Success!
Hi, Jeff. Here are the OTL logs. I could not fit both together, so this post has OTL.txt, and the next will have Extras.txt
OTL.txt
OTL logfile created on: 9/13/2011 2:20:25 PM - Run 1
OTL by OldTimer - Version 3.2.28.0 Folder = C:\Documents and Settings\Owner\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
254.98 Mb Total Physical Memory | 97.20 Mb Available Physical Memory | 38.12% Memory free
1.21 Gb Paging File | 0.98 Gb Available in Paging File | 80.80% Paging File free
Paging file location(s): C:\pagefile.sys 1000 1600 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINNT | %ProgramFiles% = C:\Program Files
Drive C: | 27.95 Gb Total Space | 4.40 Gb Free Space | 15.73% Space Free | Partition Type: NTFS
Computer Name: MINIME | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Owner\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe (Symantec Corporation)
PRC - C:\WINNT\explorer.exe (Microsoft Corporation)
PRC - C:\WINNT\GWHotKey.exe (BillP Studios)
========== Modules (No Company Name) ==========
MOD - C:\Program Files\ArcSoft\PhotoImpression 5\Share\PIHook.dll ()
========== Win32 Services (SafeList) ==========
SRV - (HidServ) -- File not found
SRV - (AppMgmt) -- File not found
SRV - (NIS) -- C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe (Symantec Corporation)
SRV - (GamesAppService) -- C:\Program Files\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
SRV - (GameConsoleService) -- C:\Program Files\WildGames\Game Console - WildGames\GameConsoleService.exe (WildTangent, Inc.)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (ACS) -- C:\WINNT\system32\acs.exe ()
========== Driver Services (SafeList) ==========
DRV - (SymEvent) -- C:\WINNT\system32\drivers\SYMEVENT.SYS (Symantec Corporation)
DRV - (NAVEX15) -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\Definitions\VirusDefs\20110910.002\NAVEX15.SYS (Symantec Corporation)
DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (NAVENG) -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\Definitions\VirusDefs\20110910.002\NAVENG.SYS (Symantec Corporation)
DRV - (IDSxpx86) -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\Definitions\IPSDefs\20110909.030\IDSXpx86.sys (Symantec Corporation)
DRV - (BHDrvx86) -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\Definitions\BASHDefs\20110901.001\BHDrvx86.sys (Symantec Corporation)
DRV - (SRTSP) -- C:\WINNT\system32\drivers\NIS\1206000.01D\SRTSP.SYS (Symantec Corporation)
DRV - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\WINNT\system32\drivers\NIS\1206000.01D\SRTSPX.SYS (Symantec Corporation)
DRV - (SYMTDI) -- C:\WINNT\system32\drivers\NIS\1206000.01D\SYMTDI.SYS (Symantec Corporation)
DRV - (SymEFA) -- C:\WINNT\system32\drivers\NIS\1206000.01D\SYMEFA.SYS (Symantec Corporation)
DRV - (SymDS) -- C:\WINNT\system32\drivers\NIS\1206000.01D\SYMDS.SYS (Symantec Corporation)
DRV - (SymIRON) -- C:\WINNT\system32\drivers\NIS\1206000.01D\Ironx86.SYS (Symantec Corporation)
DRV - (Revoflt) -- C:\WINNT\system32\drivers\revoflt.sys (VS Revo Group)
DRV - (LUsbFilt) -- C:\WINNT\system32\drivers\LUsbFilt.sys (Logitech, Inc.)
DRV - (LMouFilt) -- C:\WINNT\system32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\WINNT\system32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (Cdralw2k) -- C:\WINNT\System32\drivers\cdralw2k.sys (Sonic Solutions)
DRV - (Cdr4_xp) -- C:\WINNT\System32\drivers\cdr4_xp.sys (Sonic Solutions)
DRV - (MDC8021X) AEGIS Protocol (IEEE 802.1x) -- C:\WINNT\system32\drivers\mdc8021x.sys (Meetinghouse Data Communications)
DRV - (usb2vcom) -- C:\WINNT\system32\drivers\usb2vcom.sys ()
DRV - (Afc) -- C:\WINNT\system32\drivers\afc.sys (Arcsoft, Inc.)
DRV - (CoachAud) -- C:\WINNT\system32\drivers\CoachAud.sys (FotoNation Inc.)
DRV - (AR5211) -- C:\WINNT\system32\drivers\ar5211.sys (D-Link )
DRV - (PRISM_A02) -- C:\WINNT\system32\drivers\WUSB20XP.sys (GlobespanVirata, Inc.)
DRV - (NPF) -- C:\WINNT\system32\drivers\packet.sys ()
DRV - (ati2mtag) -- C:\WINNT\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (dvd_2K) -- C:\WINNT\System32\drivers\Dvd_2k.sys (Roxio)
DRV - (mmc_2K) -- C:\WINNT\System32\drivers\Mmc_2k.sys (Roxio)
DRV - (pwd_2k) -- C:\WINNT\System32\drivers\pwd_2K.sys (Roxio)
DRV - (UdfReadr_xp) -- C:\WINNT\System32\drivers\udfreadr_xp.sys (Roxio)
DRV - (cdudf_xp) -- C:\WINNT\System32\drivers\cdudf_xp.sys (Roxio)
DRV - (wlluc48) -- C:\WINNT\system32\drivers\wlluc48.sys (Lucent Technologies)
DRV - (allegro) ESS Allegro Audio Driver (WDM) -- C:\WINNT\system32\drivers\es198x.sys (ESS Technology, Inc.)
DRV - (GTWModem) -- C:\WINNT\system32\drivers\GWMDM.sys (GTW)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINNT\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINNT\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.com
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: CLSID key missing. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.selectedEngine: "Merriam-Webster Dictionary"
FF - prefs.js..browser.startup.homepage: "http://www.google.com/ig?hl=en"
FF - prefs.js..extensions.enabledItems:
define@sogame.cat:1.4.0
FF - prefs.js..extensions.enabledItems:
moveplayer@movenetworks.com:1.0.0.07076007
FF - prefs.js..extensions.enabledItems: {46868735-c3fa-47ce-8ce7-cce51a66aceb}:1.2
FF - prefs.js..extensions.enabledItems: {4DC70064-89E2-4a55-8FC6-E8CDEAE3612C}:0.6.7
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.9
FF - prefs.js..extensions.enabledItems: {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}:1.67
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:5.6
FF - prefs.js..extensions.enabledItems: {66871bd1-5ba2-4739-b485-2a15f5969bd8}:2.20100123
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINNT\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINNT\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@macromedia.com/FlashPlayer6: File not found
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\3.0.50106.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINNT\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.10.835: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/npracplug;version=1.0.0.0: C:\Program Files\Real\RealArcade\Plugins\Mozilla\npracplug.dll (RealNetworks)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.1136: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.11.847: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF - HKCU\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINNT\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKCU\Software\MozillaPlugins\@macromedia.com/FlashPlayer6: File not found
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\IPSFFPlgn\ [2011/09/07 14:07:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\coFFPlgn_2011_7_1_3 [2011/09/13 14:06:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/06 16:22:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/08 17:57:26 | 000,000,000 | ---D | M]
[2008/09/01 23:16:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Extensions
[2011/09/06 12:53:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\extensions
[2010/04/27 22:29:19 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2008/09/16 07:45:46 | 000,000,000 | ---D | M] (oldbar) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\extensions\{46868735-c3fa-47ce-8ce7-cce51a66aceb}
[2010/03/11 03:58:33 | 000,000,000 | ---D | M] (Ad blocker) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\extensions\{4DC70064-89E2-4a55-8FC6-E8CDEAE3612C}
[2010/03/11 03:15:54 | 000,000,000 | ---D | M] (MidnightFox) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\extensions\{66871bd1-5ba2-4739-b485-2a15f5969bd8}
[2011/08/28 01:51:54 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011/08/28 01:51:51 | 000,000,000 | ---D | M] ("BetterPrivacy") -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}
[2010/03/11 06:04:46 | 000,000,000 | ---D | M] (Define) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\extensions\define@sogame.cat
[2010/03/11 03:16:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\extensions\{66871bd1-5ba2-4739-b485-2a15f5969bd8}\chrome\mozapps\extensions
[2010/03/11 03:16:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\extensions\{66871bd1-5ba2-4739-b485-2a15f5969bd8}\chrome\mozapps\extensions\CVS
[2008/06/18 17:04:04 | 000,000,681 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\7ptvott5.default\searchplugins\webster.xml
[2011/09/06 12:37:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/09/13 14:06:16 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\COFFPLGN_2011_7_1_3
[2011/09/07 14:07:25 | 000,000,000 | ---D | M] (Symantec IPS) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\IPSFFPLGN
[2011/09/06 16:22:48 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2007/05/11 17:41:00 | 000,200,704 | ---- | M] (Ancestry.com) -- C:\Program Files\mozilla firefox\plugins\npImgCtl.dll
[2005/04/27 16:10:49 | 000,102,400 | ---- | M] (RealNetworks) -- C:\Program Files\mozilla firefox\plugins\npracplug.dll
[2004/01/13 22:09:25 | 000,176,176 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\npViewpoint.dll
[2008/02/07 18:41:04 | 000,002,151 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011/08/30 15:41:02 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2007/07/15 09:19:00 | 000,000,173 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\conduit.gif
[2007/07/31 22:27:00 | 000,000,271 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\conduit.src
O1 HOSTS File: ([2011/09/11 01:53:54 | 000,437,601 | R--- | M]) - C:\WINNT\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1
www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1
www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1
www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1
www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1
www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1
www.1000gratisproben.com
O1 - Hosts: 127.0.0.1
www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1
www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1
www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1
www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1
www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15052 more lines...
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spy bot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\IPS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\CoIEPlg.dll (Symantec Corporation)
O3: - HKCU\..\Toolbar\ShellBrowser - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - No CLSID value found.
O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O4 - HKLM..\Run: [ATIModeChange] C:\WINNT\System32\Ati2mdxx.exe (ATI Technologies, Inc.)
O4 - HKLM..\Run: [Multi-function Keyboard] C:\WINNT\GWHotKey.exe (BillP Studios)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\npjpi160_02.dll (Sun Microsystems, Inc.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spy bot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O9 - Extra 'Tools' menuitem : Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O16 - DPF: {483EB14D-AF1C-4951-81B0-4E2B41829FF6}
https://www.select2perform.com/cabs/QOLCheck.ocx (QOLCheck Control)
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A}
http://www.shockwave.com/content/luxor/sis/mjolauncher.cab (MJLauncherCtrl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {A084A130-28AE-4B32-B51A-1C8CE164BC88}
http://www.convergysworkathome.com/AppHardT.CAB (WNICheck2 Class)
O16 - DPF: {B9A296D4-38AC-4566-8168-F7ACAF7D35E6}
http://imlive.com/ChatSource/gVideoContol.cab (Eyeball Video Session Control)
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}
http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2_03)
O16 - DPF: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}
http://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab (Java Plug-in 1.5.0_05)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}
http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1E51D276-3EEE-40F8-A7C8-AB4E49213D66}: NameServer = 4.2.2.2,4.2.2.3
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINNT\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINNT\system32\userinit.exe) -C:\WINNT\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{93e28000-3284-11d8-b97c-00e0b8506b80}\Shell\AutoRun\command - "" = E:\setupSNK.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/09/13 14:17:02 | 000,581,632 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\OTL.exe
[2011/09/11 20:52:44 | 000,607,260 | R--- | C] (Swearware) -- C:\Documents and Settings\Owner\Desktop\dds.scr
[2011/09/08 19:01:39 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Owner\Recent
[2011/09/08 03:16:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\Malwarebytes
[2011/09/08 03:15:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/09/08 03:11:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\VS Revo Group
[2011/09/08 03:06:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Revo Uninstaller Pro
[2011/09/08 03:06:24 | 000,027,064 | ---- | C] (VS Revo Group) -- C:\WINNT\System32\drivers\revoflt.sys
[2011/09/08 03:06:09 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2011/09/08 02:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\iolo
[2011/09/08 00:06:33 | 000,000,000 | ---D | C] -- C:\WINNT\ERDNT
[2011/09/08 00:04:49 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2011/09/08 00:04:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ERUNT
[2011/09/07 23:33:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\Tific
[2011/09/07 23:09:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Start Menu\Programs\Google Chrome
[2011/09/06 13:03:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\NPE
[2011/09/05 19:13:29 | 000,126,584 | ---- | C] (Symantec Corporation) -- C:\WINNT\System32\drivers\SYMEVENT.SYS
[2011/09/05 19:13:29 | 000,060,872 | ---- | C] (Symantec Corporation) -- C:\WINNT\System32\S32EVNT1.DLL
[2011/09/05 19:13:28 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2011/09/05 19:11:49 | 000,331,384 | R--- | C] (Symantec Corporation) -- C:\WINNT\System32\drivers\NIS\1206000.01D\symtdiv.sys
[2011/09/05 19:11:48 | 000,369,784 | R--- | C] (Symantec Corporation) -- C:\WINNT\System32\drivers\NIS\1206000.01D\symtdi.sys
[2011/09/05 19:11:48 | 000,296,568 | R--- | C] (Symantec Corporation) -- C:\WINNT\System32\drivers\NIS\1206000.01D\symnets.sys
[2011/09/05 19:11:47 | 000,744,568 | R--- | C] (Symantec Corporation) -- C:\WINNT\System32\drivers\NIS\1206000.01D\SymEFA.sys
[2011/09/05 19:11:47 | 000,516,216 | R--- | C] (Symantec Corporation) -- C:\WINNT\System32\drivers\NIS\1206000.01D\srtsp.sys
[2011/09/05 19:11:47 | 000,340,088 | R--- | C] (Symantec Corporation) -- C:\WINNT\System32\drivers\NIS\1206000.01D\SymDS.sys
[2011/09/05 19:11:47 | 000,136,312 | R--- | C] (Symantec Corporation) -- C:\WINNT\System32\drivers\NIS\1206000.01D\Ironx86.sys
[2011/09/05 19:11:47 | 000,050,168 | R--- | C] (Symantec Corporation) -- C:\WINNT\System32\drivers\NIS\1206000.01D\srtspx.sys
[2011/09/05 19:10:27 | 000,000,000 | ---D | C] -- C:\WINNT\System32\drivers\NIS
[2011/09/05 19:10:27 | 000,000,000 | ---D | C] -- C:\WINNT\System32\drivers\NIS\1206000.01D
[2011/09/05 19:10:17 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2011/09/05 19:10:17 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Internet Security
[2011/09/05 19:10:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Norton Internet Security
[2011/09/05 18:54:37 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2011/09/05 18:42:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Start Menu\Programs\Norton
[2011/09/02 21:19:32 | 000,000,000 | ---D | C] -- C:\Program Files\WildTangent Games
[2011/09/02 08:29:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\Oberon Games
[2011/09/02 03:58:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Saved Games
[2011/08/28 01:48:49 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\WINNT\System32\FlashPlayerCPLApp.cpl
[2007/08/27 09:43:31 | 000,774,144 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files\RngInterstitial.dll
[2003/12/03 08:34:06 | 000,491,520 | ---- | C] (
www.simwardrobe.com) -- C:\Program Files\SimCategorizer.exe
[4 C:\WINNT\*.tmp files -> C:\WINNT\*.tmp -> ]
[10 C:\WINNT\System32\*.tmp files -> C:\WINNT\System32\*.tmp -> ]
[1 C:\Documents and Settings\Owner\*.tmp files -> C:\Documents and Settings\Owner\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/09/13 14:16:43 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\Desktop\OTL.exe
[2011/09/13 14:10:09 | 000,000,429 | ---- | M] () -- C:\WINNT\System32\drivers\etc\hosts.ics
[2011/09/13 14:06:06 | 000,002,048 | --S- | M] () -- C:\WINNT\bootstat.dat
[2011/09/13 14:06:00 | 267,436,032 | -HS- | M] () -- C:\hiberfil.sys
[2011/09/12 17:00:02 | 000,000,262 | -H-- | M] () -- C:\WINNT\tasks\97CD996DA2920A3D.job
[2011/09/12 16:47:03 | 000,000,978 | ---- | M] () -- C:\WINNT\tasks\GoogleUpdateTaskUserS-1-5-21-506075566-2965718124-3205215984-1003UA.job
[2011/09/11 20:53:58 | 000,607,260 | R--- | M] (Swearware) -- C:\Documents and Settings\Owner\Desktop\dds.scr
[2011/09/11 01:53:54 | 000,437,601 | R--- | M] () -- C:\WINNT\System32\drivers\etc\Hosts
[2011/09/11 01:12:23 | 000,001,158 | ---- | M] () -- C:\WINNT\System32\wpa.dbl
[2011/09/08 17:27:28 | 000,000,825 | ---- | M] () -- C:\WINNT\QUICKEN.INI
[2011/09/08 15:47:24 | 000,000,926 | ---- | M] () -- C:\WINNT\tasks\GoogleUpdateTaskUserS-1-5-21-506075566-2965718124-3205215984-1003Core.job
[2011/09/08 03:06:40 | 000,000,925 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Revo Uninstaller Pro.lnk
[2011/09/08 00:04:50 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\ERUNT.lnk
[2011/09/07 17:03:12 | 000,000,207 | -HS- | M] () -- C:\boot.ini
[2011/09/07 15:49:41 | 000,002,262 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/09/07 15:49:40 | 000,002,284 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\Google Chrome.lnk
[2011/09/06 12:51:57 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/09/06 12:51:54 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/09/05 20:00:02 | 000,000,538 | ---- | M] () -- C:\WINNT\tasks\Norton Internet Security - Run Full System Scan - Owner.job
[2011/09/05 19:14:14 | 000,675,922 | ---- | M] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\Cat.DB
[2011/09/05 19:13:28 | 000,126,584 | ---- | M] (Symantec Corporation) -- C:\WINNT\System32\drivers\SYMEVENT.SYS
[2011/09/05 19:13:28 | 000,060,872 | ---- | M] (Symantec Corporation) -- C:\WINNT\System32\S32EVNT1.DLL
[2011/09/05 19:13:28 | 000,007,468 | ---- | M] () -- C:\WINNT\System32\drivers\SYMEVENT.CAT
[2011/09/05 19:13:28 | 000,000,806 | ---- | M] () -- C:\WINNT\System32\drivers\SYMEVENT.INF
[2011/09/05 16:28:06 | 000,437,465 | ---- | M] () -- C:\WINNT\System32\drivers\etc\hosts.20110911-015350.backup
[2011/09/05 16:11:36 | 000,371,883 | R--- | M] () -- C:\WINNT\System32\drivers\etc\hosts.20110905-162806.backup
[2011/09/05 12:34:15 | 000,001,355 | ---- | M] () -- C:\WINNT\imsins.BAK
[2011/09/05 09:06:38 | 000,001,977 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Play Games.lnk
[2011/09/02 21:20:55 | 000,002,003 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Play Games.lnk
[2011/08/28 01:48:49 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINNT\System32\FlashPlayerCPLApp.cpl
[2011/08/24 01:15:37 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\PocoMan.lnk
[2011/08/17 01:53:53 | 000,449,476 | ---- | M] () -- C:\WINNT\System32\perfh009.dat
[2011/08/17 01:53:52 | 000,075,506 | ---- | M] () -- C:\WINNT\System32\perfc009.dat
[4 C:\WINNT\*.tmp files -> C:\WINNT\*.tmp -> ]
[10 C:\WINNT\System32\*.tmp files -> C:\WINNT\System32\*.tmp -> ]
[1 C:\Documents and Settings\Owner\*.tmp files -> C:\Documents and Settings\Owner\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/09/08 03:06:39 | 000,000,925 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Revo Uninstaller Pro.lnk
[2011/09/08 00:04:50 | 000,000,592 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\ERUNT.lnk
[2011/09/07 18:00:54 | 267,436,032 | -HS- | C] () -- C:\hiberfil.sys
[2011/09/07 15:49:40 | 000,002,262 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/09/07 15:49:39 | 000,002,284 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\Google Chrome.lnk
[2011/09/07 15:42:14 | 000,000,978 | ---- | C] () -- C:\WINNT\tasks\GoogleUpdateTaskUserS-1-5-21-506075566-2965718124-3205215984-1003UA.job
[2011/09/07 15:42:10 | 000,000,926 | ---- | C] () -- C:\WINNT\tasks\GoogleUpdateTaskUserS-1-5-21-506075566-2965718124-3205215984-1003Core.job
[2011/09/06 12:51:50 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2011/09/06 12:51:48 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2011/09/05 19:13:38 | 000,675,922 | ---- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\Cat.DB
[2011/09/05 19:13:29 | 000,007,468 | ---- | C] () -- C:\WINNT\System32\drivers\SYMEVENT.CAT
[2011/09/05 19:13:29 | 000,000,806 | ---- | C] () -- C:\WINNT\System32\drivers\SYMEVENT.INF
[2011/09/05 19:11:49 | 000,000,000 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\SymDS.cat
[2011/09/05 19:10:43 | 000,003,373 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\SymEFA.inf
[2011/09/05 19:10:43 | 000,002,792 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\SymDS.inf
[2011/09/05 19:10:43 | 000,001,474 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\SymNetV.inf
[2011/09/05 19:10:43 | 000,001,446 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\SymNet.inf
[2011/09/05 19:10:43 | 000,001,389 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\srtspx.inf
[2011/09/05 19:10:43 | 000,001,383 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\srtsp.inf
[2011/09/05 19:10:43 | 000,000,742 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\Iron.inf
[2011/09/05 19:10:30 | 000,007,877 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\symnetv.cat
[2011/09/05 19:10:30 | 000,007,458 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\SymNet.cat
[2011/09/05 19:10:29 | 000,007,528 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\iron.cat
[2011/09/05 19:10:29 | 000,007,456 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\SymEFA.cat
[2011/09/05 19:10:29 | 000,007,454 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\srtspx.cat
[2011/09/05 19:10:29 | 000,007,450 | R--- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\srtsp.cat
[2011/09/05 19:10:28 | 000,000,172 | ---- | C] () -- C:\WINNT\System32\drivers\NIS\1206000.01D\isolate.ini
[2011/09/02 21:20:53 | 000,001,977 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Play Games.lnk
[2011/08/24 01:15:37 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\PocoMan.lnk
[2009/03/18 22:06:38 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\$_hpcst$.hpc
[2008/12/25 19:39:44 | 000,000,664 | ---- | C] () -- C:\WINNT\System32\d3d9caps.dat
[2008/09/04 19:09:30 | 000,000,094 | ---- | C] () -- C:\WINNT\awshkwv.ini
[2008/04/03 16:46:46 | 000,000,552 | ---- | C] () -- C:\WINNT\System32\d3d8caps.dat
[2008/02/07 18:49:23 | 000,691,545 | ---- | C] () -- C:\WINNT\unins000.exe
[2008/02/07 18:49:22 | 000,003,440 | ---- | C] () -- C:\WINNT\unins000.dat
[2008/01/23 10:48:58 | 000,029,152 | R--- | C] () -- C:\WINNT\System32\drivers\usb2vcom.sys
[2007/09/05 12:02:14 | 000,000,110 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\MostFunGameId.bin
[2007/08/15 06:57:41 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\fusioncache.dat
[2007/05/06 20:50:11 | 000,004,096 | ---- | C] () -- C:\WINNT\d3dx.dat
[2006/07/12 23:47:06 | 000,001,793 | ---- | C] () -- C:\WINNT\System32\fxsperf.ini
[2006/07/12 22:00:23 | 000,000,000 | ---- | C] () -- C:\WINNT\System32\ksl48.bin
[2006/07/12 21:58:46 | 000,000,006 | ---- | C] () -- C:\WINNT\System32\tick48.bin
[2006/05/26 02:55:02 | 000,003,320 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/04/28 13:49:18 | 000,000,408 | ---- | C] () -- C:\WINNT\lexstat.ini
[2006/04/27 11:56:15 | 000,000,018 | ---- | C] () -- C:\WINNT\gwhotkey.ini
[2006/04/19 23:16:34 | 000,110,592 | R--- | C] () -- C:\WINNT\System32\AegisI5.exe
[2006/04/19 23:16:34 | 000,002,655 | R--- | C] () -- C:\WINNT\System32\arccsel.dat
[2006/04/19 23:16:33 | 000,114,688 | ---- | C] () -- C:\WINNT\System32\AegisI2.exe
[2006/04/19 23:16:32 | 000,036,864 | ---- | C] () -- C:\WINNT\System32\acs.exe
[2006/04/08 15:36:50 | 000,000,048 | ---- | C] () -- C:\WINNT\FileNamesinQueue.ini
[2005/03/02 15:24:31 | 000,000,624 | ---- | C] () -- C:\WINNT\tlknw20.ini
[2005/01/12 20:56:58 | 000,100,475 | ---- | C] () -- C:\WINNT\UninstallFirefox.exe
[2005/01/08 00:21:36 | 000,000,002 | ---- | C] () -- C:\WINNT\msoffice.ini
[2005/01/08 00:17:09 | 000,000,341 | ---- | C] () -- C:\WINNT\wininit.ini
[2004/12/26 21:48:26 | 000,363,520 | ---- | C] () -- C:\WINNT\System32\psisdecd.dll
[2004/12/22 02:07:25 | 000,004,569 | ---- | C] () -- C:\WINNT\System32\secupd.dat
[2004/09/09 15:10:57 | 000,000,978 | ---- | C] () -- C:\WINNT\cdPlayer.ini
[2004/05/11 02:40:20 | 000,000,026 | ---- | C] () -- C:\WINNT\mscpt.dat
[2004/05/08 15:41:09 | 000,247,808 | ---- | C] () -- C:\WINNT\WINSTRUN.EXE
[2004/05/08 15:41:09 | 000,008,364 | ---- | C] () -- C:\WINNT\INSTALL.DAT
[2004/05/05 20:47:32 | 000,000,000 | ---- | C] () -- C:\WINNT\Zillions.INI
[2004/05/05 15:58:32 | 000,000,000 | ---- | C] () -- C:\WINNT\PROTOCOL.INI
[2004/04/30 02:45:14 | 000,000,130 | ---- | C] () -- C:\WINNT\cosmiord.ini
[2004/02/18 21:14:12 | 000,000,000 | ---- | C] () -- C:\WINNT\QuickInstall.INI
[2004/02/18 21:06:16 | 000,000,000 | ---- | C] () -- C:\WINNT\QUICKI~1.INI
[2004/01/20 22:28:56 | 000,109,181 | ---- | C] () -- C:\Program Files\tempfile.iff
[2004/01/07 17:06:09 | 000,143,872 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2003/12/13 11:33:58 | 000,000,000 | ---- | C] () -- C:\WINNT\Transmogrifier-1.4.INI
[2003/12/03 22:38:44 | 000,001,260 | ---- | C] () -- C:\WINNT\eReg.dat
[2003/12/03 16:34:52 | 000,011,720 | ---- | C] () -- C:\WINNT\mozver.dat
[2003/11/27 21:06:16 | 000,000,061 | ---- | C] () -- C:\WINNT\smscfg.ini
[2003/11/27 20:53:30 | 000,000,035 | ---- | C] () -- C:\WINNT\wwwbatch.ini
[2003/11/27 20:44:46 | 000,000,825 | ---- | C] () -- C:\WINNT\QUICKEN.INI
[2003/11/27 20:44:29 | 000,028,672 | ---- | C] () -- C:\WINNT\System32\JAWTAccessBridge.dll
[2003/11/27 20:42:14 | 000,000,335 | ---- | C] () -- C:\WINNT\nsreg.dat
[2003/11/27 20:41:26 | 000,086,016 | ---- | C] () -- C:\WINNT\System32\PcdrKernelModeServices.dll
[2003/11/27 20:41:26 | 000,065,536 | ---- | C] () -- C:\WINNT\System32\ProgressTrace.dll
[2003/11/27 20:40:32 | 000,000,569 | ---- | C] () -- C:\WINNT\System32\OEMINFO.INI
[2003/10/06 17:34:26 | 000,000,770 | ---- | C] () -- C:\WINNT\orun32.ini
[2003/10/06 16:39:44 | 000,002,048 | --S- | C] () -- C:\WINNT\bootstat.dat
[2003/10/06 16:33:14 | 000,021,640 | ---- | C] () -- C:\WINNT\System32\emptyregdb.dat
[2003/10/06 16:26:48 | 000,004,073 | ---- | C] () -- C:\WINNT\ODBCINST.INI
[2003/10/06 16:25:44 | 000,237,552 | ---- | C] () -- C:\WINNT\System32\FNTCACHE.DAT
[2003/08/13 12:08:15 | 000,135,168 | ---- | C] () -- C:\WINNT\System32\wpcap.dll
[2003/08/13 12:08:12 | 000,036,864 | ---- | C] () -- C:\WINNT\System32\packet.dll
[2003/08/13 12:08:10 | 000,013,203 | ---- | C] () -- C:\WINNT\System32\drivers\packet.sys
[2003/04/28 23:28:52 | 000,069,632 | ---- | C] () -- C:\WINNT\System32\ati2evxx.dll
[1980/01/01 02:00:00 | 013,107,200 | ---- | C] () -- C:\WINNT\System32\oembios.bin
[1980/01/01 02:00:00 | 000,673,088 | ---- | C] () -- C:\WINNT\System32\mlang.dat
[1980/01/01 02:00:00 | 000,449,476 | ---- | C] () -- C:\WINNT\System32\perfh009.dat
[1980/01/01 02:00:00 | 000,272,128 | ---- | C] () -- C:\WINNT\System32\perfi009.dat
[1980/01/01 02:00:00 | 000,254,037 | ---- | C] () -- C:\WINNT\System32\ati2evxx.exe
[1980/01/01 02:00:00 | 000,218,003 | ---- | C] () -- C:\WINNT\System32\dssec.dat
[1980/01/01 02:00:00 | 000,081,920 | ---- | C] () -- C:\WINNT\System32\SynTPCoI.dll
[1980/01/01 02:00:00 | 000,075,506 | ---- | C] () -- C:\WINNT\System32\perfc009.dat
[1980/01/01 02:00:00 | 000,046,258 | ---- | C] () -- C:\WINNT\System32\mib.bin
[1980/01/01 02:00:00 | 000,028,626 | ---- | C] () -- C:\WINNT\System32\perfd009.dat
[1980/01/01 02:00:00 | 000,005,114 | ---- | C] () -- C:\WINNT\System32\oembios.dat
[1980/01/01 02:00:00 | 000,001,804 | ---- | C] () -- C:\WINNT\System32\dcache.bin
[1980/01/01 02:00:00 | 000,000,741 | ---- | C] () -- C:\WINNT\System32\noise.dat
========== LOP Check ==========
[2008/11/01 15:30:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BlockBreaker
[2011/08/17 02:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth
[2006/04/28 13:59:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2009/04/06 01:07:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
[2009/03/05 09:03:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Fugazo
[2008/10/29 02:19:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Gogii
[2009/02/10 05:24:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Graboid Inc
[2008/01/23 11:21:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2011/09/09 02:17:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iolo
[2008/12/11 23:33:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ludia
[2009/07/08 19:58:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo
[2009/01/25 22:18:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NeptunesAdve
[2008/01/23 12:09:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2007/05/02 12:08:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SECT ONLINE INTRA MEMO
[2007/03/26 03:10:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Souptoys
[2009/12/29 19:36:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2008/12/11 04:22:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Valusoft
[2005/03/17 20:14:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2011/09/05 08:15:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WildTangent
[2011/09/08 17:37:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\YAHOO
[2009/07/03 23:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{7B6BA59A-FB0E-4499-8536-A7420338BF3B}
[2009/12/26 05:29:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Azureus
[2008/01/23 10:59:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\DataLayer
[2009/04/13 23:30:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\EuroTalk
[2008/12/11 16:31:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Gamelab
[2009/04/20 21:09:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\GetRightToGo
[2008/07/08 16:20:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\gtk-2.0
[2006/03/29 00:44:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\InterVideo
[2007/04/09 13:17:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\LaCie
[2004/02/18 21:00:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Leadertech
[2008/12/11 23:33:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Ludia
[2007/08/16 04:30:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\MP3Toys
[2009/12/29 18:30:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Musicmatch
[2006/09/02 00:25:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Neo-Modus.com
[2008/01/23 12:12:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Nokia
[2006/03/18 17:18:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Nova Development
[2008/01/23 12:10:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\PC Suite
[2007/07/07 20:00:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\plussoap
[2007/12/12 02:16:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\SecondLife
[2007/03/26 03:11:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Souptoys
[2004/07/24 18:03:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Template
[2011/09/07 23:33:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Tific
[2008/12/11 04:22:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Valusoft
[2008/11/25 16:39:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\WildTangent
[2008/12/07 03:08:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\WildTangentv1005
[2011/09/12 17:00:02 | 000,000,262 | -H-- | M] () -- C:\WINNT\Tasks\97CD996DA2920A3D.job
[2008/05/14 04:02:32 | 000,000,106 | ---- | M] () -- C:\WINNT\Tasks\Low Battery Alarm Program.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A1DC9784
@Alternate Data Stream - 156 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP

287FACF
< End of report >