amalm92

Member
  • Content Count

    8
  • Joined

  • Last visited

Community Reputation

0 Neutral

About amalm92

  • Rank
    New Member
  1. New OTL Log: All processes killed Error: Unable to interpret <:OTLI> in the current context! Error: Unable to interpret <PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)> in the current context! Error: Unable to interpret <O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.> in the current context! Error: Unable to interpret <O4 - HKCU..\Run: [PopRock] C:\DOCUME~1\PRUTHV~1\LOCALS~1\Temp\a.exe File not found> in the current context! ========== FILES ========== C:\Documents and Settings\Pruthvesh\My Documents\~WRL1777.tmp moved successfully. C:\Documents and Settings\Pruthvesh\My Documents\~WRL3899.tmp moved successfully. C:\Documents and Settings\Pruthvesh\My Documents\~WRL4038.tmp moved successfully. C:\WINDOWS\002994_.tmp moved successfully. C:\WINDOWS\msdownld.tmp\msdownld.tmp moved successfully. C:\WINDOWS\msdownld.tmp moved successfully. C:\WINDOWS\SET3.tmp moved successfully. C:\WINDOWS\SET4.tmp moved successfully. C:\WINDOWS\SET8.tmp moved successfully. C:\WINDOWS\System32\CONFIG.TMP moved successfully. C:\WINDOWS\System32\SET58.tmp moved successfully. C:\WINDOWS\System32\SET64.tmp moved successfully. C:\WINDOWS\System32\SET87.tmp moved successfully. C:\WINDOWS\System32\SET93.tmp moved successfully. C:\WINDOWS\System32\CF6269.exe moved successfully. C:\WINDOWS\System32\CF19906.exe moved successfully. C:\WINDOWS\System32\CF26072.exe moved successfully. C:\WINDOWS\System32\CF22827.exe moved successfully. C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job moved successfully. C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: Administrator ->Temp folder emptied: 334857 bytes ->Temporary Internet Files folder emptied: 1384552 bytes User: Administrator.ABC5C48A3F8841B ->Temp folder emptied: 1479062 bytes ->Temporary Internet Files folder emptied: 526683 bytes User: All Users User: All Users.WINDOWS User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 32768 bytes User: Default User.WINDOWS ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 10966848 bytes User: LocalService.NT AUTHORITY ->Temp folder emptied: 66016 bytes File delete failed. C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot. ->Temporary Internet Files folder emptied: 62732 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: NetworkService.NT AUTHORITY ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 12256791 bytes User: Pruthvesh File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WXQRK5E7\adlink%7C559%7C1061414%7C0%7C225%7CAdId%3D1100164%3BBnId%3D1%3Bitime%3D941978293%3Blink%3Dhttp%3A%2F%2Fadopt%2Eeuroclick%2Ecom%2Flnk%2Eeu%3Faplcd%3D2339%3B156%3B202%3B56[1] scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WXQRK5E7\makeplaylist.dll%3Fsid=6752202&pt=url&xdata=6D.xfE5hFQP5sy.qTP.dOw-17633104-1200276552&s=396500550&b=18fsofp1m07m2&wmp=10&ticket=a85d76b6ad882b0a24f538dbc48b15fe&zz=a[1].asx scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WLA3SHYZ\adlink%7C559%7C1061414%7C0%7C225%7CAdId%3D1100164%3BBnId%3D1%3Bitime%3D941978293%3Blink%3Dhttp%3A%2F%2Fadopt%2Eeuroclick%2Ecom%2Flnk%2Eeu%3Faplcd%3D2339%3B156%3B202%3B56[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\+lorries;cat=293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=160x600;tile=3;ord=1233777001524;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776590313;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ25QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=38032;sz=728x90;tile=1;ord=1233775775664;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776517947;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776291803;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\93;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=61239;items=1565;sz=160x600;tile=3;ord=1233776908249;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\9Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ100QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=146;sz=728x90;tile=1;ord=1233775935499;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\=scania+spares+and+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=160x600;tile=3;ord=1233777009639;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\IHMS0CAJT3BMXCAJFPXX0CA0O0M09CA9QUJZ1CAFBJMFICA0FGC5KCA8MX3J0CA1B616CCASKMZFICAGL1L1SCA1VAHKWCA73X2PICAIXWT5DCACNGGT9CA05LSYUCAWKRLJSCAFS24VBCA9TV5W8CAAFHY4TCAZO2LQ1CAOOD2GU scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\scania+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=9800;items=201;sz=160x600;tile=3;ord=1233777020305;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776517947;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776539805;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776291803;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=2423;sz=728x90;tile=1;ord=1233775792306;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=61239;items=1565;sz=728x90;tile=1;ord=1233776908249;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=38032;sz=160x600;tile=3;ord=1233775775664;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776268460;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\=scania+trucks;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=220;items=1596;sz=160x600;tile=3;ord=1233777049889;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\d+lorries;cat=293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=728x90;tile=1;ord=1233777001524;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\Q253A1686Q257C66Q253A2Q257C65Q253A12Q257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_sacatZ20481QQ_trksidZp3286Q2ec0Q2em14QQ_sopZ7QQ_scZ1[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\rucks;cat=9800;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=63732;items=325;sz=728x90;tile=1;ord=1233777083930;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\0QQQ5ftrkparmsZ66Q253A2Q257C65Q253A7Q257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=146;sz=160x600;tile=3;ord=1233775935499;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ25QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1] scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=16606;sz=728x90;tile=1;ord=1233775784370;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776539805;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776304465;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1137;sz=728x90;tile=1;ord=1233776061360;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\at=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=1;sz=728x90;tile=1;ord=1233775837531;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\iteWideConditionZNew13180QQBrand3d75b67ZSonyEricssoneb18661fQQ_catrefZ1QQ_dmptZUKQ5fMobilePhonesQ5fMobilePhonesQQ_flnZ1QQ_sacatZ3312QQ_ssovZ1QQ_trksidZp3286Q2ec0Q2em282[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\t=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=1;sz=160x600;tile=3;ord=1233775837531;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\ucks;cat=9800;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=63732;items=325;sz=160x600;tile=3;ord=1233777083930;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\w=scania+spares+and+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=728x90;tile=1;ord=1233777009639;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\w=scania+trucks;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=220;items=1596;sz=728x90;tile=1;ord=1233777049889;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\0LYJ8TAJ\makeplaylist.dll%3Fsid=6752202&pt=url&xdata=6D.xfE5hFQP5sy.qTP.dOw-17633104-1200276552&s=396500550&b=18fsofp1m07m2&wmp=10&ticket=a5bdd8d484f721fd7a3d9ea766aca7e5&zz=a[1].asx scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776268460;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776304465;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1137;sz=160x600;tile=3;ord=1233776061360;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=2423;sz=160x600;tile=3;ord=1233775792306;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=16606;sz=160x600;tile=3;ord=1233775784370;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776590313;[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\=scania+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=9800;items=201;sz=728x90;tile=1;ord=1233777020305;[1].htm scheduled to be deleted on reboot. ->Temp folder emptied: 88451591 bytes File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot. ->Temporary Internet Files folder emptied: 46996066 bytes ->Java cache emptied: 26423555 bytes File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_001_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_002_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_003_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\urlclassifier3.sqlite scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\XUL.mfl scheduled to be deleted on reboot. ->FireFox cache emptied: 101190970 bytes ->Google Chrome cache emptied: 0 bytes User: Urvashi %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes File delete failed. C:\WINDOWS\temp\logishrd\LVPrcInj02.dll scheduled to be deleted on reboot. File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_438.dat scheduled to be deleted on reboot. Windows Temp folder emptied: 300834 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 277.05 mb OTL by OldTimer - Version 3.0.18.4 log created on 10062009_093920 Files\Folders moved on Reboot... File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WXQRK5E7\adlink%7C559%7C1061414%7C0%7C225%7CAdId%3D1100164%3BBnId%3D1%3Bitime%3D941978293%3Blink%3Dhttp%3A%2F%2Fadopt%2Eeuroclick%2Ecom%2Flnk%2Eeu%3Faplcd%3D2339%3B156%3B202%3B56[1] not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WXQRK5E7\makeplaylist.dll%3Fsid=6752202&pt=url&xdata=6D.xfE5hFQP5sy.qTP.dOw-17633104-1200276552&s=396500550&b=18fsofp1m07m2&wmp=10&ticket=a85d76b6ad882b0a24f538dbc48b15fe&zz=a[1].asx not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WLA3SHYZ\adlink%7C559%7C1061414%7C0%7C225%7CAdId%3D1100164%3BBnId%3D1%3Bitime%3D941978293%3Blink%3Dhttp%3A%2F%2Fadopt%2Eeuroclick%2Ecom%2Flnk%2Eeu%3Faplcd%3D2339%3B156%3B202%3B56[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\+lorries;cat=293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=160x600;tile=3;ord=1233777001524;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776590313;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ25QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=38032;sz=728x90;tile=1;ord=1233775775664;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776517947;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776291803;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\93;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=61239;items=1565;sz=160x600;tile=3;ord=1233776908249;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\9Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ100QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=146;sz=728x90;tile=1;ord=1233775935499;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\=scania+spares+and+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=160x600;tile=3;ord=1233777009639;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\IHMS0CAJT3BMXCAJFPXX0CA0O0M09CA9QUJZ1CAFBJMFICA0FGC5KCA8MX3J0CA1B616CCASKMZFICAGL1L1SCA1VAHKWCA73X2PICAIXWT5DCACNGGT9CA05LSYUCAWKRLJSCAFS24VBCA9TV5W8CAAFHY4TCAZO2LQ1CAOOD2GU not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\scania+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=9800;items=201;sz=160x600;tile=3;ord=1233777020305;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776517947;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776539805;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776291803;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=2423;sz=728x90;tile=1;ord=1233775792306;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=61239;items=1565;sz=728x90;tile=1;ord=1233776908249;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=38032;sz=160x600;tile=3;ord=1233775775664;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776268460;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\=scania+trucks;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=220;items=1596;sz=160x600;tile=3;ord=1233777049889;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\d+lorries;cat=293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=728x90;tile=1;ord=1233777001524;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\Q253A1686Q257C66Q253A2Q257C65Q253A12Q257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_sacatZ20481QQ_trksidZp3286Q2ec0Q2em14QQ_sopZ7QQ_scZ1[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\rucks;cat=9800;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=63732;items=325;sz=728x90;tile=1;ord=1233777083930;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\0QQQ5ftrkparmsZ66Q253A2Q257C65Q253A7Q257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=146;sz=160x600;tile=3;ord=1233775935499;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ25QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1] not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=16606;sz=728x90;tile=1;ord=1233775784370;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776539805;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776304465;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1137;sz=728x90;tile=1;ord=1233776061360;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\at=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=1;sz=728x90;tile=1;ord=1233775837531;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\iteWideConditionZNew13180QQBrand3d75b67ZSonyEricssoneb18661fQQ_catrefZ1QQ_dmptZUKQ5fMobilePhonesQ5fMobilePhonesQQ_flnZ1QQ_sacatZ3312QQ_ssovZ1QQ_trksidZp3286Q2ec0Q2em282[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\t=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=1;sz=160x600;tile=3;ord=1233775837531;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\ucks;cat=9800;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=63732;items=325;sz=160x600;tile=3;ord=1233777083930;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\w=scania+spares+and+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=728x90;tile=1;ord=1233777009639;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\w=scania+trucks;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=220;items=1596;sz=728x90;tile=1;ord=1233777049889;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\0LYJ8TAJ\makeplaylist.dll%3Fsid=6752202&pt=url&xdata=6D.xfE5hFQP5sy.qTP.dOw-17633104-1200276552&s=396500550&b=18fsofp1m07m2&wmp=10&ticket=a5bdd8d484f721fd7a3d9ea766aca7e5&zz=a[1].asx not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776268460;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776304465;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1137;sz=160x600;tile=3;ord=1233776061360;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=2423;sz=160x600;tile=3;ord=1233775792306;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=16606;sz=160x600;tile=3;ord=1233775784370;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776590313;[1].htm not found! File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\=scania+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=9800;items=201;sz=728x90;tile=1;ord=1233777020305;[1].htm not found! C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_001_ moved successfully. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_002_ moved successfully. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_003_ moved successfully. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_MAP_ moved successfully. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\urlclassifier3.sqlite moved successfully. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\XUL.mfl moved successfully. File\Folder C:\WINDOWS\temp\logishrd\LVPrcInj02.dll not found! File\Folder C:\WINDOWS\temp\Perflib_Perfdata_438.dat not found! Registry entries deleted on Reboot...
  2. Extras.txt scan: OTL Extras logfile created on: 05/10/2009 17:30:24 - Run 1 OTL by OldTimer - Version 3.0.18.4 Folder = C:\Documents and Settings\Pruthvesh\Desktop Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy 1023.22 Mb Total Physical Memory | 475.49 Mb Available Physical Memory | 46.47% Memory free 2.40 Gb Paging File | 1.96 Gb Available in Paging File | 81.43% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 275.08 Gb Total Space | 195.44 Gb Free Space | 71.05% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: ABC5C48A3F8841B Current User Name: Pruthvesh Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* File not found chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation) cmdfile [open] -- "%1" %* File not found comfile [open] -- "%1" %* File not found exefile [open] -- "%1" %* File not found htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation) piffile [open] -- "%1" %* File not found regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" File not found scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S File not found txtfile [edit] -- Reg Error: Key error. Directory [AddToPlaylistVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] "DisableMonitoring" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] "DisableMonitoring" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service "139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002 "8000:UDP" = 8000:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP) "8001:UDP" = 8001:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP) "8002:UDP" = 8002:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP) "8003:UDP" = 8003:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP) "8004:UDP" = 8004:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP) "8005:UDP" = 8005:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP) "8006:UDP" = 8006:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP) "8007:UDP" = 8007:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP) "8008:UDP" = 8008:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP) "8009:UDP" = 8009:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP) "5060:UDP" = 5060:UDP:*:Enabled:Express Talk Sip Incoming Calls (UDP) [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.) "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation) "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Messenger\msmsgs.exe" = C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger -- (Microsoft Corporation) "C:\StubInstaller.exe" = C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer -- (LimeWire) "C:\Documents and Settings\Pruthvesh\My Documents\Rosnayy\LimeWire\LimeWire.exe" = C:\Documents and Settings\Pruthvesh\My Documents\Rosnayy\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found "C:\Program Files\WhitePhone Personal\WhitePhonePersonal.exe" = C:\Program Files\WhitePhone Personal\WhitePhonePersonal.exe:*:Disabled:WhitePhone Personal Main Application -- File not found "C:\Program Files\BHO\uninstall.exe" = C:\Program Files\BHO\uninstall.exe:*:Enabled:BHO -- File not found "C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe" = C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe:*:Enabled:VoipDiscount -- File not found "C:\Program Files\Blubster\Blubster.exe" = C:\Program Files\Blubster\Blubster.exe:*:Enabled:Blubster -- File not found "C:\Program Files\Internet Explorer\IEXPLORE.EXE" = C:\Program Files\Internet Explorer\IEXPLORE.EXE:*:Disabled:Internet Explorer -- (Microsoft Corporation) "C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC) "C:\Program Files\InternetCalls.com\InternetCalls\InternetCalls.exe" = C:\Program Files\InternetCalls.com\InternetCalls\InternetCalls.exe:*:Enabled:InternetCalls -- File not found "C:\Program Files\VideoLAN\VLC\vlc.exe" = C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- () "C:\Documents and Settings\Pruthvesh\Application Data\SopCast\adv\SopAdver.exe" = C:\Documents and Settings\Pruthvesh\Application Data\SopCast\adv\SopAdver.exe:*:Disabled:SopCast Adver -- File not found "C:\Program Files\mIRC\mirc.exe" = C:\Program Files\mIRC\mirc.exe:*:Disabled:mIRC -- File not found "C:\Program Files\Yahoo! Games\Bejeweled 2 Deluxe\WinBej2.exe" = C:\Program Files\Yahoo! Games\Bejeweled 2 Deluxe\WinBej2.exe:*:Enabled:Bejeweled2 -- File not found "C:\Program Files\SopCast\SopCast.exe" = C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application -- (www.sopcast.com) "C:\Program Files\TVUPlayer\TVUPlayer.exe" = C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component -- (TVU networks) "C:\Program Files\SopCast\adv\SopAdver.exe" = C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (www.sopcast.com) "C:\Program Files\TVAnts\Tvants.exe" = C:\Program Files\TVAnts\Tvants.exe:*:Enabled:TVAnts -- File not found "C:\Program Files\BitDownload\BitDownload.exe" = C:\Program Files\BitDownload\BitDownload.exe:*:Enabled:Warez3 -- File not found "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" = C:\Program Files\Veoh Networks\Veoh\VeohClient.exe:*:Disabled:Veoh Client -- File not found "C:\Program Files\IncrediMail\bin\ImApp.exe" = C:\Program Files\IncrediMail\bin\ImApp.exe:*:Enabled:IncrediMail -- File not found "C:\Program Files\IncrediMail\bin\IncMail.exe" = C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail -- File not found "C:\Program Files\IncrediMail\bin\ImpCnt.exe" = C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail -- File not found "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.) "C:\Program Files\Java\jre1.6.0_05\bin\javaw.exe" = C:\Program Files\Java\jre1.6.0_05\bin\javaw.exe:*:Disabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows -- File not found "C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe" = C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe:*:Enabled:Sony Ericsson Media Manager 1.1 -- (Sony Creative Software Inc.) "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe" = C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\WINDOWS\system32\rtcshare.exe" = C:\WINDOWS\system32\rtcshare.exe:*:Disabled:RTC App Sharing -- (Microsoft Corporation) "C:\Program Files\NetMeeting\conf.exe" = C:\Program Files\NetMeeting\conf.exe:*:Enabled:Windows® NetMeeting® -- (Microsoft Corporation) "C:\Program Files\AVG\AVG8\avgemc.exe" = C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\AVG\AVG8\avgupd.exe" = C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Disabled:Firefox -- (Mozilla Corporation) "C:\Program Files\AVG\AVG8\avgnsx.exe" = C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\Kontiki\KService.exe" = C:\Program Files\Kontiki\KService.exe:*:Enabled:Delivery Manager Service -- (Kontiki Inc.) "C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- File not found "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation) "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation) "C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{06A940CD-4924-485E-8500-476C9E08A820}" = Samsung PC Studio 3 "{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour "{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support "{139E303E-1050-497F-98B1-9AE87B15C463}" = Windows Live Family Safety "{15AC0C5D-A6FB-4CE2-8CD0-28179EEB5625}" = Nokia Connectivity Cable Driver "{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer "{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate "{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR "{1CB92574-96F2-467B-B793-5CEB35C40C29}" = Image Resizer Powertoy for Windows XP "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool "{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86 "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{23B59ED4-C360-11D7-875B-0090CC005647}" = EPSON PRINT Image Framer Tool2.1 "{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2 "{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 15 "{2FD177C0-A752-11DC-8314-0800200C9A66}" = Windows Live SkyDrive Upload Tool "{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 4.010.00 "{3248F0A8-6813-11D6-A77B-00B0D0150100}" = J2SE Runtime Environment 5.0 Update 10 "{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1 "{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3 "{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5 "{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7 "{341201D4-4F61-4ADB-987E-9CCE4D83A58D}" = Windows Live Toolbar Extension (Windows Live Toolbar) "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform "{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant "{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack "{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3 "{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}" = Nokia PC Suite "{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver "{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail "{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup "{65F5B7AF-3363-11D7-BB6B-00018021113F}" = EPSON PhotoQuicker3.5 "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762 "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{7745B7A9-F323-4BB9-9811-01BF57A028DA}" = Map Button (Windows Live Toolbar) "{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}" = Windows Live Favorites for Windows Live Toolbar "{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec "{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page "{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials "{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86) "{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player "{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules "{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger "{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system "{937B232D-9776-471E-92BD-D424E514EF14}" = Logitech QuickCam "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime "{A5C4AD72-25FE-4899-B6DF-6D8DF63C93CF}" = Highlight Viewer (Windows Live Toolbar) "{A654A805-41D9-40C7-AA46-4AF04F044D61}" = Adobe® Photoshop® Album Starter Edition 3.2 "{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support "{AC76BA86-7AD7-1033-7B44-A81300000003}" = Adobe Reader 8.1.3 "{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter "{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup "{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player "{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86) "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3 "{CC016F21-3970-11DE-B878-005056806466}" = Google Earth "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}" = getPlus(R) for Adobe "{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery "{D848D140-41C3-4A53-86D8-E866A100B4CD}" = PC Connectivity Solution "{DA34FE93-5DC5-48E0-ACC8-A5389E05BB51}" = iTunes "{DE5BFF9C-84D1-4B09-9C20-54633044CB85}" = Watchtower Library 2008 - English "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update "{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer "{EE217F71-2546-4E9C-825F-DBBCAA9E9777}" = Sony Ericsson Media Manager 1.1 "{F084395C-40FB-4DB3-981C-B51E74E1E83D}" = Smart Menus (Windows Live Toolbar) "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729) "{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01 "{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "504244733D18C8F63FF584AEB290E3904E791693" = Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) "5986551A16FD8E9B1B4C89E7AAD17C1BB3196D28" = Windows Driver Package - Nokia Modem (10/27/2008 7.01.0.1) "6D296974BAB6CA8429D5E687B292A6DA3E9FBD4A" = Windows Driver Package - Nokia Modem (10/27/2008 3.9) "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11 "Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2 "Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings "Adobe® Photoshop® Album Starter Edition 3.2" = Adobe® Photoshop® Album Starter Edition 3.2 "Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE "a-squared Free_is1" = a-squared Free 4.5 "a-squared HiJackFree_is1" = a-squared HiJackFree 3.1 "avast!" = avast! Antivirus "AVG8Uninstall" = AVG 8.5 "CCleaner" = CCleaner (remove only) "Coupon Printer2.0" = Coupon Printer "Driving Test Success All Tests_is1" = Driving Test Success 2006/7 "DVD Flick_is1" = DVD Flick "DVD Photo Slideshow Professional" = DVD Photo Slideshow Pro 7.97 "Easy MPEG AVI DIVX WMV RM to DVD_is1" = Easy MPEG/AVI/DIVX/WMV/RM to DVD 1.5.1 "EPSON Printer and Utilities" = EPSON Printer Software "ESC66 Reference Guide" = ESC66 Reference Guide "ESC66 Software Guide" = ESC66 Software Guide "getPlus(R)_ocx" = getPlus(R)_ocx "Google Updater" = Google Updater "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs "ie7" = Windows Internet Explorer 7 "ie8" = Windows Internet Explorer 8 "IObit Security 360_is1" = IObit Security 360 1.0 "JL2005A Camera_is1" = Uninstall JL2005A Camera "legacyqcam_10.51" = Logitech Legacy USB Camera Driver Package "LimeWire" = LimeWire 5.2.13 "lvdrivers_11.90" = Logitech QuickCam Driver Package "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Messenger Plus! Live" = Messenger Plus! Live "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox (3.5.3)" = Mozilla Firefox (3.5.3) "MP3 Rocket" = MP3 Rocket "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "MSNINST" = MSN "Naevius GVI Converter_is1" = Naevius GVI Converter 1.4 "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs "Nokia PC Suite" = Nokia PC Suite "OnlineArmor_is1" = Online Armor 3.5 "RealPlayer 12.0" = RealPlayer "Revo Uninstaller" = Revo Uninstaller 1.83 "RileysGAMES_is1" = RileysGAMES 1.0 "SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software "SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set "Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software "SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software "SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software "Service Record" = Service Record "SopCast" = SopCast 3.0.3 "teammanager2005_is1" = Uninstall "TomTom HOME" = TomTom HOME 2.6.3.1609 "TVUPlayer" = TVUPlayer 2.4.5.3 "Uninstall_is1" = Uninstall 1.0.0.1 "Update Service" = Update Service "VIA Vinyl Audio Codecs Driver Setup Program" = VIA Vinyl Audio Codecs Driver Setup Program "VLC media player" = VideoLAN VLC media player 0.8.6 "Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 "Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 "WIC" = Windows Imaging Component "Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Windows Media Player 11 "Windows XP Service Pack" = Windows XP Service Pack 3 "WinLiveSuite_Wave3" = Windows Live Essentials "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "WMV9_VCM" = Microsoft Windows Media Video 9 VCM "Wudf01005" = Microsoft User-Mode Driver Framework Feature Pack 1.5 "YouTube Downloader App" = YouTube Downloader App 1.01 [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Antivirus Events ] Error - 23/09/2009 14:52:14 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe failed, 00000005. Error - 23/09/2009 15:00:38 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\RECYCLER\S-1-5-21-73586283-842925246-839522115-500\Dc14.exe failed, 00000005. Error - 23/09/2009 15:08:00 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Program Files\Alwil Software\Avast4\ashAvast.exe failed, 00000005. Error - 23/09/2009 15:45:11 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe failed, 00000005. Error - 24/09/2009 06:53:50 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe failed, 00000005. Error - 24/09/2009 12:16:05 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe failed, 00000005. Error - 24/09/2009 12:21:49 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\RECYCLER\S-1-5-21-73586283-842925246-839522115-500\Dc14.exe failed, 00000005. Error - 24/09/2009 12:27:37 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Program Files\Alwil Software\Avast4\ashAvast.exe failed, 00000005. Error - 24/09/2009 12:28:42 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe failed, 00000005. Error - 24/09/2009 12:59:45 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe failed, 00000005. [ Application Events ] Error - 02/10/2009 11:18:29 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080 Description = Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved Error - 02/10/2009 11:18:29 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080 Description = Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist. Error - 03/10/2009 10:01:44 | Computer Name = ABC5C48A3F8841B | Source = Windows Live Messenger | ID = 5000 Description = Error - 04/10/2009 04:36:22 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080 Description = Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved Error - 04/10/2009 04:36:23 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080 Description = Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist. Error - 04/10/2009 04:54:59 | Computer Name = ABC5C48A3F8841B | Source = Application Hang | ID = 1002 Description = Hanging application iTunes.exe, version 9.0.1.8, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Error - 04/10/2009 13:19:30 | Computer Name = ABC5C48A3F8841B | Source = Microsoft Office 11 | ID = 1000 Description = Faulting application winword.exe, version 11.0.8307.0, stamp 49ee835a, faulting module unknown, version 0.0.0.0, stamp 00000000, debug? 0, fault address 0x01b7fd4d. Error - 04/10/2009 13:20:15 | Computer Name = ABC5C48A3F8841B | Source = Application Hang | ID = 1002 Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Error - 04/10/2009 17:51:31 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080 Description = Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved Error - 04/10/2009 17:51:32 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080 Description = Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist. [ System Events ] Error - 03/10/2009 13:57:51 | Computer Name = ABC5C48A3F8841B | Source = Schannel | ID = 36881 Description = The certificate received from the remote server has expired. The SSL connection request has failed. The attached data contains the server certificate. Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000 Description = The Online Armor service failed to start due to the following error: %%5 Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000 Description = The Lavasoft Ad-Aware Service service failed to start due to the following error: %%5 Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000 Description = The avast! Antivirus service failed to start due to the following error: %%5 Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7001 Description = The Network DDE service depends on the Network DDE DSDM service which failed to start because of the following error: %%1058 Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000 Description = The Parallel port driver service failed to start due to the following error: %%1058 Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000 Description = The adfs service failed to start due to the following error: %%2 Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000 Description = The Bonjour Service service failed to start due to the following error: %%2 Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000 Description = The SeaPort service failed to start due to the following error: %%2 Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7023 Description = The Automatic Updates service terminated with the following error: %%126 < End of report > OTL.txt scan: OTL logfile created on: 05/10/2009 17:30:24 - Run 1 OTL by OldTimer - Version 3.0.18.4 Folder = C:\Documents and Settings\Pruthvesh\Desktop Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy 1023.22 Mb Total Physical Memory | 475.49 Mb Available Physical Memory | 46.47% Memory free 2.40 Gb Paging File | 1.96 Gb Available in Paging File | 81.43% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 275.08 Gb Total Space | 195.44 Gb Free Space | 71.05% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: ABC5C48A3F8841B Current User Name: Pruthvesh Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - C:\Program Files\Tall Emu\Online Armor\OAcat.exe (Tall Emu) PRC - C:\WINDOWS\Explorer.EXE (Microsoft Corporation) PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software) PRC - C:\Program Files\Google\Update\1.2.183.7\GoogleCrashHandler.exe (Google Inc.) PRC - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE (SEIKO EPSON CORPORATION) PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) PRC - C:\Program Files\VIAudioi\SBADeck\ADeck.exe (VIA Technologies, Inc.) PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) PRC - C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Program Files\Logitech\QuickCam\Quickcam.exe () PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.) PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) PRC - C:\Documents and Settings\Pruthvesh\My Documents\Amal\Sony Ericsson PC Suite\SEPCSuite.exe (Sony Ericsson Mobile Communications AB) PRC - C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation) PRC - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.) PRC - C:\Program Files\a-squared Free\a2service.exe (Emsi Software GmbH) PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.) PRC - C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe () PRC - C:\Program Files\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Program Files\IObit\IObit Security 360\IS360srv.exe (IObit) PRC - C:\Program Files\AVG\AVG8\avgrsx.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Program Files\AVG\AVG8\avgnsx.exe (AVG Technologies CZ, s.r.o.) PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.) PRC - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.) PRC - C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation) PRC - C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.) PRC - C:\Documents and Settings\Pruthvesh\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Documents and Settings\Pruthvesh\Desktop\OTL.exe (OldTimer Tools) [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - (a2free [Auto | Running]) -- C:\Program Files\a-squared Free\a2service.exe (Emsi Software GmbH) SRV - (Apple Mobile Device [Auto | Running]) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.) SRV - (aspnet_state [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation) SRV - (aswUpdSv [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software) SRV - (avast! Antivirus [Auto | Stopped]) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe () SRV - (avast! Mail Scanner [On_Demand | Stopped]) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software) SRV - (avast! Web Scanner [On_Demand | Stopped]) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software) SRV - (avg8emc [Auto | Stopped]) -- C:\Program Files\AVG\AVG8\avgemc.exe (AVG Technologies CZ, s.r.o.) SRV - (avg8wd [Auto | Running]) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.) SRV - (Bonjour Service [Auto | Stopped]) -- File not found SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) SRV - (fsssvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation) SRV - (getPlus(R) Helper [On_Demand | Stopped]) -- C:\Program Files\NOS\bin\getPlus_HelperSvc.exe (NOS Microsystems Ltd.) SRV - (gupdate1ca104710ccd624 [Auto | Stopped]) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.) SRV - (gusvc [Auto | Stopped]) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (Google) SRV - (helpsvc [Auto | Running]) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation) SRV - (IDriverT [On_Demand | Stopped]) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation) SRV - (idsvc [unknown | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation) SRV - (iPod Service [On_Demand | Running]) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.) SRV - (IS360service [Auto | Running]) -- C:\Program Files\IObit\IObit Security 360\IS360srv.exe (IObit) SRV - (JavaQuickStarterService [Auto | Running]) -- C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.) SRV - (Lavasoft Ad-Aware Service [Auto | Stopped]) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe () SRV - (LVPrcSrv [Auto | Running]) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.) SRV - (NetTcpPortSharing [Disabled | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation) SRV - (NwSapAgent [Auto | Running]) -- C:\WINDOWS\System32\ipxsap.dll (Microsoft Corporation) SRV - (OAcat [Auto | Running]) -- C:\Program Files\Tall Emu\Online Armor\OAcat.exe (Tall Emu) SRV - (ose [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation) SRV - (SeaPort [Auto | Stopped]) -- File not found SRV - (ServiceLayer [On_Demand | Stopped]) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.) SRV - (SvcOnlineArmor [Auto | Stopped]) -- C:\Program Files\Tall Emu\Online Armor\oasrv.exe () SRV - (TomTomHOMEService [Disabled | Stopped]) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom) SRV - (WMPNetworkSvc [On_Demand | Running]) -- C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - (a016bus [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\a016bus.sys (MCCI Corporation) DRV - (a016mdfl [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\a016mdfl.sys (MCCI Corporation) DRV - (a016mdm [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\a016mdm.sys (MCCI Corporation) DRV - (a016mgmt [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\a016mgmt.sys (MCCI Corporation) DRV - (a016obex [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\a016obex.sys (MCCI Corporation) DRV - (Aavmker4 [system | Running]) -- C:\WINDOWS\System32\drivers\aavmker4.sys (ALWIL Software) DRV - (ALCXSENS [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\ALCXSENS.SYS (Sensaura) DRV - (ALCXWDM [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.) DRV - (aswFsBlk [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\aswFsBlk.sys (ALWIL Software) DRV - (aswMon2 [Auto | Running]) -- C:\WINDOWS\System32\drivers\aswmon2.sys (ALWIL Software) DRV - (aswRdr [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\aswRdr.sys (ALWIL Software) DRV - (aswSP [system | Running]) -- C:\WINDOWS\System32\drivers\aswSP.sys (ALWIL Software) DRV - (aswTdi [system | Running]) -- C:\WINDOWS\System32\drivers\aswTdi.sys (ALWIL Software) DRV - (AvgLdx86 [system | Running]) -- C:\WINDOWS\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgMfx86 [system | Running]) -- C:\WINDOWS\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.) DRV - (AvgTdiX [system | Running]) -- C:\WINDOWS\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.) DRV - (fasttx2k [boot | Running]) -- C:\WINDOWS\system32\DRIVERS\fasttx2k.sys (Promise Technology, Inc.) DRV - (fssfltr [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\fssfltr_tdi.sys (Microsoft Corporation) DRV - (GEARAspiWDM [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys (GEAR Software Inc.) DRV - (ggflt [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\ggflt.sys (Sony Ericsson Mobile Communications) DRV - (ggsemc [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\ggsemc.sys (Sony Ericsson Mobile Communications) DRV - (HSFHWBS2 [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\HSFBS2S2.sys (Conexant Systems, Inc.) DRV - (HSF_DP [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\HSFDPSP2.sys (Conexant Systems, Inc.) DRV - (JL2005 [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\toywdm.sys (Windows (R) 2000 DDK provider) DRV - (LVPr2Mon [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\LVPr2Mon.sys () DRV - (LVUSBSta [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\LVUSBSta.sys (Logitech Inc.) DRV - (mdmxsdk [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys (Conexant) DRV - (nmwcd [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\ccdcmb.sys (Nokia) DRV - (nmwcdc [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys (Nokia) DRV - (nv [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys (NVIDIA Corporation) DRV - (NwlnkIpx [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys (Microsoft Corporation) DRV - (NwlnkNb [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\nwlnknb.sys (Microsoft Corporation) DRV - (NwlnkSpx [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys (Microsoft Corporation) DRV - (OADevice [system | Running]) -- C:\WINDOWS\System32\drivers\OADriver.sys (Tall Emu) DRV - (OAmon [system | Running]) -- C:\WINDOWS\System32\drivers\OAmon.sys (Tall Emu) DRV - (OAnet [system | Running]) -- C:\WINDOWS\System32\drivers\OAnet.sys (Tall Emu Pty Ltd) DRV - (pccsmcfd [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\pccsmcfd.sys (Nokia) DRV - (pepifilter [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\lv302af.sys (Logitech Inc.) DRV - (PID_PEPI [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\LV302V32.SYS (Logitech Inc.) DRV - (Ptilink [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.) DRV - (PxHelp20 [boot | Running]) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions) DRV - (ROOTMODEM [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\RootMdm.sys (Microsoft Corporation) DRV - (RT2500 [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\RT2500.sys (Ralink Technology Inc.) DRV - (Secdrv [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) DRV - (SONYPVU1 [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\SONYPVU1.SYS (Sony Corporation) DRV - (sscdbus [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\sscdbus.sys (MCCI Corporation) DRV - (sscdmdfl [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\sscdmdfl.sys (MCCI Corporation) DRV - (sscdmdm [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\sscdmdm.sys (MCCI Corporation) DRV - (StarOpen [system | Running]) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (upperdev [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys (Windows (R) Codename Longhorn DDK provider) DRV - (USBAAPL [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\usbaapl.sys (Apple, Inc.) DRV - (usbaudio [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\usbaudio.sys (Microsoft Corporation) DRV - (usbcm [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\usbcm.sys (Microsystems Corp) DRV - (usbser [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\usbser.sys (Microsoft Corporation) DRV - (UsbserFilt [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\usbser_lowerfltj.sys (Windows (R) Codename Longhorn DDK provider) DRV - (viasraid [boot | Running]) -- C:\WINDOWS\system32\DRIVERS\viasraid.sys (VIA Technologies inc,.ltd) DRV - (VIAudio [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\ac97via.sys (VIA Technologies, Inc.) DRV - (winachsf [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\HSFCXTS2.sys (Conexant Systems, Inc.) DRV - (yukonwxp [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\yk51x86.sys (Marvell) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Local Page = http://www.google.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,AutoSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/saautosearch.aspx IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm IE - HKCU\..\URLSearchHook: *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Ask" FF - prefs.js..browser.search.order.1: "Ask" FF - prefs.js..browser.search.selectedEngine: "Ask" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.google.co.uk/" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1 FF - prefs.js..extensions.enabledItems: {CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}:1.5.2.35 FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5 FF - prefs.js..extensions.enabledItems: [email protected]:2.507.024.001 FF - prefs.js..extensions.enabledItems: [email protected]:1.19 FF - prefs.js..extensions.enabledItems: [email protected]:0.20 FF - prefs.js..extensions.enabledItems: [email protected]:2.1 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15 FF - prefs.js..extensions.enabledItems: [email protected]:1.0 FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1 FF - prefs.js..extensions.enabledItems: [email protected]:2 FF - prefs.js..extensions.enabledItems: 4 FF - prefs.js..extensions.enabledItems: 8 FF - prefs.js..extensions.enabledItems: 2 FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3 FF - prefs.js..keyword.URL: "http://toolbar.ask.com/toolbarv/askRedirect?o=13116&gct=&gc=1&q=" FF - HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users.WINDOWS\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2008/11/11 18:58:32 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009/06/25 09:44:48 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2009/01/22 20:22:36 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVG\AVG8\Toolbar\Firefox\[email protected] [2009/08/27 18:11:44 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/09/02 00:39:47 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009/01/28 00:09:35 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord\firefox\ext [2009/10/03 18:38:57 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/10/03 18:38:48 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/10/03 18:39:05 | 00,000,000 | ---D | M] [2009/06/05 11:25:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Extensions [2008/11/11 22:21:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2009/06/05 11:25:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Extensions\[email protected] [2009/03/18 17:34:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Extensions\[email protected] [2009/10/05 17:02:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions [2009/09/02 09:19:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2008/11/30 00:48:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2008/12/29 20:40:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7} [2009/09/11 17:10:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2009/08/16 19:02:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\[email protected] [2009/07/28 22:13:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\[email protected] [2009/09/18 18:45:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\[email protected] [2009/08/12 14:28:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\[email protected] [2009/08/12 14:28:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\[email protected] [2008/12/13 10:56:36 | 00,000,681 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Application Data\Mozilla\FireFox\Profiles\49ux4nk6.default\searchplugins\ask.xml [2009/10/05 17:02:46 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions [2009/07/02 22:19:05 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2009/09/10 15:29:35 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2007/05/28 09:21:47 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} [2008/09/27 22:41:21 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [2009/01/28 00:09:59 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2009/04/20 15:51:45 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} [2009/08/26 10:57:58 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [2009/09/10 15:29:26 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll [2009/09/10 15:29:26 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll [2009/05/01 22:02:48 | 01,044,480 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\libdivx.dll [2009/01/16 18:11:10 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll [2008/06/18 06:43:04 | 00,086,016 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll [2009/07/25 05:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll [2009/05/12 19:46:20 | 01,650,992 | ---- | M] (DivX,Inc.) -- C:\Program Files\mozilla firefox\plugins\npdivx32.dll [2008/07/23 17:47:46 | 00,098,304 | ---- | M] (DivX, Inc) -- C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll [2009/09/10 15:29:30 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll [2007/03/22 19:23:30 | 00,017,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2008/10/14 21:33:30 | 00,095,600 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2009/10/03 18:38:48 | 00,140,864 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2009/10/03 18:39:05 | 00,008,192 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprjplug.dll [2009/10/03 18:38:40 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll [2008/12/01 12:01:02 | 00,114,540 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\mozilla firefox\plugins\np_gp.dll [2009/05/01 22:02:48 | 00,200,704 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\ssldivx.dll [2009/06/24 13:14:16 | 00,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml [2009/06/24 13:14:16 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml [2009/07/02 22:37:47 | 00,001,497 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml [2009/06/24 13:14:16 | 00,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml [2009/06/24 13:14:16 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml [2009/06/24 13:14:16 | 00,000,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml [2009/06/24 13:14:16 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml [2009/06/24 13:14:16 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml [2009/06/24 13:14:16 | 00,000,831 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml O1 HOSTS File: (734 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll () O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll (Google Inc.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll (Google Inc.) O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll () O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKCU\..\Toolbar\ShellBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll (Google Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll (Google Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [@OnlineArmor GUI] C:\Program Files\Tall Emu\Online Armor\oaui.exe () O4 - HKLM..\Run: [Adobe Photo Downloader] C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe File not found O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe (VIA Technologies, Inc.) O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [EPSON Stylus C66 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.) O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe () O4 - HKLM..\Run: [Ptipbmf] C:\WINDOWS\System32\ptipbmf.DLL (Promise Technology, Inc.) O4 - HKLM..\Run: [QuickTime Task] C:\Documents and Settings\Pruthvesh\My Documents\Amal\qttask.exe (Apple Inc.) O4 - HKLM..\Run: [soundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe File not found O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [blazeServoTool] C:\Program Files\BlazeVideo\BlazeDVD4 Professional\MediaDetector.exe File not found O4 - HKCU..\Run: [PopRock] C:\DOCUME~1\PRUTHV~1\LOCALS~1\Temp\a.exe File not found O4 - HKCU..\Run: [sony Ericsson PC Suite] C:\Documents and Settings\Pruthvesh\My Documents\Amal\Sony Ericsson PC Suite\SEPCSuite.exe (Sony Ericsson Mobile Communications AB) O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup\Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.) O4 - Startup: C:\Documents and Settings\Pruthvesh\Start Menu\Programs\Startup\Ubisoft register.lnk = C:\Program Files\Ubisoft\Register\schedule.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0 O8 - Extra context menu item: Add to Windows &Live Favorites - File not found O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation) O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation) O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5 Control) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class) O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab (Minesweeper Flags Class) O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} http://dl.tvunetworks.com/TVUAx.cab (CTVUAxCtrl Object) O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://www1.snapfish.co.uk/SnapfishUKActivia.cab (Snapfish Activia) O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.1.cab (DLM Control) O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab (MSN Photo Upload Tool) O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/EN-GB/a-UNO1/GAME_UNO1.cab (UnoCtrl Class) O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} http://upload.facebook.com/controls/FacebookPhotoUploader.cab (Facebook Photo Uploader Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab (MessengerStatsClient Class) O16 - DPF: {A903E5AB-C67E-40FB-94F1-E1305982F6E0} http://www.ooxtv.com/stream.ocx (KooPlayer Control) O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class) O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab (NsvPlayX Control) O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} http://static.photobox.co.uk/sg/common/uploader_uni.cab (PB_Uploader Class) O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} http://www.adobe.com/products/acrobat/nos/gp.cab (get_atlcom Class) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.168.4.100 194.168.8.100 O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp - No CLSID value found O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Value error. File not found O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O24 - Desktop Components:0 (My Current Home Page) - About:Home O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2004/08/21 15:58:17 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{e63863ab-51ab-11de-8258-000e9b7319a3}\Shell\AutoRun\command - "" = E:\InstallTomTomHOME.exe -- File not found O34 - HKLM BootExecute: (autocheck) - File not found O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation) O34 - HKLM BootExecute: (*) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\4iv78lwekw\gd) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\4iv78lwekw\gg\2046-0.grp2) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\4iv78lwekw\gg) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\4iv78lwekw\gg) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\4iv78lwekw) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\Data) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\DownloadTemp\accum) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\DownloadTemp) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\DownloadTemp\accum) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\scripts) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT\scripts) - File not found O34 - HKLM BootExecute: (PFDNNT) - File not found O34 - HKLM BootExecute: (C:\Program) - File not found O34 - HKLM BootExecute: (Files\Common) - File not found O34 - HKLM BootExecute: (Files\GMT) - File not found O35 - comfile [open] -- "%1" %* File not found O35 - exefile [open] -- "%1" %* File not found [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [5 C:\WINDOWS\*.tmp files] [2009/10/02 12:22:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD} [2009/09/23 18:29:27 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{EF63305C-BAD7-4144-9208-D65528260864} [2009/09/23 19:56:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IObit [2009/09/22 21:52:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Lavasoft [2009/10/02 17:17:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Messenger Plus! [2009/09/28 17:53:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\OnlineArmor [2009/10/03 18:37:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Real [2009/09/28 17:53:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pruthvesh\Application Data\OnlineArmor [3 C:\Documents and Settings\Pruthvesh\My Documents\*.tmp files] [2009/09/28 17:52:11 | 00,000,000 | ---D | C] -- C:\Program Files\a-squared Free [2009/09/29 14:22:08 | 00,000,000 | ---D | C] -- C:\Program Files\a-squared HiJackFree [2009/09/23 19:56:31 | 00,000,000 | ---D | C] -- C:\Program Files\IObit [2009/10/02 12:22:56 | 00,000,000 | ---D | C] -- C:\Program Files\iPod [2009/10/02 12:22:53 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes [2009/09/23 18:29:02 | 00,000,000 | ---D | C] -- C:\Program Files\Lavasoft [2009/10/02 15:57:10 | 00,000,000 | ---D | C] -- C:\Program Files\Messenger Plus! Live [2009/09/24 10:58:22 | 00,000,000 | ---D | C] -- C:\Program Files\MSECache [2009/09/28 17:53:10 | 00,000,000 | ---D | C] -- C:\Program Files\Tall Emu [2009/09/23 15:52:52 | 00,000,000 | ---D | C] -- C:\Program Files\VS Revo Group [2009/10/05 17:28:55 | 00,520,704 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Pruthvesh\Desktop\OTL.exe [2009/10/04 22:50:50 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF6269.exe [2009/10/04 22:50:50 | 00,000,000 | --SD | C] -- C:\ComboFix [2009/10/04 22:49:26 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF26072.exe [2009/10/04 09:35:37 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF22827.exe [2009/10/02 17:51:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pruthvesh\My Documents\My Chat Logs [2009/10/02 16:15:33 | 00,000,000 | RHSD | C] -- C:\cmdcons [2009/10/02 16:13:57 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2009/10/02 16:13:57 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2009/10/02 16:13:57 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2009/10/02 16:13:57 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2009/10/02 16:13:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2009/10/02 16:13:47 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF19906.exe [2009/10/02 16:12:16 | 00,000,000 | ---D | C] -- C:\Qoobox [2009/10/02 12:19:32 | 00,000,000 | -HSD | C] -- C:\Config.Msi [2009/09/29 14:21:29 | 00,000,000 | ---D | C] -- C:\ISeeYouXP [2009/09/29 14:13:57 | 00,000,000 | ---D | C] -- C:\Avenger [2009/09/28 17:53:11 | 00,200,784 | ---- | C] (Tall Emu) -- C:\WINDOWS\System32\drivers\OADriver.sys [2009/09/28 17:53:11 | 00,029,776 | ---- | C] (Tall Emu Pty Ltd) -- C:\WINDOWS\System32\drivers\OAnet.sys [2009/09/28 17:53:11 | 00,024,656 | ---- | C] (Tall Emu) -- C:\WINDOWS\System32\drivers\OAmon.sys [2009/09/28 17:52:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pruthvesh\My Documents\a-squared Free [2009/09/09 09:11:18 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\triedit.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [5 C:\WINDOWS\System32\*.tmp files] [5 C:\WINDOWS\*.tmp files] [3 C:\Documents and Settings\Pruthvesh\My Documents\*.tmp files] [2010/03/23 20:31:24 | 00,000,430 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{07705FFE-3105-4962-9ABA-E311624B1569}.job [2009/10/05 17:29:08 | 00,520,704 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Pruthvesh\Desktop\OTL.exe [2009/10/05 17:00:00 | 00,000,292 | -H-- | M] () -- C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job [2009/10/05 17:00:00 | 00,000,248 | -H-- | M] () -- C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job [2009/10/05 16:57:23 | 00,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job [2009/10/05 16:53:13 | 00,000,000 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\prvlcl.dat [2009/10/05 16:47:34 | 00,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2009/10/05 16:46:37 | 00,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2009/10/05 16:46:36 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2009/10/05 16:46:29 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2009/10/04 22:50:39 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF6269.exe [2009/10/04 22:50:27 | 03,325,144 | R--- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\ComboFix.exe [2009/10/04 22:46:40 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF26072.exe [2009/10/04 22:40:00 | 00,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2009/10/04 19:21:25 | 42,259,529 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm [2009/10/04 09:31:59 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF22827.exe [2009/10/03 18:58:16 | 00,003,913 | ---- | M] () -- C:\WINDOWS\cdplayer.ini [2009/10/03 18:38:48 | 00,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2009/10/03 18:38:35 | 00,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2009/10/03 18:38:35 | 00,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2009/10/03 18:37:57 | 00,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2009/10/02 22:58:58 | 00,071,652 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat [2009/10/02 16:15:44 | 00,000,281 | RHS- | M] () -- C:\boot.ini [2009/10/02 16:12:13 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF19906.exe [2009/10/02 11:48:14 | 00,000,132 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\files.bat [2009/10/02 11:38:24 | 00,004,566 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg [2009/10/02 07:35:05 | 00,000,000 | ---- | M] () -- C:\WINDOWS\win32k.sys [2009/10/01 16:38:21 | 00,492,629 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg [2009/09/30 20:18:00 | 00,000,354 | ---- | M] () -- C:\WINDOWS\tasks\Norton PC Checkup Weekday Scanner.job [2009/09/30 18:31:01 | 00,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job [2009/09/29 14:49:07 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2009/09/28 21:52:28 | 00,002,495 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\Microsoft Office Excel 2003.lnk [2009/09/28 20:04:29 | 00,002,497 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\Microsoft Office Word 2003.lnk [2009/09/28 20:02:54 | 00,049,411 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\Visaform-19thFeb08.pdf [2009/09/28 17:53:41 | 00,000,044 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.idx [2009/09/28 17:53:23 | 00,429,288 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2009/09/28 17:53:23 | 00,066,238 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2009/09/25 17:49:22 | 00,025,088 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\My Documents\Dear suresh uncle and madhu aunty.doc [2009/09/24 18:24:58 | 00,512,960 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2009/09/23 18:29:26 | 00,000,874 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Ad-Aware.lnk [2009/09/23 15:52:56 | 00,000,924 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\Revo Uninstaller.lnk [2009/09/22 22:24:00 | 00,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2009/09/20 12:30:00 | 00,000,354 | ---- | M] () -- C:\WINDOWS\tasks\Norton PC Checkup Weekend Scanner.job [2009/09/14 02:12:36 | 00,229,888 | ---- | M] () -- C:\WINDOWS\PEV.exe [color=#E56717]========== Files - No Company Name ==========[/color] [2009/10/04 09:30:13 | 03,325,144 | R--- | C] () -- C:\Documents and Settings\Pruthvesh\Desktop\ComboFix.exe [2009/10/02 16:15:38 | 00,260,272 | ---- | C] () -- C:\cmldr [2009/10/02 16:13:57 | 00,229,888 | ---- | C] () -- C:\WINDOWS\PEV.exe [2009/10/02 16:13:57 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2009/10/02 16:13:57 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2009/10/02 16:13:57 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2009/10/02 11:48:14 | 00,000,132 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Desktop\files.bat [2009/09/28 20:02:54 | 00,049,411 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Desktop\Visaform-19thFeb08.pdf [2009/09/27 21:00:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\win32k.sys [2009/09/25 21:48:38 | 00,000,248 | -H-- | C] () -- C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job [2009/09/25 21:48:28 | 00,000,292 | -H-- | C] () -- C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job [2009/09/25 17:43:40 | 00,025,088 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\My Documents\Dear suresh uncle and madhu aunty.doc [2009/09/23 18:29:26 | 00,000,874 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Ad-Aware.lnk [2009/09/23 15:52:56 | 00,000,924 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Desktop\Revo Uninstaller.lnk [2009/09/22 21:53:04 | 00,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job [2009/08/27 19:13:19 | 00,000,031 | -H-- | C] () -- C:\WINDOWS\UKCpInfo.sys [2009/05/29 17:28:00 | 00,003,913 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2009/02/26 17:50:28 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\prvlcl.dat [2008/12/16 22:58:54 | 00,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys [2008/12/16 22:50:56 | 00,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLgFT.dll [2008/12/02 19:01:36 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\LauncherAccess.dt [2008/12/02 18:59:14 | 00,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2008/07/23 17:50:52 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008/07/23 17:47:34 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest [2008/07/23 17:47:34 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest [2008/07/23 17:46:38 | 00,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll [2008/06/21 10:53:16 | 00,050,127 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2007/11/05 12:23:33 | 00,069,632 | ---- | C] () -- C:\WINDOWS\System32\xmltok.dll [2007/11/05 12:23:33 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\xmlparse.dll [2007/05/05 16:24:23 | 00,000,520 | ---- | C] () -- C:\WINDOWS\netdet.ini [2007/04/08 17:54:44 | 00,000,067 | ---- | C] () -- C:\WINDOWS\Easy Video to DVD.INI [2007/03/29 23:00:40 | 00,203,264 | ---- | C] () -- C:\WINDOWS\System32\CddbCdda.dll [2007/02/18 16:01:56 | 00,323,584 | ---- | C] () -- C:\WINDOWS\System32\FoxImager.dll [2007/01/12 18:11:57 | 00,000,070 | ---- | C] () -- C:\WINDOWS\02F55490.ini [2006/09/23 11:44:38 | 00,000,035 | ---- | C] () -- C:\WINDOWS\A4W.INI [2006/07/03 07:29:58 | 00,000,110 | ---- | C] () -- C:\WINDOWS\Akruti60.ini [2006/07/03 07:29:46 | 00,000,015 | ---- | C] () -- C:\WINDOWS\akoffice.ini [2006/05/31 10:43:56 | 00,000,710 | ---- | C] () -- C:\WINDOWS\Macros.ini [2006/05/17 14:46:43 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2006/05/17 14:46:42 | 00,000,452 | ---- | C] () -- C:\WINDOWS\alsndmgr.ini [2006/05/04 21:11:22 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\UnAudioNT.dll [2006/05/03 12:09:00 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\Akruti4Wd.dll [2006/04/18 12:24:35 | 00,314,880 | ---- | C] () -- C:\WINDOWS\System32\Tx32.dll [2006/03/06 19:36:33 | 00,126,976 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2006/01/19 19:32:57 | 00,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll [2006/01/11 22:13:13 | 00,000,025 | ---- | C] () -- C:\WINDOWS\CDEC66SeriesEuro.ini [2006/01/08 19:36:36 | 00,000,478 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2006/01/08 10:19:18 | 00,090,000 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [2006/01/06 20:49:22 | 00,000,784 | ---- | C] () -- C:\WINDOWS\VTruck1.ini [2006/01/06 20:36:12 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Pruthvesh\Application Data\desktop.ini [2006/01/06 20:19:47 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\desktop.ini [2004/08/04 13:00:00 | 00,001,028 | ---- | C] () -- C:\WINDOWS\win.ini [2004/08/04 13:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini [2002/03/17 01:00:00 | 00,007,420 | ---- | C] () -- C:\WINDOWS\UA000059.DLL [1999/05/20 13:33:20 | 00,004,080 | ---- | C] () -- C:\WINDOWS\System32\drivers\Tvicport.sys [1999/04/23 23:22:00 | 00,000,255 | ---- | C] () -- C:\WINDOWS\WINSOCKDLL.SYS [1999/04/23 23:22:00 | 00,000,255 | ---- | C] () -- C:\WINDOWS\System32\MCIVISPRIME.DRV [color=#E56717]========== LOP Check ==========[/color] [2009/10/03 18:37:50 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data [2009/03/15 10:39:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3} [2009/10/02 12:23:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD} [2009/04/12 11:48:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} [2009/09/23 18:29:27 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{EF63305C-BAD7-4144-9208-D65528260864} [2006/11/20 19:19:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Advanced Chemistry Development [2009/08/10 15:34:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\ashampoo [2009/08/15 23:32:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVG Security Toolbar [2008/12/24 22:46:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVS4YOU [2009/08/07 01:11:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\BVRP Software [2008/10/24 11:49:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Driving Test Success [2007/06/27 07:43:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\FLEXnet [2008/06/12 07:23:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IM [2008/06/12 07:22:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IncrediMail [2009/01/22 20:20:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Installations [2009/09/23 19:56:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IObit [2009/03/13 13:39:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\LogiShrd [2009/10/02 17:17:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Messenger Plus! [2009/04/24 20:07:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\NCH Swift Sound [2009/09/28 17:53:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\OnlineArmor [2009/01/22 20:24:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PC Suite [2009/08/10 14:10:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Socusoft [2008/09/02 00:19:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony [2009/08/10 14:10:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP [2008/04/24 15:24:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\title tool face bin [2009/06/05 11:25:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TomTom [2009/06/13 14:16:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TVU Networks [2006/01/11 22:14:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\UDL [2007/02/16 16:48:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Ulead Systems [2009/09/28 17:53:39 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\Pruthvesh\Application Data [2006/06/21 16:06:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\ArcSoft [2009/08/10 15:34:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Ashampoo [2009/05/03 16:48:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\AVGTOOLBAR [2008/12/24 22:46:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\AVS4YOU [2008/11/30 18:07:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Download Manager [2008/05/30 11:30:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\DVD Flick [2008/04/29 18:50:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\dvdcss [2006/12/21 14:28:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\IM-Names [2007/04/26 16:06:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\InternetCalls [2006/02/17 16:19:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Leadertech [2009/07/16 23:53:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\MP3Rocket [2006/10/04 20:02:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\MSNInstaller [2009/04/24 19:46:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\NCH Swift Sound [2009/01/22 20:24:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Nokia [2009/09/28 17:53:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\OnlineArmor [2009/01/22 20:25:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\PC Suite [2008/12/02 19:04:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Samsung [2008/01/11 20:46:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Snapfish [2008/09/02 00:19:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Sony [2007/12/29 16:34:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\SopCast [2009/06/05 11:25:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\TomTom [2007/12/01 12:20:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\TVU Networks [2006/08/27 13:01:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\VoipDiscount [2006/12/23 21:30:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\VSO_HWE [2007/03/11 20:34:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Watchtower [2006/06/16 21:00:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\WhitePhonePersonal [2008/09/02 21:14:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Windows Live Writer [2008/12/10 17:28:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Xilisoft Corporation [2006/12/18 15:45:06 | 00,000,162 | ---- | M] () -- C:\WINDOWS\Tasks\.job [2009/09/30 18:31:01 | 00,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job [2009/09/29 14:49:07 | 00,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job [2004/08/04 13:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini [2009/09/03 08:08:00 | 00,000,268 | ---- | M] () -- C:\WINDOWS\Tasks\Disk Cleanup.job [2009/10/05 16:57:23 | 00,000,868 | ---- | M] () -- C:\WINDOWS\Tasks\Google Software Updater.job [2009/10/05 16:46:37 | 00,000,880 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [2009/10/04 22:40:00 | 00,000,884 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [2009/09/30 20:18:00 | 00,000,354 | ---- | M] () -- C:\WINDOWS\Tasks\Norton PC Checkup Weekday Scanner.job [2009/09/20 12:30:00 | 00,000,354 | ---- | M] () -- C:\WINDOWS\Tasks\Norton PC Checkup Weekend Scanner.job [2009/10/05 16:46:36 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT [2010/03/23 20:31:24 | 00,000,430 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{07705FFE-3105-4962-9ABA-E311624B1569}.job [2009/10/05 17:00:00 | 00,000,248 | -H-- | M] () -- C:\WINDOWS\Tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job [2009/10/05 17:00:00 | 00,000,292 | -H-- | M] () -- C:\WINDOWS\Tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job [color=#E56717]========== Purity Check ==========[/color] < End of report >
  3. Hey i ve tried combofix scan and i ve left it on for 18 hours and it hasnt been completed, am i doing somethng wrong or is it meant to take really long?
  4. a-squared Free - Version 4.5 Last update: 28/09/2009 18:07:01 Scan settings: Scan type: Deep Scan Objects: Memory, Traces, Cookies, C:\ Scan archives: On Heuristics: Off ADS Scan: On Scan start: 03/10/2009 08:51:10 c:\program files\artisandvdplayer detected: Trace.Directory.Artisan DVD_DivX Player!A2 c:\program files\artisandvdplayer\setup detected: Trace.Directory.Artisan DVD_DivX Player!A2 c:\program files\artisandvdplayer\tempdirctory detected: Trace.Directory.Artisan DVD_DivX Player!A2 c:\program files\blubster detected: Trace.Directory.Blubster!A2 c:\documents and settings\all users\start menu\programs\precisiontime detected: Trace.Directory.Claria.CommonComponents!A2 c:\program files\common files\cmeii detected: Trace.Directory.Claria.CommonComponents!A2 c:\documents and settings\pruthvesh\application data\im-names detected: Trace.Directory.IM Names!A2 c:\program files\mp3 rocket detected: Trace.Directory.MP3 Rocket!A2 c:\program files\mp3 rocket\lib detected: Trace.Directory.MP3 Rocket!A2 c:\program files\mp3 rocket\resource detected: Trace.Directory.MP3 Rocket!A2 c:\program files\mp3 rocket\root detected: Trace.Directory.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10 detected: Trace.Directory.MP3 Rocket!A2 c:\documents and settings\pruthvesh\start menu\programs\mp3 rocket detected: Trace.Directory.MP3 Rocket!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Ares --> Order detected: Trace.Registry.Ares 5.0!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> cnid detected: Trace.Registry.Funky Emoticons!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> gid detected: Trace.Registry.Funky Emoticons!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> idt detected: Trace.Registry.Funky Emoticons!A2 c:\windows\tasks\{7b02ef0b-a410-4938-8480-9ba26420a627}.job detected: Trace.File.FraudPack!A2 c:\windows\tasks\{bb65b0fb-5712-401b-b616-e69ac55e2757}.job detected: Trace.File.FraudPack!A2 c:\windows\installer\msic.tmp detected: Trace.File.FileSubmit.A!A2 Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\NordBull\ detected: Trace.Registry.FraudPack!A2 Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\PopRock\ detected: Trace.Registry.FraudPack!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\Microsoft\Windows\CurrentVersion\Run --> PopRock detected: Trace.Registry.FraudPack!A2 c:\program files\artisandvdplayer\~myplaylist~ detected: Trace.File.Artisan DVD_DivX Player!A2 c:\program files\artisandvdplayer\default playlist.m3u detected: Trace.File.Artisan DVD_DivX Player!A2 c:\program files\artisandvdplayer\setup\dvdaudio.ax detected: Trace.File.Artisan DVD_DivX Player!A2 c:\program files\artisandvdplayer\setup\dvdvideo.ax detected: Trace.File.Artisan DVD_DivX Player!A2 c:\program files\common files\cmeii\gatorsupportinfo.txt detected: Trace.File.Gator!A2 c:\program files\common files\cmeii\greg.reg detected: Trace.File.Gator!A2 c:\program files\common files\cmeii\gui\svcsap\applist.htm detected: Trace.File.Gator!A2 c:\windows\system32\ide21201.vxd detected: Trace.File.WindUpdates!A2 c:\program files\mp3 rocket\license.txt detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\mp3 rocket (minimized).lnk detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\mp3rocket.exe detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\mp3rocket.ico detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\mp3rocketlauncher.exe detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\xml.war detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\ezjcom18.jar detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\ezjcomlib18.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\hashes detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\jaxcent11.jar detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\jaxcentlib11.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\jdic.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\jshdocvw.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\jshdocvw.jar detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\log4j.properties detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\mp3rocket.ico detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\systemutilities.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\systemutilitiesa.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\tray.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\00_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\01_5_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\01_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\02_5_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\02_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\03_5_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\03_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\04_5_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\04_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\05_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\badge.img detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\canhandle.img detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\limewire.gif detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\options.js detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\scripts.js detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\silentdetect.js detected: Trace.File.MP3 Rocket!A2 Value: HKEY_CLASSES_ROOT\arlnk --> URL Protocol detected: Trace.Registry.Ares Galaxy P2P Plus!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\arlnk --> URL Protocol detected: Trace.Registry.Ares Galaxy P2P Plus!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\ArtisanDVDPlayer\Directory --> CurrentPath detected: Trace.Registry.Artisan DVD_DivX Player!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\ArtisanDVDPlayer\Directory --> TempPath detected: Trace.Registry.Artisan DVD_DivX Player!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\Cliprex DVD Player Professional --> Volume detected: Trace.Registry.Cliprex DVD Player Professional!A2 Key: HKEY_LOCAL_MACHINE\software\myway detected: Trace.Registry.MyWaySpeedbar!A2 Value: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe detected: Trace.Registry.StartupBHO!A2 Value: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe detected: Trace.Registry.StartupBHO!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> DisplayName detected: Trace.Registry.MP3 Rocket!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> UninstallString detected: Trace.Registry.MP3 Rocket!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.2o7!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.2o7!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.adserv!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.adtech!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.atdmt!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.atdmt!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.atdmt!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt detected: Trace.TrackingCookie.atdmt!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.bs.serving-sys!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.doubleclick!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.doubleclick!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.doubleclick!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt detected: Trace.TrackingCookie.doubleclick!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.fastclick!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.serving-sys!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.statcounter!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.tradedoubler!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.zedo!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.zedo!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt detected: Trace.TrackingCookie.zedo!A2 C:\Documents and Settings\Pruthvesh\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}\plugins\np_gp.dll detected: Riskware.Adware.GetPlus!IK C:\Documents and Settings\Pruthvesh\My Documents\Amal\Local Settings\Temporary Internet Files\Content.IE5\0XYZMJKP\content32070-0[1].htm detected: Riskware.AdWare.Win32.Gator!IK C:\Documents and Settings\Pruthvesh\My Documents\Amal\Random Folder\mirc621.exe detected: Riskware.Client-IRC.Win32.mIRC.621!A2 C:\Documents and Settings\Pruthvesh\My Documents\Sneha\Local Settings\Temporary Internet Files\Content.IE5\8TCN8N83\content37885-0[1].htm detected: Riskware.AdWare.Win32.Gator!IK C:\Program Files\Mozilla Firefox\plugins\np_gp.dll detected: Riskware.Adware.GetPlus!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033924.DLL detected: Riskware.AdWare.FunWeb!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033925.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033926.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033927.DLL detected: Riskware.AdTool.Win32.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033928.DLL detected: Riskware.AdWare.Mywebsearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033930.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033931.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033932.EXE detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033933.DLL detected: Riskware.AdWare.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033934.DLL detected: Riskware.AdWare.Mywebsearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033935.DLL detected: Riskware.AdWare.Mywebsearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033936.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033937.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033938.DLL detected: Riskware.AdWare.Mywebsearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033939.EXE detected: Riskware.AdWare.Win32.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033940.DLL detected: Riskware.AdWare.Win32.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033941.DLL detected: Riskware.AdWare.Win32.MyWebSearch.i!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036174.DLL detected: Riskware.AdTool.Win32.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036177.EXE detected: Riskware.AdTool.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036178.DLL detected: Riskware.AdTool.Win32.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036197.dll detected: Riskware.AdWare.Win32.PowerSearch!IK Scanned Files: 477077 Traces: 633669 Cookies: 216 Processes: 44 Found Files: 26 Traces: 76 Cookies: 32 Processes: 0 Registry keys: 0 Scan end: 03/10/2009 11:09:31 Scan time: 2:18:21 The Gen.Trojan!IK virus seems to be gone but my avast virus doesnt seem to be working it says 'AAVM subsystem detected a RPC error' and other virus programs don't work either so i dont know what's the problem but i reckon that the Gen.Trokan!Ik virus seems to have gone as things are working slightly better on my pc
  5. Yes, i did save WIn32kdiag on my desktop, also i forgot to mention in my last reply when you gave me that first instruction told me to copy and paste this code into notebook @echo off copy C:\WINDOWS\system32\logevent.dll c:\logevent.dll copy C:\WINDOWS\ServicePackFiles\i386\dumprep.exe c:\dumprep.exe i did save as and save it as fixes.bat onto my despktop, then when i double clicked it nothing came really happened just a command prompt black screen for 2 seconds and then it disappeared, so i dont know if that had anything to do with it?
  6. Avenger Log Below: Logfile of The Avenger Version 2.0, (c) by Swandog46 http://swandog46.geekstogo.com Platform: Windows XP ******************* Script file opened successfully. Script file read successfully. Backups directory opened successfully at C:\Avenger ******************* Beginning to process script file: Rootkit scan active. No rootkits found! File move operation "C:\logevent.dll|C:\WINDOWS\SYSTEM32\eventlog.dll" completed successfully. File move operation "C:\dumprep.exe|C:\WINDOWS\SYSTEM32\dumprep.exe" completed successfully. Completed script processing. ******************* Finished! Terminate. The next bit you told me to do did not work at all to copy and paste "%userprofile%\desktop\win32kdiag.exe" -f -r this on run upon reboot, it comes up with the error message 'Windows cannot find it, make sure you typed the name correctly and try again', i m not sure what's going on there?
  7. Win32kdiag report: Running from: C:\Documents and Settings\Pruthvesh\My Documents\Amal\Win32kDiag(3).exe Log file at : C:\Documents and Settings\Pruthvesh\Desktop\Win32kDiag.txt WARNING: Could not get backup privileges! Searching 'C:\WINDOWS'... Found mount point : C:\WINDOWS\$hf_mig$\KB834707\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB834707\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB867282\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB867282\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB873333\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB873333\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB883939\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB883939\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB890047\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB890047\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB890175\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB890175\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB890923\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB890923\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB893086\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB893086\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB896688\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB896688\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB896727\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB896727\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB899588\SP2QFE\SP2QFE Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$hf_mig$\KB899588\update\update Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB834707$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB873333$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB883939$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB890047$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB890175$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB890923$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB893086$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB896688$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB896727$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB899588$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\$NtUninstallKB903235$\spuninst\spuninst Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\A4W_DATA\A4W_DATA Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\addins\addins Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Accessibility\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\cscompmgd\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\dao\10.0.4504.0__31bf3856ad364e35\10.0.4504.0__31bf3856ad364e35 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\IEExecRemote\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\IEHost\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\IIEHost\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\ISymWrapper\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.JScript\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Access\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Excel\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Graph\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Outlook\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.OutlookViewCtl\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Owc11\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.PowerPoint\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Publisher\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.SmartTag\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Word\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Vbe.Interop.Forms\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.VisualBasic\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.VisualBasic.Vsa\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.VisualC\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Vsa\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft.Vsa.Vb.CodeDOMProcessor\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Microsoft_VsaVb\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\mscomctl\10.0.4504.0__31bf3856ad364e35\10.0.4504.0__31bf3856ad364e35 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\mscorcfg\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\Regcode\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Configuration.Install\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Data\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Data.OracleClient\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Design\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.DirectoryServices\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Management\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Messaging\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Runtime.Remoting\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Security\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.ServiceProcess\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Web.Mobile\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Web.RegularExpressions\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Web.Services\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_29288ff4\1.0.5000.0__b03f5f7f11d50a3a_29288ff4 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_63937859\1.0.5000.0__b77a5c561934e089_63937859 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_7c519107\1.0.5000.0__b77a5c561934e089_7c519107 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_764e1619\1.0.5000.0__b03f5f7f11d50a3a_764e1619 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_49c99553\1.0.5000.0__b03f5f7f11d50a3a_49c99553 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_b7815ae3\1.0.5000.0__b03f5f7f11d50a3a_b7815ae3 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_4926f31f\1.0.5000.0__b77a5c561934e089_4926f31f Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_8a3441fe\1.0.5000.0__b77a5c561934e089_8a3441fe Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP17B.tmp\ZAP17B.tmp Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP19B.tmp\ZAP19B.tmp Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP265.tmp\ZAP265.tmp Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP290.tmp\ZAP290.tmp Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPFA.tmp\ZAPFA.tmp Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\temp\temp Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\assembly\tmp\tmp Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Config\Config Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Connection Wizard\Connection Wizard Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Debug\UserMode\UserMode Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Downloaded Installations\{27CA2C5D-95E6-467E-898C-AE509746C4BE}\{27CA2C5D-95E6-467E-898C-AE509746C4BE} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Downloaded Installations\{4047B242-1233-451B-AC91-A318DE01F288}\{4047B242-1233-451B-AC91-A318DE01F288} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Downloaded Installations\{628E8630-7947-49EA-BE90-7F8BFF77A79C}\{628E8630-7947-49EA-BE90-7F8BFF77A79C} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Downloaded Installations\{A89EB61A-717D-4E9B-BB70-7626DF2EB947}\{A89EB61A-717D-4E9B-BB70-7626DF2EB947} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Downloaded Program Files\CONFLICT.1\CONFLICT.1 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Downloaded Program Files\CONFLICT.2\CONFLICT.2 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Downloaded Program Files\CONFLICT.3\CONFLICT.3 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Help\SBSI\Training\Database\Database Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Help\SBSI\Training\WXPPer\CBO\CBO Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Help\SBSI\Training\WXPPer\Cbz\Cbz Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Help\SBSI\Training\WXPPer\Content\Cbz\Cbz Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Help\SBSI\Training\WXPPer\Content\Lib\Lib Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Help\SBSI\Training\WXPPer\Content\Wave\Wave Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Help\SBSI\Training\WXPPer\Lib\Lib Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Help\SBSI\Training\WXPPer\Wave\Wave Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\ime\chsime\applets\applets Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\ime\CHTIME\Applets\Applets Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\ime\imejp\applets\applets Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\ime\imejp98\imejp98 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\ime\imjp8_1\applets\applets Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\ime\imkr6_1\applets\applets Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\ime\imkr6_1\dicts\dicts Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\ime\shared\res\res Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\inf\catalog\catalog Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\$PatchCache$\Managed\0DC1503A46F231838AD88BCDDC8E8F7C\3.2.30729\3.2.30729 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\$PatchCache$\Managed\D7314F9862C648A4DB8BE2A5B47BE100\1.0.0\1.0.0 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\$PatchCache$\Managed\DC3BF90CC0D3D2F398A9A6D1762F70F3\2.2.30729\2.2.30729 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\{21351A28-ACFB-463D-A0A0-AC9F5F4D273E}\{21351A28-ACFB-463D-A0A0-AC9F5F4D273E} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\{24769D29-677C-42B0-9420-6F7688058990}\{24769D29-677C-42B0-9420-6F7688058990} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\{30C10EE3-EFB3-4B7A-9CDC-50790C2B5200}\{30C10EE3-EFB3-4B7A-9CDC-50790C2B5200} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}\{416D80BA-6F6D-4672-B7CF-F54DA2F80B44} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\{47808F78-F178-49DC-B708-15FE538B16FF}\{47808F78-F178-49DC-B708-15FE538B16FF} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\{515E1B00-E2B4-4975-9900-95F66077C3AE}\{515E1B00-E2B4-4975-9900-95F66077C3AE} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\{7148F0A8-6813-11D6-A77B-00B0D0142000}\{7148F0A8-6813-11D6-A77B-00B0D0142000} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-000000000001}\{AC76BA86-7AD7-1033-7B44-000000000001} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\java\classes\classes Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\java\trustlib\trustlib Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\1033 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\ASP.NETClientFiles\ASP.NETClientFiles Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\CONFIG\CONFIG Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MUI\0409\0409 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Temporary ASP.NET Files\Bind Logs\Bind Logs Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\Temporary ASP.NET Files Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Minidump\Minidump Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\msapps\msinfo\msinfo Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\msdownld.tmp\msdownld.tmp Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\mui\mui Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\nview\nview Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\1\1 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\10\10 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\11\11 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\12\NWSERVER\NWSERVER Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\12\WFW311\WFW311 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\13\13 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\14\14 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\15\15 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\16\16 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\16A\16A Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\17A\17A Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\19\19 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\2\2 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\20\20 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\21\21 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\22\22 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\23\Drivers\Scan\ENGLISH\ENGLISH Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\23\Drivers\Win_XP2K\ENGLISH\ENGLISH Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\23\ENGLISH\ENGLISH Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\23\PROGRAM\32\32 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\23\PROGRAM\ENGLISH\ENGLISH Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\24\24 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\25\25 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\26\WIN2K_XP\WIN2K_XP Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\27\27 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\28\28 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\29\29 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\3\ENGLISH\ENGLISH Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\30\30 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\31\31 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\32\32 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\33\33 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\34\34 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\35\35 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\36\New Folder\New Folder Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\37\37 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\38\38 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\39\39 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\4\4 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\40\40 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\5\5 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\6\6 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\7\7 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\8\ENGLISH\ENGLISH Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\9\9 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\OEMdriver\temp\temp Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\pchealth\ERRORREP\QHEADLES\QHEADLES Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\pchealth\ERRORREP\QSIGNOFF\QSIGNOFF Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\pchealth\ERRORREP\UserDumps\UserDumps Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\pchealth\helpctr\BATCH\BATCH Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\pchealth\helpctr\Config\CheckPoint\CheckPoint Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\pchealth\helpctr\HelpFiles\HelpFiles Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\pchealth\helpctr\InstalledSKUs\InstalledSKUs Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\pchealth\helpctr\System\DFS\DFS Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\pchealth\helpctr\System_OEM\System_OEM Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\pchealth\helpctr\Temp\Temp Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\PIF\PIF Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\RegisteredPackages\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E} Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Registration\CRMLog\CRMLog Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\security\logs\logs Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\SOFTDISK\SSSTUDIO\SSSTUDIO Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\SoftwareDistribution\AuthCabs\Downloaded\Downloaded Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\SoftwareDistribution\Download\S-1-5-18\bd1cd727f9156915edd6700037e6f705\bd1cd727f9156915edd6700037e6f705 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\Sun\Java\Deployment\Deployment Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\SxsCaPendDel\SxsCaPendDel Mount point destination : \Device\__max++>\^ Cannot access: C:\WINDOWS\system32\dumprep.exe [1] 2004-08-04 13:00:00 10752 C:\WINDOWS\$NtServicePackUninstall$\dumprep.exe (Microsoft Corporation) [1] 2008-04-14 01:12:18 10752 C:\WINDOWS\ServicePackFiles\i386\dumprep.exe (Microsoft Corporation) [1] 2008-04-14 01:12:18 10752 C:\WINDOWS\system32\dumprep.exe () Cannot access: C:\WINDOWS\system32\eventlog.dll [1] 2004-08-04 13:00:00 55808 C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll (Microsoft Corporation) [1] 2008-04-14 01:11:53 56320 C:\WINDOWS\ServicePackFiles\i386\eventlog.dll (Microsoft Corporation) [1] 2008-04-14 01:11:53 61952 C:\WINDOWS\system32\eventlog.dll () [2] 2008-04-14 01:11:53 56320 C:\WINDOWS\system32\logevent.dll (Microsoft Corporation) Found mount point : C:\WINDOWS\Temp\_avast4_\_avast4_ Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\WinSxS\InstallTemp\47714\47714 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\WinSxS\InstallTemp\47734\47734 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\WinSxS\InstallTemp\47735\47735 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\WinSxS\InstallTemp\47739\47739 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\WinSxS\InstallTemp\47996\47996 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\WinSxS\InstallTemp\48199\48199 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\WinSxS\InstallTemp\61903\61903 Mount point destination : \Device\__max++>\^ Found mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9818.0_x-ww_8ff50c5d\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9818.0_x-ww_8ff50c5d Mount point destination : \Device\__max++>\^ Finished!
  8. Hello, i have posted this same subject on the old forum but was not seemed to be answered fully, so i'm going to send the same information again i.e a-squared report and shadowputerdude told me to run Win32kDiag and post it on my next reply so this how far my old forum went up to, Thank You a-squared Free - Version 4.5 Last update: 28/09/2009 18:07:01 Scan settings: Scan type: Deep Scan Objects: Memory, Traces, Cookies, C:\ Scan archives: On Heuristics: Off ADS Scan: On Scan start: 29/09/2009 15:47:31 [772] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [864] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [1140] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [1272] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [1660] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [1364] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [1504] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [2024] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [1464] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [1780] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [3064] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK [3768] \\?\globalroot\Device\__max++>\58799288.x86.dll detected: Gen.Trojan!IK c:\program files\artisandvdplayer detected: Trace.Directory.Artisan DVD_DivX Player!A2 c:\program files\artisandvdplayer\setup detected: Trace.Directory.Artisan DVD_DivX Player!A2 c:\program files\artisandvdplayer\tempdirctory detected: Trace.Directory.Artisan DVD_DivX Player!A2 c:\program files\blubster detected: Trace.Directory.Blubster!A2 c:\documents and settings\all users\start menu\programs\precisiontime detected: Trace.Directory.Claria.CommonComponents!A2 c:\program files\common files\cmeii detected: Trace.Directory.Claria.CommonComponents!A2 c:\documents and settings\pruthvesh\application data\im-names detected: Trace.Directory.IM Names!A2 c:\program files\mp3 rocket detected: Trace.Directory.MP3 Rocket!A2 c:\program files\mp3 rocket\lib detected: Trace.Directory.MP3 Rocket!A2 c:\program files\mp3 rocket\resource detected: Trace.Directory.MP3 Rocket!A2 c:\program files\mp3 rocket\root detected: Trace.Directory.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10 detected: Trace.Directory.MP3 Rocket!A2 c:\documents and settings\pruthvesh\start menu\programs\mp3 rocket detected: Trace.Directory.MP3 Rocket!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Ares --> Order detected: Trace.Registry.Ares 5.0!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> cnid detected: Trace.Registry.Funky Emoticons!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> gid detected: Trace.Registry.Funky Emoticons!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> idt detected: Trace.Registry.Funky Emoticons!A2 c:\windows\tasks\{7b02ef0b-a410-4938-8480-9ba26420a627}.job detected: Trace.File.FraudPack!A2 c:\windows\tasks\{bb65b0fb-5712-401b-b616-e69ac55e2757}.job detected: Trace.File.FraudPack!A2 c:\windows\installer\msic.tmp detected: Trace.File.FileSubmit.A!A2 Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\NordBull\ detected: Trace.Registry.FraudPack!A2 Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\PopRock\ detected: Trace.Registry.FraudPack!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\Microsoft\Windows\CurrentVersion\Run --> PopRock detected: Trace.Registry.FraudPack!A2 c:\program files\artisandvdplayer\~myplaylist~ detected: Trace.File.Artisan DVD_DivX Player!A2 c:\program files\artisandvdplayer\default playlist.m3u detected: Trace.File.Artisan DVD_DivX Player!A2 c:\program files\artisandvdplayer\setup\dvdaudio.ax detected: Trace.File.Artisan DVD_DivX Player!A2 c:\program files\artisandvdplayer\setup\dvdvideo.ax detected: Trace.File.Artisan DVD_DivX Player!A2 c:\program files\common files\cmeii\gatorsupportinfo.txt detected: Trace.File.Gator!A2 c:\program files\common files\cmeii\greg.reg detected: Trace.File.Gator!A2 c:\program files\common files\cmeii\gui\svcsap\applist.htm detected: Trace.File.Gator!A2 c:\windows\system32\ide21201.vxd detected: Trace.File.WindUpdates!A2 c:\program files\mp3 rocket\license.txt detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\mp3 rocket (minimized).lnk detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\mp3rocket.exe detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\mp3rocket.ico detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\mp3rocketlauncher.exe detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\xml.war detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\ezjcom18.jar detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\ezjcomlib18.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\hashes detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\jaxcent11.jar detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\jaxcentlib11.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\jdic.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\jshdocvw.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\jshdocvw.jar detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\log4j.properties detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\mp3rocket.ico detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\systemutilities.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\systemutilitiesa.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\lib\tray.dll detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\00_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\01_5_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\01_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\02_5_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\02_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\03_5_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\03_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\04_5_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\04_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\resource\05_ranking_stars.png detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\badge.img detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\canhandle.img detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\limewire.gif detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\options.js detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\scripts.js detected: Trace.File.MP3 Rocket!A2 c:\program files\mp3 rocket\root\magnet10\silentdetect.js detected: Trace.File.MP3 Rocket!A2 Value: HKEY_CLASSES_ROOT\arlnk --> URL Protocol detected: Trace.Registry.Ares Galaxy P2P Plus!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\arlnk --> URL Protocol detected: Trace.Registry.Ares Galaxy P2P Plus!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\ArtisanDVDPlayer\Directory --> CurrentPath detected: Trace.Registry.Artisan DVD_DivX Player!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\ArtisanDVDPlayer\Directory --> TempPath detected: Trace.Registry.Artisan DVD_DivX Player!A2 Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\Cliprex DVD Player Professional --> Volume detected: Trace.Registry.Cliprex DVD Player Professional!A2 Key: HKEY_LOCAL_MACHINE\software\myway detected: Trace.Registry.MyWaySpeedbar!A2 Value: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe detected: Trace.Registry.StartupBHO!A2 Value: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe detected: Trace.Registry.StartupBHO!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> DisplayName detected: Trace.Registry.MP3 Rocket!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> UninstallString detected: Trace.Registry.MP3 Rocket!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.2o7!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.2o7!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.adserv!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.adtech!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.atdmt!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.atdmt!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.atdmt!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt detected: Trace.TrackingCookie.atdmt!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.doubleclick!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.doubleclick!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.doubleclick!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt detected: Trace.TrackingCookie.doubleclick!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.fastclick!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.media!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.statcounter!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.tradedoubler!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt detected: Trace.TrackingCookie.zedo!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt detected: Trace.TrackingCookie.zedo!A2 C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt detected: Trace.TrackingCookie.zedo!A2 C:\Documents and Settings\Pruthvesh\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}\plugins\np_gp.dll detected: Riskware.Adware.GetPlus!IK C:\Documents and Settings\Pruthvesh\My Documents\Amal\Local Settings\Temporary Internet Files\Content.IE5\0XYZMJKP\content32070-0[1].htm detected: Riskware.AdWare.Win32.Gator!IK C:\Documents and Settings\Pruthvesh\My Documents\Amal\Random Folder\mirc621.exe detected: Riskware.Client-IRC.Win32.mIRC.621!A2 C:\Documents and Settings\Pruthvesh\My Documents\Sneha\Local Settings\Temporary Internet Files\Content.IE5\8TCN8N83\content37885-0[1].htm detected: Riskware.AdWare.Win32.Gator!IK C:\Program Files\Mozilla Firefox\plugins\np_gp.dll detected: Riskware.Adware.GetPlus!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033924.DLL detected: Riskware.AdWare.FunWeb!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033925.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033926.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033927.DLL detected: Riskware.AdTool.Win32.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033928.DLL detected: Riskware.AdWare.Mywebsearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033930.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033931.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033932.EXE detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033933.DLL detected: Riskware.AdWare.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033934.DLL detected: Riskware.AdWare.Mywebsearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033935.DLL detected: Riskware.AdWare.Mywebsearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033936.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033937.DLL detected: Riskware.WebToolbar!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033938.DLL detected: Riskware.AdWare.Mywebsearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033939.EXE detected: Riskware.AdWare.Win32.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033940.DLL detected: Riskware.AdWare.Win32.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033941.DLL detected: Riskware.AdWare.Win32.MyWebSearch.i!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036174.DLL detected: Riskware.AdTool.Win32.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036177.EXE detected: Riskware.AdTool.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036178.DLL detected: Riskware.AdTool.Win32.MyWebSearch!IK C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036197.dll detected: Riskware.AdWare.Win32.PowerSearch!IK Scanned Files: 473028 Traces: 633669 Cookies: 211 Processes: 39 Found Files: 26 Traces: 76 Cookies: 30 Processes: 12 Registry keys: 0 Scan end: 29/09/2009 18:09:44 Scan time: 2:22:13