010 7:39:03 PM Computer Name = BIBLE | Source = Disk | ID = 262151 -> Description = The device, \Device\Harddisk0\D, has a bad block.
System [ Error ] 4/7/2010 7:39:03 PM Computer Name = BIBLE | Source = Disk | ID = 262151 -> Description = The device, \Device\Harddisk0\D, has a bad block.
System [ Error ] 4/7/2010 7:39:12 PM Computer Name = BIBLE | Source = DCOM | ID = 10010 -> Description = The server {0002DF01-0000-0000-C000-000000000046} did not register with DCOM within the required timeout.
System [ Error ] 4/7/2010 7:39:14 PM Computer Name = BIBLE | Source = Disk | ID = 262151 -> Description = The device, \Device\Harddisk0\D, has a bad block.
System [ Error ] 4/7/2010 7:39:16 PM Computer Name = BIBLE | Source = Disk | ID = 262151 -> Description = The device, \Device\Harddisk0\D, has a bad block.
System [ Error ] 4/7/2010 7:39:21 PM Computer Name = BIBLE | Source = Disk | ID = 262151 -> Description = The device, \Device\Harddisk0\D, has a bad block.
System [ Error ] 4/7/2010 7:39:24 PM Computer Name = BIBLE | Source = Disk | ID = 262151 -> Description = The device, \Device\Harddisk0\D, has a bad block.
System [ Error ] 4/7/2010 7:39:27 PM Computer Name = BIBLE | Source = Disk | ID = 262151 -> Description = The device, \Device\Harddisk0\D, has a bad block.
System [ Error ] 4/7/2010 7:39:29 PM Computer Name = BIBLE | Source = Disk | ID = 262151 -> Description = The device, \Device\Harddisk0\D, has a bad block.

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 1:04 am

[Files/Folders - Created Within 90 Days]
OTS.exe -> C:\Documents and Settings\Owner\Desktop\OTS.exe -> [2010/04/07 19:55:58 | 000,638,976 | ---- | C | MD5 = 0699456F9835951BCB3304564244386F] (OldTimer Tools)
Malwarebytes_Anti-Malware_1.41 -> C:\Documents and Settings\Owner\Desktop\Malwarebytes_Anti-Malware_1.41 -> [2010/04/06 22:13:17 | 000,000,000 | ---D | C]
mbamswissarmy.sys -> C:\WINDOWS\System32\drivers\mbamswissarmy.sys -> [2010/04/06 21:52:57 | 000,038,224 | ---- | C | MD5 = 00C4A0992D4EA5520AC12DB4FD11C3E3] (Malwarebytes Corporation)
mbam.sys -> C:\WINDOWS\System32\drivers\mbam.sys -> [2010/04/06 21:52:55 | 000,019,160 | ---- | C | MD5 = C2B26AF5DA2E31FD3221D2B21FAE6249] (Malwarebytes Corporation)
Malwarebytes' Anti-Malware -> C:\Program Files\Malwarebytes' Anti-Malware -> [2010/04/06 21:52:55 | 000,000,000 | ---D | C]
mbam-setup-1.45.exe -> C:\Documents and Settings\Owner\Desktop\mbam-setup-1.45.exe -> [2010/04/06 21:48:56 | 005,918,776 | ---- | C | MD5 = 075D4221B84265690A41574E6AB647C8] (Malwarebytes Corporation )
Veetle -> C:\Program Files\Veetle -> [2010/04/04 20:13:47 | 000,000,000 | ---D | C]
moviemk.exe -> C:\WINDOWS\System32\dllcache\moviemk.exe -> [2010/03/11 10:26:01 | 003,558,912 | ---- | C | MD5 = E002A7E05185BD7FC7646CD229311B22] (Microsoft Corporation)
Clear -> C:\Documents and Settings\Owner\My Documents\Clear -> [2010/03/02 22:23:45 | 000,000,000 | ---D | C]
Wood-Mag2 -> C:\Documents and Settings\Owner\My Documents\Wood-Mag2 -> [2010/03/02 18:34:59 | 000,000,000 | ---D | C]
Woman-Talk -> C:\Documents and Settings\Owner\My Documents\Woman-Talk -> [2010/03/02 18:03:22 | 000,000,000 | ---D | C]
Sony Corporation -> C:\Documents and Settings\Owner\Application Data\Sony Corporation -> [2010/02/25 14:12:59 | 000,000,000 | ---D | C]
Sony Shared -> C:\Program Files\Common Files\Sony Shared -> [2010/02/25 14:10:38 | 000,000,000 | ---D | C]
Sony -> C:\Program Files\Sony -> [2010/02/25 14:00:35 | 000,000,000 | ---D | C]
color-o-ring-template -> C:\Documents and Settings\Owner\My Documents\color-o-ring-template -> [2010/02/02 19:47:25 | 000,000,000 | ---D | C]
coffee-cup-template -> C:\Documents and Settings\Owner\My Documents\coffee-cup-template -> [2010/01/20 19:21:35 | 000,000,000 | ---D | C]
VTech Laptop PC Program -> C:\Program Files\VTech Laptop PC Program -> [2010/01/18 16:32:58 | 000,000,000 | ---D | C]
Otto -> C:\Documents and Settings\Owner\My Documents\Otto -> [2010/01/15 18:09:17 | 000,000,000 | ---D | C]
aclayers.dll -> C:\WINDOWS\System32\dllcache\aclayers.dll -> [2010/01/13 08:24:32 | 000,471,552 | ---- | C | MD5 = AF8841FEF8DE40D36E77C6662843EDAE] (Microsoft Corporation)
Prefetch -> C:\WINDOWS\Prefetch -> [2010/01/11 12:35:05 | 000,000,000 | ---D | C]
scripting -> C:\WINDOWS\System32\scripting -> [2010/01/11 11:59:39 | 000,000,000 | ---D | C]
l2schemas -> C:\WINDOWS\l2schemas -> [2010/01/11 11:59:38 | 000,000,000 | ---D | C]
en -> C:\WINDOWS\System32\en -> [2010/01/11 11:59:37 | 000,000,000 | ---D | C]
bits -> C:\WINDOWS\System32\bits -> [2010/01/11 11:59:37 | 000,000,000 | ---D | C]
$NtServicePackUninstall$ -> C:\WINDOWS\$NtServicePackUninstall$ -> [2010/01/11 11:49:27 | 000,000,000 | -H-D | C]
EHome -> C:\WINDOWS\EHome -> [2010/01/11 11:49:20 | 000,000,000 | ---D | C]
homeworkhelp -> C:\Program Files\homeworkhelp -> [2010/01/07 20:49:48 | 000,000,000 | ---D | C]
High Achiever Grammar -> C:\Program Files\High Achiever Grammar -> [2010/01/07 20:44:11 | 000,000,000 | ---D | C]
Apple -> C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple -> [2009/08/29 11:37:06 | 000,000,000 | ---D | M]
Real -> C:\Documents and Settings\NetworkService\Application Data\Real -> [2008/11/06 20:13:41 | 000,000,000 | ---D | M]
AdobeUM -> C:\Documents and Settings\NetworkService\Application Data\AdobeUM -> [2008/11/04 12:02:26 | 000,000,000 | ---D | M]
Adobe -> C:\Documents and Settings\NetworkService\Local Settings\Application Data\Adobe -> [2008/11/04 12:02:09 | 000,000,000 | ---D | M]
Adobe -> C:\Documents and Settings\NetworkService\Application Data\Adobe -> [2008/11/04 12:01:26 | 000,000,000 | ---D | M]
Macromedia -> C:\Documents and Settings\NetworkService\Application Data\Macromedia -> [2008/11/03 15:01:19 | 000,000,000 | ---D | M]
Microsoft -> C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft -> [2008/11/03 15:00:51 | 000,000,000 | ---D | M]
Microsoft -> C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft -> [2008/01/13 16:56:34 | 000,000,000 | ---D | M]
Microsoft -> C:\Documents and Settings\LocalService\Application Data\Microsoft -> [2007/05/27 10:25:13 | 000,000,000 | --SD | M]
Mozilla -> C:\Documents and Settings\LocalService\Local Settings\Application Data\Mozilla -> [2007/02/25 14:38:54 | 000,000,000 | ---D | M]
Mozilla -> C:\Documents and Settings\LocalService\Application Data\Mozilla -> [2007/02/25 14:38:54 | 000,000,000 | ---D | M]
AOL -> C:\Documents and Settings\LocalService\Local Settings\Application Data\AOL -> [2006/11/29 19:23:00 | 000,000,000 | ---D | M]
Microsoft -> C:\Documents and Settings\NetworkService\Application Data\Microsoft -> [2005/07/07 21:16:01 | 000,000,000 | --SD | M]
Macromedia -> C:\Documents and Settings\LocalService\Application Data\Macromedia -> [2005/06/15 16:20:06 | 000,000,000 | ---D | M]
7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->
2 C:\Documents and Settings\Owner\My Documents\*.tmp files -> C:\Documents and Settings\Owner\My Documents\*.tmp ->
1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp ->

[Files/Folders - Modified Within 90 Days]
exmxvybc.job -> C:\WINDOWS\tasks\exmxvybc.job -> [2010/04/07 20:13:12 | 000,000,296 | ---- | M | MD5 = 1CAF45E8AEBF0828AB98C3464E269778] ()
OTS.exe -> C:\Documents and Settings\Owner\Desktop\OTS.exe -> [2010/04/07 19:55:59 | 000,638,976 | ---- | M | MD5 = 0699456F9835951BCB3304564244386F] (OldTimer Tools)
win.ini -> C:\WINDOWS\win.ini -> [2010/04/07 19:31:53 | 000,000,989 | ---- | M | MD5 = B1C994B299B1B1E9E421B96B7C3D124E] ()
Config.MPF -> C:\WINDOWS\System32\Config.MPF -> [2010/04/07 19:28:31 | 000,033,873 | ---- | M | MD5 = 3316EE582DB28CEE1395D36797EE8793] ()
wpa.dbl -> C:\WINDOWS\System32\wpa.dbl -> [2010/04/07 19:28:06 | 000,001,170 | ---- | M | MD5 = ACA052D5002237D7644EC9651901020A] ()
mmf.sys -> C:\WINDOWS\System32\mmf.sys -> [2010/04/07 19:25:04 | 000,002,169 | -HS- | M | Unable to obtain MD5] ()
SA.DAT -> C:\WINDOWS\tasks\SA.DAT -> [2010/04/07 19:24:43 | 000,000,006 | -H-- | M | MD5 = F1A6CD5ADAAB953A6764EA364E17BFB8] ()
bootstat.dat -> C:\WINDOWS\bootstat.dat -> [2010/04/07 19:24:40 | 000,002,048 | --S- | M | MD5 = 6A2CB42966136854F4464516FBB4AE72] ()
hiberfil.sys -> C:\hiberfil.sys -> [2010/04/07 19:24:39 | 526,192,640 | -HS- | M | Unable to obtain MD5] ()
NTUSER.DAT -> C:\Documents and Settings\Owner\NTUSER.DAT -> [2010/04/07 10:59:12 | 010,485,760 | -H-- | M | Unable to obtain MD5] ()
ntuser.ini -> C:\Documents and Settings\Owner\ntuser.ini -> [2010/04/07 10:59:12 | 000,000,278 | -HS- | M | MD5 = 13CFB479E23F335EB4F1F4A80602757A] ()
Malwarebytes_Anti-Malware_1.41.zip -> C:\Documents and Settings\Owner\Desktop\Malwarebytes_Anti-Malware_1.41.zip -> [2010/04/06 22:12:11 | 007,171,690 | ---- | M | MD5 = A59F957C666055C50985EE67CF050D90] ()
Malwarebytes' Anti-Malware.lnk -> C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk -> [2010/04/06 21:53:01 | 000,000,696 | ---- | M | MD5 = D8ABAF685A4D3E616F2ABC03FC355340] ()
mbam-setup-1.45.exe -> C:\Documents and Settings\Owner\Desktop\mbam-setup-1.45.exe -> [2010/04/06 21:49:14 | 005,918,776 | ---- | M | MD5 = 075D4221B84265690A41574E6AB647C8] (Malwarebytes Corporation )
Store Associate Meeting#3815.doc -> C:\Documents and Settings\Owner\My Documents\Store Associate Meeting#3815.doc -> [2010/04/06 18:54:56 | 000,026,112 | ---- | M | MD5 = 385B70247916A0F87640359DE9F1574A] ()
Monet%20Claude%200910%20T3.jpeg -> C:\Documents and Settings\Owner\My Documents\Monet%20Claude%200910%20T3.jpeg -> [2010/04/06 16:03:26 | 000,374,028 | ---- | M | MD5 = 3C48D35838F067B1B3555107D7A620B3] ()
.recently-used.xbel -> C:\Documents and Settings\Owner\.recently-used.xbel -> [2010/04/06 16:03:26 | 000,034,864 | ---- | M | MD5 = D73901D9E6DDAA14FC36EC7ED5C6D783] ()
Monet%20Claude%200910%20T3.jpg -> C:\Documents and Settings\Owner\My Documents\Monet%20Claude%200910%20T3.jpg -> [2010/04/06 15:58:44 | 000,582,314 | ---- | M | MD5 = F5240B61C5951C4FD47A7C20E5A81071] ()
Monet%20Claude%200910%20T3.pdf -> C:\Documents and Settings\Owner\My Documents\Monet%20Claude%200910%20T3.pdf -> [2010/04/06 15:37:30 | 001,839,353 | ---- | M | MD5 = 83D1099E725EBE9554CF47608F0E2DBC] ()
BRWMARK.INI -> C:\WINDOWS\BRWMARK.INI -> [2010/04/05 18:51:56 | 000,000,426 | ---- | M | MD5 = F4301A91375B08526B282DCD2542F7B9] ()
NeroDigital.ini -> C:\WINDOWS\NeroDigital.ini -> [2010/04/04 22:14:09 | 000,000,049 | ---- | M | MD5 = BE64243EC1F3B6EE84FEF78017A4D51E] ()
Brpfx04a.ini -> C:\WINDOWS\Brpfx04a.ini -> [2010/04/03 13:03:11 | 000,001,053 | ---- | M | MD5 = 1684532F4A3750A8F3C8C8AE27276BE4] ()
MgrNew#3815-4-10-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-4-10-10.xls -> [2010/04/03 12:59:39 | 000,020,480 | ---- | M | MD5 = B2EE8BBBB9DB1A2B124E66A62339F0F7] ()
AppleSoftwareUpdate.job -> C:\WINDOWS\tasks\AppleSoftwareUpdate.job -> [2010/04/03 11:37:05 | 000,000,284 | ---- | M | MD5 = 05EEB195763B9A934298A3A108A3126D] ()
hs_a2_placement saxon.pdf -> C:\Documents and Settings\Owner\My Documents\hs_a2_placement saxon.pdf -> [2010/04/02 18:42:40 | 000,074,865 | ---- | M | MD5 = 4363ADAE9F98D0401153CF85B3E5E714] ()
Seagate 2GEXMLG7 Product Registration.lnk -> C:\Documents and Settings\Owner\Start Menu\Programs\StartUp\Seagate 2GEXMLG7 Product Registration.lnk -> [2010/03/28 09:23:14 | 000,001,313 | ---- | M | MD5 = 1CA6E214F3D87B0F198577032D2E0C8B] ()
MgrNew#3815-3-13-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-3-13-10.xls -> [2010/03/26 14:21:41 | 000,019,968 | ---- | M | MD5 = 7F519C78D653EACFC79EE9A95A990EA0] ()
NEW-RITEAID-SCHEDULE#3815-04-03-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-04-03-10 (version 1).xls -> [2010/03/26 14:21:37 | 000,024,576 | ---- | M | MD5 = E0E7A421A6D4F9A2D11714F56DF8E31E] ()
bible-plan.pdf -> C:\Documents and Settings\Owner\My Documents\bible-plan.pdf -> [2010/03/23 10:58:20 | 000,064,552 | ---- | M | MD5 = 20DFCC00F0ED6ED910689F097D6F9EEC] ()
perfh009.dat -> C:\WINDOWS\System32\perfh009.dat -> [2010/03/14 08:23:49 | 000,459,284 | ---- | M | MD5 = E6E5D386588D64E83E43CB418A7CB784] ()
PerfStringBackup.INI -> C:\WINDOWS\System32\PerfStringBackup.INI -> [2010/03/14 08:23:48 | 000,547,896 | ---- | M | MD5 = A12B32BA3E4B80BC03D951DDD82397BA] ()
perfc009.dat -> C:\WINDOWS\System32\perfc009.dat -> [2010/03/14 08:23:48 | 000,078,812 | ---- | M | MD5 = 0F0B6F5A40F46E5B15D6CA858F4BE546] ()
imsins.BAK -> C:\WINDOWS\imsins.BAK -> [2010/03/11 12:07:41 | 000,001,374 | ---- | M | MD5 = 7073AD27D9DC392D6907CEB1201B7520] ()
NEW-RITEAID-SCHEDULE#3815-03-13-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-03-13-10 (version 1).xls -> [2010/03/06 00:33:45 | 000,024,576 | ---- | M | MD5 = DD7C07D8B9CB8773BB03BE36C2BAA666] ()
installer.exe -> C:\Documents and Settings\Owner\My Documents\installer.exe -> [2010/03/03 22:47:17 | 000,210,464 | ---- | M | MD5 = B669AED2E3AF774BEABD90A886B9602C] ()
QTW.INI -> C:\WINDOWS\QTW.INI -> [2010/03/03 15:13:54 | 000,000,306 | ---- | M | MD5 = BB0777C0EFDE51BC1CCF58406367BAA2] ()
Nero-Marquina-Marble-Tiles.jpg -> C:\Documents and Settings\Owner\My Documents\Nero-Marquina-Marble-Tiles.jpg -> [2010/03/03 11:27:31 | 000,026,963 | ---- | M | MD5 = 92C35E68DAE1560C35714821D809F5F9] ()
Clear.zip -> C:\Documents and Settings\Owner\My Documents\Clear.zip -> [2010/03/02 22:23:21 | 000,008,270 | ---- | M | MD5 = 7F1D9A0753757D3609432472F58E3AE3] ()
Wood-Mag2.zip -> C:\Documents and Settings\Owner\My Documents\Wood-Mag2.zip -> [2010/03/02 18:34:25 | 000,008,504 | ---- | M | MD5 = FF3C5D8C635DF70FB2D4BB1A1A8C74D7] ()
my blog.xml -> C:\Documents and Settings\Owner\My Documents\my blog.xml -> [2010/03/02 18:02:09 | 000,045,682 | ---- | M | MD5 = 8F08F2C1DE5BF7504049F672549076DA] ()
Woman-Talk.zip -> C:\Documents and Settings\Owner\My Documents\Woman-Talk.zip -> [2010/03/02 17:58:45 | 000,010,079 | ---- | M | MD5 = AC45890FF8C1F05CAA3921F98BA836E6] ()
McQcTask.job -> C:\WINDOWS\tasks\McQcTask.job -> [2010/03/01 02:01:01 | 000,000,332 | ---- | M | MD5 = E3CBC3E60559792E298E29C73B46E6D1] ()
MgrNew#3815-3-6-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-3-6-10.xls -> [2010/02/27 12:53:35 | 000,019,968 | ---- | M | MD5 = 93B42C371F4F9B2ED7555A8CB4F00500] ()
FELIZ_Sew-Along_ENGLISH_1_reduce.pdf -> C:\Documents and Settings\Owner\My Documents\FELIZ_Sew-Along_ENGLISH_1_reduce.pdf -> [2010/02/27 12:17:54 | 001,160,223 | ---- | M | MD5 = B494F26F4ACEA1EE2518AC72F8E832AC] ()
NEW-RITEAID-SCHEDULE#3815-03-06-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-03-06-10 (version 1).xls -> [2010/02/27 11:05:41 | 000,024,576 | ---- | M | MD5 = B24250A7E963C518F8D18515DBF4D6F5] ()
ieframe.dll -> C:\WINDOWS\System32\dllcache\ieframe.dll -> [2010/02/25 11:54:36 | 011,070,976 | ---- | M | MD5 = 0D5C62E6462FEE517C7FB3B64A58EF1B] (Microsoft Corporation)
urlmon.dll -> C:\WINDOWS\System32\dllcache\urlmon.dll -> [2010/02/25 02:24:37 | 001,209,344 | ---- | M | MD5 = 9C56C8C957F6AC4C7FA1378E108C42EA] (Microsoft Corporation)
wininet.dll -> C:\WINDOWS\System32\dllcache\wininet.dll -> [2010/02/25 02:24:37 | 000,916,480 | ---- | M | MD5 = 7A42CFED96CDA7F2FB1A26D1F9F65775] (Microsoft Corporation)
mstime.dll -> C:\WINDOWS\System32\mstime.dll -> [2010/02/25 02:24:37 | 000,611,840 | ---- | M | MD5 = 0D5B4C90904B63D3E8830A7DB22C3352] (Microsoft Corporation)
mstime.dll -> C:\WINDOWS\System32\dllcache\mstime.dll -> [2010/02/25 02:24:37 | 000,611,840 | ---- | M | MD5 = 0D5B4C90904B63D3E8830A7DB22C3352] (Microsoft Corporation)
occache.dll -> C:\WINDOWS\System32\dllcache\occache.dll -> [2010/02/25 02:24:37 | 000,206,848 | ---- | M | MD5 = EEA94DFB391F5552D2B4D8FF13775E85] (Microsoft Corporation)
mshtml.dll -> C:\WINDOWS\System32\dllcache\mshtml.dll -> [2010/02/25 02:24:36 | 005,944,832 | ---- | M | MD5 = 7054F6ADC9B670887659F1561603B0D0] (Microsoft Corporation)
iertutil.dll -> C:\WINDOWS\System32\dllcache\iertutil.dll -> [2010/02/25 02:24:35 | 001,985,536 | ---- | M | MD5 = 95825F207451C184CF341255B2212249] (Microsoft Corporation)
inetcpl.cpl -> C:\WINDOWS\System32\inetcpl.cpl -> [2010/02/25 02:24:35 | 001,469,440 | ---- | M | MD5 = 39C8BFB4EF85C138FF39C7E6E5CD0C19] (Microsoft Corporation)
inetcpl.cpl -> C:\WINDOWS\System32\dllcache\inetcpl.cpl -> [2010/02/25 02:24:35 | 001,469,440 | ---- | M | MD5 = 39C8BFB4EF85C138FF39C7E6E5CD0C19] (Microsoft Corporation)
msfeeds.dll -> C:\WINDOWS\System32\msfeeds.dll -> [2010/02/25 02:24:35 | 000,594,432 | ---- | M | MD5 = 389CFF2900A585559FA5AE44B1263696] (Microsoft Corporation)
msfeeds.dll -> C:\WINDOWS\System32\dllcache\msfeeds.dll -> [2010/02/25 02:24:35 | 000,594,432 | ---- | M | MD5 = 389CFF2900A585559FA5AE44B1263696] (Microsoft Corporation)
iepeers.dll -> C:\WINDOWS\System32\iepeers.dll -> [2010/02/25 02:24:35 | 000,184,320 | ---- | M | MD5 = CCCA70E2161E433897FF47D86643FD1B] (Microsoft Corporation)
iepeers.dll -> C:\WINDOWS\System32\dllcache\iepeers.dll -> [2010/02/25 02:24:35 | 000,184,320 | ---- | M | MD5 = CCCA70E2161E433897FF47D86643FD1B] (Microsoft Corporation)
msfeedsbs.dll -> C:\WINDOWS\System32\msfeedsbs.dll -> [2010/02/25 02:24:35 | 000,055,296 | ---- | M | MD5 = 35A5A2DD5155228A8A7E2C4738AF1417] (Microsoft Corporation)
msfeedsbs.dll -> C:\WINDOWS\System32\dllcache\msfeedsbs.dll -> [2010/02/25 02:24:35 | 000,055,296 | ---- | M | MD5 = 35A5A2DD5155228A8A7E2C4738AF1417] (Microsoft Corporation)
jsproxy.dll -> C:\WINDOWS\System32\jsproxy.dll -> [2010/02/25 02:24:35 | 000,025,600 | ---- | M | MD5 = 2AC1469E7C098D624C804A703D552EE8] (Microsoft Corporation)
jsproxy.dll -> C:\WINDOWS\System32\dllcache\jsproxy.dll -> [2010/02/25 02:24:35 | 000,025,600 | ---- | M | MD5 = 2AC1469E7C098D624C804A703D552EE8] (Microsoft Corporation)
iedkcs32.dll -> C:\WINDOWS\System32\iedkcs32.dll -> [2010/02/25 02:24:34 | 000,387,584 | ---- | M | MD5 = B839632AA3A087719BFCB70019221F5E] (Microsoft Corporation)
iedkcs32.dll -> C:\WINDOWS\System32\dllcache\iedkcs32.dll -> [2010/02/25 02:24:34 | 000,387,584 | ---- | M | MD5 = B839632AA3A087719BFCB70019221F5E] (Microsoft Corporation)
ie4uinit.exe -> C:\WINDOWS\System32\ie4uinit.exe -> [2010/02/24 05:54:25 | 000,173,056 | ---- | M | MD5 = 8B08D5F137DE74DDB3A7F408E18C03DD] (Microsoft Corporation)
ie4uinit.exe -> C:\WINDOWS\System32\dllcache\ie4uinit.exe -> [2010/02/24 05:54:25 | 000,173,056 | ---- | M | MD5 = 8B08D5F137DE74DDB3A7F408E18C03DD] (Microsoft Corporation)
NEW-RITEAID-SCHEDULE#3815-02-27-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-02-27-10 (version 1).xls -> [2010/02/20 22:01:55 | 000,024,576 | ---- | M | MD5 = F89521DEA895F3862807DD10D4F20D27] ()
Japanese Embassy letter.doc -> C:\Documents and Settings\Owner\My Documents\Japanese Embassy letter.doc -> [2010/02/20 15:56:17 | 000,022,016 | ---- | M | MD5 = 484753A288AFF6F9E3E877A879DE2163] ()
MgrNew#3815-2-27-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-2-27-10.xls -> [2010/02/20 14:08:19 | 000,020,480 | ---- | M | MD5 = 1218B778D801F08E553605AF1C14B305] ()
NEW-RITEAID-SCHEDULE#3815-02-13-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-02-13-10 (version 1).xls -> [2010/02/13 19:59:10 | 000,024,576 | ---- | M | MD5 = B962661326FB02CBA752D40C62E36896] ()
MgrNew#3815-2-14-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-2-14-10.xls -> [2010/02/13 17:44:54 | 000,020,480 | ---- | M | MD5 = 08A83326E5D7D193EA938AA2F5DA65FA] ()
MgrNew#3815-2-6-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-2-6-10.xls -> [2010/02/13 17:42:22 | 000,020,480 | ---- | M | MD5 = 1A71049A341558CBF9714C49685FB754] ()
To whom it may concer1.doc -> C:\Documents and Settings\Owner\My Documents\To whom it may concer1.doc -> [2010/02/13 14:02:36 | 000,020,992 | ---- | M | MD5 = 131635EE08198F07A9183BAE577A6EDC] ()
MgrNew#3815-2-13-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-2-13-10.xls -> [2010/02/06 14:04:35 | 000,020,480 | ---- | M | MD5 = 48DD998DDA4707A3CD54F0C046088D10] ()
GDIPFONTCACHEV1.DAT -> C:\Documents and Settings\Owner\Application Data\GDIPFONTCACHEV1.DAT -> [2010/02/06 10:06:21 | 000,119,776 | ---- | M | MD5 = 199654E9488E6A8C6F7A3582B18939E7] ()
Choir_Survey.pdf -> C:\Documents and Settings\Owner\My Documents\Choir_Survey.pdf -> [2010/02/03 16:25:51 | 000,112,693 | ---- | M | MD5 = 20A4E4D256CB9AA0D5E80B6D8B42D133] ()
color-o-ring-template.zip -> C:\Documents and Settings\Owner\My Documents\color-o-ring-template.zip -> [2010/02/02 19:46:24 | 000,018,847 | ---- | M | MD5 = 5EF63818DD87D789F8EEC0C14231AE5E] ()
DSCN0020.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0020.JPG -> [2010/01/30 21:40:18 | 001,423,470 | ---- | M | MD5 = A0DC61699447CF2E7D3C09F48F073BAC] ()
DSCN0019.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0019.JPG -> [2010/01/30 21:40:10 | 001,329,712 | ---- | M | MD5 = FAE3BBFBDC16A9045820026DCCBE5166] ()
DSCN0018.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0018.JPG -> [2010/01/30 21:40:02 | 001,377,555 | ---- | M | MD5 = D8069ADE14CCD72748EDAFE4E5E64FC2] ()
NEW-RITEAID-SCHEDULE#3815-02-06-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-02-06-10 (version 1).xls -> [2010/01/30 01:48:05 | 000,024,576 | ---- | M | MD5 = 9D60320207D4870E81AED81E714A9CEA] ()
sewing Sample_Lesson.pdf -> C:\Documents and Settings\Owner\My Documents\sewing Sample_Lesson.pdf -> [2010/01/29 18:32:47 | 000,105,172 | ---- | M | MD5 = 49DBA8A89BC005FD1DAD1AEABEEBA5C9] ()
2010 irs efile.pdf -> C:\Documents and Settings\Owner\My Documents\2010 irs efile.pdf -> [2010/01/29 11:09:35 | 000,293,350 | ---- | M | MD5 = 4A4E953461D45FE1048DA38D90EB1BF6] ()
URGENT 1-23-10.doc -> C:\Documents and Settings\Owner\My Documents\URGENT 1-23-10.doc -> [2010/01/23 14:37:17 | 000,020,480 | ---- | M | MD5 = 8B24181F29F9EAC427B80C38953DA9B6] ()

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 1:08 am

NEW-RITEAID-SCHEDULE#3815-013010 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-013010 (version 1).xls -> [2010/01/23 11:51:17 | 000,024,576 | ---- | M | MD5 = 3465160B52755752331B838AA2777FA3] ()
MgrNew#3815-1-30-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-1-30-10.xls -> [2010/01/23 11:19:39 | 000,019,968 | ---- | M | MD5 = F5CC37B506DC8E292680D7760FE96B82] ()
MgrNew#3815-1-23-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-1-23-10.xls -> [2010/01/23 11:19:19 | 000,019,968 | ---- | M | MD5 = 0171E82418A2B8E97CE4D28F1D8DCCE7] ()
annies swap page 1.bmp -> C:\Documents and Settings\Owner\My Documents\annies swap page 1.bmp -> [2010/01/19 19:31:50 | 001,865,702 | ---- | M | MD5 = 7CF713272F92320DE76D2C5CBAE1E9A6] ()
Americandoll_hospital.pdf -> C:\Documents and Settings\Owner\My Documents\Americandoll_hospital.pdf -> [2010/01/17 16:06:06 | 000,114,952 | ---- | M | MD5 = A7F262F2E353E91B230772DA4111FE53] ()
If You work more then 6 hours in 1 day.doc -> C:\Documents and Settings\Owner\My Documents\If You work more then 6 hours in 1 day.doc -> [2010/01/16 14:02:18 | 000,019,968 | ---- | M | MD5 = B842D596A85A994537E7ACA818CEE7BE] ()
NEW-RITEAID-SCHEDULE#3815-012310 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-012310 (version 1).xls -> [2010/01/16 13:39:53 | 000,024,576 | ---- | M | MD5 = 7B1B97AEBD395C1AEE5031AD823384B8] ()
ATTENTION ALL EMPLOYEE1.doc -> C:\Documents and Settings\Owner\My Documents\ATTENTION ALL EMPLOYEE1.doc -> [2010/01/15 23:20:32 | 000,019,968 | ---- | M | MD5 = 98B01797D9C52E522556F4BA648C3BCB] ()
Gate_Songs_and_Links.doc -> C:\Documents and Settings\Owner\My Documents\Gate_Songs_and_Links.doc -> [2010/01/15 14:48:19 | 000,046,080 | ---- | M | MD5 = 5F73A554CC5301FDB577897997D60773] ()
McDefragTask.job -> C:\WINDOWS\tasks\McDefragTask.job -> [2010/01/15 02:34:30 | 000,000,340 | ---- | M | MD5 = 33325CB66EB60888829DC01D058CB52E] ()
God_is_banner.jpg -> C:\Documents and Settings\Owner\My Documents\God_is_banner.jpg -> [2010/01/13 14:15:27 | 000,072,847 | ---- | M | MD5 = F7DD6F37B37C761D8B7C71462D04CCF1] ()
cc_wall10092_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall10092_1024.jpg -> [2010/01/13 09:35:44 | 000,195,671 | ---- | M | MD5 = 69FC9648D4708508F98D263CEC2F6A1A] ()
graveeaster_1024.jpg -> C:\Documents and Settings\Owner\My Documents\graveeaster_1024.jpg -> [2010/01/13 09:34:02 | 000,274,074 | ---- | M | MD5 = 7EDBEE8F0BC001CB5916CEAF06EF1B01] ()
cc_wall12087_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall12087_1024.jpg -> [2010/01/13 09:33:23 | 000,152,014 | ---- | M | MD5 = F65BE61C2503CC5617A761F4E0295D7F] ()
hope07_1024.jpg -> C:\Documents and Settings\Owner\My Documents\hope07_1024.jpg -> [2010/01/13 09:33:02 | 000,188,090 | ---- | M | MD5 = 8D72C4F3C67030297E0D2C95F4FD97CA] ()
cc_wall04086_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall04086_1024.jpg -> [2010/01/13 09:32:46 | 000,192,964 | ---- | M | MD5 = F9551A54A1B11B2ABE1C4705F2A2F9E3] ()
cc_wall11097_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall11097_1024.jpg -> [2010/01/13 09:32:29 | 000,251,492 | ---- | M | MD5 = 2B91A16487FF071961C14119ECD1916F] ()
cc_repent_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_repent_1024.jpg -> [2010/01/13 09:31:10 | 000,259,449 | ---- | M | MD5 = E6DFDF915CDA571465B0B767096D2B35] ()
cc_wall06095_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall06095_1024.jpg -> [2010/01/13 09:30:40 | 000,214,081 | ---- | M | MD5 = 51BE6CA1EA78C994EF17FB32F81246FB] ()
alltobesaved_1024.jpg -> C:\Documents and Settings\Owner\My Documents\alltobesaved_1024.jpg -> [2010/01/13 09:30:24 | 000,267,975 | ---- | M | MD5 = 64198D84953CEEEF21C4B82802B5CBBA] ()
cc_wall11091_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall11091_1024.jpg -> [2010/01/13 09:30:10 | 000,168,232 | ---- | M | MD5 = 2F992A7C4FC20E411E976D75BEC99A93] ()
cc_wall11095_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall11095_1024.jpg -> [2010/01/13 09:29:50 | 000,252,310 | ---- | M | MD5 = 3A609ECEA54C45C7DFB588B910820E7F] ()
cc_wall01095_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall01095_1024.jpg -> [2010/01/13 09:29:37 | 000,171,130 | ---- | M | MD5 = D62FFEEE58629A997CFA9A4A7C5E6CCA] ()
cc_wall01094_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall01094_1024.jpg -> [2010/01/13 09:28:35 | 000,124,791 | ---- | M | MD5 = B1F9BEF350E7DBBA7E83C38DDDF972E7] ()
cc_honorgod_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_honorgod_1024.jpg -> [2010/01/13 09:28:21 | 000,284,350 | ---- | M | MD5 = 7A356D84FB4C68EFFEB7BF44DA9D34B5] ()
cc_fishersofmen_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_fishersofmen_1024.jpg -> [2010/01/13 09:28:00 | 000,286,496 | ---- | M | MD5 = 9C7094611747E99968B0760004E3BC91] ()
cc_wall10093_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall10093_1024.jpg -> [2010/01/13 09:27:39 | 000,136,579 | ---- | M | MD5 = 27A9E94B3B664434FC945241E8496340] ()
flowers_1024.jpg -> C:\Documents and Settings\Owner\My Documents\flowers_1024.jpg -> [2010/01/13 09:26:56 | 000,250,720 | ---- | M | MD5 = FF65887D882F4CC76178391E3077BA6D] ()
cc_wall04097_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall04097_1024.jpg -> [2010/01/13 09:26:33 | 000,193,508 | ---- | M | MD5 = 195BE60E7FADD88421EC75D86DFCDC90] ()
cc_wall04094_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall04094_1024.jpg -> [2010/01/13 09:25:14 | 000,184,328 | ---- | M | MD5 = 6CA520B44170EFD17D5D5718F7B788C1] ()
cc_thirsty_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_thirsty_1024.jpg -> [2010/01/13 09:19:27 | 000,260,348 | ---- | M | MD5 = 7989D82C07727BE10FA6DAE3BE71B862] ()
Euro_size_chart.pdf -> C:\Documents and Settings\Owner\My Documents\Euro_size_chart.pdf -> [2010/01/12 23:02:48 | 000,289,205 | ---- | M | MD5 = 991B6655830050E1BFBCE086CB20B628] ()
GDIPFONTCACHEV1.DAT -> C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT -> [2010/01/11 12:40:35 | 000,119,776 | ---- | M | MD5 = C9F3C3B1371066D1A81E350CB4AB8DE7] ()
FNTCACHE.DAT -> C:\WINDOWS\System32\FNTCACHE.DAT -> [2010/01/11 12:34:36 | 000,408,696 | ---- | M | MD5 = 7F160B96259368175C1862D58B05E6DC] ()
ntldr -> C:\ntldr -> [2010/01/11 11:55:14 | 000,250,048 | RHS- | M | MD5 = C1B29B4E6EEA9510610DB2EC4D6DB160] ()
NEW-RITEAID-SCHEDULE#3815-011610.xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-011610.xls -> [2010/01/09 09:42:12 | 000,026,112 | ---- | M | MD5 = 48905BE34A49066E17A8D2F671CA742D] ()
MgrNew#3815-1-16-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-1-16-10.xls -> [2010/01/08 19:50:21 | 000,019,968 | ---- | M | MD5 = B54ADB60315229D2E5FC659E847ACEE2] ()
p2p scholarship.pdf -> C:\Documents and Settings\Owner\My Documents\p2p scholarship.pdf -> [2010/01/08 13:22:15 | 000,279,836 | ---- | M | MD5 = F74CD4ADE2108DA308AB907CE1943BA6] ()
Nadines Japan essay.doc -> C:\Documents and Settings\Owner\My Documents\Nadines Japan essay.doc -> [2010/01/08 10:28:27 | 000,020,992 | ---- | M | MD5 = 6AFBD38A0FD38688AD84C0DB6854AC4F] ()
People to People Scholarship Honors and Activities.doc -> C:\Documents and Settings\Owner\My Documents\People to People Scholarship Honors and Activities.doc -> [2010/01/08 10:24:12 | 000,019,968 | ---- | M | MD5 = E97C527716699C945D615F82B3170078] ()
7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->
2 C:\Documents and Settings\Owner\My Documents\*.tmp files -> C:\Documents and Settings\Owner\My Documents\*.tmp ->
101 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp ->
101 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp ->
101 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp ->
1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp ->

[Files - No Company Name]
exmxvybc.job -> C:\WINDOWS\tasks\exmxvybc.job -> [2010/04/07 20:13:12 | 000,000,296 | ---- | C | MD5 = 1CAF45E8AEBF0828AB98C3464E269778] ()
Malwarebytes_Anti-Malware_1.41.zip -> C:\Documents and Settings\Owner\Desktop\Malwarebytes_Anti-Malware_1.41.zip -> [2010/04/06 22:11:25 | 007,171,690 | ---- | C | MD5 = A59F957C666055C50985EE67CF050D90] ()
Malwarebytes' Anti-Malware.lnk -> C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk -> [2010/04/06 21:53:01 | 000,000,696 | ---- | C | MD5 = D8ABAF685A4D3E616F2ABC03FC355340] ()
Store Associate Meeting#3815.doc -> C:\Documents and Settings\Owner\My Documents\Store Associate Meeting#3815.doc -> [2010/04/06 18:54:55 | 000,026,112 | ---- | C | MD5 = 385B70247916A0F87640359DE9F1574A] ()
Monet%20Claude%200910%20T3.jpeg -> C:\Documents and Settings\Owner\My Documents\Monet%20Claude%200910%20T3.jpeg -> [2010/04/06 16:03:26 | 000,374,028 | ---- | C | MD5 = 3C48D35838F067B1B3555107D7A620B3] ()
.recently-used.xbel -> C:\Documents and Settings\Owner\.recently-used.xbel -> [2010/04/06 16:03:26 | 000,034,864 | ---- | C | MD5 = D73901D9E6DDAA14FC36EC7ED5C6D783] ()
Monet%20Claude%200910%20T3.jpg -> C:\Documents and Settings\Owner\My Documents\Monet%20Claude%200910%20T3.jpg -> [2010/04/06 15:58:44 | 000,582,314 | ---- | C | MD5 = F5240B61C5951C4FD47A7C20E5A81071] ()
Monet%20Claude%200910%20T3.pdf -> C:\Documents and Settings\Owner\My Documents\Monet%20Claude%200910%20T3.pdf -> [2010/04/06 15:37:30 | 001,839,353 | ---- | C | MD5 = 83D1099E725EBE9554CF47608F0E2DBC] ()
MgrNew#3815-4-10-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-4-10-10.xls -> [2010/04/03 12:59:39 | 000,020,480 | ---- | C | MD5 = B2EE8BBBB9DB1A2B124E66A62339F0F7] ()
hs_a2_placement saxon.pdf -> C:\Documents and Settings\Owner\My Documents\hs_a2_placement saxon.pdf -> [2010/04/02 18:42:40 | 000,074,865 | ---- | C | MD5 = 4363ADAE9F98D0401153CF85B3E5E714] ()
NEW-RITEAID-SCHEDULE#3815-04-03-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-04-03-10 (version 1).xls -> [2010/03/26 14:21:36 | 000,024,576 | ---- | C | MD5 = E0E7A421A6D4F9A2D11714F56DF8E31E] ()
bible-plan.pdf -> C:\Documents and Settings\Owner\My Documents\bible-plan.pdf -> [2010/03/23 10:58:20 | 000,064,552 | ---- | C | MD5 = 20DFCC00F0ED6ED910689F097D6F9EEC] ()
DSCN0020.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0020.JPG -> [2010/03/07 14:09:03 | 001,423,470 | ---- | C | MD5 = A0DC61699447CF2E7D3C09F48F073BAC] ()
DSCN0019.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0019.JPG -> [2010/03/07 14:08:49 | 001,329,712 | ---- | C | MD5 = FAE3BBFBDC16A9045820026DCCBE5166] ()
DSCN0018.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0018.JPG -> [2010/03/07 14:08:36 | 001,377,555 | ---- | C | MD5 = D8069ADE14CCD72748EDAFE4E5E64FC2] ()
DSCN0035.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0035.JPG -> [2010/03/07 14:08:27 | 001,519,632 | ---- | C | MD5 = B316F5B36EFE3E87D7E0DCC6A38FB519] ()
DSCN0021.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0021.JPG -> [2010/03/07 14:08:06 | 001,413,635 | ---- | C | MD5 = DA86788F329208993B4101885CB90BB6] ()
DSCN0025.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0025.JPG -> [2010/03/07 14:07:41 | 001,300,481 | ---- | C | MD5 = 53C4076879DD5C292CFBDC494DECD705] ()
DSCN0023.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0023.JPG -> [2010/03/07 14:07:34 | 001,531,223 | ---- | C | MD5 = AE1228D23AEBB070C6DC849BB984D204] ()
DSCN0022.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0022.JPG -> [2010/03/07 14:07:27 | 001,544,161 | ---- | C | MD5 = 2AD5145D7B44B9A421F048A0AD5D662A] ()
DSCN0031.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0031.JPG -> [2010/03/07 14:07:03 | 001,447,619 | ---- | C | MD5 = 84CBA7CF15630F862592415A90EE8801] ()
DSCN0030.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0030.JPG -> [2010/03/07 14:06:55 | 001,397,390 | ---- | C | MD5 = 9016DF55C3E98122160B9342718F5301] ()
DSCN0029.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0029.JPG -> [2010/03/07 14:06:46 | 001,516,055 | ---- | C | MD5 = F310BFEBD611D35A2D3EA00D864A9B15] ()
DSCN0034.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0034.JPG -> [2010/03/07 14:05:04 | 001,441,548 | ---- | C | MD5 = FE2BE5E2F290F1BC2B590163B9077287] ()
DSCN0033.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0033.JPG -> [2010/03/07 14:04:56 | 001,419,572 | ---- | C | MD5 = DFB7514B60E3E743139403F65549137C] ()
DSCN0032.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0032.JPG -> [2010/03/07 14:04:48 | 001,469,771 | ---- | C | MD5 = A41AD9FAD7730C99DFAD3846E4DD6942] ()
DSCN0053.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0053.JPG -> [2010/03/07 14:04:27 | 001,414,923 | ---- | C | MD5 = B34A83AFC2FD4E57F8A306FAE67C9318] ()
DSCN0052.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0052.JPG -> [2010/03/07 14:04:15 | 001,447,424 | ---- | C | MD5 = F3D4FA213AAF8EB43365288869D4735C] ()
DSCN0051.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0051.JPG -> [2010/03/07 14:04:03 | 001,521,934 | ---- | C | MD5 = F237850A4866870C235C6A2202B4EF20] ()
DSCN0050.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0050.JPG -> [2010/03/07 14:03:49 | 001,473,433 | ---- | C | MD5 = B5B314FB2B6131837E6F27BB036BC021] ()
DSCN0049.JPG -> C:\Documents and Settings\Owner\My Documents\DSCN0049.JPG -> [2010/03/07 14:03:35 | 001,502,662 | ---- | C | MD5 = 8A8FC71952823E6EA060B1D3F07F3452] ()
MgrNew#3815-3-13-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-3-13-10.xls -> [2010/03/06 16:09:00 | 000,019,968 | ---- | C | MD5 = 7F519C78D653EACFC79EE9A95A990EA0] ()
NEW-RITEAID-SCHEDULE#3815-03-13-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-03-13-10 (version 1).xls -> [2010/03/06 00:33:45 | 000,024,576 | ---- | C | MD5 = DD7C07D8B9CB8773BB03BE36C2BAA666] ()
Nero-Marquina-Marble-Tiles.jpg -> C:\Documents and Settings\Owner\My Documents\Nero-Marquina-Marble-Tiles.jpg -> [2010/03/03 11:27:22 | 000,026,963 | ---- | C | MD5 = 92C35E68DAE1560C35714821D809F5F9] ()
Clear.zip -> C:\Documents and Settings\Owner\My Documents\Clear.zip -> [2010/03/02 22:23:16 | 000,008,270 | ---- | C | MD5 = 7F1D9A0753757D3609432472F58E3AE3] ()
Wood-Mag2.zip -> C:\Documents and Settings\Owner\My Documents\Wood-Mag2.zip -> [2010/03/02 18:34:24 | 000,008,504 | ---- | C | MD5 = FF3C5D8C635DF70FB2D4BB1A1A8C74D7] ()
my blog.xml -> C:\Documents and Settings\Owner\My Documents\my blog.xml -> [2010/03/02 18:02:08 | 000,045,682 | ---- | C | MD5 = 8F08F2C1DE5BF7504049F672549076DA] ()
Woman-Talk.zip -> C:\Documents and Settings\Owner\My Documents\Woman-Talk.zip -> [2010/03/02 17:58:43 | 000,010,079 | ---- | C | MD5 = AC45890FF8C1F05CAA3921F98BA836E6] ()
hs_err_pid6036.log -> C:\Documents and Settings\Owner\hs_err_pid6036.log -> [2010/02/27 17:18:26 | 000,013,416 | ---- | C | MD5 = 234D70EC1284E5CE2FE35FBB3C420C42] ()
MgrNew#3815-3-6-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-3-6-10.xls -> [2010/02/27 12:53:34 | 000,019,968 | ---- | C | MD5 = 93B42C371F4F9B2ED7555A8CB4F00500] ()
FELIZ_Sew-Along_ENGLISH_1_reduce.pdf -> C:\Documents and Settings\Owner\My Documents\FELIZ_Sew-Along_ENGLISH_1_reduce.pdf -> [2010/02/27 12:17:54 | 001,160,223 | ---- | C | MD5 = B494F26F4ACEA1EE2518AC72F8E832AC] ()
NEW-RITEAID-SCHEDULE#3815-03-06-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-03-06-10 (version 1).xls -> [2010/02/27 11:05:40 | 000,024,576 | ---- | C | MD5 = B24250A7E963C518F8D18515DBF4D6F5] ()
NEW-RITEAID-SCHEDULE#3815-02-27-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-02-27-10 (version 1).xls -> [2010/02/20 16:43:41 | 000,024,576 | ---- | C | MD5 = F89521DEA895F3862807DD10D4F20D27] ()
Japanese Embassy letter.doc -> C:\Documents and Settings\Owner\My Documents\Japanese Embassy letter.doc -> [2010/02/20 15:56:17 | 000,022,016 | ---- | C | MD5 = 484753A288AFF6F9E3E877A879DE2163] ()
MgrNew#3815-2-27-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-2-27-10.xls -> [2010/02/20 14:08:19 | 000,020,480 | ---- | C | MD5 = 1218B778D801F08E553605AF1C14B305] ()
MgrNew#3815-2-14-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-2-14-10.xls -> [2010/02/13 16:22:06 | 000,020,480 | ---- | C | MD5 = 08A83326E5D7D193EA938AA2F5DA65FA] ()
To whom it may concer1.doc -> C:\Documents and Settings\Owner\My Documents\To whom it may concer1.doc -> [2010/02/13 14:02:30 | 000,020,992 | ---- | C | MD5 = 131635EE08198F07A9183BAE577A6EDC] ()
NEW-RITEAID-SCHEDULE#3815-02-13-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-02-13-10 (version 1).xls -> [2010/02/06 19:52:12 | 000,024,576 | ---- | C | MD5 = B962661326FB02CBA752D40C62E36896] ()
MgrNew#3815-2-13-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-2-13-10.xls -> [2010/02/06 14:04:34 | 000,020,480 | ---- | C | MD5 = 48DD998DDA4707A3CD54F0C046088D10] ()
Choir_Survey.pdf -> C:\Documents and Settings\Owner\My Documents\Choir_Survey.pdf -> [2010/02/03 16:25:48 | 000,112,693 | ---- | C | MD5 = 20A4E4D256CB9AA0D5E80B6D8B42D133] ()
color-o-ring-template.zip -> C:\Documents and Settings\Owner\My Documents\color-o-ring-template.zip -> [2010/02/02 19:46:23 | 000,018,847 | ---- | C | MD5 = 5EF63818DD87D789F8EEC0C14231AE5E] ()
MgrNew#3815-2-6-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-2-6-10.xls -> [2010/01/30 01:54:59 | 000,020,480 | ---- | C | MD5 = 1A71049A341558CBF9714C49685FB754] ()
NEW-RITEAID-SCHEDULE#3815-02-06-10 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-02-06-10 (version 1).xls -> [2010/01/30 01:48:05 | 000,024,576 | ---- | C | MD5 = 9D60320207D4870E81AED81E714A9CEA] ()
sewing Sample_Lesson.pdf -> C:\Documents and Settings\Owner\My Documents\sewing Sample_Lesson.pdf -> [2010/01/29 18:32:47 | 000,105,172 | ---- | C | MD5 = 49DBA8A89BC005FD1DAD1AEABEEBA5C9] ()
2010 irs efile.pdf -> C:\Documents and Settings\Owner\My Documents\2010 irs efile.pdf -> [2010/01/29 11:09:35 | 000,293,350 | ---- | C | MD5 = 4A4E953461D45FE1048DA38D90EB1BF6] ()
URGENT 1-23-10.doc -> C:\Documents and Settings\Owner\My Documents\URGENT 1-23-10.doc -> [2010/01/23 14:37:16 | 000,020,480 | ---- | C | MD5 = 8B24181F29F9EAC427B80C38953DA9B6] ()
NEW-RITEAID-SCHEDULE#3815-013010 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-013010 (version 1).xls -> [2010/01/23 11:44:00 | 000,024,576 | ---- | C | MD5 = 3465160B52755752331B838AA2777FA3] ()
MgrNew#3815-1-30-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-1-30-10.xls -> [2010/01/23 11:19:39 | 000,019,968 | ---- | C | MD5 = F5CC37B506DC8E292680D7760FE96B82] ()
annies swap page 1.bmp -> C:\Documents and Settings\Owner\My Documents\annies swap page 1.bmp -> [2010/01/19 19:31:50 | 001,865,702 | ---- | C | MD5 = 7CF713272F92320DE76D2C5CBAE1E9A6] ()
Americandoll_hospital.pdf -> C:\Documents and Settings\Owner\My Documents\Americandoll_hospital.pdf -> [2010/01/17 16:06:06 | 000,114,952 | ---- | C | MD5 = A7F262F2E353E91B230772DA4111FE53] ()
If You work more then 6 hours in 1 day.doc -> C:\Documents and Settings\Owner\My Documents\If You work more then 6 hours in 1 day.doc -> [2010/01/16 14:02:03 | 000,019,968 | ---- | C | MD5 = B842D596A85A994537E7ACA818CEE7BE] ()
ATTENTION ALL EMPLOYEE1.doc -> C:\Documents and Settings\Owner\My Documents\ATTENTION ALL EMPLOYEE1.doc -> [2010/01/15 23:20:31 | 000,019,968 | ---- | C | MD5 = 98B01797D9C52E522556F4BA648C3BCB] ()
NEW-RITEAID-SCHEDULE#3815-012310 (version 1).xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-012310 (version 1).xls -> [2010/01/15 22:57:02 | 000,024,576 | ---- | C | MD5 = 7B1B97AEBD395C1AEE5031AD823384B8] ()
MgrNew#3815-1-23-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-1-23-10.xls -> [2010/01/15 15:55:52 | 000,019,968 | ---- | C | MD5 = 0171E82418A2B8E97CE4D28F1D8DCCE7] ()
Gate_Songs_and_Links.doc -> C:\Documents and Settings\Owner\My Documents\Gate_Songs_and_Links.doc -> [2010/01/15 14:48:17 | 000,046,080 | ---- | C | MD5 = 5F73A554CC5301FDB577897997D60773] ()
God_is_banner.jpg -> C:\Documents and Settings\Owner\My Documents\God_is_banner.jpg -> [2010/01/13 14:15:22 | 000,072,847 | ---- | C | MD5 = F7DD6F37B37C761D8B7C71462D04CCF1] ()
cc_wall10092_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall10092_1024.jpg -> [2010/01/13 09:35:43 | 000,195,671 | ---- | C | MD5 = 69FC9648D4708508F98D263CEC2F6A1A] ()
graveeaster_1024.jpg -> C:\Documents and Settings\Owner\My Documents\graveeaster_1024.jpg -> [2010/01/13 09:34:00 | 000,274,074 | ---- | C | MD5 = 7EDBEE8F0BC001CB5916CEAF06EF1B01] ()
cc_wall12087_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall12087_1024.jpg -> [2010/01/13 09:33:21 | 000,152,014 | ---- | C | MD5 = F65BE61C2503CC5617A761F4E0295D7F] ()
hope07_1024.jpg -> C:\Documents and Settings\Owner\My Documents\hope07_1024.jpg -> [2010/01/13 09:33:00 | 000,188,090 | ---- | C | MD5 = 8D72C4F3C67030297E0D2C95F4FD97CA] ()
cc_wall04086_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall04086_1024.jpg -> [2010/01/13 09:32:45 | 000,192,964 | ---- | C | MD5 = F9551A54A1B11B2ABE1C4705F2A2F9E3] ()
cc_wall11097_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall11097_1024.jpg -> [2010/01/13 09:32:27 | 000,251,492 | ---- | C | MD5 = 2B91A16487FF071961C14119ECD1916F] ()
cc_repent_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_repent_1024.jpg -> [2010/01/13 09:31:09 | 000,259,449 | ---- | C | MD5 = E6DFDF915CDA571465B0B767096D2B35] ()
cc_wall06095_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall06095_1024.jpg -> [2010/01/13 09:30:38 | 000,214,081 | ---- | C | MD5 = 51BE6CA1EA78C994EF17FB32F81246FB] ()
alltobesaved_1024.jpg -> C:\Documents and Settings\Owner\My Documents\alltobesaved_1024.jpg -> [2010/01/13 09:30:22 | 000,267,975 | ---- | C | MD5 = 64198D84953CEEEF21C4B82802B5CBBA] ()
cc_wall11091_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall11091_1024.jpg -> [2010/01/13 09:30:09 | 000,168,232 | ---- | C | MD5 = 2F992A7C4FC20E411E976D75BEC99A93] ()
cc_wall11095_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall11095_1024.jpg -> [2010/01/13 09:29:49 | 000,252,310 | ---- | C | MD5 = 3A609ECEA54C45C7DFB588B910820E7F] ()
cc_wall01095_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall01095_1024.jpg -> [2010/01/13 09:29:36 | 000,171,130 | ---- | C | MD5 = D62FFEEE58629A997CFA9A4A7C5E6CCA] ()
cc_wall01094_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall01094_1024.jpg -> [2010/01/13 09:28:34 | 000,124,791 | ---- | C | MD5 = B1F9BEF350E7DBBA7E83C38DDDF972E7] ()
cc_honorgod_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_honorgod_1024.jpg -> [2010/01/13 09:28:20 | 000,284,350 | ---- | C | MD5 = 7A356D84FB4C68EFFEB7BF44DA9D34B5] ()
cc_fishersofmen_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_fishersofmen_1024.jpg -> [2010/01/13 09:27:58 | 000,286,496 | ---- | C | MD5 = 9C7094611747E99968B0760004E3BC91] ()
cc_wall10093_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall10093_1024.jpg -> [2010/01/13 09:27:38 | 000,136,579 | ---- | C | MD5 = 27A9E94B3B664434FC945241E8496340] ()
flowers_1024.jpg -> C:\Documents and Settings\Owner\My Documents\flowers_1024.jpg -> [2010/01/13 09:26:54 | 000,250,720 | ---- | C | MD5 = FF65887D882F4CC76178391E3077BA6D] ()
cc_wall04097_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall04097_1024.jpg -> [2010/01/13 09:26:32 | 000,193,508 | ---- | C | MD5 = 195BE60E7FADD88421EC75D86DFCDC90] ()
cc_wall04094_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_wall04094_1024.jpg -> [2010/01/13 09:25:13 | 000,184,328 | ---- | C | MD5 = 6CA520B44170EFD17D5D5718F7B788C1] ()
cc_thirsty_1024.jpg -> C:\Documents and Settings\Owner\My Documents\cc_thirsty_1024.jpg -> [2010/01/13 09:19:21 | 000,260,348 | ---- | C | MD5 = 7989D82C07727BE10FA6DAE3BE71B862] ()
Euro_size_chart.pdf -> C:\Documents and Settings\Owner\My Documents\Euro_size_chart.pdf -> [2010/01/12 23:02:48 | 000,289,205 | ---- | C | MD5 = 991B6655830050E1BFBCE086CB20B628] ()
NEW-RITEAID-SCHEDULE#3815-011610.xls -> C:\Documents and Settings\Owner\My Documents\NEW-RITEAID-SCHEDULE#3815-011610.xls -> [2010/01/09 08:22:44 | 000,026,112 | ---- | C | MD5 = 48905BE34A49066E17A8D2F671CA742D] ()
MgrNew#3815-1-16-10.xls -> C:\Documents and Settings\Owner\My Documents\MgrNew#3815-1-16-10.xls -> [2010/01/08 19:50:20 | 000,019,968 | ---- | C | MD5 = B54ADB60315229D2E5FC659E847ACEE2] ()
jileyemu.dll -> C:\WINDOWS\System32\jileyemu.dll -> [2010/01/07 20:13:10 | 000,094,208 | -HS- | C | MD5 = 0AB00345CDEFF492749CAE21E60BAC27] ()
yegusaso.dll -> C:\WINDOWS\System32\yegusaso.dll -> [2010/01/07 20:13:10 | 000,041,472 | -HS- | C | MD5 = 374C64A6734D7C77A56FA7B625A77D6C] ()
pivejehu.dll -> C:\WINDOWS\System32\pivejehu.dll -> [2010/01/07 08:15:38 | 000,096,256 | -HS- | C | MD5 = 81F7B39561A26B25EF6268B761E55845] ()
wiwirira.dll -> C:\WINDOWS\System32\wiwirira.dll -> [2010/01/07 08:15:38 | 000,062,464 | -HS- | C | MD5 = 1AB041075221AA42D556DCE0961FE753] ()
gokehama.dll -> C:\WINDOWS\System32\gokehama.dll -> [2010/01/07 08:15:38 | 000,043,008 | -HS- | C | MD5 = B1CB25F9438A6802DE451EAFEF7700D1] ()
jolaneki.dll -> C:\WINDOWS\System32\jolaneki.dll -> [2010/01/06 17:36:42 | 000,096,256 | -HS- | C | MD5 = 2FBF592C143CF864D43D74590AD6E23F] ()
guniyiyu.dll -> C:\WINDOWS\System32\guniyiyu.dll -> [2010/01/06 17:36:42 | 000,043,008 | -HS- | C | MD5 = 8BB59ECBCDE8F1207FDFED1F7B56F909] ()
FontCache3.0.0.0.dat -> C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat -> [2009/11/20 00:22:40 | 000,002,352 | ---- | C | MD5 = A61460E925D7D5911FE8D014DC6501A3] ()
SportballChallenge.ini -> C:\WINDOWS\SportballChallenge.ini -> [2009/05/18 17:52:49 | 000,000,669 | ---- | C | MD5 = 21044CE43CB64477F59C68406EF73641] ()
EasyRip.ini -> C:\WINDOWS\EasyRip.ini -> [2009/05/09 23:11:59 | 000,000,098 | ---- | C | MD5 = 381CB0478F8F62DD572EA2AAA232058F] ()
Brfaxrx.ini -> C:\WINDOWS\Brfaxrx.ini -> [2008/03/22 10:12:37 | 000,000,156 | ---- | C | MD5 = A95517749493385093B41FFDFC647713] ()
libcurl.dll -> C:\WINDOWS\System32\libcurl.dll -> [2008/03/04 19:52:34 | 000,286,720 | ---- | C | MD5 = 596AE98746CEA4C2B4A54266B26B433A] ()
zlib1.dll -> C:\WINDOWS\System32\zlib1.dll -> [2007/10/31 10:39:54 | 000,059,904 | ---- | C | MD5 = 80E41408F6D641DC1C0F5353A0CC8125] ()
BRPP2KA.INI -> C:\WINDOWS\BRPP2KA.INI -> [2007/09/30 19:32:53 | 000,000,027 | ---- | C | MD5 = 0AD7DDFF3B964E2DC5207B7E9D9CE2FE] ()
Brpfx04a.ini -> C:\WINDOWS\Brpfx04a.ini -> [2007/09/30 19:27:17 | 000,001,053 | ---- | C | MD5 = 1684532F4A3750A8F3C8C8AE27276BE4] ()
brpcfx.ini -> C:\WINDOWS\brpcfx.ini -> [2007/09/30 19:27:17 | 000,000,153 | ---- | C | MD5 = 3C945720ABBF46EE4959B3D2F52076EF] ()
BrMuSNMP.dll -> C:\WINDOWS\System32\BrMuSNMP.dll -> [2007/09/30 19:25:08 | 000,106,496 | ---- | C | MD5 = 97C8FC42065E54C0FB764ED3A22443DB] ()
maxlink.ini -> C:\WINDOWS\maxlink.ini -> [2007/09/30 19:23:01 | 000,027,019 | ---- | C | MD5 = C78E4D7D3593E0C2F52953E48EEB24E1] ()
$_hpcst$.hpc -> C:\Documents and Settings\LocalService\Application Data\$_hpcst$.hpc -> [2007/05/26 10:19:22 | 000,002,508 | ---- | C | MD5 = 34C248554041DAF0E157EF20F3117771] ()
libexpatw.dll -> C:\WINDOWS\System32\libexpatw.dll -> [2007/05/17 14:58:10 | 000,143,360 | ---- | C | MD5 = 41813F05F1BABC907640550D1C41B456] ()
brmx2001.ini -> C:\WINDOWS\brmx2001.ini -> [2006/12/20 11:00:03 | 000,000,000 | ---- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
BRVIDEO.INI -> C:\WINDOWS\BRVIDEO.INI -> [2006/12/20 11:00:02 | 000,000,147 | ---- | C | MD5 = E1EC9ABA6DFD319CEB9EE1E24BAF9999] ()
Brownie.ini -> C:\WINDOWS\Brownie.ini -> [2006/12/20 11:00:02 | 000,000,023 | ---- | C | MD5 = 5E2A662330F1C7E8166612AE2540F1EF] ()
HL-5250DN.INI -> C:\WINDOWS\HL-5250DN.INI -> [2006/12/20 10:59:47 | 000,014,441 | ---- | C | MD5 = F13CE97DB28E05D5AB6ECEF4987274A1] ()
BRWMARK.INI -> C:\WINDOWS\BRWMARK.INI -> [2006/12/20 10:59:12 | 000,000,426 | ---- | C | MD5 = F4301A91375B08526B282DCD2542F7B9] ()
Film Factory Screen Saver.ini -> C:\WINDOWS\Film Factory Screen Saver.ini -> [2006/11/01 09:49:47 | 000,000,373 | ---- | C | MD5 = 95784FF828007F04B5AF1C49B03CD307] ()
mmf.sys -> C:\WINDOWS\System32\mmf.sys -> [2006/07/18 20:23:22 | 000,002,169 | -HS- | C | Unable to obtain MD5] ()
mmfs.dll -> C:\WINDOWS\mmfs.dll -> [2006/07/18 20:23:21 | 000,048,640 | ---- | C | MD5 = 8EF6616E33061C9A15D4C0AAA5D7A5A5] ()
GlobalUserInterface.CompositeFont -> C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont -> [2006/06/29 14:58:52 | 000,030,808 | ---- | C | MD5 = A6AFBC3436A20A7834D45CDE9D69926C] ()
GlobalSansSerif.CompositeFont -> C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont -> [2006/06/29 14:53:56 | 000,026,489 | ---- | C | MD5 = D6B2075824BA9FAA4B37D98B13447F32] ()
winamp.ini -> C:\WINDOWS\winamp.ini -> [2006/06/10 23:49:51 | 000,001,125 | ---- | C | MD5 = 11A8935FE787FD81A63F3A767E30EF04] ()
coinst.dll -> C:\WINDOWS\System32\coinst.dll -> [2006/05/27 20:02:49 | 000,024,576 | ---- | C | MD5 = 30A621F6A70FE9D88832A5F8C50291EF] ()
Sonyhcp.dll -> C:\WINDOWS\System32\drivers\Sonyhcp.dll -> [2006/05/06 09:00:10 | 000,003,654 | ---- | C | MD5 = BDA6C0EFD8EA4BBE738175FEA5C06660] ()
GlobalSerif.CompositeFont -> C:\WINDOWS\Fonts\GlobalSerif.CompositeFont -> [2006/04/18 15:39:28 | 000,029,779 | ---- | C | MD5 = B77AB4697B17FBBB25E41A15CC31D94E] ()
GlobalMonospace.CompositeFont -> C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont -> [2006/04/18 15:39:28 | 000,026,040 | ---- | C | MD5 = B7F882C45E520600053327AA42FA3A4F] ()
upst.ini -> C:\WINDOWS\upst.ini -> [2005/12/21 16:51:02 | 000,000,099 | ---- | C | MD5 = 39EA03FD22EB92C8810E4CD5B82944B3] ()
atid.ini -> C:\WINDOWS\atid.ini -> [2005/12/21 16:51:02 | 000,000,029 | ---- | C | MD5 = BF6E7F5D020749119678A3278DF7D447] ()
SIERRA.INI -> C:\WINDOWS\SIERRA.INI -> [2005/12/12 16:07:17 | 000,000,060 | ---- | C | MD5 = 4AB59F9258577F9EB6A71F4E33E5AD21] ()
Disney.ini -> C:\WINDOWS\Disney.ini -> [2005/11/23 15:52:15 | 000,000,293 | ---- | C | MD5 = 89D25FD57866A0E1087324EE19C9C821] ()
rkeeper.ini -> C:\WINDOWS\rkeeper.ini -> [2005/11/15 14:11:39 | 000,000,052 | ---- | C | MD5 = FA2231E6BFAC465D68FC88FB8CE426E7] ()
SH30W32.DLL -> C:\WINDOWS\System32\SH30W32.DLL -> [2005/11/15 13:52:08 | 000,094,720 | ---- | C | MD5 = F8607C6B318911672B53CAB2CD1D49BD] ()
QTW.INI -> C:\WINDOWS\QTW.INI -> [2005/11/15 13:45:26 | 000,000,306 | ---- | C | MD5 = BB0777C0EFDE51BC1CCF58406367BAA2] ()
MSDraw.ini -> C:\WINDOWS\MSDraw.ini -> [2005/11/13 18:50:19 | 000,000,000 | ---- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
liveup.ini -> C:\WINDOWS\liveup.ini -> [2005/11/04 08:46:16 | 000,000,044 | ---- | C | MD5 = B4CC2BB83736F884E9EA087C1680C01B] ()
iPlayer.INI -> C:\WINDOWS\iPlayer.INI -> [2005/10/27 09:18:18 | 000,000,000 | ---- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
KA.INI -> C:\WINDOWS\KA.INI -> [2005/10/20 12:13:32 | 000,000,234 | ---- | C | MD5 = 70B9C1DB62286DD2F9651DC861412BF0] ()
Tx32.dll -> C:\WINDOWS\System32\Tx32.dll -> [2005/09/04 20:15:03 | 000,314,880 | ---- | C | MD5 = 1EAD1631618856FF17F5E9A416484F59] ()
WinInit.Ini -> C:\WINDOWS\WinInit.Ini -> [2005/09/01 12:14:48 | 000,000,206 | ---- | C | MD5 = C302888049B776051683740E8A1DE422] ()
cdplayer.ini -> C:\WINDOWS\cdplayer.ini -> [2005/08/10 18:21:10 | 000,001,231 | ---- | C | MD5 = 89DF9E92F8FADF937167748ABF2D2B01] ()
hegames.ini -> C:\WINDOWS\hegames.ini -> [2005/07/02 13:23:06 | 000,000,881 | ---- | C | MD5 = 3CDA65C1F8B7D4A7D992A3D4492CA591] ()
MPTBox.INI -> C:\WINDOWS\MPTBox.INI -> [2005/06/17 12:23:15 | 000,017,611 | ---- | C | MD5 = 556105BE3874F2C5CDC70187DBC9BDFF] ()
LEAD45.DLL -> C:\WINDOWS\System32\LEAD45.DLL -> [2005/06/16 14:17:36 | 000,517,104 | ---- | C | MD5 = 0E5AA78D74A00066C2D9041C3797321A] ()
X6470.INI -> C:\WINDOWS\X6470.INI -> [2005/06/16 14:13:12 | 000,000,009 | ---- | C | MD5 = B22C960C46F811286469A5BE990E5275] ()
mcpStart.ini -> C:\WINDOWS\mcpStart.ini -> [2005/06/16 13:59:30 | 000,000,012 | ---- | C | MD5 = 341CA702D48C433D9170309072478DFE] ()
SGEDIT.INI -> C:\WINDOWS\SGEDIT.INI -> [2005/06/16 13:53:23 | 000,000,049 | ---- | C | MD5 = 3139EF7BB4FD86D25E487FC739935096] ()
TLCAPPS.INI -> C:\WINDOWS\TLCAPPS.INI -> [2005/06/16 10:02:01 | 000,000,062 | ---- | C | MD5 = CFC76F1C82146758DD7C7E7884DF9D92] ()
SETUP32.INI -> C:\WINDOWS\SETUP32.INI -> [2005/06/16 10:01:30 | 000,000,000 | ---- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
ODBC.INI -> C:\WINDOWS\ODBC.INI -> [2005/06/12 18:26:09 | 000,000,376 | ---- | C | MD5 = EC940475561F651E8CCA80C9144191D0] ()
vidx16.dll -> C:\WINDOWS\System32\vidx16.dll -> [2005/06/11 19:31:15 | 000,010,240 | ---- | C | MD5 = 550BA20DF6C08E628CA9ABD0F6E917B8] ()
NeroDigital.ini -> C:\WINDOWS\NeroDigital.ini -> [2005/06/10 00:48:57 | 000,000,049 | ---- | C | MD5 = BE64243EC1F3B6EE84FEF78017A4D51E] ()
EPSONC86.ini -> C:\WINDOWS\EPSONC86.ini -> [2005/06/09 18:03:37 | 000,000,045 | ---- | C | MD5 = D52BA19BF92424659C75A2EA3B960AA9] ()
EAL32.INI -> C:\WINDOWS\System32\EAL32.INI -> [2005/06/09 18:03:15 | 000,000,051 | ---- | C | MD5 = 54FD0CE05FFBCF8E08185C4FE4733C86] ()
wwwbatch.ini -> C:\WINDOWS\wwwbatch.ini -> [2005/06/09 00:52:42 | 000,000,029 | ---- | C | MD5 = 905D0C5DEC07FE8FAB51D305B9C1B236] ()
RTCOMDLL.dll -> C:\WINDOWS\System32\RTCOMDLL.dll -> [2005/06/09 00:32:21 | 000,192,512 | ---- | C | MD5 = BF7021A06058BB101C2489902E059187] ()
RTLCPAPI.dll -> C:\WINDOWS\System32\RTLCPAPI.dll -> [2005/06/09 00:32:21 | 000,156,160 | ---- | C | MD5 = BC8A14CBBFD47560D75A8041950F3FFF] ()
PIC.dll -> C:\WINDOWS\PIC.dll -> [2005/06/09 00:32:03 | 000,532,544 | ---- | C | MD5 = D98B44EE60109F8EBD94ADB4379EB2F2] ()
HKNTDLL.dll -> C:\WINDOWS\HKNTDLL.dll -> [2005/06/09 00:32:03 | 000,024,576 | ---- | C | MD5 = 9D711D318BE62AC3245AFD4A7D555FBF] ()
e100bmsg.dll -> C:\WINDOWS\System32\e100bmsg.dll -> [2005/06/09 00:22:41 | 000,012,288 | ---- | C | MD5 = 583831F64D086B6927CE099E56639C61] ()
zlibwapi.dll -> C:\WINDOWS\System32\zlibwapi.dll -> [2005/06/07 03:05:43 | 000,072,704 | ---- | C | MD5 = 91A4EEB39ED3054F558795CFCDB13FA8] ()
smscfg.ini -> C:\WINDOWS\smscfg.ini -> [2004/08/27 06:50:59 | 000,000,061 | ---- | C | MD5 = C0759373CABA4620D082671DC8B0B919] ()
oeminfo.ini -> C:\WINDOWS\System32\oeminfo.ini -> [2004/08/26 12:12:43 | 000,001,222 | ---- | C | MD5 = 10E40AD361AFFCA33BCEB7208F929B73] ()
emver.ini -> C:\WINDOWS\System32\emver.ini -> [2004/08/26 12:12:43 | 000,000,486 | ---- | C | MD5 = FABC0D9DEF49890A7E511293C1FA2296] ()
OpenQuicktimeLib_dec.dll -> C:\WINDOWS\System32\OpenQuicktimeLib_dec.dll -> [2004/01/27 08:13:02 | 000,421,888 | ---- | C | MD5 = DFADED8A8BEA0AAAB982BC052858E8A2] ()
MCC16.DLL -> C:\WINDOWS\System32\MCC16.DLL -> [2002/12/18 16:10:36 | 000,006,048 | ---- | C | MD5 = 755BC6B6D970976F94E849F5B4966119] ()
Jpeg32.dll -> C:\WINDOWS\System32\Jpeg32.dll -> [2002/03/04 10:16:34 | 000,110,592 | R--- | C | MD5 = D3F76C0D0D88085D2185ED1DA23FF2C0] ()

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 1:13 am

[File - Lop Check]
AOP -> C:\Documents and Settings\All Users\Application Data\AOP -> [2008/04/02 12:25:25 | 000,000,000 | ---D | M]
Applications -> C:\Documents and Settings\All Users\Application Data\Applications -> [2009/01/17 01:04:11 | 000,000,000 | ---D | M]
Citrix -> C:\Documents and Settings\All Users\Application Data\Citrix -> [2008/11/07 17:15:54 | 000,000,000 | ---D | M]
Individual Software -> C:\Documents and Settings\All Users\Application Data\Individual Software -> [2005/09/04 20:14:41 | 000,000,000 | ---D | M]
muvee Technologies -> C:\Documents and Settings\All Users\Application Data\muvee Technologies -> [2009/12/31 22:17:58 | 000,000,000 | ---D | M]
n7-89-o9-3r-4t-r9 -> C:\Documents and Settings\All Users\Application Data\n7-89-o9-3r-4t-r9 -> [2009/01/13 17:42:37 | 000,000,000 | ---D | M]
PlayFirst -> C:\Documents and Settings\All Users\Application Data\PlayFirst -> [2010/01/17 18:03:24 | 000,000,000 | ---D | M]
PopCap -> C:\Documents and Settings\All Users\Application Data\PopCap -> [2005/09/14 17:06:38 | 000,000,000 | ---D | M]
ScanSoft -> C:\Documents and Settings\All Users\Application Data\ScanSoft -> [2007/09/30 19:22:07 | 000,000,000 | ---D | M]
Seagate -> C:\Documents and Settings\All Users\Application Data\Seagate -> [2009/12/31 22:21:48 | 000,000,000 | ---D | M]
TEMP -> C:\Documents and Settings\All Users\Application Data\TEMP -> [2010/01/17 19:36:32 | 000,000,000 | ---D | M]
TGHomeSoft -> C:\Documents and Settings\All Users\Application Data\TGHomeSoft -> [2006/08/06 15:46:41 | 000,000,000 | ---D | M]
Viewpoint -> C:\Documents and Settings\All Users\Application Data\Viewpoint -> [2009/12/28 20:14:40 | 000,000,000 | ---D | M]
WildTangent -> C:\Documents and Settings\All Users\Application Data\WildTangent -> [2009/03/12 19:29:38 | 000,000,000 | ---D | M]
Yahoo -> C:\Documents and Settings\All Users\Application Data\Yahoo -> [2007/08/26 11:31:25 | 000,000,000 | ---D | M]
{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} -> C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} -> [2009/08/22 12:54:15 | 000,000,000 | ---D | M]
{AFD61B9C-946C-4129-B53C-E1C5D51A536D} -> C:\Documents and Settings\All Users\Application Data\{AFD61B9C-946C-4129-B53C-E1C5D51A536D} -> [2008/12/16 23:01:58 | 000,000,000 | ---D | M]
SampleView -> C:\Documents and Settings\Default User\Application Data\SampleView -> [2005/06/09 00:38:49 | 000,000,000 | ---D | M]
.wyzo -> C:\Documents and Settings\Owner\Application Data\.wyzo -> [2007/04/01 17:39:52 | 000,000,000 | ---D | M]
acccore -> C:\Documents and Settings\Owner\Application Data\acccore -> [2006/09/27 00:38:18 | 000,000,000 | ---D | M]
AOP -> C:\Documents and Settings\Owner\Application Data\AOP -> [2008/04/02 12:32:24 | 000,000,000 | ---D | M]
Blackberry Desktop -> C:\Documents and Settings\Owner\Application Data\Blackberry Desktop -> [2009/10/31 20:54:51 | 000,000,000 | ---D | M]
eMusic -> C:\Documents and Settings\Owner\Application Data\eMusic -> [2009/01/21 01:21:44 | 000,000,000 | ---D | M]
FileOpen -> C:\Documents and Settings\Owner\Application Data\FileOpen -> [2005/07/19 07:58:08 | 000,000,000 | ---D | M]
GameHouse -> C:\Documents and Settings\Owner\Application Data\GameHouse -> [2009/01/13 17:42:20 | 000,000,000 | ---D | M]
gtk-2.0 -> C:\Documents and Settings\Owner\Application Data\gtk-2.0 -> [2010/04/06 16:04:06 | 000,000,000 | ---D | M]
ICAClient -> C:\Documents and Settings\Owner\Application Data\ICAClient -> [2008/01/08 01:55:03 | 000,000,000 | ---D | M]
Individual Software -> C:\Documents and Settings\Owner\Application Data\Individual Software -> [2005/09/05 14:03:16 | 000,000,000 | ---D | M]
InterTrust -> C:\Documents and Settings\Owner\Application Data\InterTrust -> [2005/06/29 17:47:24 | 000,000,000 | ---D | M]
Leadertech -> C:\Documents and Settings\Owner\Application Data\Leadertech -> [2005/06/09 18:06:07 | 000,000,000 | ---D | M]
My Sam's Club Digital Photo Center -> C:\Documents and Settings\Owner\Application Data\My Sam's Club Digital Photo Center -> [2008/11/17 19:41:40 | 000,000,000 | ---D | M]
OverDrive -> C:\Documents and Settings\Owner\Application Data\OverDrive -> [2005/11/08 14:57:54 | 000,000,000 | ---D | M]
PC-FAX TX -> C:\Documents and Settings\Owner\Application Data\PC-FAX TX -> [2007/10/02 07:31:46 | 000,000,000 | ---D | M]
PlayFirst -> C:\Documents and Settings\Owner\Application Data\PlayFirst -> [2010/01/17 18:03:24 | 000,000,000 | ---D | M]
Research In Motion -> C:\Documents and Settings\Owner\Application Data\Research In Motion -> [2009/05/05 18:20:33 | 000,000,000 | ---D | M]
SampleView -> C:\Documents and Settings\Owner\Application Data\SampleView -> [2005/06/09 00:38:49 | 000,000,000 | ---D | M]
ScanSoft -> C:\Documents and Settings\Owner\Application Data\ScanSoft -> [2008/03/22 10:15:33 | 000,000,000 | ---D | M]
School Zone Preferences -> C:\Documents and Settings\Owner\Application Data\School Zone Preferences -> [2006/03/08 11:53:49 | 000,000,000 | ---D | M]
Schoolhouse Technologies -> C:\Documents and Settings\Owner\Application Data\Schoolhouse Technologies -> [2007/11/26 14:50:15 | 000,000,000 | ---D | M]
Shutterfly -> C:\Documents and Settings\Owner\Application Data\Shutterfly -> [2008/11/04 15:15:01 | 000,000,000 | ---D | M]
SmartDraw -> C:\Documents and Settings\Owner\Application Data\SmartDraw -> [2009/06/22 20:11:50 | 000,000,000 | ---D | M]
Snapfish -> C:\Documents and Settings\Owner\Application Data\Snapfish -> [2008/05/11 20:37:57 | 000,000,000 | ---D | M]
Template -> C:\Documents and Settings\Owner\Application Data\Template -> [2005/11/17 18:51:27 | 000,000,000 | ---D | M]
Video DVD Maker FREE -> C:\Documents and Settings\Owner\Application Data\Video DVD Maker FREE -> [2007/08/27 15:54:05 | 000,000,000 | ---D | M]
Viewpoint -> C:\Documents and Settings\Owner\Application Data\Viewpoint -> [2007/01/23 17:28:42 | 000,000,000 | ---D | M]
WildTangent -> C:\Documents and Settings\Owner\Application Data\WildTangent -> [2009/03/12 19:29:44 | 000,000,000 | ---D | M]
exmxvybc.job -> C:\WINDOWS\Tasks\exmxvybc.job -> [2010/04/07 20:13:12 | 000,000,296 | ---- | M | MD5 = 1CAF45E8AEBF0828AB98C3464E269778] ()
McDefragTask.job -> C:\WINDOWS\Tasks\McDefragTask.job -> [2010/01/15 02:34:30 | 000,000,340 | ---- | M | MD5 = 33325CB66EB60888829DC01D058CB52E] ()
McQcTask.job -> C:\WINDOWS\Tasks\McQcTask.job -> [2010/03/01 02:01:01 | 000,000,332 | ---- | M | MD5 = E3CBC3E60559792E298E29C73B46E6D1] ()

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 1:16 am

[File - Purity Scan]

