Error Starting on Demand Scanner

I need some help. I have an issue with starting a scan with Mcafee. I have tried to update windwos, but have only been able to lock up my computer and .zip files will not open now either. I hope I have not completely destroyed my computer as I have no money at all to replace it. Please help me.

And there is a new problem. Some sites are now deemed restricted saying my system is infected due to system preferences after I used windows update.

Please download SystemLook from one of the links below and save it to your Desktop.
Download Mirror #1
Download Mirror #2

• Double-click SystemLook.exe to run it.
  
• Copy the content of the following codebox into the main textfield:
  

  Code:

  
:filefind
scecli.dll
netlogon.dll
eventlog.dll
cngaudit.dll

  
  
  
• Click the Look button to start the scan.
  
• When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
  

Note: The log can also be found on your Desktop entitled SystemLook.txt

SystemLook v1.0 by jpshortstuff (11.01.10)
Log created at 15:44 on 06/02/2010 by Brent (Administrator - Elevation successful)

========== filefind ==========

Searching for "scecli.dll"
C:\WINDOWS\$NtServicePackUninstall$\scecli.dll -----c 174592 bytes [04:02 18/09/2009] [12:00 31/03/2003] 97418A5C642A5C748A28BD7CF6860B57
C:\WINDOWS\ServicePackFiles\i386\scecli.dll -----c 181248 bytes [04:12 18/09/2009] [10:42 14/04/2008] A86BB5E61BF3E39B62AB4C7E7085A084
C:\WINDOWS\system32\scecli.dll --a--- 181248 bytes [12:00 31/03/2003] [10:42 14/04/2008] A86BB5E61BF3E39B62AB4C7E7085A084

Searching for "netlogon.dll"
C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll -----c 399360 bytes [04:03 18/09/2009] [12:00 31/03/2003] 3ADD563ED7A1C66E6F5E0F7A661AA96D
C:\WINDOWS\ServicePackFiles\i386\netlogon.dll -----c 407040 bytes [04:11 18/09/2009] [10:42 14/04/2008] 1B7F071C51B77C272875C3A23E1E4550
C:\WINDOWS\system32\netlogon.dll --a--- 407040 bytes [12:00 31/03/2003] [10:42 14/04/2008] 1B7F071C51B77C272875C3A23E1E4550

Searching for "eventlog.dll"
C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll -----c 49152 bytes [04:03 18/09/2009] [12:00 31/03/2003] BF3C8CF53C77B48206B39910B6D6CBCC
C:\WINDOWS\ServicePackFiles\i386\eventlog.dll -----c 56320 bytes [04:12 18/09/2009] [10:41 14/04/2008] 6D4FEB43EE538FC5428CC7F0565AA656
C:\WINDOWS\system32\eventlog.dll --a--- 56320 bytes [12:00 31/03/2003] [10:41 14/04/2008] 6D4FEB43EE538FC5428CC7F0565AA656

Searching for "cngaudit.dll"
No files found.

-=End Of File=-

and still restricted on some sites.

Still the same symptoms.

Download OTL by OldTimer to your Desktop.

• Close all windows and double click OTL.exe
  
• Click Run Scan and let the program run uninterrupted
  
• It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  
• You may need to use two posts to get it all.
  

OTL logfile created on: 2/9/2010 7:33:47 AM - Run 1
OTL by OldTimer - Version 3.1.27.1 Folder = C:\Documents and Settings\Brent\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 76.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 88.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 38.28 Gb Total Space | 1.14 Gb Free Space | 2.98% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 465.76 Gb Total Space | 425.02 Gb Free Space | 91.25% Space Free | Partition Type: NTFS

Computer Name: STADTS
Current User Name: Brent
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/02/09 07:33:05 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Brent\Desktop\OTL.exe
PRC - [2010/02/06 12:54:52 | 000,034,304 | ---- | M] () -- C:\WINDOWS\system32\smss32.exe
PRC - [2010/01/07 18:44:14 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- I:\Java\bin\jqs.exe
PRC - [2010/01/07 18:44:14 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- I:\Java\bin\jusched.exe
PRC - [2009/10/29 06:54:44 | 001,218,008 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2009/10/28 20:21:26 | 000,141,600 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2009/10/28 20:21:14 | 000,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2009/10/27 11:19:46 | 000,895,696 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MpfSrv.exe
PRC - [2009/10/03 16:06:15 | 000,323,392 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\DNA\btdna.exe
PRC - [2009/09/16 09:22:08 | 000,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\Mcshield.exe
PRC - [2009/09/16 08:28:38 | 000,606,736 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe
PRC - [2009/09/09 15:33:06 | 000,065,536 | ---- | M] (New Boundary Technologies, Inc.) -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
PRC - [2009/07/09 23:26:20 | 000,865,832 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSC\mcmscsvc.exe
PRC - [2009/07/08 10:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
PRC - [2009/07/07 18:10:02 | 002,482,848 | ---- | M] (McAfee, Inc.) -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
PRC - [2009/05/29 12:41:26 | 000,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/02/11 10:06:36 | 000,210,216 | ---- | M] () -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2008/08/20 20:05:57 | 000,573,440 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2008/04/14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/07/17 10:13:56 | 000,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2007/07/17 10:13:34 | 000,049,152 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2007/04/19 20:29:56 | 000,149,024 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe
PRC - [2007/04/19 20:29:44 | 000,411,168 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
PRC - [2004/08/02 10:50:36 | 000,806,912 | ---- | M] (U.S. Robotics) -- C:\U.S.R.TurboGWLAN\USRWLANG.exe


========== Modules (SafeList) ==========

MOD - [2010/02/09 07:33:05 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Brent\Desktop\OTL.exe
MOD - [2009/02/11 10:06:38 | 000,014,032 | ---- | M] () -- C:\Program Files\McAfee\SiteAdvisor\sahook.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (gusvc)
SRV - [2010/01/07 18:44:14 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- I:\Java\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009/10/28 20:21:14 | 000,545,568 | ---- | M] (Apple Inc.) [On_Demand | Running] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2009/10/27 11:19:46 | 000,895,696 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MPF\MPFSrv.exe -- (MpfService)
SRV - [2009/09/16 10:23:32 | 000,365,072 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2009/09/16 09:22:08 | 000,144,704 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\McAfee\VirusScan\Mcshield.exe -- (McShield)
SRV - [2009/09/16 08:28:38 | 000,606,736 | ---- | M] (McAfee, Inc.) [On_Demand | Running] -- C:\Program Files\McAfee\VirusScan\mcsysmon.exe -- (McSysmon)
SRV - [2009/09/09 15:33:06 | 000,065,536 | ---- | M] (New Boundary Technologies, Inc.) [Auto | Running] -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -- (PrismXL)
SRV - [2009/07/09 23:26:20 | 000,865,832 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSC\mcmscsvc.exe -- (mcmscsvc)
SRV - [2009/07/08 10:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe -- (McProxy)
SRV - [2009/07/07 18:10:02 | 002,482,848 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe -- (McNASvc)
SRV - [2009/05/29 12:41:26 | 000,144,712 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/02/11 10:06:36 | 000,210,216 | ---- | M] () [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2008/08/20 20:05:57 | 000,573,440 | ---- | M] (ATI Technologies Inc.) [Auto | Running] -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller)
SRV - [2008/08/20 20:05:00 | 000,593,920 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart)
SRV - [2007/04/19 20:29:44 | 000,411,168 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2005/04/03 23:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/12/23 19:19:40 | 000,202,448 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe -- (SNDSrvc)
SRV - [2004/12/10 18:02:34 | 000,243,312 | ---- | M] (Symantec Corporation) [Auto | Stopped] -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe -- (ccSetMgr)
SRV - [2004/12/10 18:02:32 | 000,087,664 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe -- (ccPwdSvc)
SRV - [2003/07/28 10:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)


========== Driver Services (SafeList) ==========

DRV - [2009/09/16 09:22:48 | 000,214,664 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2009/09/16 09:22:48 | 000,079,816 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2009/09/16 09:22:48 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfesmfk.sys -- (mfesmfk)
DRV - [2009/09/16 09:22:48 | 000,035,272 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2009/09/16 09:22:14 | 000,034,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mferkdk.sys -- (mferkdk)
DRV - [2009/08/28 18:42:52 | 000,040,448 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaapl.sys -- (USBAAPL)
DRV - [2009/07/16 11:32:26 | 000,120,136 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Mpfp.sys -- (MPFP)
DRV - [2009/05/18 13:17:00 | 000,026,600 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2008/09/24 09:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008/08/20 22:52:41 | 003,299,840 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008/05/24 16:51:23 | 000,392,320 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)
DRV - [2008/05/24 16:51:23 | 000,032,768 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2008/05/24 16:51:13 | 000,120,992 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2008/05/22 06:16:40 | 000,717,296 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008/04/13 21:09:16 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2008/04/13 10:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/09/28 10:07:50 | 000,043,528 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2007/07/20 17:40:10 | 000,084,992 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2006/12/28 11:44:44 | 000,084,992 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdAud.sys -- (HdAudAddService)
DRV - [2006/05/10 10:27:00 | 000,036,864 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006/02/10 17:55:36 | 000,034,688 | ---- | M] (Dolphin, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\samfilt.sys -- (SAMFILT)
DRV - [2005/11/10 12:54:56 | 000,402,944 | R--- | M] (Belkin Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BLKWGU.sys -- (BLKWGU(Belkin)) Belkin Wireless G USB Network Adapter(Belkin)
DRV - [2005/09/29 22:52:22 | 000,013,056 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005/09/29 22:52:20 | 000,034,048 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005/08/18 02:52:06 | 000,093,568 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2004/08/12 20:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004/06/28 13:58:50 | 000,387,072 | ---- | M] (U.S. Robotics) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USR11G.SYS -- (USR11G)
DRV - [2004/03/11 20:16:32 | 000,062,865 | ---- | M] (Funk Software, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\odysseyIM3.sys -- (odysseyIM3)
DRV - [2003/03/31 06:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaulturl: "http://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=18&q="
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://en-US.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:2.9
FF - prefs.js..extensions.enabledItems: {C3945711-14EC-489D-BF2A-08E97087AF20}:1.0
FF - prefs.js..keyword.URL: ""
FF - prefs.js..network.proxy.type: 4

FF - HKLM\software\mozilla\Firefox\Extensions\\{C3945711-14EC-489D-BF2A-08E97087AF20}: C:\Documents and Settings\Brent\Local Settings\Application Data\{C3945711-14EC-489D-BF2A-08E97087AF20} [2008/12/21 02:54:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2010/01/20 20:10:19 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\jqs@sun.com: I:\Java\lib\deploy\jqs\ff [2010/01/07 18:44:16 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/01/07 19:18:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/01/09 00:16:04 | 000,000,000 | ---D | M]

[2009/10/14 08:58:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Brent\Application Data\Mozilla\Extensions
[2009/10/14 08:58:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Brent\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2009/10/25 10:50:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Brent\Application Data\Mozilla\Firefox\Profiles\vbripgx3.default\extensions
[2009/07/23 09:12:54 | 000,000,681 | ---- | M] () -- C:\Documents and Settings\Brent\Application Data\Mozilla\Firefox\Profiles\vbripgx3.default\searchplugins\ask.xml
[2009/10/09 03:55:07 | 000,002,255 | ---- | M] () -- C:\Documents and Settings\Brent\Application Data\Mozilla\Firefox\Profiles\vbripgx3.default\searchplugins\askcom.xml
[2009/12/01 12:50:20 | 000,002,160 | ---- | M] () -- C:\Documents and Settings\Brent\Application Data\Mozilla\Firefox\Profiles\vbripgx3.default\searchplugins\MySpace.xml
[2010/02/06 11:21:49 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions

O1 HOSTS File: ([2009/11/09 22:30:05 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - I:\Java\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - I:\Java\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [smss32.exe] C:\WINDOWS\system32\smss32.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] I:\Java\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [BitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe File not found
O4 - HKCU..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe ()
O4 - HKCU..\Run: [smss32.exe] C:\WINDOWS\system32\smss32.exe ()
O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup\U.S. Robotics 802.11g Wireless Network Utility.lnk = C:\U.S.R.TurboGWLAN\USRWLANG.exe (U.S. Robotics)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonscripts = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLogoffscripts = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonscriptSync = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupscriptSync = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideStartupscripts = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetActiveDesktop = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonscripts = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLogoffscripts = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonscriptSync = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupscriptSync = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideStartupscripts = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\System32\helper32.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\System32\helper32.dll ()
O15 - HKLM\..Trusted Domains: buy-internet-security10.com ([]http in Trusted sites)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: buy-internet-security10.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: internet ([]about in Trusted sites)
O15 - HKCU\..Trusted Domains: is-soft-download.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: is-software-download.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: is-software-download25.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: mcafee.com ([]https in Trusted sites)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1181071085625 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.4.2/jinstall-1_4_2-windows-i586.cab (Java Plug-in 1.4.2)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 24.93.41.127 24.93.41.128
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\winlogon32.exe) - C:\WINDOWS\system32\winlogon32.exe ()
O20 - HKCU Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper:
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Brent\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O30 - LSA: Authentication Packages - (C:\WINDOWS\system32\vtUMGAtt) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/09/05 23:57:43 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/02/09 07:33:27 | 000,548,864 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Brent\Desktop\OTL.exe
[2010/02/06 17:59:03 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2005/09/10 11:09:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2005/09/06 00:00:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2005/09/05 23:57:24 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2005/09/05 23:57:24 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2004/07/09 03:08:36 | 000,472,576 | ---- | C] (Microsoft Corporation) -- C:\Program Files\dxsetup.exe
[2004/07/09 03:08:34 | 002,242,560 | ---- | C] (Microsoft Corporation) -- C:\Program Files\dsetup32.dll
[2004/07/09 02:03:10 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Program Files\DSETUP.dll
[48 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[12 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/02/09 07:33:05 | 000,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Brent\Desktop\OTL.exe
[2010/02/09 07:31:56 | 000,024,307 | ---- | M] () -- C:\WINDOWS\System32\Config.MPF
[2010/02/09 07:30:51 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\IS15.exe
[2010/02/09 07:30:51 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\41.exe
[2010/02/09 07:30:17 | 000,020,712 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/02/09 07:29:37 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/02/09 07:29:34 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/02/09 07:29:32 | 000,044,964 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
[2010/02/08 07:36:35 | 004,980,736 | -H-- | M] () -- C:\Documents and Settings\Brent\NTUSER.DAT
[2010/02/08 07:36:35 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Brent\ntuser.ini
[2010/02/07 13:00:06 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\85.exe
[2010/02/07 12:40:05 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\9834.exe
[2010/02/07 10:39:58 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\74.exe
[2010/02/07 10:29:06 | 000,002,137 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\iTunes.lnk
[2010/02/07 10:19:57 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\18467.exe
[2010/02/07 10:04:40 | 000,000,594 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\World of Warcraft.lnk
[2010/02/07 01:56:06 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\9894.exe
[2010/02/07 01:36:06 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\17035.exe
[2010/02/07 01:16:05 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\26299.exe
[2010/02/07 00:56:04 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\25667.exe
[2010/02/07 00:36:04 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\19912.exe
[2010/02/07 00:16:04 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\1869.exe
[2010/02/06 23:56:03 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\11538.exe
[2010/02/06 23:36:03 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\14771.exe
[2010/02/06 23:16:02 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\21726.exe
[2010/02/06 22:56:01 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\5447.exe
[2010/02/06 22:36:01 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\19895.exe
[2010/02/06 22:16:01 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\19718.exe
[2010/02/06 21:56:00 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\18716.exe
[2010/02/06 21:36:00 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\17421.exe
[2010/02/06 21:15:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\12382.exe
[2010/02/06 20:55:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\292.exe
[2010/02/06 20:35:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\153.exe
[2010/02/06 20:15:57 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\3902.exe
[2010/02/06 19:55:57 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\14604.exe
[2010/02/06 19:35:57 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\32391.exe
[2010/02/06 19:15:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\5436.exe
[2010/02/06 18:55:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\4827.exe
[2010/02/06 18:35:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\11942.exe
[2010/02/06 18:15:55 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\2995.exe
[2010/02/06 17:55:55 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\491.exe
[2010/02/06 17:35:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\9961.exe
[2010/02/06 17:15:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\16827.exe
[2010/02/06 16:55:50 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\23281.exe
[2010/02/06 16:35:48 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\28145.exe
[2010/02/06 16:15:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\5705.exe
[2010/02/06 15:55:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\24464.exe
[2010/02/06 15:43:58 | 000,100,908 | ---- | M] () -- C:\Documents and Settings\Brent\Desktop\SystemLook.exe
[2010/02/06 15:35:46 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\26962.exe
[2010/02/06 15:15:46 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\29358.exe
[2010/02/06 14:55:46 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\11478.exe
[2010/02/06 14:35:45 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\15724.exe
[2010/02/06 14:15:45 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\19169.exe
[2010/02/06 13:55:45 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\26500.exe
[2010/02/06 13:35:44 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\6334.exe
[2010/02/06 12:55:25 | 000,029,184 | ---- | M] () -- C:\WINDOWS\System32\helper32.dll
[2010/02/06 12:54:52 | 000,034,304 | ---- | M] () -- C:\WINDOWS\System32\winlogon32.exe
[2010/02/06 12:54:52 | 000,034,304 | ---- | M] () -- C:\U.exe
[2010/02/06 12:54:52 | 000,034,304 | ---- | M] () -- C:\WINDOWS\System32\smss32.exe
[2010/02/06 11:23:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/01/29 22:12:59 | 000,000,645 | -HS- | M] () -- C:\Documents and Settings\Brent\Start Menu\Programs\Startup\scandisk.lnk
[2010/01/20 22:50:13 | 000,019,336 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2010/01/18 01:06:34 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[48 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[12 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/02/07 13:00:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\85.exe
[2010/02/07 12:40:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\9834.exe
[2010/02/07 10:39:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\74.exe
[2010/02/07 09:06:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\IS15.exe
[2010/02/07 01:56:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\9894.exe
[2010/02/07 01:36:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\17035.exe
[2010/02/07 01:16:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\26299.exe
[2010/02/07 00:56:04 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\25667.exe
[2010/02/07 00:36:04 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\19912.exe
[2010/02/07 00:16:04 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\1869.exe
[2010/02/06 23:56:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\11538.exe
[2010/02/06 23:36:03 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\14771.exe
[2010/02/06 23:16:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\21726.exe
[2010/02/06 22:56:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\5447.exe
[2010/02/06 22:36:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\19895.exe
[2010/02/06 22:16:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\19718.exe
[2010/02/06 21:56:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\18716.exe
[2010/02/06 21:36:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\17421.exe
[2010/02/06 21:15:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\12382.exe
[2010/02/06 20:55:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\292.exe
[2010/02/06 20:35:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\153.exe
[2010/02/06 20:15:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\3902.exe
[2010/02/06 19:55:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\14604.exe
[2010/02/06 19:35:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\32391.exe
[2010/02/06 19:15:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\5436.exe
[2010/02/06 18:55:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\4827.exe
[2010/02/06 18:35:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\11942.exe
[2010/02/06 18:15:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\2995.exe
[2010/02/06 17:55:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\491.exe
[2010/02/06 17:35:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\9961.exe
[2010/02/06 17:15:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\16827.exe
[2010/02/06 16:55:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\23281.exe
[2010/02/06 16:35:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\28145.exe
[2010/02/06 16:15:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\5705.exe
[2010/02/06 15:55:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\24464.exe
[2010/02/06 15:44:05 | 000,100,908 | ---- | C] () -- C:\Documents and Settings\Brent\Desktop\SystemLook.exe
[2010/02/06 15:35:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\26962.exe
[2010/02/06 15:15:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\29358.exe
[2010/02/06 14:55:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\11478.exe
[2010/02/06 14:35:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\15724.exe
[2010/02/06 14:15:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\19169.exe
[2010/02/06 13:55:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\26500.exe
[2010/02/06 13:35:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\6334.exe
[2010/02/06 13:15:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\18467.exe
[2010/02/06 12:55:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\41.exe
[2010/02/06 12:55:24 | 000,029,184 | ---- | C] () -- C:\WINDOWS\System32\helper32.dll
[2010/02/06 12:54:59 | 000,034,304 | ---- | C] () -- C:\WINDOWS\System32\winlogon32.exe
[2010/02/06 12:54:59 | 000,034,304 | ---- | C] () -- C:\WINDOWS\System32\smss32.exe
[2010/02/06 12:54:52 | 000,034,304 | ---- | C] () -- C:\U.exe
[2009/11/15 09:40:07 | 000,000,000 | -HS- | C] () -- C:\WINDOWS\System32\calc.dll
[2009/10/15 16:58:05 | 000,081,332 | ---- | C] () -- C:\WINDOWS\System32\BASS.DLL
[2009/09/15 16:03:50 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2009/09/09 15:30:55 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009/05/03 21:26:09 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2008/11/12 03:02:32 | 000,000,206 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2008/05/16 13:00:46 | 000,000,250 | ---- | C] () -- C:\WINDOWS\gmer.ini
[2007/11/03 19:13:00 | 000,001,359 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\QTSBandwidthCache
[2007/09/08 05:17:53 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Brent\Local Settings\Application Data\fusioncache.dat
[2007/06/19 07:59:36 | 000,070,400 | ---- | C] () -- C:\WINDOWS\System32\PhysXLoader.dll
[2007/06/03 15:45:17 | 000,000,000 | ---- | C] () -- C:\WINDOWS\VPC32.INI
[2007/04/26 18:54:59 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2007/04/26 18:49:55 | 000,017,920 | ---- | C] () -- C:\Documents and Settings\Brent\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/04/26 09:33:56 | 000,000,087 | ---- | C] () -- C:\WINDOWS\usrwiz.ini
[2007/04/26 09:05:38 | 000,020,256 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2007/04/26 09:05:37 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2007/04/26 09:05:30 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2007/04/20 06:57:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2007/04/20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2007/04/20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2007/04/20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2007/04/20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2007/04/20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2007/04/20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2007/04/20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2007/04/20 06:57:28 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2004/07/22 09:51:34 | 003,432,656 | ---- | C] () -- C:\Program Files\ManagedDX.CAB
[2004/07/19 21:58:36 | 001,156,363 | ---- | C] () -- C:\Program Files\BDANT.cab
[2004/07/19 21:53:26 | 000,976,020 | ---- | C] () -- C:\Program Files\BDAXP.cab
[2004/07/09 13:17:16 | 013,265,040 | ---- | C] () -- C:\Program Files\dxnt.cab
[2004/07/09 08:13:48 | 015,493,481 | ---- | C] () -- C:\Program Files\DirectX.cab
[2004/07/09 08:13:46 | 000,703,080 | ---- | C] () -- C:\Program Files\BDA.cab
[2002/07/05 08:12:06 | 000,027,136 | ---- | C] () -- C:\WINDOWS\System32\authdvd.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:DFC5A2B2
< End of report >

OTL Extras logfile created on: 2/9/2010 7:33:47 AM - Run 1
OTL by OldTimer - Version 3.1.27.1 Folder = C:\Documents and Settings\Brent\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 76.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 88.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 38.28 Gb Total Space | 1.14 Gb Free Space | 2.98% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 465.76 Gb Total Space | 425.02 Gb Free Space | 91.25% Space Free | Partition Type: NTFS

Computer Name: STADTS
Current User Name: Brent
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724
"6112:TCP" = 6112:TCP:*:Enabled:Blizzard Downloader

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\drivers\svchost.exe" = %windir%\system32\drivers\svchost.exe:*:Enabled:svchost -- File not found

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\World of Warcraft\Launcher.exe" = C:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:World of Warcraft -- File not found
"C:\Program Files\World of Warcraft\Repair.exe" = C:\Program Files\World of Warcraft\Repair.exe:*:Enabled:World of Warcraft - Repair -- File not found
"C:\Program Files\BitTorrent_DNA\dna.exe" = C:\Program Files\BitTorrent_DNA\dna.exe:*:Enabled:BitTorrent DNA -- File not found
"C:\WINDOWS\system32\freecell.exe" = C:\WINDOWS\system32\freecell.exe:*:Disabled:FreeCell -- (Microsoft Corporation)
"C:\WINDOWS\system32\mshearts.exe" = C:\WINDOWS\system32\mshearts.exe:*:Disabled:Hearts -- (Microsoft Corporation)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Disabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.)
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- File not found
"I:\EVE\bin\ExeFile.exe" = I:\EVE\bin\ExeFile.exe:*:Enabled:CCP ExeFile -- File not found
"C:\Program Files\Electronic Arts\EADM\Core.exe" = C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager -- File not found
"C:\Documents and Settings\Brent\Local Settings\Temp\Blizzard Launcher Temporary - 0a729368\Launcher.exe" = C:\Documents and Settings\Brent\Local Settings\Temp\Blizzard Launcher Temporary - 0a729368\Launcher.exe:*:Enabled:Blizzard Launcher -- File not found
"C:\Program Files\Ventrilo\Ventrilo.exe" = C:\Program Files\Ventrilo\Ventrilo.exe:*:Enabled:Ventrilo.exe -- ()
"C:\WINDOWS\explorer.exe" = C:\WINDOWS\explorer.exe:*:Enabled:Explorer -- (Microsoft Corporation)
"C:\Program Files\McAfee\MPF\MpfSrv.exe" = C:\Program Files\McAfee\MPF\MpfSrv.exe:*:Enabled:MPFSrv -- (McAfee, Inc.)
"C:\Program Files\McAfee\MSC\mcupdmgr.exe" = C:\Program Files\McAfee\MSC\mcupdmgr.exe:*:Enabled:mcupdmgr -- (McAfee, Inc.)
"C:\Program Files\McAfee\MSC\mcmscsvc.exe" = C:\Program Files\McAfee\MSC\mcmscsvc.exe:*:Enabled:mcmscsvc -- (McAfee, Inc.)
"C:\Program Files\McAfee.com\Agent\mcagent.exe" = C:\Program Files\McAfee.com\Agent\mcagent.exe:*:Enabled:mcagent -- (McAfee, Inc.)
"C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe" = C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe:*:Enabled:schedhlp -- (Acronis)
"%windir%\system32\drivers\svchost.exe" = %windir%\system32\drivers\svchost.exe:*:Enabled:svchost -- File not found
"I:\World of Warcraft\WoW-3.2.0.10314-to-3.2.2.10482-enUS-downloader.exe" = I:\World of Warcraft\WoW-3.2.0.10314-to-3.2.2.10482-enUS-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"I:\World of Warcraft\Launcher.exe" = I:\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment)
"I:\World of Warcraft\WoW-3.2.2.10482-to-3.2.2.10505-enUS-downloader.exe" = I:\World of Warcraft\WoW-3.2.2.10482-to-3.2.2.10505-enUS-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC)
"C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe" = C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent -- (McAfee, Inc.)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Documents and Settings\Brent\My Documents\Downloads\WoW_FotLK_ESRB_EN_XVID_F-avi-downloader.exe" = C:\Documents and Settings\Brent\My Documents\Downloads\WoW_FotLK_ESRB_EN_XVID_F-avi-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"C:\Program Files\MySpace\IM\MySpaceIM.exe" = C:\Program Files\MySpace\IM\MySpaceIM.exe:*:Enabled:MySpaceIM -- ()


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{06E73C0B-7DE7-4F41-860B-587033B75BD9}" = iPod Updater 2004-11-15
"{0A7FBF0B-F96C-B34F-7627-0F93C9A8FABD}" = Skins
"{12453E04-9738-4D16-8408-D726532C2C69}" = ASUS VGA Driver
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3D493787-367F-4841-B39A-7E26A6A7C1AA}" = U.S. Robotics 802.11g Wireless Network Adapter
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{45820070-9BE5-4785-B770-A50F5240250B}" = AGEIA PhysX v7.06.25
"{554E0167-0B53-B866-9512-44B766FABAAF}" = ccc-utility
"{55574205-0833-A7A2-FD0D-D1520E5469DD}" = CCC Help English
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6A4C13C8-39F5-305C-44DE-CD26E1DE0DD6}" = Catalyst Control Center Graphics Full New
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7148F0A8-6813-11D6-A77B-00B0D0142000}" = Java 2 Runtime Environment, SE v1.4.2
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{81A60A13-224D-4637-8203-3EAC03B121A4}" = Seagate DiscWizard
"{82E760D8-F344-3DE4-134D-2D782E31AACF}" = Catalyst Control Center Core Implementation
"{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{90840409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Excel Viewer 2003
"{91BFB889-7BDE-E3BB-A622-068DB5202B0F}" = Catalyst Control Center Graphics Previews Common
"{9862B19F-4CAD-4EED-920F-2F378D84393F}" = ATI Parental Control & Encoder
"{9D622363-9235-E8F0-380C-D9114D77FB52}" = ccc-core-static
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1033-7B44-A81300000003}" = Adobe Reader 8.1.3
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B607C354-CD79-4D22-86D1-92DC94153F42}" = Apple Application Support
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{C4124E95-5061-4776-8D5D-E3D931C778E1}" = Microsoft VC9 runtime libraries
"{C9DD3547-2B8B-B451-F479-30F8B05ED6D6}" = Catalyst Control Center Graphics Full Existing
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D1A74FBB-CA8D-4CCA-9B89-BAAA436DB178}" = iTunes
"{D6E00160-F372-F959-A54C-ABDE5E03B170}" = ccc-core-preinstall
"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer
"{E5D3E730-1EF6-7876-358A-41C0E61475F5}" = Catalyst Control Center Graphics Light
"{FA3A247D-437A-455E-A88F-7EB6E5F9E799}" = Catalyst Control Center - Branding
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"9E140F48C9836B9B78539C08FB2B17146BDB3F65" = Windows Driver Package - Advanced Micro Devices (AmdK8) Processor (04/28/2006 1.3.1.0)
"AC3Filter" = AC3Filter (remove only)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"All ATI Software" = ATI - Software Uninstall Utility
"ATI Display Driver" = ATI Display Driver
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"Driver Cleaner Pro" = DH Driver Cleaner Professional Edition
"ESET Online Scanner" = ESET Online Scanner v3
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"InstallShield_{06E73C0B-7DE7-4F41-860B-587033B75BD9}" = iPod Updater 2004-11-15
"LimeWire" = LimeWire 5.4.6
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Mozilla Firefox (3.5.7)" = Mozilla Firefox (3.5.7)
"MSC" = McAfee SecurityCenter
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MySpaceIM" = MySpaceIM
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"SystemRequirementsLab" = System Requirements Lab
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"World of Warcraft" = World of Warcraft
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent DNA" = DNA

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2/6/2010 8:49:48 PM | Computer Name = STADTS | Source = McLogEvent | ID = 5051
Description = A thread in process C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe took
longer than 90000 ms to complete a request. The process will be terminated. Thread
id : 3532 (0xdcc) Thread address : 0x7C90E4F4 Thread message : Build VSCORE.14.0.0.435
/ 5301.4018 Object being scanned = \Device\HarddiskVolume2\install_tabula_rasa_1.11.6.0.exe

by C:\Program Files\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe 4(0)(0) 4(0)(0)

7200(0)(0) 7595(0)(0) 7005(0)(0) 7004(0)(0) 5006(0)(0) 5004(0)(0)

Error - 2/7/2010 11:05:36 AM | Computer Name = STADTS | Source = Application Error | ID = 1004
Description = Faulting application svchost.exe, version 5.1.2600.5512, faulting
module unknown, version 0.0.0.0, fault address 0x02b9f7a0.

Error - 2/7/2010 11:06:41 AM | Computer Name = STADTS | Source = Application Error | ID = 1001
Description = Fault bucket 938174977.

Error - 2/7/2010 11:10:26 AM | Computer Name = STADTS | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 5.1.2600.5512, faulting
module unknown, version 0.0.0.0, fault address 0x02b4f7a0.

Error - 2/7/2010 11:59:45 AM | Computer Name = STADTS | Source = Application Error | ID = 1004
Description = Faulting application svchost.exe, version 5.1.2600.5512, faulting
module unknown, version 0.0.0.0, fault address 0x02b4f7a0.

Error - 2/7/2010 12:08:22 PM | Computer Name = STADTS | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 5.1.2600.5512, faulting
module unknown, version 0.0.0.0, fault address 0x02a1f7a0.

Error - 2/8/2010 9:29:31 AM | Computer Name = STADTS | Source = Application Error | ID = 1004
Description = Faulting application svchost.exe, version 5.1.2600.5512, faulting
module unknown, version 0.0.0.0, fault address 0x02a1f7a0.

Error - 2/8/2010 9:35:04 AM | Computer Name = STADTS | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 5.1.2600.5512, faulting
module unknown, version 0.0.0.0, fault address 0x02b2f7a0.

Error - 2/9/2010 9:30:43 AM | Computer Name = STADTS | Source = Application Error | ID = 1004
Description = Faulting application svchost.exe, version 5.1.2600.5512, faulting
module unknown, version 0.0.0.0, fault address 0x02b2f7a0.

Error - 2/9/2010 9:34:56 AM | Computer Name = STADTS | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 5.1.2600.5512, faulting
module unknown, version 0.0.0.0, fault address 0x02b8f7a0.

[ System Events ]
Error - 2/8/2010 9:35:14 AM | Computer Name = STADTS | Source = Service Control Manager | ID = 7034
Description = The DCOM Server Process Launcher service terminated unexpectedly.
It has done this 1 time(s).

Error - 2/8/2010 9:35:14 AM | Computer Name = STADTS | Source = Service Control Manager | ID = 7034
Description = The Terminal Services service terminated unexpectedly. It has done
this 1 time(s).

Error - 2/9/2010 9:29:42 AM | Computer Name = STADTS | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the Symantec Settings Manager
service to connect.

Error - 2/9/2010 9:29:42 AM | Computer Name = STADTS | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
sptd

Error - 2/9/2010 9:30:07 AM | Computer Name = STADTS | Source = sptd | ID = 262148
Description = Driver detected an internal error in its data structures for .

Error - 2/9/2010 9:30:07 AM | Computer Name = STADTS | Source = Ftdisk | ID = 262189
Description = The system could not sucessfully load the crash dump driver.

Error - 2/9/2010 9:30:07 AM | Computer Name = STADTS | Source = Ftdisk | ID = 262193
Description = Configuring the Page file for crash dump failed. Make sure there is
a page file on the boot partition and that is large enough to contain all physical
memory.

Error - 2/9/2010 9:35:00 AM | Computer Name = STADTS | Source = Service Control Manager | ID = 7034
Description = The DCOM Server Process Launcher service terminated unexpectedly.
It has done this 1 time(s).

Error - 2/9/2010 9:35:00 AM | Computer Name = STADTS | Source = Service Control Manager | ID = 7034
Description = The Terminal Services service terminated unexpectedly. It has done
this 1 time(s).

Error - 2/9/2010 9:35:29 AM | Computer Name = STADTS | Source = DCOM | ID = 10010
Description = The server {B44D92F9-978C-42F3-9382-6EAD817BA0AE} did not register
with DCOM within the required timeout.


< End of report >

Hello.

Please run OTL.exe.

• Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):
  
  
  :OTL
  PRC - [2010/02/06 12:54:52 | 000,034,304 | ---- | M] () -- C:\WINDOWS\system32\smss32.exe
  FF - prefs.js..browser.search.defaultengine: "Ask.com"
  FF - prefs.js..browser.search.defaultenginename: "Ask.com"
  FF - prefs.js..browser.search.defaulturl: "http://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=18&q="
  FF - prefs.js..browser.search.order.1: "Ask.com"
  FF - prefs.js..browser.search.selectedEngine: "Ask.com"
  O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
  O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
  O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
  O4 - HKLM..\Run: [smss32.exe] C:\WINDOWS\system32\smss32.exe ()
  O4 - HKCU..\Run: [smss32.exe] C:\WINDOWS\system32\smss32.exe ()
  O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
  O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
  O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
  O30 - LSA: Authentication Packages - (C:\WINDOWS\system32\vtUMGAtt) - File not found
  [2010/02/09 07:30:51 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\41.exe
  [2010/02/07 13:00:06 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\85.exe
  [2010/02/07 12:40:05 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\9834.exe
  [2010/02/07 10:39:58 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\74.exe
  [2010/02/07 10:19:57 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\18467.exe
  [2010/02/07 01:56:06 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\9894.exe
  [2010/02/07 01:36:06 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\17035.exe
  [2010/02/07 01:16:05 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\26299.exe
  [2010/02/07 00:56:04 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\25667.exe
  [2010/02/07 00:36:04 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\19912.exe
  [2010/02/07 00:16:04 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\1869.exe
  [2010/02/06 23:56:03 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\11538.exe
  [2010/02/06 23:36:03 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\14771.exe
  [2010/02/06 23:16:02 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\21726.exe
  [2010/02/06 22:56:01 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\5447.exe
  [2010/02/06 22:36:01 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\19895.exe
  [2010/02/06 22:16:01 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\19718.exe
  [2010/02/06 21:56:00 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\18716.exe
  [2010/02/06 21:36:00 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\17421.exe
  [2010/02/06 21:15:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\12382.exe
  [2010/02/06 20:55:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\292.exe
  [2010/02/06 20:35:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\153.exe
  [2010/02/06 20:15:57 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\3902.exe
  [2010/02/06 19:55:57 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\14604.exe
  [2010/02/06 19:35:57 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\32391.exe
  [2010/02/06 19:15:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\5436.exe
  [2010/02/06 18:55:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\4827.exe
  [2010/02/06 18:35:56 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\11942.exe
  [2010/02/06 18:15:55 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\2995.exe
  [2010/02/06 17:55:55 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\491.exe
  [2010/02/06 17:35:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\9961.exe
  [2010/02/06 17:15:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\16827.exe
  [2010/02/06 16:55:50 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\23281.exe
  [2010/02/06 16:35:48 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\28145.exe
  [2010/02/06 16:15:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\5705.exe
  [2010/02/06 15:55:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\24464.exe
  [2010/02/06 15:35:46 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\26962.exe
  [2010/02/06 15:15:46 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\29358.exe
  [2010/02/06 14:55:46 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\11478.exe
  [2010/02/06 14:35:45 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\15724.exe
  [2010/02/06 14:15:45 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\19169.exe
  [2010/02/06 13:55:45 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\26500.exe
  [2010/02/06 13:35:44 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\6334.exe
  [2010/02/06 12:55:25 | 000,029,184 | ---- | M] () -- C:\WINDOWS\System32\helper32.dll
  [2010/02/06 12:54:52 | 000,034,304 | ---- | M] () -- C:\WINDOWS\System32\winlogon32.exe
  [2010/02/06 12:54:52 | 000,034,304 | ---- | M] () -- C:\U.exe
  [2010/02/06 12:54:52 | 000,034,304 | ---- | M] () -- C:\WINDOWS\System32\smss32.exe
  [2010/01/29 22:12:59 | 000,000,645 | -HS- | M] () -- C:\Documents and Settings\Brent\Start Menu\Programs\Startup\scandisk.lnk
  
  
  
  
• Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.
  
  
• Click the red Run Fix button.
  
• A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  
• Close OTL.exe
  

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

after pasting and doing the run fix it opened up notepad and received commands that HKEY files had been removed and not found. Mozilla closed down immediately and when i tried to re-open it i came to a blank white screen. trying to go to other cites produces the same results with a blank white screen. I tried to diagnose connection problems and it told me to restart my computer, I did so and as I tried to turn on my computer it takes me to the log in starter page trying to log in it logs off immediately i wasn't able to finish your suggestion. i am on a different computer at this time.

Avira AntiVir Rescue System is a Linux-based application that allows accessing computers that cannot be booted anymore.

• Download The Avira AntiVir Rescue System from Antivir.de.
  
• Just double-click on the rescue system package to burn it to a CD/DVD.
  
• Then please use that CD/DVD with Avira Rescue System to boot your computer.
  

You'll get a boot option to either boot from hard drive or AntiVir Rescue System.


Press the number 2 on your keyboard to boot into AntiVir Rescue System.

Please wait until drivers are loaded and Main menu shows. Then please select the second option “Scan your system with AntiVir” and hit Enter.


Under Configuration, please select Scan all files, Try to repair infected files and Rename files if they cannot be removed?.


Then please start the scan.

The Avira AntiVir Rescue System wil now

• repair a damaged system,
  
• rescue data,
  
• scan the system for virus infections.
  

i downloaded antivir.de and there was a problem on boot up. it says "please insert CDrom and press enter."

A quick repost. I downloaded Anitivr.de and copied it to a CD-R disc and inserted the disc into the tower. When I disabled all of the boot-up options and left only CD-ROM, the screen went black and got text saying "there was a problem on boot-up. Please insert CD-ROM into drive." Should I Re-download it or opt and buy Windows 7 and get a brand new hard drive?

You can try redownloading, has worked sometimes in the past when I used the Avira boot disc, but buying a new HD/OS is upto you really.