Good evening,
Here is the OTL log. I will sent the Extras log in the next post.
OTL logfile created on: 1/29/2010 5:32:39 PM - Run 1
OTL by OldTimer - Version 3.1.27.0 Folder = C:\Documents and Settings\Lori\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
1,014.00 Mb Total Physical Memory | 657.00 Mb Available Physical Memory | 65.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 92.95 Gb Total Space | 12.37 Gb Free Space | 13.31% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ISAIAH
Current User Name: Lori
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Lori\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\NewTech Infosystems\Backup Now EZ\BackupNowEZtray.exe (NewTech Infosystems, Inc.)
PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\PermissionTV\bin\dm.exe (PermissionTV)
PRC - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe (Adobe Systems Inc.)
PRC - C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\CCSETMGR.EXE (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\CCEVTMGR.EXE (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\CCAPP.EXE (Symantec Corporation)
PRC - C:\Program Files\Maxtor\OneTouch\Utils\OneTouch.exe (Maxtor Corporation)
PRC - C:\Program Files\Maxtor\Maxtor Backup\MaxBackServiceInt.exe ()
PRC - C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe ( )
PRC - C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVAPSVC.EXE (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe (Symantec Corporation)
PRC - C:\Program Files\Maxtor\OneTouch Status\MaxMenuMgr.exe (Maxtor Corp.)
PRC - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe (Symantec Corporation)
PRC - C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
PRC - C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
PRC - C:\Program Files\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe (Hewlett-Packard Company)
PRC - C:\Program Files\Common Files\LightScribe\LSSrvc.exe ()
PRC - C:\Program Files\HPQ\Quick Launch Buttons\eabservr.exe (Hewlett-Packard )
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Broadcom Corporation.)
PRC - C:\Program Files\HPQ\Shared\hpqwmi.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
PRC - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
PRC - C:\hp\drivers\hplsbwatcher\LSBurnWatcher.exe (Hewlett-Packard Company)
========== Modules (SafeList) ==========
MOD - C:\Documents and Settings\Lori\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Program Files\NewTech Infosystems\Backup Now EZ\Pehook.dll (NewTech Infosystems, Inc.)
MOD - C:\Program Files\Common Files\Symantec Shared\CCL40.DLL (Symantec Corporation)
MOD - C:\Program Files\Common Files\Symantec Shared\AntiSpam\asOEHook.dll (Symantec Corporation)
MOD - C:\WINDOWS\system32\SynTPFcs.dll (Synaptics, Inc.)
MOD - C:\WINDOWS\system32\msvcp71.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msvcr71.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (NTI BackupNowEZSvr) -- C:\Program Files\NewTech Infosystems\Backup Now EZ\BackupNowEZSvr.exe (NewTech Infosystems, Inc.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (iPod Service) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (Bonjour Service) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (PermissionTVDownloadManager) -- C:\Program Files\PermissionTV\bin\dm.exe (PermissionTV)
SRV - (RoxLiveShare9) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (Sonic Solutions)
SRV - (RoxWatch9) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe (Sonic Solutions)
SRV - (RoxMediaDB9) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe (Sonic Solutions)
SRV - (Roxio UPnP Renderer 9) -- C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe (Sonic Solutions)
SRV - (Roxio Upnp Server 9) -- C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe (Sonic Solutions)
SRV - (Symantec Core LC) -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (Symantec Corporation)
SRV - (ccSetMgr) -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation)
SRV - (ccEvtMgr) -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation)
SRV - (NSCService) -- C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE (Symantec Corporation)
SRV - (MaxBackServiceInt) -- C:\Program Files\Maxtor\Maxtor Backup\MaxBackServiceInt.exe ()
SRV - (NTService1) -- C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe ( )
SRV - (comHost) -- C:\Program Files\Norton Internet Security\comHost.exe (Symantec Corporation)
SRV - (navapsvc) -- C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe (Symantec Corporation)
SRV - (ccISPwdSvc) -- C:\Program Files\Norton Internet Security\ccPwdSvc.exe (Symantec Corporation)
SRV - (SNDSrvc) -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe (Symantec Corporation)
SRV - (ccProxy) -- C:\Program Files\Common Files\Symantec Shared\ccProxy.exe (Symantec Corporation)
SRV - (SPBBCSvc) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe (Symantec Corporation)
SRV - (SAVScan) -- C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe (Symantec Corporation)
SRV - (LightScribeService) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe ()
SRV - (btwdins) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Broadcom Corporation.)
SRV - (hpqwmi) -- C:\Program Files\HPQ\Shared\hpqwmi.exe (Hewlett-Packard Development Company, L.P.)
SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (aspnet_state) -- C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV - (USBAAPL) -- C:\WINDOWS\system32\drivers\usbaapl.sys (Apple, Inc.)
DRV - (NTIDrvr) -- C:\WINDOWS\system32\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
DRV - (UBHelper) -- C:\WINDOWS\system32\drivers\UBHelper.sys (NewTech Infosystems Corporation)
DRV - (GEARAspiWDM) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (Secdrv) -- C:\WINDOWS\system32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (RimUsb) -- C:\WINDOWS\system32\drivers\RimUsb.sys (Research In Motion Limited)
DRV - (PxHelp20) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (RimVSerPort) -- C:\WINDOWS\system32\drivers\RimSerial.sys (Research in Motion Ltd)
DRV - (NAVEX15) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20061224.008\NAVEX15.SYS (Symantec Corporation)
DRV - (NAVENG) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20061224.008\NAVENG.SYS (Symantec Corporation)
DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\eengine\eectrl.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\eengine\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (SYMIDSCO) -- C:\Program Files\Common Files\Symantec Shared\SymcData\idsdefs\20061215.005\SymIDSCo.sys (Symantec Corporation)
DRV - (symlcbrd) -- C:\WINDOWS\system32\drivers\symlcbrd.sys (Symantec Corporation)
DRV - (SymEvent) -- C:\Program Files\Symantec\SYMEVENT.SYS (Symantec Corporation)
DRV - (SYMTDI) -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS (Symantec Corporation)
DRV - (SYMREDRV) -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS (Symantec Corporation)
DRV - (SYMIDS) -- C:\WINDOWS\System32\Drivers\SYMIDS.SYS (Symantec Corporation)
DRV - (SYMNDIS) -- C:\WINDOWS\System32\Drivers\SYMNDIS.SYS (Symantec Corporation)
DRV - (SYMFW) -- C:\WINDOWS\System32\Drivers\SYMFW.SYS (Symantec Corporation)
DRV - (SYMDNS) -- C:\WINDOWS\System32\Drivers\SYMDNS.SYS (Symantec Corporation)
DRV - (SPBBCDrv) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys (Symantec Corporation)
DRV - (SAVRTPEL) -- C:\Program Files\Norton Internet Security\Norton AntiVirus\Savrtpel.sys (Symantec Corporation)
DRV - (SAVRT) -- C:\Program Files\Norton Internet Security\Norton AntiVirus\savrt.sys (Symantec Corporation)
DRV - (MXOPSWD) -- C:\WINDOWS\system32\drivers\mxopswd.sys (Maxtor Corp.)
DRV - (tifm21) -- C:\WINDOWS\system32\drivers\tifm21.sys (Texas Instruments)
DRV - (ialm) -- C:\WINDOWS\system32\drivers\ialmnt5.sys (Intel Corporation)
DRV - (CAMCHALA) -- C:\WINDOWS\system32\drivers\camc6hal.sys (Conexant Systems Inc.)
DRV - (CAMCAUD) -- C:\WINDOWS\system32\drivers\camc6aud.sys (Conexant Systems Inc.)
DRV - (HSFHWICH) -- C:\WINDOWS\system32\drivers\HSFHWICH.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys (Conexant Systems, Inc.)
DRV - (HSF_DP) -- C:\WINDOWS\system32\drivers\HSF_DP.sys (Conexant Systems, Inc.)
DRV - (RTL8023xp) -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys (Realtek Semiconductor Corporation )
DRV - (BTKRNL) -- C:\WINDOWS\system32\drivers\btkrnl.sys (Broadcom Corporation.)
DRV - (BTDriver) -- C:\WINDOWS\system32\drivers\btport.sys (Broadcom Corporation.)
DRV - (BTWUSB) -- C:\WINDOWS\system32\drivers\btwusb.sys (Broadcom Corporation.)
DRV - (w29n51) Intel(R) -- C:\WINDOWS\system32\drivers\w29n51.sys (Intel® Corporation)
DRV - (SynTP) -- C:\WINDOWS\system32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (Ptilink) -- C:\WINDOWS\system32\drivers\ptilink.sys (Parallel Technologies, Inc.)
DRV - (ROOTMODEM) -- C:\WINDOWS\system32\drivers\rootmdm.sys (Microsoft Corporation)
DRV - (eabfiltr) -- C:\WINDOWS\system32\drivers\eabfiltr.sys (Hewlett-Packard Company)
DRV - (mdmxsdk) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys (Conexant)
DRV - (eabusb) -- C:\WINDOWS\system32\drivers\EabUsb.sys (Hewlett-Packard Company)
DRV - (SMNDIS5) -- C:\Program Files\Verizon Wireless\VZAccess Manager\SMNDIS5.sys (Smith Micro Software, Inc.)
DRV - (SMCIRDA) -- C:\WINDOWS\system32\drivers\smcirda.sys (SMC)
DRV - (AliIde) -- C:\WINDOWS\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ycomp/defaults/sp/*http://www.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/24 18:20:16 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/11/24 18:15:31 | 00,000,000 | ---D | M]
[2009/11/24 18:20:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Mozilla\Extensions
[2009/11/24 18:20:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Mozilla\Firefox\Profiles\f6l8y3gn.default\extensions
[2009/11/24 18:15:31 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
O1 HOSTS File: ([2006/12/25 01:56:49 | 00,000,713 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (CNisExtBho Class) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O2 - BHO: (CNavExtBho Class) - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Norton Internet Security 2006) - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O3 - HKLM\..\Toolbar: (Norton AntiVirus) - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Internet Security 2006) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton AntiVirus) - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [BackupNowEZtray] C:\Program Files\NewTech Infosystems\Backup Now EZ\BackupNowEZtray.exe (NewTech Infosystems, Inc.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\Cpqset.exe ()
O4 - HKLM..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe (Hewlett-Packard )
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [hpWirelessAssistant] C:\Program Files\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\LSBurnWatcher.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [MaxtorOneTouch] C:\Program Files\Maxtor\OneTouch\Utils\OneTouch.exe (Maxtor Corporation)
O4 - HKLM..\Run: [mxomssmenu] C:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe (Maxtor Corp.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKCU..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe File not found
O4 - HKLM..\RunOnceEx: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\BTTray.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Desktop Manager.lnk = C:\Program Files\Research In Motion\BlackBerry\DesktopMgr.exe (Research In Motion Limited)
O4 - Startup: C:\Documents and Settings\Lori\Start Menu\Programs\Startup\LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe (Lime Wire, LLC)
O4 - Startup: C:\Documents and Settings\Lori\Start Menu\Programs\Startup\Osceola Library System Tray App.lnk = C:\Program Files\PermissionTV\bin\dmtray.exe (PermissionTV)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Append to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\NPJPI150_10.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe (America Online, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1148348000343 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab (Java Plug-in 1.5.0)
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab (IWinAmpActiveX Class)
O18 - Protocol\Handler\widimg {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\BTXPPanel.dll (Broadcom Corporation.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O20 - Winlogon\Notify\WRNotifier: DllName - WRLogonNTF.dll - File not found
O24 - Desktop Components:0 () - About:Home
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{1a53d34a-43a3-11de-924f-00163622f0ad}\Shell - "" = AutoRun
O33 - MountPoints2\{1a53d34a-43a3-11de-924f-00163622f0ad}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{1a53d34a-43a3-11de-924f-00163622f0ad}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- File not found
O33 - MountPoints2\{6cd6aae9-3305-11dd-91ae-00163622f0ad}\Shell - "" = AutoRun
O33 - MountPoints2\{6cd6aae9-3305-11dd-91ae-00163622f0ad}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{6cd6aae9-3305-11dd-91ae-00163622f0ad}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- File not found
O33 - MountPoints2\{cacbb651-06b9-11df-9a7a-00163622f0ad}\Shell\AutoRun\command - "" = restore\restorestarter.exe
O33 - MountPoints2\{d3b35806-979c-11db-9160-00163622f0ad}\Shell\AutoRun\command - "" = E:\Launch.exe -- File not found
O33 - MountPoints2\{f1c5977b-0a02-11df-8e46-00163622f0ad}\Shell\AutoRun\command - "" = click/jack.exe
O33 - MountPoints2\{f1c5977b-0a02-11df-8e46-00163622f0ad}\Shell\explore\command - "" = click/jack.exe
O33 - MountPoints2\{f1c5977b-0a02-11df-8e46-00163622f0ad}\Shell\open\command - "" = click/jack.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (SsiEfr.e) - File not found
O34 - HKLM BootExecute: (stera) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/01/28 20:01:45 | 00,000,000 | ---D | C] -- C:\Avenger
[2010/01/28 17:04:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lori\Application Data\Malwarebytes
[2010/01/28 17:03:32 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/01/28 17:02:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/01/28 17:02:08 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/01/28 17:01:47 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/01/28 16:43:18 | 00,000,000 | ---D | C] -- C:\_OTL
[2010/01/28 16:42:15 | 00,548,864 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Lori\Desktop\OTL.exe
[2010/01/25 18:06:59 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010/01/22 18:52:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NTIReg
[2010/01/22 14:45:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lori\Desktop\Copy of EmergencyResponseTerrorismStAugustine_files
[2010/01/22 14:43:18 | 00,014,464 | ---- | C] (NewTech Infosystems, Inc.) -- C:\WINDOWS\System32\drivers\NTIDrvr.sys
[2010/01/22 14:43:16 | 00,013,440 | ---- | C] (NewTech Infosystems Corporation) -- C:\WINDOWS\System32\drivers\UBHelper.sys
[2010/01/22 14:42:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\Xp_x86
[2010/01/22 14:42:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\w2k_x86
[2010/01/22 14:42:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\Vista_x86
[2010/01/22 14:42:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\Vista_ia64
[2010/01/22 14:42:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\Vista_amd64
[2010/01/22 14:42:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\2003_x86
[2010/01/22 14:42:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\2003_ia64
[2010/01/22 14:42:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\2003_amd64
[2010/01/22 14:42:34 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti
[2010/01/22 14:42:34 | 00,000,000 | ---D | C] -- C:\Program Files\NewTech Infosystems
[2010/01/17 15:56:29 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/01/17 10:16:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RegCure
[2010/01/17 10:16:26 | 00,000,000 | ---D | C] -- C:\Program Files\RegCure
[2010/01/12 19:37:11 | 00,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2010/01/10 04:52:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lori\Desktop\rti
[2010/01/10 04:49:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lori\Desktop\usbfiles
[2010/01/10 04:47:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lori\Desktop\southafrica
[2009/03/16 22:42:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2009/02/27 21:02:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Roxio
[2009/02/08 10:40:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2005/04/10 04:17:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2005/04/10 03:02:28 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2005/04/10 03:02:28 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[28 C:\Documents and Settings\Lori\Desktop\*.tmp files -> C:\Documents and Settings\Lori\Desktop\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/01/29 17:47:46 | 00,000,256 | ---- | M] () -- C:\WINDOWS\System32\pool.bin
[2010/01/29 17:27:11 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/01/29 17:27:08 | 10,637,68064 | -HS- | M] () -- C:\hiberfil.sys
[2010/01/28 22:12:22 | 00,000,278 | -HS- | M] () -- C:\Documents and Settings\Lori\ntuser.ini
[2010/01/28 22:12:21 | 06,029,312 | -H-- | M] () -- C:\Documents and Settings\Lori\NTUSER.DAT
[2010/01/28 17:04:13 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/01/28 16:53:50 | 00,002,931 | ---- | M] () -- C:\WINDOWS\System32\warning.html
[2010/01/28 16:47:36 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/01/28 16:47:26 | 00,000,376 | ---- | M] () -- C:\WINDOWS\tasks\RegCure Startup.job
[2010/01/28 16:28:06 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/01/28 16:16:46 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lori\Desktop\OTL.exe
[2010/01/25 18:28:01 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\10638.exe
[2010/01/25 18:08:01 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22704.exe
[2010/01/25 18:06:59 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\Lori\Desktop\HijackThis.lnk
[2010/01/25 03:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12513.exe
[2010/01/25 02:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\952.exe
[2010/01/25 02:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23910.exe
[2010/01/25 02:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1159.exe
[2010/01/25 01:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\11224.exe
[2010/01/25 01:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18208.exe
[2010/01/25 01:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15387.exe
[2010/01/25 00:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18541.exe
[2010/01/25 00:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\31239.exe
[2010/01/25 00:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14560.exe
[2010/01/24 23:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\29924.exe
[2010/01/24 23:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20256.exe
[2010/01/24 23:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\15104.exe
[2010/01/24 22:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4098.exe
[2010/01/24 22:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\8077.exe
[2010/01/24 22:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\2496.exe
[2010/01/24 21:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\13834.exe
[2010/01/24 21:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24234.exe
[2010/01/24 21:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23004.exe
[2010/01/24 20:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\30663.exe
[2010/01/24 20:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6645.exe
[2010/01/24 20:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\25122.exe
[2010/01/24 19:43:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\10120.exe
[2010/01/24 19:23:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16818.exe
[2010/01/24 19:03:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\17470.exe
[2010/01/24 18:43:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\31525.exe
[2010/01/24 18:23:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28534.exe
[2010/01/24 18:03:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18928.exe
[2010/01/24 17:43:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\2918.exe
[2010/01/24 17:23:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\31343.exe
[2010/01/24 17:03:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12858.exe
[2010/01/24 17:00:00 | 00,000,388 | ---- | M] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2010/01/24 10:23:28 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\25820.exe
[2010/01/24 10:22:40 | 00,213,504 | ---- | M] () -- C:\Documents and Settings\Lori\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/01/24 10:03:28 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32468.exe
[2010/01/24 09:43:28 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9572.exe
[2010/01/24 09:23:28 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12387.exe
[2010/01/24 09:03:28 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32128.exe
[2010/01/24 08:43:28 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12903.exe
[2010/01/24 08:23:28 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\21196.exe
[2010/01/24 08:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24042.exe
[2010/01/24 07:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\18537.exe
[2010/01/24 07:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1548.exe
[2010/01/24 07:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\8737.exe
[2010/01/24 06:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32294.exe
[2010/01/24 06:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28208.exe
[2010/01/24 06:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28423.exe
[2010/01/24 05:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\177.exe
[2010/01/24 05:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6051.exe
[2010/01/24 05:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\482.exe
[2010/01/24 04:53:00 | 00,000,370 | ---- | M] () -- C:\WINDOWS\tasks\RegCure.job
[2010/01/24 04:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\22737.exe
[2010/01/24 04:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\25787.exe
[2010/01/24 04:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\25841.exe
[2010/01/24 03:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\7562.exe
[2010/01/24 03:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27530.exe
[2010/01/24 03:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28823.exe
[2010/01/24 02:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28226.exe
[2010/01/24 02:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16123.exe
[2010/01/24 02:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26557.exe
[2010/01/24 01:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\25641.exe
[2010/01/24 01:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\24134.exe
[2010/01/24 01:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4321.exe
[2010/01/24 00:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\13141.exe
[2010/01/24 00:23:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\10374.exe
[2010/01/24 00:03:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20037.exe
[2010/01/23 23:43:27 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3081.exe
[2010/01/23 23:23:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\29662.exe
[2010/01/23 23:03:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\487.exe
[2010/01/23 22:43:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1405.exe
[2010/01/23 22:23:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\7407.exe
[2010/01/23 22:03:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20990.exe
[2010/01/23 21:43:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\13261.exe
[2010/01/23 21:23:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\26556.exe
[2010/01/23 21:03:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\14727.exe
[2010/01/23 20:43:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16949.exe
[2010/01/23 20:23:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9076.exe
[2010/01/23 20:03:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3904.exe
[2010/01/23 19:43:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4943.exe
[2010/01/23 19:23:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28371.exe
[2010/01/23 19:03:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\17531.exe
[2010/01/23 18:43:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19917.exe
[2010/01/23 18:23:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20884.exe
[2010/01/23 18:03:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\7993.exe
[2010/01/23 17:43:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\23507.exe
[2010/01/23 17:23:26 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\4366.exe
[2010/01/22 19:09:19 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6591.exe
[2010/01/22 18:00:52 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\30034.exe
[2010/01/22 17:40:52 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\27166.exe
[2010/01/22 17:20:52 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9266.exe
[2010/01/22 17:00:52 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\20979.exe
[2010/01/22 16:40:52 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6237.exe
[2010/01/22 16:20:52 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1354.exe
[2010/01/22 16:00:52 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\17392.exe
[2010/01/22 15:40:51 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\6562.exe
[2010/01/22 15:20:51 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\9193.exe
[2010/01/22 15:00:51 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\8971.exe
[2010/01/22 14:42:55 | 00,001,928 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Backup Now EZ.lnk
[2010/01/22 14:40:51 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\19033.exe
[2010/01/21 14:10:32 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\8341.exe
[2010/01/21 13:50:32 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\1730.exe
[2010/01/17 15:57:49 | 00,000,001 | ---- | M] () -- C:\s
[2010/01/17 15:51:19 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\16483.exe
[2010/01/17 15:31:18 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\3561.exe
[2010/01/17 15:11:15 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\12512.exe
[2010/01/17 11:50:48 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\21500.exe
[2010/01/17 11:09:05 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\32530.exe
[2010/01/17 11:01:52 | 00,001,917 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/01/17 10:41:43 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\21764.exe
[2010/01/17 10:21:42 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\7973.exe
[2010/01/17 10:16:29 | 00,000,738 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\RegCure.lnk
[2010/01/17 10:01:41 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\28449.exe
[2010/01/14 21:35:50 | 01,580,390 | -H-- | M] () -- C:\Documents and Settings\Lori\Local Settings\Application Data\IconCache.db
[2010/01/13 09:58:55 | 42,567,027 | ---- | M] () -- C:\Documents and Settings\Lori\Desktop\Master_Reader_The_Work_s.wma
[2010/01/12 13:30:05 | 00,317,555 | ---- | M] () -- C:\Documents and Settings\Lori\Desktop\RTI Catalog Version 10-2 20108.pdf
[2010/01/10 04:33:49 | 00,000,951 | ---- | M] () -- C:\Documents and Settings\Lori\Desktop\Watchtower Library 2009 - English.lnk
[2010/01/09 20:21:54 | 00,000,546 | ---- | M] () -- C:\WINDOWS\tasks\Norton AntiVirus - Run Full System Scan - BeBo.job
[2010/01/09 20:08:24 | 00,009,494 | ---- | M] () -- C:\Documents and Settings\Lori\My Documents\3 card Template PALS.tif
[2010/01/08 18:16:04 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/01/07 16:07:14 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/01/07 16:07:04 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[28 C:\Documents and Settings\Lori\Desktop\*.tmp files -> C:\Documents and Settings\Lori\Desktop\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/01/28 17:04:13 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/01/25 18:28:01 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\10638.exe
[2010/01/25 18:08:01 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22704.exe
[2010/01/25 18:06:59 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\Lori\Desktop\HijackThis.lnk
[2010/01/25 03:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12513.exe
[2010/01/25 02:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\952.exe
[2010/01/25 02:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23910.exe
[2010/01/25 02:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1159.exe
[2010/01/25 01:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\11224.exe
[2010/01/25 01:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18208.exe
[2010/01/25 01:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15387.exe
[2010/01/25 00:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18541.exe
[2010/01/25 00:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\31239.exe
[2010/01/25 00:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14560.exe
[2010/01/24 23:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\29924.exe
[2010/01/24 23:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20256.exe
[2010/01/24 23:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\15104.exe
[2010/01/24 22:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4098.exe
[2010/01/24 22:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\8077.exe
[2010/01/24 22:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\2496.exe
[2010/01/24 21:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\13834.exe
[2010/01/24 21:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24234.exe
[2010/01/24 21:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23004.exe
[2010/01/24 20:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\30663.exe
[2010/01/24 20:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6645.exe
[2010/01/24 20:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\25122.exe
[2010/01/24 19:43:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\10120.exe
[2010/01/24 19:23:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16818.exe
[2010/01/24 19:03:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\17470.exe
[2010/01/24 18:43:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\31525.exe
[2010/01/24 18:23:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28534.exe
[2010/01/24 18:03:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18928.exe
[2010/01/24 17:43:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\2918.exe
[2010/01/24 17:23:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\31343.exe
[2010/01/24 17:03:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12858.exe
[2010/01/24 10:23:28 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\25820.exe
[2010/01/24 10:03:28 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32468.exe
[2010/01/24 09:43:28 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9572.exe
[2010/01/24 09:23:28 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12387.exe
[2010/01/24 09:03:28 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32128.exe
[2010/01/24 08:43:28 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12903.exe
[2010/01/24 08:23:28 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\21196.exe
[2010/01/24 08:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24042.exe
[2010/01/24 07:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\18537.exe
[2010/01/24 07:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1548.exe
[2010/01/24 07:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\8737.exe
[2010/01/24 06:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32294.exe
[2010/01/24 06:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28208.exe
[2010/01/24 06:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28423.exe
[2010/01/24 05:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\177.exe
[2010/01/24 05:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6051.exe
[2010/01/24 05:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\482.exe
[2010/01/24 04:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\22737.exe
[2010/01/24 04:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\25787.exe
[2010/01/24 04:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\25841.exe
[2010/01/24 03:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\7562.exe
[2010/01/24 03:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27530.exe
[2010/01/24 03:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28823.exe
[2010/01/24 02:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28226.exe
[2010/01/24 02:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16123.exe
[2010/01/24 02:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26557.exe
[2010/01/24 01:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\25641.exe
[2010/01/24 01:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\24134.exe
[2010/01/24 01:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4321.exe
[2010/01/24 00:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\13141.exe
[2010/01/24 00:23:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\10374.exe
[2010/01/24 00:03:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20037.exe
[2010/01/23 23:43:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3081.exe
[2010/01/23 23:23:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\29662.exe
[2010/01/23 23:03:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\487.exe
[2010/01/23 22:43:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1405.exe
[2010/01/23 22:23:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\7407.exe
[2010/01/23 22:03:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20990.exe
[2010/01/23 21:43:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\13261.exe
[2010/01/23 21:23:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\26556.exe
[2010/01/23 21:03:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\14727.exe
[2010/01/23 20:43:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16949.exe
[2010/01/23 20:23:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9076.exe
[2010/01/23 20:03:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3904.exe
[2010/01/23 19:43:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4943.exe
[2010/01/23 19:23:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28371.exe
[2010/01/23 19:03:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\17531.exe
[2010/01/23 18:43:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19917.exe
[2010/01/23 18:23:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20884.exe
[2010/01/23 18:03:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\7993.exe
[2010/01/23 17:43:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\23507.exe
[2010/01/23 17:23:26 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\4366.exe
[2010/01/22 19:09:19 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6591.exe
[2010/01/22 18:00:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\30034.exe
[2010/01/22 17:40:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\27166.exe
[2010/01/22 17:20:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9266.exe
[2010/01/22 17:00:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\20979.exe
[2010/01/22 16:40:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6237.exe
[2010/01/22 16:20:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1354.exe
[2010/01/22 16:00:52 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\17392.exe
[2010/01/22 15:40:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\6562.exe
[2010/01/22 15:20:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\9193.exe
[2010/01/22 15:00:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\8971.exe
[2010/01/22 14:42:55 | 00,001,928 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Backup Now EZ.lnk
[2010/01/22 14:40:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\19033.exe
[2010/01/21 14:10:32 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\8341.exe
[2010/01/21 13:50:32 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\1730.exe
[2010/01/17 15:57:49 | 00,000,001 | ---- | C] () -- C:\s
[2010/01/17 15:51:19 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\16483.exe
[2010/01/17 15:31:18 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\3561.exe
[2010/01/17 15:11:15 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\12512.exe
[2010/01/17 11:50:48 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\21500.exe
[2010/01/17 11:09:05 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\32530.exe
[2010/01/17 10:41:43 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\21764.exe
[2010/01/17 10:21:42 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\7973.exe
[2010/01/17 10:16:40 | 00,000,388 | ---- | C] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2010/01/17 10:16:39 | 00,000,376 | ---- | C] () -- C:\WINDOWS\tasks\RegCure Startup.job
[2010/01/17 10:16:34 | 00,000,370 | ---- | C] () -- C:\WINDOWS\tasks\RegCure.job
[2010/01/17 10:16:29 | 00,000,738 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\RegCure.lnk
[2010/01/17 10:01:41 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\28449.exe
[2010/01/16 07:13:45 | 00,002,931 | ---- | C] () -- C:\WINDOWS\System32\warning.html
[2010/01/13 09:58:52 | 42,567,027 | ---- | C] () -- C:\Documents and Settings\Lori\Desktop\Master_Reader_The_Work_s.wma
[2010/01/12 13:29:56 | 00,317,555 | ---- | C] () -- C:\Documents and Settings\Lori\Desktop\RTI Catalog Version 10-2 20108.pdf
[2010/01/10 04:33:49 | 00,000,951 | ---- | C] () -- C:\Documents and Settings\Lori\Desktop\Watchtower Library 2009 - English.lnk
[2010/01/09 20:08:23 | 00,009,494 | ---- | C] () -- C:\Documents and Settings\Lori\My Documents\3 card Template PALS.tif
[2009/08/04 12:10:43 | 00,112,688 | ---- | C] () -- C:\WINDOWS\System32\shw32.dll
[2009/07/29 17:10:06 | 02,463,976 | ---- | C] () -- C:\WINDOWS\System32\NPSWF32.dll
[2008/07/16 19:34:09 | 00,000,063 | ---- | C] () -- C:\WINDOWS\vpg_bcsb.ini
[2008/05/19 02:02:46 | 00,000,118 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2008/02/17 11:35:25 | 00,594,024 | ---- | C] () -- C:\WINDOWS\System32\wodCertificate.dll
[2008/02/17 11:35:23 | 00,589,960 | ---- | C] () -- C:\WINDOWS\System32\brgrt.dll
[2007/11/21 19:37:28 | 00,002,528 | ---- | C] () -- C:\Documents and Settings\Lori\Application Data\$_hpcst$.hpc
[2007/04/05 06:56:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2007/02/21 20:32:18 | 00,000,130 | ---- | C] () -- C:\Documents and Settings\Lori\Application Data\wklnhst.dat
[2006/12/20 21:46:00 | 00,684,032 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2006/12/20 21:46:00 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2006/10/20 12:09:02 | 00,000,000 | ---- | C] () -- C:\WINDOWS\pcfriend.INI
[2006/10/12 10:07:47 | 00,001,743 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/07/20 22:26:08 | 00,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2006/05/07 21:15:56 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/04/18 11:52:31 | 00,040,960 | R--- | C] () -- C:\WINDOWS\System32\wh2robo.dll
[2006/04/13 14:52:51 | 00,213,504 | ---- | C] () -- C:\Documents and Settings\Lori\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/04/13 09:22:09 | 00,684,032 | ---- | C] () -- C:\WINDOWS\libeay32.dll
[2006/04/13 09:22:09 | 00,155,648 | ---- | C] () -- C:\WINDOWS\ssleay32.dll
[2005/04/10 04:58:17 | 00,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2005/04/10 04:58:17 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2005/04/10 04:58:16 | 00,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2005/04/10 04:58:16 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2005/04/10 04:58:16 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2005/04/10 04:58:16 | 00,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2005/04/10 04:42:35 | 00,015,669 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004/11/29 18:44:04 | 00,086,016 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2004/08/07 08:16:44 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/08/07 08:10:08 | 00,000,780 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/01/13 13:46:34 | 00,172,032 | ---- | C] () -- C:\WINDOWS\System32\tifmicon.dll
[2003/01/07 14:05:08 | 00,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/05/15 21:29:04 | 00,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
[2001/11/23 16:18:00 | 00,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
[2001/11/14 11:56:00 | 01,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
[2000/09/08 16:53:50 | 00,073,839 | ---- | C] () -- C:\WINDOWS\System32\KodakOneTouch.dll
[1998/10/10 23:07:38 | 00,088,576 | ---- | C] () -- C:\WINDOWS\System32\Iticheck.dll
========== LOP Check ==========
[2007/01/22 16:15:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Maxtor
[2005/04/10 05:13:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\muvee Technologies
[2010/01/22 18:52:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NTIReg
[2006/10/26 23:44:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pronto
[2010/01/17 10:16:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RegCure
[2007/02/21 20:53:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2009/04/10 09:02:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2006/04/13 15:07:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Aim
[2008/05/18 07:54:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Blackberry Desktop
[2008/02/17 11:42:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Diploma
[2009/12/06 10:16:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\EuroTalk
[2009/08/10 03:28:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\FileZilla
[2006/11/01 06:42:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\HotSync
[2006/06/09 12:55:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\InterVideo
[2006/05/07 21:16:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Leadertech
[2010/01/29 17:37:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\LimeWire
[2008/05/18 07:49:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Research In Motion
[2007/02/21 20:32:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Template
[2007/02/21 20:53:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Viewpoint
[2008/09/07 09:40:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Watchtower
[2010/01/24 17:00:00 | 00,000,388 | ---- | M] () -- C:\WINDOWS\Tasks\RegCure Program Check.job
[2010/01/28 16:47:26 | 00,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\RegCure Startup.job
[2010/01/24 04:53:00 | 00,000,370 | ---- | M] () -- C:\WINDOWS\Tasks\RegCure.job
========== Purity Check ==========
< End of report >
Here is the OTL log and the reboot log just in case.
OTL logfile created on: 1/30/2010 7:21:31 PM - Run 2
OTL by OldTimer - Version 3.1.27.0 Folder = C:\Documents and Settings\Lori\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
1,014.00 Mb Total Physical Memory | 596.00 Mb Available Physical Memory | 59.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 87.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 92.95 Gb Total Space | 35.89 Gb Free Space | 38.61% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 3.72 Gb Total Space | 1.04 Gb Free Space | 27.83% Space Free | Partition Type: FAT32
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ISAIAH
Current User Name: Lori
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Lori\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\NewTech Infosystems\Backup Now EZ\BackupNowEZtray.exe (NewTech Infosystems, Inc.)
PRC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
PRC - C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
PRC - C:\WINDOWS\Explorer.EXE (Microsoft Corporation)
PRC - C:\PROGRA~1\PERMIS~1\bin\dm.exe (PermissionTV)
PRC - C:\Program Files\PermissionTV\bin\dmtray.exe (PermissionTV)
PRC - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
PRC - C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE (Symantec Corporation)
PRC - C:\Program Files\Maxtor\OneTouch\utils\Onetouch.exe (Maxtor Corporation)
PRC - C:\Program Files\Maxtor\Maxtor Backup\MaxBackServiceInt.exe ()
PRC - C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe ( )
PRC - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe (Symantec Corporation)
PRC - C:\WINDOWS\System32\igfxtray.exe (Intel Corporation)
PRC - C:\WINDOWS\System32\hkcmd.exe (Intel Corporation)
PRC - C:\Program Files\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe (Hewlett-Packard Company)
PRC - C:\Program Files\Common Files\LightScribe\LSSrvc.exe ()
PRC - C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe (Hewlett-Packard )
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Broadcom Corporation.)
PRC - C:\Program Files\HPQ\SHARED\HPQWMI.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
PRC - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
PRC - C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe (Hewlett-Packard Company)
========== Modules (SafeList) ==========
MOD - C:\Documents and Settings\Lori\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Program Files\NewTech Infosystems\Backup Now EZ\Pehook.dll (NewTech Infosystems, Inc.)
MOD - C:\WINDOWS\system32\linkinfo.dll (Microsoft Corporation)
MOD - C:\Program Files\Common Files\Symantec Shared\CCL40.DLL (Symantec Corporation)
MOD - C:\Program Files\Common Files\Symantec Shared\AntiSpam\asOEHook.dll (Symantec Corporation)
MOD - C:\WINDOWS\system32\SynTPFcs.dll (Synaptics, Inc.)
MOD - C:\WINDOWS\system32\msvcp71.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msvcr71.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (NTI BackupNowEZSvr) -- C:\Program Files\NewTech Infosystems\Backup Now EZ\BackupNowEZSvr.exe (NewTech Infosystems, Inc.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (iPod Service) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (Bonjour Service) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (PermissionTVDownloadManager) -- C:\PROGRA~1\PERMIS~1\bin\dm.exe (PermissionTV)
SRV - (RoxLiveShare9) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (Sonic Solutions)
SRV - (RoxWatch9) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe (Sonic Solutions)
SRV - (RoxMediaDB9) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe (Sonic Solutions)
SRV - (Roxio UPnP Renderer 9) -- C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe (Sonic Solutions)
SRV - (Roxio Upnp Server 9) -- C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe (Sonic Solutions)
SRV - (Symantec Core LC) -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (Symantec Corporation)
SRV - (ccSetMgr) -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation)
SRV - (ccEvtMgr) -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation)
SRV - (NSCService) -- C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE (Symantec Corporation)
SRV - (MaxBackServiceInt) -- C:\Program Files\Maxtor\Maxtor Backup\MaxBackServiceInt.exe ()
SRV - (NTService1) -- C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe ( )
SRV - (comHost) -- C:\Program Files\Norton Internet Security\comHost.exe (Symantec Corporation)
SRV - (navapsvc) -- C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe (Symantec Corporation)
SRV - (ccISPwdSvc) -- C:\Program Files\Norton Internet Security\ccPwdSvc.exe (Symantec Corporation)
SRV - (SNDSrvc) -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe (Symantec Corporation)
SRV - (ccProxy) -- C:\Program Files\Common Files\Symantec Shared\ccProxy.exe (Symantec Corporation)
SRV - (SPBBCSvc) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe (Symantec Corporation)
SRV - (SAVScan) -- C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe (Symantec Corporation)
SRV - (MSDTC) -- C:\WINDOWS\system32\msdtc [2005/04/10 03:02:35 | 00,000,000 | ---D | M]
SRV - (LightScribeService) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe ()
SRV - (btwdins) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Broadcom Corporation.)
SRV - (hpqwmi) -- C:\Program Files\HPQ\SHARED\HPQWMI.exe (Hewlett-Packard Development Company, L.P.)
SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (aspnet_state) -- C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV - (SAVRT) -- C:\Program Files\Norton Internet Security\Norton AntiVirus\savrt [2010/01/30 16:26:56 | 00,000,000 | ---D | M]
DRV - (USBAAPL) -- C:\WINDOWS\System32\Drivers\usbaapl.sys (Apple, Inc.)
DRV - (NTIDrvr) -- C:\WINDOWS\System32\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
DRV - (UBHelper) -- C:\WINDOWS\System32\drivers\UBHelper.sys (NewTech Infosystems Corporation)
DRV - (GEARAspiWDM) -- C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (Secdrv) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (RimUsb) -- C:\WINDOWS\System32\Drivers\RimUsb.sys (Research In Motion Limited)
DRV - (PxHelp20) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (RimVSerPort) -- C:\WINDOWS\System32\DRIVERS\RimSerial.sys (Research in Motion Ltd)
DRV - (NAVEX15) -- C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061224.008\NavEx15.Sys (Symantec Corporation)
DRV - (NAVENG) -- C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061224.008\NAVENG.Sys (Symantec Corporation)
DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (SYMIDSCO) -- C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\idsdefs\20061215.005\symidsco.sys (Symantec Corporation)
DRV - (symlcbrd) -- C:\WINDOWS\System32\drivers\symlcbrd.sys (Symantec Corporation)
DRV - (SymEvent) -- C:\Program Files\Symantec\SYMEVENT.SYS (Symantec Corporation)
DRV - (SYMTDI) -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS (Symantec Corporation)
DRV - (SYMREDRV) -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS (Symantec Corporation)
DRV - (SYMIDS) -- C:\WINDOWS\System32\Drivers\SYMIDS.SYS (Symantec Corporation)
DRV - (SYMNDIS) -- C:\WINDOWS\System32\Drivers\SYMNDIS.SYS (Symantec Corporation)
DRV - (SYMFW) -- C:\WINDOWS\System32\Drivers\SYMFW.SYS (Symantec Corporation)
DRV - (SYMDNS) -- C:\WINDOWS\System32\Drivers\SYMDNS.SYS (Symantec Corporation)
DRV - (SPBBCDrv) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys (Symantec Corporation)
DRV - (SAVRTPEL) -- C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS (Symantec Corporation)
DRV - (MXOPSWD) -- C:\WINDOWS\System32\DRIVERS\mxopswd.sys (Maxtor Corp.)
DRV - (tifm21) -- C:\WINDOWS\System32\drivers\tifm21.sys (Texas Instruments)
DRV - (ialm) -- C:\WINDOWS\System32\DRIVERS\ialmnt5.sys (Intel Corporation)
DRV - (CAMCHALA) -- C:\WINDOWS\System32\drivers\camc6hal.sys (Conexant Systems Inc.)
DRV - (CAMCAUD) -- C:\WINDOWS\System32\drivers\camc6aud.sys (Conexant Systems Inc.)
DRV - (HSFHWICH) -- C:\WINDOWS\System32\DRIVERS\HSFHWICH.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\WINDOWS\System32\DRIVERS\HSF_CNXT.sys (Conexant Systems, Inc.)
DRV - (HSF_DP) -- C:\WINDOWS\System32\DRIVERS\HSF_DP.sys (Conexant Systems, Inc.)
DRV - (RTL8023xp) -- C:\WINDOWS\System32\DRIVERS\Rtlnicxp.sys (Realtek Semiconductor Corporation )
DRV - (BTKRNL) -- C:\WINDOWS\System32\DRIVERS\btkrnl.sys (Broadcom Corporation.)
DRV - (BTDriver) -- C:\WINDOWS\System32\DRIVERS\btport.sys (Broadcom Corporation.)
DRV - (BTWUSB) -- C:\WINDOWS\System32\Drivers\btwusb.sys (Broadcom Corporation.)
DRV - (w29n51) Intel(R) -- C:\WINDOWS\System32\DRIVERS\w29n51.sys (Intel® Corporation)
DRV - (SynTP) -- C:\WINDOWS\System32\DRIVERS\SynTP.sys (Synaptics, Inc.)
DRV - (Ptilink) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.)
DRV - (ROOTMODEM) -- C:\WINDOWS\System32\Drivers\RootMdm.sys (Microsoft Corporation)
DRV - (eabfiltr) -- C:\WINDOWS\System32\drivers\EABFiltr.sys (Hewlett-Packard Company)
DRV - (mdmxsdk) -- C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys (Conexant)
DRV - (eabusb) -- C:\WINDOWS\System32\drivers\eabusb.sys (Hewlett-Packard Company)
DRV - (SMNDIS5) -- C:\PROGRA~1\VERIZO~1\VZACCE~1\SMNDIS5.SYS (Smith Micro Software, Inc.)
DRV - (SMCIRDA) -- C:\WINDOWS\System32\DRIVERS\smcirda.sys (SMC)
DRV - (AliIde) -- C:\WINDOWS\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ycomp/defaults/sp/*http://www.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/24 18:20:16 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/11/24 18:15:31 | 00,000,000 | ---D | M]
[2009/11/24 18:20:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Mozilla\Extensions
[2009/11/24 18:20:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Lori\Application Data\Mozilla\Firefox\Profiles\f6l8y3gn.default\extensions
[2009/11/24 18:15:31 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
O1 HOSTS File: ([2006/12/25 01:56:49 | 00,000,713 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (CNisExtBho Class) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O2 - BHO: (CNavExtBho Class) - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Norton Internet Security 2006) - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll ()
O3 - HKLM\..\Toolbar: (Norton AntiVirus) - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Internet Security 2006) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton AntiVirus) - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [BackupNowEZtray] C:\Program Files\NewTech Infosystems\Backup Now EZ\BackupNowEZtray.exe (NewTech Infosystems, Inc.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe ()
O4 - HKLM..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe (Hewlett-Packard )
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [hpWirelessAssistant] C:\Program Files\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [MaxtorOneTouch] C:\Program Files\Maxtor\OneTouch\utils\Onetouch.exe (Maxtor Corporation)
O4 - HKLM..\Run: [mxomssmenu] C:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe (Maxtor Corp.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKCU..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe File not found
O4 - HKLM..\RunOnceEx: [] File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\BTTray.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Desktop Manager.lnk = C:\Program Files\Research In Motion\BlackBerry\DesktopMgr.exe (Research In Motion Limited)
O4 - Startup: C:\Documents and Settings\Lori\Start Menu\Programs\Startup\LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe (Lime Wire, LLC)
O4 - Startup: C:\Documents and Settings\Lori\Start Menu\Programs\Startup\Osceola Library System Tray App.lnk = C:\Program Files\PermissionTV\bin\dmtray.exe (PermissionTV)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Append to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selected links to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert selection to existing PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\NPJPI150_10.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe (America Online, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1148348000343 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab (Java Plug-in 1.5.0)
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab (IWinAmpActiveX Class)
O18 - Protocol\Handler\widimg {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\BTXPPanel.dll (Broadcom Corporation.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O20 - Winlogon\Notify\WRNotifier: DllName - WRLogonNTF.dll - File not found
O24 - Desktop Components:0 () - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/12/05 12:47:28 | 00,000,301 | ---- | M] () - E:\autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{1a53d34a-43a3-11de-924f-00163622f0ad}\Shell - "" = AutoRun
O33 - MountPoints2\{1a53d34a-43a3-11de-924f-00163622f0ad}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{1a53d34a-43a3-11de-924f-00163622f0ad}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- File not found
O33 - MountPoints2\{6cd6aae9-3305-11dd-91ae-00163622f0ad}\Shell - "" = AutoRun
O33 - MountPoints2\{6cd6aae9-3305-11dd-91ae-00163622f0ad}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{6cd6aae9-3305-11dd-91ae-00163622f0ad}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- File not found
O33 - MountPoints2\{cacbb651-06b9-11df-9a7a-00163622f0ad}\Shell\AutoRun\command - "" = restore\restorestarter.exe
O33 - MountPoints2\{d3b35806-979c-11db-9160-00163622f0ad}\Shell\AutoRun\command - "" = E:\Launch.exe -- File not found
O33 - MountPoints2\{f1c5977b-0a02-11df-8e46-00163622f0ad}\Shell\AutoRun\command - "" = click/jack.exe
O33 - MountPoints2\{f1c5977b-0a02-11df-8e46-00163622f0ad}\Shell\explore\command - "" = click/jack.exe
O33 - MountPoints2\{f1c5977b-0a02-11df-8e46-00163622f0ad}\Shell\open\command - "" = click/jack.exe
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (SsiEfr.e) - File not found
O34 - HKLM BootExecute: (stera) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/01/28 20:01:45 | 00,000,000 | ---D | C] -- C:\Avenger
[2010/01/28 17:04:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lori\Application Data\Malwarebytes
[2010/01/28 17:03:32 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/01/28 17:02:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/01/28 17:02:08 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/01/28 17:01:47 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/01/28 16:43:18 | 00,000,000 | ---D | C] -- C:\_OTL
[2010/01/28 16:42:15 | 00,548,864 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Lori\Desktop\OTL.exe
[2010/01/25 18:06:59 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010/01/22 18:52:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NTIReg
[2010/01/22 14:45:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lori\Desktop\Copy of EmergencyResponseTerrorismStAugustine_files
[2010/01/22 14:43:18 | 00,014,464 | ---- | C] (NewTech Infosystems, Inc.) -- C:\WINDOWS\System32\drivers\NTIDrvr.sys
[2010/01/22 14:43:16 | 00,013,440 | ---- | C] (NewTech Infosystems Corporation) -- C:\WINDOWS\System32\drivers\UBHelper.sys
[2010/01/22 14:42:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\Xp_x86
[2010/01/22 14:42:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\w2k_x86
[2010/01/22 14:42:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\Vista_x86
[2010/01/22 14:42:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\Vista_ia64
[2010/01/22 14:42:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\Vista_amd64
[2010/01/22 14:42:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\2003_x86
[2010/01/22 14:42:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\2003_ia64
[2010/01/22 14:42:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti\2003_amd64
[2010/01/22 14:42:34 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\nti
[2010/01/22 14:42:34 | 00,000,000 | ---D | C] -- C:\Program Files\NewTech Infosystems
[2010/01/17 15:56:29 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/01/17 10:16:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RegCure
[2010/01/17 10:16:26 | 00,000,000 | ---D | C] -- C:\Program Files\RegCure
[2010/01/12 19:37:11 | 00,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2010/01/10 04:52:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lori\Desktop\rti
[2010/01/10 04:49:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lori\Desktop\usbfiles
[2010/01/10 04:47:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Lori\Desktop\southafrica
[2009/03/16 22:42:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2009/02/27 21:02:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Roxio
[2009/02/08 10:40:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2005/04/10 04:17:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2005/04/10 03:02:28 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2005/04/10 03:02:28 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[28 C:\Documents and Settings\Lori\Desktop\*.tmp files -> C:\Documents and Settings\Lori\Desktop\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/01/30 16:26:42 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/01/30 16:26:39 | 10,637,68064 | -HS- | M] () -- C:\hiberfil.sys
[2010/01/30 16:18:44 | 06,029,312 | -H-- | M] () -- C:\Documents and Settings\Lori\NTUSER.DAT
[2010/01/30 16:18:44 | 00,000,278 | -HS- | M] () -- C:\Documents and Settings\Lori\ntuser.ini
[2010/01/29 17:47:46 | 00,000,256 | ---- | M] () -- C:\WINDOWS\System32\pool.bin
[2010/01/28 17:04:13 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/01/28 16:47:36 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/01/28 16:47:26 | 00,000,376 | ---- | M] () -- C:\WINDOWS\tasks\RegCure Startup.job
[2010/01/28 16:28:06 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/01/28 16:16:46 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lori\Desktop\OTL.exe
[2010/01/25 18:06:59 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\Lori\Desktop\HijackThis.lnk
[2010/01/24 17:00:00 | 00,000,388 | ---- | M] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2010/01/24 10:22:40 | 00,213,504 | ---- | M] () -- C:\Documents and Settings\Lori\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/01/24 04:53:00 | 00,000,370 | ---- | M] () -- C:\WINDOWS\tasks\RegCure.job
[2010/01/22 14:42:55 | 00,001,928 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Backup Now EZ.lnk
[2010/01/17 15:57:49 | 00,000,001 | ---- | M] () -- C:\s
[2010/01/17 11:01:52 | 00,001,917 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/01/17 10:16:29 | 00,000,738 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\RegCure.lnk
[2010/01/14 21:35:50 | 01,580,390 | -H-- | M] () -- C:\Documents and Settings\Lori\Local Settings\Application Data\IconCache.db
[2010/01/13 09:58:55 | 42,567,027 | ---- | M] () -- C:\Documents and Settings\Lori\Desktop\Master_Reader_The_Work_s.wma
[2010/01/12 13:30:05 | 00,317,555 | ---- | M] () -- C:\Documents and Settings\Lori\Desktop\RTI Catalog Version 10-2 20108.pdf
[2010/01/10 04:33:49 | 00,000,951 | ---- | M] () -- C:\Documents and Settings\Lori\Desktop\Watchtower Library 2009 - English.lnk
[2010/01/09 20:21:54 | 00,000,546 | ---- | M] () -- C:\WINDOWS\tasks\Norton AntiVirus - Run Full System Scan - BeBo.job
[2010/01/09 20:08:24 | 00,009,494 | ---- | M] () -- C:\Documents and Settings\Lori\My Documents\3 card Template PALS.tif
[2010/01/08 18:16:04 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/01/07 16:07:14 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/01/07 16:07:04 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[28 C:\Documents and Settings\Lori\Desktop\*.tmp files -> C:\Documents and Settings\Lori\Desktop\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/01/28 17:04:13 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/01/25 18:06:59 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\Lori\Desktop\HijackThis.lnk
[2010/01/22 14:42:55 | 00,001,928 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Backup Now EZ.lnk
[2010/01/17 15:57:49 | 00,000,001 | ---- | C] () -- C:\s
[2010/01/17 10:16:40 | 00,000,388 | ---- | C] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2010/01/17 10:16:39 | 00,000,376 | ---- | C] () -- C:\WINDOWS\tasks\RegCure Startup.job
[2010/01/17 10:16:34 | 00,000,370 | ---- | C] () -- C:\WINDOWS\tasks\RegCure.job
[2010/01/17 10:16:29 | 00,000,738 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\RegCure.lnk
[2010/01/13 09:58:52 | 42,567,027 | ---- | C] () -- C:\Documents and Settings\Lori\Desktop\Master_Reader_The_Work_s.wma
[2010/01/12 13:29:56 | 00,317,555 | ---- | C] () -- C:\Documents and Settings\Lori\Desktop\RTI Catalog Version 10-2 20108.pdf
[2010/01/10 04:33:49 | 00,000,951 | ---- | C] () -- C:\Documents and Settings\Lori\Desktop\Watchtower Library 2009 - English.lnk
[2010/01/09 20:08:23 | 00,009,494 | ---- | C] () -- C:\Documents and Settings\Lori\My Documents\3 card Template PALS.tif
[2009/08/04 12:10:43 | 00,112,688 | ---- | C] () -- C:\WINDOWS\System32\shw32.dll
[2009/07/29 17:10:06 | 02,463,976 | ---- | C] () -- C:\WINDOWS\System32\NPSWF32.dll
[2008/07/16 19:34:09 | 00,000,063 | ---- | C] () -- C:\WINDOWS\vpg_bcsb.ini
[2008/05/19 02:02:46 | 00,000,118 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2008/02/17 11:35:25 | 00,594,024 | ---- | C] () -- C:\WINDOWS\System32\wodCertificate.dll
[2008/02/17 11:35:23 | 00,589,960 | ---- | C] () -- C:\WINDOWS\System32\brgrt.dll
[2007/11/21 19:37:28 | 00,002,528 | ---- | C] () -- C:\Documents and Settings\Lori\Application Data\$_hpcst$.hpc
[2007/04/05 06:56:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2007/02/21 20:32:18 | 00,000,130 | ---- | C] () -- C:\Documents and Settings\Lori\Application Data\wklnhst.dat
[2006/12/20 21:46:00 | 00,684,032 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2006/12/20 21:46:00 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2006/10/20 12:09:02 | 00,000,000 | ---- | C] () -- C:\WINDOWS\pcfriend.INI
[2006/10/12 10:07:47 | 00,001,743 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2006/07/20 22:26:08 | 00,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2006/05/07 21:15:56 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/04/18 11:52:31 | 00,040,960 | R--- | C] () -- C:\WINDOWS\System32\wh2robo.dll
[2006/04/13 14:52:51 | 00,213,504 | ---- | C] () -- C:\Documents and Settings\Lori\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/04/13 09:22:09 | 00,684,032 | ---- | C] () -- C:\WINDOWS\libeay32.dll
[2006/04/13 09:22:09 | 00,155,648 | ---- | C] () -- C:\WINDOWS\ssleay32.dll
[2005/04/10 04:58:17 | 00,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2005/04/10 04:58:17 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2005/04/10 04:58:16 | 00,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2005/04/10 04:58:16 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2005/04/10 04:58:16 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2005/04/10 04:58:16 | 00,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2005/04/10 04:42:35 | 00,015,669 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004/11/29 18:44:04 | 00,086,016 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2004/08/07 08:16:44 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/08/07 08:10:08 | 00,000,780 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/01/13 13:46:34 | 00,172,032 | ---- | C] () -- C:\WINDOWS\System32\tifmicon.dll
[2003/01/07 14:05:08 | 00,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/05/15 21:29:04 | 00,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
[2001/11/23 16:18:00 | 00,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
[2001/11/14 11:56:00 | 01,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
[2000/09/08 16:53:50 | 00,073,839 | ---- | C] () -- C:\WINDOWS\System32\KodakOneTouch.dll
[1998/10/10 23:07:38 | 00,088,576 | ---- | C] () -- C:\WINDOWS\System32\Iticheck.dll
< End of report >
All processes killed
========== OTL ==========
Process Explorer.EXE killed successfully!
========== FILES ==========
C:\WINDOWS\System32\10638.exe moved successfully.
C:\WINDOWS\System32\22704.exe moved successfully.
C:\WINDOWS\System32\12513.exe moved successfully.
C:\WINDOWS\System32\952.exe moved successfully.
C:\WINDOWS\System32\23910.exe moved successfully.
C:\WINDOWS\System32\1159.exe moved successfully.
C:\WINDOWS\System32\11224.exe moved successfully.
C:\WINDOWS\System32\18208.exe moved successfully.
C:\WINDOWS\System32\15387.exe moved successfully.
C:\WINDOWS\System32\18541.exe moved successfully.
C:\WINDOWS\System32\31239.exe moved successfully.
C:\WINDOWS\System32\14560.exe moved successfully.
C:\WINDOWS\System32\29924.exe moved successfully.
C:\WINDOWS\System32\20256.exe moved successfully.
C:\WINDOWS\System32\15104.exe moved successfully.
C:\WINDOWS\System32\4098.exe moved successfully.
C:\WINDOWS\System32\8077.exe moved successfully.
C:\WINDOWS\System32\2496.exe moved successfully.
C:\WINDOWS\System32\13834.exe moved successfully.
C:\WINDOWS\System32\24234.exe moved successfully.
C:\WINDOWS\System32\23004.exe moved successfully.
C:\WINDOWS\System32\30663.exe moved successfully.
C:\WINDOWS\System32\6645.exe moved successfully.
C:\WINDOWS\System32\25122.exe moved successfully.
C:\WINDOWS\System32\10120.exe moved successfully.
C:\WINDOWS\System32\16818.exe moved successfully.
C:\WINDOWS\System32\17470.exe moved successfully.
C:\WINDOWS\System32\31525.exe moved successfully.
C:\WINDOWS\System32\28534.exe moved successfully.
C:\WINDOWS\System32\18928.exe moved successfully.
C:\WINDOWS\System32\2918.exe moved successfully.
C:\WINDOWS\System32\31343.exe moved successfully.
C:\WINDOWS\System32\12858.exe moved successfully.
C:\WINDOWS\System32\25820.exe moved successfully.
C:\WINDOWS\System32\32468.exe moved successfully.
C:\WINDOWS\System32\9572.exe moved successfully.
C:\WINDOWS\System32\12387.exe moved successfully.
C:\WINDOWS\System32\32128.exe moved successfully.
C:\WINDOWS\System32\12903.exe moved successfully.
C:\WINDOWS\System32\21196.exe moved successfully.
C:\WINDOWS\System32\24042.exe moved successfully.
C:\WINDOWS\System32\18537.exe moved successfully.
C:\WINDOWS\System32\1548.exe moved successfully.
C:\WINDOWS\System32\8737.exe moved successfully.
C:\WINDOWS\System32\32294.exe moved successfully.
C:\WINDOWS\System32\28208.exe moved successfully.
C:\WINDOWS\System32\28423.exe moved successfully.
C:\WINDOWS\System32\177.exe moved successfully.
C:\WINDOWS\System32\6051.exe moved successfully.
C:\WINDOWS\System32\482.exe moved successfully.
C:\WINDOWS\System32\22737.exe moved successfully.
C:\WINDOWS\System32\25787.exe moved successfully.
C:\WINDOWS\System32\25841.exe moved successfully.
C:\WINDOWS\System32\7562.exe moved successfully.
C:\WINDOWS\System32\27530.exe moved successfully.
C:\WINDOWS\System32\28823.exe moved successfully.
C:\WINDOWS\System32\28226.exe moved successfully.
C:\WINDOWS\System32\16123.exe moved successfully.
C:\WINDOWS\System32\26557.exe moved successfully.
C:\WINDOWS\System32\25641.exe moved successfully.
C:\WINDOWS\System32\24134.exe moved successfully.
C:\WINDOWS\System32\4321.exe moved successfully.
C:\WINDOWS\System32\13141.exe moved successfully.
C:\WINDOWS\System32\10374.exe moved successfully.
C:\WINDOWS\System32\20037.exe moved successfully.
C:\WINDOWS\System32\3081.exe moved successfully.
C:\WINDOWS\System32\29662.exe moved successfully.
C:\WINDOWS\System32\487.exe moved successfully.
C:\WINDOWS\System32\1405.exe moved successfully.
C:\WINDOWS\System32\7407.exe moved successfully.
C:\WINDOWS\System32\20990.exe moved successfully.
C:\WINDOWS\System32\13261.exe moved successfully.
C:\WINDOWS\System32\26556.exe moved successfully.
C:\WINDOWS\System32\14727.exe moved successfully.
C:\WINDOWS\System32\16949.exe moved successfully.
C:\WINDOWS\System32\9076.exe moved successfully.
C:\WINDOWS\System32\3904.exe moved successfully.
C:\WINDOWS\System32\4943.exe moved successfully.
C:\WINDOWS\System32\28371.exe moved successfully.
C:\WINDOWS\System32\17531.exe moved successfully.
C:\WINDOWS\System32\19917.exe moved successfully.
C:\WINDOWS\System32\20884.exe moved successfully.
C:\WINDOWS\System32\7993.exe moved successfully.
C:\WINDOWS\System32\23507.exe moved successfully.
C:\WINDOWS\System32\4366.exe moved successfully.
C:\WINDOWS\System32\6591.exe moved successfully.
C:\WINDOWS\System32\30034.exe moved successfully.
C:\WINDOWS\System32\27166.exe moved successfully.
C:\WINDOWS\System32\9266.exe moved successfully.
C:\WINDOWS\System32\20979.exe moved successfully.
C:\WINDOWS\System32\6237.exe moved successfully.
C:\WINDOWS\System32\1354.exe moved successfully.
C:\WINDOWS\System32\17392.exe moved successfully.
C:\WINDOWS\System32\6562.exe moved successfully.
C:\WINDOWS\System32\9193.exe moved successfully.
C:\WINDOWS\System32\8971.exe moved successfully.
C:\WINDOWS\System32\19033.exe moved successfully.
C:\WINDOWS\System32\8341.exe moved successfully.
C:\WINDOWS\System32\1730.exe moved successfully.
C:\WINDOWS\System32\16483.exe moved successfully.
C:\WINDOWS\System32\3561.exe moved successfully.
C:\WINDOWS\System32\12512.exe moved successfully.
C:\WINDOWS\System32\21500.exe moved successfully.
C:\WINDOWS\System32\32530.exe moved successfully.
C:\WINDOWS\System32\21764.exe moved successfully.
C:\WINDOWS\System32\7973.exe moved successfully.
C:\WINDOWS\System32\28449.exe moved successfully.
File\Folder C:\WINDOWS\System32\10638.exe not found.
File\Folder C:\WINDOWS\System32\22704.exe not found.
File\Folder C:\WINDOWS\System32\28449.exe not found.
C:\WINDOWS\System32\warning.html moved successfully.
File\Folder C:\WINDOWS\System32\10638.exe not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: BeBo
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes
User: Guest
->Temp folder emptied: 14467212 bytes
->Temporary Internet Files folder emptied: 165784271 bytes
->FireFox cache emptied: 68371925 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
User: Lori
->Temp folder emptied: 24956220971 bytes
->Temporary Internet Files folder emptied: 10981385 bytes
->Java cache emptied: 1919997 bytes
->FireFox cache emptied: 5511376 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 2504398 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 19569 bytes
%systemroot%\System32 .tmp files removed: 2577 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 11501931 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 346700 bytes
Total Files Cleaned = 24,069.00 mb
OTL by OldTimer - Version 3.1.27.0 log created on 01302010_154308
Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\WY26PQN9\dref=http%253A%252F%252Fbl107w.blu107[1].aspx%253FFolderID%253D00000000-0000-0000-0000-000000000003%2526InboxSortAscending%253DFalse%2526InboxSortBy%253DDate%2526n%253D1479599177 not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\WY26PQN9\dref=http%253A%252F%252Fsn106w.snt106[1].aspx%253FFolderID%253D00000000-0000-0000-0000-000000000001%2526InboxSortAscending%253DFalse%2526InboxSortBy%253DDate%2526n%253D1760773342 not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\WY26PQN9\dref=http%253A%252F%252Fsn106w.snt106[1].aspx%253FFolderID%253D00000000-0000-0000-0000-000000000001%2526InboxSortAscending%253DFalse%2526InboxSortBy%253DDate%2526n%253D991287468 not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\SNGD89CT\click,AAAAAD0wBACBZwkA2BMDAAIAAkwAAP8AAAACFAIABgKMrgEAErgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE29gkcAAAAA,http%3A%2F%2Fus.ard.yahoo.com%2FSIG%3D12gkkp85p%2FM%3D619213[1].htm not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\SNGD89CT\dref=http%253A%252F%252Fbl107w.blu107[1].aspx%253FFolderID%253D00000000-0000-0000-0000-000000000001%2526InboxSortAscending%253DFalse%2526InboxSortBy%253DDate%2526n%253D1687292520 not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\SNGD89CT\dref=http%253A%252F%252Fby117w.bay117.mail.live[1].480Z%2526InboxSortAscending%253DFalse%2526InboxSortBy%253DDate%2526Page%253D3%2526pks%253D2%2526n%253D1524128451 not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\SNGD89CT\dref=http%253A%252F%252Fsn106w.snt106[1].aspx%253FFolderID%253D00000000-0000-0000-0000-000000000001%2526InboxSortAscending%253DFalse%2526InboxSortBy%253DDate%2526n%253D991287468 not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\SNGD89CT\dref=http%253A%252F%252Fwww[1].com%252Flog_feature%252Flisting_category%252Fsearch%252FReplay%252F%253Fsearch_id%253D20091350570503544700%2526view%253D%2526listing_category%253DB not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\SNGD89CT\search;_ylc=X3oDMTRhcXRtdTN1BEFjdGlvbgNCYXNpYyBzZWFyY2gESW50bAN1cwRMbmtUeXADUmVndWxhcgRQYXJ0VHlwZQNZYWhvbyEEU3JjaEN1cnIDbWVzc2FnZQRTcmNoRGVzdANtZXNzYWdlBF9RdWVyeUlkAzE4MTUzM[1].htm not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\OAZZ21H1\%3A!fcHandoff%2CSW2%3A!fcHandoff%2CSW3%3A!fcHandoff%26f%3D150550574%26p%3Dmail_candygram%26id%3D4%26cbk%3DfcLoaded%26bg%3Dtransparent%26tgt%3D_blank%26hs%3D2%26en%3Diso-8859-1%2&r=0 not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\OAZZ21H1\ID%253D00000000-0000-0000-0000-000000000003%2526InboxSortAscending%253DFalse%2526InboxSortBy%253DDate%2526ReadMessageId%253Df7d765ae-bebb-4934-9176-267ace5bd77d%2526n%253D2145369974 not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\0RMPQ721\40115787,80103792,00105064,60073164,10104323,30074551,40103435,80077566,00090369,97322800,00086923,30125697,20011413,70103491,30103737,00115789,20073298,10103719,30105294,10[1].xml not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\0RMPQ721\dref=http%253A%252F%252Fby117w.bay117[1].aspx%253FFolderID%253D00000000-0000-0000-0000-000000000001%2526InboxSortAscending%253DFalse%2526InboxSortBy%253DDate%2526n%253D967946005 not found!
File\Folder C:\Documents and Settings\Lori\Local Settings\Temp\Temporary Internet Files\Content.IE5\0RMPQ721\ShowLetter;_ylc=X3oDMTUyNjcydGFmBEFjdGlvbgNWaWV3IG1lc3NhZ2UESW50bAN1cwRMbmtUeXADUmVndWxhcgRQYXJ0VHlwZQNZYWhvbyEEUmVzUG9zQQMwBFJlc1Bvc1IDMARTcmNoQ3VycgNtZXNzYWdlBFNyY2hEZXN0A[1].htm not found!
Registry entries deleted on Reboot...