Page 3 of 4 FirstFirst 1234 LastLast
Results 21 to 30 of 33

Thread: Click.Giftload, Virtumonde and Antivirus Antispyware OH MY...

  1. #21
    Junior Member
    Join Date
    Mar 2011
    Location
    California
    Posts
    19

    Default

    well according to Majorgeeks mcpr removal tool...cleanup successful! YAY!!

  2. #22
    Emeritus-Security Expert
    Join Date
    Nov 2005
    Location
    Florida's SpaceCoast
    Posts
    15,208

    Default

    Great, reboot and run OTL again and lets look at a new log
    Microsoft MVP Consumer Security 2007-2008-2009-2010-2011-2012-2013-2014

    ERROR MESSAGE 386
    No KeyBoard Detected
    Press F1 To Continue

    Just a reminder that threads will be closed if no reply in 3 days.

  3. #23
    Junior Member
    Join Date
    Mar 2011
    Location
    California
    Posts
    19

    Default

    uhhm....what is OTL?

  4. #24
    Junior Member
    Join Date
    Mar 2011
    Location
    California
    Posts
    19

    Default

    went to reboot and it wants to install updates...should I let it? or restart without updates?

  5. #25
    Emeritus-Security Expert
    Join Date
    Nov 2005
    Location
    Florida's SpaceCoast
    Posts
    15,208

    Default

    My bad, I thought we had run it before

    c:\windows\Bhogubetogumamum.bin <--Go ahead and delete this

    • Download OTL to your desktop.
    • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
    • When the window appears, underneath Output at the top change it to Minimal Output.
    • Check the boxes beside LOP Check and Purity Check.
    • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
      • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt.
        Note:These logs can be located in the OTL. folder on you C:\ drive if they fail to open automatically.
      • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply. You may need two posts to fit them both in.
    Microsoft MVP Consumer Security 2007-2008-2009-2010-2011-2012-2013-2014

    ERROR MESSAGE 386
    No KeyBoard Detected
    Press F1 To Continue

    Just a reminder that threads will be closed if no reply in 3 days.

  6. #26
    Junior Member
    Join Date
    Mar 2011
    Location
    California
    Posts
    19

    Default

    deleted the bhogety boogy whatever beast...

    Here we go with the OTL.txt

    OTL logfile created on: 3/28/2011 10:34:39 AM - Run 1
    OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Mommazon\Desktop
    Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

    2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 74.00% Memory free
    4.00 Gb Paging File | 3.00 Gb Available in Paging File | 90.00% Paging File free
    Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 69.82 Gb Total Space | 6.46 Gb Free Space | 9.25% Space Free | Partition Type: NTFS
    Drive D: | 532.07 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
    Drive G: | 298.02 Gb Total Space | 4.49 Gb Free Space | 1.51% Space Free | Partition Type: FAT32

    Computer Name: D7M16T91 | User Name: Mommazon | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========

    PRC - C:\Documents and Settings\Mommazon\Desktop\OTL.exe (OldTimer Tools)
    PRC - C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
    PRC - c:\Program Files\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation)
    PRC - C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe ()
    PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    PRC - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
    PRC - C:\WINDOWS\system32\PSIService.exe ()
    PRC - C:\Program Files\Dell Support\DSAgnt.exe (Gteko Ltd.)
    PRC - C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)


    ========== Modules (SafeList) ==========

    MOD - C:\Documents and Settings\Mommazon\Desktop\OTL.exe (OldTimer Tools)
    MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)


    ========== Win32 Services (SafeList) ==========

    SRV - (HidServ) -- File not found
    SRV - (Akamai) -- c:\Program Files\Common Files\Akamai\netsession_win_d76cf65.dll ()
    SRV - (MsMpSvc) -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation)
    SRV - (PSI_SVC_2) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
    SRV - (ProtexisLicensing) -- C:\WINDOWS\system32\PSIService.exe ()


    ========== Driver Services (SafeList) ==========

    DRV - (MpKslc739de5a) -- C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7EFC8332-93E6-4A1A-8C02-BC970A3B9FCD}\MpKslc739de5a.sys (Microsoft Corporation)
    DRV - (WDC_SAM) -- C:\WINDOWS\system32\drivers\wdcsam.sys (Western Digital Technologies)
    DRV - (ASCTRM) -- C:\WINDOWS\System32\drivers\asctrm.sys (Windows (R) 2000 DDK provider)
    DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.)
    DRV - (DLAUDFAM) -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS (Sonic Solutions)
    DRV - (DLAUDF_M) -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS (Sonic Solutions)
    DRV - (DLAIFS_M) -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS (Sonic Solutions)
    DRV - (DLABOIOM) -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS (Sonic Solutions)
    DRV - (DLAOPIOM) -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS (Sonic Solutions)
    DRV - (DLAPoolM) -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS (Sonic Solutions)
    DRV - (DLADResN) -- C:\WINDOWS\system32\DLA\DLADResN.SYS (Sonic Solutions)
    DRV - (DLACDBHM) -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS (Sonic Solutions)
    DRV - (DLARTL_N) -- C:\WINDOWS\system32\drivers\DLARTL_N.SYS (Sonic Solutions)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = http://www.google.com/ig/dell?hl=en&...inc&channel=us
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://www.google.com/ig/dell?hl=en&...inc&channel=us

