I have a virus stopping me from opening anything.

View previous topic View next topic Go down

I have a virus stopping me from opening anything.

Post by Littletreecreature on Sun 23 Jan 2011, 7:39 am

Hi, I have a virus stopping me from opening any .exe files. I tried downloading exehelper on another computer but as soon as I tried to open it my mcaffe deleted it saying it was a virus. I can't turn mcaffe off because I can't open the control centre.

Littletreecreature

Unborn
Unborn

Posts : 4
Joined : 2011-01-23
Operating System : Windows 7

View user profile

Back to top Go down

Re: I have a virus stopping me from opening anything.

Post by Belahzur on Sun 23 Jan 2011, 1:27 pm

Hello.

Download OTL by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.


@RealBelahzur - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur

Manager | Tech Officer
Manager | Tech Officer

Posts : 34917
Joined : 2008-08-04
Operating System : XP SP3 Media Centre

View user profile

Back to top Go down

Re: I have a virus stopping me from opening anything.

Post by Littletreecreature on Sun 23 Jan 2011, 8:29 pm

OTL .txt:

OTL logfile created on: 1/23/2011 8:24:42 PM - Run 1
OTL by OldTimer - Version 3.2.20.4 Folder = C:\Users\eswansondavis\Desktop
An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 81.00% Memory free
5.00 Gb Paging File | 4.00 Gb Available in Paging File | 91.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149.05 Gb Total Space | 25.33 Gb Free Space | 17.00% Space Free | Partition Type: NTFS
Drive D: | 5.55 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive G: | 966.99 Mb Total Space | 965.93 Mb Free Space | 99.89% Space Free | Partition Type: FAT32

Computer Name: PCSMGS-CHKS60J1 | User Name: ESwansonDavis | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\eswansondavis\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe (DT Soft Ltd)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\McAfee\VirusScan Enterprise\EngineServer.exe (McAfee, Inc.)


========== Modules (SafeList) ==========

MOD - C:\Users\eswansondavis\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\sspicli.dll (Microsoft Corporation)
MOD - C:\Windows\System32\sechost.dll (Microsoft Corporation)
MOD - C:\Windows\System32\profapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\KernelBase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\devobj.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cryptbase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cfgmgr32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (Fun4IM Coordinator) -- C:\Program Files\Fun4IM\Bandoo.exe (Bandoo Media Inc.)
SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (Application Updater) -- C:\Program Files\Application Updater\ApplicationUpdater.exe (Spigot, Inc.)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (SUService) -- c:\Program Files\Lenovo\System Update\SUService.exe (Lenovo Group Limited)
SRV - (AcSvc) -- C:\Program Files\Lenovo\Access Connections\AcSvc.exe (Lenovo)
SRV - (AcPrfMgrSvc) -- C:\Program Files\Lenovo\Access Connections\AcPrfMgrSvc.exe (Lenovo)
SRV - (Power Manager DBC Service) -- C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE (Lenovo)
SRV - (IBMPMSVC) -- C:\Windows\System32\ibmpmsvc.exe (Lenovo)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (TPHKSVC) -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe (Lenovo Group Limited)
SRV - (WwanSvc) -- C:\Windows\System32\wwansvc.dll (Microsoft Corporation)
SRV - (WbioSrvc) -- C:\Windows\System32\wbiosrvc.dll (Microsoft Corporation)
SRV - (Power) -- C:\Windows\System32\umpo.dll (Microsoft Corporation)
SRV - (Themes) -- C:\Windows\System32\themeservice.dll (Microsoft Corporation)
SRV - (sppuinotify) -- C:\Windows\System32\sppuinotify.dll (Microsoft Corporation)
SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
SRV - (RpcEptMapper) -- C:\Windows\System32\RpcEpMap.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (PNRPsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (p2pimsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (HomeGroupProvider) -- C:\Windows\System32\provsvc.dll (Microsoft Corporation)
SRV - (PNRPAutoReg) -- C:\Windows\System32\pnrpauto.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (HomeGroupListener) -- C:\Windows\System32\ListSvc.dll (Microsoft Corporation)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (Dhcp) -- C:\Windows\System32\dhcpcore.dll (Microsoft Corporation)
SRV - (defragsvc) -- C:\Windows\System32\defragsvc.dll (Microsoft Corporation)
SRV - (BDESVC) -- C:\Windows\System32\bdesvc.dll (Microsoft Corporation)
SRV - (AxInstSV) ActiveX Installer (AxInstSV) -- C:\Windows\System32\AxInstSv.dll (Microsoft Corporation)
SRV - (AppIDSvc) -- C:\Windows\System32\appidsvc.dll (Microsoft Corporation)
SRV - (sppsvc) -- C:\Windows\System32\sppsvc.exe (Microsoft Corporation)
SRV - (LENOVO.MICMUTE) -- C:\Program Files\Lenovo\HOTKEY\micmute.exe (Lenovo Group Limited)
SRV - (btwdins) -- C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV - (TPHDEXLGSVC) -- C:\Windows\System32\TPHDEXLG.exe (Lenovo.)
SRV - (HsfXAudioService) -- C:\Windows\System32\XAudio32.dll (Conexant Systems, Inc.)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corp.)
SRV - (McShield) -- C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe (McAfee, Inc.)
SRV - (mfevtp) -- C:\Windows\System32\mfevtps.exe (McAfee, Inc.)
SRV - (McTaskManager) -- C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe (McAfee, Inc.)
SRV - (McAfeeEngineService) -- C:\Program Files\McAfee\VirusScan Enterprise\EngineServer.exe (McAfee, Inc.)
SRV - (McAfeeFramework) -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe (McAfee, Inc.)
SRV - (Adobe Version Cue CS3) -- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe (Adobe Systems Incorporated)
SRV - (IviRegMgr) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)


========== Driver Services (SafeList) ==========

DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (amdkmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (intelkmd) -- C:\Windows\System32\drivers\igdpmd32.sys (Intel Corporation)
DRV - (igfx) -- C:\Windows\System32\drivers\igdkmd32.sys (Intel Corporation)
DRV - (amdkmdap) -- C:\Windows\System32\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV - (psadd) -- C:\Windows\System32\drivers\psadd.sys (Lenovo (United States) Inc.)
DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics Incorporated)
DRV - (ATSwpWDF) -- C:\Windows\System32\drivers\ATSwpWDF.sys (AuthenTec, Inc.)
DRV - (TPPWRIF) -- C:\Windows\System32\drivers\TPPWR32V.SYS (Lenovo Group Limited)
DRV - (IBMPMDRV) -- C:\Windows\system32\DRIVERS\ibmpmdrv.sys (Lenovo.)
DRV - (iaStor) -- C:\Windows\system32\DRIVERS\iaStor.sys (Intel Corporation)
DRV - (CnxtHdAudService) -- C:\Windows\System32\drivers\CHDRT32.sys (Conexant Systems Inc.)
DRV - (cmdide) -- C:\Windows\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (adpahci) -- C:\Windows\system32\DRIVERS\adpahci.sys (Adaptec, Inc.)
DRV - (adp94xx) -- C:\Windows\system32\DRIVERS\adp94xx.sys (Adaptec, Inc.)
DRV - (amdsbs) -- C:\Windows\system32\DRIVERS\amdsbs.sys (AMD Technologies Inc.)
DRV - (adpu320) -- C:\Windows\system32\DRIVERS\adpu320.sys (Adaptec, Inc.)
DRV - (arcsas) -- C:\Windows\system32\DRIVERS\arcsas.sys (Adaptec, Inc.)
DRV - (amdsata) -- C:\Windows\system32\DRIVERS\amdsata.sys (Advanced Micro Devices)
DRV - (arc) -- C:\Windows\system32\DRIVERS\arc.sys (Adaptec, Inc.)
DRV - (amdxata) -- C:\Windows\system32\DRIVERS\amdxata.sys (Advanced Micro Devices)
DRV - (aliide) -- C:\Windows\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
DRV - (nvstor) -- C:\Windows\system32\DRIVERS\nvstor.sys (NVIDIA Corporation)
DRV - (nvraid) -- C:\Windows\system32\DRIVERS\nvraid.sys (NVIDIA Corporation)
DRV - (nfrd960) -- C:\Windows\system32\DRIVERS\nfrd960.sys (IBM Corporation)
DRV - (LSI_SAS) -- C:\Windows\system32\DRIVERS\lsi_sas.sys (LSI Corporation)
DRV - (iaStorV) -- C:\Windows\system32\DRIVERS\iaStorV.sys (Intel Corporation)
DRV - (MegaSR) -- C:\Windows\system32\DRIVERS\MegaSR.sys (LSI Corporation, Inc.)
DRV - (KSecPkg) -- C:\Windows\System32\Drivers\ksecpkg.sys (Microsoft Corporation)
DRV - (LSI_SCSI) -- C:\Windows\system32\DRIVERS\lsi_scsi.sys (LSI Corporation)
DRV - (LSI_FC) -- C:\Windows\system32\DRIVERS\lsi_fc.sys (LSI Corporation)
DRV - (LSI_SAS2) -- C:\Windows\system32\DRIVERS\lsi_sas2.sys (LSI Corporation)
DRV - (iirsp) -- C:\Windows\system32\DRIVERS\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (megasas) -- C:\Windows\system32\DRIVERS\megasas.sys (LSI Corporation)
DRV - (hwpolicy) -- C:\Windows\System32\drivers\hwpolicy.sys (Microsoft Corporation)
DRV - (elxstor) -- C:\Windows\system32\DRIVERS\elxstor.sys (Emulex)
DRV - (aic78xx) -- C:\Windows\system32\DRIVERS\djsvs.sys (Adaptec, Inc.)
DRV - (HpSAMD) -- C:\Windows\system32\DRIVERS\HpSAMD.sys (Hewlett-Packard Company)
DRV - (FsDepends) -- C:\Windows\System32\drivers\fsdepends.sys (Microsoft Corporation)
DRV - (vsmraid) -- C:\Windows\system32\DRIVERS\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (vmbus) -- C:\Windows\system32\DRIVERS\vmbus.sys (Microsoft Corporation)
DRV - (vhdmp) -- C:\Windows\system32\DRIVERS\vhdmp.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\system32\DRIVERS\vmstorfl.sys (Microsoft Corporation)
DRV - (vdrvroot) -- C:\Windows\system32\DRIVERS\vdrvroot.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\system32\DRIVERS\storvsc.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\System32\drivers\wimmount.sys (Microsoft Corporation)
DRV - (viaide) -- C:\Windows\system32\DRIVERS\viaide.sys (VIA Technologies, Inc.)
DRV - (ql2300) -- C:\Windows\system32\DRIVERS\ql2300.sys (QLogic Corporation)
DRV - (rdyboost) -- C:\Windows\System32\drivers\rdyboost.sys (Microsoft Corporation)
DRV - (ql40xx) -- C:\Windows\system32\DRIVERS\ql40xx.sys (QLogic Corporation)
DRV - (SiSRaid4) -- C:\Windows\system32\DRIVERS\sisraid4.sys (Silicon Integrated Systems)
DRV - (pcw) -- C:\Windows\System32\drivers\pcw.sys (Microsoft Corporation)
DRV - (SiSRaid2) -- C:\Windows\system32\DRIVERS\SiSRaid2.sys (Silicon Integrated Systems Corp.)
DRV - (stexstor) -- C:\Windows\system32\DRIVERS\stexstor.sys (Promise Technology)
DRV - (CNG) -- C:\Windows\System32\Drivers\cng.sys (Microsoft Corporation)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\System32\Drivers\Brserid.sys (Brother Industries Ltd.)
DRV - (rdpbus) -- C:\Windows\system32\DRIVERS\rdpbus.sys (Microsoft Corporation)
DRV - (RDPREFMP) -- C:\Windows\System32\drivers\RDPREFMP.sys (Microsoft Corporation)
DRV - (RasAgileVpn) WAN Miniport (IKEv2) -- C:\Windows\System32\drivers\agilevpn.sys (Microsoft Corporation)
DRV - (WfpLwf) -- C:\Windows\System32\drivers\wfplwf.sys (Microsoft Corporation)
DRV - (NdisCap) -- C:\Windows\System32\drivers\ndiscap.sys (Microsoft Corporation)
DRV - (vwifibus) -- C:\Windows\System32\drivers\vwifibus.sys (Microsoft Corporation)
DRV - (1394ohci) -- C:\Windows\system32\DRIVERS\1394ohci.sys (Microsoft Corporation)
DRV - (UmPass) -- C:\Windows\system32\DRIVERS\umpass.sys (Microsoft Corporation)
DRV - (mshidkmdf) -- C:\Windows\System32\drivers\mshidkmdf.sys (Microsoft Corporation)
DRV - (MTConfig) -- C:\Windows\system32\DRIVERS\MTConfig.sys (Microsoft Corporation)
DRV - (CompositeBus) -- C:\Windows\system32\DRIVERS\CompositeBus.sys (Microsoft Corporation)
DRV - (AppID) -- C:\Windows\system32\drivers\appid.sys (Microsoft Corporation)
DRV - (scfilter) -- C:\Windows\System32\drivers\scfilter.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\system32\DRIVERS\vms3cap.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\system32\DRIVERS\VMBusHID.sys (Microsoft Corporation)
DRV - (discache) -- C:\Windows\System32\drivers\discache.sys (Microsoft Corporation)
DRV - (AcpiPmi) -- C:\Windows\system32\DRIVERS\acpipmi.sys (Microsoft Corporation)
DRV - (TPM) -- C:\Windows\System32\drivers\tpm.sys (Microsoft Corporation)
DRV - (AmdPPM) -- C:\Windows\system32\DRIVERS\amdppm.sys (Microsoft Corporation)
DRV - (hcw85cir) -- C:\Windows\system32\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (BrUsbMdm) -- C:\Windows\System32\Drivers\BrUsbMdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\System32\Drivers\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrSerWdm) -- C:\Windows\System32\Drivers\BrSerWdm.sys (Brother Industries Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\DRIVERS\BrFiltLo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\DRIVERS\BrFiltUp.sys (Brother Industries, Ltd.)
DRV - (SrvHsfV92) -- C:\Windows\System32\drivers\vstdpv3.sys (Conexant Systems, Inc.)
DRV - (SrvHsfWinac) -- C:\Windows\System32\drivers\vstcnxt3.sys (Conexant Systems, Inc.)
DRV - (SrvHsfHDA) -- C:\Windows\System32\drivers\vstazl3.sys (Conexant Systems, Inc.)
DRV - (e1yexpress) Intel(R) -- C:\Windows\System32\drivers\e1y6032.sys (Intel Corporation)
DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (ebdrv) -- C:\Windows\system32\DRIVERS\evbdx.sys (Broadcom Corporation)
DRV - (b06bdrv) -- C:\Windows\system32\DRIVERS\bxvbdx.sys (Broadcom Corporation)
DRV - (TVTI2C) -- C:\Windows\System32\drivers\tvti2c.sys (Lenovo (United States) Inc.)
DRV - (btwaudio) -- C:\Windows\System32\drivers\btwaudio.sys (Broadcom Corporation.)
DRV - (btwavdt) -- C:\Windows\System32\drivers\btwavdt.sys (Broadcom Corporation.)
DRV - (btwrchid) -- C:\Windows\System32\drivers\btwrchid.sys (Broadcom Corporation.)
DRV - (HSF_DPV) -- C:\Windows\System32\drivers\HSX_DPV.sys (Conexant Systems, Inc.)
DRV - (HSXHWAZL) -- C:\Windows\System32\drivers\HSXHWAZL.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\Windows\System32\drivers\HSX_CNXT.sys (Conexant Systems, Inc.)
DRV - (Shockprf) -- C:\Windows\System32\DRIVERS\Apsx86.sys (Lenovo.)
DRV - (TPDIGIMN) -- C:\Windows\System32\DRIVERS\ApsHM86.sys (Lenovo.)
DRV - (rimmptsk) -- C:\Windows\system32\DRIVERS\rimmptsk.sys (REDC)
DRV - (rismxdp) -- C:\Windows\system32\DRIVERS\rixdptsk.sys (REDC)
DRV - (rimsptsk) -- C:\Windows\system32\DRIVERS\rimsptsk.sys (REDC)
DRV - (HECI) Intel(R) -- C:\Windows\system32\DRIVERS\HECI.sys (Intel Corporation)
DRV - (SNP2UVC) USB2.0 PC Camera (SNP2UVC) -- C:\Windows\System32\drivers\snp2uvc.sys ()
DRV - (VClone) -- C:\Windows\system32\DRIVERS\VClone.sys (Elaborate Bytes AG)
DRV - (netw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation)
DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio32.sys (Conexant Systems, Inc.)
DRV - (btwl2cap) -- C:\Windows\System32\drivers\btwl2cap.sys (Broadcom Corporation.)
DRV - (ElbyCDIO) -- C:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (mfehidk) -- C:\Windows\system32\drivers\mfehidk.sys (McAfee, Inc.)
DRV - (mfeavfk) -- C:\Windows\System32\drivers\mfeavfk.sys (McAfee, Inc.)
DRV - (mfeapfk) -- C:\Windows\System32\drivers\mfeapfk.sys (McAfee, Inc.)
DRV - (mferkdet) -- C:\Windows\System32\drivers\mferkdet.sys (McAfee, Inc.)
DRV - (mfetdik) -- C:\Windows\System32\drivers\mfetdik.sys (McAfee, Inc.)
DRV - (mfebopk) -- C:\Windows\System32\drivers\mfebopk.sys (McAfee, Inc.)
DRV - (lenovo.smi) -- C:\Windows\System32\drivers\smiif32.sys (Lenovo Group Limited)
DRV - (regi) -- C:\Windows\System32\drivers\regi.sys (InterVideo)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [You must be registered and logged in to see this link.] [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [You must be registered and logged in to see this link.] [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\..\URLSearchHook: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YouTube Downloader Toolbar\IE\4.1\youtubedownloaderToolbarIE.dll (Spigot, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8992

FF - HKLM\software\mozilla\Firefox\Extensions\\ClickPotatoLite@ClickPotatoLite.com: C:\Program Files\ClickPotatoLite\bin\10.0.622.0\firefox\extensions
FF - HKLM\software\mozilla\Firefox\Extensions\\{075A76EF-2460-4630-959E-DE25D8BC739C}: C:\Users\eswansondavis\AppData\Local\{075A76EF-2460-4630-959E-DE25D8BC739C}\ [2011/01/22 21:52:47 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2009/06/11 08:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptsn.dll (McAfee, Inc.)
O2 - BHO: (Searchqu Toolbar) - {7FF99715-3016-4381-84CE-E4E4C9673020} - File not found
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (BandooIEPlugin Class) - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C:\Program Files\Fun4IM\Plugins\IE\ieplugin.dll (Bandoo Media Inc.)
O2 - BHO: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YouTube Downloader Toolbar\IE\4.1\youtubedownloaderToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {7FF99715-3016-4381-84CE-E4E4C9673020} - File not found
O3 - HKLM\..\Toolbar: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YouTube Downloader Toolbar\IE\4.1\youtubedownloaderToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe_ID0EYTHM] C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [DATAMNGR] C:\Program Files\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe (Discordia, LTD)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [Fzanifexemexi] C:\Users\eswansondavis\AppData\Local\amaxayotik.dll (VoLT, 2010)
O4 - HKLM..\Run: [LENOVO.TPFNF6R] C:\Program Files\Lenovo\HOTKEY\tpfnf6r.exe (Lenovo Group Limited)
O4 - HKLM..\Run: [McAfeeUpdaterUI] C:\Program Files\McAfee\Common Framework\udaterui.exe (McAfee, Inc.)
O4 - HKLM..\Run: [PWMTRV] C:\Program Files\ThinkPad\Utilities\PWMTR32V.DLL (Lenovo Group Limited)
O4 - HKLM..\Run: [SearchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [ShStatEXE] C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE (McAfee, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe (Lenovo Group Limited)
O4 - HKLM..\Run: [TpShocks] C:\Windows\System32\TpShocks.exe (Lenovo.)
O4 - HKLM..\Run: [VirtualCloneDrive] C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Elaborate Bytes AG)
O4 - HKCU..\Run: [{D0E85F96-A486-7746-4E5D-7DBCA46B7DDE}] File not found
O4 - HKCU..\Run: [DAEMON Tools Pro Agent] C:\Program Files\DAEMON Tools Pro\DTAgent.exe (DT Soft Ltd)
O4 - HKCU..\Run: [HPADVISOR] File not found
O4 - HKCU..\Run: [Rkiboqipofe] C:\Users\eswansondavis\AppData\Local\WMPepwus.dll ()
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\steam.exe (Valve Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoMSAppLogo5ChannelNotify = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousUserGroupPolicy = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousMachineGroupPolicy = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceStartMenuLogOff = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTip = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonScripts = 1
O8 - Extra context menu item: Append to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: @C:\Program Files\ThinkPad\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\ThinkPad\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 211.31.138.11 211.29.132.12 198.142.0.51 192.168.1.1 211.31.138.11 211.29.132.12 198.142.0.51
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = stmichaels.vic.edu.au
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 08:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/01/23 20:20:06 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\eswansondavis\Desktop\OTL.exe
[2011/01/23 07:36:14 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/01/23 07:36:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/01/23 07:36:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/01/23 07:36:10 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/01/23 07:36:10 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/01/22 21:55:29 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Roaming\Bandoo
[2011/01/22 21:52:47 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Local\{075A76EF-2460-4630-959E-DE25D8BC739C}
[2011/01/22 21:51:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Bandoo
[2011/01/22 21:51:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Fun4IM
[2011/01/22 21:51:26 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Searchqu Toolbar
[2011/01/22 21:51:25 | 000,000,000 | ---D | C] -- C:\Program Files\Fun4IM
[2011/01/21 16:16:53 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\Desktop\Jap language access listening exam
[2011/01/20 22:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
[2011/01/20 22:41:01 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
[2011/01/20 22:41:01 | 000,000,000 | ---D | C] -- C:\Program Files\PopCap Games
[2011/01/16 22:29:56 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2011/01/16 19:38:23 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\extras
[2011/01/12 20:13:08 | 000,000,000 | ---D | C] -- C:\Program Files\YouTube Downloader Toolbar
[2011/01/12 20:13:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Spigot
[2011/01/12 20:13:08 | 000,000,000 | ---D | C] -- C:\Program Files\Application Updater
[2011/01/12 20:10:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader
[2011/01/12 20:10:49 | 000,000,000 | ---D | C] -- C:\Program Files\YouTube Downloader
[2011/01/08 17:56:18 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Reciepts
[2011/01/08 15:44:51 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\Documents\Manga
[2011/01/04 21:01:31 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Roaming\Final Draft
[2011/01/04 20:59:09 | 000,000,000 | ---D | C] -- C:\Program Files\Final Draft Tagger
[2011/01/04 20:59:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Final Draft
[2011/01/04 20:58:54 | 000,000,000 | ---D | C] -- C:\Program Files\Final Draft 8
[2010/12/30 23:49:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2010/12/30 23:49:58 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2010/12/29 22:00:01 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2010/12/29 21:54:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2010/12/29 21:50:49 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Roaming\ATI
[2010/12/29 21:50:48 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Local\ATI
[2010/12/29 21:49:44 | 008,198,680 | ---- | C] (Intel(R) Corporation) -- C:\Windows\System32\TVWSetup.exe
[2010/12/29 21:49:42 | 000,261,632 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxTMM.dll
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrsky.lrc
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrrus.lrc
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrptg.lrc
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrplk.lrc
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrnld.lrc
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrita.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrtrk.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrsve.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrslv.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrptb.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrnor.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrhun.lrc
[2010/12/29 21:49:42 | 000,084,992 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrtha.lrc
[2010/12/29 21:49:42 | 000,082,944 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrkor.lrc
[2010/12/29 21:49:42 | 000,082,944 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrjpn.lrc
[2010/12/29 21:49:41 | 000,828,928 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxress.dll
[2010/12/29 21:49:41 | 000,086,528 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrfra.lrc
[2010/12/29 21:49:41 | 000,086,528 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxresn.lrc
[2010/12/29 21:49:41 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrfin.lrc
[2010/12/29 21:49:41 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrenu.lrc
[2010/12/29 21:49:41 | 000,084,480 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrheb.lrc
[2010/12/29 21:49:40 | 000,086,528 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrell.lrc
[2010/12/29 21:49:40 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrdeu.lrc
[2010/12/29 21:49:40 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrcsy.lrc
[2010/12/29 21:49:40 | 000,084,992 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrdan.lrc
[2010/12/29 21:49:40 | 000,081,920 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrcht.lrc
[2010/12/29 21:49:39 | 000,194,560 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxpph.dll
[2010/12/29 21:49:39 | 000,179,224 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxext.exe
[2010/12/29 21:49:39 | 000,130,048 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxdo.dll
[2010/12/29 21:49:39 | 000,118,272 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxcpl.cpl
[2010/12/29 21:49:39 | 000,084,480 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrara.lrc
[2010/12/29 21:49:39 | 000,081,920 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrchs.lrc
[2010/12/29 21:49:39 | 000,023,552 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxexps.dll
[2010/12/29 21:49:39 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[2010/12/29 21:49:38 | 004,962,816 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igdumd32.dll
[2010/12/29 21:49:38 | 000,571,904 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igdumdx32.dll
[2010/12/29 21:49:37 | 008,758,272 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\igdpmd32.sys
[2010/12/29 21:49:37 | 008,758,272 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\igdkmd32.sys
[2010/12/29 21:49:37 | 004,352,512 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igd10umd32.dll
[2010/12/29 21:49:36 | 011,038,208 | ---- | C] (Intel Corporation) -- C:\Windows\System32\ig4icd32.dll
[2010/12/29 21:49:36 | 000,094,720 | ---- | C] (Intel Corporation) -- C:\Windows\System32\hccutils.dll
[2010/12/29 21:49:35 | 003,155,992 | ---- | C] (Intel Corporation) -- C:\Windows\System32\GfxUI.exe
[2010/12/29 21:49:35 | 000,120,320 | ---- | C] (Intel Corporation) -- C:\Windows\System32\gfxSrvc.dll
[2010/12/29 21:49:34 | 003,058,688 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiumdva.dll
[2010/12/29 21:49:34 | 000,030,208 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiuxpag.dll
[2010/12/29 21:49:33 | 003,975,680 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\System32\atiumdag.dll
[2010/12/29 21:49:33 | 000,159,744 | ---- | C] (AMD) -- C:\Windows\System32\atitmmxx.dll
[2010/12/29 21:49:33 | 000,022,528 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiu9pag.dll
[2010/12/29 21:49:31 | 015,462,912 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atioglxx.dll
[2010/12/29 21:49:31 | 000,210,944 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\drivers\atikmpag.sys
[2010/12/29 21:49:31 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atimpc32.dll
[2010/12/29 21:49:31 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdpcom32.dll
[2010/12/29 21:49:31 | 000,011,776 | ---- | C] (AMD) -- C:\Windows\System32\atimuixx.dll
[2010/12/29 21:49:30 | 005,882,880 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\atikmdag.sys
[2010/12/29 21:49:30 | 000,380,928 | ---- | C] (AMD) -- C:\Windows\System32\atieclxx.exe
[2010/12/29 21:49:30 | 000,176,128 | ---- | C] (AMD) -- C:\Windows\System32\atiesrxx.exe
[2010/12/29 21:49:30 | 000,016,896 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atigktxx.dll
[2010/12/29 21:49:30 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiglpxx.dll
[2010/12/29 21:49:29 | 004,323,840 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticaldd.dll
[2010/12/29 21:49:29 | 003,826,688 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\System32\atidxx32.dll
[2010/12/29 21:49:29 | 000,446,464 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\ATIDEMGX.dll
[2010/12/29 21:49:29 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticalrt.dll
[2010/12/29 21:49:28 | 000,237,568 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atiadlxx.dll
[2010/12/29 21:49:28 | 000,143,360 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atiapfxx.exe
[2010/12/29 21:49:28 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\ati2erec.dll
[2010/12/29 21:49:28 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticalcl.dll
[2010/12/29 21:49:28 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\System32\ati2edxx.dll
[2010/12/29 21:48:33 | 000,000,000 | ---D | C] -- C:\DRIVERS
[2010/12/26 21:14:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Last.fm
[2010/12/26 21:14:30 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Local\FalloutNV
[2010/12/26 21:14:10 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Local\Last.fm
[2010/12/26 21:14:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Last.fm
[2010/12/26 21:13:58 | 000,000,000 | ---D | C] -- C:\Program Files\Last.fm
[2010/12/24 23:07:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2010/12/24 23:06:09 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2010/09/21 06:05:29 | 000,232,448 | ---- | C] ( ) -- C:\Windows\System32\rsnp2uvc.dll
[2010/09/21 06:05:29 | 000,196,608 | ---- | C] ( ) -- C:\Windows\System32\csnp2uvc.dll
[2009/07/14 10:24:44 | 000,225,280 | ---- | C] (VoLT, 2010) -- C:\Users\eswansondavis\AppData\Local\amaxayotik.dll
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/01/23 20:21:01 | 000,630,878 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/01/23 20:21:01 | 000,112,258 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/01/23 20:16:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/01/23 20:16:25 | 1981,829,120 | -HS- | M] () -- C:\hiberfil.sys
[2011/01/23 20:10:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\eswansondavis\Desktop\OTL.exe
[2011/01/23 07:41:00 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2011/01/23 07:36:15 | 000,001,074 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/01/23 07:18:27 | 000,003,056 | ---- | M] () -- C:\Users\eswansondavis\AppData\Local\Kdacewaha.dat
[2011/01/23 07:18:00 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/23 05:58:30 | 000,003,056 | ---- | M] () -- C:\Users\eswansondavis\AppData\Local\alepoyow.dll
[2011/01/23 05:35:00 | 000,022,288 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/01/23 05:35:00 | 000,022,288 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/01/23 03:56:30 | 000,003,056 | ---- | M] () -- C:\Users\eswansondavis\AppData\Local\egujumaf.dll
[2011/01/23 01:54:30 | 000,003,056 | ---- | M] () -- C:\Users\eswansondavis\AppData\Local\emoqugar.dll
[2011/01/23 00:19:01 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/22 23:52:30 | 000,003,056 | ---- | M] () -- C:\Users\eswansondavis\AppData\Local\ahidigibavuk.dll
[2011/01/21 18:57:54 | 000,000,490 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for ESwansonDavis.job
[2011/01/20 22:41:07 | 000,001,282 | ---- | M] () -- C:\Users\Public\Desktop\Insaniquarium Deluxe.lnk
[2011/01/20 22:04:02 | 000,013,829 | ---- | M] () -- C:\Users\eswansondavis\Desktop\gallery10.jpg
[2011/01/20 21:29:00 | 584,146,219 | ---- | M] () -- C:\Users\eswansondavis\Desktop\EasyA.2010.BRRip_mediafiremoviez.com.mkv
[2011/01/20 20:48:01 | 575,479,786 | ---- | M] () -- C:\Users\eswansondavis\Desktop\Kick Ass 2010.mkv
[2011/01/20 20:44:16 | 342,618,660 | ---- | M] () -- C:\Users\eswansondavis\Desktop\Tangled 2010.mkv
[2011/01/18 19:19:58 | 733,145,544 | ---- | M] () -- C:\Users\eswansondavis\Desktop\The Fifth Element 1997.mkv
[2011/01/17 21:48:48 | 523,256,615 | ---- | M] () -- C:\Users\eswansondavis\Desktop\Resident Evil Afterlife 2010.avi
[2011/01/16 23:06:45 | 000,000,214 | ---- | M] () -- C:\Users\eswansondavis\Desktop\Sid Meier's Civilization V.url
[2011/01/15 20:38:57 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011/01/12 20:10:51 | 000,001,087 | ---- | M] () -- C:\Users\Public\Desktop\YouTube Downloader.lnk
[2011/01/08 15:43:40 | 000,000,024 | ---- | M] () -- C:\Users\eswansondavis\AppData\Roaming\Final Draft Tagger Preferences
[2011/01/05 23:53:55 | 000,007,848 | ---- | M] () -- C:\Windows\unins000.dat
[2011/01/05 23:53:55 | 000,000,913 | ---- | M] () -- C:\Users\Public\Desktop\File Splitter & Joiner.lnk
[2011/01/05 23:53:17 | 000,794,906 | ---- | M] () -- C:\Windows\unins000.exe
[2011/01/05 21:35:35 | 001,755,360 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/01/04 22:20:17 | 000,189,736 | -H-- | M] () -- C:\Windows\System32\mlfcache.dat
[2011/01/04 21:01:29 | 000,000,024 | -H-- | M] () -- C:\ProgramData\.811261211181235583101118113995
[2011/01/04 17:09:00 | 000,000,003 | ---- | M] () -- C:\Windows\System32\C
[2010/12/31 11:23:07 | 000,000,954 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2010/12/26 21:14:07 | 000,000,901 | ---- | M] () -- C:\Users\Public\Desktop\Last.fm.lnk
[2010/12/24 23:07:48 | 000,001,760 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/01/23 07:36:15 | 000,001,074 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/01/23 05:58:30 | 000,003,056 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\alepoyow.dll
[2011/01/23 03:56:30 | 000,003,056 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\egujumaf.dll
[2011/01/23 01:54:30 | 000,003,056 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\emoqugar.dll
[2011/01/22 23:52:30 | 000,003,056 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\ahidigibavuk.dll
[2011/01/22 21:52:47 | 000,003,056 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\Kdacewaha.dat
[2011/01/20 22:41:07 | 000,001,282 | ---- | C] () -- C:\Users\Public\Desktop\Insaniquarium Deluxe.lnk
[2011/01/20 22:04:05 | 000,013,829 | ---- | C] () -- C:\Users\eswansondavis\Desktop\gallery10.jpg
[2011/01/20 21:28:14 | 584,146,219 | ---- | C] () -- C:\Users\eswansondavis\Desktop\EasyA.2010.BRRip_mediafiremoviez.com.mkv
[2011/01/20 20:45:32 | 575,479,786 | ---- | C] () -- C:\Users\eswansondavis\Desktop\Kick Ass 2010.mkv
[2011/01/20 20:43:57 | 342,618,660 | ---- | C] () -- C:\Users\eswansondavis\Desktop\Tangled 2010.mkv
[2011/01/20 20:43:37 | 000,062,478 | ---- | C] () -- C:\Users\eswansondavis\Desktop\My Life as a Dog (1985).srt
[2011/01/20 20:42:20 | 311,592,618 | ---- | C] () -- C:\Users\eswansondavis\Desktop\101 Dalmations 1961.mkv
[2011/01/20 20:41:14 | 733,609,984 | ---- | C] () -- C:\Users\eswansondavis\Desktop\My Life as a Dog (1985).avi
[2011/01/18 19:17:06 | 733,145,544 | ---- | C] () -- C:\Users\eswansondavis\Desktop\The Fifth Element 1997.mkv
[2011/01/17 21:47:00 | 523,256,615 | ---- | C] () -- C:\Users\eswansondavis\Desktop\Resident Evil Afterlife 2010.avi
[2011/01/16 22:29:55 | 000,000,214 | ---- | C] () -- C:\Users\eswansondavis\Desktop\Sid Meier's Civilization V.url
[2011/01/16 19:38:29 | 013,045,203 | ---- | C] () -- C:\Users\Public\Documents\nin_ghosts_I-IV.pdf
[2011/01/15 20:38:57 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011/01/12 20:10:51 | 000,001,087 | ---- | C] () -- C:\Users\Public\Desktop\YouTube Downloader.lnk
[2011/01/08 15:43:40 | 000,000,024 | ---- | C] () -- C:\Users\eswansondavis\AppData\Roaming\Final Draft Tagger Preferences
[2011/01/04 21:01:08 | 000,000,024 | -H-- | C] () -- C:\ProgramData\.811261211181235583101118113995
[2011/01/04 20:59:10 | 000,003,087 | ---- | C] () -- C:\Users\eswansondavis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Final Draft Tagger 2.lnk
[2011/01/04 20:59:10 | 000,000,918 | ---- | C] () -- C:\Users\eswansondavis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Final Draft 8.lnk
[2010/12/30 23:49:58 | 000,000,954 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2010/12/29 21:49:43 | 001,921,265 | ---- | C] () -- C:\Windows\System32\iglhxa32.cpa
[2010/12/29 21:49:43 | 000,982,240 | ---- | C] () -- C:\Windows\System32\igkrng500.bin
[2010/12/29 21:49:43 | 000,208,896 | ---- | C] () -- C:\Windows\System32\iglhsip32.dll
[2010/12/29 21:49:43 | 000,143,360 | ---- | C] () -- C:\Windows\System32\iglhcp32.dll
[2010/12/29 21:49:43 | 000,060,254 | ---- | C] () -- C:\Windows\System32\iglhxg32.vp
[2010/12/29 21:49:43 | 000,060,226 | ---- | C] () -- C:\Windows\System32\iglhxc32.vp
[2010/12/29 21:49:43 | 000,060,015 | ---- | C] () -- C:\Windows\System32\iglhxo32.vp
[2010/12/29 21:49:43 | 000,051,332 | ---- | C] () -- C:\Windows\System32\iglhxs32.vp
[2010/12/29 21:49:43 | 000,001,090 | ---- | C] () -- C:\Windows\System32\iglhxa32.vp
[2010/12/29 21:49:39 | 000,092,356 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin
[2010/12/29 21:49:37 | 000,439,308 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin
[2010/12/29 21:49:35 | 000,189,408 | ---- | C] () -- C:\Windows\System32\Gfxres.th-TH.resources
[2010/12/29 21:49:35 | 000,178,288 | ---- | C] () -- C:\Windows\System32\Gfxres.el-GR.resources
[2010/12/29 21:49:35 | 000,165,251 | ---- | C] () -- C:\Windows\System32\Gfxres.ru-RU.resources
[2010/12/29 21:49:35 | 000,139,830 | ---- | C] () -- C:\Windows\System32\Gfxres.ar-SA.resources
[2010/12/29 21:49:35 | 000,136,327 | ---- | C] () -- C:\Windows\System32\Gfxres.ja-JP.resources
[2010/12/29 21:49:35 | 000,133,680 | ---- | C] () -- C:\Windows\System32\Gfxres.he-IL.resources
[2010/12/29 21:49:35 | 000,125,477 | ---- | C] () -- C:\Windows\System32\Gfxres.it-IT.resources
[2010/12/29 21:49:35 | 000,123,164 | ---- | C] () -- C:\Windows\System32\Gfxres.ko-KR.resources
[2010/12/29 21:49:35 | 000,122,858 | ---- | C] () -- C:\Windows\System32\Gfxres.es-ES.resources
[2010/12/29 21:49:35 | 000,122,638 | ---- | C] () -- C:\Windows\System32\Gfxres.de-DE.resources
[2010/12/29 21:49:35 | 000,121,121 | ---- | C] () -- C:\Windows\System32\Gfxres.tr-TR.resources
[2010/12/29 21:49:35 | 000,120,695 | ---- | C] () -- C:\Windows\System32\Gfxres.fr-FR.resources
[2010/12/29 21:49:35 | 000,120,287 | ---- | C] () -- C:\Windows\System32\Gfxres.pt-BR.resources
[2010/12/29 21:49:35 | 000,119,533 | ---- | C] () -- C:\Windows\System32\Gfxres.hu-HU.resources
[2010/12/29 21:49:35 | 000,119,513 | ---- | C] () -- C:\Windows\System32\Gfxres.nl-NL.resources
[2010/12/29 21:49:35 | 000,119,286 | ---- | C] () -- C:\Windows\System32\Gfxres.sv-SE.resources
[2010/12/29 21:49:35 | 000,118,997 | ---- | C] () -- C:\Windows\System32\Gfxres.pt-PT.resources
[2010/12/29 21:49:35 | 000,118,684 | ---- | C] () -- C:\Windows\System32\Gfxres.cs-CZ.resources
[2010/12/29 21:49:35 | 000,118,631 | ---- | C] () -- C:\Windows\System32\Gfxres.fi-FI.resources
[2010/12/29 21:49:35 | 000,118,317 | ---- | C] () -- C:\Windows\System32\Gfxres.pl-PL.resources
[2010/12/29 21:49:35 | 000,117,984 | ---- | C] () -- C:\Windows\System32\Gfxres.sk-SK.resources
[2010/12/29 21:49:35 | 000,114,779 | ---- | C] () -- C:\Windows\System32\Gfxres.nb-NO.resources
[2010/12/29 21:49:35 | 000,114,308 | ---- | C] () -- C:\Windows\System32\Gfxres.sl-SI.resources
[2010/12/29 21:49:35 | 000,114,179 | ---- | C] () -- C:\Windows\System32\Gfxres.da-DK.resources
[2010/12/29 21:49:35 | 000,110,156 | ---- | C] () -- C:\Windows\System32\Gfxres.en-US.resources
[2010/12/29 21:49:35 | 000,103,997 | ---- | C] () -- C:\Windows\System32\Gfxres.zh-TW.resources
[2010/12/29 21:49:35 | 000,102,843 | ---- | C] () -- C:\Windows\System32\Gfxres.zh-CN.resources
[2010/12/29 21:49:35 | 000,000,151 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
[2010/12/29 21:49:34 | 000,543,664 | ---- | C] () -- C:\Windows\System32\atiumdva.cap
[2010/12/29 21:49:33 | 000,002,857 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2010/12/29 21:49:31 | 000,021,682 | ---- | C] () -- C:\Windows\atiogl.xml
[2010/12/29 21:49:30 | 000,205,156 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2010/12/29 21:49:28 | 000,063,464 | ---- | C] () -- C:\Windows\System32\atiapfxx.blb
[2010/12/26 21:14:07 | 000,000,901 | ---- | C] () -- C:\Users\Public\Desktop\Last.fm.lnk
[2010/12/24 23:07:48 | 000,001,760 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/12/20 22:51:07 | 000,000,181 | ---- | C] () -- C:\Windows\WININIT.INI
[2010/11/17 15:35:31 | 000,815,104 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010/11/17 15:35:31 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010/09/21 06:05:29 | 003,486,208 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2010/09/21 06:05:29 | 000,028,544 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys
[2010/09/21 06:05:29 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini
[2010/09/20 14:42:23 | 002,463,976 | ---- | C] () -- C:\Windows\System32\NPSWF32.dll
[2010/09/20 14:12:10 | 000,050,698 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009/08/03 00:21:54 | 000,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2009/07/14 10:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 10:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/07/14 10:24:44 | 000,090,112 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\WMPepwus.dll

< End of report >
PRC - C:\Users\eswansondavis\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe (DT Soft Ltd)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)


========== Modules (SafeList) ==========

MOD - C:\Users\eswansondavis\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\sspicli.dll (Microsoft Corporation)
MOD - C:\Windows\System32\sechost.dll (Microsoft Corporation)
MOD - C:\Windows\System32\profapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\KernelBase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\devobj.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cryptbase.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cfgmgr32.dll (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\GdiPlus.dll (Microsoft Corporation)



Littletreecreature

Unborn
Unborn

Posts : 4
Joined : 2011-01-23
Operating System : Windows 7

View user profile

Back to top Go down

Re: I have a virus stopping me from opening anything.

Post by Littletreecreature on Sun 23 Jan 2011, 8:30 pm

========== Win32 Services (SafeList) ==========

SRV - (Fun4IM Coordinator) -- C:\Program Files\Fun4IM\Bandoo.exe (Bandoo Media Inc.)
SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (Application Updater) -- C:\Program Files\Application Updater\ApplicationUpdater.exe (Spigot, Inc.)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (SUService) -- c:\Program Files\Lenovo\System Update\SUService.exe (Lenovo Group Limited)
SRV - (AcSvc) -- C:\Program Files\Lenovo\Access Connections\AcSvc.exe (Lenovo)
SRV - (AcPrfMgrSvc) -- C:\Program Files\Lenovo\Access Connections\AcPrfMgrSvc.exe (Lenovo)
SRV - (Power Manager DBC Service) -- C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE (Lenovo)
SRV - (IBMPMSVC) -- C:\Windows\System32\ibmpmsvc.exe (Lenovo)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (TPHKSVC) -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe (Lenovo Group Limited)
SRV - (WwanSvc) -- C:\Windows\System32\wwansvc.dll (Microsoft Corporation)
SRV - (WbioSrvc) -- C:\Windows\System32\wbiosrvc.dll (Microsoft Corporation)
SRV - (Power) -- C:\Windows\System32\umpo.dll (Microsoft Corporation)
SRV - (Themes) -- C:\Windows\System32\themeservice.dll (Microsoft Corporation)
SRV - (sppuinotify) -- C:\Windows\System32\sppuinotify.dll (Microsoft Corporation)
SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
SRV - (RpcEptMapper) -- C:\Windows\System32\RpcEpMap.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (PNRPsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (p2pimsvc) -- C:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (HomeGroupProvider) -- C:\Windows\System32\provsvc.dll (Microsoft Corporation)
SRV - (PNRPAutoReg) -- C:\Windows\System32\pnrpauto.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (HomeGroupListener) -- C:\Windows\System32\ListSvc.dll (Microsoft Corporation)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (Dhcp) -- C:\Windows\System32\dhcpcore.dll (Microsoft Corporation)
SRV - (defragsvc) -- C:\Windows\System32\defragsvc.dll (Microsoft Corporation)
SRV - (BDESVC) -- C:\Windows\System32\bdesvc.dll (Microsoft Corporation)
SRV - (AxInstSV) ActiveX Installer (AxInstSV) -- C:\Windows\System32\AxInstSv.dll (Microsoft Corporation)
SRV - (AppIDSvc) -- C:\Windows\System32\appidsvc.dll (Microsoft Corporation)
SRV - (sppsvc) -- C:\Windows\System32\sppsvc.exe (Microsoft Corporation)
SRV - (LENOVO.MICMUTE) -- C:\Program Files\Lenovo\HOTKEY\micmute.exe (Lenovo Group Limited)
SRV - (btwdins) -- C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV - (TPHDEXLGSVC) -- C:\Windows\System32\TPHDEXLG.exe (Lenovo.)
SRV - (HsfXAudioService) -- C:\Windows\System32\XAudio32.dll (Conexant Systems, Inc.)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corp.)
SRV - (McShield) -- C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe (McAfee, Inc.)
SRV - (mfevtp) -- C:\Windows\System32\mfevtps.exe (McAfee, Inc.)
SRV - (McTaskManager) -- C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe (McAfee, Inc.)
SRV - (McAfeeEngineService) -- C:\Program Files\McAfee\VirusScan Enterprise\EngineServer.exe (McAfee, Inc.)
SRV - (McAfeeFramework) -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe (McAfee, Inc.)
SRV - (Adobe Version Cue CS3) -- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe (Adobe Systems Incorporated)
SRV - (IviRegMgr) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)


========== Driver Services (SafeList) ==========

DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (amdkmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (intelkmd) -- C:\Windows\System32\drivers\igdpmd32.sys (Intel Corporation)
DRV - (igfx) -- C:\Windows\System32\drivers\igdkmd32.sys (Intel Corporation)
DRV - (amdkmdap) -- C:\Windows\System32\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV - (psadd) -- C:\Windows\System32\drivers\psadd.sys (Lenovo (United States) Inc.)
DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics Incorporated)
DRV - (ATSwpWDF) -- C:\Windows\System32\drivers\ATSwpWDF.sys (AuthenTec, Inc.)
DRV - (TPPWRIF) -- C:\Windows\System32\drivers\TPPWR32V.SYS (Lenovo Group Limited)
DRV - (IBMPMDRV) -- C:\Windows\system32\DRIVERS\ibmpmdrv.sys (Lenovo.)
DRV - (iaStor) -- C:\Windows\system32\DRIVERS\iaStor.sys (Intel Corporation)
DRV - (CnxtHdAudService) -- C:\Windows\System32\drivers\CHDRT32.sys (Conexant Systems Inc.)
DRV - (cmdide) -- C:\Windows\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (adpahci) -- C:\Windows\system32\DRIVERS\adpahci.sys (Adaptec, Inc.)
DRV - (adp94xx) -- C:\Windows\system32\DRIVERS\adp94xx.sys (Adaptec, Inc.)
DRV - (amdsbs) -- C:\Windows\system32\DRIVERS\amdsbs.sys (AMD Technologies Inc.)
DRV - (adpu320) -- C:\Windows\system32\DRIVERS\adpu320.sys (Adaptec, Inc.)
DRV - (arcsas) -- C:\Windows\system32\DRIVERS\arcsas.sys (Adaptec, Inc.)
DRV - (amdsata) -- C:\Windows\system32\DRIVERS\amdsata.sys (Advanced Micro Devices)
DRV - (arc) -- C:\Windows\system32\DRIVERS\arc.sys (Adaptec, Inc.)
DRV - (amdxata) -- C:\Windows\system32\DRIVERS\amdxata.sys (Advanced Micro Devices)
DRV - (aliide) -- C:\Windows\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
DRV - (nvstor) -- C:\Windows\system32\DRIVERS\nvstor.sys (NVIDIA Corporation)
DRV - (nvraid) -- C:\Windows\system32\DRIVERS\nvraid.sys (NVIDIA Corporation)
DRV - (nfrd960) -- C:\Windows\system32\DRIVERS\nfrd960.sys (IBM Corporation)
DRV - (LSI_SAS) -- C:\Windows\system32\DRIVERS\lsi_sas.sys (LSI Corporation)
DRV - (iaStorV) -- C:\Windows\system32\DRIVERS\iaStorV.sys (Intel Corporation)
DRV - (MegaSR) -- C:\Windows\system32\DRIVERS\MegaSR.sys (LSI Corporation, Inc.)
DRV - (KSecPkg) -- C:\Windows\System32\Drivers\ksecpkg.sys (Microsoft Corporation)
DRV - (LSI_SCSI) -- C:\Windows\system32\DRIVERS\lsi_scsi.sys (LSI Corporation)
DRV - (LSI_FC) -- C:\Windows\system32\DRIVERS\lsi_fc.sys (LSI Corporation)
DRV - (LSI_SAS2) -- C:\Windows\system32\DRIVERS\lsi_sas2.sys (LSI Corporation)
DRV - (iirsp) -- C:\Windows\system32\DRIVERS\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (megasas) -- C:\Windows\system32\DRIVERS\megasas.sys (LSI Corporation)
DRV - (hwpolicy) -- C:\Windows\System32\drivers\hwpolicy.sys (Microsoft Corporation)
DRV - (elxstor) -- C:\Windows\system32\DRIVERS\elxstor.sys (Emulex)
DRV - (aic78xx) -- C:\Windows\system32\DRIVERS\djsvs.sys (Adaptec, Inc.)
DRV - (HpSAMD) -- C:\Windows\system32\DRIVERS\HpSAMD.sys (Hewlett-Packard Company)
DRV - (FsDepends) -- C:\Windows\System32\drivers\fsdepends.sys (Microsoft Corporation)
DRV - (vsmraid) -- C:\Windows\system32\DRIVERS\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (vmbus) -- C:\Windows\system32\DRIVERS\vmbus.sys (Microsoft Corporation)
DRV - (vhdmp) -- C:\Windows\system32\DRIVERS\vhdmp.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\system32\DRIVERS\vmstorfl.sys (Microsoft Corporation)
DRV - (vdrvroot) -- C:\Windows\system32\DRIVERS\vdrvroot.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\system32\DRIVERS\storvsc.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\System32\drivers\wimmount.sys (Microsoft Corporation)
DRV - (viaide) -- C:\Windows\system32\DRIVERS\viaide.sys (VIA Technologies, Inc.)
DRV - (ql2300) -- C:\Windows\system32\DRIVERS\ql2300.sys (QLogic Corporation)
DRV - (rdyboost) -- C:\Windows\System32\drivers\rdyboost.sys (Microsoft Corporation)
DRV - (ql40xx) -- C:\Windows\system32\DRIVERS\ql40xx.sys (QLogic Corporation)
DRV - (SiSRaid4) -- C:\Windows\system32\DRIVERS\sisraid4.sys (Silicon Integrated Systems)
DRV - (pcw) -- C:\Windows\System32\drivers\pcw.sys (Microsoft Corporation)
DRV - (SiSRaid2) -- C:\Windows\system32\DRIVERS\SiSRaid2.sys (Silicon Integrated Systems Corp.)
DRV - (stexstor) -- C:\Windows\system32\DRIVERS\stexstor.sys (Promise Technology)
DRV - (CNG) -- C:\Windows\System32\Drivers\cng.sys (Microsoft Corporation)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\System32\Drivers\Brserid.sys (Brother Industries Ltd.)
DRV - (rdpbus) -- C:\Windows\system32\DRIVERS\rdpbus.sys (Microsoft Corporation)
DRV - (RDPREFMP) -- C:\Windows\System32\drivers\RDPREFMP.sys (Microsoft Corporation)
DRV - (RasAgileVpn) WAN Miniport (IKEv2) -- C:\Windows\System32\drivers\agilevpn.sys (Microsoft Corporation)
DRV - (WfpLwf) -- C:\Windows\System32\drivers\wfplwf.sys (Microsoft Corporation)
DRV - (NdisCap) -- C:\Windows\System32\drivers\ndiscap.sys (Microsoft Corporation)
DRV - (vwifibus) -- C:\Windows\System32\drivers\vwifibus.sys (Microsoft Corporation)
DRV - (1394ohci) -- C:\Windows\system32\DRIVERS\1394ohci.sys (Microsoft Corporation)
DRV - (UmPass) -- C:\Windows\system32\DRIVERS\umpass.sys (Microsoft Corporation)
DRV - (mshidkmdf) -- C:\Windows\System32\drivers\mshidkmdf.sys (Microsoft Corporation)
DRV - (MTConfig) -- C:\Windows\system32\DRIVERS\MTConfig.sys (Microsoft Corporation)
DRV - (CompositeBus) -- C:\Windows\system32\DRIVERS\CompositeBus.sys (Microsoft Corporation)
DRV - (AppID) -- C:\Windows\system32\drivers\appid.sys (Microsoft Corporation)
DRV - (scfilter) -- C:\Windows\System32\drivers\scfilter.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\system32\DRIVERS\vms3cap.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\system32\DRIVERS\VMBusHID.sys (Microsoft Corporation)
DRV - (discache) -- C:\Windows\System32\drivers\discache.sys (Microsoft Corporation)
DRV - (AcpiPmi) -- C:\Windows\system32\DRIVERS\acpipmi.sys (Microsoft Corporation)
DRV - (TPM) -- C:\Windows\System32\drivers\tpm.sys (Microsoft Corporation)
DRV - (AmdPPM) -- C:\Windows\system32\DRIVERS\amdppm.sys (Microsoft Corporation)
DRV - (hcw85cir) -- C:\Windows\system32\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (BrUsbMdm) -- C:\Windows\System32\Drivers\BrUsbMdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\System32\Drivers\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrSerWdm) -- C:\Windows\System32\Drivers\BrSerWdm.sys (Brother Industries Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\DRIVERS\BrFiltLo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\DRIVERS\BrFiltUp.sys (Brother Industries, Ltd.)
DRV - (SrvHsfV92) -- C:\Windows\System32\drivers\vstdpv3.sys (Conexant Systems, Inc.)
DRV - (SrvHsfWinac) -- C:\Windows\System32\drivers\vstcnxt3.sys (Conexant Systems, Inc.)
DRV - (SrvHsfHDA) -- C:\Windows\System32\drivers\vstazl3.sys (Conexant Systems, Inc.)
DRV - (e1yexpress) Intel(R) -- C:\Windows\System32\drivers\e1y6032.sys (Intel Corporation)
DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (ebdrv) -- C:\Windows\system32\DRIVERS\evbdx.sys (Broadcom Corporation)
DRV - (b06bdrv) -- C:\Windows\system32\DRIVERS\bxvbdx.sys (Broadcom Corporation)
DRV - (TVTI2C) -- C:\Windows\System32\drivers\tvti2c.sys (Lenovo (United States) Inc.)
DRV - (btwaudio) -- C:\Windows\System32\drivers\btwaudio.sys (Broadcom Corporation.)
DRV - (btwavdt) -- C:\Windows\System32\drivers\btwavdt.sys (Broadcom Corporation.)
DRV - (btwrchid) -- C:\Windows\System32\drivers\btwrchid.sys (Broadcom Corporation.)
DRV - (HSF_DPV) -- C:\Windows\System32\drivers\HSX_DPV.sys (Conexant Systems, Inc.)
DRV - (HSXHWAZL) -- C:\Windows\System32\drivers\HSXHWAZL.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\Windows\System32\drivers\HSX_CNXT.sys (Conexant Systems, Inc.)
DRV - (Shockprf) -- C:\Windows\System32\DRIVERS\Apsx86.sys (Lenovo.)
DRV - (TPDIGIMN) -- C:\Windows\System32\DRIVERS\ApsHM86.sys (Lenovo.)
DRV - (rimmptsk) -- C:\Windows\system32\DRIVERS\rimmptsk.sys (REDC)
DRV - (rismxdp) -- C:\Windows\system32\DRIVERS\rixdptsk.sys (REDC)
DRV - (rimsptsk) -- C:\Windows\system32\DRIVERS\rimsptsk.sys (REDC)
DRV - (HECI) Intel(R) -- C:\Windows\system32\DRIVERS\HECI.sys (Intel Corporation)
DRV - (SNP2UVC) USB2.0 PC Camera (SNP2UVC) -- C:\Windows\System32\drivers\snp2uvc.sys ()
DRV - (VClone) -- C:\Windows\system32\DRIVERS\VClone.sys (Elaborate Bytes AG)
DRV - (netw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation)
DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio32.sys (Conexant Systems, Inc.)
DRV - (btwl2cap) -- C:\Windows\System32\drivers\btwl2cap.sys (Broadcom Corporation.)
DRV - (ElbyCDIO) -- C:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (mfehidk) -- C:\Windows\system32\drivers\mfehidk.sys (McAfee, Inc.)
DRV - (mfeavfk) -- C:\Windows\System32\drivers\mfeavfk.sys (McAfee, Inc.)
DRV - (mfeapfk) -- C:\Windows\System32\drivers\mfeapfk.sys (McAfee, Inc.)
DRV - (mferkdet) -- C:\Windows\System32\drivers\mferkdet.sys (McAfee, Inc.)
DRV - (mfetdik) -- C:\Windows\System32\drivers\mfetdik.sys (McAfee, Inc.)
DRV - (mfebopk) -- C:\Windows\System32\drivers\mfebopk.sys (McAfee, Inc.)
DRV - (lenovo.smi) -- C:\Windows\System32\drivers\smiif32.sys (Lenovo Group Limited)
DRV - (regi) -- C:\Windows\System32\drivers\regi.sys (InterVideo)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [You must be registered and logged in to see this link.] [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [You must be registered and logged in to see this link.] [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\..\URLSearchHook: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YouTube Downloader Toolbar\IE\4.1\youtubedownloaderToolbarIE.dll (Spigot, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8992

FF - HKLM\software\mozilla\Firefox\Extensions\\ClickPotatoLite@ClickPotatoLite.com: C:\Program Files\ClickPotatoLite\bin\10.0.622.0\firefox\extensions
FF - HKLM\software\mozilla\Firefox\Extensions\\{075A76EF-2460-4630-959E-DE25D8BC739C}: C:\Users\eswansondavis\AppData\Local\{075A76EF-2460-4630-959E-DE25D8BC739C}\ [2011/01/22 21:52:47 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2009/06/11 08:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptsn.dll (McAfee, Inc.)
O2 - BHO: (Searchqu Toolbar) - {7FF99715-3016-4381-84CE-E4E4C9673020} - File not found
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (BandooIEPlugin Class) - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C:\Program Files\Fun4IM\Plugins\IE\ieplugin.dll (Bandoo Media Inc.)
O2 - BHO: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YouTube Downloader Toolbar\IE\4.1\youtubedownloaderToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {7FF99715-3016-4381-84CE-E4E4C9673020} - File not found
O3 - HKLM\..\Toolbar: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YouTube Downloader Toolbar\IE\4.1\youtubedownloaderToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe_ID0EYTHM] C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [DATAMNGR] C:\Program Files\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe (Discordia, LTD)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [Fzanifexemexi] C:\Users\eswansondavis\AppData\Local\amaxayotik.dll (VoLT, 2010)
O4 - HKLM..\Run: [LENOVO.TPFNF6R] C:\Program Files\Lenovo\HOTKEY\tpfnf6r.exe (Lenovo Group Limited)
O4 - HKLM..\Run: [McAfeeUpdaterUI] C:\Program Files\McAfee\Common Framework\udaterui.exe (McAfee, Inc.)
O4 - HKLM..\Run: [PWMTRV] C:\Program Files\ThinkPad\Utilities\PWMTR32V.DLL (Lenovo Group Limited)
O4 - HKLM..\Run: [SearchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [ShStatEXE] C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE (McAfee, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe (Lenovo Group Limited)
O4 - HKLM..\Run: [TpShocks] C:\Windows\System32\TpShocks.exe (Lenovo.)
O4 - HKLM..\Run: [VirtualCloneDrive] C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Elaborate Bytes AG)
O4 - HKCU..\Run: [{D0E85F96-A486-7746-4E5D-7DBCA46B7DDE}] File not found
O4 - HKCU..\Run: [DAEMON Tools Pro Agent] C:\Program Files\DAEMON Tools Pro\DTAgent.exe (DT Soft Ltd)
O4 - HKCU..\Run: [HPADVISOR] File not found
O4 - HKCU..\Run: [Rkiboqipofe] C:\Users\eswansondavis\AppData\Local\WMPepwus.dll ()
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\steam.exe (Valve Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoMSAppLogo5ChannelNotify = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousUserGroupPolicy = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousMachineGroupPolicy = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceStartMenuLogOff = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTip = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonScripts = 1
O8 - Extra context menu item: Append to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: @C:\Program Files\ThinkPad\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\ThinkPad\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 211.31.138.11 211.29.132.12 198.142.0.51 192.168.1.1 211.31.138.11 211.29.132.12 198.142.0.51
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = stmichaels.vic.edu.au
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 08:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/01/23 20:20:06 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\eswansondavis\Desktop\OTL.exe
[2011/01/23 07:36:14 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/01/23 07:36:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/01/23 07:36:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/01/23 07:36:10 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/01/23 07:36:10 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/01/22 21:55:29 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Roaming\Bandoo
[2011/01/22 21:52:47 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Local\{075A76EF-2460-4630-959E-DE25D8BC739C}
[2011/01/22 21:51:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Bandoo
[2011/01/22 21:51:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Fun4IM
[2011/01/22 21:51:26 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Searchqu Toolbar
[2011/01/22 21:51:25 | 000,000,000 | ---D | C] -- C:\Program Files\Fun4IM
[2011/01/21 16:16:53 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\Desktop\Jap language access listening exam
[2011/01/20 22:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
[2011/01/20 22:41:01 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
[2011/01/20 22:41:01 | 000,000,000 | ---D | C] -- C:\Program Files\PopCap Games
[2011/01/16 22:29:56 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2011/01/16 19:38:23 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\extras
[2011/01/12 20:13:08 | 000,000,000 | ---D | C] -- C:\Program Files\YouTube Downloader Toolbar
[2011/01/12 20:13:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Spigot
[2011/01/12 20:13:08 | 000,000,000 | ---D | C] -- C:\Program Files\Application Updater
[2011/01/12 20:10:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader
[2011/01/12 20:10:49 | 000,000,000 | ---D | C] -- C:\Program Files\YouTube Downloader
[2011/01/08 17:56:18 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Reciepts
[2011/01/08 15:44:51 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\Documents\Manga
[2011/01/04 21:01:31 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Roaming\Final Draft
[2011/01/04 20:59:09 | 000,000,000 | ---D | C] -- C:\Program Files\Final Draft Tagger
[2011/01/04 20:59:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Final Draft
[2011/01/04 20:58:54 | 000,000,000 | ---D | C] -- C:\Program Files\Final Draft 8
[2010/12/30 23:49:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2010/12/30 23:49:58 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2010/12/29 22:00:01 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2010/12/29 21:54:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2010/12/29 21:50:49 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Roaming\ATI
[2010/12/29 21:50:48 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Local\ATI
[2010/12/29 21:49:44 | 008,198,680 | ---- | C] (Intel(R) Corporation) -- C:\Windows\System32\TVWSetup.exe
[2010/12/29 21:49:42 | 000,261,632 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxTMM.dll
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrsky.lrc
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrrus.lrc
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrptg.lrc
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrplk.lrc
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrnld.lrc
[2010/12/29 21:49:42 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrita.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrtrk.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrsve.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrslv.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrptb.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrnor.lrc
[2010/12/29 21:49:42 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrhun.lrc
[2010/12/29 21:49:42 | 000,084,992 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrtha.lrc
[2010/12/29 21:49:42 | 000,082,944 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrkor.lrc
[2010/12/29 21:49:42 | 000,082,944 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrjpn.lrc
[2010/12/29 21:49:41 | 000,828,928 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxress.dll
[2010/12/29 21:49:41 | 000,086,528 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrfra.lrc
[2010/12/29 21:49:41 | 000,086,528 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxresn.lrc
[2010/12/29 21:49:41 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrfin.lrc
[2010/12/29 21:49:41 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrenu.lrc
[2010/12/29 21:49:41 | 000,084,480 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrheb.lrc
[2010/12/29 21:49:40 | 000,086,528 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrell.lrc
[2010/12/29 21:49:40 | 000,086,016 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrdeu.lrc
[2010/12/29 21:49:40 | 000,085,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrcsy.lrc
[2010/12/29 21:49:40 | 000,084,992 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrdan.lrc
[2010/12/29 21:49:40 | 000,081,920 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrcht.lrc
[2010/12/29 21:49:39 | 000,194,560 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxpph.dll
[2010/12/29 21:49:39 | 000,179,224 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxext.exe
[2010/12/29 21:49:39 | 000,130,048 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxdo.dll
[2010/12/29 21:49:39 | 000,118,272 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxcpl.cpl
[2010/12/29 21:49:39 | 000,084,480 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrara.lrc
[2010/12/29 21:49:39 | 000,081,920 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrchs.lrc
[2010/12/29 21:49:39 | 000,023,552 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxexps.dll
[2010/12/29 21:49:39 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[2010/12/29 21:49:38 | 004,962,816 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igdumd32.dll
[2010/12/29 21:49:38 | 000,571,904 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igdumdx32.dll
[2010/12/29 21:49:37 | 008,758,272 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\igdpmd32.sys
[2010/12/29 21:49:37 | 008,758,272 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\igdkmd32.sys
[2010/12/29 21:49:37 | 004,352,512 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igd10umd32.dll
[2010/12/29 21:49:36 | 011,038,208 | ---- | C] (Intel Corporation) -- C:\Windows\System32\ig4icd32.dll
[2010/12/29 21:49:36 | 000,094,720 | ---- | C] (Intel Corporation) -- C:\Windows\System32\hccutils.dll
[2010/12/29 21:49:35 | 003,155,992 | ---- | C] (Intel Corporation) -- C:\Windows\System32\GfxUI.exe
[2010/12/29 21:49:35 | 000,120,320 | ---- | C] (Intel Corporation) -- C:\Windows\System32\gfxSrvc.dll
[2010/12/29 21:49:34 | 003,058,688 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiumdva.dll
[2010/12/29 21:49:34 | 000,030,208 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiuxpag.dll
[2010/12/29 21:49:33 | 003,975,680 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\System32\atiumdag.dll
[2010/12/29 21:49:33 | 000,159,744 | ---- | C] (AMD) -- C:\Windows\System32\atitmmxx.dll
[2010/12/29 21:49:33 | 000,022,528 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiu9pag.dll
[2010/12/29 21:49:31 | 015,462,912 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atioglxx.dll
[2010/12/29 21:49:31 | 000,210,944 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\drivers\atikmpag.sys
[2010/12/29 21:49:31 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atimpc32.dll
[2010/12/29 21:49:31 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdpcom32.dll
[2010/12/29 21:49:31 | 000,011,776 | ---- | C] (AMD) -- C:\Windows\System32\atimuixx.dll
[2010/12/29 21:49:30 | 005,882,880 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\atikmdag.sys
[2010/12/29 21:49:30 | 000,380,928 | ---- | C] (AMD) -- C:\Windows\System32\atieclxx.exe
[2010/12/29 21:49:30 | 000,176,128 | ---- | C] (AMD) -- C:\Windows\System32\atiesrxx.exe
[2010/12/29 21:49:30 | 000,016,896 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atigktxx.dll
[2010/12/29 21:49:30 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\atiglpxx.dll
[2010/12/29 21:49:29 | 004,323,840 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticaldd.dll
[2010/12/29 21:49:29 | 003,826,688 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\System32\atidxx32.dll
[2010/12/29 21:49:29 | 000,446,464 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\ATIDEMGX.dll
[2010/12/29 21:49:29 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticalrt.dll
[2010/12/29 21:49:28 | 000,237,568 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atiadlxx.dll
[2010/12/29 21:49:28 | 000,143,360 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\atiapfxx.exe
[2010/12/29 21:49:28 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\ati2erec.dll
[2010/12/29 21:49:28 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\System32\aticalcl.dll
[2010/12/29 21:49:28 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\System32\ati2edxx.dll
[2010/12/29 21:48:33 | 000,000,000 | ---D | C] -- C:\DRIVERS
[2010/12/26 21:14:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Last.fm
[2010/12/26 21:14:30 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Local\FalloutNV
[2010/12/26 21:14:10 | 000,000,000 | ---D | C] -- C:\Users\eswansondavis\AppData\Local\Last.fm
[2010/12/26 21:14:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Last.fm
[2010/12/26 21:13:58 | 000,000,000 | ---D | C] -- C:\Program Files\Last.fm
[2010/12/24 23:07:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2010/12/24 23:06:09 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2010/09/21 06:05:29 | 000,232,448 | ---- | C] ( ) -- C:\Windows\System32\rsnp2uvc.dll
[2010/09/21 06:05:29 | 000,196,608 | ---- | C] ( ) -- C:\Windows\System32\csnp2uvc.dll
[2009/07/14 10:24:44 | 000,225,280 | ---- | C] (VoLT, 2010) -- C:\Users\eswansondavis\AppData\Local\amaxayotik.dll
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/01/23 20:21:01 | 000,630,878 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/01/23 20:21:01 | 000,112,258 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/01/23 20:16:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/01/23 20:16:25 | 1981,829,120 | -HS- | M] () -- C:\hiberfil.sys
[2011/01/23 20:10:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\eswansondavis\Desktop\OTL.exe
[2011/01/23 07:41:00 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2011/01/23 07:36:15 | 000,001,074 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/01/23 07:18:27 | 000,003,056 | ---- | M] () -- C:\Users\eswansondavis\AppData\Local\Kdacewaha.dat
[2011/01/23 07:18:00 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/23 05:58:30 | 000,003,056 | ---- | M] () -- C:\Users\eswansondavis\AppData\Local\alepoyow.dll
[2011/01/23 05:35:00 | 000,022,288 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/01/23 05:35:00 | 000,022,288 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/01/23 03:56:30 | 000,003,056 | ---- | M] () -- C:\Users\eswansondavis\AppData\Local\egujumaf.dll
[2011/01/23 01:54:30 | 000,003,056 | ---- | M] () -- C:\Users\eswansondavis\AppData\Local\emoqugar.dll
[2011/01/23 00:19:01 | 000,000,890 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/22 23:52:30 | 000,003,056 | ---- | M] () -- C:\Users\eswansondavis\AppData\Local\ahidigibavuk.dll
[2011/01/21 18:57:54 | 000,000,490 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for ESwansonDavis.job
[2011/01/20 22:41:07 | 000,001,282 | ---- | M] () -- C:\Users\Public\Desktop\Insaniquarium Deluxe.lnk
[2011/01/20 22:04:02 | 000,013,829 | ---- | M] () -- C:\Users\eswansondavis\Desktop\gallery10.jpg
[2011/01/20 21:29:00 | 584,146,219 | ---- | M] () -- C:\Users\eswansondavis\Desktop\EasyA.2010.BRRip_mediafiremoviez.com.mkv
[2011/01/20 20:48:01 | 575,479,786 | ---- | M] () -- C:\Users\eswansondavis\Desktop\Kick Ass 2010.mkv
[2011/01/20 20:44:16 | 342,618,660 | ---- | M] () -- C:\Users\eswansondavis\Desktop\Tangled 2010.mkv
[2011/01/18 19:19:58 | 733,145,544 | ---- | M] () -- C:\Users\eswansondavis\Desktop\The Fifth Element 1997.mkv
[2011/01/17 21:48:48 | 523,256,615 | ---- | M] () -- C:\Users\eswansondavis\Desktop\Resident Evil Afterlife 2010.avi
[2011/01/16 23:06:45 | 000,000,214 | ---- | M] () -- C:\Users\eswansondavis\Desktop\Sid Meier's Civilization V.url
[2011/01/15 20:38:57 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011/01/12 20:10:51 | 000,001,087 | ---- | M] () -- C:\Users\Public\Desktop\YouTube Downloader.lnk
[2011/01/08 15:43:40 | 000,000,024 | ---- | M] () -- C:\Users\eswansondavis\AppData\Roaming\Final Draft Tagger Preferences
[2011/01/05 23:53:55 | 000,007,848 | ---- | M] () -- C:\Windows\unins000.dat
[2011/01/05 23:53:55 | 000,000,913 | ---- | M] () -- C:\Users\Public\Desktop\File Splitter & Joiner.lnk
[2011/01/05 23:53:17 | 000,794,906 | ---- | M] () -- C:\Windows\unins000.exe
[2011/01/05 21:35:35 | 001,755,360 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/01/04 22:20:17 | 000,189,736 | -H-- | M] () -- C:\Windows\System32\mlfcache.dat
[2011/01/04 21:01:29 | 000,000,024 | -H-- | M] () -- C:\ProgramData\.811261211181235583101118113995
[2011/01/04 17:09:00 | 000,000,003 | ---- | M] () -- C:\Windows\System32\C
[2010/12/31 11:23:07 | 000,000,954 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2010/12/26 21:14:07 | 000,000,901 | ---- | M] () -- C:\Users\Public\Desktop\Last.fm.lnk
[2010/12/24 23:07:48 | 000,001,760 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/01/23 07:36:15 | 000,001,074 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/01/23 05:58:30 | 000,003,056 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\alepoyow.dll
[2011/01/23 03:56:30 | 000,003,056 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\egujumaf.dll
[2011/01/23 01:54:30 | 000,003,056 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\emoqugar.dll
[2011/01/22 23:52:30 | 000,003,056 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\ahidigibavuk.dll
[2011/01/22 21:52:47 | 000,003,056 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\Kdacewaha.dat
[2011/01/20 22:41:07 | 000,001,282 | ---- | C] () -- C:\Users\Public\Desktop\Insaniquarium Deluxe.lnk
[2011/01/20 22:04:05 | 000,013,829 | ---- | C] () -- C:\Users\eswansondavis\Desktop\gallery10.jpg
[2011/01/20 21:28:14 | 584,146,219 | ---- | C] () -- C:\Users\eswansondavis\Desktop\EasyA.2010.BRRip_mediafiremoviez.com.mkv
[2011/01/20 20:45:32 | 575,479,786 | ---- | C] () -- C:\Users\eswansondavis\Desktop\Kick Ass 2010.mkv
[2011/01/20 20:43:57 | 342,618,660 | ---- | C] () -- C:\Users\eswansondavis\Desktop\Tangled 2010.mkv
[2011/01/20 20:43:37 | 000,062,478 | ---- | C] () -- C:\Users\eswansondavis\Desktop\My Life as a Dog (1985).srt
[2011/01/20 20:42:20 | 311,592,618 | ---- | C] () -- C:\Users\eswansondavis\Desktop\101 Dalmations 1961.mkv
[2011/01/20 20:41:14 | 733,609,984 | ---- | C] () -- C:\Users\eswansondavis\Desktop\My Life as a Dog (1985).avi
[2011/01/18 19:17:06 | 733,145,544 | ---- | C] () -- C:\Users\eswansondavis\Desktop\The Fifth Element 1997.mkv
[2011/01/17 21:47:00 | 523,256,615 | ---- | C] () -- C:\Users\eswansondavis\Desktop\Resident Evil Afterlife 2010.avi
[2011/01/16 22:29:55 | 000,000,214 | ---- | C] () -- C:\Users\eswansondavis\Desktop\Sid Meier's Civilization V.url
[2011/01/16 19:38:29 | 013,045,203 | ---- | C] () -- C:\Users\Public\Documents\nin_ghosts_I-IV.pdf
[2011/01/15 20:38:57 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011/01/12 20:10:51 | 000,001,087 | ---- | C] () -- C:\Users\Public\Desktop\YouTube Downloader.lnk
[2011/01/08 15:43:40 | 000,000,024 | ---- | C] () -- C:\Users\eswansondavis\AppData\Roaming\Final Draft Tagger Preferences
[2011/01/04 21:01:08 | 000,000,024 | -H-- | C] () -- C:\ProgramData\.811261211181235583101118113995
[2011/01/04 20:59:10 | 000,003,087 | ---- | C] () -- C:\Users\eswansondavis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Final Draft Tagger 2.lnk
[2011/01/04 20:59:10 | 000,000,918 | ---- | C] () -- C:\Users\eswansondavis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Final Draft 8.lnk
[2010/12/30 23:49:58 | 000,000,954 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2010/12/29 21:49:43 | 001,921,265 | ---- | C] () -- C:\Windows\System32\iglhxa32.cpa
[2010/12/29 21:49:43 | 000,982,240 | ---- | C] () -- C:\Windows\System32\igkrng500.bin
[2010/12/29 21:49:43 | 000,208,896 | ---- | C] () -- C:\Windows\System32\iglhsip32.dll
[2010/12/29 21:49:43 | 000,143,360 | ---- | C] () -- C:\Windows\System32\iglhcp32.dll
[2010/12/29 21:49:43 | 000,060,254 | ---- | C] () -- C:\Windows\System32\iglhxg32.vp
[2010/12/29 21:49:43 | 000,060,226 | ---- | C] () -- C:\Windows\System32\iglhxc32.vp
[2010/12/29 21:49:43 | 000,060,015 | ---- | C] () -- C:\Windows\System32\iglhxo32.vp
[2010/12/29 21:49:43 | 000,051,332 | ---- | C] () -- C:\Windows\System32\iglhxs32.vp
[2010/12/29 21:49:43 | 000,001,090 | ---- | C] () -- C:\Windows\System32\iglhxa32.vp
[2010/12/29 21:49:39 | 000,092,356 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin
[2010/12/29 21:49:37 | 000,439,308 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin
[2010/12/29 21:49:35 | 000,189,408 | ---- | C] () -- C:\Windows\System32\Gfxres.th-TH.resources
[2010/12/29 21:49:35 | 000,178,288 | ---- | C] () -- C:\Windows\System32\Gfxres.el-GR.resources
[2010/12/29 21:49:35 | 000,165,251 | ---- | C] () -- C:\Windows\System32\Gfxres.ru-RU.resources
[2010/12/29 21:49:35 | 000,139,830 | ---- | C] () -- C:\Windows\System32\Gfxres.ar-SA.resources
[2010/12/29 21:49:35 | 000,136,327 | ---- | C] () -- C:\Windows\System32\Gfxres.ja-JP.resources
[2010/12/29 21:49:35 | 000,133,680 | ---- | C] () -- C:\Windows\System32\Gfxres.he-IL.resources
[2010/12/29 21:49:35 | 000,125,477 | ---- | C] () -- C:\Windows\System32\Gfxres.it-IT.resources
[2010/12/29 21:49:35 | 000,123,164 | ---- | C] () -- C:\Windows\System32\Gfxres.ko-KR.resources
[2010/12/29 21:49:35 | 000,122,858 | ---- | C] () -- C:\Windows\System32\Gfxres.es-ES.resources
[2010/12/29 21:49:35 | 000,122,638 | ---- | C] () -- C:\Windows\System32\Gfxres.de-DE.resources
[2010/12/29 21:49:35 | 000,121,121 | ---- | C] () -- C:\Windows\System32\Gfxres.tr-TR.resources
[2010/12/29 21:49:35 | 000,120,695 | ---- | C] () -- C:\Windows\System32\Gfxres.fr-FR.resources
[2010/12/29 21:49:35 | 000,120,287 | ---- | C] () -- C:\Windows\System32\Gfxres.pt-BR.resources
[2010/12/29 21:49:35 | 000,119,533 | ---- | C] () -- C:\Windows\System32\Gfxres.hu-HU.resources
[2010/12/29 21:49:35 | 000,119,513 | ---- | C] () -- C:\Windows\System32\Gfxres.nl-NL.resources
[2010/12/29 21:49:35 | 000,119,286 | ---- | C] () -- C:\Windows\System32\Gfxres.sv-SE.resources
[2010/12/29 21:49:35 | 000,118,997 | ---- | C] () -- C:\Windows\System32\Gfxres.pt-PT.resources
[2010/12/29 21:49:35 | 000,118,684 | ---- | C] () -- C:\Windows\System32\Gfxres.cs-CZ.resources
[2010/12/29 21:49:35 | 000,118,631 | ---- | C] () -- C:\Windows\System32\Gfxres.fi-FI.resources
[2010/12/29 21:49:35 | 000,118,317 | ---- | C] () -- C:\Windows\System32\Gfxres.pl-PL.resources
[2010/12/29 21:49:35 | 000,117,984 | ---- | C] () -- C:\Windows\System32\Gfxres.sk-SK.resources
[2010/12/29 21:49:35 | 000,114,779 | ---- | C] () -- C:\Windows\System32\Gfxres.nb-NO.resources
[2010/12/29 21:49:35 | 000,114,308 | ---- | C] () -- C:\Windows\System32\Gfxres.sl-SI.resources
[2010/12/29 21:49:35 | 000,114,179 | ---- | C] () -- C:\Windows\System32\Gfxres.da-DK.resources
[2010/12/29 21:49:35 | 000,110,156 | ---- | C] () -- C:\Windows\System32\Gfxres.en-US.resources
[2010/12/29 21:49:35 | 000,103,997 | ---- | C] () -- C:\Windows\System32\Gfxres.zh-TW.resources
[2010/12/29 21:49:35 | 000,102,843 | ---- | C] () -- C:\Windows\System32\Gfxres.zh-CN.resources
[2010/12/29 21:49:35 | 000,000,151 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
[2010/12/29 21:49:34 | 000,543,664 | ---- | C] () -- C:\Windows\System32\atiumdva.cap
[2010/12/29 21:49:33 | 000,002,857 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2010/12/29 21:49:31 | 000,021,682 | ---- | C] () -- C:\Windows\atiogl.xml
[2010/12/29 21:49:30 | 000,205,156 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2010/12/29 21:49:28 | 000,063,464 | ---- | C] () -- C:\Windows\System32\atiapfxx.blb
[2010/12/26 21:14:07 | 000,000,901 | ---- | C] () -- C:\Users\Public\Desktop\Last.fm.lnk
[2010/12/24 23:07:48 | 000,001,760 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/12/20 22:51:07 | 000,000,181 | ---- | C] () -- C:\Windows\WININIT.INI
[2010/11/17 15:35:31 | 000,815,104 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010/11/17 15:35:31 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010/09/21 06:05:29 | 003,486,208 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2010/09/21 06:05:29 | 000,028,544 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys
[2010/09/21 06:05:29 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini
[2010/09/20 14:42:23 | 002,463,976 | ---- | C] () -- C:\Windows\System32\NPSWF32.dll
[2010/09/20 14:12:10 | 000,050,698 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009/08/03 00:21:54 | 000,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2009/07/14 10:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 10:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/07/14 10:24:44 | 000,090,112 | ---- | C] () -- C:\Users\eswansondavis\AppData\Local\WMPepwus.dll

< End of report >

Littletreecreature

Unborn
Unborn

Posts : 4
Joined : 2011-01-23
Operating System : Windows 7

View user profile

Back to top Go down

Re: I have a virus stopping me from opening anything.

Post by Littletreecreature on Sun 23 Jan 2011, 8:31 pm

OTL Extras logfile created on: 1/23/2011 8:24:42 PM - Run 1
OTL by OldTimer - Version 3.2.20.4 Folder = C:\Users\eswansondavis\Desktop
An unknown product (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 81.00% Memory free
5.00 Gb Paging File | 4.00 Gb Available in Paging File | 91.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149.05 Gb Total Space | 25.33 Gb Free Space | 17.00% Space Free | Partition Type: NTFS
Drive D: | 5.55 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive G: | 966.99 Mb Total Space | 965.93 Mb Free Space | 99.89% Space Free | Partition Type: FAT32

Computer Name: PCSMGS-CHKS60J1 | User Name: ESwansonDavis | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
"DisableNotifications" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\GloballyOpenPorts]
"Enabled" = 1
"AllowUserPrefMerge" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\GloballyOpenPorts\List]
"8006:TCP:"*":enabled:FASTFORWORD" = 8006:TCP:"*":enabled:FASTFORWORD
"8006:UDP:"*":enabled:FASTFORWORD" = 8006:UDP:"*":enabled:FASTFORWORD

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\IcmpSettings]
"AllowOutboundDestinationUnreachable" = 1
"AllowOutboundSourceQuench" = 1
"AllowRedirect" = 1
"AllowInboundEchoRequest" = 1
"AllowInboundRouterRequest" = 1
"AllowOutboundTimeExceeded" = 1
"AllowOutboundParameterProblem" = 1
"AllowInboundTimestampRequest" = 1
"AllowInboundMaskRequest" = 1
"AllowOutboundPacketTooBig" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\RemoteAdminSettings]
"Enabled" = 1
"RemoteAddresses" =

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Services\FileAndPrint]
"Enabled" = 1
"RemoteAddresses" =

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Services\RemoteDesktop]
"Enabled" = 1
"RemoteAddresses" =

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
"EnableFirewall" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{0224CACC-994D-45F8-B973-D65056EA9C2F}" = Adobe XMP DVA Panels CS3
"{0327FA9D-975C-448C-A086-577D57BB25B8}" = Adobe Soundbooth CS3 Codecs
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{09FF8CD4-A447-CDD6-DFB2-4CF6F7BD1C1B}" = ccc-utility
"{0B4CC538-B423-B589-123E-74A0F4894364}" = PX Profile Update
"{0D56C859-89B9-3F17-9925-BD134CE6AECA}" = CCC Help English
"{147BCE03-C0F1-4C9F-8157-6A89B6D2D973}" = McAfee VirusScan Enterprise
"{156E82CB-20F2-46cf-BCEA-40E4F23DC4A3}" = YouTube Downloader Toolbar v4.1
"{17CBC505-D1AE-459D-B445-3D2000A85842}" = ThinkPad UltraNav Utility
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{193EAFD0-1BAF-4FB4-B18F-79D5D6A4B285}" = Adobe After Effects CS3 Presets
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 2.6.5
"{1BD07DF4-FB06-41BA-B896-B2DA59000C96}" = Windows Live Toolbar
"{1C76C745-0A3E-648F-439C-611DB86BCB3E}" = ATI Catalyst Install Manager
"{1D58229F-C505-45CA-8223-F35F3A34B963}" = Adobe Version Cue CS3 Server {ko_KR}
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F8DA253-3C27-4B01-A63A-BA3533120833}" = Microsoft Research AutoCollage Touch 2009
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0
"{25C64847-B900-48AD-A164-1B4F9B774650}" = System Update
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 16
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2EFFFC71-1E66-454E-A6E6-CEEC800B96D2}" = Adobe Flash Video Encoder
"{308B6AEA-DE50-4666-996D-0FA461719D6B}" = Apple Mobile Device Support
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3195D3EF-0472-452B-8F79-6B07A040D301}" = League of Legends
"{38A92088-9F3B-166D-5396-B0001A9041F1}" = Catalyst Control Center Graphics Previews Vista
"{3F9AA26C-D390-E524-0177-ADED5E76E14A}" = Catalyst Control Center InstallProxy
"{4335AECB-5FDC-40CB-777D-52E383BAAE7A}" = Catalyst Control Center InstallProxy
"{4511EB07-EE29-4BF1-9B90-CE40F12B16CD}" = ClickView Player
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{46A84694-59EC-48F0-964C-7E76E9F8A2ED}" = ThinkVantage Active Protection System
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{485ACF57-F364-440A-8496-E1E81C8FA1AA}" = Adobe Premiere Pro CS3 Third Party Content
"{4DC49A9A-6DD0-40D2-A851-527764DA8379}" = Adobe Setup
"{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}" = Photo Story 3 for Windows
"{4F4D62A0-CB7B-B503-D7FC-0F89F3BB7D19}" = CCC Help Japanese
"{50F102CA-4BE2-41A9-9810-5BB05EB91B9A}" = Adobe Premiere Pro CS3 Functional Content
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{5371B188-D016-37B0-4C71-986B5D33E762}" = CCC Help Portuguese
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{54B09E60-18E3-1A58-505D-FEE0DAB14AD9}" = Catalyst Control Center Localization All
"{54B2EAD9-A110-43F7-B010-2859A1BD2AFE}" = Adobe Encore CS3
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{58DCEEE5-532E-44F4-B1D7-A146EF9E9FDA}" = Adobe Premiere Pro CS3
"{58ED9767-2CE7-7A05-8C89-813B3557F112}" = CCC Help Chinese Traditional
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{60B28ECA-78BC-4D18-AB63-4A9A93BF881D}" = Adobe Creative Suite 3 Master Collection
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6B52140A-F189-4945-BFFC-DB3F00B8C589}" = Adobe Flash CS3
"{6B708481-748A-4EB4-97C1-CD386244FF77}" = Adobe MotionPicture Color Files
"{6B9B0C6F-E5FA-4633-A640-AB98A272ECCA}" = Safari
"{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}" = AHV content for Acrobat and Flash
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{73E81E9B-7319-43AD-B7CC-1C61405E5089}" = Adobe After Effects CS3 Template Projects & Footage
"{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}" = Mass Effect 2
"{7ACFB90E-8FD0-4397-AD3A-5195412623A3}" = Adobe Help Viewer CS3
"{7B2A21FD-A47F-4200-99BC-0E4C2B77433A}" = ccc-core-static
"{7C10F5C7-F00F-4BD3-A110-C7D240D2DD25}" = Adobe Dreamweaver CS3
"{7C3C895B-AE02-4F30-8A6A-051D37A38DD0}" = Final Draft
"{7DFC1012-D346-46CE-B03E-FF79125AE029}" = Adobe Fireworks CS3
"{7ECEF10B-F1C2-4FD5-861F-A3FCB4653304}" = Adobe After Effects CS3 Third Party Content
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{845A8DB9-8802-4FD3-9FE3-938A6C46A2EC}" = Adobe Video Profiles
"{881F5DE8-9367-4B81-A325-E91BBC6472F9}" = iTunes
"{88B2F404-F553-ABE3-4443-D9E5E1B2CE4F}" = CCC Help Dutch
"{88D422DB-E9C7-4E16-9D80-2999F4FD6AD9}" = Adobe Flash Player 9 Plugin
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E537894-A559-4D60-B3CB-F4485E3D24E3}" = ThinkVantage Access Connections
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{92A300C0-E97B-48CC-9702-AB1AAED167E1}" = Adobe Soundbooth CS3 Scores
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{98BAADEA-0316-4C5D-A308-F6FFAF4DD681}" = Catalyst Control Center - Branding
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack
"{9CC74D41-2163-AC60-608E-8FD3E7096493}" = CCC Help Spanish
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = ThinkPad Bluetooth with Enhanced Data Rate Software
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A638557B-1F13-40A0-9627-C892FBCA6960}" = McAfee Agent
"{A6B23EFA-6590-482C-A11F-5ACE1B91F5B9}" = Adobe Soundbooth CS3
"{A71D5E81-B967-43DB-93D7-FD31BFB95748}" = MobileMe Control Panel
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-1033-0000-7760-000000000003}" = Adobe Acrobat 8 Professional
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{B1B40209-003E-9373-2BE4-EF7EB30E9EA1}" = PX Profile Update
"{B334D9AE-1393-423E-97C0-3BDC3360E692}" = Sonic Icons for Lenovo
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{B671CBFD-4109-4D35-9252-3062D3CCB7B2}" = Adobe SING CS3
"{B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E}" = Adobe BridgeTalk Plugin CS3
"{B743728C-6BF6-8562-E102-7602F5F59FFD}" = CCC Help German
"{B8B7A4D8-80E1-4DAE-BD33-7FD535BA3931}" = Adobe Encore CS3 Codecs
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BE03D78B-D3A5-81FA-E33D-6C20334507D4}" = CCC Help Korean
"{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C444D4EE-5143-4D06-B10A-23965BE475EC}" = ClickView Video Codec MSI Deployer
"{C5BD220A-EFE8-48A5-B70E-9503D535FACE}" = Adobe WAS CS3
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{C6FA39A7-26B1-480A-BC74-6D17531AC222}" = Access Help
"{C7259A62-8533-1E89-9C95-D6B19329D925}" = CCC Help Italian
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CB3F8375-B600-4B9F-83C9-238ED1E583FD}" = Adobe InDesign CS3
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D5A31AB1-345D-47C7-A87B-036A669F6DF1}" = Adobe XMP Panels CS3
"{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}" = ThinkPad Power Manager
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E6D6B669-1D41-ECBF-C5CA-00B6EBA003D8}" = CCC Help Swedish
"{EA7B3CC4-366D-4CF6-8350-FD7A7034116E}" = Adobe InDesign CS3 Icon Handler
"{EB0202F7-016A-410C-ADE4-40F848CCC661}" = Adobe After Effects CS3
"{EBE96946-9AC3-6454-82CC-02602343955A}" = CCC Help Chinese Standard
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F08E8D2E-F132-4742-9C87-D5FF223A016A}" = Adobe Illustrator CS3
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F1D93F5B-881F-49E3-BA56-B4B8FA991059}" = Adobe Encore CS3 Library
"{F419591C-F000-EBBA-D8DE-DE6141B723D3}" = CCC Help French
"{FC9E08AA-CD59-4C59-BEF9-87E05B9E37D7}" = Adobe Contribute CS3
"{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}" = Bonjour
"112AA64E0C8CC704E307FE914F7DEC1C0035598E" = Windows Driver Package - Lenovo 1.55 (08/18/2009 1.55)
"1D1219CED4DAD562C114C845725DCA2DCB312803" = Windows Driver Package - Sonix (SNP2UVC) Image (08/03/2009 5.8.53003.0)
"414685941AB074B2478B18498E0CCA85F81CCBE6" = Windows Driver Package - Ricoh Company (rismxdp) hdc (06/25/2009 6.10.01.04)
"6F84AC23718E31DE66E2EBEDAE047257F4E785D0" = Windows Driver Package - Ricoh Company MMC Host Controller (06/25/2009 6.10.01.03)
"8E6CE26AD682E6D46DCCDD39CD93277A2EAF2449" = Windows Driver Package - AuthenTec Inc. (ATSwpWDF) Biometric (07/07/2009 8.1.2.56)
"Adobe Acrobat 8 Professional" = Adobe Acrobat 8.1.3 Professional
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"Adobe_915239ded2552e78978d0dbab7657a5" = Add or Remove Adobe Creative Suite 3 Master Collection
"ATI Uninstaller" = ATI Uninstaller
"Baldur's Gate" = Baldur's Gate
"Bandoo" = Fun4IM
"CNXT_AUDIO_HDA" = Conexant 20561 SmartAudio HD
"CNXT_MODEM_HDA_HSF" = ThinkPad Modem Adapter
"CopyTrans Suite" = CopyTrans Suite (remove only)
"D91056A9B3130B90EC1BB37F232FA5C4D61DF66F" = Windows Driver Package - Ricoh Company (rimsptsk) hdc (06/25/2009 6.10.01.03)
"DAEMON Tools Pro" = DAEMON Tools Pro
"DivX Setup.divx.com" = DivX Setup
"E7B58217635B8F723D4744A328A4B3237DB35FA9" = Windows Driver Package - Intel System (06/04/2009 1.0.0.0002)
"EnablePS" = Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7
"ENTERPRISE" = Microsoft Office Enterprise 2007
"File Splitter and Joiner_is1" = File Splitter and Joiner (FFSJ v3.3)
"Google Chrome" = Google Chrome
"Google Updater" = Google Updater
"Guitar Pro 5_is1" = Guitar Pro 5.2
"HECI" = Intel(R) Management Engine Interface
"Insaniquarium Deluxe 1.1" = Insaniquarium Deluxe 1.1
"Inspiration 7.5 Intl" = Inspiration 7.5 Intl
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"LastFM_is1" = Last.fm 1.5.4.27091
"LENOVO.SMIIF" = Lenovo System Interface Driver
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"MSTTS" = Microsoft Text-to-Speech Engine 4.0 (English)
"NSS" = Norton Security Scan
"OnScreenDisplay" = On Screen Display
"Power Management Driver" = ThinkPad Power Management Driver
"ResultBar" = ResultBar 1.0 build 113
"Searchqu MediaBar" = Windows Searchqu Toolbar
"Steam App 8930" = Sid Meier's Civilization V
"SynTPDeinstKey" = ThinkPad UltraNav Driver
"ThinkPad FullScreen Magnifier" = ThinkPad FullScreen Magnifier
"VirtualCloneDrive" = VirtualCloneDrive
"VLC media player" = VLC media player 1.1.4
"W7DevOR" = Registry Patch to arrange icons in Device and Printers folder of Windows 7
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"WinX DVD Ripper_is1" = WinX DVD Ripper 4.1.4
"Xvid_is1" = Xvid 1.2.1 final uninstall

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 12/30/2010 5:00:50 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = McLogEvent | ID = 5019
Description = Exception in McShield.Exe! Exception details follow : Build VSE.8.7.0.570
Crash address 0x77a91ffe (naiann=158e0000) Code 0xc0000005 Flags 0x00000000

2 Parameters : 0x00000000 0x77f34f8c Progress = 101

Error - 12/30/2010 5:00:54 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Application Error | ID = 1000
Description = Faulting application name: mfeann.exe, version: 14.1.0.447, time stamp:
0x48c16520 Faulting module name: ntdll.dll, version: 6.1.7600.16385, time stamp:
0x4a5bdadb Exception code: 0xc0000005 Fault offset: 0x00051ffe Faulting process id:
0x904 Faulting application start time: 0x01cba7fee533f5e7 Faulting application path:
C:\Program Files\McAfee\VirusScan Enterprise\mfeann.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: 4e32196b-13f3-11e0-aedc-002268e6184d

Error - 12/30/2010 7:20:46 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "C:\Program Files\Lenovo\Access
Connections\AcCryptHlpr.dll".Error in manifest or policy file "C:\Program Files\Lenovo\Access
Connections\AcCryptHlpr.dll" on line 0. Invalid Xml syntax.

Error - 12/30/2010 7:25:33 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "c:\program files\microsoft\search
enhancement pack\search helper\searchhelper.dll".Error in manifest or policy file
"c:\program files\microsoft\search enhancement pack\search helper\searchhelper.dll"
on line 2. Invalid Xml syntax.

Error - 12/30/2010 8:45:09 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Application Hang | ID = 1002
Description = The program steam.exe version 1.0.968.628 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1098 Start
Time: 01cba810f3d2db9e Termination Time: 18 Application Path: C:\Program Files\Steam\steam.exe

Report
Id:

Error - 12/30/2010 8:47:10 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Application Hang | ID = 1002
Description = The program steam.exe version 1.0.968.628 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 10bc Start
Time: 01cba81f65ef0ae8 Termination Time: 7 Application Path: C:\program files\steam\steam.exe

Report
Id:

Error - 12/30/2010 8:48:34 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Application Hang | ID = 1002
Description = The program steam.exe version 1.0.968.628 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 12c8 Start
Time: 01cba81fb00c4e3b Termination Time: 16 Application Path: C:\Program Files\Steam\steam.exe

Report
Id:

Error - 12/30/2010 9:30:25 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "C:\Program Files\Lenovo\Access
Connections\AcCryptHlpr.dll".Error in manifest or policy file "C:\Program Files\Lenovo\Access
Connections\AcCryptHlpr.dll" on line 0. Invalid Xml syntax.

Error - 12/30/2010 9:32:20 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "c:\program files\microsoft\search
enhancement pack\search helper\searchhelper.dll".Error in manifest or policy file
"c:\program files\microsoft\search enhancement pack\search helper\searchhelper.dll"
on line 2. Invalid Xml syntax.

Error - 12/30/2010 8:31:24 PM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Application Hang | ID = 1002
Description = The program Steam.exe version 1.0.968.628 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 138c Start
Time: 01cba87f52f54a06 Termination Time: 15 Application Path: C:\Program Files\Steam\Steam.exe

Report
Id:

[ System Events ]
Error - 1/15/2011 2:40:15 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = NETLOGON | ID = 5719
Description = This computer was not able to set up a secure session with a domain
controller
in domain SMGS due to the following: %%1311 This may lead to authentication problems.
Make sure that this computer is connected to the network. If the problem persists,
please
contact your domain administrator. ADDITIONAL INFO If this computer is a domain controller
for the specified domain, it sets up the secure session to the primary domain controller
emulator in the specified domain. Otherwise, this computer sets up the secure session
to any domain controller in the specified domain.

Error - 1/15/2011 2:40:26 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Microsoft-Windows-GroupPolicy | ID = 1129
Description = The processing of Group Policy failed because of lack of network connectivity
to a domain controller. This may be a transient condition. A success message would
be generated once the machine gets connected to the domain controller and Group
Policy has succesfully processed. If you do not see a success message for several
hours, then contact your administrator.

Error - 1/15/2011 2:40:35 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Microsoft-Windows-GroupPolicy | ID = 1129
Description = The processing of Group Policy failed because of lack of network connectivity
to a domain controller. This may be a transient condition. A success message would
be generated once the machine gets connected to the domain controller and Group
Policy has succesfully processed. If you do not see a success message for several
hours, then contact your administrator.

Error - 1/15/2011 2:42:44 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Google
Software Updater service to connect.

Error - 1/15/2011 2:44:48 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = EventLog | ID = 6008
Description = The previous system shutdown at 5:43:03 PM on ?1/?15/?2011 was unexpected.

Error - 1/15/2011 2:44:50 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = NETLOGON | ID = 5719
Description = This computer was not able to set up a secure session with a domain
controller
in domain SMGS due to the following: %%1311 This may lead to authentication problems.
Make sure that this computer is connected to the network. If the problem persists,
please
contact your domain administrator. ADDITIONAL INFO If this computer is a domain controller
for the specified domain, it sets up the secure session to the primary domain controller
emulator in the specified domain. Otherwise, this computer sets up the secure session
to any domain controller in the specified domain.

Error - 1/15/2011 2:45:02 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Microsoft-Windows-GroupPolicy | ID = 1129
Description = The processing of Group Policy failed because of lack of network connectivity
to a domain controller. This may be a transient condition. A success message would
be generated once the machine gets connected to the domain controller and Group
Policy has succesfully processed. If you do not see a success message for several
hours, then contact your administrator.

Error - 1/15/2011 2:45:08 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Microsoft-Windows-GroupPolicy | ID = 1129
Description = The processing of Group Policy failed because of lack of network connectivity
to a domain controller. This may be a transient condition. A success message would
be generated once the machine gets connected to the domain controller and Group
Policy has succesfully processed. If you do not see a success message for several
hours, then contact your administrator.

Error - 1/15/2011 2:47:16 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Google
Software Updater service to connect.

Error - 1/15/2011 5:39:26 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = DCOM | ID = 10010
Description =


< End of report >

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
"DisableNotifications" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\GloballyOpenPorts]
"Enabled" = 1
"AllowUserPrefMerge" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\GloballyOpenPorts\List]
"8006:TCP:"*":enabled:FASTFORWORD" = 8006:TCP:"*":enabled:FASTFORWORD
"8006:UDP:"*":enabled:FASTFORWORD" = 8006:UDP:"*":enabled:FASTFORWORD

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\IcmpSettings]
"AllowOutboundDestinationUnreachable" = 1
"AllowOutboundSourceQuench" = 1
"AllowRedirect" = 1
"AllowInboundEchoRequest" = 1
"AllowInboundRouterRequest" = 1
"AllowOutboundTimeExceeded" = 1
"AllowOutboundParameterProblem" = 1
"AllowInboundTimestampRequest" = 1
"AllowInboundMaskRequest" = 1
"AllowOutboundPacketTooBig" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\RemoteAdminSettings]
"Enabled" = 1
"RemoteAddresses" =

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Services\FileAndPrint]
"Enabled" = 1
"RemoteAddresses" =

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Services\RemoteDesktop]
"Enabled" = 1
"RemoteAddresses" =

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
"EnableFirewall" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{0224CACC-994D-45F8-B973-D65056EA9C2F}" = Adobe XMP DVA Panels CS3
"{0327FA9D-975C-448C-A086-577D57BB25B8}" = Adobe Soundbooth CS3 Codecs
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{09FF8CD4-A447-CDD6-DFB2-4CF6F7BD1C1B}" = ccc-utility
"{0B4CC538-B423-B589-123E-74A0F4894364}" = PX Profile Update
"{0D56C859-89B9-3F17-9925-BD134CE6AECA}" = CCC Help English
"{147BCE03-C0F1-4C9F-8157-6A89B6D2D973}" = McAfee VirusScan Enterprise
"{156E82CB-20F2-46cf-BCEA-40E4F23DC4A3}" = YouTube Downloader Toolbar v4.1
"{17CBC505-D1AE-459D-B445-3D2000A85842}" = ThinkPad UltraNav Utility
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{193EAFD0-1BAF-4FB4-B18F-79D5D6A4B285}" = Adobe After Effects CS3 Presets
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 2.6.5
"{1BD07DF4-FB06-41BA-B896-B2DA59000C96}" = Windows Live Toolbar
"{1C76C745-0A3E-648F-439C-611DB86BCB3E}" = ATI Catalyst Install Manager
"{1D58229F-C505-45CA-8223-F35F3A34B963}" = Adobe Version Cue CS3 Server {ko_KR}
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F8DA253-3C27-4B01-A63A-BA3533120833}" = Microsoft Research AutoCollage Touch 2009
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0
"{25C64847-B900-48AD-A164-1B4F9B774650}" = System Update
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 16
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2EFFFC71-1E66-454E-A6E6-CEEC800B96D2}" = Adobe Flash Video Encoder
"{308B6AEA-DE50-4666-996D-0FA461719D6B}" = Apple Mobile Device Support
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3195D3EF-0472-452B-8F79-6B07A040D301}" = League of Legends
"{38A92088-9F3B-166D-5396-B0001A9041F1}" = Catalyst Control Center Graphics Previews Vista
"{3F9AA26C-D390-E524-0177-ADED5E76E14A}" = Catalyst Control Center InstallProxy
"{4335AECB-5FDC-40CB-777D-52E383BAAE7A}" = Catalyst Control Center InstallProxy
"{4511EB07-EE29-4BF1-9B90-CE40F12B16CD}" = ClickView Player
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{46A84694-59EC-48F0-964C-7E76E9F8A2ED}" = ThinkVantage Active Protection System
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{485ACF57-F364-440A-8496-E1E81C8FA1AA}" = Adobe Premiere Pro CS3 Third Party Content
"{4DC49A9A-6DD0-40D2-A851-527764DA8379}" = Adobe Setup
"{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}" = Photo Story 3 for Windows
"{4F4D62A0-CB7B-B503-D7FC-0F89F3BB7D19}" = CCC Help Japanese
"{50F102CA-4BE2-41A9-9810-5BB05EB91B9A}" = Adobe Premiere Pro CS3 Functional Content
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{5371B188-D016-37B0-4C71-986B5D33E762}" = CCC Help Portuguese
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{54B09E60-18E3-1A58-505D-FEE0DAB14AD9}" = Catalyst Control Center Localization All
"{54B2EAD9-A110-43F7-B010-2859A1BD2AFE}" = Adobe Encore CS3
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{58DCEEE5-532E-44F4-B1D7-A146EF9E9FDA}" = Adobe Premiere Pro CS3
"{58ED9767-2CE7-7A05-8C89-813B3557F112}" = CCC Help Chinese Traditional
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{60B28ECA-78BC-4D18-AB63-4A9A93BF881D}" = Adobe Creative Suite 3 Master Collection
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6B52140A-F189-4945-BFFC-DB3F00B8C589}" = Adobe Flash CS3
"{6B708481-748A-4EB4-97C1-CD386244FF77}" = Adobe MotionPicture Color Files
"{6B9B0C6F-E5FA-4633-A640-AB98A272ECCA}" = Safari
"{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}" = AHV content for Acrobat and Flash
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{73E81E9B-7319-43AD-B7CC-1C61405E5089}" = Adobe After Effects CS3 Template Projects & Footage
"{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}" = Mass Effect 2
"{7ACFB90E-8FD0-4397-AD3A-5195412623A3}" = Adobe Help Viewer CS3
"{7B2A21FD-A47F-4200-99BC-0E4C2B77433A}" = ccc-core-static
"{7C10F5C7-F00F-4BD3-A110-C7D240D2DD25}" = Adobe Dreamweaver CS3
"{7C3C895B-AE02-4F30-8A6A-051D37A38DD0}" = Final Draft
"{7DFC1012-D346-46CE-B03E-FF79125AE029}" = Adobe Fireworks CS3
"{7ECEF10B-F1C2-4FD5-861F-A3FCB4653304}" = Adobe After Effects CS3 Third Party Content
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{845A8DB9-8802-4FD3-9FE3-938A6C46A2EC}" = Adobe Video Profiles
"{881F5DE8-9367-4B81-A325-E91BBC6472F9}" = iTunes
"{88B2F404-F553-ABE3-4443-D9E5E1B2CE4F}" = CCC Help Dutch
"{88D422DB-E9C7-4E16-9D80-2999F4FD6AD9}" = Adobe Flash Player 9 Plugin
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E537894-A559-4D60-B3CB-F4485E3D24E3}" = ThinkVantage Access Connections
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{92A300C0-E97B-48CC-9702-AB1AAED167E1}" = Adobe Soundbooth CS3 Scores
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{98BAADEA-0316-4C5D-A308-F6FFAF4DD681}" = Catalyst Control Center - Branding
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack
"{9CC74D41-2163-AC60-608E-8FD3E7096493}" = CCC Help Spanish
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = ThinkPad Bluetooth with Enhanced Data Rate Software
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A638557B-1F13-40A0-9627-C892FBCA6960}" = McAfee Agent
"{A6B23EFA-6590-482C-A11F-5ACE1B91F5B9}" = Adobe Soundbooth CS3
"{A71D5E81-B967-43DB-93D7-FD31BFB95748}" = MobileMe Control Panel
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-1033-0000-7760-000000000003}" = Adobe Acrobat 8 Professional
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{B1B40209-003E-9373-2BE4-EF7EB30E9EA1}" = PX Profile Update
"{B334D9AE-1393-423E-97C0-3BDC3360E692}" = Sonic Icons for Lenovo
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{B671CBFD-4109-4D35-9252-3062D3CCB7B2}" = Adobe SING CS3
"{B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E}" = Adobe BridgeTalk Plugin CS3
"{B743728C-6BF6-8562-E102-7602F5F59FFD}" = CCC Help German
"{B8B7A4D8-80E1-4DAE-BD33-7FD535BA3931}" = Adobe Encore CS3 Codecs
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BE03D78B-D3A5-81FA-E33D-6C20334507D4}" = CCC Help Korean
"{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C444D4EE-5143-4D06-B10A-23965BE475EC}" = ClickView Video Codec MSI Deployer
"{C5BD220A-EFE8-48A5-B70E-9503D535FACE}" = Adobe WAS CS3
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{C6FA39A7-26B1-480A-BC74-6D17531AC222}" = Access Help
"{C7259A62-8533-1E89-9C95-D6B19329D925}" = CCC Help Italian
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CB3F8375-B600-4B9F-83C9-238ED1E583FD}" = Adobe InDesign CS3
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D5A31AB1-345D-47C7-A87B-036A669F6DF1}" = Adobe XMP Panels CS3
"{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}" = ThinkPad Power Manager
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E6D6B669-1D41-ECBF-C5CA-00B6EBA003D8}" = CCC Help Swedish
"{EA7B3CC4-366D-4CF6-8350-FD7A7034116E}" = Adobe InDesign CS3 Icon Handler
"{EB0202F7-016A-410C-ADE4-40F848CCC661}" = Adobe After Effects CS3
"{EBE96946-9AC3-6454-82CC-02602343955A}" = CCC Help Chinese Standard
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F08E8D2E-F132-4742-9C87-D5FF223A016A}" = Adobe Illustrator CS3
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F1D93F5B-881F-49E3-BA56-B4B8FA991059}" = Adobe Encore CS3 Library
"{F419591C-F000-EBBA-D8DE-DE6141B723D3}" = CCC Help French
"{FC9E08AA-CD59-4C59-BEF9-87E05B9E37D7}" = Adobe Contribute CS3
"{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}" = Bonjour
"112AA64E0C8CC704E307FE914F7DEC1C0035598E" = Windows Driver Package - Lenovo 1.55 (08/18/2009 1.55)
"1D1219CED4DAD562C114C845725DCA2DCB312803" = Windows Driver Package - Sonix (SNP2UVC) Image (08/03/2009 5.8.53003.0)
"414685941AB074B2478B18498E0CCA85F81CCBE6" = Windows Driver Package - Ricoh Company (rismxdp) hdc (06/25/2009 6.10.01.04)
"6F84AC23718E31DE66E2EBEDAE047257F4E785D0" = Windows Driver Package - Ricoh Company MMC Host Controller (06/25/2009 6.10.01.03)
"8E6CE26AD682E6D46DCCDD39CD93277A2EAF2449" = Windows Driver Package - AuthenTec Inc. (ATSwpWDF) Biometric (07/07/2009 8.1.2.56)
"Adobe Acrobat 8 Professional" = Adobe Acrobat 8.1.3 Professional
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"Adobe_915239ded2552e78978d0dbab7657a5" = Add or Remove Adobe Creative Suite 3 Master Collection
"ATI Uninstaller" = ATI Uninstaller
"Baldur's Gate" = Baldur's Gate
"Bandoo" = Fun4IM
"CNXT_AUDIO_HDA" = Conexant 20561 SmartAudio HD
"CNXT_MODEM_HDA_HSF" = ThinkPad Modem Adapter
"CopyTrans Suite" = CopyTrans Suite (remove only)
"D91056A9B3130B90EC1BB37F232FA5C4D61DF66F" = Windows Driver Package - Ricoh Company (rimsptsk) hdc (06/25/2009 6.10.01.03)
"DAEMON Tools Pro" = DAEMON Tools Pro
"DivX Setup.divx.com" = DivX Setup
"E7B58217635B8F723D4744A328A4B3237DB35FA9" = Windows Driver Package - Intel System (06/04/2009 1.0.0.0002)
"EnablePS" = Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7
"ENTERPRISE" = Microsoft Office Enterprise 2007
"File Splitter and Joiner_is1" = File Splitter and Joiner (FFSJ v3.3)
"Google Chrome" = Google Chrome
"Google Updater" = Google Updater
"Guitar Pro 5_is1" = Guitar Pro 5.2
"HECI" = Intel(R) Management Engine Interface
"Insaniquarium Deluxe 1.1" = Insaniquarium Deluxe 1.1
"Inspiration 7.5 Intl" = Inspiration 7.5 Intl
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"LastFM_is1" = Last.fm 1.5.4.27091
"LENOVO.SMIIF" = Lenovo System Interface Driver
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"MSTTS" = Microsoft Text-to-Speech Engine 4.0 (English)
"NSS" = Norton Security Scan
"OnScreenDisplay" = On Screen Display
"Power Management Driver" = ThinkPad Power Management Driver
"ResultBar" = ResultBar 1.0 build 113
"Searchqu MediaBar" = Windows Searchqu Toolbar
"Steam App 8930" = Sid Meier's Civilization V
"SynTPDeinstKey" = ThinkPad UltraNav Driver
"ThinkPad FullScreen Magnifier" = ThinkPad FullScreen Magnifier
"VirtualCloneDrive" = VirtualCloneDrive
"VLC media player" = VLC media player 1.1.4
"W7DevOR" = Registry Patch to arrange icons in Device and Printers folder of Windows 7
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"WinX DVD Ripper_is1" = WinX DVD Ripper 4.1.4
"Xvid_is1" = Xvid 1.2.1 final uninstall

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 12/30/2010 5:00:50 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = McLogEvent | ID = 5019
Description = Exception in McShield.Exe! Exception details follow : Build VSE.8.7.0.570
Crash address 0x77a91ffe (naiann=158e0000) Code 0xc0000005 Flags 0x00000000

2 Parameters : 0x00000000 0x77f34f8c Progress = 101

Error - 12/30/2010 5:00:54 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Application Error | ID = 1000
Description = Faulting application name: mfeann.exe, version: 14.1.0.447, time stamp:
0x48c16520 Faulting module name: ntdll.dll, version: 6.1.7600.16385, time stamp:
0x4a5bdadb Exception code: 0xc0000005 Fault offset: 0x00051ffe Faulting process id:
0x904 Faulting application start time: 0x01cba7fee533f5e7 Faulting application path:
C:\Program Files\McAfee\VirusScan Enterprise\mfeann.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report
Id: 4e32196b-13f3-11e0-aedc-002268e6184d

Error - 12/30/2010 7:20:46 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "C:\Program Files\Lenovo\Access
Connections\AcCryptHlpr.dll".Error in manifest or policy file "C:\Program Files\Lenovo\Access
Connections\AcCryptHlpr.dll" on line 0. Invalid Xml syntax.

Error - 12/30/2010 7:25:33 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "c:\program files\microsoft\search
enhancement pack\search helper\searchhelper.dll".Error in manifest or policy file
"c:\program files\microsoft\search enhancement pack\search helper\searchhelper.dll"
on line 2. Invalid Xml syntax.

Error - 12/30/2010 8:45:09 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Application Hang | ID = 1002
Description = The program steam.exe version 1.0.968.628 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1098 Start
Time: 01cba810f3d2db9e Termination Time: 18 Application Path: C:\Program Files\Steam\steam.exe

Report
Id:

Error - 12/30/2010 8:47:10 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Application Hang | ID = 1002
Description = The program steam.exe version 1.0.968.628 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 10bc Start
Time: 01cba81f65ef0ae8 Termination Time: 7 Application Path: C:\program files\steam\steam.exe

Report
Id:

Error - 12/30/2010 8:48:34 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Application Hang | ID = 1002
Description = The program steam.exe version 1.0.968.628 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 12c8 Start
Time: 01cba81fb00c4e3b Termination Time: 16 Application Path: C:\Program Files\Steam\steam.exe

Report
Id:

Error - 12/30/2010 9:30:25 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "C:\Program Files\Lenovo\Access
Connections\AcCryptHlpr.dll".Error in manifest or policy file "C:\Program Files\Lenovo\Access
Connections\AcCryptHlpr.dll" on line 0. Invalid Xml syntax.

Error - 12/30/2010 9:32:20 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "c:\program files\microsoft\search
enhancement pack\search helper\searchhelper.dll".Error in manifest or policy file
"c:\program files\microsoft\search enhancement pack\search helper\searchhelper.dll"
on line 2. Invalid Xml syntax.

Error - 12/30/2010 8:31:24 PM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Application Hang | ID = 1002
Description = The program Steam.exe version 1.0.968.628 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 138c Start
Time: 01cba87f52f54a06 Termination Time: 15 Application Path: C:\Program Files\Steam\Steam.exe

Report
Id:

[ System Events ]
Error - 1/15/2011 2:40:15 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = NETLOGON | ID = 5719
Description = This computer was not able to set up a secure session with a domain
controller
in domain SMGS due to the following: %%1311 This may lead to authentication problems.
Make sure that this computer is connected to the network. If the problem persists,
please
contact your domain administrator. ADDITIONAL INFO If this computer is a domain controller
for the specified domain, it sets up the secure session to the primary domain controller
emulator in the specified domain. Otherwise, this computer sets up the secure session
to any domain controller in the specified domain.

Error - 1/15/2011 2:40:26 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Microsoft-Windows-GroupPolicy | ID = 1129
Description = The processing of Group Policy failed because of lack of network connectivity
to a domain controller. This may be a transient condition. A success message would
be generated once the machine gets connected to the domain controller and Group
Policy has succesfully processed. If you do not see a success message for several
hours, then contact your administrator.

Error - 1/15/2011 2:40:35 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Microsoft-Windows-GroupPolicy | ID = 1129
Description = The processing of Group Policy failed because of lack of network connectivity
to a domain controller. This may be a transient condition. A success message would
be generated once the machine gets connected to the domain controller and Group
Policy has succesfully processed. If you do not see a success message for several
hours, then contact your administrator.

Error - 1/15/2011 2:42:44 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Google
Software Updater service to connect.

Error - 1/15/2011 2:44:48 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = EventLog | ID = 6008
Description = The previous system shutdown at 5:43:03 PM on ?1/?15/?2011 was unexpected.

Error - 1/15/2011 2:44:50 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = NETLOGON | ID = 5719
Description = This computer was not able to set up a secure session with a domain
controller
in domain SMGS due to the following: %%1311 This may lead to authentication problems.
Make sure that this computer is connected to the network. If the problem persists,
please
contact your domain administrator. ADDITIONAL INFO If this computer is a domain controller
for the specified domain, it sets up the secure session to the primary domain controller
emulator in the specified domain. Otherwise, this computer sets up the secure session
to any domain controller in the specified domain.

Error - 1/15/2011 2:45:02 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Microsoft-Windows-GroupPolicy | ID = 1129
Description = The processing of Group Policy failed because of lack of network connectivity
to a domain controller. This may be a transient condition. A success message would
be generated once the machine gets connected to the domain controller and Group
Policy has succesfully processed. If you do not see a success message for several
hours, then contact your administrator.

Error - 1/15/2011 2:45:08 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Microsoft-Windows-GroupPolicy | ID = 1129
Description = The processing of Group Policy failed because of lack of network connectivity
to a domain controller. This may be a transient condition. A success message would
be generated once the machine gets connected to the domain controller and Group
Policy has succesfully processed. If you do not see a success message for several
hours, then contact your administrator.

Error - 1/15/2011 2:47:16 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Google
Software Updater service to connect.

Error - 1/15/2011 5:39:26 AM | Computer Name = PCSMGS-CHKS60J1.stmichaels.vic.edu.au | Source = DCOM | ID = 10010
Description =


< End of report >

Littletreecreature

Unborn
Unborn

Posts : 4
Joined : 2011-01-23
Operating System : Windows 7

View user profile

Back to top Go down

Re: I have a virus stopping me from opening anything.

Post by Belahzur on Mon 24 Jan 2011, 12:10 pm

Hello.

Please download ComboFix from BleepingComputer.com

Alternate link: GeeksToGo.com


Rename ComboFix.exe to commy.exe before you save it to your Desktop
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found here
  • Click Start then copy paste the following command into the search box & hit enter: "%userprofile%\desktop\commy.exe" /stepdel
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. This will not install in Vista. Just continue scanning, and skip the console install.
  • When finished, it shall produce a log for you. Please include the contents of C:\ComboFix.txt in your next reply.


@RealBelahzur - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur

Manager | Tech Officer
Manager | Tech Officer

Posts : 34917
Joined : 2008-08-04
Operating System : XP SP3 Media Centre

View user profile

Back to top Go down

Re: I have a virus stopping me from opening anything.

Post by Sponsored content Today at 12:43 pm


Sponsored content


Back to top Go down

View previous topic View next topic Back to top


 
Permissions in this forum:
You cannot reply to topics in this forum