[Custom Scans]
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp ->
< %systemroot%\system32\*.exe /lockedfiles >
7 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp ->
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
default.sav -> C:\WINDOWS\system32\config\default.sav -> [2004/08/26 06:53:19 | 000,094,208 | ---- | M | MD5 = E7B4B5DDC186B27E9B4EC70CAC6666C7] ()
software.sav -> C:\WINDOWS\system32\config\software.sav -> [2004/08/26 06:53:18 | 000,634,880 | ---- | M | MD5 = 9F949831701DB0FE143CBE4F7E829513] ()
system.sav -> C:\WINDOWS\system32\config\system.sav -> [2004/08/26 06:53:18 | 000,864,256 | ---- | M | MD5 = DC4E908C6C9F617F1034264807F82B17] ()
Invalid Environment Variable: system
Invalid Environment Variable: system
Invalid Environment Variable: system
Invalid Environment Variable: system
< %SYSTEMDRIVE%\*.* >
2.txt -> C:\2.txt -> [2005/06/09 01:08:09 | 000,000,428 | ---- | M | MD5 = BF8EA4C84D0CA20EE70E4044F70D1DD8] ()
aolconnfix.exe -> C:\aolconnfix.exe -> [2005/12/05 20:18:11 | 000,010,920 | ---- | M | MD5 = 9AC90A2EBE7C1C0AF0C122C39CAA6766] ()
aolconnfix.txt -> C:\aolconnfix.txt -> [2005/12/05 20:18:11 | 000,001,039 | ---- | M | MD5 = C9D45A0D92145EE3FC11756B624833BC] ()
ASLog.txt -> C:\ASLog.txt -> [2007/07/04 10:41:39 | 000,025,380 | ---- | M | MD5 = 815570FF79FCBE7F98F85B95667FC230] ()
AUTOEXEC.BAT -> C:\AUTOEXEC.BAT -> [2009/12/31 22:19:51 | 000,000,100 | ---- | M | MD5 = E7EB038D6FFE32C75E0509E5212358E1] ()
blooddoner.jpg -> C:\blooddoner.jpg -> [2007/11/21 16:02:26 | 000,018,943 | ---- | M | MD5 = 5F70E6118754548D7E56289021310D71] ()
bold.log -> C:\bold.log -> [2008/11/04 13:00:43 | 000,007,798 | ---- | M | MD5 = 1375C5CBF8A4306202B7A64E44893A5C] ()
boot.ini -> C:\boot.ini -> [2005/06/09 00:52:42 | 000,000,211 | -HS- | M | MD5 = 17D7055859D99A0D606CFAF17AE38638] ()
Brxpinst.log -> C:\Brxpinst.log -> [2007/09/30 19:32:27 | 000,000,025 | ---- | M | MD5 = DD28E0475AB4D823CCC23C24DDC446A5] ()
CLDMA.LOG -> C:\CLDMA.LOG -> [2007/03/18 18:52:20 | 000,007,475 | R--- | M | MD5 = E3FA45BC699E2207153DFC36C041C7A3] ()
CONFIG.SYS -> C:\CONFIG.SYS -> [2004/08/26 14:04:39 | 000,000,000 | ---- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
crossblood.jpg -> C:\crossblood.jpg -> [2007/11/21 16:06:04 | 000,015,265 | ---- | M | MD5 = 6C7F2CB7F17BDC89DBAE75C68E806987] ()
hiberfil.sys -> C:\hiberfil.sys -> [2010/04/07 19:24:39 | 526,192,640 | -HS- | M | Unable to obtain MD5] ()
home.html -> C:\home.html -> [2006/06/12 21:17:50 | 000,002,206 | ---- | M | MD5 = F5E84E3818ECD15F46DE5664453C5C22] ()
IO.SYS -> C:\IO.SYS -> [2004/08/26 14:04:39 | 000,000,000 | RHS- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
MSDOS.SYS -> C:\MSDOS.SYS -> [2004/08/26 14:04:39 | 000,000,000 | RHS- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
NTDETECT.COM -> C:\NTDETECT.COM -> [2004/08/04 15:00:00 | 000,047,564 | RHS- | M | MD5 = B2DE3452DE03674C6CEC68B8C8CE7C78] ()
ntldr -> C:\ntldr -> [2010/01/11 11:55:14 | 000,250,048 | RHS- | M | MD5 = C1B29B4E6EEA9510610DB2EC4D6DB160] ()
OPCUploaderLog - II.txt -> C:\OPCUploaderLog - II.txt -> [2006/04/06 00:55:34 | 000,515,399 | ---- | M | MD5 = 7ACFCFA7ABDA7554938EC33C1525707A] ()
OPCUploaderLog.txt -> C:\OPCUploaderLog.txt -> [2006/04/06 00:55:34 | 000,250,816 | ---- | M | MD5 = 66D753CA5D37CE459D876F3FA4B957F8] ()
pagefile.sys -> C:\pagefile.sys -> [2010/04/07 19:24:38 | 792,723,456 | -HS- | M | Unable to obtain MD5] ()
playground.log -> C:\playground.log -> [2009/08/09 14:24:03 | 000,011,258 | ---- | M | MD5 = DC7F51D0E22457B00FE4ECECC4817ADE] ()
rapport.txt -> C:\rapport.txt -> [2009/12/23 20:34:05 | 000,002,318 | ---- | M | MD5 = 22B0F54EF9184279A1D8C5E1029FE182] ()
RtlAudio_Result.txt -> C:\RtlAudio_Result.txt -> [2005/06/09 00:32:37 | 000,000,391 | ---- | M | MD5 = 4DCE85F0A591EAE06C0F9E0EF382F1F7] ()
SmartInstaller.log -> C:\SmartInstaller.log -> [2004/10/30 10:41:53 | 000,000,118 | ---- | M | MD5 = CA3D0FB16D0CD55DD932C512BD74EF94] ()
SOSbackup.bak -> C:\SOSbackup.bak -> [2008/04/02 22:07:03 | 023,939,584 | ---- | M | MD5 = 63F5506F2E264B24200A4CE5B6BCCFCC] ()
VETlog.dmp -> C:\VETlog.dmp -> [2009/12/23 09:17:48 | 000,052,654 | ---- | M | MD5 = BF8F990BD16A5CE438093BE04A9E0033] ()
VETlog.txt -> C:\VETlog.txt -> [2009/12/23 09:17:48 | 006,631,194 | ---- | M | MD5 = 4C5B52C2450BDC2EEA5A3BD60F5A82DC] ()
YServer.txt -> C:\YServer.txt -> [2007/09/30 20:01:14 | 000,000,150 | ---- | M | MD5 = 0F51071DD915A8FEFE64AB3895EA31A7] ()
ZFCMAIL1.C -> C:\ZFCMAIL1.C -> [2007/08/18 13:47:34 | 000,004,942 | ---- | M | MD5 = 29F48083DF06C5E29B6F82586A7FCE34] ()
ZFCMAIL2.C -> C:\ZFCMAIL2.C -> [2007/08/18 13:47:34 | 000,000,715 | ---- | M | MD5 = 6A431D6DAC39BB2EA8C729C301C4C2AD] ()
< %PROGRAMFILES%\*. >
3ivx -> C:\Program Files\3ivx -> [2007/10/11 20:44:49 | 000,000,000 | ---D | M]
Adobe -> C:\Program Files\Adobe -> [2007/07/25 21:45:48 | 000,000,000 | ---D | M]
Ahead -> C:\Program Files\Ahead -> [2005/06/09 00:35:41 | 000,000,000 | ---D | M]
Alawar -> C:\Program Files\Alawar -> [2006/08/06 14:39:45 | 000,000,000 | ---D | M]
All Video Converter -> C:\Program Files\All Video Converter -> [2007/07/11 18:42:59 | 000,000,000 | ---D | M]
Amazon -> C:\Program Files\Amazon -> [2009/11/27 13:53:38 | 000,000,000 | ---D | M]
America Online 9.0b -> C:\Program Files\America Online 9.0b -> [2006/12/07 12:31:00 | 000,000,000 | ---D | M]
America Online 9.0c -> C:\Program Files\America Online 9.0c -> [2007/12/22 15:53:05 | 000,000,000 | ---D | M]
Any FLV Player -> C:\Program Files\Any FLV Player -> [2008/01/01 13:38:33 | 000,000,000 | ---D | M]
AOD -> C:\Program Files\AOD -> [2006/09/27 00:36:38 | 000,000,000 | ---D | M]
AOL -> C:\Program Files\AOL -> [2007/12/28 01:10:10 | 000,000,000 | ---D | M]
AOL Deskbar -> C:\Program Files\AOL Deskbar -> [2006/06/20 15:07:10 | 000,000,000 | ---D | M]
AOL Email Toolbar -> C:\Program Files\AOL Email Toolbar -> [2009/11/11 12:14:59 | 000,000,000 | ---D | M]
AOL Toolbar -> C:\Program Files\AOL Toolbar -> [2006/09/25 18:40:15 | 000,000,000 | ---D | M]
AOP -> C:\Program Files\AOP -> [2009/06/16 12:16:43 | 000,000,000 | ---D | M]
Apple Software Update -> C:\Program Files\Apple Software Update -> [2009/08/22 12:47:57 | 000,000,000 | ---D | M]
ArcSoft -> C:\Program Files\ArcSoft -> [2006/02/09 17:27:20 | 000,000,000 | ---D | M]
Atari -> C:\Program Files\Atari -> [2005/06/11 19:30:08 | 000,000,000 | ---D | M]
Audible -> C:\Program Files\Audible -> [2009/06/09 22:31:51 | 000,000,000 | ---D | M]
AvantGo -> C:\Program Files\AvantGo -> [2007/07/11 18:40:32 | 000,000,000 | ---D | M]
BigFix -> C:\Program Files\BigFix -> [2007/03/18 20:15:21 | 000,000,000 | ---D | M]
Blaster -> C:\Program Files\Blaster -> [2006/04/28 12:05:42 | 000,000,000 | ---D | M]
BlasterClassics -> C:\Program Files\BlasterClassics -> [2006/04/28 12:07:25 | 000,000,000 | ---D | M]
bobyte -> C:\Program Files\bobyte -> [2007/08/26 22:44:09 | 000,000,000 | ---D | M]
Bonjour -> C:\Program Files\Bonjour -> [2009/08/22 12:53:07 | 000,000,000 | ---D | M]
BookMark Designer -> C:\Program Files\BookMark Designer -> [2009/12/15 13:45:51 | 000,000,000 | ---D | M]
Brighter Child -> C:\Program Files\Brighter Child -> [2006/04/23 10:43:53 | 000,000,000 | ---D | M]
Brother -> C:\Program Files\Brother -> [2007/09/30 19:26:30 | 000,000,000 | ---D | M]
Brownie -> C:\Program Files\Brownie -> [2006/12/20 10:59:49 | 000,000,000 | ---D | M]
Canon -> C:\Program Files\Canon -> [2006/04/28 12:22:14 | 000,000,000 | ---D | M]
Canon Creative -> C:\Program Files\Canon Creative -> [2006/12/20 12:49:34 | 000,000,000 | ---D | M]
Carbonite -> C:\Program Files\Carbonite -> [2009/12/31 22:20:03 | 000,000,000 | ---D | M]
CDBurnerXP Pro 3 -> C:\Program Files\CDBurnerXP Pro 3 -> [2006/12/18 21:20:16 | 000,000,000 | ---D | M]
Citrix -> C:\Program Files\Citrix -> [2005/12/22 17:39:16 | 000,000,000 | ---D | M]
Common Files -> C:\Program Files\Common Files -> [2010/02/25 14:10:38 | 000,000,000 | ---D | M]
ComPlus Applications -> C:\Program Files\ComPlus Applications -> [2004/08/26 14:01:27 | 000,000,000 | ---D | M]
CONEXANT -> C:\Program Files\CONEXANT -> [2005/06/09 00:25:36 | 000,000,000 | ---D | M]
ConWare -> C:\Program Files\ConWare -> [2007/11/15 19:09:49 | 000,000,000 | ---D | M]
Crack -> C:\Program Files\Crack -> [2009/06/05 21:58:46 | 000,000,000 | ---D | M]
CyberLink -> C:\Program Files\CyberLink -> [2008/01/01 13:53:48 | 000,000,000 | ---D | M]
Davidson -> C:\Program Files\Davidson -> [2005/06/16 14:32:32 | 000,000,000 | ---D | M]
DebugMode -> C:\Program Files\DebugMode -> [2007/08/31 12:13:18 | 000,000,000 | ---D | M]
DIFX -> C:\Program Files\DIFX -> [2009/01/17 01:04:41 | 000,000,000 | ---D | M]
Digital Media Reader -> C:\Program Files\Digital Media Reader -> [2005/06/09 00:39:30 | 000,000,000 | ---D | M]
directx -> C:\Program Files\directx -> [2006/01/16 14:11:07 | 000,000,000 | ---D | M]
Disney Interactive -> C:\Program Files\Disney Interactive -> [2005/11/23 15:51:32 | 000,000,000 | ---D | M]
DivX -> C:\Program Files\DivX -> [2008/09/24 19:49:06 | 000,000,000 | ---D | M]
DK Interactive Learning -> C:\Program Files\DK Interactive Learning -> [2005/09/01 12:07:56 | 000,000,000 | ---D | M]
DKXP -> C:\Program Files\DKXP -> [2005/09/01 12:14:44 | 000,000,000 | ---D | M]
e-Sword -> C:\Program Files\e-Sword -> [2005/12/20 02:09:56 | 000,000,000 | ---D | M]
eMusic Download Manager -> C:\Program Files\eMusic Download Manager -> [2009/01/21 01:21:55 | 000,000,000 | ---D | M]
Enersoft -> C:\Program Files\Enersoft -> [2007/08/28 17:32:34 | 000,000,000 | ---D | M]
EPSON Software -> C:\Program Files\EPSON Software -> [2005/06/09 18:04:40 | 000,000,000 | ---D | M]
Fisher-Price -> C:\Program Files\Fisher-Price -> [2006/04/28 12:03:55 | 000,000,000 | ---D | M]
FTP Explorer -> C:\Program Files\FTP Explorer -> [2008/04/02 09:34:37 | 000,000,000 | ---D | M]
GameSpy Arcade -> C:\Program Files\GameSpy Arcade -> [2007/02/24 16:48:16 | 000,000,000 | ---D | M]
GIMP-2.0 -> C:\Program Files\GIMP-2.0 -> [2007/11/14 20:51:35 | 000,000,000 | ---D | M]
Google -> C:\Program Files\Google -> [2008/03/24 09:30:26 | 000,000,000 | ---D | M]
Henty -> C:\Program Files\Henty -> [2005/09/28 11:57:22 | 000,000,000 | ---D | M]
High Achiever Grammar -> C:\Program Files\High Achiever Grammar -> [2010/04/02 19:24:21 | 000,000,000 | ---D | M]
homeworkhelp -> C:\Program Files\homeworkhelp -> [2010/01/07 20:49:48 | 000,000,000 | ---D | M]
illiminable -> C:\Program Files\illiminable -> [2007/08/26 11:31:50 | 000,000,000 | ---D | M]
IMSI -> C:\Program Files\IMSI -> [2005/06/16 14:03:37 | 000,000,000 | ---D | M]
InstallShield Installation Information -> C:\Program Files\InstallShield Installation Information -> [2010/01/18 16:32:56 | 000,000,000 | -H-D | M]
Intel -> C:\Program Files\Intel -> [2005/06/09 00:27:47 | 000,000,000 | ---D | M]
InterActual -> C:\Program Files\InterActual -> [2005/10/27 09:16:54 | 000,000,000 | ---D | M]
Internet Explorer -> C:\Program Files\Internet Explorer -> [2010/03/31 11:01:27 | 000,000,000 | ---D | M]
iPod -> C:\Program Files\iPod -> [2009/08/22 12:53:42 | 000,000,000 | ---D | M]
iTunes -> C:\Program Files\iTunes -> [2009/08/22 12:54:15 | 000,000,000 | ---D | M]
IVCsoft -> C:\Program Files\IVCsoft -> [2007/08/28 10:05:29 | 000,000,000 | ---D | M]
Java -> C:\Program Files\Java -> [2009/12/30 21:44:31 | 000,000,000 | ---D | M]
Knowledge Adventure -> C:\Program Files\Knowledge Adventure -> [2006/04/28 12:04:29 | 000,000,000 | ---D | M]
Linksador -> C:\Program Files\Linksador -> [2008/12/13 19:31:01 | 000,000,000 | ---D | M]
Malwarebytes' Anti-Malware -> C:\Program Files\Malwarebytes' Anti-Malware -> [2010/04/06 22:14:46 | 000,000,000 | ---D | M]
MathFlash12 -> C:\Program Files\MathFlash12 -> [2008/04/02 09:35:27 | 000,000,000 | ---D | M]
McAfee -> C:\Program Files\McAfee -> [2010/04/07 11:34:02 | 000,000,000 | ---D | M]
McAfee.com -> C:\Program Files\McAfee.com -> [2008/11/07 21:22:37 | 000,000,000 | ---D | M]
Messenger -> C:\Program Files\Messenger -> [2010/01/11 12:34:33 | 000,000,000 | ---D | M]
Microsoft ActiveSync -> C:\Program Files\Microsoft ActiveSync -> [2008/01/01 13:50:34 | 000,000,000 | ---D | M]
microsoft frontpage -> C:\Program Files\microsoft frontpage -> [2004/08/26 14:04:52 | 000,000,000 | ---D | M]
Microsoft Money -> C:\Program Files\Microsoft Money -> [2005/06/09 00:33:24 | 000,000,000 | ---D | M]
Microsoft Office -> C:\Program Files\Microsoft Office -> [2009/01/17 01:04:25 | 000,000,000 | ---D | M]
Microsoft Picture It! 9 -> C:\Program Files\Microsoft Picture It! 9 -> [2005/09/10 04:59:27 | 000,000,000 | ---D | M]
Microsoft Reader -> C:\Program Files\Microsoft Reader -> [2005/09/12 13:32:28 | 000,000,000 | ---D | M]
Microsoft Silverlight -> C:\Program Files\Microsoft Silverlight -> [2010/03/01 09:37:18 | 000,000,000 | ---D | M]
Microsoft SQL Server -> C:\Program Files\Microsoft SQL Server -> [2008/04/02 12:21:14 | 000,000,000 | ---D | M]
Microsoft Visual Studio .NET 2003 -> C:\Program Files\Microsoft Visual Studio .NET 2003 -> [2009/06/16 12:17:38 | 000,000,000 | ---D | M]
Microsoft Works -> C:\Program Files\Microsoft Works -> [2005/09/10 04:59:27 | 000,000,000 | ---D | M]
Movie Maker -> C:\Program Files\Movie Maker -> [2010/03/11 12:07:19 | 000,000,000 | ---D | M]
Mozilla Firefox -> C:\Program Files\Mozilla Firefox -> [2010/04/07 20:01:23 | 000,000,000 | ---D | M]
mp3DirectCut -> C:\Program Files\mp3DirectCut -> [2007/08/01 20:45:25 | 000,000,000 | ---D | M]
MSBuild -> C:\Program Files\MSBuild -> [2008/04/11 15:56:52 | 000,000,000 | ---D | M]
MSN -> C:\Program Files\MSN -> [2004/08/26 14:00:08 | 000,000,000 | ---D | M]
MSN Encarta Plus -> C:\Program Files\MSN Encarta Plus -> [2005/09/10 04:59:27 | 000,000,000 | ---D | M]
MSN Gaming Zone -> C:\Program Files\MSN Gaming Zone -> [2004/08/26 14:00:22 | 000,000,000 | ---D | M]
MSXML 4.0 -> C:\Program Files\MSXML 4.0 -> [2006/11/15 22:19:16 | 000,000,000 | ---D | M]
MSXML 6.0 -> C:\Program Files\MSXML 6.0 -> [2008/04/11 15:43:58 | 000,000,000 | ---D | M]
NCH Swift Sound -> C:\Program Files\NCH Swift Sound -> [2007/08/26 23:30:57 | 000,000,000 | ---D | M]
Netflix -> C:\Program Files\Netflix -> [2008/07/31 21:26:49 | 000,000,000 | ---D | M]
NetMeeting -> C:\Program Files\NetMeeting -> [2010/01/11 11:57:01 | 000,000,000 | ---D | M]
Online Services -> C:\Program Files\Online Services -> [2004/08/26 14:02:22 | 000,000,000 | ---D | M]
OpenOffice.org 2.4 -> C:\Program Files\OpenOffice.org 2.4 -> [2008/05/20 22:43:29 | 000,000,000 | ---D | M]
Out of the Park Developments -> C:\Program Files\Out of the Park Developments -> [2006/07/18 20:22:03 | 000,000,000 | ---D | M]
Outlook Express -> C:\Program Files\Outlook Express -> [2010/01/11 12:25:00 | 000,000,000 | ---D | M]
OverDrive Media Console -> C:\Program Files\OverDrive Media Console -> [2006/12/25 16:42:58 | 000,000,000 | ---D | M]
Paint Shop Pro -> C:\Program Files\Paint Shop Pro -> [2008/01/01 13:52:25 | 000,000,000 | ---D | M]
PDFCreator -> C:\Program Files\PDFCreator -> [2008/03/06 18:05:58 | 000,000,000 | ---D | M]
Peretek -> C:\Program Files\Peretek -> [2007/08/25 12:42:49 | 000,000,000 | ---D | M]
PhonicsTutor Classic Demo -> C:\Program Files\PhonicsTutor Classic Demo -> [2006/01/19 23:24:14 | 000,000,000 | ---D | M]
Photo Story 3 for Windows -> C:\Program Files\Photo Story 3 for Windows -> [2006/11/25 23:44:41 | 000,000,000 | ---D | M]
Photo Toolkit -> C:\Program Files\Photo Toolkit -> [2008/11/04 15:17:11 | 000,000,000 | ---D | M]
Photo Viewer -> C:\Program Files\Photo Viewer -> [2009/03/30 18:10:44 | 000,000,000 | ---D | M]
PlayFirst -> C:\Program Files\PlayFirst -> [2009/08/17 12:53:52 | 000,000,000 | ---D | M]
PlayLinc -> C:\Program Files\PlayLinc -> [2006/09/22 21:28:42 | 000,000,000 | ---D | M]
Powerbullet -> C:\Program Files\Powerbullet -> [2007/08/31 12:10:44 | 000,000,000 | ---D | M]
Pure Networks -> C:\Program Files\Pure Networks -> [2005/06/09 00:35:03 | 000,000,000 | ---D | M]
QuickTime -> C:\Program Files\QuickTime -> [2009/08/22 12:52:23 | 000,000,000 | ---D | M]
Radialpoint -> C:\Program Files\Radialpoint -> [2008/11/05 15:38:37 | 000,000,000 | ---D | M]
RCA -> C:\Program Files\RCA -> [2007/08/26 11:29:23 | 000,000,000 | ---D | M]
Real -> C:\Program Files\Real -> [2009/09/17 19:36:57 | 000,000,000 | ---D | M]
Realtek -> C:\Program Files\Realtek -> [2005/06/09 00:32:20 | 000,000,000 | ---D | M]
Reference Assemblies -> C:\Program Files\Reference Assemblies -> [2008/04/11 15:55:37 | 000,000,000 | ---D | M]
ReflexiveArcade -> C:\Program Files\ReflexiveArcade -> [2009/08/08 23:35:40 | 000,000,000 | ---D | M]
Research In Motion -> C:\Program Files\Research In Motion -> [2009/05/05 18:02:19 | 000,000,000 | ---D | M]
ResumeMaker -> C:\Program Files\ResumeMaker -> [2006/06/19 20:31:00 | 000,000,000 | ---D | M]
robinson -> C:\Program Files\robinson -> [2005/09/28 11:40:38 | 000,000,000 | ---D | M]
Samsung -> C:\Program Files\Samsung -> [2008/01/04 12:51:24 | 000,000,000 | ---D | M]
ScanSoft -> C:\Program Files\ScanSoft -> [2007/09/30 19:21:52 | 000,000,000 | ---D | M]
Schoolhouse Technologies -> C:\Program Files\Schoolhouse Technologies -> [2008/04/02 09:38:09 | 000,000,000 | ---D | M]
Seagate -> C:\Program Files\Seagate -> [2009/12/31 22:21:48 | 000,000,000 | ---D | M]
Serif -> C:\Program Files\Serif -> [2008/11/04 15:16:36 | 000,000,000 | ---D | M]
Showoff Home Design -> C:\Program Files\Showoff Home Design -> [2009/06/22 19:57:51 | 000,000,000 | ---D | M]
Shutterfly -> C:\Program Files\Shutterfly -> [2008/11/04 15:15:01 | 000,000,000 | ---D | M]
Sibelius Software -> C:\Program Files\Sibelius Software -> [2009/03/22 18:05:34 | 000,000,000 | ---D | M]
Sienna -> C:\Program Files\Sienna -> [2005/06/15 17:51:56 | 000,000,000 | ---D | M]
Sony -> C:\Program Files\Sony -> [2010/02/25 14:10:32 | 000,000,000 | ---D | M]
Sony Corporation -> C:\Program Files\Sony Corporation -> [2007/12/19 14:26:16 | 000,000,000 | ---D | M]
SopCast -> C:\Program Files\SopCast -> [2008/09/13 22:32:52 | 000,000,000 | ---D | M]
Spybot - Search & Destroy -> C:\Program Files\Spybot - Search & Destroy -> [2005/12/30 15:13:24 | 000,000,000 | ---D | M]
Startwrite -> C:\Program Files\Startwrite -> [2005/06/09 15:55:18 | 000,000,000 | ---D | M]
sz8040 -> C:\Program Files\sz8040 -> [2006/04/28 12:03:45 | 000,000,000 | ---D | M]
TGHome -> C:\Program Files\TGHome -> [2005/06/23 08:09:36 | 000,000,000 | ---D | M]
The Learning Company -> C:\Program Files\The Learning Company -> [2006/09/13 15:49:24 | 000,000,000 | ---D | M]
TrendMicro -> C:\Program Files\TrendMicro -> [2009/12/24 22:51:43 | 000,000,000 | ---D | M]
Uninstall Information -> C:\Program Files\Uninstall Information -> [2008/04/02 12:21:40 | 000,000,000 | -H-D | M]
Veetle -> C:\Program Files\Veetle -> [2010/04/04 20:14:36 | 000,000,000 | ---D | M]
Verizon -> C:\Program Files\Verizon -> [2008/11/05 15:39:36 | 000,000,000 | ---D | M]
Verizon Online -> C:\Program Files\Verizon Online -> [2006/09/22 21:33:16 | 000,000,000 | ---D | M]
VTech Laptop PC Program -> C:\Program Files\VTech Laptop PC Program -> [2010/01/18 16:33:05 | 000,000,000 | ---D | M]
VTrain -> C:\Program Files\VTrain -> [2005/09/09 17:54:02 | 000,000,000 | ---D | M]
VZBB Toolbar -> C:\Program Files\VZBB Toolbar -> [2006/09/22 21:26:56 | 000,000,000 | ---D | M]
Wal-Mart Music Downloads Store -> C:\Program Files\Wal-Mart Music Downloads Store -> [2008/11/04 12:13:58 | 000,000,000 | ---D | M]
WallData -> C:\Program Files\WallData -> [2005/12/22 17:40:09 | 000,000,000 | ---D | M]
Winamp -> C:\Program Files\Winamp -> [2007/03/18 20:14:03 | 000,000,000 | ---D | M]
Windows Media Connect 2 -> C:\Program Files\Windows Media Connect 2 -> [2007/05/25 19:47:49 | 000,000,000 | ---D | M]
Windows Media Player -> C:\Program Files\Windows Media Player -> [2010/01/11 11:56:58 | 000,000,000 | ---D | M]
Windows NT -> C:\Program Files\Windows NT -> [2010/01/11 11:56:58 | 000,000,000 | ---D | M]
WindowsUpdate -> C:\Program Files\WindowsUpdate -> [2004/08/26 14:02:28 | 000,000,000 | -H-D | M]
xerox -> C:\Program Files\xerox -> [2004/08/26 14:04:52 | 000,000,000 | ---D | M]
Yahoo! -> C:\Program Files\Yahoo! -> [2009/01/17 12:50:39 | 000,000,000 | ---D | M]
< %appdata%\*.* >
$_hpcst$.hpc -> C:\Documents and Settings\Owner\Application Data\$_hpcst$.hpc -> [2007/05/08 20:58:07 | 000,002,508 | ---- | M | MD5 = 34C248554041DAF0E157EF20F3117771] ()
1c64-ec47-1438-983d_6279rc -> C:\Documents and Settings\Owner\Application Data\1c64-ec47-1438-983d_6279rc -> [2009/01/17 14:30:43 | 000,000,562 | ---- | M | MD5 = 7509EF7A0E493610A433F979EA0BCA66] ()
desktop.ini -> C:\Documents and Settings\Owner\Application Data\desktop.ini -> [2004/08/26 06:54:35 | 000,000,062 | -HS- | M | MD5 = 88CF0FF92A4A9FA7BD9B7513B2E9E22B] ()
GDIPFONTCACHEV1.DAT -> C:\Documents and Settings\Owner\Application Data\GDIPFONTCACHEV1.DAT -> [2010/02/06 10:06:21 | 000,119,776 | ---- | M | MD5 = 199654E9488E6A8C6F7A3582B18939E7] ()
ntl.ini -> C:\Documents and Settings\Owner\Application Data\ntl.ini -> [2006/07/08 10:52:12 | 000,000,032 | ---- | M | MD5 = B724854571D7F6A34E5BE284123096A6] ()
ViewerApp.dat -> C:\Documents and Settings\Owner\Application Data\ViewerApp.dat -> [2007/08/02 09:43:46 | 000,001,664 | ---- | M | MD5 = C7EFBC08936FA2FB4FF21E44973E3CA2] ()
wklnhst.dat -> C:\Documents and Settings\Owner\Application Data\wklnhst.dat -> [2009/11/17 21:00:02 | 000,004,210 | ---- | M | MD5 = 1EF0843BE712CE31D9CC543BCE274FB8] ()

[Alternate Data Streams]
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:82591FF7
@Alternate Data Stream - 291 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:39964175
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Owner\My Documents\mssefullinstall-x86fre-en-us-xp.exe:SummaryInformation
< End of report >
[/code]

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by Dr Jay on Thu Apr 08, 2010 3:14 am

I notice you are running some programs that might distribute malware: (If you would like to remove them, do so via Start > Control Panel > Add or Remove Programs)
WildTangent
Viewpoint
Wyzo
AOL Toolbar (tracker)

==========================

I see you are running uTorrent, a P2P application. I suggest to read the following, and then decided whether you want to keep it or not: [You must be registered and logged in to see this link.]

==========================

Please download the newest version of Adobe Acrobat Reader from [You must be registered and logged in to see this link.]

Before installing: it is important to remove older versions of Acrobat Reader since it does not do so automatically and old versions still leave you vulnerable.
Go to the Control Panel and enter Add or Remove Programs (Programs and Features in Vista/7).
Search in the list for all previous installed versions of Adobe Acrobat Reader. Uninstall/Remove each of them.

Once old versions are gone, please install the newest version.

==

Please download the newest version of Java from [You must be registered and logged in to see this link.].

Before installing: it is important to remove older versions of Java since it does not do so automatically and old versions still leave you vulnerable.
Go to the Control Panel and enter Add or Remove Programs (Programs and Features in Vista/7).
Search in the list for all previous installed versions of Java. (J2SE Runtime Environment). Please uninstall/remove each of them.

Once old versions are gone, please install the newest version.

==

Remove these old versions of these programs, please via Control Panel > Add or Remove Programs:

Adobe Flash Player 9
Internet Explorer 7

==

Firefox is out of date. Firefox is a very popular web browser, and if it is out of date, it is very vulnerable to security bugs, and other holes. To update it now, click Help > Check for Updates.

==

OpenOffice.org is out of date. Sometimes old programs can get vulnerabilities.

I recommend to download and install the new version: [You must be registered and logged in to see this link.]

==========================

Start OTS. Copy/Paste the information in the quotebox below into the panel where it says "Paste fix here" and then click the Run Fix button.

[Unregister Dlls]
[Processes - Safe List]
YY -> runservice.exe -> C:\WINDOWS\Runservice.exe
[Modules - Safe List]
YY -> pivejehu.dll -> C:\WINDOWS\system32\pivejehu.dll
[Registry - Safe List]
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
YN -> {ca3a50d1-1be1-452e-9cea-1122de2dd222} [HKLM] -> [Reg Error: Value error.]
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
YN -> "Easy Dock" -> []
YN -> "mavuzodoja" -> [Rundll32.exe "sujegaru.dll",s]
< Trusted Sites Domains [HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\] > -> HKEY_USERS\S-1-5-21-4075189608-1584886648-645440501-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\
YN -> objects_aol.com [*] -> Out of zone range - ( 5 )
YN -> internet .[about] -> Trusted sites
YN -> mcafee.com .[http] -> Trusted sites
YN -> mcafee.com .[https] -> Trusted sites
YN -> *.update_microsoft.com [http] -> Trusted sites
YN -> *.update_microsoft.com [https] -> Trusted sites
YN -> update_microsoft.com [http] -> Trusted sites
YN -> update_microsoft.com [https] -> Trusted sites
YN -> west.com .[*] -> Trusted sites
YN -> download_windowsupdate.com [http] -> Trusted sites
YN -> workathomeagent.com .[*] -> Trusted sites
YN -> workathomeagent.net .[*] -> Trusted sites
YN -> connect_workathomeagent.net [*] -> Trusted sites
< AppInit_DLLs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
*AppInit_DLLs* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls
YY -> c:\windows\system32\pivejehu.dll -> C:\WINDOWS\system32\pivejehu.dll
YN -> hafatipo.dll ->
< AppInit_DLLs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
YY -> "{8cf1f80d-101b-45d8-971b-16ac88469286}" [HKLM] -> C:\WINDOWS\system32\pivejehu.dll [zihewojeg]
< SharedTaskScheduler [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
YY -> "{8cf1f80d-101b-45d8-971b-16ac88469286}" [HKLM] -> C:\WINDOWS\system32\pivejehu.dll [gahurihor]
< Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List
YY -> "E:\INSTALL.EXE" -> E:\INSTALL.EXE [E:\INSTALL.EXE:*:Enabled:INSTALL]
YY -> "F:\INSTALL.EXE" -> F:\INSTALL.EXE [F:\INSTALL.EXE:*:Enabled:INSTALL]
YY -> "F:\Updater.exe" -> F:\Updater.exe [F:\Updater.exe:*:Enabled:Updater]
< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2
YN -> \D ->
YN -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\Shell ->
YN -> \D\Shell\\"" -> [AutoRun]
YN -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\Shell\AutoRun ->
YN -> \D\Shell\AutoRun\\"" -> [Auto&Play]
YN -> \{6f478f8e-7818-11dc-9fbd-00038a000015} ->
YN -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\AutoRun\command ->
YY -> \{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\AutoRun\command\\"" -> L:\system\viewer\Viewer.exe [L:\system\viewer\Viewer.exe]
YN -> \{6f478f8e-7818-11dc-9fbd-00038a000015} ->
YN -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\View your videos\command ->
YY -> \{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\View your videos\command\\"" -> L:\system\viewer\Viewer.exe [L:\system\viewer\Viewer.exe]
[Files/Folders - Modified Within 90 Days]
NY -> exmxvybc.job -> C:\WINDOWS\tasks\exmxvybc.job
[Files - No Company Name]
NY -> exmxvybc.job -> C:\WINDOWS\tasks\exmxvybc.job
[File - Lop Check]
NY -> exmxvybc.job -> C:\WINDOWS\Tasks\exmxvybc.job
[Alternate Data Streams]
NY -> @Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:82591FF7
NY -> @Alternate Data Stream - 291 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:39964175
NY -> @Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Owner\My Documents\mssefullinstall-x86fre-en-us-xp.exe:SummaryInformation
[Empty Temp Folders]
[EmptyFlash]
[CreateRestorePoint]
[Reboot]

The fix should only take a very short time. When the fix is completed a message box will popup telling you that it is finished. Click the Ok button and Notepad will open with a log of actions taken during the fix. Post that information back here.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13716
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302112
# Likes # Likes : 10

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Thu Apr 08, 2010 11:45 pm

Here is the Log

All Processes Killed
[Processes - Safe List]
No active process named runservice.exe was found!
C:\WINDOWS\Runservice.exe moved successfully.
[Modules - Safe List]
[Registry - Safe List]
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ca3a50d1-1be1-452e-9cea-1122de2dd222}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ca3a50d1-1be1-452e-9cea-1122de2dd222}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Easy Dock deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\mavuzodoja deleted successfully.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\objects_aol.com\ not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\internet not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mcafee.com not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\mcafee.com not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\microsoft.com\*.update not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\microsoft.com\*.update not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\microsoft.com\update not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\microsoft.com\update not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\west.com not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\*\ not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\windowsupdate.com\download not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\workathomeagent.com not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\*\ not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\workathomeagent.net not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\*\ not found.
Registry key HKEY_USERS\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\workathomeagent.net\connect not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\*\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\windows\system32\pivejehu.dll deleted successfully.
File C:\WINDOWS\system32\pivejehu.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:hafatipo.dll deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\zihewojeg not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8cf1f80d-101b-45d8-971b-16ac88469286}\ not found.
File C:\WINDOWS\system32\pivejehu.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\\{8cf1f80d-101b-45d8-971b-16ac88469286} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8cf1f80d-101b-45d8-971b-16ac88469286}\ not found.
File C:\WINDOWS\system32\pivejehu.dll not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\E:\INSTALL.EXE deleted successfully.
File E:\INSTALL.EXE not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\F:\INSTALL.EXE deleted successfully.
File F:\INSTALL.EXE not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\F:\Updater.exe deleted successfully.
File F:\Updater.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\Shell\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\Shell not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\Shell\AutoRun\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\Shell\AutoRun not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6f478f8e-7818-11dc-9fbd-00038a000015}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6f478f8e-7818-11dc-9fbd-00038a000015}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\AutoRun\command\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\AutoRun\command not found.
File L:\system\viewer\Viewer.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6f478f8e-7818-11dc-9fbd-00038a000015}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6f478f8e-7818-11dc-9fbd-00038a000015}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\View your videos\command\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6f478f8e-7818-11dc-9fbd-00038a000015}\Shell\View your videos\command not found.
File L:\system\viewer\Viewer.exe not found.
[Files/Folders - Modified Within 90 Days]
File C:\WINDOWS\tasks\exmxvybc.job not found!
[Files - No Company Name]
File C:\WINDOWS\tasks\exmxvybc.job not found!
[File - Lop Check]
File C:\WINDOWS\Tasks\exmxvybc.job not found!
[Alternate Data Streams]
ADS C:\Documents and Settings\All Users\Application Data\TEMP:82591FF7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:39964175 deleted successfully.
ADS C:\Documents and Settings\Owner\My Documents\mssefullinstall-x86fre-en-us-xp.exe:SummaryInformation deleted successfully.
[Empty Temp Folders]


User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: LocalService
->Temp folder emptied: 65716 bytes
->Temporary Internet Files folder emptied: 14220751 bytes
->FireFox cache emptied: 4729646 bytes
->Flash cache emptied: 1243 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 108908490 bytes
->Flash cache emptied: 2461 bytes

User: Owner
->Temp folder emptied: 323762594 bytes
->Temporary Internet Files folder emptied: 50967798 bytes
->Java cache emptied: 111996200 bytes
->FireFox cache emptied: 74324739 bytes
->Flash cache emptied: 2788179 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 19569 bytes
%systemroot%\System32 .tmp files removed: 3811857 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 116424453 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 23950630 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 1381707763 bytes

Total Files Cleaned = 2,115.00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService
->Flash cache emptied: 0 bytes

User: NetworkService
->Flash cache emptied: 0 bytes

User: Owner
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb

Cannot create restore point. Unable to start SRService service!
< End of fix log >
OTS by OldTimer - Version 3.1.28.0 fix logfile created on 04082010_192313

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\YNM6730W\Sport_ProBase;MN=93190561;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;rm=1;inc=2;r155=1;r20=1;chl=1;mar=1;hme=2;r1=1;r2=1;r9=1;r39=1;r74=1;r224=1;chn=1;pmi=[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\YNM6730W\Sport_ProBase;MN=93222017;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;rm=1;inc=2;r155=1;r20=1;chl=1;mar=1;hme=2;r1=1;r2=1;r9=1;r39=1;r74=1;r224=1;chn=1;pmi=[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\YNM6730W\tile=33661807&site=network2&channel=nochannel&subchannel=nosubchannel&tanproduct=eteamz&b2borb2c=b2c&feature=eteamz_sites&subfeature1=home&subfeature2=nosubfeature2&subfeat[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\CLQD0TGB\Sport_Golf;MN=93221243;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;rm=1;inc=2;r155=1;r20=1;chl=1;mar=1;hme=2;r1=1;r2=1;r9=1;r39=1;r74=1;r224=1;chn=1;pmi=63;[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\CLQD0TGB\Sport_ProBase;MN=93190560;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;rm=1;inc=2;r155=1;r20=1;chl=1;mar=1;hme=2;r1=1;r2=1;r9=1;r39=1;r74=1;r224=1;chn=1;pmi=[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\CLQD0TGB\Sport_ProFoot;MN=93221236;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;rsi=10707;rsi=10698;rsi=10363;rm=1;inc=2;r155=1;r20=1;chl=1;mar=1;hme=2;r1=1;r2=1;r9=1[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\C9MBINAR\click,bQIAAJRWAAAa8QQAsjkDAAIAC[1].aspx%26dcpc%3D07306%26ge%3D1%26dcel%3D1%26moc%3D101287%26dccl%3D13%26mil%3D0%26state%3D54%26tileid%3D6972%26lid%3D534%26adsp%3Dc,;ord=1197895244 not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\C9MBINAR\Sport_Golf;MN=93190624;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;rm=1;inc=2;r155=1;r20=1;chl=1;mar=1;hme=2;r1=1;r2=1;r9=1;r39=1;r74=1;r224=1;chn=1;pmi=63;[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\C9MBINAR\tile=33661807&site=network2&channel=nochannel&subchannel=nosubchannel&tanproduct=eteamz&b2borb2c=b2c&feature=eteamz_sites&subfeature1=home&subfeature2=nosubfeature2&subfeat[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\0DAH6VCP\Sport_ProBase;MN=93233766;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;rm=1;inc=2;r155=1;r20=1;chl=1;mar=1;hme=2;r1=1;r2=1;r9=1;r39=1;r74=1;r224=1;chn=1;pmi=[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\0DAH6VCP\Sport_ProFoot;MN=93190552;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;rsi=10707;rsi=10698;rsi=10363;rm=1;inc=2;r155=1;r20=1;chl=1;mar=1;hme=2;r1=1;r2=1;r9=1[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\0DAH6VCP\tile=33661807&site=network2&channel=nochannel&subchannel=nosubchannel&tanproduct=eteamz&b2borb2c=b2c&feature=eteamz_sites&subfeature1=home&subfeature2=nosubfeature2&subfeat[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\X4SZP9G5\site=mons&affiliate=mons&app=js&size=240x60&pp=3&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\X4SZP9G5\Type=click&FlightID=123093&AdID=162687&TargetID=29091&Segments=4,1987,2214,13546,13617,13905,15912,15954,15980,16982,17637,18054,18944,19056,19830,19895,20015,20717,20726,[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\V7HZJL4W\site=mons&affiliate=mons&app=js&size=240x40&pp=7&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\V7HZJL4W\site=mons&affiliate=mons&app=js&size=240x60&pp=2&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\V7HZJL4W\site=mons&affiliate=mons&app=js&size=240x60&pp=4&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\V7HZJL4W\site=mons&affiliate=mons&app=js&size=728x90&pp=1&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\UBUR65QB\site=mons&affiliate=mons&app=js&size=160x300&pp=1&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\UBUR65QB\site=mons&affiliate=mons&app=js&size=160x90&pp=1&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\UBUR65QB\site=mons&affiliate=mons&app=js&size=160x90&pp=2&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\UBUR65QB\site=mons&affiliate=mons&app=js&size=240x40&pp=5&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\ORSYFQ00\site=mons&affiliate=mons&app=js&size=160x90&pp=2&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\ORSYFQ00\site=mons&affiliate=mons&app=js&size=160x90&pp=3&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\ORSYFQ00\site=mons&affiliate=mons&app=js&size=240x40&pp=5&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\ORSYFQ00\Type=click&FlightID=123093&AdID=162687&TargetID=29091&Segments=4,1987,2214,13546,13617,13905,15912,15954,15980,16982,17637,18054,18944,19056,19830,19895,20015,20717,20726,[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\OHEFGHUJ\site=mons&affiliate=mons&app=js&size=160x600&pp=1&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\OHEFGHUJ\site=mons&affiliate=mons&app=js&size=240x40&pp=5&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\OHEFGHUJ\Sport_ProBase;MN=93190562;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;sg1=15;sg2=9;chl=1;chn=1;inc=2;mar=1;hme=2;pmi=5;ten=1273;clv=4156;aol=1;r13=1;r20=1;[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\OHEFGHUJ\Type=click&FlightID=123093&AdID=162687&TargetID=29091&Segments=4,1987,2214,13546,13617,13905,15912,15954,15980,16982,17637,18054,18944,19056,19830,19895,20015,20717,20726,[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\O92FGHYN\site=mons&affiliate=mons&app=js&size=240x40&pp=6&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\O92FGHYN\site=mons&affiliate=mons&app=js&size=240x60&pp=2&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\MH3OHSVU\site=mons&affiliate=mons&app=js&size=240x40&pp=6&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\MH3OHSVU\site=mons&affiliate=mons&app=js&size=240x60&pp=4&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\KXUJ85UN\site=mons&affiliate=mons&app=js&size=240x40&pp=7&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\KXUJ85UN\site=mons&affiliate=mons&app=js&size=240x40&pp=8&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\KXUJ85UN\site=mons&affiliate=mons&app=js&size=240x40&pp=8&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[2].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\K5A3S5AV\site=mons&affiliate=mons&app=js&size=240x60&pp=3&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\K5A3S5AV\site=mons&affiliate=mons&app=js&size=728x90&pp=1&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\K3376OHT\site=mons&affiliate=mons&app=js&size=160x90&pp=1&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\K3376OHT\site=mons&affiliate=mons&app=js&size=240x40&pp=8&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\G9IJ0DMN\site=mons&affiliate=mons&app=js&size=160x300&pp=1&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&s[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\G9IJ0DMN\site=mons&affiliate=mons&app=js&size=160x90&pp=3&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\G9IJ0DMN\site=mons&affiliate=mons&app=js&size=240x40&pp=5&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\G9IJ0DMN\site=mons&affiliate=mons&app=js&size=240x60&pp=2&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[2].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\G9IJ0DMN\site=mons&affiliate=mons&app=js&size=240x60&pp=3&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CDIRKPQB\site=mons&affiliate=mons&app=js&size=160x300&pp=1&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CDIRKPQB\site=mons&affiliate=mons&app=js&size=160x90&pp=1&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CDIRKPQB\site=mons&affiliate=mons&app=js&size=240x60&pp=1&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CDIRKPQB\site=mons&affiliate=mons&app=js&size=240x60&pp=2&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CDIRKPQB\Type=click&FlightID=123093&AdID=162687&TargetID=29091&Segments=4,1987,2214,13546,13617,13905,15912,15954,15980,16982,17637,18054,18944,19056,19830,19895,20015,20717,20726,[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\8XYZ0167\site=mons&affiliate=mons&app=js&size=160x600&pp=1&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&s[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\8XYZ0167\Sport_News;MN=93197707;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;sg1=15;sg2=9;chl=1;chn=1;inc=2;mar=1;hme=2;pmi=5;ten=1273;clv=4156;aol=1;r13=1;r20=1;r38[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\8XYZ0167\Sport_ProBase;MN=93190561;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;sg1=15;sg2=9;chl=1;chn=1;inc=2;mar=1;hme=2;pmi=5;ten=1273;clv=4156;aol=1;r13=1;r20=1;[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\81I3K96F\site=mons&affiliate=mons&app=js&size=160x600&pp=1&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=10128[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\81I3K96F\site=mons&affiliate=mons&app=js&size=240x40&pp=8&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\81I3K96F\site=mons&affiliate=mons&app=js&size=240x60&pp=1&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\81I3K96F\Sport_ProBase;MN=93190560;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;sg1=15;sg2=9;chl=1;chn=1;inc=2;mar=1;hme=2;pmi=5;ten=1273;clv=4156;aol=1;r13=1;r20=1;[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\5VIPFQ52\site=mons&affiliate=mons&app=js&size=160x90&pp=2&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\5VIPFQ52\site=mons&affiliate=mons&app=js&size=160x90&pp=3&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\5VIPFQ52\Type=click&FlightID=123093&AdID=162687&TargetID=29091&Segments=4,1987,2214,13546,13617,13905,15912,15954,15980,16982,17637,18054,18944,19056,19830,19895,20015,20717,20726,[1] not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4XUZ8XEN\site=mons&affiliate=mons&app=js&size=160x90&pp=1&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4XUZ8XEN\site=mons&affiliate=mons&app=js&size=160x90&pp=2&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4XUZ8XEN\site=mons&affiliate=mons&app=js&size=160x90&pp=3&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[2].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4XUZ8XEN\site=mons&affiliate=mons&app=js&size=240x40&pp=7&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4XUZ8XEN\site=mons&affiliate=mons&app=js&size=240x60&pp=1&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4XUZ8XEN\site=mons&affiliate=mons&app=js&size=240x60&pp=4&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4V17YEB5\site=mons&affiliate=mons&app=js&size=240x40&pp=7&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\0X2VW12V\site=mons&affiliate=mons&app=js&size=240x40&pp=6&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\0X2VW12V\site=mons&affiliate=mons&app=js&size=240x40&pp=6&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\0L6RSTE3\site=mons&affiliate=mons&app=js&size=160x300&pp=1&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=10128[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\0L6RSTE3\site=mons&affiliate=mons&app=js&size=240x60&pp=1&path=%2Fjobsearch%2Easp&lid=&cy=US&st=&ci=&cid=&lv=&key=ajilon&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&st[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\0L6RSTE3\site=mons&affiliate=mons&app=js&size=240x60&pp=4&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\0L6RSTE3\site=mons&affiliate=mons&app=js&size=728x90&pp=1&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=44&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&sta[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\01KHQ7SL\site=mons&affiliate=mons&app=js&size=160x600&pp=1&path=%2Fjobsearch%2Easp&lid=&cy=&st=&ci=&cid=&lv=&key=&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287&mil=0&ge=0&state=54[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\01KHQ7SL\site=mons&affiliate=mons&app=js&size=240x60&pp=3&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\01KHQ7SL\site=mons&affiliate=mons&app=js&size=728x90&pp=1&path=%2Fjobsearch%2Easp&lid=534&cy=US&st=&ci=&cid=&lv=&key=retail+management&zip=&ct=&dccl=13&dcpc=07306&dcel=1&moc=101287[1].htm not found!
File\Folder C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\01KHQ7SL\Sport_News;MN=93190550;dcg=00C01C8A;dclu2=A933513D28E2A577;u=333CB5D905CA1B8C;wm=o;sg1=15;sg2=9;chl=1;chn=1;inc=2;mar=1;hme=2;pmi=5;ten=1273;clv=4156;aol=1;r13=1;r20=1;r38[1] not found!
File\Folder C:\WINDOWS\temp\mcuA26.tmp\vsoins.inf not found!
File\Folder C:\WINDOWS\temp\mcmsc_6qPe9UwjFPi4v24 not found!
File\Folder C:\WINDOWS\temp\mcmsc_qP1ewXfIrISBMes not found!
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_780.dat not found!

Registry entries deleted on Reboot...

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by Dr Jay on Fri Apr 09, 2010 3:53 am

Please visit this webpage for a tutorial on downloading and running ComboFix:

[You must be registered and logged in to see this link.]

See the area: Using ComboFix, and when done, post the log back here.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13716
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302112
# Likes # Likes : 10

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Fri Apr 09, 2010 11:01 pm

ComboFix 10-04-08.06 - Owner 04/09/2010 18:23:55.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.502.148 [GMT -4:00]
Running from: c:\documents and settings\Owner\Desktop\ComboFix.exe
AV: McAfee VirusScan *On-access scanning disabled* (Updated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Personal Firewall *disabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\bold.log
c:\documents and settings\Owner\Shortcut to .360Share.lnk
c:\program files\Internet Explorer\msimg32.dll
c:\recycler\S-1-5-21-149320165-2150893164-3376811988-1003
c:\windows\eSellerateEngine.dll
c:\windows\system32\404Fix.exe
c:\windows\system32\Agent.OMZ.Fix.exe
c:\windows\system32\csftxctl.ocx
c:\windows\system32\dakomira.dll
c:\windows\system32\dumphive.exe
c:\windows\system32\gokehama.dll
c:\windows\system32\guniyiyu.dll
c:\windows\system32\hafatipo.dll
c:\windows\system32\IEDFix.C.exe
c:\windows\system32\IEDFix.exe
c:\windows\system32\Ijl11.dll
c:\windows\system32\jonefede.dll
c:\windows\system32\kakijigu.dll
c:\windows\system32\lilawaka.dll
c:\windows\system32\o4Patch.exe
c:\windows\system32\SrchSTS.exe
c:\windows\system32\sujegaru.dll
c:\windows\system32\tikiyabu.dll
c:\windows\system32\tmp.reg
c:\windows\system32\VACFix.exe
c:\windows\system32\VCCLSID.exe
c:\windows\system32\wiwirira.dll
c:\windows\system32\WS2Fix.exe
c:\windows\system32\yegusaso.dll
c:\windows\system32\zeyoheko.dll
c:\windows\system32\zlibwapi.dll
c:\windows\Tasks\kobwvkgb.job
D:\Autorun.inf

.
((((((((((((((((((((((((( Files Created from 2010-03-09 to 2010-04-09 )))))))))))))))))))))))))))))))
.

2010-04-08 23:23 . 2010-04-08 23:23 -------- d-----w- C:\_OTS
2010-04-07 01:52 . 2009-09-10 18:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-07 01:52 . 2010-04-07 02:14 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-07 01:52 . 2009-09-10 18:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-05 00:13 . 2010-04-05 00:14 -------- d-----w- c:\program files\Veetle
2010-03-11 14:26 . 2009-10-23 15:28 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-09 22:41 . 2008-05-21 16:19 -------- d-----w- c:\documents and settings\Owner\Application Data\OpenOffice.org2
2010-04-09 22:41 . 2009-11-14 02:16 -------- d-----w- c:\program files\Common Files\Akamai
2010-04-08 22:44 . 2008-11-07 21:44 -------- d-----w- c:\program files\McAfee
2010-04-08 22:05 . 2006-07-19 00:23 2169 --sha-w- c:\windows\system32\mmf.sys
2010-04-06 20:04 . 2007-11-15 01:14 -------- d-----w- c:\documents and settings\Owner\Application Data\gtk-2.0
2010-04-02 23:24 . 2010-01-08 00:44 -------- d-----w- c:\program files\High Achiever Grammar
2010-03-01 13:37 . 2008-08-12 12:23 -------- d-----w- c:\program files\Microsoft Silverlight
2010-02-25 18:12 . 2010-02-25 18:12 -------- d-----w- c:\documents and settings\Owner\Application Data\Sony Corporation
2010-02-25 18:10 . 2010-02-25 18:10 -------- d-----w- c:\program files\Common Files\Sony Shared
2010-02-25 18:10 . 2010-02-25 18:00 -------- d-----w- c:\program files\Sony
2010-02-25 06:24 . 2004-08-26 16:12 916480 ----a-w- c:\windows\system32\wininet.dll
2010-01-11 16:40 . 2005-06-09 19:36 119776 ----a-w- c:\documents and settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-01-06 21:36 . 2010-01-06 21:36 96256 --sha-w- c:\windows\system32\jolaneki.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater"="c:\windows\system32\Adobe\Shockwave 11\SwHelper_1150596.exe" [2009-04-29 468408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2002-09-13 212992]
"CHotkey"="zHotkey.exe" [2004-05-18 543232]
"ShowWnd"="ShowWnd.exe" [2003-09-19 36864]
"High Definition Audio Property Page Shortcut"="HDAudPropShortcut.exe" [2004-03-17 61952]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2004-08-20 155648]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2004-08-20 118784]
"SunKistEM"="c:\program files\Digital Media Reader\shwiconem.exe" [2004-10-18 135168]
"SoundMan"="SOUNDMAN.EXE" [2004-09-24 77824]
"AlcWzrd"="ALCWZRD.EXE" [2004-09-25 2559488]
"Microsoft Works Update Detection"="c:\program files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe" [2003-06-07 50688]
"HostManager"="c:\program files\Common Files\AOL\1127605169\ee\AOLSoftware.exe" [2006-09-26 50736]
"Pure Networks Port Magic"="c:\progra~1\PURENE~1\PORTMA~1\PortAOL.exe" [2004-05-07 99480]
"AOLDialer"="c:\program files\Common Files\AOL\ACS\AOLDial.exe" [2006-10-23 71216]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-10-14 155648]
"PaperPort PTD"="c:\program files\ScanSoft\PaperPort\pptd40nt.exe" [2005-03-17 57393]
"IndexSearch"="c:\program files\ScanSoft\PaperPort\IndexSearch.exe" [2005-03-17 40960]
"BrMfcWnd"="c:\program files\Brother\Brmfcmon\BrMfcWnd.exe" [2006-06-28 622592]
"SetDefPrt"="c:\program files\Brother\Brmfl06a\BrStDvPt.exe" [2005-01-26 49152]
"ControlCenter3"="c:\program files\Brother\ControlCenter3\brctrcen.exe" [2006-06-29 77824]
"VerizonServicepoint.exe"="c:\program files\Verizon\VSP\VerizonServicepoint.exe" [2007-11-16 2065648]
"mcagent_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2009-10-29 1218008]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-07-13 292128]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-17 198160]
"McAfee Backup"="c:\program files\McAfee\MBK\McAfeeDataBackup.exe" [2009-07-09 5134864]
"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 63712]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-12-31 149280]
"CarboniteSetupLite"="c:\program files\Carbonite\CarbonitePreinstaller.exe" [2009-08-04 318096]
"MaxMenuMgr"="c:\program files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" [2009-09-26 185640]
"ContentTransferWMDetector.exe"="c:\program files\Sony\Content Transfer\ContentTransferWMDetector.exe" [2009-07-30 497000]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2008-4-23 29696]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
Service Manager.lnk - c:\program files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe [2002-12-17 74308]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"=
"c:\\WINDOWS\\system32\\java.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Common Files\\AOL\\TopSpeed\\2.0\\aoltsmon.exe"=
"c:\\Program Files\\Common Files\\AOL\\TopSpeed\\2.0\\aoltpspd.exe"=
"c:\\Program Files\\Common Files\\AOL\\1127605169\\ee\\AOLServiceHost.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"c:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe"=
"c:\\Program Files\\Common Files\\AolCoach\\en_en\\player\\AOLNySEV.exe"=
"c:\\Program Files\\America Online 9.0c\\waol.exe"=
"c:\\Program Files\\Common Files\\AOL\\1127605169\\ee\\aolsoftware.exe"=
"c:\\Program Files\\Common Files\\AOL\\1127605169\\ee\\aim6.exe"=
"c:\\Program Files\\SopCast\\SopCast.exe"=
"c:\\Documents and Settings\\Owner\\Application Data\\SopCast\\adv\\SopAdver.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Common Files\\McAfee\\MNA\\McNASvc.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1038:TCP"= 1038:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface

R2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe -k Akamai [8/26/2004 12:12 PM 14336]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [9/26/2009 12:32 AM 189736]
S2 0173251270766774mcinstcleanup;McAfee Application Installer Cleanup (0173251270766774);c:\windows\TEMP\017325~1.EXE c:\progra~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service --> c:\windows\TEMP\017325~1.EXE c:\progra~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service [?]
S2 LicCtrlService;LicCtrl Service;c:\windows\runservice.exe --> c:\windows\runservice.exe [?]
S3 CA500AI;D-Link, WDM Still Image Capture, Version 1.00;c:\windows\system32\Drivers\MinBULK.sys --> c:\windows\system32\Drivers\MinBULK.sys [?]
S3 CA500AV;D-Link, WDM Video Capture;c:\windows\system32\DRIVERS\CA500AV.SYS --> c:\windows\system32\DRIVERS\CA500AV.SYS [?]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Contents of the 'Scheduled Tasks' folder

2010-04-03 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 16:34]

2010-01-15 c:\windows\Tasks\McDefragTask.job
- c:\progra~1\mcafee\mqc\QcConsol.exe [2008-11-08 16:22]

2010-03-01 c:\windows\Tasks\McQcTask.job
- c:\progra~1\mcafee\mqc\QcConsol.exe [2008-11-08 16:22]
.
.
------- Supplementary Scan -------
.
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride =
IE: &AOL Email Toolbar Search - c:\documents and settings\All Users\Application Data\AOL Email Toolbar\ieToolbar\resources\en-US\local\search.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office10\EXCEL.EXE/3000
Trusted Zone: internet
Trusted Zone: mcafee.com
Trusted Zone: microsoft.com\*.update
Trusted Zone: microsoft.com\update
Trusted Zone: west.com
Trusted Zone: windowsupdate.com\download
Trusted Zone: workathomeagent.com
Trusted Zone: workathomeagent.net
Trusted Zone: workathomeagent.net\connect
DPF: {13149882-F480-4F6B-8C6A-0764F75B99ED} - [You must be registered and logged in to see this link.]
DPF: {195B4BBF-E1E4-4020-9773-0A8C6F65EA35} - [You must be registered and logged in to see this link.]
DPF: {26E6B759-DEEB-42A1-A21C-78CD29098411} - [You must be registered and logged in to see this link.]
DPF: {4EC99A0B-E57C-4FBE-B9C4-8428424FBF88} - [You must be registered and logged in to see this link.]
DPF: {B7A59580-B39D-4BF9-B968-1BFA25156691} - [You must be registered and logged in to see this link.]
DPF: {C6D25826-96AE-462F-A852-BB33B882B723} - [You must be registered and logged in to see this link.]
DPF: {E9B80D94-D8BB-43CC-9138-75605A8D9666} - [You must be registered and logged in to see this link.]
DPF: {F135A813-7152-4532-AC8D-28AC2136DFC7} - [You must be registered and logged in to see this link.]
DPF: {F89EF74A-956B-4BD3-A066-4F23DF891982} - [You must be registered and logged in to see this link.]
FF - ProfilePath - c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\ee1z34lm.default\
FF - prefs.js: browser.startup.homepage - [You must be registered and logged in to see this link.]
FF - component: c:\program files\real\realplayer\browserrecord\firefox\ext\components\nprpffbrowserrecordext.dll
FF - plugin: c:\documents and settings\Owner\Application Data\Move Networks\plugins\npqmp071505000010.dll
FF - plugin: c:\documents and settings\Owner\Application Data\Move Networks\plugins\npqmp071701000002.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npmozax.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npqtplugin8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npunagi2.dll
FF - plugin: c:\program files\QuickTime\Plugins\npqtplugin8.dll
FF - plugin: c:\program files\Veetle\Player\npvlc.dll
FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll
FF - plugin: c:\program files\Veetle\VLCBroadcast\npvbp.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
.
- - - - ORPHANS REMOVED - - - -

BHO-{ca3a50d1-1be1-452e-9cea-1122de2dd222} - jonefede.dll
HKCU-Run-EzineExpress - c:\documents and settings\Owner\My Documents\LivingBooksEXPRESS.exe
HKCU-Run-I&F Viewer toolbar - c:\program files\Photo Toolkit\ivbar\phototoolkitmem.exe
HKLM-Run-mavuzodoja - sujegaru.dll
HKLM-Run-saboyefif - c:\windows\system32\lilawaka.dll
SharedTaskScheduler-{3ef97252-4f50-49cc-9af3-70a432956dd6} - c:\windows\system32\jileyemu.dll
SharedTaskScheduler-{a593689c-68a6-451c-992f-5120ff944842} - c:\windows\system32\lilawaka.dll
SSODL-nuwipufuh-{3ef97252-4f50-49cc-9af3-70a432956dd6} - c:\windows\system32\jileyemu.dll
SSODL-zizovikaf-{a593689c-68a6-451c-992f-5120ff944842} - c:\windows\system32\lilawaka.dll
AddRemove-Game Console - WildGames - c:\program files\WildGames\Game Console - WildGames\Uninstall.exe
AddRemove-WildTangent wildgames Master Uninstall - c:\program files\WildGames\Uninstall.exe
AddRemove-WT060144 - c:\program files\WildGames\Penguins!\Uninstall.exe
AddRemove-WT064234 - c:\program files\WildGames\Sportball Challenge\Uninstall.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [You must be registered and logged in to see this link.]
Rootkit scan 2010-04-09 18:44
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\software\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \F3F0046F119EFA4F]
"1"=hex:97,5e,49,d3,7c,a0,18,18,10,c9,e3,e3,c1,ae,57,ed,c2,97,86,6a,a5,82,f8,
d5,42,54,3b,7e,24,3e,19,f8
"2"=hex:f1,df,16,de,80,08,0e,2a,d1,38,b5,6f,94,ca,dc,d2,b3,e8,d2,40,6c,6f,61,
5e,d2,5e,7f,21,14,b5,b2,29
"3"=hex:97,5e,49,d3,7c,a0,18,18,10,c9,e3,e3,c1,ae,57,ed,c2,97,86,6a,a5,82,f8,
d5,f2,55,76,c8,bc,53,92,25,3f,d1,b6,bc,00,35,73,43,96,90,79,f6,5b,97,35,47,\

[HKEY_LOCAL_MACHINE\software\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \F3F0046F119EFA4F\3A71B9BC7A708556C64E1FFE8777C71C]
"1"=hex:c0,52,20,b1,47,91,30,5f,58,6a,ea,d4,ff,71,4b,c6,a8,87,6f,5a,78,c6,5d,
5b,22,26,64,2f,88,eb,a4,7b
"2"=hex:ec,dc,99,df,a4,fc,c3,72
"3"=hex:0b,27,90,2f,eb,78,a8,c3,e6,d7,db,d5,1a,87,7f,00,73,26,ea,ff,c2,2a,a3,
11,f3,6e,98,59,87,03,79,7c,fc,14,fb,79,e5,20,c2,ea,32,cc,99,7a,d7,7c,55,15,\
"4"=hex:3d,90,51,aa,32,34,90,25
"5"=hex:bf,e5,23,7b,b0,66,d6,fc,b8,e8,6b,a0,96,52,f7,32,80,09,8f,24,b7,b3,55,
1a,98,d1,47,16,02,43,61,1c,b9,d5,8f,2a,7b,81,b1,fb,95,22,f8,b3,2c,53,9d,ae,\
"6"=hex:bf,e5,23,7b,b0,66,d6,fc,bc,64,22,fb,7e,d3,39,3e,a3,00,33,13,c0,21,f4,
51,6c,4e,0c,96,e2,dd,ad,8a,b6,c4,05,e8,5a,bd,9a,e9,d4,1a,3d,68,9d,00,32,20
"7"=hex:9c,0f,26,c5,43,55,e2,9e,79,40,de,a7,ca,bc,f3,99,99,4d,91,38,55,4f,0b,
a5,8f,9b,e5,fc,d6,5f,45,dd,f6,df,ab,53,85,3c,a2,16,6d,58,d5,44,e1,b2,db,fb,\
"8"=hex:9d,9e,b2,b9,a7,a5,f4,ae,4d,29,c2,a3,c0,78,c4,c5,6b,8d,dd,0b,84,72,f6,
f2,3d,a6,3c,a0,07,7d,db,f3,88,a8,6c,3f,5c,60,94,94,50,c0,20,2f,ff,27,64,21,\
"9"=hex:81,20,8f,ab,28,6a,52,9c
"18"=hex:70,56,26,33,e3,20,f8,ab
"10"=hex:3d,7b,8c,93,7f,aa,3a,8c
"11"=hex:81,20,8f,ab,28,6a,52,9c
"12"=hex:81,20,8f,ab,28,6a,52,9c
"13"=hex:81,20,8f,ab,28,6a,52,9c
"14"=hex:81,20,8f,ab,28,6a,52,9c
"24"=hex:81,20,8f,ab,28,6a,52,9c
"26"=hex:81,20,8f,ab,28,6a,52,9c
"27"=hex:81,20,8f,ab,28,6a,52,9c
"19"=hex:81,20,8f,ab,28,6a,52,9c
"22"=hex:81,20,8f,ab,28,6a,52,9c
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'explorer.exe'(3648)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Common Files\aolshare\aolshcpy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Common Files\AOL\ACS\AOLAcsd.exe
c:\program files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe
c:\windows\system32\bgsvcgen.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\zHotkey.exe
c:\windows\SOUNDMAN.EXE
c:\windows\ALCWZRD.EXE
c:\progra~1\VERIZO~1\HELPSU~1\VERIZO~1.EXE
c:\program files\Brother\Brmfl06a\FAXRX.exe
c:\documents and settings\Owner\My Documents\RCA Detective\RCADetective.exe
c:\progra~1\McAfee\MSC\mcmscsvc.exe
c:\program files\OpenOffice.org 2.4\program\soffice.exe
c:\program files\OpenOffice.org 2.4\program\soffice.BIN
c:\progra~1\COMMON~1\mcafee\mna\mcnasvc.exe
c:\progra~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
c:\progra~1\McAfee\VIRUSS~1\mcshield.exe
c:\program files\McAfee\MPF\MPFSrv.exe
c:\program files\Microsoft SQL Server\MSSQL$SOSHOME22\Binn\sqlservr.exe
c:\program files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
c:\program files\iPod\bin\iPodService.exe
c:\program files\Common Files\Verizon Online\ConnMgr\cmisrv.exe
c:\progra~1\McAfee\VIRUSS~1\mcsysmon.exe
c:\program files\common files\aol\1127605169\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe
c:\program files\Common Files\Verizon Online\AppMgr\vzOpenUIServer.exe
c:\windows\system32\wscntfy.exe
c:\progra~1\mcafee\VIRUSS~1\mcvsshld.exe
c:\progra~1\mcafee\VIRUSS~1\mcvsmap.exe
.
**************************************************************************
.
Completion time: 2010-04-09 19:01:56 - machine was rebooted
ComboFix-quarantined-files.txt 2010-04-09 23:01

Pre-Run: 104,205,504,512 bytes free
Post-Run: 104,006,688,768 bytes free

WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

- - End Of File - - 5EF33DE22D939ABA9480A241E4EEB888

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by Dr Jay on Sat Apr 10, 2010 4:03 am

Re-running ComboFix to remove infections:

  • Close any open browsers.
  • Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
  • Open notepad and copy/paste the text in the box below into it:
    killall::

    File::
    c:\windows\system32\jolaneki.dll

    DDS::
    Trusted Zone: internet
    Trusted Zone: mcafee.com
    Trusted Zone: microsoft.com\*.update
    Trusted Zone: microsoft.com\update
    Trusted Zone: west.com
    Trusted Zone: windowsupdate.com\download
    Trusted Zone: workathomeagent.com
    Trusted Zone: workathomeagent.net
    Trusted Zone: workathomeagent.net\connect

    Rootkit::

    Reboot::
  • Save this as CFScript.txt, in the same location as ComboFix.exe



  • Referring to the picture above, drag CFScript into ComboFix.exe
  • When finished, it shall produce a log for you at C:\ComboFix.txt
  • Please post the contents of the log in your next reply.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13716
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302112
# Likes # Likes : 10

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Sat Apr 10, 2010 3:54 pm

ComboFix 10-04-09.06 - Owner 04/10/2010 11:30:08.2.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.502.228 [GMT -4:00]
Running from: c:\documents and settings\Owner\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Owner\Desktop\CFscript.txt
AV: McAfee VirusScan *On-access scanning disabled* (Updated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Personal Firewall *disabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}

FILE ::
"c:\windows\system32\jolaneki.dll"
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\jolaneki.dll
c:\windows\Temp\0318511270911703mcinst.exe

.
((((((((((((((((((((((((( Files Created from 2010-03-10 to 2010-04-10 )))))))))))))))))))))))))))))))
.

2010-04-08 23:23 . 2010-04-08 23:23 -------- d-----w- C:\_OTS
2010-04-07 01:52 . 2009-09-10 18:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-07 01:52 . 2010-04-07 02:14 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-07 01:52 . 2009-09-10 18:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-05 00:13 . 2010-04-05 00:14 -------- d-----w- c:\program files\Veetle

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-10 15:42 . 2009-11-14 02:16 -------- d-----w- c:\program files\Common Files\Akamai
2010-04-10 15:42 . 2008-05-21 16:19 -------- d-----w- c:\documents and settings\Owner\Application Data\OpenOffice.org2
2010-04-09 14:23 . 2010-03-27 13:46 439816 ----a-w- c:\documents and settings\Owner\Application Data\Real\Update\setup3.10\setup.exe
2010-04-08 22:44 . 2008-11-07 21:44 -------- d-----w- c:\program files\McAfee
2010-04-08 22:05 . 2006-07-19 00:23 2169 --sha-w- c:\windows\system32\mmf.sys
2010-04-06 20:04 . 2007-11-15 01:14 -------- d-----w- c:\documents and settings\Owner\Application Data\gtk-2.0
2010-04-02 23:24 . 2010-01-08 00:44 -------- d-----w- c:\program files\High Achiever Grammar
2010-03-01 13:37 . 2008-08-12 12:23 -------- d-----w- c:\program files\Microsoft Silverlight
2010-02-25 18:12 . 2010-02-25 18:12 -------- d-----w- c:\documents and settings\Owner\Application Data\Sony Corporation
2010-02-25 18:10 . 2010-02-25 18:10 -------- d-----w- c:\program files\Common Files\Sony Shared
2010-02-25 18:10 . 2010-02-25 18:00 -------- d-----w- c:\program files\Sony
2010-02-25 06:24 . 2004-08-26 16:12 916480 ------w- c:\windows\system32\wininet.dll
2010-01-11 16:40 . 2005-06-09 19:36 119776 ----a-w- c:\documents and settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-01-11 16:02 . 2004-08-26 18:03 76487 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater"="c:\windows\system32\Adobe\Shockwave 11\SwHelper_1150596.exe" [2009-04-29 468408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2002-09-13 212992]
"CHotkey"="zHotkey.exe" [2004-05-18 543232]
"ShowWnd"="ShowWnd.exe" [2003-09-19 36864]
"High Definition Audio Property Page Shortcut"="HDAudPropShortcut.exe" [2004-03-17 61952]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2004-08-20 155648]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2004-08-20 118784]
"SunKistEM"="c:\program files\Digital Media Reader\shwiconem.exe" [2004-10-18 135168]
"SoundMan"="SOUNDMAN.EXE" [2004-09-24 77824]
"AlcWzrd"="ALCWZRD.EXE" [2004-09-25 2559488]
"Microsoft Works Update Detection"="c:\program files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe" [2003-06-07 50688]
"HostManager"="c:\program files\Common Files\AOL\1127605169\ee\AOLSoftware.exe" [2006-09-26 50736]
"Pure Networks Port Magic"="c:\progra~1\PURENE~1\PORTMA~1\PortAOL.exe" [2004-05-07 99480]
"AOLDialer"="c:\program files\Common Files\AOL\ACS\AOLDial.exe" [2006-10-23 71216]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-10-14 155648]
"PaperPort PTD"="c:\program files\ScanSoft\PaperPort\pptd40nt.exe" [2005-03-17 57393]
"IndexSearch"="c:\program files\ScanSoft\PaperPort\IndexSearch.exe" [2005-03-17 40960]
"BrMfcWnd"="c:\program files\Brother\Brmfcmon\BrMfcWnd.exe" [2006-06-28 622592]
"SetDefPrt"="c:\program files\Brother\Brmfl06a\BrStDvPt.exe" [2005-01-26 49152]
"ControlCenter3"="c:\program files\Brother\ControlCenter3\brctrcen.exe" [2006-06-29 77824]
"VerizonServicepoint.exe"="c:\program files\Verizon\VSP\VerizonServicepoint.exe" [2007-11-16 2065648]
"mcagent_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2009-10-29 1218008]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-07-13 292128]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-09-17 198160]
"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 63712]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-12-31 149280]
"CarboniteSetupLite"="c:\program files\Carbonite\CarbonitePreinstaller.exe" [2009-08-04 318096]
"MaxMenuMgr"="c:\program files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" [2009-09-26 185640]
"ContentTransferWMDetector.exe"="c:\program files\Sony\Content Transfer\ContentTransferWMDetector.exe" [2009-07-30 497000]

c:\documents and settings\Owner\Start Menu\Programs\Startup\
FAXRX.lnk - c:\program files\Brother\Brmfl06a\FAXRX.exe [2007-9-30 499712]
OpenOffice.org 2.4.lnk - c:\program files\OpenOffice.org 2.4\program\quickstart.exe [2008-1-21 393216]
RCA Detective.lnk - c:\documents and settings\Owner\My Documents\RCA Detective\RCADetective.exe [2009-5-9 942592]
Seagate 2GEXMLG7 Product Registration.lnk - c:\documents and settings\Owner\Application Data\Leadertech\PowerRegister\Seagate 2GEXMLG7 Product Registration.exe [2009-12-31 1731736]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2008-4-23 29696]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
Service Manager.lnk - c:\program files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe [2002-12-17 74308]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"=
"c:\\WINDOWS\\system32\\java.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Common Files\\AOL\\TopSpeed\\2.0\\aoltsmon.exe"=
"c:\\Program Files\\Common Files\\AOL\\TopSpeed\\2.0\\aoltpspd.exe"=
"c:\\Program Files\\Common Files\\AOL\\1127605169\\ee\\AOLServiceHost.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"c:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe"=
"c:\\Program Files\\Common Files\\AolCoach\\en_en\\player\\AOLNySEV.exe"=
"c:\\Program Files\\America Online 9.0c\\waol.exe"=
"c:\\Program Files\\Common Files\\AOL\\1127605169\\ee\\aolsoftware.exe"=
"c:\\Program Files\\Common Files\\AOL\\1127605169\\ee\\aim6.exe"=
"c:\\Program Files\\SopCast\\SopCast.exe"=
"c:\\Documents and Settings\\Owner\\Application Data\\SopCast\\adv\\SopAdver.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Common Files\\McAfee\\MNA\\McNASvc.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1032:TCP"= 1032:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface

R2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe -k Akamai [8/26/2004 12:12 PM 14336]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [9/26/2009 12:32 AM 189736]
S2 0318511270911703mcinstcleanup;McAfee Application Installer Cleanup (0318511270911703);c:\windows\TEMP\031851~1.EXE c:\progra~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service --> c:\windows\TEMP\031851~1.EXE c:\progra~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service [?]
S2 LicCtrlService;LicCtrl Service;c:\windows\runservice.exe --> c:\windows\runservice.exe [?]
S3 CA500AI;D-Link, WDM Still Image Capture, Version 1.00;c:\windows\system32\Drivers\MinBULK.sys --> c:\windows\system32\Drivers\MinBULK.sys [?]
S3 CA500AV;D-Link, WDM Video Capture;c:\windows\system32\DRIVERS\CA500AV.SYS --> c:\windows\system32\DRIVERS\CA500AV.SYS [?]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Contents of the 'Scheduled Tasks' folder

2010-04-03 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 16:34]

2010-01-15 c:\windows\Tasks\McDefragTask.job
- c:\progra~1\mcafee\mqc\QcConsol.exe [2008-11-08 16:22]

2010-03-01 c:\windows\Tasks\McQcTask.job
- c:\progra~1\mcafee\mqc\QcConsol.exe [2008-11-08 16:22]
.
.
------- Supplementary Scan -------
.
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride =
IE: &AOL Email Toolbar Search - c:\documents and settings\All Users\Application Data\AOL Email Toolbar\ieToolbar\resources\en-US\local\search.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office10\EXCEL.EXE/3000
DPF: {13149882-F480-4F6B-8C6A-0764F75B99ED} - [You must be registered and logged in to see this link.]
DPF: {195B4BBF-E1E4-4020-9773-0A8C6F65EA35} - [You must be registered and logged in to see this link.]
DPF: {26E6B759-DEEB-42A1-A21C-78CD29098411} - [You must be registered and logged in to see this link.]
DPF: {4EC99A0B-E57C-4FBE-B9C4-8428424FBF88} - [You must be registered and logged in to see this link.]
DPF: {B7A59580-B39D-4BF9-B968-1BFA25156691} - [You must be registered and logged in to see this link.]
DPF: {C6D25826-96AE-462F-A852-BB33B882B723} - [You must be registered and logged in to see this link.]
DPF: {E9B80D94-D8BB-43CC-9138-75605A8D9666} - [You must be registered and logged in to see this link.]
DPF: {F135A813-7152-4532-AC8D-28AC2136DFC7} - [You must be registered and logged in to see this link.]
DPF: {F89EF74A-956B-4BD3-A066-4F23DF891982} - [You must be registered and logged in to see this link.]
FF - ProfilePath - c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\ee1z34lm.default\
FF - prefs.js: browser.startup.homepage - [You must be registered and logged in to see this link.]
FF - component: c:\program files\real\realplayer\browserrecord\firefox\ext\components\nprpffbrowserrecordext.dll
FF - plugin: c:\documents and settings\Owner\Application Data\Move Networks\plugins\npqmp071505000010.dll
FF - plugin: c:\documents and settings\Owner\Application Data\Move Networks\plugins\npqmp071701000002.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npmozax.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npunagi2.dll
FF - plugin: c:\program files\QuickTime\Plugins\npqtplugin8.dll
FF - plugin: c:\program files\Veetle\Player\npvlc.dll
FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll
FF - plugin: c:\program files\Veetle\VLCBroadcast\npvbp.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [You must be registered and logged in to see this link.]
Rootkit scan 2010-04-10 11:44
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\software\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \F3F0046F119EFA4F]
"1"=hex:97,5e,49,d3,7c,a0,18,18,10,c9,e3,e3,c1,ae,57,ed,c2,97,86,6a,a5,82,f8,
d5,42,54,3b,7e,24,3e,19,f8
"2"=hex:f1,df,16,de,80,08,0e,2a,d1,38,b5,6f,94,ca,dc,d2,b3,e8,d2,40,6c,6f,61,
5e,d2,5e,7f,21,14,b5,b2,29
"3"=hex:97,5e,49,d3,7c,a0,18,18,10,c9,e3,e3,c1,ae,57,ed,c2,97,86,6a,a5,82,f8,
d5,f2,55,76,c8,bc,53,92,25,3f,d1,b6,bc,00,35,73,43,96,90,79,f6,5b,97,35,47,\

[HKEY_LOCAL_MACHINE\software\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \F3F0046F119EFA4F\3A71B9BC7A708556C64E1FFE8777C71C]
"1"=hex:c0,52,20,b1,47,91,30,5f,58,6a,ea,d4,ff,71,4b,c6,a8,87,6f,5a,78,c6,5d,
5b,22,26,64,2f,88,eb,a4,7b
"2"=hex:ec,dc,99,df,a4,fc,c3,72
"3"=hex:0b,27,90,2f,eb,78,a8,c3,e6,d7,db,d5,1a,87,7f,00,73,26,ea,ff,c2,2a,a3,
11,f3,6e,98,59,87,03,79,7c,fc,14,fb,79,e5,20,c2,ea,32,cc,99,7a,d7,7c,55,15,\
"4"=hex:3d,90,51,aa,32,34,90,25
"5"=hex:bf,e5,23,7b,b0,66,d6,fc,b8,e8,6b,a0,96,52,f7,32,80,09,8f,24,b7,b3,55,
1a,98,d1,47,16,02,43,61,1c,b9,d5,8f,2a,7b,81,b1,fb,95,22,f8,b3,2c,53,9d,ae,\
"6"=hex:bf,e5,23,7b,b0,66,d6,fc,bc,64,22,fb,7e,d3,39,3e,a3,00,33,13,c0,21,f4,
51,6c,4e,0c,96,e2,dd,ad,8a,b6,c4,05,e8,5a,bd,9a,e9,d4,1a,3d,68,9d,00,32,20
"7"=hex:9c,0f,26,c5,43,55,e2,9e,79,40,de,a7,ca,bc,f3,99,99,4d,91,38,55,4f,0b,
a5,8f,9b,e5,fc,d6,5f,45,dd,f6,df,ab,53,85,3c,a2,16,6d,58,d5,44,e1,b2,db,fb,\
"8"=hex:9d,9e,b2,b9,a7,a5,f4,ae,4d,29,c2,a3,c0,78,c4,c5,6b,8d,dd,0b,84,72,f6,
f2,3d,a6,3c,a0,07,7d,db,f3,88,a8,6c,3f,5c,60,94,94,50,c0,20,2f,ff,27,64,21,\
"9"=hex:81,20,8f,ab,28,6a,52,9c
"18"=hex:70,56,26,33,e3,20,f8,ab
"10"=hex:3d,7b,8c,93,7f,aa,3a,8c
"11"=hex:81,20,8f,ab,28,6a,52,9c
"12"=hex:81,20,8f,ab,28,6a,52,9c
"13"=hex:81,20,8f,ab,28,6a,52,9c
"14"=hex:81,20,8f,ab,28,6a,52,9c
"24"=hex:81,20,8f,ab,28,6a,52,9c
"26"=hex:81,20,8f,ab,28,6a,52,9c
"27"=hex:81,20,8f,ab,28,6a,52,9c
"19"=hex:81,20,8f,ab,28,6a,52,9c
"22"=hex:81,20,8f,ab,28,6a,52,9c
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'explorer.exe'(1456)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Common Files\aolshare\aolshcpy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Common Files\AOL\ACS\AOLAcsd.exe
c:\program files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe
c:\windows\system32\bgsvcgen.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\zHotkey.exe
c:\windows\SOUNDMAN.EXE
c:\windows\ALCWZRD.EXE
c:\progra~1\VERIZO~1\HELPSU~1\VERIZO~1.EXE
c:\progra~1\McAfee\MSC\mcmscsvc.exe
c:\program files\OpenOffice.org 2.4\program\soffice.exe
c:\program files\OpenOffice.org 2.4\program\soffice.BIN
c:\program files\Common Files\Verizon Online\ConnMgr\cmisrv.exe
c:\progra~1\COMMON~1\mcafee\mna\mcnasvc.exe
c:\progra~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
c:\progra~1\McAfee\VIRUSS~1\mcshield.exe
c:\program files\McAfee\MPF\MPFSrv.exe
c:\program files\Microsoft SQL Server\MSSQL$SOSHOME22\Binn\sqlservr.exe
c:\program files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
c:\windows\system32\wscntfy.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\common files\aol\1127605169\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe
c:\program files\Common Files\Verizon Online\AppMgr\vzOpenUIServer.exe
.
**************************************************************************
.
Completion time: 2010-04-10 11:52:59 - machine was rebooted
ComboFix-quarantined-files.txt 2010-04-10 15:52
ComboFix2.txt 2010-04-09 23:01

Pre-Run: 103,948,922,880 bytes free
Post-Run: 103,910,719,488 bytes free

- - End Of File - - 880A99C9C636B08057D238826532870C

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by Dr Jay on Sat Apr 10, 2010 6:37 pm

Please run a free online scan with the [You must be registered and logged in to see this link.]
  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • When asked, allow the ActiveX control to install
  • Click Start
  • Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  • Click Scan (This scan can take several hours, so please be patient)
  • Once the scan is completed, you may close the window
  • Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  • Copy and paste that log as a reply to this topic


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13716
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302112
# Likes # Likes : 10

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Sat Apr 10, 2010 9:51 pm

ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=7
# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
# OnlineScanner.ocx=1.0.0.6211
# api_version=3.0.2
# EOSSerial=53fc7e83e840904ebb14e65be92f6953
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2010-04-10 09:42:20
# local_time=2010-04-10 05:42:20 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=5121 16776869 100 96 0 22937829 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=123378
# found=18
# cleaned=18
# scan_time=6636
C:\Qoobox\Quarantine\C\WINDOWS\system32\dakomira.dll.vir a variant of Win32/Adware.SuperJuan.U application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Qoobox\Quarantine\C\WINDOWS\system32\gokehama.dll.vir a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Qoobox\Quarantine\C\WINDOWS\system32\guniyiyu.dll.vir a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Qoobox\Quarantine\C\WINDOWS\system32\hafatipo.dll.vir a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Qoobox\Quarantine\C\WINDOWS\system32\jolaneki.dll.vir a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Qoobox\Quarantine\C\WINDOWS\system32\jonefede.dll.vir a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Qoobox\Quarantine\C\WINDOWS\system32\sujegaru.dll.vir a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Qoobox\Quarantine\C\WINDOWS\system32\wiwirira.dll.vir a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Qoobox\Quarantine\C\WINDOWS\system32\yegusaso.dll.vir a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Qoobox\Quarantine\C\WINDOWS\system32\zeyoheko.dll.vir a variant of Win32/Adware.SuperJuan.U application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP1\A0000059.dll a variant of Win32/Adware.SuperJuan.U application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP1\A0000061.dll a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP1\A0000062.dll a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP1\A0000072.dll a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP1\A0000077.dll a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP1\A0000079.dll a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP1\A0000080.dll a variant of Win32/Adware.SuperJuan.U application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\System Volume Information\_restore{F845E3DB-F751-4BE4-A620-64F2CA1BFB5F}\RP4\A0000431.dll a variant of Win32/Kryptik.DNI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by Dr Jay on Sun Apr 11, 2010 9:26 am

Luckily those threats are in contained areas, System Restore and ComboFix quarantine. Let's clean up, your logs are clean.

Now to get you off to a good start we will clean your restore points so that all the bad stuff is gone for good. Then if you need to restore at some stage you will be clean. There are several ways to reset your restore points, but this is my method:
  • Select Start > All Programs > Accessories > System tools > System Restore.
  • On the dialogue box that appears select Create a Restore Point
  • Click NEXT
  • Enter a name e.g. Clean
  • Click CREATE

You now have a clean restore point, to get rid of the bad ones:
  • Select Start > All Programs > Accessories > System tools > Disk Cleanup.
  • In the Drop down box that appears select your main drive e.g. C
  • Click OK
  • The System will do some calculation and the display a dialogue box with TABS
  • Select the More Options Tab.
  • At the bottom will be a system restore box with a CLEANUP button click this
  • Accept the Warning and select OK again, the program will close and you are done


To remove all of the tools we used and the files and folders they created, please do the following:
Please download [You must be registered and logged in to see this link.] by OldTimer:

  • Save it to your Desktop.
  • Double click OTC.exe.
  • Click the CleanUp! button.
  • If you are prompted to Reboot during the cleanup, select Yes.
  • The tool will delete itself once it finishes.

Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.

==

Please download [You must be registered and logged in to see this link.] to your desktop
  • Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  • It will close all programs when run, so make sure you have saved all your work before you begin.
  • Click the Start
    button to begin the process. Depending on how often you clean temp
    files, execution time should be anywhere from a few seconds to a minute
    or two. Let it run uninterrupted to completion.
  • Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.


==

Download Security Check by screen317 from [You must be registered and logged in to see this link.] or [You must be registered and logged in to see this link.].
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13716
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302112
# Likes # Likes : 10

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Mon Apr 12, 2010 1:59 am

Results of screen317's Security Check version 0.99.3
Windows XP Service Pack 3
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Enabled!
ESET Online Scanner v3
McAfee SecurityCenter
```````````````````````````````
Anti-malware/Other Utilities Check:

Java(TM) 6 Update 17
Out of date Java installed!
Adobe Flash Player 10
Adobe Reader 7.1.0
Out of date Adobe Reader installed!
````````````````````````````````
Process Check:
objlist.exe by Laurent

McAfee VIRUSS~1 mcshield.exe
McAfee VIRUSS~1 mcsysmon.exe
Common Files Verizon Online ConnMgr cmisrv.exe
Common Files Verizon Online AppMgr vzOpenUIServer.exe
````````````````````````````````
DNS Vulnerability Check:

GREAT! (Not vulnerable to DNS cache poisoning)

``````````End of Log````````````

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Mon Apr 12, 2010 2:04 am

I will be updating all programs after I know that the comp is clean. Also what virus/spy ware program do you recommend?

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by Dr Jay on Mon Apr 12, 2010 3:28 am

Please read the following information that I have provided, which will help you prevent malicious software in the future. Please keep in mind, malware is a continuous danger on the Internet. It is highly important to stay safe while browsing, to prevent re-infection.

Software recommendations

Antivirus/Antispyware

  • [You must be registered and logged in to see this link.]: this is Microsoft's free antivirus/antispyware program. It equips you with protection against viruses, spyware, trojans, rootkits, and worms. It is also light on the computer's performance. Note: when installing this, you have both an antivirus and antispyware. Make sure you also get a firewall.
  • [You must be registered and logged in to see this link.]: this is one of the most powerful, and easiest to use security software. The free version equips you with protection against viruses, spyware, trojans, rootkits, worms, and rogue software. Note: when installing this, you have both an antivirus and antispyware. Make sure you also get a firewall.


Firewall

  • [You must be registered and logged in to see this link.]: the free version is just as good as the premium. I have linked you to the free version.
  • [You must be registered and logged in to see this link.]: the free version is just as good as the premium. I have linked you to the free version. The optional security suite enhances the firewall by 40% increase. If you would like to install the suite that includes antivirus, then remove your old antivirus first.
  • [You must be registered and logged in to see this link.]: free and excellent firewall.


Note: Please keep ALL of these programs up-to-date and run them whenever you suspect a problem to prevent malware problems.

Resident Protection help
A number of programs have resident protection and it is a good idea to run the resident protection of one of each type of program to maintain protection. However, it is important to run only one resident program of each type since they can conflict and become less effective. That means only one antivirus, firewall, and scanning anti-spyware program at a time. Passive protectors such as SpywareBlaster can be run with any of them.

Rogue programs help
There are a lot of rogue programs out there that want to scare you into giving them your money and some malware actually claims to be security programs. If you get a popup for a security program that you did not install yourself, do NOT click on it and ask for help immediately. It is very important to run an antivirus and firewall, but you can't always rely on reviews and ads for information. Ask in a security forum that you trust if you are not sure. If you are unsure and looking for anti-spyware programs, you can find out if it is a rogue here:
[You must be registered and logged in to see this link.]

Securing your computer

  • [You must be registered and logged in to see this link.] - It is very important to make sure that both Internet Explorer and Windows are kept current with the latest critical security patches from Microsoft. To do this just start Internet Explorer and select Tools > Windows Update, and follow the online instructions from there.
  • [You must be registered and logged in to see this link.] replaces your current HOSTS file with one containing well known ad sites and other bad sites. This prevents your computer from connecting to those sites by redirecting them to 127.0.0.1, which is your local computer's loopback address, meaning it will be difficult to infect your computer in the future.


Please consider using an alternate browser
Mozilla's Firefox browser is a very good alternative. In addition to being generally more secure than Internet Explorer, it has a very good built-in popup blocker and add-ons, like NoScript, can make it even more secure. Opera is another good option.

If you are interested:


See [You must be registered and logged in to see this link.] for more info about malware and prevention.

Thank you for choosing GeekPolice. Please see [You must be registered and logged in to see this link.] if you would like to leave feedback or contribute to our site. Do you have any more questions?


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13716
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302112
# Likes # Likes : 10

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Mon Apr 12, 2010 1:31 pm

I am interested in joining the academy, where should I go to sign up?

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by Dr Jay on Mon Apr 12, 2010 2:22 pm

Look here: [You must be registered and logged in to see this link.]


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13716
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302112
# Likes # Likes : 10

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by tinyskids on Tue Apr 13, 2010 11:58 am

I have no more questions. Thank you very much for helping me.

tinyskids
Intermediate
Intermediate

Posts Posts : 81
Joined Joined : 2009-12-24
OS OS : windows xp
Points Points : 26560
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Antivirus The shield deluxe 2010

Post by Dr Jay on Tue Apr 13, 2010 4:11 pm

You're welcome.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 13716
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Protection Protection : Bitdefender Total Security
Points Points : 302112
# Likes # Likes : 10

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum