IE/Firefox Crashes Upon Startup

2 posters

WiredWX Christian Hobby Weather Tools :: GeekPolice tech support archive :: Technical Support

IE/Firefox Crashes Upon Startup6th June 2010, 9:49 pm

When launching IE or Firefox it crashes. Firefix still crashes in Safe Mode, but IE loads.

Side Note:
I was unable to download the newest version of JAVA. When trying to download, it would get to around 350KB and disconnect. Then it tries to re-download and just goes through that cycle.

Log Info:

OTL logfile created on: 6/6/2010 2:22:30 PM - Run 1
OTL by OldTimer - Version 3.2.5.3 Folder = C:\Documents and Settings\Roobert\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 709.00 Mb Available Physical Memory | 69.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 228.14 Gb Total Space | 9.58 Gb Free Space | 4.20% Space Free | Partition Type: NTFS
Drive D: | 149.05 Gb Total Space | 78.55 Gb Free Space | 52.70% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 465.65 Gb Total Space | 1.37 Gb Free Space | 0.29% Space Free | Partition Type: FAT32
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: OKCOMPUTER2
Current User Name: Roobert
Logged in as Administrator.

Current Boot Mode: SafeMode with Networking
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/06/06 14:20:21 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Roobert\Desktop\OTL.exe
PRC - [2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

========== Modules (SafeList) ==========

MOD - [2010/06/06 14:20:21 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Roobert\Desktop\OTL.exe
MOD - [2008/04/13 17:10:20 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (RichVideo) Cyberlink RichVideo Service(CRVS)
SRV - File not found [Disabled | Stopped] -- -- (McAfee SiteAdvisor Service)
SRV - [2009/11/19 12:26:54 | 000,455,944 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Flip Video\FlipShare\FlipShareService.exe -- (FlipShare Service)
SRV - [2009/08/19 23:09:06 | 001,029,456 | ---- | M] (Lavasoft) [On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2009/08/15 10:26:31 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd)
SRV - [2009/08/05 23:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2009/05/19 12:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2008/08/13 18:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Stopped] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2008/04/13 17:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC)
SRV - [2008/04/13 17:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (SMTPSVC) Simple Mail Transfer Protocol (SMTP)
SRV - [2008/04/13 17:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2008/03/18 23:44:56 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2007/03/14 17:03:40 | 000,975,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Zune\ZuneNss.exe -- (ZuneNetworkSvc)
SRV - [2007/03/07 15:47:46 | 000,076,848 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)
SRV - [2006/07/03 22:19:47 | 000,069,632 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe -- (Creative Labs Licensing Service)
SRV - [2006/03/30 09:15:44 | 000,096,341 | ---- | M] (Canon Inc.) [Auto | Stopped] -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8)
SRV - [2005/12/12 07:52:32 | 000,180,224 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe -- (ELService)
SRV - [2005/06/17 05:55:58 | 000,086,140 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMon) Intel(R)

========== Driver Services (SafeList) ==========

DRV - [2009/08/15 10:26:42 | 000,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Stopped] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009/08/15 10:26:42 | 000,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Stopped] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2009/08/05 23:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
DRV - [2009/04/04 12:45:52 | 000,018,816 | ---- | M] (RIF) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dvd43llh.sys -- (dvd43llh)
DRV - [2009/02/17 12:19:44 | 000,057,672 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2009/02/17 12:17:40 | 000,072,520 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ftser2k.sys -- (FTSER2K)
DRV - [2009/01/18 14:30:13 | 000,064,160 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2009/01/04 14:14:31 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008/11/02 01:44:10 | 000,056,572 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2008/04/13 11:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/13 11:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2008/04/13 11:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2008/04/13 09:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/06/18 15:18:26 | 000,023,680 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motmodem.sys -- (motmodem)
DRV - [2007/02/25 12:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\dsunidrv.sys -- (dsunidrv)
DRV - [2006/10/05 16:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2006/06/01 17:22:00 | 003,925,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006/04/07 18:06:38 | 000,038,496 | ---- | M] (OLYMPUS IMAGING CORP.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VNUSB.sys -- (VNUSB)
DRV - [2005/12/12 07:52:34 | 000,010,112 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELhid.sys -- (ELhid)
DRV - [2005/12/12 07:52:34 | 000,007,040 | ---- | M] (Intel Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\ELmon.sys -- (ELmon)
DRV - [2005/12/12 07:52:34 | 000,006,912 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELkbd.sys -- (ELkbd)
DRV - [2005/12/12 07:52:34 | 000,006,400 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELmou.sys -- (ELmou)
DRV - [2005/12/12 07:52:32 | 000,007,808 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ELacpi.sys -- (ELacpi)
DRV - [2005/11/20 22:48:21 | 000,016,512 | ---- | M] (Adaptec) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (Aspi32)
DRV - [2005/09/12 01:30:00 | 000,089,264 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\DRVMCDB.SYS -- (DRVMCDB)
DRV - [2005/09/08 03:20:00 | 000,094,332 | ---- | M] (Sonic Solutions) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2005/09/08 03:20:00 | 000,087,036 | ---- | M] (Sonic Solutions) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2005/09/08 03:20:00 | 000,086,524 | ---- | M] (Sonic Solutions) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2005/09/08 03:20:00 | 000,025,628 | ---- | M] (Sonic Solutions) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2005/09/08 03:20:00 | 000,014,684 | ---- | M] (Sonic Solutions) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2005/09/08 03:20:00 | 000,006,364 | ---- | M] (Sonic Solutions) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2005/09/08 03:20:00 | 000,002,496 | ---- | M] (Sonic Solutions) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\DLA\DLADResN.SYS -- (DLADResN)
DRV - [2005/08/25 10:16:52 | 000,005,628 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2005/08/25 10:16:16 | 000,022,684 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLARTL_N.SYS -- (DLARTL_N)
DRV - [2005/08/12 03:20:00 | 000,040,544 | ---- | M] (Sonic Solutions) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS -- (DRVNDDM)
DRV - [2005/06/17 03:33:40 | 000,872,064 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\iastor.sys -- (iastor)
DRV - [2005/06/06 12:40:48 | 000,180,736 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) High Definition Audio Driver (WDM)
DRV - [2005/05/25 13:34:00 | 000,158,464 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CTUSFSYN.SYS -- (CTUSFSYN)
DRV - [2005/05/09 20:08:40 | 000,033,792 | ---- | M] (Team H2O) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cledx.sys -- (CLEDX)
DRV - [2005/03/31 17:04:52 | 000,180,736 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel(R)
DRV - [2005/03/25 07:11:00 | 001,350,272 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sigfilt.sys -- (sigfilt)
DRV - [2005/01/10 15:15:00 | 000,138,752 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CTSFM2K.SYS -- (ctsfm2k)
DRV - [2005/01/10 15:15:00 | 000,106,496 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CTOSS2K.SYS -- (ossrv)
DRV - [2004/03/08 12:55:50 | 000,013,567 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS -- (cdrbsdrv)
DRV - [2003/12/27 20:42:12 | 000,137,216 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\d344bus.sys -- (d344bus)
DRV - [2003/12/27 02:38:10 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\d344prt.sys -- (d344prt)
DRV - [2002/10/15 22:41:06 | 000,102,220 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sonypvs1.sys -- (sonypvs1)
DRV - [2001/08/17 12:07:44 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2001/08/17 12:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001/08/17 12:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001/08/17 12:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001/08/17 12:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2001/08/17 11:52:22 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2001/08/17 11:52:20 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2001/08/17 11:52:20 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2001/08/17 11:52:18 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2001/08/17 11:52:16 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2001/08/17 11:52:12 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2001/08/17 11:52:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2001/08/17 11:51:58 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2001/08/17 11:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2001/08/17 11:51:54 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2001/07/13 13:56:14 | 000,014,976 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\SBKUPNT.SYS -- (SBKUPNT)
DRV - [2001/06/28 03:27:18 | 000,013,780 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [1999/01/10 12:00:00 | 000,003,584 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\dlportio.sys -- (DLPortIO)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hrvg.tk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex}&startPage={startPage}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Bing"
FF - prefs.js..browser.search.defaulturl: "http://www.bing.com/search?FORM=IEFM1&q="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://go.microsoft.com/fwlink/?LinkId=69157"
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5.0.429
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:1.1.9
FF - prefs.js..extensions.enabledItems: {06CC82D4-29FB-4082-81AA-A445F8A13F0A}:0.8
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:1.0.0.07076007
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..keyword.URL: "http://www.bing.com/search?FORM=IEFM1&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009/12/21 10:53:58 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/02 13:31:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/05/20 20:03:08 | 000,000,000 | ---D | M]

[2008/08/31 16:47:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Roobert\Application Data\Mozilla\Extensions
[2010/06/04 20:42:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\extensions
[2010/02/23 21:28:27 | 000,000,000 | ---D | M] (Full Screen) -- C:\Documents and Settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\extensions\{06CC82D4-29FB-4082-81AA-A445F8A13F0A}
[2009/07/09 01:20:30 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/03/27 19:45:56 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Documents and Settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2008/02/25 16:13:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\extensions\moveplayer@movenetworks.com
[2009/11/06 18:40:24 | 000,002,163 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\searchplugins\bing.xml
[2007/10/09 15:22:10 | 000,001,406 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\searchplugins\siteadvisor.gif
[2007/10/09 15:22:10 | 000,000,276 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\searchplugins\siteadvisor.src
[2007/02/14 17:37:49 | 000,002,386 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\searchplugins\siteadvisor.xml
[2010/06/04 20:42:07 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/05/20 20:03:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/05/20 20:02:47 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2006/08/09 14:03:42 | 000,319,488 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll

O1 HOSTS File: ([2010/04/23 17:45:15 | 000,000,029 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\DLA\DLASHX_W.DLL (Sonic Solutions)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [DAEMON Tools-1033] C:\Program Files\D-Tools\daemon.exe (DAEMON'S HOME)
O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [DLA] C:\WINDOWS\system32\DLA\DLACTRLW.EXE (Sonic Solutions)
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
O4 - HKLM..\Run: [dvd43] C:\Program Files\dvd43\DVD43_Tray.exe ()
O4 - HKLM..\Run: [H2O] C:\Program Files\Syncrosoft\POS\H2O\cledx.exe (Team H2O)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [MBMon] C:\WINDOWS\System32\CTMBHA.DLL ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [UpdReg] C:\WINDOWS\Updreg.EXE (Creative Technology Ltd.)
O4 - HKCU..\Run: [SetDefaultMIDI] C:\WINDOWS\MIDIDEF.EXE (Creative Technology Ltd)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Device Detector 3.lnk = C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe (OLYMPUS IMAGING CORP.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Picture Package Menu.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe (Sony Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Picture Package VCD Maker.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe (Sony Corporation.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: _NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: musicmatch.com ([online] https in Trusted sites)
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} http://www.musicnotes.com/download/mnviewer.cab (Musicnotes Viewer)
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://www1.snapfish.com/SnapfishActivia.cab (Snapfish Activia)
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} http://www.sibelius.com/download/software/win/ActiveXPlugin.cab (ScorchPlugin Class)
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} http://support.dell.com/systemprofiler/DellSystemLite.CAB (DellSystemLite.Scanner)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://qa.mplay.oberon-seattle.com/diamond/GameShell/GameHost/0.9/OberonGameHost.cab (Oberon Flash Game Host)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop WallPaper: C:\Documents and Settings\Roobert\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Roobert\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/04/17 00:23:25 | 000,000,088 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2007/01/24 15:30:48 | 000,000,000 | ---D | M] - F:\autorun -- [ FAT32 ]
O32 - AutoRun File - [2005/11/17 18:15:24 | 000,000,069 | -H-- | M] () - F:\autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{2c3d42b1-2eeb-11df-8532-0013721e120f}\Shell\AutoRun\command - "" = I:\Setup_FlipShare.exe -- File not found
O33 - MountPoints2\{2c3d42b1-2eeb-11df-8532-0013721e120f}\Shell\Setup FlipShare\command - "" = I:\Setup_FlipShare.exe -- File not found
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe -- File not found
O33 - MountPoints2\{820a31fc-238a-11dc-af7d-0013721e120f}\Shell\AutoRun\command - "" = F:\wd_windows_tools\setup.exe -- File not found
O33 - MountPoints2\{9df4cb30-fab2-11db-af16-0013721e120f}\Shell - "" = AutoRun
O33 - MountPoints2\{9df4cb30-fab2-11db-af16-0013721e120f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9df4cb30-fab2-11db-af16-0013721e120f}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -- File not found
O33 - MountPoints2\F\Shell\AutoRun\command - "" = wd_windows_tools\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2005/08/16 02:22:48 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe - (Adobe Systems, Inc.)
MsConfig - StartUpReg: Creative Detector - hkey= - key= - C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe (Creative Technology Ltd)
MsConfig - StartUpReg: DAEMON Tools-1033 - hkey= - key= - C:\Program Files\D-Tools\daemon.exe (DAEMON'S HOME)
MsConfig - StartUpReg: DellSupport - hkey= - key= - C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
MsConfig - StartUpReg: DellSupportCenter - hkey= - key= - C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
MsConfig - StartUpReg: dscactivate - hkey= - key= - C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
MsConfig - StartUpReg: H2O - hkey= - key= - C:\Program Files\Syncrosoft\POS\H2O\cledx.exe (Team H2O)
MsConfig - StartUpReg: MSMSGS - hkey= - key= - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
MsConfig - StartUpReg: QuickTime Task - hkey= - key= - C:\Program Files\K-Lite Codec Pack\QuickTime\QTTask.exe (Apple Inc.)
MsConfig - StartUpReg: VoiceCenter - hkey= - key= - C:\Program Files\Creative\VoiceCenter\AndreaVC.exe File not found
MsConfig - StartUpReg: Zune Launcher - hkey= - key= - C:\Program Files\Zune\ZuneLauncher.exe (Microsoft Corporation)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: Lavasoft Ad-Aware Service - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Lavasoft Ad-Aware Service - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {03F998B2-0E00-11D3-A498-00104B6EB52E} - Viewpoint Media Player
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} - Viewpoint Media Player
ActiveX: {1BC46932-21B2-4130-86E0-B4EB4F7A7A7B} - Microsoft .NET Framework 1.0 Hotfix (KB887998)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {233C1507-6A77-46A4-9443-F871F945D258} - Adobe Shockwave Director 10.1.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Adobe Shockwave Director 10.1.4
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {407408d4-94ed-4d86-ab69-a7f649d112ee} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection QuickLaunchShortcut 640 %systemroot%\inf\mcdftreg.inf
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
ActiveX: {8b15971b-5355-4c82-8c07-7e181ea07608} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {94de52c8-2d59-4f1b-883e-79663d2d9a8c} - Fax Provider
ActiveX: {B508B3F1-A24A-32C0-B310-85786919EF28} - .NET Framework
ActiveX: {BDE0FA43-6952-4BA8-8C58-09AF690F88E1} - Microsoft .NET Framework 1.0 Hotfix (KB930494)
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {DAA94A2A-2A8D-4D3B-9DB8-56FBECED082D} - Microsoft .NET Framework 1.1 Security Update (KB953297)
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E8EA5BD6-D931-4001-ABF6-81BAA500360A} - Microsoft .NET Framework 1.0 Hotfix (KB953295)
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {EA29D410-CE41-4953-A862-2DE706A1DAD7} - Microsoft .NET Framework 1.0 Service Pack 3
ActiveX: {EF289A85-8E57-408d-BE47-73B55609861A} - RootsUpdate
ActiveX: {F8911E87-2ED8-4933-1803-38BBA42BF333} - Browser Customizations
ActiveX: {FDC11A6F-17D1-48f9-9EA3-9051954BAA24} - .NET Framework
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
ActiveX: KB910393 - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\EasyCDBlock.inf,PerUserInstall
ActiveX: Microsoft Base Smart Card Crypto Provider Package -

Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.siren - C:\WINDOWS\System32\sirenacm.dll (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.3iv2 - C:\WINDOWS\System32\3ivxVfWCodec.dll (3ivx.com)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\divx.dll (DivXNetworks, Inc.)
Drivers32: VIDC.HFYU - C:\WINDOWS\System32\huffyuv.dll (Disappearing Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.MP42 - C:\WINDOWS\System32\mpg4c32.dll (Microsoft Corporation)
Drivers32: vidc.MP43 - C:\WINDOWS\System32\mpg4c32.dll (Microsoft Corporation)
Drivers32: vidc.MPG4 - C:\WINDOWS\System32\mpg4c32.dll (Microsoft Corporation)
Drivers32: VIDC.VP31 - C:\WINDOWS\System32\vp31vfw.dll (On2.com)
Drivers32: VIDC.VP60 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: VIDC.VP61 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: VIDC.VP62 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: VIDC.wmv3 - C:\WINDOWS\System32\WMV9VCM.dll (Microsoft Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\WINDOWS\System32\xvidvfw.dll ()

CREATERESTOREPOINT
Error starting restore point: The function was called in safe mode.
Error closing restore point: The sequence number is invalid.

========== Files/Folders - Created Within 30 Days ==========

[2010/06/06 14:20:20 | 000,571,904 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Roobert\Desktop\OTL.exe
[2010/06/06 14:13:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\JavaRa
[2010/06/05 12:46:46 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Roobert\Recent
[2010/05/30 09:03:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\The Hold Steady
[2010/05/30 09:01:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\Fair
[2010/05/30 09:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\Rogue Wave
[2010/05/30 08:56:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\Mellow
[2010/05/30 08:56:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\M83 - Live in Prague 09.17.05
[2010/05/30 08:55:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\The Peter Hand Big Band & Houston Person -[2009]- The Wizard of Jazz - A Tribute To Harold Arlen
[2010/05/30 08:55:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\Susan Boyle
[2010/05/30 08:55:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\Rogue Wave Amoeba
[2010/05/30 08:55:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\Muse
[2010/05/30 08:55:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Roobert\Desktop\Mew - No More Stories EP
[2010/05/29 14:31:20 | 000,000,000 | ---D | C] -- C:\SWISNIFE
[2010/05/20 20:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010/05/20 20:03:08 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010/05/20 20:03:08 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010/05/20 20:03:08 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010/05/20 20:03:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010/05/20 20:03:07 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010/05/11 01:30:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2010/05/11 01:08:40 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll
[2009/05/31 15:25:29 | 000,137,216 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d344bus.sys
[2009/05/31 15:25:29 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d344prt.sys
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/06/06 14:20:21 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Roobert\Desktop\OTL.exe
[2010/06/06 14:17:35 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/06/06 14:13:32 | 000,071,798 | ---- | M] () -- C:\Documents and Settings\Roobert\Desktop\JavaRa.zip
[2010/06/06 12:34:56 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/06/06 12:06:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/06/05 14:31:14 | 014,155,776 | -H-- | M] () -- C:\Documents and Settings\Roobert\NTUSER.DAT
[2010/06/05 14:31:14 | 000,000,278 | -HS- | M] () -- C:\Documents and Settings\Roobert\ntuser.ini
[2010/06/05 13:14:31 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/06/05 12:49:05 | 000,063,084 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/06/05 10:54:00 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2010/06/05 06:53:44 | 060,715,765 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/06/05 05:55:15 | 000,206,848 | ---- | M] () -- C:\Documents and Settings\Roobert\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/01 23:28:23 | 000,000,779 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/06/01 23:28:23 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010/05/29 14:31:21 | 000,000,533 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CompuApps SwissKnife V3.lnk
[2010/05/29 14:31:20 | 000,000,543 | ---- | M] () -- C:\WINDOWS\SWISV3.INI
[2010/05/29 14:31:20 | 000,000,287 | ---- | M] () -- C:\WINDOWS\SKNIFE.INI
[2010/05/27 03:07:42 | 002,035,052 | ---- | M] () -- C:\Documents and Settings\Roobert\Desktop\Image3302.TIF
[2010/05/27 03:07:05 | 002,035,052 | ---- | M] () -- C:\Documents and Settings\Roobert\Desktop\Image3301.TIF
[2010/05/27 03:01:21 | 032,535,788 | ---- | M] () -- C:\Documents and Settings\Roobert\Desktop\Image503.TIF
[2010/05/27 00:03:33 | 010,848,998 | ---- | M] () -- C:\Documents and Settings\Roobert\Desktop\Test01.TIF
[2010/05/26 23:32:33 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/05/20 20:02:47 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010/05/20 20:02:47 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010/05/20 20:02:47 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010/05/20 20:02:47 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010/05/20 20:02:46 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010/05/20 00:27:32 | 000,001,015 | R--- | M] () -- C:\logFile.xsl
[2010/05/15 17:50:57 | 000,115,866 | ---- | M] () -- C:\Documents and Settings\Roobert\Desktop\casenbake-card.jpg
[2010/05/15 17:49:06 | 000,153,830 | ---- | M] () -- C:\Documents and Settings\Roobert\Desktop\casenbake.jpg
[2010/05/11 01:30:25 | 000,000,418 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol
[2010/05/11 01:29:59 | 000,001,572 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Extender Resource Monitor.lnk
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/06/06 14:13:32 | 000,071,798 | ---- | C] () -- C:\Documents and Settings\Roobert\Desktop\JavaRa.zip
[2010/05/29 14:31:21 | 000,014,976 | ---- | C] () -- C:\WINDOWS\System32\drivers\SBKUPNT.SYS
[2010/05/29 14:31:21 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\DEVLOAD.EXE
[2010/05/29 14:31:21 | 000,000,533 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CompuApps SwissKnife V3.lnk
[2010/05/29 14:31:20 | 000,000,543 | ---- | C] () -- C:\WINDOWS\SWISV3.INI
[2010/05/29 14:31:20 | 000,000,344 | ---- | C] () -- C:\WINDOWS\DYNASN.INF
[2010/05/29 14:31:19 | 000,000,287 | ---- | C] () -- C:\WINDOWS\SKNIFE.INI
[2010/05/29 14:31:07 | 000,002,799 | ---- | C] () -- C:\WINDOWS\SKLANG.INI
[2010/05/27 03:07:42 | 002,035,052 | ---- | C] () -- C:\Documents and Settings\Roobert\Desktop\Image3302.TIF
[2010/05/27 03:07:05 | 002,035,052 | ---- | C] () -- C:\Documents and Settings\Roobert\Desktop\Image3301.TIF
[2010/05/27 03:01:21 | 032,535,788 | ---- | C] () -- C:\Documents and Settings\Roobert\Desktop\Image503.TIF
[2010/05/27 00:03:33 | 010,848,998 | ---- | C] () -- C:\Documents and Settings\Roobert\Desktop\Test01.TIF
[2010/05/20 00:27:32 | 000,001,015 | R--- | C] () -- C:\logFile.xsl
[2010/05/15 17:50:54 | 000,115,866 | ---- | C] () -- C:\Documents and Settings\Roobert\Desktop\casenbake-card.jpg
[2010/05/15 17:49:01 | 000,153,830 | ---- | C] () -- C:\Documents and Settings\Roobert\Desktop\casenbake.jpg
[2010/05/11 01:30:25 | 000,000,418 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol
[2010/05/11 01:29:59 | 000,001,572 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Extender Resource Monitor.lnk
[2010/04/17 00:20:06 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2009/11/19 22:45:42 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\OdiOlDVR.dll
[2009/11/19 22:45:41 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\OdiAPI.dll
[2009/07/16 00:34:04 | 000,322,048 | ---- | C] () -- C:\WINDOWS\System32\Easylase.dll
[2009/07/16 00:34:04 | 000,301,056 | ---- | C] () -- C:\WINDOWS\System32\usbdmxfs.dll
[2009/07/16 00:34:04 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\dashard2006.dll
[2009/07/16 00:34:04 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\usb_dll.dll
[2009/07/16 00:34:04 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\dashard.dll
[2009/07/16 00:34:04 | 000,084,992 | ---- | C] () -- C:\WINDOWS\System32\DMX510Vb.dll
[2009/07/16 00:34:04 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\dashardvb.dll
[2009/07/16 00:34:04 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\EspionDll.dll
[2009/07/16 00:34:04 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\dmx60.dll
[2009/07/16 00:34:04 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\dmx120.dll
[2009/07/16 00:34:04 | 000,042,496 | ---- | C] () -- C:\WINDOWS\System32\K8062D.dll
[2009/07/16 00:34:04 | 000,037,888 | ---- | C] () -- C:\WINDOWS\System32\LPT_dmx.dll
[2009/07/16 00:34:04 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\MPUSBAPI.DLL
[2009/07/16 00:34:04 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\inpout32.dll
[2009/07/16 00:34:04 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\usbdmxsi.dll
[2009/07/16 00:34:04 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FASTTime32.dll
[2009/07/16 00:34:04 | 000,003,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\dlportio.sys
[2009/01/04 14:14:30 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008/04/07 21:22:16 | 000,383,238 | ---- | C] () -- C:\WINDOWS\System32\libmp3lame-0.dll
[2008/01/10 13:11:40 | 000,021,791 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.ini
[2008/01/10 13:11:39 | 000,001,037 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.ini
[2008/01/10 13:10:55 | 000,038,576 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
[2008/01/10 13:10:55 | 000,010,225 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
[2008/01/10 13:10:54 | 000,011,435 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
[2007/11/01 16:07:25 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\MFSBaseLib2889.dll
[2007/11/01 16:07:25 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\MFSIFLib2889.dll
[2007/08/15 20:14:47 | 000,000,035 | ---- | C] () -- C:\WINDOWS\A5W.INI
[2007/07/03 18:40:32 | 000,000,036 | ---- | C] () -- C:\WINDOWS\CTWave32.ini
[2007/07/03 18:39:14 | 000,000,072 | ---- | C] () -- C:\WINDOWS\sbwin.ini
[2007/06/29 19:25:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2007/04/13 21:13:34 | 000,000,107 | ---- | C] () -- C:\WINDOWS\wpd99.drv
[2007/04/13 21:13:14 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\pdfmona.dll
[2007/04/13 21:13:14 | 000,051,716 | ---- | C] () -- C:\WINDOWS\System32\pdf995mon.dll
[2007/01/10 18:45:30 | 000,000,605 | ---- | C] () -- C:\WINDOWS\PCalcpro.ini
[2007/01/10 18:45:30 | 000,000,543 | ---- | C] () -- C:\WINDOWS\asc_sys.ini
[2007/01/10 18:45:29 | 000,000,182 | ---- | C] () -- C:\WINDOWS\medlrng.ini
[2007/01/10 18:45:15 | 000,018,432 | ---- | C] () -- C:\WINDOWS\System32\ODBCSTF.DLL
[2007/01/10 18:40:30 | 000,041,984 | ---- | C] () -- C:\WINDOWS\System32\iprocnt.dll
[2007/01/10 18:40:29 | 000,050,688 | ---- | C] () -- C:\WINDOWS\System32\iproc.dll
[2007/01/10 18:38:14 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\twdll.dll
[2007/01/10 18:38:14 | 000,000,134 | ---- | C] () -- C:\WINDOWS\awshkwv.ini
[2006/08/10 13:57:01 | 000,079,904 | ---- | C] () -- C:\WINDOWS\CDPlayer.ini
[2006/07/18 19:11:20 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/07/17 20:16:31 | 000,000,056 | RHS- | C] () -- C:\WINDOWS\System32\0A3FCADE72.sys
[2006/07/13 20:29:31 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006/07/12 21:36:44 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\libfaac.dll
[2006/07/12 21:36:43 | 000,421,888 | ---- | C] () -- C:\WINDOWS\System32\OpenQuicktimeLib.dll
[2006/07/12 21:36:42 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2006/07/12 02:16:25 | 000,004,184 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2006/07/12 02:16:25 | 000,000,088 | RHS- | C] () -- C:\WINDOWS\System32\72DECA3F0A.sys
[2006/07/11 23:05:36 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2006/07/03 22:37:16 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/07/03 22:30:17 | 000,000,126 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/07/03 22:20:12 | 000,005,811 | ---- | C] () -- C:\WINDOWS\System32\CTSBMB.INI
[2006/07/03 22:01:00 | 000,004,969 | ---- | C] () -- C:\WINDOWS\System32\Sigfilt.ini
[2006/07/03 22:01:00 | 000,000,029 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2006/07/03 22:00:54 | 001,345,520 | ---- | C] () -- C:\WINDOWS\System32\CTMBHA.DLL
[2006/07/03 22:00:40 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006/07/03 21:58:58 | 000,000,387 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/06/01 17:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/06/01 17:22:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006/06/01 17:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/06/01 17:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/06/01 17:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006/06/01 17:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/02/27 06:48:36 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2006/02/27 06:30:32 | 000,217,088 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2005/11/09 23:56:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/08/16 02:37:24 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005/08/05 12:01:54 | 000,235,008 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003/12/27 20:43:24 | 000,068,608 | ---- | C] () -- C:\WINDOWS\daemon.dll
[2002/10/15 15:54:04 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

========== Custom Scans ==========

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[6 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\*.exe /lockedfiles >
[6 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2009/01/04 14:14:31 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2005/08/16 02:27:08 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2005/08/16 02:27:08 | 000,659,456 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2005/08/16 02:27:08 | 000,876,544 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\*.sys >
[2008/07/29 18:45:55 | 000,000,056 | RHS- | M] () -- C:\WINDOWS\system32\0A3FCADE72.sys
[2009/01/24 16:47:08 | 000,000,088 | RHS- | M] () -- C:\WINDOWS\system32\72DECA3F0A.sys
[2004/08/10 03:00:00 | 000,009,029 | ---- | M] () -- C:\WINDOWS\system32\ansi.sys
[2004/08/10 03:00:00 | 000,027,097 | ---- | M] () -- C:\WINDOWS\system32\country.sys
[2004/06/09 08:29:56 | 000,006,977 | ---- | M] (Gteko Ltd.) -- C:\WINDOWS\system32\DDMI2.sys
[2005/03/13 14:54:00 | 000,006,656 | ---- | M] (GTek Technologies Ltd.) -- C:\WINDOWS\system32\DLPT2.sys
[2005/02/08 10:37:52 | 000,007,626 | ---- | M] (Gteko Ltd.) -- C:\WINDOWS\system32\GPCIEnum.sys
[2004/06/15 14:55:56 | 000,007,882 | ---- | M] (Gteko Ltd.) -- C:\WINDOWS\system32\GTKCMOS.sys
[2004/08/10 03:00:00 | 000,004,768 | ---- | M] () -- C:\WINDOWS\system32\himem.sys
[2004/08/10 03:00:00 | 000,042,809 | ---- | M] () -- C:\WINDOWS\system32\key01.sys
[2004/08/10 03:00:00 | 000,042,537 | ---- | M] () -- C:\WINDOWS\system32\keyboard.sys
[2009/01/24 16:47:09 | 000,004,184 | -HS- | M] () -- C:\WINDOWS\system32\KGyGaAvL.sys
[2008/04/13 11:39:50 | 000,005,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSPCLOCK.sys
[2004/08/10 03:00:00 | 000,027,866 | ---- | M] () -- C:\WINDOWS\system32\ntdos.sys
[2004/08/10 03:00:00 | 000,029,146 | ---- | M] () -- C:\WINDOWS\system32\ntdos404.sys
[2004/08/10 03:00:00 | 000,029,370 | ---- | M] () -- C:\WINDOWS\system32\ntdos411.sys
[2004/08/10 03:00:00 | 000,029,274 | ---- | M] () -- C:\WINDOWS\system32\ntdos412.sys
[2004/08/10 03:00:00 | 000,029,146 | ---- | M] () -- C:\WINDOWS\system32\ntdos804.sys
[2004/08/10 03:00:00 | 000,033,840 | ---- | M] () -- C:\WINDOWS\system32\ntio.sys
[2004/08/10 03:00:00 | 000,034,560 | ---- | M] () -- C:\WINDOWS\system32\ntio404.sys
[2004/08/10 03:00:00 | 000,035,648 | ---- | M] () -- C:\WINDOWS\system32\ntio411.sys
[2004/08/10 03:00:00 | 000,035,424 | ---- | M] () -- C:\WINDOWS\system32\ntio412.sys
[2004/08/10 03:00:00 | 000,034,560 | ---- | M] () -- C:\WINDOWS\system32\ntio804.sys
[2008/04/13 11:44:59 | 000,017,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\watchdog.sys
[2009/08/14 06:21:25 | 001,850,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32k.sys
[6 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.dll >
[2008/04/13 17:11:48 | 000,004,255 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv01nt5.dll
[2008/04/13 17:11:48 | 000,003,967 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv02nt5.dll
[2008/04/13 17:11:48 | 000,003,615 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv05nt5.dll
[2008/04/13 17:11:48 | 000,003,647 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv07nt5.dll
[2008/04/13 17:11:48 | 000,003,135 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv08nt5.dll
[2008/04/13 17:11:48 | 000,003,711 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv09nt5.dll
[2008/04/13 17:11:48 | 000,003,775 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\adv11nt5.dll
[2008/04/13 17:11:50 | 000,021,183 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv01nt5.dll
[2008/04/13 17:11:50 | 000,011,359 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv02nt5.dll
[2008/04/13 17:11:50 | 000,025,471 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv04nt5.dll
[2008/04/13 17:11:50 | 000,014,143 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv06nt5.dll
[2008/04/13 17:11:50 | 000,017,279 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\atv10nt5.dll
[2008/04/13 17:11:50 | 000,015,423 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
[2008/04/13 17:12:05 | 000,003,901 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\siint5.dll
[2001/07/03 20:39:00 | 000,003,654 | ---- | M] () -- C:\WINDOWS\system32\drivers\Sonyhcp.dll
[2008/04/13 17:12:08 | 000,011,325 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\system32\drivers\vchnt5.dll

< %systemroot%\system32\drivers\*.ini >

< %systemroot%\system32\drivers\*.exe >

Last edited by roobert on 6th June 2010, 9:52 pm; edited 1 time in total

Re: IE/Firefox Crashes Upon Startup6th June 2010, 9:49 pm

< %SYSTEMDRIVE%\*.* >
[2010/06/06 12:06:40 | 000,135,753 | ---- | M] () -- C:\aaw7boot.log
[2010/04/17 00:23:25 | 000,000,088 | ---- | M] () -- C:\autoexec.bat
[2008/09/11 23:46:23 | 000,000,209 | -HS- | M] () -- C:\boot.ini
[2005/08/16 02:43:04 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2006/07/12 21:45:35 | 000,002,479 | ---- | M] () -- C:\debug.log
[2006/07/03 22:03:22 | 000,006,562 | RH-- | M] () -- C:\dell.sdr
[2006/07/12 23:44:42 | 000,004,128 | ---- | M] () -- C:\INFCACHE.1
[2005/08/16 02:43:04 | 000,000,000 | -H-- | M] () -- C:\IO.SYS
[2006/07/03 22:24:20 | 000,000,836 | -H-- | M] () -- C:\IPH.PH
[2010/06/06 14:14:32 | 000,030,962 | ---- | M] () -- C:\JavaRa.log
[2010/05/20 00:27:32 | 000,001,015 | R--- | M] () -- C:\logFile.xsl
[2009/01/24 16:53:23 | 000,020,618 | ---- | M] () -- C:\lopR.txt
[2005/08/16 02:43:04 | 000,000,000 | -H-- | M] () -- C:\MSDOS.SYS
[2007/04/30 11:37:25 | 000,000,940 | ---- | M] () -- C:\net_save.dna
[2004/08/10 03:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008/06/13 21:18:30 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/06/06 12:06:42 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys
[2009/06/01 16:01:27 | 000,000,268 | -H-- | M] () -- C:\sqmdata00.sqm
[2009/06/01 16:01:27 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2006/07/03 22:24:27 | 000,000,087 | ---- | M] () -- C:\SystemInfo.ini
[2007/10/21 01:18:44 | 058,475,355 | ---- | M] () -- C:\tijuana.psd

< %PROGRAMFILES%\*. >
[2009/07/30 00:39:27 | 000,000,000 | ---D | M] -- C:\Program Files\Abuelites
[2010/01/13 01:09:15 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2007/06/08 04:55:36 | 000,000,000 | ---D | M] -- C:\Program Files\AoA Audio Extractor
[2008/09/02 17:53:03 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2006/08/09 13:34:11 | 000,000,000 | ---D | M] -- C:\Program Files\AutoGK
[2009/01/21 23:43:02 | 000,000,000 | ---D | M] -- C:\Program Files\AVG
[2006/08/09 13:34:04 | 000,000,000 | ---D | M] -- C:\Program Files\AviSynth 2.5
[2010/05/26 23:22:04 | 000,000,000 | ---D | M] -- C:\Program Files\Azureus
[2006/08/09 05:35:05 | 000,000,000 | ---D | M] -- C:\Program Files\Badder Adder
[2009/03/19 20:33:22 | 000,000,000 | ---D | M] -- C:\Program Files\Bonjour
[2007/10/19 15:10:20 | 000,000,000 | ---D | M] -- C:\Program Files\Bulk Rename Utility
[2009/05/31 15:31:55 | 000,000,000 | ---D | M] -- C:\Program Files\Canon
[2010/06/05 12:47:11 | 000,000,000 | ---D | M] -- C:\Program Files\CCleaner
[2010/05/20 20:04:00 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2005/08/16 02:38:36 | 000,000,000 | ---D | M] -- C:\Program Files\ComPlus Applications
[2006/07/03 22:27:38 | 000,000,000 | ---D | M] -- C:\Program Files\Corel
[2006/07/03 22:27:53 | 000,000,000 | ---D | M] -- C:\Program Files\Corel Corporation
[2007/12/30 20:54:09 | 000,000,000 | ---D | M] -- C:\Program Files\Crayon Room
[2008/09/11 23:49:28 | 000,000,000 | ---D | M] -- C:\Program Files\Creative
[2006/07/15 01:09:43 | 000,000,000 | ---D | M] -- C:\Program Files\CyberLink
[2009/05/31 15:25:28 | 000,000,000 | ---D | M] -- C:\Program Files\D-Tools
[2007/12/20 02:30:42 | 000,000,000 | ---D | M] -- C:\Program Files\DC++
[2009/01/04 13:11:58 | 000,000,000 | ---D | M] -- C:\Program Files\Dell
[2008/01/31 12:18:38 | 000,000,000 | ---D | M] -- C:\Program Files\Dell Support Center
[2007/04/09 10:58:27 | 000,000,000 | ---D | M] -- C:\Program Files\DellSupport
[2009/07/16 00:46:32 | 000,000,000 | ---D | M] -- C:\Program Files\DIFX
[2008/10/19 12:00:54 | 000,000,000 | ---D | M] -- C:\Program Files\DigiDNA
[2006/08/09 01:06:38 | 000,000,000 | ---D | M] -- C:\Program Files\DSOT MySpace Adder
[2007/11/01 16:07:27 | 000,000,000 | ---D | M] -- C:\Program Files\DS_Dual3
[2007/04/27 20:32:55 | 000,000,000 | ---D | M] -- C:\Program Files\DVD Decrypter
[2007/02/11 13:35:35 | 000,000,000 | ---D | M] -- C:\Program Files\DVD Flick
[2009/02/16 14:38:48 | 000,000,000 | ---D | M] -- C:\Program Files\DVD Shrink
[2009/04/04 12:45:51 | 000,000,000 | ---D | M] -- C:\Program Files\dvd43
[2009/04/04 20:52:20 | 000,000,000 | ---D | M] -- C:\Program Files\DVDFab 5
[2010/03/29 23:17:27 | 000,000,000 | ---D | M] -- C:\Program Files\DVDFab 6
[2006/08/09 04:12:06 | 000,000,000 | ---D | M] -- C:\Program Files\DVDFab Decrypter 3
[2007/05/25 19:31:26 | 000,000,000 | ---D | M] -- C:\Program Files\Elaborate Bytes
[2005/08/16 18:51:50 | 000,000,000 | ---D | M] -- C:\Program Files\EnglishOtto
[2006/08/10 01:39:40 | 000,000,000 | ---D | M] -- C:\Program Files\File Renamer
[2006/07/15 10:48:52 | 000,000,000 | ---D | M] -- C:\Program Files\Firaxis Games
[2009/06/21 08:35:20 | 000,000,000 | ---D | M] -- C:\Program Files\FLAC
[2008/03/19 16:33:23 | 000,000,000 | ---D | M] -- C:\Program Files\Flash Slideshow Maker Professional
[2010/03/13 20:48:15 | 000,000,000 | ---D | M] -- C:\Program Files\Flip Video
[2008/04/07 21:34:26 | 000,000,000 | ---D | M] -- C:\Program Files\Free FLV Converter
[2009/02/28 23:59:42 | 000,000,000 | ---D | M] -- C:\Program Files\Free iPod Video Converter
[2009/07/30 02:49:13 | 000,000,000 | ---D | M] -- C:\Program Files\FreeStyler
[2006/08/09 13:33:46 | 000,000,000 | ---D | M] -- C:\Program Files\Gabest
[2005/08/16 18:54:44 | 000,000,000 | ---D | M] -- C:\Program Files\GemMaster
[2009/01/04 14:08:32 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2006/07/18 23:27:35 | 000,000,000 | ---D | M] -- C:\Program Files\HP
[2007/12/19 22:18:41 | 000,000,000 | ---D | M] -- C:\Program Files\ID3-TagIT 3
[2006/08/09 06:12:56 | 000,000,000 | ---D | M] -- C:\Program Files\Illustrate
[2010/04/17 00:22:20 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2006/07/03 22:19:40 | 000,000,000 | ---D | M] -- C:\Program Files\Intel
[2006/07/03 22:19:35 | 000,000,000 | ---D | M] -- C:\Program Files\InterActual
[2010/03/31 11:34:45 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2009/09/09 23:46:35 | 000,000,000 | ---D | M] -- C:\Program Files\iPhone Configuration Utility
[2009/09/09 23:43:22 | 000,000,000 | ---D | M] -- C:\Program Files\iPod
[2006/08/09 03:35:46 | 000,000,000 | ---D | M] -- C:\Program Files\iSofter
[2009/09/09 23:44:39 | 000,000,000 | ---D | M] -- C:\Program Files\iTunes
[2010/01/26 22:48:50 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2006/07/12 21:37:21 | 000,000,000 | ---D | M] -- C:\Program Files\K-Lite Codec Pack
[2009/02/10 00:17:08 | 000,000,000 | ---D | M] -- C:\Program Files\KDE
[2009/01/24 11:53:54 | 000,000,000 | ---D | M] -- C:\Program Files\Lavasoft
[2010/05/05 12:02:25 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/01/22 00:00:16 | 000,000,000 | ---D | M] -- C:\Program Files\McAfee
[2009/01/21 23:40:20 | 000,000,000 | ---D | M] -- C:\Program Files\McAfee.com
[2008/08/25 01:46:29 | 000,000,000 | ---D | M] -- C:\Program Files\Messenger
[2009/11/05 18:05:11 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft
[2006/07/18 19:10:17 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft ActiveSync
[2005/08/16 02:43:46 | 000,000,000 | ---D | M] -- C:\Program Files\microsoft frontpage
[2006/07/18 19:09:48 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2006/07/03 22:23:24 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Plus! Digital Media Edition
[2006/07/03 22:23:25 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Plus! Photo Story 2 LE
[2010/06/03 19:46:19 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
[2009/11/05 18:03:09 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2009/11/05 18:04:10 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Sync Framework
[2010/03/10 21:02:25 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2010/04/02 13:31:43 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2007/11/05 23:51:47 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2009/02/09 22:33:17 | 000,000,000 | ---D | M] -- C:\Program Files\MSECACHE
[2008/02/04 22:10:33 | 000,000,000 | ---D | M] -- C:\Program Files\MSN
[2005/08/16 02:37:30 | 000,000,000 | ---D | M] -- C:\Program Files\MSN Gaming Zone
[2006/08/09 20:42:28 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2007/08/15 08:18:40 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 6.0
[2006/07/14 23:25:06 | 000,000,000 | ---D | M] -- C:\Program Files\MusicBrainz Tagger
[2006/07/12 21:47:56 | 000,000,000 | ---D | M] -- C:\Program Files\MUSICMATCH
[2006/08/09 16:37:16 | 000,000,000 | ---D | M] -- C:\Program Files\MyPublisher
[2008/11/15 14:21:13 | 000,000,000 | ---D | M] -- C:\Program Files\Neoteris
[2006/07/13 19:44:18 | 000,000,000 | ---D | M] -- C:\Program Files\Nero
[2007/01/19 20:58:20 | 000,000,000 | ---D | M] -- C:\Program Files\Netflix
[2008/06/13 21:21:29 | 000,000,000 | ---D | M] -- C:\Program Files\NetMeeting
[2006/08/10 08:29:55 | 000,000,000 | ---D | M] -- C:\Program Files\Oberon Media
[2009/11/19 22:45:41 | 000,000,000 | ---D | M] -- C:\Program Files\Olympus
[2005/08/16 02:38:24 | 000,000,000 | ---D | M] -- C:\Program Files\Online Services
[2010/05/11 19:37:39 | 000,000,000 | ---D | M] -- C:\Program Files\Outlook Express
[2007/01/24 21:14:40 | 000,000,000 | ---D | M] -- C:\Program Files\Padus
[2010/05/30 03:06:37 | 000,000,000 | ---D | M] -- C:\Program Files\PeerGuardian2
[2007/07/03 02:03:45 | 000,000,000 | ---D | M] -- C:\Program Files\Photo Story 3 for Windows
[2009/05/31 17:27:46 | 000,000,000 | ---D | M] -- C:\Program Files\PhotomatixPro3
[2008/05/12 12:35:18 | 000,000,000 | ---D | M] -- C:\Program Files\Picasa2
[2010/04/17 00:22:21 | 000,000,000 | ---D | M] -- C:\Program Files\PIXELA
[2009/01/04 15:15:30 | 000,000,000 | ---D | M] -- C:\Program Files\PowerISO
[2006/08/12 21:08:12 | 000,000,000 | ---D | M] -- C:\Program Files\Propellerhead
[2006/07/12 21:33:54 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime
[2009/10/25 07:21:33 | 000,000,000 | ---D | M] -- C:\Program Files\Recycle
[2007/11/05 23:47:59 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2005/08/16 18:58:50 | 000,000,000 | ---D | M] -- C:\Program Files\RGB
[2006/07/03 22:30:29 | 000,000,000 | ---D | M] -- C:\Program Files\Roxio
[2006/08/10 00:13:34 | 000,000,000 | ---D | M] -- C:\Program Files\SereneScreen
[2006/07/03 22:17:09 | 000,000,000 | ---D | M] -- C:\Program Files\Sigmatel
[2006/08/09 22:51:37 | 000,000,000 | ---D | M] -- C:\Program Files\SlySoft
[2006/08/09 15:34:09 | 000,000,000 | ---D | M] -- C:\Program Files\SmartFTP Client 2.0
[2006/07/26 22:59:56 | 000,000,000 | ---D | M] -- C:\Program Files\SmartFTP Client 2.0 Setup Files
[2006/07/03 22:31:20 | 000,000,000 | ---D | M] -- C:\Program Files\Sonic
[2008/03/17 22:59:21 | 000,000,000 | ---D | M] -- C:\Program Files\Sony
[2010/04/17 00:19:24 | 000,000,000 | ---D | M] -- C:\Program Files\Sony Corporation
[2008/03/17 22:58:05 | 000,000,000 | ---D | M] -- C:\Program Files\Sony Setup
[2008/02/17 00:41:16 | 000,000,000 | ---D | M] -- C:\Program Files\Steinberg
[2007/04/30 11:37:05 | 000,000,000 | ---D | M] -- C:\Program Files\support.com
[2008/02/17 00:36:16 | 000,000,000 | ---D | M] -- C:\Program Files\Syncrosoft
[2007/04/13 23:50:08 | 000,000,000 | ---D | M] -- C:\Program Files\TaxCut06
[2005/08/16 02:50:18 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2006/08/09 11:47:32 | 000,000,000 | ---D | M] -- C:\Program Files\Ventrilo
[2008/03/17 22:59:54 | 000,000,000 | ---D | M] -- C:\Program Files\Vstplugins
[2007/03/19 22:48:47 | 000,000,000 | ---D | M] -- C:\Program Files\watchmycell
[2009/02/16 17:14:12 | 000,000,000 | ---D | M] -- C:\Program Files\WildTangent
[2007/04/15 22:58:37 | 000,000,000 | ---D | M] -- C:\Program Files\Winamp
[2006/07/12 21:39:38 | 000,000,000 | ---D | M] -- C:\Program Files\WinAVIVideoConverter
[2009/02/09 22:33:28 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Installer Clean Up
[2009/11/05 18:04:43 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
[2009/11/05 17:59:11 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live SkyDrive
[2007/01/19 21:08:14 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Connect 2
[2007/01/19 21:15:27 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2008/06/13 21:21:23 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2005/08/16 02:37:56 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Plus
[2005/08/16 02:40:46 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsUpdate
[2006/07/12 03:14:08 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR
[2006/08/09 21:08:04 | 000,000,000 | ---D | M] -- C:\Program Files\WinXMedia
[2006/07/03 22:24:57 | 000,000,000 | ---D | M] -- C:\Program Files\WordPerfect Office 12
[2005/08/16 02:43:46 | 000,000,000 | ---D | M] -- C:\Program Files\xerox
[2006/08/09 04:03:20 | 000,000,000 | ---D | M] -- C:\Program Files\Xilisoft
[2007/04/25 18:59:15 | 000,000,000 | ---D | M] -- C:\Program Files\yodm3D
[2007/05/05 11:02:28 | 000,000,000 | ---D | M] -- C:\Program Files\Zune

< %appdata%\*.* >
[2007/05/25 19:31:07 | 000,000,116 | -HS- | M] () -- C:\Documents and Settings\Roobert\Application Data\.zreglib
[2006/08/09 05:51:00 | 000,000,347 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\AutoGK.ini
[2005/08/16 02:33:26 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\Roobert\Application Data\desktop.ini
[2009/07/29 23:09:55 | 000,000,144 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\DMXPro.config
[2006/07/12 20:59:36 | 000,003,072 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\dvd.bmk
[2007/02/15 10:40:58 | 000,000,120 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\FixVTS.ini
[2009/11/09 16:26:40 | 000,059,184 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\GDIPFONTCACHEV1.DAT
[2009/04/04 20:52:26 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\inst.exe
[2009/04/04 20:52:26 | 000,007,887 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\pcouffin.cat
[2009/04/04 20:52:26 | 000,001,144 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\pcouffin.inf
[2009/04/04 20:52:32 | 000,000,034 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\pcouffin.log
[2009/04/04 20:52:26 | 000,047,360 | ---- | M] (VSO Software) -- C:\Documents and Settings\Roobert\Application Data\pcouffin.sys
[2006/07/17 20:16:46 | 000,012,358 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\PFP120JCM.{PB
[2006/07/17 20:16:46 | 000,061,678 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\PFP120JPR.{PB
[2010/04/17 02:04:45 | 000,000,284 | ---- | M] () -- C:\Documents and Settings\Roobert\Application Data\ViewerApp.dat

< MD5 for: AGP440.SYS >
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\i386\sp2.cab:AGP440.sys
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/06/13 21:12:18 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/06/13 21:12:18 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 11:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 11:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[2004/08/03 21:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\i386\AGP440.SYS
[2004/08/03 21:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys

< MD5 for: ATAPI.SYS >
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\i386\sp2.cab:atapi.sys
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/06/13 21:12:18 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/06/13 21:12:18 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 11:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 11:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/03 20:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\i386\atapi.sys
[2004/08/03 20:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004/08/03 20:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0010\DriverFiles\i386\atapi.sys

< MD5 for: DISK.SYS >
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\i386\sp2.cab:disk.sys
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys
[2008/06/13 21:12:18 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys
[2008/06/13 21:12:18 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys
[2004/08/10 03:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\i386\disk.sys
[2004/08/10 03:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\$NtServicePackUninstall$\disk.sys
[2008/04/13 11:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\ServicePackFiles\i386\disk.sys
[2008/04/13 11:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys

< MD5 for: EVENTLOG.DLL >
[2008/04/13 17:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 17:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll
[2004/08/10 03:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\i386\eventlog.dll
[2004/08/10 03:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: IASTOR.SYS >
[2006/07/06 06:59:42 | 000,246,784 | ---- | M] (Intel Corporation) MD5=019CF5F31C67030841233C545A0E217A -- C:\dell\drivers\R130118\iastor.sys
[2005/06/17 03:33:40 | 000,872,064 | ---- | M] (Intel Corporation) MD5=9A65E42664D1534B68512CAAD0EFE963 -- C:\drivers\storage\sata\onboard\iastor.sys
[2005/06/17 03:33:40 | 000,872,064 | ---- | M] (Intel Corporation) MD5=9A65E42664D1534B68512CAAD0EFE963 -- C:\i386\iaStor.sys
[2005/06/17 03:33:40 | 000,872,064 | ---- | M] (Intel Corporation) MD5=9A65E42664D1534B68512CAAD0EFE963 -- C:\WINDOWS\system32\drivers\iaStor.sys

< MD5 for: NETLOGON.DLL >
[2008/04/13 17:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 17:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\netlogon.dll
[2004/08/10 03:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\i386\netlogon.dll
[2004/08/10 03:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004/08/10 03:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\i386\scecli.dll
[2004/08/10 03:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008/04/13 17:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 17:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: USBSTOR.SYS >
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\i386\sp2.cab:usbstor.sys
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:usbstor.sys
[2008/06/13 21:12:18 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbstor.sys
[2008/06/13 21:12:18 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:usbstor.sys
[2004/08/03 21:08:48 | 000,026,496 | ---- | M] (Microsoft Corporation) MD5=6CD7B22193718F1D17A47A1CD6D37E75 -- C:\i386\USBSTOR.SYS
[2004/08/03 21:08:48 | 000,026,496 | ---- | M] (Microsoft Corporation) MD5=6CD7B22193718F1D17A47A1CD6D37E75 -- C:\WINDOWS\$NtServicePackUninstall$\usbstor.sys
[2008/04/13 11:45:38 | 000,026,368 | ---- | M] (Microsoft Corporation) MD5=A32426D9B14A089EAA1D922E0C5801A9 -- C:\WINDOWS\ServicePackFiles\i386\usbstor.sys
[2008/04/13 11:45:38 | 000,026,368 | ---- | M] (Microsoft Corporation) MD5=A32426D9B14A089EAA1D922E0C5801A9 -- C:\WINDOWS\system32\drivers\usbstor.sys

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-06-04 00:52:24

========== Alternate Data Streams ==========

@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8CE646EE
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:888AFB86
< End of report >

OTL Extras logfile created on: 6/6/2010 2:22:30 PM - Run 1
OTL by OldTimer - Version 3.2.5.3 Folder = C:\Documents and Settings\Roobert\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 709.00 Mb Available Physical Memory | 69.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 228.14 Gb Total Space | 9.58 Gb Free Space | 4.20% Space Free | Partition Type: NTFS
Drive D: | 149.05 Gb Total Space | 78.55 Gb Free Space | 52.70% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 465.65 Gb Total Space | 1.37 Gb Free Space | 0.29% Space Free | Partition Type: FAT32
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: OKCOMPUTER2
Current User Name: Roobert
Logged in as Administrator.

Current Boot Mode: SafeMode with Networking
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Digital Photo Professional] -- C:\Program Files\Canon\Digital Photo Professional\DPPViewer.exe /path "%1" (CANON INC.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [ID3-TagIT] -- "C:\Program Files\ID3-TagIT 3\ID3-TagIT.exe" "/P=%1" ( )
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\Winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\Winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"3776:UDP" = 3776:UDP:*:Enabled:Media Center Extender Service
"3390:TCP" = 3390:TCP:*:Enabled:Remote Media Center Experience

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL -- File not found
"C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL -- File not found
"%windir%\system32\drivers\svchost.exe" = %windir%\system32\drivers\svchost.exe:*:Enabled:svchost -- File not found
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL -- File not found
"C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL -- File not found
"C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe" = C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe:*:Enabled:Sid Meier's Civilization 4 -- (Firaxis Games)
"C:\Program Files\SmartFTP Client 2.0\SmartFTP.exe" = C:\Program Files\SmartFTP Client 2.0\SmartFTP.exe:*:Enabled:SmartFTP Client 2.0 -- (SmartFTP GmbH)
"C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe" = C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent -- File not found
"C:\Program Files\Zone.com Deluxe Games\Wheel of Fortune Deluxe\Wheel of Fortune Deluxe.exe" = C:\Program Files\Zone.com Deluxe Games\Wheel of Fortune Deluxe\Wheel of Fortune Deluxe.exe:*:Disabled:Wheel of Fortune Deluxe -- File not found
"C:\WINDOWS\system32\ftp.exe" = C:\WINDOWS\system32\ftp.exe:*:Enabled:File Transfer Program -- (Microsoft Corporation)
"C:\OGCCommunitySDK\bin\multiplayer\mpserver\mpserver.exe" = C:\OGCCommunitySDK\bin\multiplayer\mpserver\mpserver.exe:*:Enabled:mpserver -- (Oberon Media)
"C:\OGCCommunitySDK\bin\multiplayer\mpchat\mpchat.exe" = C:\OGCCommunitySDK\bin\multiplayer\mpchat\mpchat.exe:*:Enabled:mpchat -- (Oberon Media)
"C:\Documents and Settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServ.exe" = C:\Documents and Settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServ.exe:*:Enabled:Juniper Terminal Services Client -- (Juniper Networks)
"%windir%\system32\drivers\svchost.exe" = %windir%\system32\drivers\svchost.exe:*:Enabled:svchost -- File not found
"C:\Program Files\AVG\AVG8\avgupd.exe" = C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\FreeStyler\EasyView.exe" = C:\Program Files\FreeStyler\EasyView.exe:*:Enabled:3D visualizer -- ()
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
"C:\WINDOWS\ehome\ehshell.exe" = C:\WINDOWS\ehome\ehshell.exe:LocalSubNet:Enabled:Media Center -- (Microsoft Corporation)
"C:\Program Files\Azureus\Azureus.exe" = C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus / Vuze -- (Vuze Inc.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{075473F5-846A-448B-BCB3-104AA1760205}" = Roxio RecordNow Data
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}" = Microsoft Plus! Photo Story 2 LE
"{0F31532A-16F1-4812-8B7B-D321A4CE91A6}" = Sony Vegas Pro 8.0
"{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}" = Roxio DLA
"{121634B0-2F4B-11D3-ADA3-00C04F52DD52}" = Windows Installer Clean Up
"{139E303E-1050-497F-98B1-9AE87B15C463}" = Windows Live Family Safety
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{183B7569-90FB-4C56-9761-0EEB002CAB83}" = Adobe Camera Raw 4.0
"{1CB92574-96F2-467B-B793-5CEB35C40C29}" = Image Resizer Powertoy for Windows XP
"{1E2F8AE3-3437-44E6-BB75-E95751D6B83F}" = Picture Package
"{1F63ED0B-EDD2-4037-B6AB-1358C624AF48}" = Scan
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{20B83B31-09C4-4F0E-9774-EF8A12A0A527}" = Adobe Device Central CS3
"{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Roxio MyDVD LE
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{23FE964A-853B-4176-86D7-9E18B5CA1FC0}" = Media Center Extender
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20
"{2A539CD9-0F75-4875-9A32-E06DD93C4114}" = Adobe Extension Manager CS3
"{2E0C1913-886B-4C5C-8DAF-D1E649CE5FCC}" = Creative MediaSource
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
"{33BB4982-DC52-4886-A03B-F4C5C80BEE89}" = Windows Media Player 10
"{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}" = Canon Camera WIA Driver
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37306C0F-1248-4C2E-9B86-E964AAA81101}" = Minolta DiMAGE Scan Dual3 ver 1.0
"{3A0F2E26-C0BC-40B8-94A5-6AFAB7AB1033}" = Nero 7 Demo
"{3A12C952-61D5-4C3B-B68B-8CFBE47E22F1}" = Adobe Setup
"{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = URL Assistant
"{41C3C974-EC5E-494C-AFE6-E31D92E2E6CB}" = Adobe Version Cue CS3 Client
"{4377F918-E6C9-4ECA-A7F5-754B310B7ED8}" = Sid Meier's Civilization 4
"{4667B940-BB01-428B-986E-A0CC46497BF7}" = ELIcon
"{46C73DE4-E96D-4F7C-8371-F28052183B12}" = Sonic Advanced Decoder
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4CEA6811-DFAD-4892-828D-49941FE3B779}" = Intel(R) PROSet for Wired Connections
"{4DF98D0B-637E-42B4-B9D6-EB7693D2FBF8}" = Adobe Extendscript Toolkit 2
"{4E475FD4-4513-4B1D-8DDA-43912B068C99}" = HTML Slideshow Powertoy for Windows XP
"{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}" = Photo Story 3 for Windows
"{53C6D09E-EAB6-49E5-BA4C-BA7FF13830FB}" = Sound Blaster Audigy ADVANCED MB
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5905F42D-3F5F-4916-ADA6-94A3646AEE76}" = Dell Driver Reset Tool
"{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}" = Sonic Activation Module
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{5EC786D5-C0CA-42E0-AF88-5379EF9D91EC}" = First Step Guide
"{62BD0AE0-4EB1-4BBB-8F43-B6400C8FEB2C}" = AOLIcon
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{652C4ADF-0A29-4B02-9211-EE61675847DE}" = Canon Camera WIA Driver
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68CF6DD2-8BA3-4A70-81D8-7CC5F24C9BA2}" = Adobe Bridge CS3
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D5FCA42-1486-4E32-AFE8-1B7E2AA59D33}" = Digital Content Portal
"{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}" = Microsoft Plus! Digital Media Edition Installer
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{733D84D6-AAFD-4368-A1D0-F2734F6B9082}" = Adobe Help Viewer CS3
"{74F7662C-B1DB-489E-A8AC-07A06B24978B}" = Dell System Restore
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}" = DellSupport
"{7F3A2319-79CF-4701-95FB-034E99281808}" = Adobe Bridge Start Meeting
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{83895843-3A51-4C93-9DF3-2BDB65C7E54A}" = DAEMON Tools
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8A9B8148-DDD7-448F-BD6C-358386D32354}" = Corel Photo Album 6
"{8BC84ECC-EA87-49C0-93C0-2B5DF62745CD}" = Adobe Asset Services CS3
"{8C22F265-DE76-44D1-8A79-A71D819137DA}" = Intel(R) Quick Resume Technology Drivers
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{90280409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional with FrontPage
"{903CE8F7-6C7B-41E6-A1CF-3BF1176264EC}" = Intel

Viiv

"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel Matrix Storage Manager
"{91A4AD99-69CE-4745-97B7-0E0DFBECFDE5}" = Adobe Illustrator CS
"{9422C8EA-B0C6-4197-B8FC-DC797658CA00}" = Windows Live Sign-in Assistant
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{991B1E79-12B6-40C3-A081-1FC47C6F2F37}" = Bulk Rename Utility 2, 5, 3, 1
"{9941F0AA-B903-4AF4-A055-83A9815CC011}" = Sonic Encoders
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{A1062847-0846-427A-92A1-BB8251A91E91}" = HP PSC & OfficeJet 4.2
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{A4EA3AB4-E78C-4286-96DF-26035507CE55}" = AiO_Scan
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Roxio RecordNow Audio
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.2
"{AF19F291-F22F-4798-9662-525305AE9E48}" = WordPerfect Office 12
"{B0DF58A2-40DF-4465-AA56-38623EC9938C}" = Documentation & Support Launcher
"{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Roxio RecordNow Copy
"{B6884A07-0305-47AE-9969-8F26FADC17DE}" = Games, Music, & Photos Launcher
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BB3AB664-D92B-4CB5-8B3E-D841841F4E68}" = Canon Camera WIA Driver
"{BCE72AED-3332-4863-9567-C5DCB9052CA2}" = Netflix Movie Viewer
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C169D3BB-9A27-43F5-9979-09A0D65FE95C}" = SmartFTP Client 2.0
"{C3C538E5-524C-4253-AA74-0EEEF34990EA}" = DiscJuggler
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}" = Sid Meier's Civilization 4
"{D1C59F81-66FD-4E8E-B9F7-F4B2442D5222}" = Adobe Update Manager CS3
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D2988E9B-C73F-422C-AD4B-A66EBE257120}" = MCU
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{EC2A8F27-4FBF-4E41-B27B-FE822511B761}" = iTunes
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{ED55BFEF-90F3-4926-9536-D94FDBBF65DC}" = Zune
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{F01D5ED5-D53A-4468-B428-149DC2CB3110}" = Adobe Dreamweaver CS3
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F7F23DFB-31E1-B7EC-7A6D-7668B595ADAE}" = FlipShare
"{F8C6BABF-0837-4EA0-AD6C-8E5A392A7538}" = ImageMixer VCD2
"{FA54AFB1-5745-4389-B8C1-9F7509672ED1}" = iPhone Configuration Utility
"{FB91E774-867B-4567-ACE7-8144EF036068}" = Olympus Digital Wave Player
"12133444-BF36-4d4e-B7FB-A3424C645DE4" = GemMaster Mystic
"2B92EA9865777B996CE7FFF8BD7A40F883C18BE0" = Windows Driver Package - Das (Siudi-Stick) USB (02/13/2009 1.1.0)
"3A66BC15DC4D478459742138077230185DB7DAEB" = Windows Driver Package - Das (Siudi) USB (02/13/2009 1.5.1)
"6F128087AFFFF5D4F4FEE6429736470CD5C1E4E2" = Windows Driver Package - Microsoft WPD (12/01/2006 1.2.0.0)
"8461-7759-5462-8226" = Vuze
"Abuelites_is1" = Abuelites 0.7 (1-Jul-2007)
"Ad-Aware" = Ad-Aware
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"Adobe_435a6af7459cb02a9c1138113a26e93" = Adobe Dreamweaver CS3
"AoA Audio Extractor_is1" = AoA Audio Extractor 1.0
"AutoGK" = Auto Gordian Knot 2.27
"AVG8Uninstall" = AVG Free 8.5
"AviSynth" = AviSynth 2.5
"Azureus" = Azureus
"B3EE3001-DC24-4cd1-8743-5692C716659F" = Otto
"CAL" = Canon Camera Access Library
"CameraWindowDVC5" = Canon Camera Window DC_DV 5 for ZoomBrowser EX
"CameraWindowDVC6" = Canon Camera Window DC_DV 6 for ZoomBrowser EX
"CameraWindowMC" = Canon Camera Window MC 6 for ZoomBrowser EX
"Canon RAW Codec" = Canon RAW Codec
"CCleaner" = CCleaner
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"ComcastHSI" = Comcast High-Speed Internet Install Wizard
"CompuApps SwissKnife V3" = CompuApps SwissKnife V3
"CSCLIB" = Canon Camera Support Core Library
"dBpowerAMP FLAC Codec" = dBpowerAMP FLAC Codec
"dBpowerAMP Music Converter" = dBpowerAMP Music Converter
"DC++" = DC++ 0.698
"Dell Digital Jukebox Driver" = Dell Digital Jukebox Driver
"dMC Power Pack" = dMC Power Pack
"DPP" = Canon Utilities Digital Photo Professional 3.0
"DSOT MySpace Adder_is1" = DSOT MySpace Adder
"DVD Decrypter" = DVD Decrypter (Remove Only)
"DVD Flick_is1" = DVD Flick
"DVD Ripper Platinum 4" = DVD Ripper Platinum 4
"DVD Shrink_is1" = DVD Shrink 3.2
"DVD43_is1" = DVD43 v4.4.0
"DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5_is1" = DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5.2.3.2
"DVDFab 6_is1" = DVDFab 6.2.1.8 (31/12/2009)
"DVDFab Decrypter_is1" = DVDFab Decrypter 3.0.3.8 Beta
"EHome Devices" = Media Center Extender
"EmeraldQFE2" = Windows Media Player 10 Hotfix [See EmeraldQFE2 for more information]
"EOS Utility" = Canon Utilities EOS Utility
"File Renamer - Basic" = File Renamer - Basic
"FLAC" = FLAC 1.2.1b (remove only)
"Free FLV Converter_is1" = Free FLV Converter V 4.2
"Free iPod Video Converter_is1" = Free iPod Video Converter 1.34
"FreeStyler_is1" = FreeStyler
"HP Photo & Imaging" = HP Image Zone 4.2
"ID3-TagIT 3_is1" = ID3-TagIT 3
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}" = Canon EOS Kiss_N REBEL_XT 350D WIA Driver
"InstallShield_{652C4ADF-0A29-4B02-9211-EE61675847DE}" = Canon EOS-1Ds Mark II WIA Driver
"InstallShield_{BB3AB664-D92B-4CB5-8B3E-D841841F4E68}" = Canon EOS 5D WIA Driver
"Intel

Quick Resume Technology" = Intel(R) Quick Resume Technology Drivers
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 1.25
"Magic 3D EasyView_is1" = Magic 3D EasyView
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MSNINST" = MSN
"MusicBrainz Tagger 0.10.5" = MusicBrainz Tagger 0.10.5
"MyPublisher BookMaker" = MyPublisher BookMaker
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"ODSK" = Canon Utilities Original Data Security Tools
"PeerGuardian_is1" = PeerGuardian 2.0
"PhotomatixPro3_is1" = Photomatix Pro version 3.0
"PhotoStitch" = Canon Utilities PhotoStitch
"Picasa2" = Picasa 2
"PowerISO" = PowerISO
"PROSet" = Intel(R) PRO Network Connections Drivers
"RAW Image Task" = Canon RAW Image Task for ZoomBrowser EX
"Reason4_is1" = Reason 4.0
"RemoteCaptureTask" = Canon RemoteCapture Task for ZoomBrowser EX
"Scrubbles_is1" = Scrubbles
"SereneScreen Aquarium" = SereneScreen Aquarium
"SmartFTP Client 2.0 Setup Files" = SmartFTP Client 2.0 Setup Files (remove only)
"Sound Blaster Audigy ADVANCED MB Product Registration" = Sound Blaster Audigy ADVANCED MB Product Registration
"SyncroSoft Emu" = SyncroSoft Emu (Remove only)
"Syncrosoft's License Control" = Syncrosoft's License Control
"TuneAid_is1" = TuneAid 3.04
"VobSub" = VobSub v2.23 (Remove Only)
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"WFTK" = Canon Utilities WFT-E1/E2 Utility
"WIC" = Windows Imaging Component
"Winamp" = Winamp (remove only)
"WinAVIVideoConverter_is1" = WinAVIVideoConverter
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"WinXMedia AVI/MPEG iPod Converter" = WinXMedia AVI/MPEG iPod Converter 2.1
"WinXMedia DVD MPEG/AVI/Audio Converter" = WinXMedia DVD MPEG/AVI/Audio Converter 4.02
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XviD MPEG4 Video Codec" = XviD MPEG4 Video Codec (remove only)
"ZoomBrowser EX" = Canon Utilities ZoomBrowser EX

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"f031ef6ac137efc5" = Dell Driver Download Manager
"Juniper_Setup_Client" = Juniper Networks Setup Client
"Juniper_Term_Services" = Juniper Terminal Services Client
"Neoteris_Host_Checker" = Juniper Networks Host Checker

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 5/16/2010 5:09:39 PM | Computer Name = OKCOMPUTER2 | Source = Application Error | ID = 1000
Description = Faulting application ehshell.exe, version 5.1.2715.3011, faulting
module unknown, version 0.0.0.0, fault address 0x00000000.

Error - 5/23/2010 5:06:04 PM | Computer Name = OKCOMPUTER2 | Source = Application Error | ID = 1000
Description = Faulting application moviemk.exe, version 2.1.4027.0, faulting module
quartz.dll, version 6.5.2600.5908, fault address 0x000323de.

Error - 5/23/2010 5:06:17 PM | Computer Name = OKCOMPUTER2 | Source = Application Error | ID = 1000
Description = Faulting application drwtsn32.exe, version 5.1.2600.0, faulting module
dbghelp.dll, version 5.1.2600.5512, fault address 0x0001295d.

Error - 5/23/2010 5:06:57 PM | Computer Name = OKCOMPUTER2 | Source = Application Hang | ID = 1002
Description = Hanging application moviemk.exe, version 2.1.4027.0, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 5/29/2010 5:48:14 PM | Computer Name = OKCOMPUTER2 | Source = Application Error | ID = 1000
Description = Faulting application swisnife.exe, version 3.0.22.0, faulting module
partutil.dll, version 3.0.14.0, fault address 0x00008f0c.

Error - 6/5/2010 2:48:13 PM | Computer Name = OKCOMPUTER2 | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 7.0.6000.17023, faulting
module avgxpl.dll, version 8.5.0.401, fault address 0x00023a74.

Error - 6/5/2010 3:42:58 PM | Computer Name = OKCOMPUTER2 | Source = EventSystem | ID = 4609
Description = The COM+ Event System detected a bad return code during its internal
processing. HRESULT was 8007043C from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
Please contact Microsoft Product Support Services to report this erro

Error - 6/5/2010 3:50:42 PM | Computer Name = OKCOMPUTER2 | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 7.0.6000.17023, faulting
module avgxpl.dll, version 8.5.0.401, fault address 0x00023a74.

Error - 6/5/2010 3:51:09 PM | Computer Name = OKCOMPUTER2 | Source = Application Error | ID = 1001
Description = Fault bucket 1806005985.

Error - 6/6/2010 5:14:15 PM | Computer Name = OKCOMPUTER2 | Source = Application Error | ID = 1000
Description = Faulting application javara.exe, version 1.15.0.1745, faulting module
ntdll.dll, version 5.1.2600.5755, fault address 0x0000100b.

[ System Events ]
Error - 6/5/2010 4:17:15 PM | Computer Name = OKCOMPUTER2 | Source = Service Control Manager | ID = 7001
Description = The World Wide Web Publishing service depends on the IIS Admin service
which failed to start because of the following error: %%1068

Error - 6/5/2010 4:17:15 PM | Computer Name = OKCOMPUTER2 | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
AvgLdx86 AvgMfx86 Fips intelppm SCDEmu

Error - 6/5/2010 5:28:56 PM | Computer Name = OKCOMPUTER2 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 6/5/2010 5:29:24 PM | Computer Name = OKCOMPUTER2 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service StiSvc with
arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 6/5/2010 5:31:14 PM | Computer Name = OKCOMPUTER2 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 6/6/2010 3:08:20 PM | Computer Name = OKCOMPUTER2 | Source = Service Control Manager | ID = 7001
Description = The Simple Mail Transfer Protocol (SMTP) service depends on the IIS
Admin service which failed to start because of the following error: %%1068

Error - 6/6/2010 3:08:20 PM | Computer Name = OKCOMPUTER2 | Source = Service Control Manager | ID = 7001
Description = The World Wide Web Publishing service depends on the IIS Admin service
which failed to start because of the following error: %%1068

Error - 6/6/2010 3:08:20 PM | Computer Name = OKCOMPUTER2 | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
AvgLdx86 AvgMfx86 Fips intelppm SCDEmu

Error - 6/6/2010 3:35:13 PM | Computer Name = OKCOMPUTER2 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service EventSystem
with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 6/6/2010 5:19:19 PM | Computer Name = OKCOMPUTER2 | Source = DCOM | ID = 10005
Description = DCOM got error "%1084" attempting to start the service wuauserv with
arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

< End of report >

Re: IE/Firefox Crashes Upon Startup7th June 2010, 12:07 am

Hello.

Download combofix from here
Link 1
Link 2

1. If you are using Firefox, make sure that your download settings are as follows:

* Tools->Options->Main tab
* Set to "Always ask me where to Save the files".

2. During the download, rename Combofix to Combo-Fix as follows:

3. It is important you rename Combofix during the download, but not after.
4. Please do not rename Combofix to other names, but only to the one indicated.
5. Close any open browsers.
6. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
We need to disable your local AV (Anti-virus) before running Combofix.
See HERE for how to disable your AV.
Double click on ComboFix.exe.
Follow the prompts. NOTE:
ComboFix will check to see if the Microsoft Windows Recovery Console is installed.
***It's strongly recommended to have the Recovery Console installed before doing any malware removal.***

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will automatically proceed with its scan.
The Recovery Console provides a recovery/repair mode should a problem occur during a Combofix run.
Allow ComboFix to download the Recovery Console.
Accept the End-User License Agreement.
The Recovery Console will be installed.
You will then get this next prompt that asks if you want to continue the malware scan, select yes
Allow combofix to run
Post C:\combofix.txt back here.

Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall.

Re: IE/Firefox Crashes Upon Startup7th June 2010, 2:05 am

ComboFix 10-06-06.01 - Roobert 06/06/2010 18:24:36.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.557 [GMT -7]
Running from: c:\documents and settings\Roobert\Desktop\Combo-Fix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Roobert\Application Data\inst.exe
c:\windows\system\CW3215.DLL
c:\windows\system32\Cache
c:\windows\system32\Data
c:\windows\system32\winsvcup.exe
c:\windows\system32\winupsvc.exe
F:\Autorun.inf

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_TDSSSERV.SYS

((((((((((((((((((((((((( Files Created from 2010-05-07 to 2010-06-07 )))))))))))))))))))))))))))))))
.

2010-06-06 21:17 . 2010-06-06 21:17 0 ----a-w- c:\temp\jre-6u20-windows-i586.exe
2010-05-29 21:31 . 2001-07-13 20:56 14976 ----a-w- c:\windows\system32\drivers\SBKUPNT.SYS
2010-05-29 21:31 . 1997-02-09 00:11 13312 ----a-w- c:\windows\system32\DEVLOAD.EXE
2010-05-29 21:31 . 2010-05-29 21:31 -------- d-----w- C:\SWISNIFE
2010-05-21 03:04 . 2010-05-21 03:04 -------- d-----w- c:\program files\Common Files\Java
2010-05-21 03:03 . 2010-05-21 03:02 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-05-11 08:36 . 2010-05-11 08:36 127 ----a-w- c:\documents and settings\MCX1\Local Settings\Application Data\fusioncache.dat
2010-05-11 08:30 . 2010-05-11 08:30 -------- d--h--w- c:\windows\system32\GroupPolicy
2010-05-11 08:08 . 2008-04-15 15:17 295424 ------w- c:\windows\system32\dllcache\termsrv.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-07 01:11 . 2009-01-22 06:43 -------- d-----w- c:\documents and settings\All Users\Application Data\avg8
2010-06-06 21:17 . 2009-02-01 21:56 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-06-05 19:47 . 2009-01-22 06:31 -------- d-----w- c:\program files\CCleaner
2010-06-05 19:39 . 2006-07-13 04:17 -------- d-----w- c:\documents and settings\Roobert\Application Data\Azureus
2010-06-04 02:46 . 2008-10-06 02:21 -------- d-----w- c:\program files\Microsoft Silverlight
2010-06-02 02:35 . 2006-07-12 10:13 -------- d-----w- c:\documents and settings\All Users\Application Data\DVD Shrink
2010-05-31 22:53 . 2009-06-01 00:17 -------- d-----w- c:\documents and settings\Roobert\Application Data\ZoomBrowser EX
2010-05-31 22:53 . 2009-05-31 22:29 -------- d-----w- c:\documents and settings\All Users\Application Data\ZoomBrowser
2010-05-30 10:06 . 2006-07-14 02:53 -------- d-----w- c:\program files\PeerGuardian2
2010-05-27 06:22 . 2006-07-13 04:17 -------- d-----w- c:\program files\Azureus
2010-05-27 04:02 . 2010-05-27 04:02 503808 ----a-w- c:\documents and settings\Roobert\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-32441d88-n\msvcp71.dll
2010-05-27 04:02 . 2010-05-27 04:02 499712 ----a-w- c:\documents and settings\Roobert\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-32441d88-n\jmc.dll
2010-05-27 04:02 . 2010-05-27 04:02 348160 ----a-w- c:\documents and settings\Roobert\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-32441d88-n\msvcr71.dll
2010-05-27 04:02 . 2010-05-27 04:02 61440 ----a-w- c:\documents and settings\Roobert\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-6def402f-n\decora-sse.dll
2010-05-27 04:02 . 2010-05-27 04:02 12800 ----a-w- c:\documents and settings\Roobert\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-6def402f-n\decora-d3d.dll
2010-05-24 17:10 . 2008-11-15 21:18 37464 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup\uninstall.exe
2010-05-24 17:10 . 2008-11-15 21:18 -------- d-----w- c:\documents and settings\Roobert\Application Data\Juniper Networks
2010-05-24 17:10 . 2008-11-15 21:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Juniper Networks
2010-05-23 21:22 . 2007-06-08 11:55 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-05-05 19:02 . 2009-01-25 00:16 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-29 22:39 . 2009-01-25 00:16 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 22:39 . 2009-01-25 00:16 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-17 18:01 . 2010-04-17 08:45 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS
2010-04-17 12:01 . 2010-04-17 12:01 134376 ----a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2010-04-17 10:03 . 2008-03-18 06:03 -------- d-----w- c:\documents and settings\Roobert\Application Data\Publish Providers
2010-04-17 09:04 . 2010-04-17 08:41 284 ----a-w- c:\documents and settings\Roobert\Application Data\ViewerApp.dat
2010-04-17 08:45 . 2010-04-17 08:45 1924976 ----a-w- c:\documents and settings\All Users\Application Data\NOS\Adobe_Downloads\install_flash_player.exe
2010-04-17 07:22 . 2010-04-17 07:22 -------- d-----w- c:\program files\PIXELA
2010-04-17 07:22 . 2006-07-04 05:18 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-04-17 07:19 . 2010-04-17 07:18 -------- d-----w- c:\program files\Sony Corporation
2010-04-17 07:19 . 2010-04-17 07:19 -------- d-----w- c:\program files\Common Files\muvee Technologies
2010-04-10 19:11 . 2010-04-10 19:11 56072 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\uninstall.exe
2010-04-10 19:11 . 2010-04-10 19:11 157040 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\InstallHelper.exe
2010-04-10 19:11 . 2010-04-10 19:11 65536 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\CertAuthIMC.dll
2010-04-10 19:11 . 2010-04-10 19:11 300400 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsHostChecker.exe
2010-04-10 19:11 . 2010-04-10 19:11 234864 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsHostCheckerProxy.exe
2010-04-10 19:11 . 2010-04-10 19:11 40448 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\JSystemIMC.dll
2010-04-10 19:11 . 2010-04-10 19:11 36864 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsHostCheckerResource_ko.dll
2010-04-10 19:11 . 2010-04-10 19:11 118784 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\ShavlikIMC.dll
2010-04-10 19:11 . 2010-04-10 19:11 110592 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\hcimc.dll
2010-04-10 19:10 . 2010-04-10 19:10 45056 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsHostCheckerResource_fr.dll
2010-04-10 19:10 . 2010-04-10 19:10 40960 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsHostCheckerResource_es.dll
2010-04-10 19:10 . 2010-04-10 19:10 40960 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsHostCheckerResource_en.dll
2010-04-10 19:10 . 2010-04-10 19:10 40960 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsHostCheckerResource_de.dll
2010-04-10 19:10 . 2010-04-10 19:10 36864 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsHostCheckerResource_ja.dll
2010-04-10 19:10 . 2010-04-10 19:10 3072 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsnsisdll.dll
2010-04-10 19:10 . 2010-04-10 19:10 27136 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsHostCheckerResource_zh_cn.dll
2010-04-10 19:10 . 2010-04-10 19:10 27136 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsHostCheckerResource_zh.dll
2010-04-10 19:10 . 2010-04-10 19:10 442368 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\EPCheck.dll
2010-04-10 19:10 . 2010-04-10 19:10 159744 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\PluginClient.dll
2010-04-10 19:08 . 2010-04-10 19:08 43144 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\uninstall.exe
2010-04-10 19:08 . 2010-04-10 19:08 263536 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServ.exe
2010-04-10 19:07 . 2010-04-10 19:07 6656 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServResource_KO.dll
2010-04-10 19:07 . 2010-04-10 19:07 6656 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServResource_JA.dll
2010-04-10 19:07 . 2010-04-10 19:07 13312 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServResource_DE.dll
2010-04-10 19:07 . 2010-04-10 19:07 11776 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServResource_FR.dll
2010-04-10 19:07 . 2010-04-10 19:07 11776 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServResource_ES.dll
2010-04-10 19:07 . 2010-04-10 19:07 4608 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServResource_ZH_CN.dll
2010-04-10 19:07 . 2010-04-10 19:07 4608 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServResource_ZH.dll
2010-04-10 19:07 . 2010-04-10 19:07 10752 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServResource_en.dll
2010-04-10 19:07 . 2010-04-10 19:07 188416 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServProxy.dll
2010-04-10 19:07 . 2010-04-10 19:07 90112 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsTermServDt.dll
2010-04-10 19:07 . 2010-04-10 19:07 303104 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsWinClient.dll
2010-04-10 19:07 . 2010-04-10 19:07 24576 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsWinClientResource_EN.dll
2010-04-10 18:59 . 2010-04-10 18:59 18944 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsWinClientResource_FR.dll
2010-04-10 18:59 . 2010-04-10 18:59 18944 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsWinClientResource_DE.dll
2010-04-10 18:59 . 2010-04-10 18:59 16384 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsWinClientResource_ZH_CN.dll
2010-04-10 18:59 . 2010-04-10 18:59 16384 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsWinClientResource_ZH.dll
2010-04-10 18:59 . 2010-04-10 18:59 18432 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsWinClientResource_ES.dll
2010-04-10 18:59 . 2010-04-10 18:59 16896 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsWinClientResource_KO.dll
2010-04-10 18:58 . 2010-04-10 18:58 16896 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Juniper Terminal Services Client\dsWinClientResource_JA.dll
2010-04-10 18:47 . 2010-04-10 18:47 401462 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\msvcp60.dll
2010-03-20 18:30 . 2007-04-30 08:22 59992 ----a-w- c:\documents and settings\Roobert\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-03-17 07:04 . 2010-03-17 07:04 50840 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\uninstall.exe
2010-03-17 07:03 . 2010-03-17 07:03 132464 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\dsmmf.exe
2010-03-17 07:03 . 2010-03-17 07:03 497008 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\JuniperSetupClient.exe
2010-03-17 07:03 . 2010-03-17 07:03 230768 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\JuniperSetupDLL.dll
2010-03-17 07:03 . 2010-03-17 07:03 329984 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\JuniperSetupClientOCX.exe
2010-03-17 07:02 . 2010-03-17 07:02 29696 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\setupResource_de.dll
2010-03-17 07:02 . 2010-03-17 07:02 2560 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\dsmmfres_de.dll
2010-03-17 07:02 . 2010-03-17 07:02 3072 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\dsmmfres_fr.dll
2010-03-17 07:02 . 2010-03-17 07:02 2560 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\dsmmfres_ja.dll
2010-03-17 07:02 . 2010-03-17 07:02 2560 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\dsmmfres_es.dll
2010-03-17 07:02 . 2010-03-17 07:02 2560 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\dsmmfres_zh.dll
2010-03-17 07:02 . 2010-03-17 07:02 2560 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\dsmmfres_ko.dll
2010-03-17 07:02 . 2010-03-17 07:02 2560 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\dsmmfres_zh_cn.dll
2010-03-17 07:02 . 2010-03-17 07:02 23552 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\setupResource_zh_cn.dll
2010-03-17 07:02 . 2010-03-17 07:02 23552 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\setupResource_zh.dll
2010-03-17 07:01 . 2010-03-17 07:01 28672 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\setupResource_es.dll
2010-03-17 07:01 . 2010-03-17 07:01 28160 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\setupResource_en.dll
2010-03-17 07:01 . 2010-03-17 07:01 25088 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\setupResource_ko.dll
2010-03-17 07:01 . 2010-03-17 07:01 29184 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\setupResource_fr.dll
2010-03-17 07:01 . 2010-03-17 07:01 25088 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\setupResource_ja.dll
2010-03-17 07:01 . 2010-03-17 07:01 218368 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup Client\JuniperSetupXP.exe
2010-03-17 07:01 . 2010-03-17 07:01 116080 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup\JuniperSetupClient.exe
2010-03-17 07:01 . 2010-03-17 07:01 62904 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup\dsmmf.exe
2010-03-17 07:01 . 2010-03-17 07:01 42432 ------r- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup\JuniperSetupApp.exe
2010-03-17 07:01 . 2010-03-17 07:01 116160 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Setup\JuniperSetupDLL.dll
2010-03-17 06:48 . 2010-03-17 06:48 16896 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsWinClientResource_JA.dll
2010-03-17 06:46 . 2010-03-17 06:46 18944 ----a-w- c:\documents and settings\Roobert\Application Data\Juniper Networks\Host Checker\dsWinClientResource_DE.dll
2007-08-09 14:36 . 2007-08-02 07:47 24 --sha-w- c:\windows\SA239EDA1.tmp
2008-07-30 01:45 . 2006-07-18 03:16 56 --sh--r- c:\windows\system32\0A3FCADE72.sys
2009-01-24 23:47 . 2006-07-12 09:16 88 --sh--r- c:\windows\system32\72DECA3F0A.sys
2009-01-24 23:47 . 2006-07-12 09:16 4184 --sha-w- c:\windows\system32\KGyGaAvL.sys
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SetDefaultMIDI"="MIDIDef.exe" [2004-12-22 24576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-09-29 67584]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-06-02 7618560]
"SigmatelSysTrayApp"="stsystra.exe" [2005-03-22 339968]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2005-06-17 139264]
"CTSysVol"="c:\program files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe" [2005-09-15 57344]
"MBMon"="CTMBHA.DLL" [2005-05-19 1345520]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 249856]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 81920]
"DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2005-09-08 122940]
"nwiz"="nwiz.exe" [2006-06-02 1519616]
"NvMediaCenter"="NvMCTray.dll" [2006-06-02 86016]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-03 32768]
"DellSupportCenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064]
"dscactivate"="c:\program files\Dell Support Center\gs_agent\custom\dsca.exe" [2007-11-15 16384]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2010-03-19 2046816]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-08-20 520024]
"H2O"="c:\program files\SyncroSoft\Pos\H2O\cledx.exe" [2005-10-23 385024]
"dvd43"="c:\program files\dvd43\dvd43_tray.exe" [2008-11-18 827904]
"DAEMON Tools-1033"="c:\program files\D-Tools\daemon.exe" [2003-12-28 81920]
"QuickTime Task"="c:\program files\K-Lite Codec Pack\QuickTime\qttask.exe" [2009-09-05 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-09-09 305440]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-04-04 36272]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-03-24 952768]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Device Detector 3.lnk - c:\program files\Olympus\DeviceDetector\DevDtct2.exe [2009-11-19 118784]
Extender Resource Monitor.lnk - c:\windows\ehome\RMSysTry.exe [2005-10-20 18432]
Picture Package Menu.lnk - c:\program files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe [2010-4-17 151552]
Picture Package VCD Maker.lnk - c:\program files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe [2010-4-17 106496]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-08-15 17:26 11952 ----a-w- c:\windows\system32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]
2004-12-02 23:23 102400 ------w- c:\program files\Creative\MediaSource\Detector\CTDetect.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools-1033]
2003-12-28 03:43 81920 ----a-w- c:\program files\D-Tools\daemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupport]
2007-03-15 18:09 460784 ----a-w- c:\program files\DellSupport\DSAgnt.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupportCenter]
2009-05-21 17:55 206064 ----a-w- c:\program files\Dell Support Center\bin\sprtcmd.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dscactivate]
2007-11-15 17:24 16384 ----a-w- c:\program files\Dell Support Center\gs_agent\custom\dsca.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H2O]
2005-10-23 07:00 385024 ----a-w- c:\program files\Syncrosoft\POS\H2O\cledx.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-09-05 08:54 417792 ----a-w- c:\program files\K-Lite Codec Pack\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zune Launcher]
2007-03-15 00:03 24104 ----a-w- c:\program files\Zune\ZuneLauncher.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Civilization4.exe"=
"c:\\Program Files\\SmartFTP Client 2.0\\SmartFTP.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\ftp.exe"=
"c:\\OGCCommunitySDK\\bin\\multiplayer\\mpserver\\mpserver.exe"=
"c:\\OGCCommunitySDK\\bin\\multiplayer\\mpchat\\mpchat.exe"=
"c:\\Documents and Settings\\Roobert\\Application Data\\Juniper Networks\\Juniper Terminal Services Client\\dsTermServ.exe"=
"%windir%\\system32\\drivers\\svchost.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\FreeStyler\\EasyView.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Azureus\\Azureus.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3776:UDP"= 3776:UDP:Media Center Extender Service
"3390:TCP"= 3390:TCP:Remote Media Center Experience

R0 d344bus;d344bus;c:\windows\system32\drivers\d344bus.sys [5/31/2009 3:25 PM 137216]
R0 d344prt;d344prt;c:\windows\system32\drivers\d344prt.sys [5/31/2009 3:25 PM 5248]
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [1/24/2009 11:54 AM 64160]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [1/4/2009 2:14 PM 717296]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [1/21/2009 11:43 PM 335240]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [8/15/2009 10:26 AM 297752]
R2 DLPortIO;DriverLINX Port I/O Driver;c:\windows\system32\drivers\dlportio.sys [7/16/2009 12:34 AM 3584]
R2 SBKUPNT;SBKUPNT;c:\windows\system32\drivers\SBKUPNT.SYS [5/29/2010 2:31 PM 14976]
R3 CLEDX;Team H2O CLEDX service;c:\windows\system32\drivers\cledx.sys [2/17/2008 12:36 AM 33792]
S3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [1/18/2009 2:34 PM 1029456]
S4 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;"c:\program files\McAfee\SiteAdvisor\McSACore.exe" --> c:\program files\McAfee\SiteAdvisor\McSACore.exe [?]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
QWAVE REG_MULTI_SZ QWAVE
.
Contents of the 'Scheduled Tasks' folder

2010-06-05 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 06:09]

2010-05-27 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 19:34]
.
.
------- Supplementary Scan -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex}&startPage={startPage}
mStart Page = hxxp://www.hrvg.tk
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office10\EXCEL.EXE/3000
Trusted Zone: musicmatch.com\online
DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} - hxxp://support.dell.com/systemprofiler/DellSystemLite.CAB
FF - ProfilePath - c:\documents and settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=IEFM1&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://go.microsoft.com/fwlink/?LinkId=69157
FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=IEFM1&q=
FF - component: c:\program files\AVG\AVG8\Firefox\components\avgssff.dll
FF - plugin: c:\documents and settings\Roobert\Application Data\Mozilla\Firefox\Profiles\vwqtop9w.default\extensions\moveplayer@movenetworks.com\platform\WINNT_x86-msvc\plugins\npmnqmp07076007.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin5.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin6.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin7.dll
FF - plugin: c:\program files\K-Lite Codec Pack\QuickTime\Plugins\npqtplugin8.dll
FF - plugin: c:\program files\K-Lite Codec Pack\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
FF - user.js: dom.disable_open_during_load - false // Popupblocker control handled by McAfee Privacy Service
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.
- - - - ORPHANS REMOVED - - - -

MSConfigStartUp-VoiceCenter - c:\program files\Creative\VoiceCenter\AndreaVC.exe

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-06-06 18:35
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys iastor.sys spvi.sys hal.dll >>UNKNOWN [0x87186938]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xf75baf28
\Driver\ACPI -> ACPI.sys @ 0xf7313cb8
\Driver\atapi -> 0x8653e008
\Driver\iaStor -> iastor.sys @ 0xf7223020
IoDeviceObjectType -> ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
\Device\Harddisk0\DR0 -> ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
NDIS: Intel(R) PRO/1000 PL Network Connection -> SendCompleteHandler -> NDIS.sys @ 0xf70b3bb0
PacketIndicateHandler -> NDIS.sys @ 0xf70c0a21
SendHandler -> NDIS.sys @ 0xf709e87b
Warning: possible MBR rootkit infection !
user & kernel MBR OK

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'explorer.exe'(1600)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\MSVCR80.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\SmartFTP Client 2.0\smarthook.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\system32\CTsvcCDA.exe
c:\windows\eHome\ehRecvr.exe
c:\windows\eHome\ehSched.exe
c:\program files\Flip Video\FlipShare\FlipShareService.exe
c:\progra~1\AVG\AVG8\avgrsx.exe
c:\program files\Intel\Intel Matrix Storage Manager\iaantmon.exe
c:\windows\system32\inetsrv\inetinfo.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\nvsvc32.exe
c:\windows\ehome\RMSvc.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Dell Support Center\bin\sprtsvc.exe
c:\windows\system32\MsPMSPSv.exe
c:\program files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
c:\windows\ehome\McrdSvc.exe
c:\program files\Canon\CAL\CALMAIN.exe
c:\windows\stsystra.exe
c:\windows\system32\RunDLL32.exe
c:\windows\system32\dllhost.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\eHome\ehmsas.exe
c:\program files\iPod\bin\iPodService.exe
.
**************************************************************************
.
Completion time: 2010-06-06 18:48:14 - machine was rebooted
ComboFix-quarantined-files.txt 2010-06-07 01:48

Pre-Run: 9,134,436,352 bytes free
Post-Run: 9,268,674,560 bytes free

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect

- - End Of File - - A743867C91ED4ECD01940C6CA87DC702

Re: IE/Firefox Crashes Upon Startup7th June 2010, 2:10 am

I am now able to launch IE & Firefox.

Re: IE/Firefox Crashes Upon Startup7th June 2010, 10:31 pm

Hello.

Download TDSSKiller and save it to your Desktop.
Extract its contents to your desktop and make sure TDSSKiller.exe (the contents of the zipped file) is on the Desktop itself, not within a folder on the desktop.
Go to Start > Run (Or you can hold down your Windows key and press R) and copy and paste the following into the text field. (make sure you include the quote marks) Then press OK.

"%userprofile%DesktopTDSSKiller.exe" -l C:TDSSKiller.txt -v
If it says "Hidden service detected" DO NOT type anything in. Just press Enter on your keyboard to not do anything to the file.
When it is done, a log file should be created on your C: drive called "TDSSKiller.txt" please copy and paste the contents of that file here.

IE/Firefox Crashes Upon Startup

descriptionIE/Firefox Crashes Upon Startup6th June 2010, 9:49 pm

descriptionRe: IE/Firefox Crashes Upon Startup6th June 2010, 9:49 pm

descriptionRe: IE/Firefox Crashes Upon Startup7th June 2010, 12:07 am

descriptionRe: IE/Firefox Crashes Upon Startup7th June 2010, 2:05 am

descriptionRe: IE/Firefox Crashes Upon Startup7th June 2010, 2:10 am

descriptionRe: IE/Firefox Crashes Upon Startup7th June 2010, 10:31 pm

descriptionRe: IE/Firefox Crashes Upon Startup