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://www.dell.com
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/dell?hl=en&...inc&channel=us
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    ========== FireFox ==========

    FF - prefs.js..browser.startup.homepage: "http://www.facebook.com/|https://mail.google.com/mail/?shva=1#inbox"
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
    FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24

    FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/03/27 12:21:09 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/03/27 12:21:09 | 000,000,000 | ---D | M]

    [2011/03/07 22:03:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mommazon\Application Data\Mozilla\Extensions
    [2011/03/07 22:03:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mommazon\Application Data\Mozilla\Firefox\Profiles\nt6ta4nn.default\extensions
    [2011/03/27 13:04:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
    [2011/03/21 16:08:44 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
    [2011/03/23 22:33:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
    [2011/03/21 16:08:20 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
    [2011/02/02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll

    O1 HOSTS File: ([2011/03/27 19:59:44 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\DLA\DLASHX_W.DLL (Sonic Solutions)
    O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
    O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\Program Files\BAE\BAE.dll (Dell Inc.)
    O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
    O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
    O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
    O4 - HKLM..\Run: [Corel File Shell Monitor] C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe ()
    O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
    O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
    O4 - HKCU..\Run: [DellSupport] C:\Program Files\Dell Support\DSAgnt.exe (Gteko Ltd.)
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O8 - Extra context menu item: &Google Search - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
    O8 - Extra context menu item: &Translate English Word - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
    O8 - Extra context menu item: Backward Links - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
    O8 - Extra context menu item: Cached Snapshot of Page - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
    O8 - Extra context menu item: Similar Pages - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
    O8 - Extra context menu item: Translate Page into English - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
    O15 - HKLM\..Trusted Domains: musicmatch.com ([online] https in Trusted sites)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_24)
    O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/...ndows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_24)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_24)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
    O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O24 - Desktop WallPaper: C:\Documents and Settings\Mommazon\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: C:\Documents and Settings\Mommazon\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2005/08/16 02:43:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2011/03/27 10:33:31 | 000,000,000 | R--D | M] - C:\autorun.inf -- [ NTFS ]
    O32 - AutoRun File - [2005/12/20 10:19:23 | 000,000,035 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
    O32 - AutoRun File - [2008/01/10 08:32:40 | 000,000,000 | ---D | M] - G:\autorun -- [ FAT32 ]
    O32 - AutoRun File - [2011/03/27 10:33:34 | 000,000,000 | R--D | M] - G:\autorun.inf -- [ FAT32 ]
    O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell - "" = AutoRun
    O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun - "" = Auto&Play
    O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe
    O33 - MountPoints2\{cf7a2f20-3946-11e0-a099-001372b3e4c1}\Shell - "" = AutoRun
    O33 - MountPoints2\{cf7a2f20-3946-11e0-a099-001372b3e4c1}\Shell\AutoRun - "" = Auto&Play
    O33 - MountPoints2\{cf7a2f20-3946-11e0-a099-001372b3e4c1}\Shell\AutoRun\command - "" = "F:\WD SmartWare.exe" autoplay=true
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = ComFile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2011/03/28 10:28:38 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mommazon\Desktop\OTL.exe
    [2011/03/28 10:28:00 | 000,000,000 | -HSD | C] -- C:\RECYCLER
    [2011/03/27 19:56:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
    [2011/03/27 19:50:27 | 000,000,000 | RHSD | C] -- C:\cmdcons
    [2011/03/27 18:53:10 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
    [2011/03/27 18:53:10 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
    [2011/03/27 18:53:10 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
    [2011/03/27 18:53:10 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
    [2011/03/27 12:25:08 | 000,000,000 | ---D | C] -- C:\Qoobox
    [2011/03/27 10:33:31 | 000,000,000 | R--D | C] -- C:\autorun.inf
    [2011/03/25 10:22:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
    [2011/03/25 10:21:24 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
    [2011/03/25 10:21:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ERUNT
    [2011/03/24 21:20:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Macromedia
    [2011/03/24 21:20:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe
    [2011/03/24 17:33:52 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
    [2011/03/23 22:33:07 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
    [2011/03/23 22:33:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
    [2011/03/23 22:33:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
    [2011/03/23 21:43:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Malwarebytes
    [2011/03/23 21:42:56 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
    [2011/03/23 21:42:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
    [2011/03/23 21:42:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    [2011/03/23 21:42:51 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
    [2011/03/23 21:42:51 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
    [2011/03/23 11:54:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Temp
    [2011/03/23 11:54:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Adobe
    [2011/03/23 11:53:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Sun
    [2011/03/22 20:41:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
    [2011/03/22 20:32:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia
    [2011/03/22 20:32:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe
    [2011/03/22 20:21:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
    [2011/03/21 19:26:39 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Mommazon\PrivacIE
    [2011/03/21 18:35:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
    [2011/03/21 16:10:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
    [2011/03/21 16:09:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
    [2011/03/21 16:08:41 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
    [2011/03/21 16:08:41 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
    [2011/03/19 14:03:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\WMTools Downloaded Files
    [2011/03/19 14:01:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mommazon\My Documents\My Videos
    [2011/03/17 22:54:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\My Documents\My Corel Shows
    [2011/03/17 22:53:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Corel
    [2011/03/17 22:53:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\My Documents\My PSP Files
    [2011/03/15 20:46:57 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
    [2011/03/15 16:58:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Identities
    [2011/03/15 13:40:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Western Digital
    [2011/03/15 13:01:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Apple
    [2011/03/15 12:57:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Apple Computer
    [2011/03/10 12:27:50 | 001,377,112 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Mommazon\Desktop\TDSSKiller.exe
    [2011/03/09 17:21:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\(Default)
    [2011/03/09 17:15:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\DAZ 3D
    [2011/03/09 17:15:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DAZ
    [2011/03/07 22:57:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\My Documents\Downloads
    [2011/03/07 22:03:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Mozilla
    [2011/03/07 22:03:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Mozilla
    [2011/03/07 21:41:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Smith Micro
    [2011/03/07 21:38:59 | 000,000,000 | ---D | C] -- C:\Program Files\Smith Micro
    [2011/03/07 18:51:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Temp
    [2011/03/07 18:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Poser
    [2011/03/07 18:40:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Apple Computer
    [2011/03/07 18:40:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Adobe
    [2011/03/07 18:40:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Adobe
    [2011/03/07 18:39:43 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Mommazon\IETldCache
    [2011/03/07 18:39:32 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Mommazon\Application Data\Microsoft
    [2011/03/07 18:39:32 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mommazon\Application Data
    [2011/03/07 18:39:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mommazon\Favorites
    [2011/03/07 18:39:32 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Mommazon\Cookies
    [2011/03/07 18:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Sun
    [2011/03/07 18:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Macromedia
    [2011/03/07 18:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Identities
    [2011/03/07 18:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Gtek
    [2011/03/07 18:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Google
    [2011/03/07 18:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Google
    [2011/03/07 18:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Desktop
    [2011/03/07 18:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Application Data\Corel
    [2011/03/07 18:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\ApplicationHistory
    [2011/03/07 18:39:31 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mommazon\SendTo
    [2011/03/07 18:39:31 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mommazon\Recent
    [2011/03/07 18:39:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mommazon\Start Menu\Programs\Startup
    [2011/03/07 18:39:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mommazon\Start Menu
    [2011/03/07 18:39:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mommazon\My Documents\My Pictures
    [2011/03/07 18:39:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mommazon\My Documents\My Music
    [2011/03/07 18:39:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mommazon\My Documents
    [2011/03/07 18:39:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mommazon\Start Menu\Programs\Accessories
    [2011/03/07 18:39:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mommazon\Templates
    [2011/03/07 18:39:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mommazon\PrintHood
    [2011/03/07 18:39:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mommazon\NetHood
    [2011/03/07 18:39:31 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mommazon\Local Settings
    [2011/03/07 18:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Wildtangent
    [2011/03/07 18:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Musicmatch
    [2011/03/07 18:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\Microsoft
    [2011/03/07 18:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Start Menu\Programs\Dell Accessories
    [2011/03/07 18:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Start Menu\Programs\Dell
    [2011/03/07 18:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\{7148F0A6-6813-11D6-A77B-00B0D0142030}
    [2011/03/07 16:32:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Poser
    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
    [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2011/03/28 10:33:35 | 000,039,472 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
    [2011/03/28 10:33:32 | 000,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2011/03/28 10:33:19 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2011/03/28 10:33:17 | 2145,538,048 | -HS- | M] () -- C:\hiberfil.sys
    [2011/03/28 10:28:55 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mommazon\Desktop\OTL.exe
    [2011/03/28 10:10:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2011/03/28 09:48:15 | 001,373,616 | ---- | M] () -- C:\Documents and Settings\Mommazon\Desktop\MCPR.exe
    [2011/03/27 19:59:44 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
    [2011/03/27 19:50:31 | 000,000,325 | RHS- | M] () -- C:\boot.ini
    [2011/03/27 12:15:16 | 000,000,934 | ---- | M] () -- C:\Documents and Settings\Mommazon\Desktop\Shortcut to ComboFix.lnk
    [2011/03/27 12:15:06 | 004,303,726 | R--- | M] () -- C:\Documents and Settings\Mommazon\Desktop\ComboFix.exe
    [2011/03/27 10:53:55 | 001,377,112 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Mommazon\Desktop\TDSSKiller.exe
    [2011/03/27 10:13:52 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2011/03/24 23:54:42 | 000,004,224 | ---- | M] () -- C:\WINDOWS\wininit.ini
    [2011/03/24 21:49:42 | 000,000,120 | ---- | M] () -- C:\WINDOWS\Ikayacegalaj.dat
    [2011/03/24 21:24:38 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
    [2011/03/23 21:42:57 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
    [2011/03/21 20:04:37 | 000,000,854 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Update The Kids 4.lnk
    [2011/03/21 16:58:48 | 000,000,848 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys
    [2011/03/19 16:35:45 | 000,004,608 | ---- | M] () -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011/03/19 15:53:57 | 000,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
    [2011/03/19 13:40:35 | 000,004,184 | ---- | M] () -- C:\WINDOWS\System32\KGyGaAvL.sys
    [2011/03/18 21:31:27 | 000,000,376 | ---- | M] () -- C:\WINDOWS\ODBC.INI
    [2011/03/16 12:58:30 | 003,583,456 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2011/03/14 20:50:34 | 000,000,854 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Update Michael 4 Base.lnk
    [2011/03/14 11:17:44 | 000,381,692 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2011/03/14 11:17:44 | 000,053,436 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [2011/03/10 18:58:23 | 000,056,768 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
    [2011/03/09 17:21:55 | 000,001,668 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Poser 8.lnk
    [2011/03/08 18:01:57 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
    [2011/03/07 18:39:54 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Mommazon\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
    [2011/03/07 18:39:48 | 000,000,786 | ---- | M] () -- C:\Documents and Settings\Mommazon\Desktop\Windows Media Player.lnk
    [2011/03/07 18:39:45 | 000,001,478 | ---- | M] () -- C:\Documents and Settings\Mommazon\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Center.lnk
    [2011/03/01 23:07:55 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
    [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2011/03/28 09:47:56 | 001,373,616 | ---- | C] () -- C:\Documents and Settings\Mommazon\Desktop\MCPR.exe
    [2011/03/27 19:59:04 | 2145,538,048 | -HS- | C] () -- C:\hiberfil.sys
    [2011/03/27 19:50:31 | 000,000,209 | ---- | C] () -- C:\Boot.bak
    [2011/03/27 19:50:28 | 000,260,272 | RHS- | C] () -- C:\cmldr
    [2011/03/27 18:53:10 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
    [2011/03/27 18:53:10 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
    [2011/03/27 18:53:10 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
    [2011/03/27 18:53:10 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
    [2011/03/27 18:53:10 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
    [2011/03/27 12:15:16 | 000,000,934 | ---- | C] () -- C:\Documents and Settings\Mommazon\Desktop\Shortcut to ComboFix.lnk
    [2011/03/27 12:14:21 | 004,303,726 | R--- | C] () -- C:\Documents and Settings\Mommazon\Desktop\ComboFix.exe
    [2011/03/24 21:49:42 | 000,000,120 | ---- | C] () -- C:\WINDOWS\Ikayacegalaj.dat
    [2011/03/23 21:42:57 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
    [2011/03/22 20:35:46 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
    [2011/03/21 20:04:37 | 000,000,854 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Update The Kids 4.lnk
    [2011/03/16 23:07:29 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011/03/14 20:50:34 | 000,000,854 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Update Michael 4 Base.lnk
    [2011/03/10 18:58:23 | 000,056,768 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
    [2011/03/07 21:41:01 | 000,001,668 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Poser 8.lnk
    [2011/03/07 18:39:48 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Mommazon\Start Menu\Programs\Windows Media Player.lnk
    [2011/03/07 18:39:48 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\Mommazon\Desktop\Windows Media Player.lnk
    [2011/03/07 18:39:34 | 000,002,007 | ---- | C] () -- C:\Documents and Settings\Mommazon\Application Data\Microsoft\Internet Explorer\Quick Launch\Play Games.lnk
    [2011/03/07 18:39:34 | 000,001,769 | ---- | C] () -- C:\Documents and Settings\Mommazon\Application Data\Microsoft\Internet Explorer\Quick Launch\Musicmatch Jukebox.lnk
    [2011/03/07 18:39:34 | 000,001,478 | ---- | C] () -- C:\Documents and Settings\Mommazon\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Center.lnk
    [2011/03/07 18:39:34 | 000,001,298 | ---- | C] () -- C:\Documents and Settings\Mommazon\Desktop\Media Center.lnk
    [2011/03/07 18:39:34 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Mommazon\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
    [2011/03/07 18:39:34 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Mommazon\Application Data\Microsoft\Internet Explorer\Quick Launch\QuickTime Player.lnk
    [2011/03/07 18:39:34 | 000,000,669 | ---- | C] () -- C:\Documents and Settings\Mommazon\Application Data\Microsoft\Internet Explorer\Quick Launch\America Online 9.0.lnk
    [2011/03/07 18:39:34 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Mommazon\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
    [2011/03/07 18:39:33 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\Mommazon\Local Settings\Application Data\fusioncache.dat
    [2011/03/07 18:39:32 | 000,001,503 | ---- | C] () -- C:\Documents and Settings\Mommazon\Start Menu\Programs\Remote Assistance.lnk
    [2011/03/07 18:39:32 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Mommazon\Start Menu\Programs\Internet Explorer.lnk
    [2011/03/07 18:39:32 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Mommazon\Start Menu\Programs\Outlook Express.lnk
    [2011/03/01 23:07:55 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
    [2011/03/01 23:07:55 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
    [2011/02/19 17:38:16 | 000,000,848 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys
    [2011/02/18 23:20:37 | 000,004,184 | ---- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
    [2011/02/18 23:20:37 | 000,000,088 | ---- | C] () -- C:\WINDOWS\System32\9E0BD4F60D.sys
    [2010/05/30 16:24:18 | 000,139,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
    [2010/05/30 16:23:59 | 000,215,128 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
    [2010/05/30 16:23:57 | 002,434,856 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_bc2.exe
    [2010/05/30 16:23:57 | 000,075,064 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
    [2010/05/13 14:16:03 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
    [2007/06/05 14:20:32 | 000,177,704 | ---- | C] () -- C:\WINDOWS\System32\PSIService.exe
    [2006/04/15 06:10:28 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
    [2006/04/15 06:05:39 | 000,004,224 | ---- | C] () -- C:\WINDOWS\wininit.ini
    [2006/04/15 06:01:33 | 000,149,504 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE
    [2006/04/15 05:57:40 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
    [2006/04/15 05:55:58 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2006/04/15 05:30:42 | 000,049,152 | ---- | C] () -- C:\WINDOWS\setpwrcg.exe
    [2006/04/15 05:30:38 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
    [2005/12/09 08:30:52 | 000,000,221 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
    [2005/11/10 06:56:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
    [2005/08/16 02:48:31 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
    [2005/08/16 02:38:45 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
    [2005/08/16 02:37:24 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
    [2005/08/16 02:33:38 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
    [2005/08/16 02:27:59 | 003,583,456 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2005/08/16 02:18:35 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
    [2005/08/16 02:18:33 | 000,381,692 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
    [2005/08/16 02:18:33 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
    [2005/08/16 02:18:33 | 000,053,436 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
    [2005/08/16 02:18:33 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
    [2005/08/16 02:18:32 | 000,004,627 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
    [2005/08/16 02:18:30 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
    [2005/08/16 02:18:28 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
    [2005/08/16 02:18:23 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
    [2005/08/16 02:18:23 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
    [2005/08/16 02:18:15 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
    [2005/08/16 02:18:08 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
    [2005/08/05 12:01:54 | 000,239,104 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
    [2003/01/07 13:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

    ========== LOP Check ==========

    [2005/08/16 18:54:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DIGStream
    [2011/02/26 00:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EPSON
    [2011/03/22 20:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
    [2011/03/07 16:32:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Poser
    [2011/02/21 13:31:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
    [2006/04/15 05:58:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
    [2010/08/06 16:35:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
    [2011/03/07 18:41:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mommazon\Application Data\Poser

    ========== Purity Check ==========



    < End of report >

  7. #27
    Junior Member
    Join Date
    Mar 2011
    Location
    California
    Posts
    19

    Default

    and the extras.txt

    OTL Extras logfile created on: 3/28/2011 10:34:39 AM - Run 1
    OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Mommazon\Desktop
    Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

    2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 74.00% Memory free
    4.00 Gb Paging File | 3.00 Gb Available in Paging File | 90.00% Paging File free
    Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 69.82 Gb Total Space | 6.46 Gb Free Space | 9.25% Space Free | Partition Type: NTFS
    Drive D: | 532.07 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
    Drive G: | 298.02 Gb Total Space | 4.49 Gb Free Space | 1.51% Space Free | Partition Type: FAT32

    Computer Name: D7M16T91 | User Name: Mommazon | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Extra Registry (SafeList) ==========


    ========== File Associations ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

    [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
    .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

    ========== Shell Spawning ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] -- "%1" %*
    InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [Browse with Corel Paint Shop Pro Photo X2] -- "C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\Corel Paint Shop Pro Photo.exe" "%L" (Corel, Inc.)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    ========== Security Center Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirstRunDisabled" = 1
    "AntiVirusDisableNotify" = 0
    "FirewallDisableNotify" = 0
    "UpdatesDisableNotify" = 0
    "AntiVirusOverride" = 0
    "FirewallOverride" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

    ========== System Restore Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
    "Start" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
    "Start" = 2

    ========== Firewall Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 1

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
    "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
    "1037:TCP" = 1037:TCP:*:Enabled:Akamai NetSession Interface
    "5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface

    ========== Authorized Applications List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
    "C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL
    "C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL
    "C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe" = C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2 -- (EA Digital Illusions CE AB)
    "C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Game.exe" = C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Game.exe:*:Enabled:Battlefield: Bad Company™ 2 -- (EA Digital Illusions CE AB)
    "C:\Program Files\Google\Google Earth\plugin\geplugin.exe" = C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth -- (Google)
    "C:\Program Files\Smith Micro\Poser 8\Poser.exe" = C:\Program Files\Smith Micro\Poser 8\Poser.exe:*:Enabled:Poser executable file -- (Smith Micro Software, Inc)


    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
    "{075473F5-846A-448B-BCB3-104AA1760205}" = Roxio RecordNow Data
    "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
    "{0CB9668D-F979-4F31-B8B8-67FE90F929F8}" = Bonjour
    "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
    "{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}" = Microsoft Plus! Photo Story 2 LE
    "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
    "{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}" = Roxio DLA
    "{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Roxio MyDVD LE
    "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
    "{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 24
    "{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
    "{33BB4982-DC52-4886-A03B-F4C5C80BEE89}" = Windows Media Player 10
    "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
    "{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
    "{3C569633-C8DE-46E2-BB8F-F65198681C2F}" = Corel MediaOne
    "{3D9892BB-A751-4E48-ADC8-E4289956CE1D}" = QuickTime
    "{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = URL Assistant
    "{43CAC9A1-1993-4F65-9096-7C9AFC2BBF54}" = Dell CinePlayer
    "{4667B940-BB01-428B-986E-A0CC46497BF7}" = ELIcon
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{548EEA8E-8299-497F-8057-811D2D7097DC}" = Dell Support 3.1
    "{5905F42D-3F5F-4916-ADA6-94A3646AEE76}" = Dell Driver Reset Tool
    "{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}" = Sonic Activation Module
    "{62BD0AE0-4EB1-4BBB-8F43-B6400C8FEB2C}" = AOLIcon
    "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
    "{64E72FB1-2343-4977-B4A8-262CD53D0BD3}" = Corel Paint Shop Pro Photo X2
    "{6D5FCA42-1486-4E32-AFE8-1B7E2AA59D33}" = Digital Content Portal
    "{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}" = Microsoft Plus! Digital Media Edition Installer
    "{707EB912-C597-49D8-9460-46CC9AB03EBE}" = Corel Painter Photo Essentials 4
    "{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03
    "{74F7662C-B1DB-489E-A8AC-07A06B24978B}" = Dell System Restore
    "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
    "{83F793B5-8BBF-42FD-A8A6-868CB3E2AAEA}" = Intel(R) PROSet for Wired Connections
    "{85991ED2-010C-4930-96FA-52F43C2CE98A}" = Apple Mobile Device Support
    "{85D3CC30-8859-481A-9654-FD9B74310BEF}" = Musicmatch® Jukebox
    "{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
    "{91130409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Small Business
    "{91130409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Basic Edition 2003
    "{91F7F3F3-CE80-48C3-8327-7D24A0A5716A}" = iTunes
    "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
    "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
    "{9941F0AA-B903-4AF4-A055-83A9815CC011}" = Sonic Encoders
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
    "{A683A2C0-821C-486F-858C-FA634DB5E864}" = EducateU
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Roxio RecordNow Audio
    "{AC76BA86-7AD7-1033-7B44-AA0000000001}" = Adobe Reader X (10.0.1)
    "{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Roxio RecordNow Copy
    "{B2D328BE-45AD-4D92-96F9-2151490A203E}" = Apple Application Support
    "{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
    "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
    "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
    "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
    "{D2988E9B-C73F-422C-AD4B-A66EBE257120}" = MCU
    "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
    "{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
    "{DF6A589A-7A1A-430C-9FF2-A0BDB42669DC}" = Search Assist
    "{E62A1F01-07B7-4541-A835-EE5B0BF064C2}" = Microsoft Antimalware
    "{E93E5EF6-D361-481E-849D-F16EF5C78EBC}" = Musicmatch for Windows Media Player
    "{EF98A02A-1748-4762-9B7D-5ED1600520D5}" = Microsoft Security Essentials
    "{FB4F9000-04FC-11E0-85D2-001AA037B01E}" = Google Earth Plug-in
    "12133444-BF36-4d4e-B7FB-A3424C645DE4" = GemMaster Mystic
    "Adobe AIR" = Adobe AIR
    "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
    "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
    "Akamai" = Akamai NetSession Interface
    "B3EE3001-DC24-4cd1-8743-5692C716659F" = Otto
    "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
    "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
    "Dell Digital Jukebox Driver" = Dell Digital Jukebox Driver
    "Dell Game Console" = Dell Game Console
    "EmeraldQFE2" = Windows Media Player 10 Hotfix [See EmeraldQFE2 for more information]
    "EPSON Stylus NX400 Series" = EPSON Stylus NX400 Series Printer Uninstall
    "ERUNT_is1" = ERUNT 1.1j
    "ESPNMotion" = ESPNMotion
    "Google Desktop" = Google Desktop
    "ie8" = Windows Internet Explorer 8
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
    "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
    "Microsoft Security Essentials" = Microsoft Security Essentials
    "Mozilla Firefox (3.6.16)" = Mozilla Firefox (3.6.16)
    "NetDevil_LEGO_Universe_is1" = LEGO Universe
    "NVIDIA Drivers" = NVIDIA Drivers
    "Poser 8_is1" = Poser 8 (8.0.0.10157)
    "PROSet" = Intel(R) PRO Network Connections Drivers
    "PunkBusterSvc" = PunkBuster Services
    "RealPlayer 6.0" = RealPlayer Basic
    "StreetPlugin" = Learn2 Player (Uninstall Only)
    "ViewpointMediaPlayer" = Viewpoint Media Player
    "Windows Media Format Runtime" = Windows Media Format Runtime
    "Windows XP Service Pack" = Windows XP Service Pack 3

    ========== Last 10 Event Log Errors ==========

    [ Application Events ]
    Error - 3/24/2011 3:48:09 PM | Computer Name = D7M16T91 | Source = EventSystem | ID = 4609
    Description = The COM+ Event System detected a bad return code during its internal
    processing. HRESULT was 8007041D from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
    Please contact Microsoft Product Support Services to report this erro

    Error - 3/24/2011 3:48:09 PM | Computer Name = D7M16T91 | Source = COM+ | ID = 135894
    Description = A condition has occurred that indicates this COM+ application is in
    an unstable state or is not functioning correctly. Assertion Failure: SUCCEEDED(hr)

    Server
    Application ID: {02D4B3F1-FD88-11D1-960D-00805FC79235} Server Application Instance
    ID: {3590AF03-8787-49E4-93B7-1F6772DAD3F8} Server Application Name: System Application
    The
    serious nature of this error has caused the process to terminate. Error Code = 0x8000ffff
    : Catastrophic failure COM+ Services Internals Information: File: f:\xpsp3\com\com1x\src\comsvcs\tracker\trksvr\trksvrimpl.cpp,
    Line: 3000 Comsvcs.dll file version: ENU 2001.12.4414.702 s

    Error - 3/24/2011 3:48:41 PM | Computer Name = D7M16T91 | Source = EventSystem | ID = 4609
    Description = The COM+ Event System detected a bad return code during its internal
    processing. HRESULT was 8007041D from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
    Please contact Microsoft Product Support Services to report this erro

    Error - 3/24/2011 3:49:11 PM | Computer Name = D7M16T91 | Source = EventSystem | ID = 4609
    Description = The COM+ Event System detected a bad return code during its internal
    processing. HRESULT was 8007041D from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
    Please contact Microsoft Product Support Services to report this erro

    Error - 3/24/2011 3:49:41 PM | Computer Name = D7M16T91 | Source = EventSystem | ID = 4609
    Description = The COM+ Event System detected a bad return code during its internal
    processing. HRESULT was 8007041D from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
    Please contact Microsoft Product Support Services to report this erro

    Error - 3/24/2011 3:49:41 PM | Computer Name = D7M16T91 | Source = COM+ | ID = 135761
    Description = The run-time environment has detected an inconsistency in its internal
    state. This indicates a potential instability in the process that could be caused
    by the custom components running in the COM+ application, the components they make
    use of, or other factors. Error in f:\xpsp3\com\com1x\src\comsvcs\events\lcedisp.cpp(131),
    hr = 80040206: Failed to CoCreate EventSystem objec

    Error - 3/24/2011 3:50:11 PM | Computer Name = D7M16T91 | Source = EventSystem | ID = 4609
    Description = The COM+ Event System detected a bad return code during its internal
    processing. HRESULT was 8007041D from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
    Please contact Microsoft Product Support Services to report this erro

    Error - 3/24/2011 3:50:41 PM | Computer Name = D7M16T91 | Source = EventSystem | ID = 4609
    Description = The COM+ Event System detected a bad return code during its internal
    processing. HRESULT was 8007041D from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
    Please contact Microsoft Product Support Services to report this erro

    Error - 3/24/2011 3:50:41 PM | Computer Name = D7M16T91 | Source = COM+ | ID = 135894
    Description = A condition has occurred that indicates this COM+ application is in
    an unstable state or is not functioning correctly. Assertion Failure: SUCCEEDED(hr)

    Server
    Application ID: {02D4B3F1-FD88-11D1-960D-00805FC79235} Server Application Instance
    ID: {47882B63-6ECF-418D-B402-B8339FD7F156} Server Application Name: System Application
    The
    serious nature of this error has caused the process to terminate. Error Code = 0x8000ffff
    : Catastrophic failure COM+ Services Internals Information: File: f:\xpsp3\com\com1x\src\comsvcs\tracker\trksvr\trksvrimpl.cpp,
    Line: 3000 Comsvcs.dll file version: ENU 2001.12.4414.702 s

    Error - 3/27/2011 1:54:05 PM | Computer Name = D7M16T91 | Source = crypt32 | ID = 131077
    Description = Failed auto update retrieval of third-party root certificate from:
    <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5.crt>
    with error: The connection with the server was terminated abnormally

    [ System Events ]
    Error - 3/27/2011 6:22:28 PM | Computer Name = D7M16T91 | Source = DCOM | ID = 10005
    Description = DCOM got error "%1058" attempting to start the service wuauserv with
    arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

    Error - 3/27/2011 6:27:45 PM | Computer Name = D7M16T91 | Source = DCOM | ID = 10005
    Description = DCOM got error "%1058" attempting to start the service wuauserv with
    arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

    Error - 3/27/2011 6:33:55 PM | Computer Name = D7M16T91 | Source = DCOM | ID = 10005
    Description = DCOM got error "%1084" attempting to start the service StiSvc with
    arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

    Error - 3/27/2011 6:33:55 PM | Computer Name = D7M16T91 | Source = DCOM | ID = 10005
    Description = DCOM got error "%1084" attempting to start the service StiSvc with
    arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

    Error - 3/27/2011 7:08:55 PM | Computer Name = D7M16T91 | Source = DCOM | ID = 10005
    Description = DCOM got error "%1084" attempting to start the service StiSvc with
    arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

    Error - 3/27/2011 7:17:56 PM | Computer Name = D7M16T91 | Source = DCOM | ID = 10005
    Description = DCOM got error "%1058" attempting to start the service wuauserv with
    arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

    Error - 3/27/2011 7:17:56 PM | Computer Name = D7M16T91 | Source = DCOM | ID = 10005
    Description = DCOM got error "%1058" attempting to start the service wuauserv with
    arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

    Error - 3/27/2011 7:17:56 PM | Computer Name = D7M16T91 | Source = Microsoft Antimalware | ID = 2001
    Description = %%861 has encountered an error trying to update signatures. New Signature
    Version: Previous Signature Version: 1.99.1703.0 Update Source: %%859 Update Stage:
    %%852 Source Path: Default URL Signature Type: %%800 Update Type: %%803 User: NT AUTHORITY\SYSTEM

    Current
    Engine Version: Previous Engine Version: 1.1.6603.0 Error code: 0x80070422 Error
    description: The service cannot be started, either because it is disabled or because
    it has no enabled devices associated with it.

    Error - 3/27/2011 7:22:28 PM | Computer Name = D7M16T91 | Source = DCOM | ID = 10005
    Description = DCOM got error "%1058" attempting to start the service wuauserv with
    arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

    Error - 3/27/2011 10:58:16 PM | Computer Name = D7M16T91 | Source = DCOM | ID = 10005
    Description = DCOM got error "%1084" attempting to start the service EventSystem
    with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}


    < End of report >

  8. #28
    Emeritus-Security Expert
    Join Date
    Nov 2005
    Location
    Florida's SpaceCoast
    Posts
    15,208

    Default

    Yes, by all means install the updates.

    You can delete this one as well
    C:\WINDOWS\Ikayacegalaj.dat

    Keep Java up to date
    Download JavaRa to your desktop and unzip it to its own folder
    • Run JavaRa.exe, pick the language of your choice and click Select. Then click Remove Older Versions.
    • Accept any prompts.
    • Open JavaRa.exe again and select Search For Updates.
    • Select Update Using Sun Java's Website then click Search and click on the Open Webpage button. Download and install the latest Java Runtime Environment (JRE) version for your computer.




    1. Click Start > Settings > Control Panel.
    2. Double-click the Java Plug-in icon in the control panel.
    3. Click the Cache tab.
    4. Click Clear A confirmation dialog box appears.
    5. Click Yes to confirm.
    6. Click Apply.


    How are things running now ?
    Microsoft MVP Consumer Security 2007-2008-2009-2010-2011-2012-2013-2014

    ERROR MESSAGE 386
    No KeyBoard Detected
    Press F1 To Continue

    Just a reminder that threads will be closed if no reply in 3 days.

  9. #29
    Junior Member
    Join Date
    Mar 2011
    Location
    California
    Posts
    19

    Default

    All gone....C:\WINDOWS\Ikayacegalaj.dat



    ---------------------------
    JavaRa 1.16
    ---------------------------
    Removed C:\Program Files\Java\j2re1.4.2_03.
    Removed C:\Documents and Settings\Mommazon\Application Data\Sun\Java\jre1.6.0_22.

    ---------------------------

    Apparently I already had the latest version of Java, but I asked it to reinstall anyway.

    I went to the control panel and dbl clicked the Java icon, but it doesn't have a cahce tab, nor can I find anything under the main tabs (GENERAL, UPDATE, JAVA, SECURITY, ADVANCED)


    Everything seems to be running smoothly! THANK YOU!!

    Now do I go back and hide all the things under the windows folder?

    As well, do I restart the MSE real time security (I don't remember exactly what it said at this point) or is it possible to remove that and get a better AV program? I have used AVG with great success in the past, but it won't load while MSE is on board. I truly appreciate your amazing assistance!!

  10. #30
    Emeritus-Security Expert
    Join Date
    Nov 2005
    Location
    Florida's SpaceCoast
    Posts
    15,208

    Default

    Well, dont know if its me with my systems but I had issues with MSE, why dont you just uninstall it.

    Uninstall AVG as well and try downloading it and reinstalling and see if that helps

    If it still gives you problems I kind of lean toward Avast

    Free Anti Virus Programs





    Free Firewalls





    Once you have that straightened out, then do this


    Open OTL and click on Clean Up and it will remove programs we used to clean your system along with there backups






    Safe Surfn
    Ken
    Microsoft MVP Consumer Security 2007-2008-2009-2010-2011-2012-2013-2014

    ERROR MESSAGE 386
    No KeyBoard Detected
    Press F1 To Continue

    Just a reminder that threads will be closed if no reply in 3 days.

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •