amalm92

Cannot Delete GEN.TROJAN!IK

Recommended Posts

Hello, i have posted this same subject on the old forum but was not seemed to be answered fully, so i'm going to send the same information again i.e a-squared report and shadowputerdude told me to run Win32kDiag and post it on my next reply so this how far my old forum went up to, Thank You

 a-squared Free - Version 4.5
Last update: 28/09/2009 18:07:01

Scan settings:

Scan type: Deep Scan
Objects: Memory, Traces, Cookies, C:\
Scan archives: On
Heuristics: Off
ADS Scan: On

Scan start:	29/09/2009 15:47:31

[772] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[864] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1140] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1272] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1660] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1364] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1504] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[2024] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1464] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1780] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[3064] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[3768] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
c:\program files\artisandvdplayer 	detected: Trace.Directory.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\setup 	detected: Trace.Directory.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\tempdirctory 	detected: Trace.Directory.Artisan DVD_DivX Player!A2
c:\program files\blubster 	detected: Trace.Directory.Blubster!A2
c:\documents and settings\all users\start menu\programs\precisiontime 	detected: Trace.Directory.Claria.CommonComponents!A2
c:\program files\common files\cmeii 	detected: Trace.Directory.Claria.CommonComponents!A2
c:\documents and settings\pruthvesh\application data\im-names 	detected: Trace.Directory.IM Names!A2
c:\program files\mp3 rocket 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\lib 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\resource 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\root 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10 	detected: Trace.Directory.MP3 Rocket!A2
c:\documents and settings\pruthvesh\start menu\programs\mp3 rocket 	detected: Trace.Directory.MP3 Rocket!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Ares --> Order 	detected: Trace.Registry.Ares 5.0!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> cnid 	detected: Trace.Registry.Funky Emoticons!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> gid 	detected: Trace.Registry.Funky Emoticons!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> idt 	detected: Trace.Registry.Funky Emoticons!A2
c:\windows\tasks\{7b02ef0b-a410-4938-8480-9ba26420a627}.job 	detected: Trace.File.FraudPack!A2
c:\windows\tasks\{bb65b0fb-5712-401b-b616-e69ac55e2757}.job 	detected: Trace.File.FraudPack!A2
c:\windows\installer\msic.tmp 	detected: Trace.File.FileSubmit.A!A2
Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\NordBull\ 	detected: Trace.Registry.FraudPack!A2
Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\PopRock\ 	detected: Trace.Registry.FraudPack!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\Microsoft\Windows\CurrentVersion\Run --> PopRock 	detected: Trace.Registry.FraudPack!A2
c:\program files\artisandvdplayer\~myplaylist~ 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\default playlist.m3u 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\setup\dvdaudio.ax 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\setup\dvdvideo.ax 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\common files\cmeii\gatorsupportinfo.txt 	detected: Trace.File.Gator!A2
c:\program files\common files\cmeii\greg.reg 	detected: Trace.File.Gator!A2
c:\program files\common files\cmeii\gui\svcsap\applist.htm 	detected: Trace.File.Gator!A2
c:\windows\system32\ide21201.vxd 	detected: Trace.File.WindUpdates!A2
c:\program files\mp3 rocket\license.txt 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3 rocket (minimized).lnk 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocket.exe 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocket.ico 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocketlauncher.exe 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\xml.war 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\ezjcom18.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\ezjcomlib18.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\hashes 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jaxcent11.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jaxcentlib11.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jdic.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jshdocvw.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jshdocvw.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\log4j.properties 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\mp3rocket.ico 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\systemutilities.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\systemutilitiesa.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\tray.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\00_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\01_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\01_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\02_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\02_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\03_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\03_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\04_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\04_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\05_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\badge.img 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\canhandle.img 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\limewire.gif 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\options.js 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\scripts.js 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\silentdetect.js 	detected: Trace.File.MP3 Rocket!A2
Value: HKEY_CLASSES_ROOT\arlnk --> URL Protocol 	detected: Trace.Registry.Ares Galaxy P2P Plus!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\arlnk --> URL Protocol 	detected: Trace.Registry.Ares Galaxy P2P Plus!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\ArtisanDVDPlayer\Directory --> CurrentPath 	detected: Trace.Registry.Artisan DVD_DivX Player!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\ArtisanDVDPlayer\Directory --> TempPath 	detected: Trace.Registry.Artisan DVD_DivX Player!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\Cliprex DVD Player Professional --> Volume 	detected: Trace.Registry.Cliprex DVD Player Professional!A2
Key: HKEY_LOCAL_MACHINE\software\myway 	detected: Trace.Registry.MyWaySpeedbar!A2
Value: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe 	detected: Trace.Registry.StartupBHO!A2
Value: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe 	detected: Trace.Registry.StartupBHO!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> DisplayName 	detected: Trace.Registry.MP3 Rocket!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> UninstallString 	detected: Trace.Registry.MP3 Rocket!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.2o7!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.2o7!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.adserv!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.adtech!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.fastclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.statcounter!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.tradedoubler!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.zedo!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.zedo!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt 	detected: Trace.TrackingCookie.zedo!A2
C:\Documents and Settings\Pruthvesh\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}\plugins\np_gp.dll 	detected: Riskware.Adware.GetPlus!IK
C:\Documents and Settings\Pruthvesh\My Documents\Amal\Local Settings\Temporary Internet Files\Content.IE5\0XYZMJKP\content32070-0[1].htm 	detected: Riskware.AdWare.Win32.Gator!IK
C:\Documents and Settings\Pruthvesh\My Documents\Amal\Random Folder\mirc621.exe 	detected: Riskware.Client-IRC.Win32.mIRC.621!A2
C:\Documents and Settings\Pruthvesh\My Documents\Sneha\Local Settings\Temporary Internet Files\Content.IE5\8TCN8N83\content37885-0[1].htm 	detected: Riskware.AdWare.Win32.Gator!IK
C:\Program Files\Mozilla Firefox\plugins\np_gp.dll 	detected: Riskware.Adware.GetPlus!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033924.DLL 	detected: Riskware.AdWare.FunWeb!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033925.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033926.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033927.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033928.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033930.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033931.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033932.EXE 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033933.DLL 	detected: Riskware.AdWare.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033934.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033935.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033936.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033937.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033938.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033939.EXE 	detected: Riskware.AdWare.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033940.DLL 	detected: Riskware.AdWare.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033941.DLL 	detected: Riskware.AdWare.Win32.MyWebSearch.i!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036174.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036177.EXE 	detected: Riskware.AdTool.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036178.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036197.dll 	detected: Riskware.AdWare.Win32.PowerSearch!IK

Scanned

Files: 	473028
Traces: 	633669
Cookies: 	211
Processes: 	39

Found

Files: 	26
Traces: 	76
Cookies: 	30
Processes: 	12
Registry keys: 	0

Scan end:	29/09/2009 18:09:44
Scan time:	2:22:13 

Share this post


Link to post
Share on other sites

Hello, i have posted this same subject on the old forum but was not seemed to be answered fully, so i'm going to send the same information again i.e a-squared report and shadowputerdude told me to run Win32kDiag and post it on my next reply so this how far my old forum went up to, Thank You

 a-squared Free - Version 4.5
Last update: 28/09/2009 18:07:01

Scan settings:

Scan type: Deep Scan
Objects: Memory, Traces, Cookies, C:\
Scan archives: On
Heuristics: Off
ADS Scan: On

Scan start:	29/09/2009 15:47:31

[772] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[864] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1140] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1272] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1660] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1364] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1504] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[2024] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1464] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[1780] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[3064] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
[3768] \\?\globalroot\Device\__max++>\58799288.x86.dll 	detected: Gen.Trojan!IK
c:\program files\artisandvdplayer 	detected: Trace.Directory.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\setup 	detected: Trace.Directory.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\tempdirctory 	detected: Trace.Directory.Artisan DVD_DivX Player!A2
c:\program files\blubster 	detected: Trace.Directory.Blubster!A2
c:\documents and settings\all users\start menu\programs\precisiontime 	detected: Trace.Directory.Claria.CommonComponents!A2
c:\program files\common files\cmeii 	detected: Trace.Directory.Claria.CommonComponents!A2
c:\documents and settings\pruthvesh\application data\im-names 	detected: Trace.Directory.IM Names!A2
c:\program files\mp3 rocket 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\lib 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\resource 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\root 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10 	detected: Trace.Directory.MP3 Rocket!A2
c:\documents and settings\pruthvesh\start menu\programs\mp3 rocket 	detected: Trace.Directory.MP3 Rocket!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Ares --> Order 	detected: Trace.Registry.Ares 5.0!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> cnid 	detected: Trace.Registry.Funky Emoticons!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> gid 	detected: Trace.Registry.Funky Emoticons!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> idt 	detected: Trace.Registry.Funky Emoticons!A2
c:\windows\tasks\{7b02ef0b-a410-4938-8480-9ba26420a627}.job 	detected: Trace.File.FraudPack!A2
c:\windows\tasks\{bb65b0fb-5712-401b-b616-e69ac55e2757}.job 	detected: Trace.File.FraudPack!A2
c:\windows\installer\msic.tmp 	detected: Trace.File.FileSubmit.A!A2
Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\NordBull\ 	detected: Trace.Registry.FraudPack!A2
Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\PopRock\ 	detected: Trace.Registry.FraudPack!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\Microsoft\Windows\CurrentVersion\Run --> PopRock 	detected: Trace.Registry.FraudPack!A2
c:\program files\artisandvdplayer\~myplaylist~ 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\default playlist.m3u 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\setup\dvdaudio.ax 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\setup\dvdvideo.ax 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\common files\cmeii\gatorsupportinfo.txt 	detected: Trace.File.Gator!A2
c:\program files\common files\cmeii\greg.reg 	detected: Trace.File.Gator!A2
c:\program files\common files\cmeii\gui\svcsap\applist.htm 	detected: Trace.File.Gator!A2
c:\windows\system32\ide21201.vxd 	detected: Trace.File.WindUpdates!A2
c:\program files\mp3 rocket\license.txt 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3 rocket (minimized).lnk 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocket.exe 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocket.ico 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocketlauncher.exe 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\xml.war 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\ezjcom18.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\ezjcomlib18.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\hashes 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jaxcent11.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jaxcentlib11.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jdic.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jshdocvw.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jshdocvw.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\log4j.properties 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\mp3rocket.ico 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\systemutilities.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\systemutilitiesa.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\tray.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\00_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\01_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\01_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\02_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\02_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\03_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\03_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\04_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\04_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\05_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\badge.img 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\canhandle.img 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\limewire.gif 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\options.js 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\scripts.js 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\silentdetect.js 	detected: Trace.File.MP3 Rocket!A2
Value: HKEY_CLASSES_ROOT\arlnk --> URL Protocol 	detected: Trace.Registry.Ares Galaxy P2P Plus!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\arlnk --> URL Protocol 	detected: Trace.Registry.Ares Galaxy P2P Plus!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\ArtisanDVDPlayer\Directory --> CurrentPath 	detected: Trace.Registry.Artisan DVD_DivX Player!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\ArtisanDVDPlayer\Directory --> TempPath 	detected: Trace.Registry.Artisan DVD_DivX Player!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\Cliprex DVD Player Professional --> Volume 	detected: Trace.Registry.Cliprex DVD Player Professional!A2
Key: HKEY_LOCAL_MACHINE\software\myway 	detected: Trace.Registry.MyWaySpeedbar!A2
Value: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe 	detected: Trace.Registry.StartupBHO!A2
Value: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe 	detected: Trace.Registry.StartupBHO!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> DisplayName 	detected: Trace.Registry.MP3 Rocket!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> UninstallString 	detected: Trace.Registry.MP3 Rocket!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.2o7!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.2o7!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.adserv!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.adtech!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\p[email protected][2].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.fastclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.statcounter!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.tradedoubler!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.zedo!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.zedo!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt 	detected: Trace.TrackingCookie.zedo!A2
C:\Documents and Settings\Pruthvesh\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}\plugins\np_gp.dll 	detected: Riskware.Adware.GetPlus!IK
C:\Documents and Settings\Pruthvesh\My Documents\Amal\Local Settings\Temporary Internet Files\Content.IE5\0XYZMJKP\content32070-0[1].htm 	detected: Riskware.AdWare.Win32.Gator!IK
C:\Documents and Settings\Pruthvesh\My Documents\Amal\Random Folder\mirc621.exe 	detected: Riskware.Client-IRC.Win32.mIRC.621!A2
C:\Documents and Settings\Pruthvesh\My Documents\Sneha\Local Settings\Temporary Internet Files\Content.IE5\8TCN8N83\content37885-0[1].htm 	detected: Riskware.AdWare.Win32.Gator!IK
C:\Program Files\Mozilla Firefox\plugins\np_gp.dll 	detected: Riskware.Adware.GetPlus!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033924.DLL 	detected: Riskware.AdWare.FunWeb!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033925.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033926.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033927.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033928.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033930.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033931.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033932.EXE 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033933.DLL 	detected: Riskware.AdWare.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033934.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033935.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033936.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033937.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033938.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033939.EXE 	detected: Riskware.AdWare.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033940.DLL 	detected: Riskware.AdWare.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033941.DLL 	detected: Riskware.AdWare.Win32.MyWebSearch.i!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036174.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036177.EXE 	detected: Riskware.AdTool.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036178.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036197.dll 	detected: Riskware.AdWare.Win32.PowerSearch!IK

Scanned

Files: 	473028
Traces: 	633669
Cookies: 	211
Processes: 	39

Found

Files: 	26
Traces: 	76
Cookies: 	30
Processes: 	12
Registry keys: 	0

Scan end:	29/09/2009 18:09:44
Scan time:	2:22:13 

Win32kdiag report:

Running from: C:\Documents and Settings\Pruthvesh\My Documents\Amal\Win32kDiag(3).exe

Log file at : C:\Documents and Settings\Pruthvesh\Desktop\Win32kDiag.txt

WARNING: Could not get backup privileges!

Searching 'C:\WINDOWS'...



Found mount point       : C:\WINDOWS\$hf_mig$\KB834707\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB834707\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB867282\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB867282\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB873333\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB873333\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB883939\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB883939\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB890047\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB890047\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB890175\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB890175\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB890923\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB890923\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB893086\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB893086\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB896688\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB896688\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB896727\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB896727\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB899588\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$hf_mig$\KB899588\update\update

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB834707$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB873333$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB883939$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB890047$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB890175$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB890923$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB893086$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB896688$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB896727$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB899588$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\$NtUninstallKB903235$\spuninst\spuninst

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\A4W_DATA\A4W_DATA

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\addins\addins

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Accessibility\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\cscompmgd\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\dao\10.0.4504.0__31bf3856ad364e35\10.0.4504.0__31bf3856ad364e35

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\IEExecRemote\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\IEHost\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\IIEHost\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\ISymWrapper\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.JScript\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Access\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Excel\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Graph\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Outlook\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.OutlookViewCtl\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Owc11\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.PowerPoint\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Publisher\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.SmartTag\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Office.Interop.Word\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Vbe.Interop.Forms\11.0.0.0__71e9bce111e9429c\11.0.0.0__71e9bce111e9429c

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.VisualBasic\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.VisualBasic.Vsa\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.VisualC\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Vsa\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft.Vsa.Vb.CodeDOMProcessor\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Microsoft_VsaVb\7.0.5000.0__b03f5f7f11d50a3a\7.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\mscomctl\10.0.4504.0__31bf3856ad364e35\10.0.4504.0__31bf3856ad364e35

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\mscorcfg\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\Regcode\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Configuration.Install\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Data\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Data.OracleClient\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Design\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.DirectoryServices\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Management\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Messaging\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Runtime.Remoting\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Security\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.ServiceProcess\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Web.Mobile\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Web.RegularExpressions\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Web.Services\1.0.5000.0__b03f5f7f11d50a3a\1.0.5000.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\1.0.5000.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_29288ff4\1.0.5000.0__b03f5f7f11d50a3a_29288ff4

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_63937859\1.0.5000.0__b77a5c561934e089_63937859

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_7c519107\1.0.5000.0__b77a5c561934e089_7c519107

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_764e1619\1.0.5000.0__b03f5f7f11d50a3a_764e1619

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_49c99553\1.0.5000.0__b03f5f7f11d50a3a_49c99553

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_b7815ae3\1.0.5000.0__b03f5f7f11d50a3a_b7815ae3

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_4926f31f\1.0.5000.0__b77a5c561934e089_4926f31f

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_8a3441fe\1.0.5000.0__b77a5c561934e089_8a3441fe

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP17B.tmp\ZAP17B.tmp

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP19B.tmp\ZAP19B.tmp

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP265.tmp\ZAP265.tmp

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP290.tmp\ZAP290.tmp

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPFA.tmp\ZAPFA.tmp

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\temp\temp

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\assembly\tmp\tmp

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Config\Config

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Connection Wizard\Connection Wizard

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Debug\UserMode\UserMode

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Downloaded Installations\{27CA2C5D-95E6-467E-898C-AE509746C4BE}\{27CA2C5D-95E6-467E-898C-AE509746C4BE}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Downloaded Installations\{4047B242-1233-451B-AC91-A318DE01F288}\{4047B242-1233-451B-AC91-A318DE01F288}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Downloaded Installations\{628E8630-7947-49EA-BE90-7F8BFF77A79C}\{628E8630-7947-49EA-BE90-7F8BFF77A79C}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Downloaded Installations\{A89EB61A-717D-4E9B-BB70-7626DF2EB947}\{A89EB61A-717D-4E9B-BB70-7626DF2EB947}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Downloaded Program Files\CONFLICT.1\CONFLICT.1

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Downloaded Program Files\CONFLICT.2\CONFLICT.2

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Downloaded Program Files\CONFLICT.3\CONFLICT.3

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Help\SBSI\Training\Database\Database

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Help\SBSI\Training\WXPPer\CBO\CBO

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Help\SBSI\Training\WXPPer\Cbz\Cbz

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Help\SBSI\Training\WXPPer\Content\Cbz\Cbz

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Help\SBSI\Training\WXPPer\Content\Lib\Lib

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Help\SBSI\Training\WXPPer\Content\Wave\Wave

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Help\SBSI\Training\WXPPer\Lib\Lib

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Help\SBSI\Training\WXPPer\Wave\Wave

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\ime\chsime\applets\applets

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\ime\CHTIME\Applets\Applets

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\ime\imejp\applets\applets

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\ime\imejp98\imejp98

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\ime\imjp8_1\applets\applets

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\ime\imkr6_1\applets\applets

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\ime\imkr6_1\dicts\dicts

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\ime\shared\res\res

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\inf\catalog\catalog

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\$PatchCache$\Managed\0DC1503A46F231838AD88BCDDC8E8F7C\3.2.30729\3.2.30729

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\$PatchCache$\Managed\D7314F9862C648A4DB8BE2A5B47BE100\1.0.0\1.0.0

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\$PatchCache$\Managed\DC3BF90CC0D3D2F398A9A6D1762F70F3\2.2.30729\2.2.30729

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\{21351A28-ACFB-463D-A0A0-AC9F5F4D273E}\{21351A28-ACFB-463D-A0A0-AC9F5F4D273E}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\{24769D29-677C-42B0-9420-6F7688058990}\{24769D29-677C-42B0-9420-6F7688058990}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\{30C10EE3-EFB3-4B7A-9CDC-50790C2B5200}\{30C10EE3-EFB3-4B7A-9CDC-50790C2B5200}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}\{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\{47808F78-F178-49DC-B708-15FE538B16FF}\{47808F78-F178-49DC-B708-15FE538B16FF}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\{515E1B00-E2B4-4975-9900-95F66077C3AE}\{515E1B00-E2B4-4975-9900-95F66077C3AE}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\{7148F0A8-6813-11D6-A77B-00B0D0142000}\{7148F0A8-6813-11D6-A77B-00B0D0142000}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-000000000001}\{AC76BA86-7AD7-1033-7B44-000000000001}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\java\classes\classes

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\java\trustlib\trustlib

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\1033

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\ASP.NETClientFiles\ASP.NETClientFiles

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\CONFIG\CONFIG

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MUI\0409\0409

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Temporary ASP.NET Files\Bind Logs\Bind Logs

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\Temporary ASP.NET Files

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Minidump\Minidump

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\msapps\msinfo\msinfo

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\msdownld.tmp\msdownld.tmp

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\mui\mui

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\nview\nview

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\1\1

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\10\10

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\11\11

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\12\NWSERVER\NWSERVER

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\12\WFW311\WFW311

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\13\13

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\14\14

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\15\15

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\16\16

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\16A\16A

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\17A\17A

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\19\19

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\2\2

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\20\20

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\21\21

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\22\22

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\23\Drivers\Scan\ENGLISH\ENGLISH

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\23\Drivers\Win_XP2K\ENGLISH\ENGLISH

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\23\ENGLISH\ENGLISH

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\23\PROGRAM\32\32

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\23\PROGRAM\ENGLISH\ENGLISH

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\24\24

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\25\25

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\26\WIN2K_XP\WIN2K_XP

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\27\27

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\28\28

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\29\29

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\3\ENGLISH\ENGLISH

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\30\30

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\31\31

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\32\32

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\33\33

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\34\34

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\35\35

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\36\New Folder\New Folder

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\37\37

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\38\38

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\39\39

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\4\4

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\40\40

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\5\5

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\6\6

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\7\7

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\8\ENGLISH\ENGLISH

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\9\9

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\OEMdriver\temp\temp

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\pchealth\ERRORREP\QHEADLES\QHEADLES

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\pchealth\ERRORREP\QSIGNOFF\QSIGNOFF

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\pchealth\ERRORREP\UserDumps\UserDumps

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\pchealth\helpctr\BATCH\BATCH

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\pchealth\helpctr\Config\CheckPoint\CheckPoint

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\pchealth\helpctr\HelpFiles\HelpFiles

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\pchealth\helpctr\InstalledSKUs\InstalledSKUs

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\pchealth\helpctr\System\DFS\DFS

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\pchealth\helpctr\System_OEM\System_OEM

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\pchealth\helpctr\Temp\Temp

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\PIF\PIF

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\RegisteredPackages\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Registration\CRMLog\CRMLog

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\security\logs\logs

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\SOFTDISK\SSSTUDIO\SSSTUDIO

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\SoftwareDistribution\AuthCabs\Downloaded\Downloaded

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\SoftwareDistribution\Download\S-1-5-18\bd1cd727f9156915edd6700037e6f705\bd1cd727f9156915edd6700037e6f705

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\Sun\Java\Deployment\Deployment

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\SxsCaPendDel\SxsCaPendDel

Mount point destination : \Device\__max++>\^

Cannot access: C:\WINDOWS\system32\dumprep.exe

[1] 2004-08-04 13:00:00 10752 C:\WINDOWS\$NtServicePackUninstall$\dumprep.exe (Microsoft Corporation)

[1] 2008-04-14 01:12:18 10752 C:\WINDOWS\ServicePackFiles\i386\dumprep.exe (Microsoft Corporation)

[1] 2008-04-14 01:12:18 10752 C:\WINDOWS\system32\dumprep.exe ()



Cannot access: C:\WINDOWS\system32\eventlog.dll

[1] 2004-08-04 13:00:00 55808 C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll (Microsoft Corporation)

[1] 2008-04-14 01:11:53 56320 C:\WINDOWS\ServicePackFiles\i386\eventlog.dll (Microsoft Corporation)

[1] 2008-04-14 01:11:53 61952 C:\WINDOWS\system32\eventlog.dll ()

[2] 2008-04-14 01:11:53 56320 C:\WINDOWS\system32\logevent.dll (Microsoft Corporation)



Found mount point       : C:\WINDOWS\Temp\_avast4_\_avast4_

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\WinSxS\InstallTemp\47714\47714

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\WinSxS\InstallTemp\47734\47734

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\WinSxS\InstallTemp\47735\47735

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\WinSxS\InstallTemp\47739\47739

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\WinSxS\InstallTemp\47996\47996

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\WinSxS\InstallTemp\48199\48199

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\WinSxS\InstallTemp\61903\61903

Mount point destination : \Device\__max++>\^

Found mount point       : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9818.0_x-ww_8ff50c5d\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9818.0_x-ww_8ff50c5d

Mount point destination : \Device\__max++>\^



Finished!

Share this post


Link to post
Share on other sites

Open notepad

Copy and Paste the below lines of code to notepad:

@echo off
copy C:\WINDOWS\system32\logevent.dll c:\logevent.dll
copy C:\WINDOWS\ServicePackFiles\i386\dumprep.exe c:\dumprep.exe

Go to File > save as and name the file fixes.bat, change the Save as type to all files and save it to your Desktop.

Double-click on fixes.bat to execute it.

-----------------------------------------------------------

Download Avenger from here and unzip to your desktop.

  • Run Avenger
  • Read the prompt that appears, and press OK
  • Copy & paste the following text in Input script Box:
    Files to move:
    C:\logevent.dll | C:\WINDOWS\SYSTEM32\eventlog.dll
    C:\dumprep.exe | C:\WINDOWS\SYSTEM32\dumprep.exe

    Then click "Execute".

  • You will be presented with 2 confirmation prompts. Select yes on each. Your system will reboot.
    Note: It is possible that Avenger will reboot your system TWICE.
  • Upon reboot, a command prompt window will appear on your screen for a few seconds, and then Avenger's log will open. Please paste that log here in your next post.

-----------------------------------------------------------

Go to start > run and copy and paste the following command in the field:

"%userprofile%\desktop\win32kdiag.exe" -f -r

This should restore permissions on locked files and remove mountpoints.

-----------------------------------------------------------

Post fresh logs for:

  • Avenger (C:\avenger.txt)
  • a-squared Free
  • ISeeYouXP
  • HiJackFree

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now!

Share this post


Link to post
Share on other sites

Open notepad

Copy and Paste the below lines of code to notepad:

@echo off
copy C:\WINDOWS\system32\logevent.dll c:\logevent.dll
copy C:\WINDOWS\ServicePackFiles\i386\dumprep.exe c:\dumprep.exe

Go to File > save as and name the file fixes.bat, change the Save as type to all files and save it to your Desktop.

Double-click on fixes.bat to execute it.

-----------------------------------------------------------

Download Avenger from here and unzip to your desktop.

  • Run Avenger
  • Read the prompt that appears, and press OK
  • Copy & paste the following text in Input script Box:
    Files to move:
    C:\logevent.dll | C:\WINDOWS\SYSTEM32\eventlog.dll
    C:\dumprep.exe | C:\WINDOWS\SYSTEM32\dumprep.exe

    Then click "Execute".

  • You will be presented with 2 confirmation prompts. Select yes on each. Your system will reboot.
    Note: It is possible that Avenger will reboot your system TWICE.
  • Upon reboot, a command prompt window will appear on your screen for a few seconds, and then Avenger's log will open. Please paste that log here in your next post.

-----------------------------------------------------------

Go to start > run and copy and paste the following command in the field:

"%userprofile%\desktop\win32kdiag.exe" -f -r

This should restore permissions on locked files and remove mountpoints.

-----------------------------------------------------------

Post fresh logs for:

  • Avenger (C:\avenger.txt)
  • a-squared Free
  • ISeeYouXP
  • HiJackFree

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now!

Avenger Log Below:

Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform:  Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

File move operation "C:\logevent.dll|C:\WINDOWS\SYSTEM32\eventlog.dll" completed successfully.
File move operation "C:\dumprep.exe|C:\WINDOWS\SYSTEM32\dumprep.exe" completed successfully.

Completed script processing.

*******************

Finished!  Terminate.

The next bit you told me to do did not work at all to copy and paste

"%userprofile%\desktop\win32kdiag.exe" -f -r

this on run upon reboot, it comes up with the error message 'Windows cannot find it, make sure you typed the name correctly and try again', i m not sure what's going on there?

Share this post


Link to post
Share on other sites

Did you save Win32kDiag to the Desktop as instructed?

Yes, i did save WIn32kdiag on my desktop, also i forgot to mention in my last reply when you gave me that first instruction told me to copy and paste this code into notebook

@echo off
copy C:\WINDOWS\system32\logevent.dll c:\logevent.dll
copy C:\WINDOWS\ServicePackFiles\i386\dumprep.exe c:\dumprep.exe

i did save as and save it as fixes.bat onto my despktop, then when i double clicked it nothing came really happened just a command prompt black screen for 2 seconds and then it disappeared, so i dont know if that had anything to do with it?

Share this post


Link to post
Share on other sites

fixes.bat just runs, and then closes when finished.

Post a fresh a-squared log.

a-squared Free - Version 4.5
Last update: 28/09/2009 18:07:01

Scan settings:

Scan type: Deep Scan
Objects: Memory, Traces, Cookies, C:\
Scan archives: On
Heuristics: Off
ADS Scan: On

Scan start:	03/10/2009 08:51:10

c:\program files\artisandvdplayer 	detected: Trace.Directory.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\setup 	detected: Trace.Directory.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\tempdirctory 	detected: Trace.Directory.Artisan DVD_DivX Player!A2
c:\program files\blubster 	detected: Trace.Directory.Blubster!A2
c:\documents and settings\all users\start menu\programs\precisiontime 	detected: Trace.Directory.Claria.CommonComponents!A2
c:\program files\common files\cmeii 	detected: Trace.Directory.Claria.CommonComponents!A2
c:\documents and settings\pruthvesh\application data\im-names 	detected: Trace.Directory.IM Names!A2
c:\program files\mp3 rocket 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\lib 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\resource 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\root 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10 	detected: Trace.Directory.MP3 Rocket!A2
c:\documents and settings\pruthvesh\start menu\programs\mp3 rocket 	detected: Trace.Directory.MP3 Rocket!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Ares --> Order 	detected: Trace.Registry.Ares 5.0!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> cnid 	detected: Trace.Registry.Funky Emoticons!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> gid 	detected: Trace.Registry.Funky Emoticons!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> idt 	detected: Trace.Registry.Funky Emoticons!A2
c:\windows\tasks\{7b02ef0b-a410-4938-8480-9ba26420a627}.job 	detected: Trace.File.FraudPack!A2
c:\windows\tasks\{bb65b0fb-5712-401b-b616-e69ac55e2757}.job 	detected: Trace.File.FraudPack!A2
c:\windows\installer\msic.tmp 	detected: Trace.File.FileSubmit.A!A2
Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\NordBull\ 	detected: Trace.Registry.FraudPack!A2
Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\PopRock\ 	detected: Trace.Registry.FraudPack!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\Microsoft\Windows\CurrentVersion\Run --> PopRock 	detected: Trace.Registry.FraudPack!A2
c:\program files\artisandvdplayer\~myplaylist~ 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\default playlist.m3u 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\setup\dvdaudio.ax 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\artisandvdplayer\setup\dvdvideo.ax 	detected: Trace.File.Artisan DVD_DivX Player!A2
c:\program files\common files\cmeii\gatorsupportinfo.txt 	detected: Trace.File.Gator!A2
c:\program files\common files\cmeii\greg.reg 	detected: Trace.File.Gator!A2
c:\program files\common files\cmeii\gui\svcsap\applist.htm 	detected: Trace.File.Gator!A2
c:\windows\system32\ide21201.vxd 	detected: Trace.File.WindUpdates!A2
c:\program files\mp3 rocket\license.txt 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3 rocket (minimized).lnk 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocket.exe 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocket.ico 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocketlauncher.exe 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\xml.war 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\ezjcom18.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\ezjcomlib18.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\hashes 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jaxcent11.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jaxcentlib11.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jdic.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jshdocvw.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jshdocvw.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\log4j.properties 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\mp3rocket.ico 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\systemutilities.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\systemutilitiesa.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\tray.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\00_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\01_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\01_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\02_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\02_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\03_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\03_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\04_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\04_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\05_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\badge.img 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\canhandle.img 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\limewire.gif 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\options.js 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\scripts.js 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\silentdetect.js 	detected: Trace.File.MP3 Rocket!A2
Value: HKEY_CLASSES_ROOT\arlnk --> URL Protocol 	detected: Trace.Registry.Ares Galaxy P2P Plus!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\arlnk --> URL Protocol 	detected: Trace.Registry.Ares Galaxy P2P Plus!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\ArtisanDVDPlayer\Directory --> CurrentPath 	detected: Trace.Registry.Artisan DVD_DivX Player!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\ArtisanDVDPlayer\Directory --> TempPath 	detected: Trace.Registry.Artisan DVD_DivX Player!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\Cliprex DVD Player Professional --> Volume 	detected: Trace.Registry.Cliprex DVD Player Professional!A2
Key: HKEY_LOCAL_MACHINE\software\myway 	detected: Trace.Registry.MyWaySpeedbar!A2
Value: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe 	detected: Trace.Registry.StartupBHO!A2
Value: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe 	detected: Trace.Registry.StartupBHO!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> DisplayName 	detected: Trace.Registry.MP3 Rocket!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> UninstallString 	detected: Trace.Registry.MP3 Rocket!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.2o7!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.2o7!A2
C:\Documents and Settings\Pruthvesh\Cookies\pruth[email protected][1].txt 	detected: Trace.TrackingCookie.adserv!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.adtech!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt 	detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.bs.serving-sys!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt 	detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.fastclick!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.serving-sys!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.statcounter!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][2].txt 	detected: Trace.TrackingCookie.tradedoubler!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][1].txt 	detected: Trace.TrackingCookie.zedo!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][3].txt 	detected: Trace.TrackingCookie.zedo!A2
C:\Documents and Settings\Pruthvesh\Cookies\[email protected][4].txt 	detected: Trace.TrackingCookie.zedo!A2
C:\Documents and Settings\Pruthvesh\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}\plugins\np_gp.dll 	detected: Riskware.Adware.GetPlus!IK
C:\Documents and Settings\Pruthvesh\My Documents\Amal\Local Settings\Temporary Internet Files\Content.IE5\0XYZMJKP\content32070-0[1].htm 	detected: Riskware.AdWare.Win32.Gator!IK
C:\Documents and Settings\Pruthvesh\My Documents\Amal\Random Folder\mirc621.exe 	detected: Riskware.Client-IRC.Win32.mIRC.621!A2
C:\Documents and Settings\Pruthvesh\My Documents\Sneha\Local Settings\Temporary Internet Files\Content.IE5\8TCN8N83\content37885-0[1].htm 	detected: Riskware.AdWare.Win32.Gator!IK
C:\Program Files\Mozilla Firefox\plugins\np_gp.dll 	detected: Riskware.Adware.GetPlus!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033924.DLL 	detected: Riskware.AdWare.FunWeb!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033925.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033926.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033927.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033928.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033930.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033931.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033932.EXE 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033933.DLL 	detected: Riskware.AdWare.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033934.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033935.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033936.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033937.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033938.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033939.EXE 	detected: Riskware.AdWare.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033940.DLL 	detected: Riskware.AdWare.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033941.DLL 	detected: Riskware.AdWare.Win32.MyWebSearch.i!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036174.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036177.EXE 	detected: Riskware.AdTool.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036178.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036197.dll 	detected: Riskware.AdWare.Win32.PowerSearch!IK

Scanned

Files: 	477077
Traces: 	633669
Cookies: 	216
Processes: 	44

Found

Files: 	26
Traces: 	76
Cookies: 	32
Processes: 	0
Registry keys: 	0

Scan end:	03/10/2009 11:09:31
Scan time:	2:18:21

The Gen.Trojan!IK virus seems to be gone but my avast virus doesnt seem to be working it says 'AAVM subsystem detected a RPC error' and other virus programs don't work either so i dont know what's the problem but i reckon that the Gen.Trokan!Ik virus seems to have gone as things are working slightly better on my pc

Share this post


Link to post
Share on other sites

You can have a-squared delete the following:

a-squared Free - Version 4.5
Last update: 28/09/2009 18:07:01

Scan settings:

Scan type: Deep Scan
Objects: Memory, Traces, Cookies, C:\
Scan archives: On
Heuristics: Off
ADS Scan: On

Scan start:	03/10/2009 08:51:10

c:\program files\blubster 	detected: Trace.Directory.Blubster!A2
c:\program files\mp3 rocket 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\lib 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\resource 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\root 	detected: Trace.Directory.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10 	detected: Trace.Directory.MP3 Rocket!A2
c:\documents and settings\pruthvesh\start menu\programs\mp3 rocket 	detected: Trace.Directory.MP3 Rocket!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> cnid 	detected: Trace.Registry.Funky Emoticons!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> gid 	detected: Trace.Registry.Funky Emoticons!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\Software\fcn --> idt 	detected: Trace.Registry.Funky Emoticons!A2
c:\windows\tasks\{7b02ef0b-a410-4938-8480-9ba26420a627}.job 	detected: Trace.File.FraudPack!A2
c:\windows\tasks\{bb65b0fb-5712-401b-b616-e69ac55e2757}.job 	detected: Trace.File.FraudPack!A2
c:\windows\installer\msic.tmp 	detected: Trace.File.FileSubmit.A!A2
Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\NordBull\ 	detected: Trace.Registry.FraudPack!A2
Key: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\PopRock\ 	detected: Trace.Registry.FraudPack!A2
Value: HKEY_USERS\S-1-5-21-73586283-842925246-839522115-1004\software\Microsoft\Windows\CurrentVersion\Run --> PopRock 	detected: Trace.Registry.FraudPack!A2
c:\program files\common files\cmeii\gatorsupportinfo.txt 	detected: Trace.File.Gator!A2
c:\program files\common files\cmeii\greg.reg 	detected: Trace.File.Gator!A2
c:\program files\common files\cmeii\gui\svcsap\applist.htm 	detected: Trace.File.Gator!A2
c:\windows\system32\ide21201.vxd 	detected: Trace.File.WindUpdates!A2
c:\program files\mp3 rocket\license.txt 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3 rocket (minimized).lnk 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocket.exe 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocket.ico 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\mp3rocketlauncher.exe 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\xml.war 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\ezjcom18.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\ezjcomlib18.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\hashes 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jaxcent11.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jaxcentlib11.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jdic.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jshdocvw.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\jshdocvw.jar 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\log4j.properties 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\mp3rocket.ico 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\systemutilities.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\systemutilitiesa.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\lib\tray.dll 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\00_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\01_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\01_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\02_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\02_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\03_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\03_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\04_5_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\04_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\resource\05_ranking_stars.png 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\badge.img 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\canhandle.img 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\limewire.gif 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\options.js 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\scripts.js 	detected: Trace.File.MP3 Rocket!A2
c:\program files\mp3 rocket\root\magnet10\silentdetect.js 	detected: Trace.File.MP3 Rocket!A2
Key: HKEY_LOCAL_MACHINE\software\myway 	detected: Trace.Registry.MyWaySpeedbar!A2
Value: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe 	detected: Trace.Registry.StartupBHO!A2
Value: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List --> C:\Program Files\BHO\uninstall.exe 	detected: Trace.Registry.StartupBHO!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> DisplayName 	detected: Trace.Registry.MP3 Rocket!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Rocket --> UninstallString 	detected: Trace.Registry.MP3 Rocket!A2
C:\Documents and Settings\Pruthvesh\My Documents\Amal\Local Settings\Temporary Internet Files\Content.IE5\0XYZMJKP\content32070-0[1].htm 	detected: Riskware.AdWare.Win32.Gator!IK
C:\Documents and Settings\Pruthvesh\My Documents\Sneha\Local Settings\Temporary Internet Files\Content.IE5\8TCN8N83\content37885-0[1].htm 	detected: Riskware.AdWare.Win32.Gator!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033924.DLL 	detected: Riskware.AdWare.FunWeb!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033925.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033926.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033927.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033928.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033930.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033931.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033932.EXE 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033933.DLL 	detected: Riskware.AdWare.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033934.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033935.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033936.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033937.DLL 	detected: Riskware.WebToolbar!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033938.DLL 	detected: Riskware.AdWare.Mywebsearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033939.EXE 	detected: Riskware.AdWare.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033940.DLL 	detected: Riskware.AdWare.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0033941.DLL 	detected: Riskware.AdWare.Win32.MyWebSearch.i!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036174.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036177.EXE 	detected: Riskware.AdTool.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036178.DLL 	detected: Riskware.AdTool.Win32.MyWebSearch!IK
C:\System Volume Information\_restore{FAD31253-1C6F-4667-9D3B-0B60ECC5D88D}\RP230\A0036197.dll 	detected: Riskware.AdWare.Win32.PowerSearch!IK

-----------------------------------------------------------

Download ComboFix from one of these locations:

Link 1

Link 2

Link 3

* IMPORTANT !!! Save ComboFix.exe to your Desktop

  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools
    See HERE for help
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

RcAuto1.gif

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

whatnext.png

Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you.

-----------------------------------------------------------

Post fresh logs for:

  • ComboFix (C:\combofix.txt)
  • a-squared Free
  • ISeeYouXP

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now!

Share this post


Link to post
Share on other sites

Hey i ve tried combofix scan and i ve left it on for 18 hours and it hasnt been completed, am i doing somethng wrong or is it meant to take really long?

Share this post


Link to post
Share on other sites

No, you haven't done anything wrong. Malware may be interfering with ComboFix.

Download to your Desktop

- OTL to your desktop.

  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • When the window appears, underneath Output at the top change it to Minimal Output.
  • Check the boxes beside LOP Check and Purity Check.
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt.
      Note:These logs can be located in the OTL. folder on you C:\ drive if they fail to open automatically.
    • Attach both logs with your next reply.

Share this post


Link to post
Share on other sites

No, you haven't done anything wrong. Malware may be interfering with ComboFix.

Download to your Desktop

- OTL to your desktop.

  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • When the window appears, underneath Output at the top change it to Minimal Output.
  • Check the boxes beside LOP Check and Purity Check.
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt.
      Note:These logs can be located in the OTL. folder on you C:\ drive if they fail to open automatically.
    • Attach both logs with your next reply.

Extras.txt scan:

OTL Extras logfile created on: 05/10/2009 17:30:24 - Run 1
OTL by OldTimer - Version 3.0.18.4     Folder = C:\Documents and Settings\Pruthvesh\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

1023.22 Mb Total Physical Memory | 475.49 Mb Available Physical Memory | 46.47% Memory free
2.40 Gb Paging File | 1.96 Gb Available in Paging File | 81.43% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 275.08 Gb Total Space | 195.44 Gb Free Space | 71.05% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ABC5C48A3F8841B
Current User Name: Pruthvesh
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Directory [AddToPlaylistVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- C:\Program Files\VideoLAN\VLC\vlc.exe --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
"DisableMonitoring" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
"DisableMonitoring" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
"8000:UDP" = 8000:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP)
"8001:UDP" = 8001:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP)
"8002:UDP" = 8002:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP)
"8003:UDP" = 8003:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP)
"8004:UDP" = 8004:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP)
"8005:UDP" = 8005:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP)
"8006:UDP" = 8006:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP)
"8007:UDP" = 8007:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP)
"8008:UDP" = 8008:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP)
"8009:UDP" = 8009:UDP:*:Enabled:Express Talk RTP Incoming Audio (UDP)
"5060:UDP" = 5060:UDP:*:Enabled:Express Talk Sip Incoming Calls (UDP)

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Messenger\msmsgs.exe" = C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger -- (Microsoft Corporation)
"C:\StubInstaller.exe" = C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer -- (LimeWire)
"C:\Documents and Settings\Pruthvesh\My Documents\Rosnayy\LimeWire\LimeWire.exe" = C:\Documents and Settings\Pruthvesh\My Documents\Rosnayy\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found
"C:\Program Files\WhitePhone Personal\WhitePhonePersonal.exe" = C:\Program Files\WhitePhone Personal\WhitePhonePersonal.exe:*:Disabled:WhitePhone Personal Main Application -- File not found
"C:\Program Files\BHO\uninstall.exe" = C:\Program Files\BHO\uninstall.exe:*:Enabled:BHO -- File not found
"C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe" = C:\Program Files\VoipDiscount.com\VoipDiscount\VoipDiscount.exe:*:Enabled:VoipDiscount -- File not found
"C:\Program Files\Blubster\Blubster.exe" = C:\Program Files\Blubster\Blubster.exe:*:Enabled:Blubster -- File not found
"C:\Program Files\Internet Explorer\IEXPLORE.EXE" = C:\Program Files\Internet Explorer\IEXPLORE.EXE:*:Disabled:Internet Explorer -- (Microsoft Corporation)
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC)
"C:\Program Files\InternetCalls.com\InternetCalls\InternetCalls.exe" = C:\Program Files\InternetCalls.com\InternetCalls\InternetCalls.exe:*:Enabled:InternetCalls -- File not found
"C:\Program Files\VideoLAN\VLC\vlc.exe" = C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- ()
"C:\Documents and Settings\Pruthvesh\Application Data\SopCast\adv\SopAdver.exe" = C:\Documents and Settings\Pruthvesh\Application Data\SopCast\adv\SopAdver.exe:*:Disabled:SopCast Adver -- File not found
"C:\Program Files\mIRC\mirc.exe" = C:\Program Files\mIRC\mirc.exe:*:Disabled:mIRC -- File not found
"C:\Program Files\Yahoo! Games\Bejeweled 2 Deluxe\WinBej2.exe" = C:\Program Files\Yahoo! Games\Bejeweled 2 Deluxe\WinBej2.exe:*:Enabled:Bejeweled2 -- File not found
"C:\Program Files\SopCast\SopCast.exe" = C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application -- (www.sopcast.com)
"C:\Program Files\TVUPlayer\TVUPlayer.exe" = C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component -- (TVU networks)
"C:\Program Files\SopCast\adv\SopAdver.exe" = C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (www.sopcast.com)
"C:\Program Files\TVAnts\Tvants.exe" = C:\Program Files\TVAnts\Tvants.exe:*:Enabled:TVAnts -- File not found
"C:\Program Files\BitDownload\BitDownload.exe" = C:\Program Files\BitDownload\BitDownload.exe:*:Enabled:Warez3 -- File not found
"C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" = C:\Program Files\Veoh Networks\Veoh\VeohClient.exe:*:Disabled:Veoh Client -- File not found
"C:\Program Files\IncrediMail\bin\ImApp.exe" = C:\Program Files\IncrediMail\bin\ImApp.exe:*:Enabled:IncrediMail -- File not found
"C:\Program Files\IncrediMail\bin\IncMail.exe" = C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail -- File not found
"C:\Program Files\IncrediMail\bin\ImpCnt.exe" = C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail -- File not found
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.)
"C:\Program Files\Java\jre1.6.0_05\bin\javaw.exe" = C:\Program Files\Java\jre1.6.0_05\bin\javaw.exe:*:Disabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows -- File not found
"C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe" = C:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe:*:Enabled:Sony Ericsson Media Manager 1.1 -- (Sony Creative Software Inc.)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe" = C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\WINDOWS\system32\rtcshare.exe" = C:\WINDOWS\system32\rtcshare.exe:*:Disabled:RTC App Sharing -- (Microsoft Corporation)
"C:\Program Files\NetMeeting\conf.exe" = C:\Program Files\NetMeeting\conf.exe:*:Enabled:Windows® NetMeeting® -- (Microsoft Corporation)
"C:\Program Files\AVG\AVG8\avgemc.exe" = C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG8\avgupd.exe" = C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Disabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\AVG\AVG8\avgnsx.exe" = C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Kontiki\KService.exe" = C:\Program Files\Kontiki\KService.exe:*:Enabled:Delivery Manager Service -- (Kontiki Inc.)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- File not found
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{06A940CD-4924-485E-8500-476C9E08A820}" = Samsung PC Studio 3
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{139E303E-1050-497F-98B1-9AE87B15C463}" = Windows Live Family Safety
"{15AC0C5D-A6FB-4CE2-8CD0-28179EEB5625}" = Nokia Connectivity Cable Driver
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1CB92574-96F2-467B-B793-5CEB35C40C29}" = Image Resizer Powertoy for Windows XP
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{23B59ED4-C360-11D7-875B-0090CC005647}" = EPSON PRINT Image Framer Tool2.1
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 15
"{2FD177C0-A752-11DC-8314-0800200C9A66}" = Windows Live SkyDrive Upload Tool
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 4.010.00
"{3248F0A8-6813-11D6-A77B-00B0D0150100}" = J2SE Runtime Environment 5.0 Update 10
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{341201D4-4F61-4ADB-987E-9CCE4D83A58D}" = Windows Live Toolbar Extension (Windows Live Toolbar)
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}" = Nokia PC Suite
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{65F5B7AF-3363-11D7-BB6B-00018021113F}" = EPSON PhotoQuicker3.5
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7745B7A9-F323-4BB9-9811-01BF57A028DA}" = Map Button (Windows Live Toolbar)
"{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}" = Windows Live Favorites for Windows Live Toolbar
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{937B232D-9776-471E-92BD-D424E514EF14}" = Logitech QuickCam
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{A5C4AD72-25FE-4899-B6DF-6D8DF63C93CF}" = Highlight Viewer (Windows Live Toolbar)
"{A654A805-41D9-40C7-AA46-4AF04F044D61}" = Adobe® Photoshop® Album Starter Edition 3.2
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
"{AC76BA86-7AD7-1033-7B44-A81300000003}" = Adobe Reader 8.1.3
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3
"{CC016F21-3970-11DE-B878-005056806466}" = Google Earth
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}" = getPlus(R) for Adobe
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{D848D140-41C3-4A53-86D8-E866A100B4CD}" = PC Connectivity Solution
"{DA34FE93-5DC5-48E0-ACC8-A5389E05BB51}" = iTunes
"{DE5BFF9C-84D1-4B09-9C20-54633044CB85}" = Watchtower Library 2008 - English
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer
"{EE217F71-2546-4E9C-825F-DBBCAA9E9777}" = Sony Ericsson Media Manager 1.1
"{F084395C-40FB-4DB3-981C-B51E74E1E83D}" = Smart Menus (Windows Live Toolbar)
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"504244733D18C8F63FF584AEB290E3904E791693" = Windows Driver Package - Nokia pccsmcfd  (08/22/2008 7.0.0.0)
"5986551A16FD8E9B1B4C89E7AAD17C1BB3196D28" = Windows Driver Package - Nokia Modem  (10/27/2008 7.01.0.1)
"6D296974BAB6CA8429D5E687B292A6DA3E9FBD4A" = Windows Driver Package - Nokia Modem  (10/27/2008 3.9)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"Adobe® Photoshop® Album Starter Edition 3.2" = Adobe® Photoshop® Album Starter Edition 3.2
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE
"a-squared Free_is1" = a-squared Free 4.5
"a-squared HiJackFree_is1" = a-squared HiJackFree 3.1
"avast!" = avast! Antivirus
"AVG8Uninstall" = AVG 8.5
"CCleaner" = CCleaner (remove only)
"Coupon Printer2.0" = Coupon Printer
"Driving Test Success All Tests_is1" = Driving Test Success 2006/7
"DVD Flick_is1" = DVD Flick
"DVD Photo Slideshow Professional" = DVD Photo Slideshow Pro 7.97
"Easy MPEG AVI DIVX WMV RM to DVD_is1" = Easy MPEG/AVI/DIVX/WMV/RM to DVD 1.5.1
"EPSON Printer and Utilities" = EPSON Printer Software
"ESC66 Reference Guide" = ESC66 Reference Guide
"ESC66 Software Guide" = ESC66 Software Guide
"getPlus(R)_ocx" = getPlus(R)_ocx
"Google Updater" = Google Updater
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"IObit Security 360_is1" = IObit Security 360 1.0
"JL2005A Camera_is1" = Uninstall JL2005A Camera
"legacyqcam_10.51" = Logitech Legacy USB Camera Driver Package
"LimeWire" = LimeWire 5.2.13
"lvdrivers_11.90" = Logitech QuickCam Driver Package
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Messenger Plus! Live" = Messenger Plus! Live
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.3)" = Mozilla Firefox (3.5.3)
"MP3 Rocket" = MP3 Rocket
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MSNINST" = MSN
"Naevius GVI Converter_is1" = Naevius GVI Converter 1.4
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia PC Suite" = Nokia PC Suite
"OnlineArmor_is1" = Online Armor 3.5
"RealPlayer 12.0" = RealPlayer
"Revo Uninstaller" = Revo Uninstaller 1.83
"RileysGAMES_is1" = RileysGAMES 1.0
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"Service Record" = Service Record
"SopCast" = SopCast 3.0.3
"teammanager2005_is1" = Uninstall
"TomTom HOME" = TomTom HOME 2.6.3.1609
"TVUPlayer" = TVUPlayer 2.4.5.3
"Uninstall_is1" = Uninstall 1.0.0.1
"Update Service" = Update Service
"VIA Vinyl Audio Codecs Driver Setup Program" = VIA Vinyl Audio Codecs Driver Setup Program
"VLC media player" = VideoLAN VLC media player 0.8.6
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"WIC" = Windows Imaging Component
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"Wudf01005" = Microsoft User-Mode Driver Framework Feature Pack 1.5
"YouTube Downloader App" = YouTube Downloader App 1.01

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Antivirus Events ]
Error - 23/09/2009 14:52:14 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe failed, 00000005.  

Error - 23/09/2009 15:00:38 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\RECYCLER\S-1-5-21-73586283-842925246-839522115-500\Dc14.exe failed, 00000005.


Error - 23/09/2009 15:08:00 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Program Files\Alwil Software\Avast4\ashAvast.exe failed, 00000005.  

Error - 23/09/2009 15:45:11 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe failed, 00000005.  

Error - 24/09/2009 06:53:50 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe failed, 00000005.  

Error - 24/09/2009 12:16:05 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe failed, 00000005.  

Error - 24/09/2009 12:21:49 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\RECYCLER\S-1-5-21-73586283-842925246-839522115-500\Dc14.exe failed, 00000005.


Error - 24/09/2009 12:27:37 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Program Files\Alwil Software\Avast4\ashAvast.exe failed, 00000005.  

Error - 24/09/2009 12:28:42 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe failed, 00000005.  

Error - 24/09/2009 12:59:45 | Computer Name = ABC5C48A3F8841B | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe failed, 00000005.  

[ Application Events ]
Error - 02/10/2009 11:18:29 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: The server name or address could not be resolved  

Error - 02/10/2009 11:18:29 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: This network connection does not exist.  

Error - 03/10/2009 10:01:44 | Computer Name = ABC5C48A3F8841B | Source = Windows Live Messenger | ID = 5000
Description = 

Error - 04/10/2009 04:36:22 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: The server name or address could not be resolved  

Error - 04/10/2009 04:36:23 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: This network connection does not exist.  

Error - 04/10/2009 04:54:59 | Computer Name = ABC5C48A3F8841B | Source = Application Hang | ID = 1002
Description = Hanging application iTunes.exe, version 9.0.1.8, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 04/10/2009 13:19:30 | Computer Name = ABC5C48A3F8841B | Source = Microsoft Office 11 | ID = 1000
Description = Faulting application winword.exe, version 11.0.8307.0, stamp 49ee835a,
faulting module unknown, version 0.0.0.0, stamp 00000000, debug? 0, fault address
0x01b7fd4d.

Error - 04/10/2009 13:20:15 | Computer Name = ABC5C48A3F8841B | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 04/10/2009 17:51:31 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: The server name or address could not be resolved  

Error - 04/10/2009 17:51:32 | Computer Name = ABC5C48A3F8841B | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: This network connection does not exist.  

[ System Events ]
Error - 03/10/2009 13:57:51 | Computer Name = ABC5C48A3F8841B | Source = Schannel | ID = 36881
Description = The certificate received from the remote server has expired. The SSL
connection   request has failed. The attached data contains the server certificate.

Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000
Description = The Online Armor service failed to start due to the following error:
  %%5

Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000
Description = The Lavasoft Ad-Aware Service service failed to start due to the following
error:   %%5

Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000
Description = The avast! Antivirus service failed to start due to the following 
error:   %%5

Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7001
Description = The Network DDE service depends on the Network DDE DSDM service which
failed to start because of the following error:   %%1058

Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000
Description = The Parallel port driver service failed to start due to the following
error:   %%1058

Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000
Description = The adfs service failed to start due to the following error:   %%2

Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000
Description = The Bonjour Service service failed to start due to the following error:
  %%2

Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7000
Description = The SeaPort service failed to start due to the following error:   %%2

Error - 03/10/2009 18:38:29 | Computer Name = ABC5C48A3F8841B | Source = Service Control Manager | ID = 7023
Description = The Automatic Updates service terminated with the following error:
  %%126


< End of report >

OTL.txt scan:

OTL logfile created on: 05/10/2009 17:30:24 - Run 1
OTL by OldTimer - Version 3.0.18.4     Folder = C:\Documents and Settings\Pruthvesh\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

1023.22 Mb Total Physical Memory | 475.49 Mb Available Physical Memory | 46.47% Memory free
2.40 Gb Paging File | 1.96 Gb Available in Paging File | 81.43% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 275.08 Gb Total Space | 195.44 Gb Free Space | 71.05% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ABC5C48A3F8841B
Current User Name: Pruthvesh
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - C:\Program Files\Tall Emu\Online Armor\OAcat.exe (Tall Emu)
PRC - C:\WINDOWS\Explorer.EXE (Microsoft Corporation)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Google\Update\1.2.183.7\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE (SEIKO EPSON CORPORATION)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\VIAudioi\SBADeck\ADeck.exe (VIA Technologies, Inc.)
PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Logitech\QuickCam\Quickcam.exe ()
PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Documents and Settings\Pruthvesh\My Documents\Amal\Sony Ericsson PC Suite\SEPCSuite.exe (Sony Ericsson Mobile Communications AB)
PRC - C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
PRC - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.)
PRC - C:\Program Files\a-squared Free\a2service.exe (Emsi Software GmbH)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe ()
PRC - C:\Program Files\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\IObit\IObit Security 360\IS360srv.exe (IObit)
PRC - C:\Program Files\AVG\AVG8\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG8\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
PRC - C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation)
PRC - C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
PRC - C:\Documents and Settings\Pruthvesh\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Documents and Settings\Pruthvesh\Desktop\OTL.exe (OldTimer Tools)

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - (a2free [Auto | Running]) -- C:\Program Files\a-squared Free\a2service.exe (Emsi Software GmbH)
SRV - (Apple Mobile Device [Auto | Running]) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (aspnet_state [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
SRV - (aswUpdSv [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (avast! Antivirus [Auto | Stopped]) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe ()
SRV - (avast! Mail Scanner [On_Demand | Stopped]) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner [On_Demand | Stopped]) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (avg8emc [Auto | Stopped]) -- C:\Program Files\AVG\AVG8\avgemc.exe (AVG Technologies CZ, s.r.o.)
SRV - (avg8wd [Auto | Running]) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (Bonjour Service [Auto | Stopped]) --  File not found
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (fsssvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (getPlus(R) Helper [On_Demand | Stopped]) -- C:\Program Files\NOS\bin\getPlus_HelperSvc.exe (NOS Microsystems Ltd.)
SRV - (gupdate1ca104710ccd624 [Auto | Stopped]) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (gusvc [Auto | Stopped]) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (Google)
SRV - (helpsvc [Auto | Running]) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation)
SRV - (IDriverT [On_Demand | Stopped]) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (idsvc [unknown | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (iPod Service [On_Demand | Running]) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (IS360service [Auto | Running]) -- C:\Program Files\IObit\IObit Security 360\IS360srv.exe (IObit)
SRV - (JavaQuickStarterService [Auto | Running]) -- C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
SRV - (Lavasoft Ad-Aware Service [Auto | Stopped]) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe ()
SRV - (LVPrcSrv [Auto | Running]) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
SRV - (NetTcpPortSharing [Disabled | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (NwSapAgent [Auto | Running]) -- C:\WINDOWS\System32\ipxsap.dll (Microsoft Corporation)
SRV - (OAcat [Auto | Running]) -- C:\Program Files\Tall Emu\Online Armor\OAcat.exe (Tall Emu)
SRV - (ose [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (SeaPort [Auto | Stopped]) --  File not found
SRV - (ServiceLayer [On_Demand | Stopped]) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (SvcOnlineArmor [Auto | Stopped]) -- C:\Program Files\Tall Emu\Online Armor\oasrv.exe ()
SRV - (TomTomHOMEService [Disabled | Stopped]) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (WMPNetworkSvc [On_Demand | Running]) -- C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation)

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - (a016bus [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\a016bus.sys (MCCI Corporation)
DRV - (a016mdfl [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\a016mdfl.sys (MCCI Corporation)
DRV - (a016mdm [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\a016mdm.sys (MCCI Corporation)
DRV - (a016mgmt [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\a016mgmt.sys (MCCI Corporation)
DRV - (a016obex [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\a016obex.sys (MCCI Corporation)
DRV - (Aavmker4 [system | Running]) -- C:\WINDOWS\System32\drivers\aavmker4.sys (ALWIL Software)
DRV - (ALCXSENS [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\ALCXSENS.SYS (Sensaura)
DRV - (ALCXWDM [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (aswFsBlk [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\aswFsBlk.sys (ALWIL Software)
DRV - (aswMon2 [Auto | Running]) -- C:\WINDOWS\System32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswRdr [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (aswSP [system | Running]) -- C:\WINDOWS\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswTdi [system | Running]) -- C:\WINDOWS\System32\drivers\aswTdi.sys (ALWIL Software)
DRV - (AvgLdx86 [system | Running]) -- C:\WINDOWS\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgMfx86 [system | Running]) -- C:\WINDOWS\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgTdiX [system | Running]) -- C:\WINDOWS\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (fasttx2k [boot | Running]) -- C:\WINDOWS\system32\DRIVERS\fasttx2k.sys (Promise Technology, Inc.)
DRV - (fssfltr [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (GEARAspiWDM [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (ggflt [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\ggflt.sys (Sony Ericsson Mobile Communications)
DRV - (ggsemc [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV - (HSFHWBS2 [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\HSFBS2S2.sys (Conexant Systems, Inc.)
DRV - (HSF_DP [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\HSFDPSP2.sys (Conexant Systems, Inc.)
DRV - (JL2005 [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\toywdm.sys (Windows (R) 2000 DDK provider)
DRV - (LVPr2Mon [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\LVPr2Mon.sys ()
DRV - (LVUSBSta [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\LVUSBSta.sys (Logitech Inc.)
DRV - (mdmxsdk [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys (Conexant)
DRV - (nmwcd [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\ccdcmb.sys (Nokia)
DRV - (nmwcdc [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys (Nokia)
DRV - (nv [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys (NVIDIA Corporation)
DRV - (NwlnkIpx [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys (Microsoft Corporation)
DRV - (NwlnkNb [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\nwlnknb.sys (Microsoft Corporation)
DRV - (NwlnkSpx [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys (Microsoft Corporation)
DRV - (OADevice [system | Running]) -- C:\WINDOWS\System32\drivers\OADriver.sys (Tall Emu)
DRV - (OAmon [system | Running]) -- C:\WINDOWS\System32\drivers\OAmon.sys (Tall Emu)
DRV - (OAnet [system | Running]) -- C:\WINDOWS\System32\drivers\OAnet.sys (Tall Emu Pty Ltd)
DRV - (pccsmcfd [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\pccsmcfd.sys (Nokia)
DRV - (pepifilter [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\lv302af.sys (Logitech Inc.)
DRV - (PID_PEPI [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\LV302V32.SYS (Logitech Inc.)
DRV - (Ptilink [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.)
DRV - (PxHelp20 [boot | Running]) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (ROOTMODEM [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\RootMdm.sys (Microsoft Corporation)
DRV - (RT2500 [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\RT2500.sys (Ralink Technology Inc.)
DRV - (Secdrv [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (SONYPVU1 [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\SONYPVU1.SYS (Sony Corporation)
DRV - (sscdbus [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\sscdbus.sys (MCCI Corporation)
DRV - (sscdmdfl [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\sscdmdfl.sys (MCCI Corporation)
DRV - (sscdmdm [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\sscdmdm.sys (MCCI Corporation)
DRV - (StarOpen [system | Running]) -- C:\WINDOWS\System32\drivers\StarOpen.sys ()
DRV - (upperdev [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (USBAAPL [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\usbaapl.sys (Apple, Inc.)
DRV - (usbaudio [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\usbaudio.sys (Microsoft Corporation)
DRV - (usbcm [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\usbcm.sys (Microsystems Corp)
DRV - (usbser [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\usbser.sys (Microsoft Corporation)
DRV - (UsbserFilt [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\usbser_lowerfltj.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (viasraid [boot | Running]) -- C:\WINDOWS\system32\DRIVERS\viasraid.sys (VIA Technologies inc,.ltd)
DRV - (VIAudio [On_Demand | Stopped]) -- C:\WINDOWS\System32\drivers\ac97via.sys (VIA Technologies, Inc.)
DRV - (winachsf [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\HSFCXTS2.sys (Conexant Systems, Inc.)
DRV - (yukonwxp [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\yk51x86.sys (Marvell)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =  [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Local Page = http://www.google.com/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,AutoSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/saautosearch.aspx
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKCU\..\URLSearchHook: *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultenginename: "Ask"
FF - prefs.js..browser.search.order.1: "Ask"
FF - prefs.js..browser.search.selectedEngine: "Ask"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.co.uk/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: {CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}:1.5.2.35
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5
FF - prefs.js..extensions.enabledItems: [email protected]:2.507.024.001
FF - prefs.js..extensions.enabledItems: [email protected]:1.19
FF - prefs.js..extensions.enabledItems: [email protected]:0.20
FF - prefs.js..extensions.enabledItems: [email protected]:2.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: [email protected]:2
FF - prefs.js..extensions.enabledItems: 4
FF - prefs.js..extensions.enabledItems: 8
FF - prefs.js..extensions.enabledItems: 2
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3
FF - prefs.js..keyword.URL: "http://toolbar.ask.com/toolbarv/askRedirect?o=13116&gct=&gc=1&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users.WINDOWS\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2008/11/11 18:58:32 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009/06/25 09:44:48 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2009/01/22 20:22:36 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVG\AVG8\Toolbar\Firefox\[email protected] [2009/08/27 18:11:44 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009/09/02 00:39:47 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009/01/28 00:09:35 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord\firefox\ext [2009/10/03 18:38:57 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/10/03 18:38:48 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/10/03 18:39:05 | 00,000,000 | ---D | M]

[2009/06/05 11:25:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Extensions
[2008/11/11 22:21:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/06/05 11:25:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Extensions\[email protected]
[2009/03/18 17:34:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Extensions\[email protected]
[2009/10/05 17:02:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions
[2009/09/02 09:19:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2008/11/30 00:48:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2008/12/29 20:40:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}
[2009/09/11 17:10:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/08/16 19:02:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\[email protected]
[2009/07/28 22:13:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\[email protected]
[2009/09/18 18:45:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\[email protected]
[2009/08/12 14:28:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\[email protected]
[2009/08/12 14:28:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\mozilla\Firefox\Profiles\49ux4nk6.default\extensions\[email protected]
[2008/12/13 10:56:36 | 00,000,681 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Application Data\Mozilla\FireFox\Profiles\49ux4nk6.default\searchplugins\ask.xml
[2009/10/05 17:02:46 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/07/02 22:19:05 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009/09/10 15:29:35 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2007/05/28 09:21:47 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
[2008/09/27 22:41:21 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
[2009/01/28 00:09:59 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009/04/20 15:51:45 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009/08/26 10:57:58 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009/09/10 15:29:26 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/09/10 15:29:26 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/05/01 22:02:48 | 01,044,480 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\libdivx.dll
[2009/01/16 18:11:10 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2008/06/18 06:43:04 | 00,086,016 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll
[2009/07/25 05:23:01 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2009/05/12 19:46:20 | 01,650,992 | ---- | M] (DivX,Inc.) -- C:\Program Files\mozilla firefox\plugins\npdivx32.dll
[2008/07/23 17:47:46 | 00,098,304 | ---- | M] (DivX, Inc) -- C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll
[2009/09/10 15:29:30 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2007/03/22 19:23:30 | 00,017,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL
[2008/10/14 21:33:30 | 00,095,600 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009/10/03 18:38:48 | 00,140,864 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/10/02 12:21:44 | 00,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2009/10/03 18:39:05 | 00,008,192 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprjplug.dll
[2009/10/03 18:38:40 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2008/12/01 12:01:02 | 00,114,540 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\mozilla firefox\plugins\np_gp.dll
[2009/05/01 22:02:48 | 00,200,704 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program Files\mozilla firefox\plugins\ssldivx.dll
[2009/06/24 13:14:16 | 00,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2009/06/24 13:14:16 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/07/02 22:37:47 | 00,001,497 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml
[2009/06/24 13:14:16 | 00,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
[2009/06/24 13:14:16 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/06/24 13:14:16 | 00,000,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2009/06/24 13:14:16 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/06/24 13:14:16 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/06/24 13:14:16 | 00,000,831 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml

O1 HOSTS File: (734 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [@OnlineArmor GUI] C:\Program Files\Tall Emu\Online Armor\oaui.exe ()
O4 - HKLM..\Run: [Adobe Photo Downloader] C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe (VIA Technologies, Inc.)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [EPSON Stylus C66 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe ()
O4 - HKLM..\Run: [Ptipbmf] C:\WINDOWS\System32\ptipbmf.DLL (Promise Technology, Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\Documents and Settings\Pruthvesh\My Documents\Amal\qttask.exe (Apple Inc.)
O4 - HKLM..\Run: [soundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe File not found
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [blazeServoTool] C:\Program Files\BlazeVideo\BlazeDVD4 Professional\MediaDetector.exe File not found
O4 - HKCU..\Run: [PopRock] C:\DOCUME~1\PRUTHV~1\LOCALS~1\Temp\a.exe File not found
O4 - HKCU..\Run: [sony Ericsson PC Suite] C:\Documents and Settings\Pruthvesh\My Documents\Amal\Sony Ericsson PC Suite\SEPCSuite.exe (Sony Ericsson Mobile Communications AB)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup\Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.)
O4 - Startup: C:\Documents and Settings\Pruthvesh\Start Menu\Programs\Startup\Ubisoft register.lnk = C:\Program Files\Ubisoft\Register\schedule.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = 
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = 
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O8 - Extra context menu item: Add to Windows &Live Favorites -  File not found
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab (Minesweeper Flags Class)
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} http://dl.tvunetworks.com/TVUAx.cab (CTVUAxCtrl Object)
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://www1.snapfish.co.uk/SnapfishUKActivia.cab (Snapfish Activia)
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.1.cab (DLM Control)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab (MSN Photo Upload Tool)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/EN-GB/a-UNO1/GAME_UNO1.cab (UnoCtrl Class)
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} http://upload.facebook.com/controls/FacebookPhotoUploader.cab (Facebook Photo Uploader Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab (MessengerStatsClient Class)
O16 - DPF: {A903E5AB-C67E-40FB-94F1-E1305982F6E0} http://www.ooxtv.com/stream.ocx (KooPlayer Control)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab (NsvPlayX Control)
O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} http://static.photobox.co.uk/sg/common/uploader_uni.cab (PB_Uploader Class)
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} http://www.adobe.com/products/acrobat/nos/gp.cab (get_atlcom Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.168.4.100 194.168.8.100
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Value error. File not found
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter:  - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/21 15:58:17 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{e63863ab-51ab-11de-8258-000e9b7319a3}\Shell\AutoRun\command - "" = E:\InstallTomTomHOME.exe -- File not found
O34 - HKLM BootExecute: (autocheck) -  File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\4iv78lwekw\gd) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\4iv78lwekw\gg\2046-0.grp2) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\4iv78lwekw\gg) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\4iv78lwekw\gg) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\4iv78lwekw) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\Data) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\DownloadTemp\accum) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\DownloadTemp) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\DownloadTemp\accum) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\scripts) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT\scripts) -  File not found
O34 - HKLM BootExecute: (PFDNNT) -  File not found
O34 - HKLM BootExecute: (C:\Program) -  File not found
O34 - HKLM BootExecute: (Files\Common) -  File not found
O34 - HKLM BootExecute: (Files\GMT) -  File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[5 C:\WINDOWS\*.tmp files]
[2009/10/02 12:22:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/09/23 18:29:27 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{EF63305C-BAD7-4144-9208-D65528260864}
[2009/09/23 19:56:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IObit
[2009/09/22 21:52:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Lavasoft
[2009/10/02 17:17:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Messenger Plus!
[2009/09/28 17:53:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\OnlineArmor
[2009/10/03 18:37:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Real
[2009/09/28 17:53:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pruthvesh\Application Data\OnlineArmor
[3 C:\Documents and Settings\Pruthvesh\My Documents\*.tmp files]
[2009/09/28 17:52:11 | 00,000,000 | ---D | C] -- C:\Program Files\a-squared Free
[2009/09/29 14:22:08 | 00,000,000 | ---D | C] -- C:\Program Files\a-squared HiJackFree
[2009/09/23 19:56:31 | 00,000,000 | ---D | C] -- C:\Program Files\IObit
[2009/10/02 12:22:56 | 00,000,000 | ---D | C] -- C:\Program Files\iPod
[2009/10/02 12:22:53 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes
[2009/09/23 18:29:02 | 00,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2009/10/02 15:57:10 | 00,000,000 | ---D | C] -- C:\Program Files\Messenger Plus! Live
[2009/09/24 10:58:22 | 00,000,000 | ---D | C] -- C:\Program Files\MSECache
[2009/09/28 17:53:10 | 00,000,000 | ---D | C] -- C:\Program Files\Tall Emu
[2009/09/23 15:52:52 | 00,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2009/10/05 17:28:55 | 00,520,704 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Pruthvesh\Desktop\OTL.exe
[2009/10/04 22:50:50 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF6269.exe
[2009/10/04 22:50:50 | 00,000,000 | --SD | C] -- C:\ComboFix
[2009/10/04 22:49:26 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF26072.exe
[2009/10/04 09:35:37 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF22827.exe
[2009/10/02 17:51:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pruthvesh\My Documents\My Chat Logs
[2009/10/02 16:15:33 | 00,000,000 | RHSD | C] -- C:\cmdcons
[2009/10/02 16:13:57 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2009/10/02 16:13:57 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2009/10/02 16:13:57 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2009/10/02 16:13:57 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009/10/02 16:13:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009/10/02 16:13:47 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF19906.exe
[2009/10/02 16:12:16 | 00,000,000 | ---D | C] -- C:\Qoobox
[2009/10/02 12:19:32 | 00,000,000 | -HSD | C] -- C:\Config.Msi
[2009/09/29 14:21:29 | 00,000,000 | ---D | C] -- C:\ISeeYouXP
[2009/09/29 14:13:57 | 00,000,000 | ---D | C] -- C:\Avenger
[2009/09/28 17:53:11 | 00,200,784 | ---- | C] (Tall Emu) -- C:\WINDOWS\System32\drivers\OADriver.sys
[2009/09/28 17:53:11 | 00,029,776 | ---- | C] (Tall Emu Pty Ltd) -- C:\WINDOWS\System32\drivers\OAnet.sys
[2009/09/28 17:53:11 | 00,024,656 | ---- | C] (Tall Emu) -- C:\WINDOWS\System32\drivers\OAmon.sys
[2009/09/28 17:52:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Pruthvesh\My Documents\a-squared Free
[2009/09/09 09:11:18 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\triedit.dll

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[5 C:\WINDOWS\System32\*.tmp files]
[5 C:\WINDOWS\*.tmp files]
[3 C:\Documents and Settings\Pruthvesh\My Documents\*.tmp files]
[2010/03/23 20:31:24 | 00,000,430 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{07705FFE-3105-4962-9ABA-E311624B1569}.job
[2009/10/05 17:29:08 | 00,520,704 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Pruthvesh\Desktop\OTL.exe
[2009/10/05 17:00:00 | 00,000,292 | -H-- | M] () -- C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
[2009/10/05 17:00:00 | 00,000,248 | -H-- | M] () -- C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
[2009/10/05 16:57:23 | 00,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2009/10/05 16:53:13 | 00,000,000 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\prvlcl.dat
[2009/10/05 16:47:34 | 00,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/10/05 16:46:37 | 00,000,880 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2009/10/05 16:46:36 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/10/05 16:46:29 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/10/04 22:50:39 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF6269.exe
[2009/10/04 22:50:27 | 03,325,144 | R--- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\ComboFix.exe
[2009/10/04 22:46:40 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF26072.exe
[2009/10/04 22:40:00 | 00,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2009/10/04 19:21:25 | 42,259,529 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2009/10/04 09:31:59 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF22827.exe
[2009/10/03 18:58:16 | 00,003,913 | ---- | M] () -- C:\WINDOWS\cdplayer.ini
[2009/10/03 18:38:48 | 00,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
[2009/10/03 18:38:35 | 00,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
[2009/10/03 18:38:35 | 00,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
[2009/10/03 18:37:57 | 00,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2009/10/02 22:58:58 | 00,071,652 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/10/02 16:15:44 | 00,000,281 | RHS- | M] () -- C:\boot.ini
[2009/10/02 16:12:13 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF19906.exe
[2009/10/02 11:48:14 | 00,000,132 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\files.bat
[2009/10/02 11:38:24 | 00,004,566 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2009/10/02 07:35:05 | 00,000,000 | ---- | M] () -- C:\WINDOWS\win32k.sys
[2009/10/01 16:38:21 | 00,492,629 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2009/09/30 20:18:00 | 00,000,354 | ---- | M] () -- C:\WINDOWS\tasks\Norton PC Checkup Weekday Scanner.job
[2009/09/30 18:31:01 | 00,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2009/09/29 14:49:07 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/09/28 21:52:28 | 00,002,495 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\Microsoft Office Excel 2003.lnk
[2009/09/28 20:04:29 | 00,002,497 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\Microsoft Office Word 2003.lnk
[2009/09/28 20:02:54 | 00,049,411 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\Visaform-19thFeb08.pdf
[2009/09/28 17:53:41 | 00,000,044 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.idx
[2009/09/28 17:53:23 | 00,429,288 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/09/28 17:53:23 | 00,066,238 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/09/25 17:49:22 | 00,025,088 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\My Documents\Dear suresh uncle and madhu aunty.doc
[2009/09/24 18:24:58 | 00,512,960 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/09/23 18:29:26 | 00,000,874 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Ad-Aware.lnk
[2009/09/23 15:52:56 | 00,000,924 | ---- | M] () -- C:\Documents and Settings\Pruthvesh\Desktop\Revo Uninstaller.lnk
[2009/09/22 22:24:00 | 00,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/09/20 12:30:00 | 00,000,354 | ---- | M] () -- C:\WINDOWS\tasks\Norton PC Checkup Weekend Scanner.job
[2009/09/14 02:12:36 | 00,229,888 | ---- | M] () -- C:\WINDOWS\PEV.exe

[color=#E56717]========== Files - No Company Name ==========[/color]
[2009/10/04 09:30:13 | 03,325,144 | R--- | C] () -- C:\Documents and Settings\Pruthvesh\Desktop\ComboFix.exe
[2009/10/02 16:15:38 | 00,260,272 | ---- | C] () -- C:\cmldr
[2009/10/02 16:13:57 | 00,229,888 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2009/10/02 16:13:57 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2009/10/02 16:13:57 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2009/10/02 16:13:57 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009/10/02 11:48:14 | 00,000,132 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Desktop\files.bat
[2009/09/28 20:02:54 | 00,049,411 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Desktop\Visaform-19thFeb08.pdf
[2009/09/27 21:00:25 | 00,000,000 | ---- | C] () -- C:\WINDOWS\win32k.sys
[2009/09/25 21:48:38 | 00,000,248 | -H-- | C] () -- C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
[2009/09/25 21:48:28 | 00,000,292 | -H-- | C] () -- C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
[2009/09/25 17:43:40 | 00,025,088 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\My Documents\Dear suresh uncle and madhu aunty.doc
[2009/09/23 18:29:26 | 00,000,874 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Ad-Aware.lnk
[2009/09/23 15:52:56 | 00,000,924 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Desktop\Revo Uninstaller.lnk
[2009/09/22 21:53:04 | 00,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2009/08/27 19:13:19 | 00,000,031 | -H-- | C] () -- C:\WINDOWS\UKCpInfo.sys
[2009/05/29 17:28:00 | 00,003,913 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2009/02/26 17:50:28 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\prvlcl.dat
[2008/12/16 22:58:54 | 00,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys
[2008/12/16 22:50:56 | 00,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLgFT.dll
[2008/12/02 19:01:36 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\LauncherAccess.dt
[2008/12/02 18:59:14 | 00,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2008/07/23 17:50:52 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008/07/23 17:47:34 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2008/07/23 17:47:34 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2008/07/23 17:46:38 | 00,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2008/06/21 10:53:16 | 00,050,127 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2007/11/05 12:23:33 | 00,069,632 | ---- | C] () -- C:\WINDOWS\System32\xmltok.dll
[2007/11/05 12:23:33 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\xmlparse.dll
[2007/05/05 16:24:23 | 00,000,520 | ---- | C] () -- C:\WINDOWS\netdet.ini
[2007/04/08 17:54:44 | 00,000,067 | ---- | C] () -- C:\WINDOWS\Easy Video to DVD.INI
[2007/03/29 23:00:40 | 00,203,264 | ---- | C] () -- C:\WINDOWS\System32\CddbCdda.dll
[2007/02/18 16:01:56 | 00,323,584 | ---- | C] () -- C:\WINDOWS\System32\FoxImager.dll
[2007/01/12 18:11:57 | 00,000,070 | ---- | C] () -- C:\WINDOWS\02F55490.ini
[2006/09/23 11:44:38 | 00,000,035 | ---- | C] () -- C:\WINDOWS\A4W.INI
[2006/07/03 07:29:58 | 00,000,110 | ---- | C] () -- C:\WINDOWS\Akruti60.ini
[2006/07/03 07:29:46 | 00,000,015 | ---- | C] () -- C:\WINDOWS\akoffice.ini
[2006/05/31 10:43:56 | 00,000,710 | ---- | C] () -- C:\WINDOWS\Macros.ini
[2006/05/17 14:46:43 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2006/05/17 14:46:42 | 00,000,452 | ---- | C] () -- C:\WINDOWS\alsndmgr.ini
[2006/05/04 21:11:22 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\UnAudioNT.dll
[2006/05/03 12:09:00 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\Akruti4Wd.dll
[2006/04/18 12:24:35 | 00,314,880 | ---- | C] () -- C:\WINDOWS\System32\Tx32.dll
[2006/03/06 19:36:33 | 00,126,976 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/01/19 19:32:57 | 00,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2006/01/11 22:13:13 | 00,000,025 | ---- | C] () -- C:\WINDOWS\CDEC66SeriesEuro.ini
[2006/01/08 19:36:36 | 00,000,478 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/01/08 10:19:18 | 00,090,000 | ---- | C] () -- C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2006/01/06 20:49:22 | 00,000,784 | ---- | C] () -- C:\WINDOWS\VTruck1.ini
[2006/01/06 20:36:12 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Pruthvesh\Application Data\desktop.ini
[2006/01/06 20:19:47 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\desktop.ini
[2004/08/04 13:00:00 | 00,001,028 | ---- | C] () -- C:\WINDOWS\win.ini
[2004/08/04 13:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2002/03/17 01:00:00 | 00,007,420 | ---- | C] () -- C:\WINDOWS\UA000059.DLL
[1999/05/20 13:33:20 | 00,004,080 | ---- | C] () -- C:\WINDOWS\System32\drivers\Tvicport.sys
[1999/04/23 23:22:00 | 00,000,255 | ---- | C] () -- C:\WINDOWS\WINSOCKDLL.SYS
[1999/04/23 23:22:00 | 00,000,255 | ---- | C] () -- C:\WINDOWS\System32\MCIVISPRIME.DRV

[color=#E56717]========== LOP Check ==========[/color]

[2009/10/03 18:37:50 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data
[2009/03/15 10:39:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[2009/10/02 12:23:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/04/12 11:48:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009/09/23 18:29:27 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{EF63305C-BAD7-4144-9208-D65528260864}
[2006/11/20 19:19:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Advanced Chemistry Development
[2009/08/10 15:34:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\ashampoo
[2009/08/15 23:32:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVG Security Toolbar
[2008/12/24 22:46:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVS4YOU
[2009/08/07 01:11:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\BVRP Software
[2008/10/24 11:49:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Driving Test Success
[2007/06/27 07:43:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\FLEXnet
[2008/06/12 07:23:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IM
[2008/06/12 07:22:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IncrediMail
[2009/01/22 20:20:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Installations
[2009/09/23 19:56:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IObit
[2009/03/13 13:39:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\LogiShrd
[2009/10/02 17:17:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Messenger Plus!
[2009/04/24 20:07:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\NCH Swift Sound
[2009/09/28 17:53:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\OnlineArmor
[2009/01/22 20:24:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PC Suite
[2009/08/10 14:10:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Socusoft
[2008/09/02 00:19:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony
[2009/08/10 14:10:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP
[2008/04/24 15:24:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\title tool face bin
[2009/06/05 11:25:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TomTom
[2009/06/13 14:16:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TVU Networks
[2006/01/11 22:14:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\UDL
[2007/02/16 16:48:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Ulead Systems
[2009/09/28 17:53:39 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\Pruthvesh\Application Data
[2006/06/21 16:06:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\ArcSoft
[2009/08/10 15:34:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Ashampoo
[2009/05/03 16:48:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\AVGTOOLBAR
[2008/12/24 22:46:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\AVS4YOU
[2008/11/30 18:07:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Download Manager
[2008/05/30 11:30:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\DVD Flick
[2008/04/29 18:50:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\dvdcss
[2006/12/21 14:28:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\IM-Names
[2007/04/26 16:06:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\InternetCalls
[2006/02/17 16:19:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Leadertech
[2009/07/16 23:53:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\MP3Rocket
[2006/10/04 20:02:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\MSNInstaller
[2009/04/24 19:46:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\NCH Swift Sound
[2009/01/22 20:24:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Nokia
[2009/09/28 17:53:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\OnlineArmor
[2009/01/22 20:25:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\PC Suite
[2008/12/02 19:04:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Samsung
[2008/01/11 20:46:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Snapfish
[2008/09/02 00:19:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Sony
[2007/12/29 16:34:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\SopCast
[2009/06/05 11:25:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\TomTom
[2007/12/01 12:20:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\TVU Networks
[2006/08/27 13:01:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\VoipDiscount
[2006/12/23 21:30:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\VSO_HWE
[2007/03/11 20:34:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Watchtower
[2006/06/16 21:00:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\WhitePhonePersonal
[2008/09/02 21:14:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Windows Live Writer
[2008/12/10 17:28:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Pruthvesh\Application Data\Xilisoft Corporation
[2006/12/18 15:45:06 | 00,000,162 | ---- | M] () -- C:\WINDOWS\Tasks\.job
[2009/09/30 18:31:01 | 00,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2009/09/29 14:49:07 | 00,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
[2004/08/04 13:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini
[2009/09/03 08:08:00 | 00,000,268 | ---- | M] () -- C:\WINDOWS\Tasks\Disk Cleanup.job
[2009/10/05 16:57:23 | 00,000,868 | ---- | M] () -- C:\WINDOWS\Tasks\Google Software Updater.job
[2009/10/05 16:46:37 | 00,000,880 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2009/10/04 22:40:00 | 00,000,884 | ---- | M] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[2009/09/30 20:18:00 | 00,000,354 | ---- | M] () -- C:\WINDOWS\Tasks\Norton PC Checkup Weekday Scanner.job
[2009/09/20 12:30:00 | 00,000,354 | ---- | M] () -- C:\WINDOWS\Tasks\Norton PC Checkup Weekend Scanner.job
[2009/10/05 16:46:36 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT
[2010/03/23 20:31:24 | 00,000,430 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{07705FFE-3105-4962-9ABA-E311624B1569}.job
[2009/10/05 17:00:00 | 00,000,248 | -H-- | M] () -- C:\WINDOWS\Tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
[2009/10/05 17:00:00 | 00,000,292 | -H-- | M] () -- C:\WINDOWS\Tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job

[color=#E56717]========== Purity Check ==========[/color]


< End of report >

Share this post


Link to post
Share on other sites

The installed version of Java on this computer is out-dated. Install Java Runtime Environment (JRE) 6u16 available from Sun Microsystems.

-----------------------------------------------------------

Using Add or Remove Programs in the Control Panel; uninstall the following:

J2SE Runtime Environment 5.0 Update 10

Java SE Runtime Environment 6 Update 1

Java 6 Update 3

Java 6 Update 5

Java 6 Update 7

-----------------------------------------------------------

Run OTL.exe

  • Copy/paste the following text written inside of the code box into the Custom Scans/Fixes box located at the bottom of OTL
    :OTLI
    PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
    O4 - HKCU..\Run: [PopRock] C:\DOCUME~1\PRUTHV~1\LOCALS~1\Temp\a.exe File not found
    
    :Files
    C:\Documents and Settings\Pruthvesh\My Documents\*.tmp
    C:\WINDOWS\*.tmp
    C:\WINDOWS\System32\*.tmp
    C:\WINDOWS\System32\CF6269.exe
    C:\WINDOWS\System32\CF19906.exe
    C:\WINDOWS\System32\CF26072.exe
    C:\WINDOWS\System32\CF22827.exe
    C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
    C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
    
    :Commands
    [purity]
    [emptytemp]
    [start explorer]
    [Reboot]


  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot when it is done
  • Then atach a new OTL log ( don't check the boxes beside LOP Check or Purity this time )

Share this post


Link to post
Share on other sites

The installed version of Java on this computer is out-dated. Install Java Runtime Environment (JRE) 6u16 available from Sun Microsystems.

-----------------------------------------------------------

Using Add or Remove Programs in the Control Panel; uninstall the following:

-----------------------------------------------------------

Run OTL.exe

  • Copy/paste the following text written inside of the code box into the Custom Scans/Fixes box located at the bottom of OTL
    :OTLI
    PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
    O4 - HKCU..\Run: [PopRock] C:\DOCUME~1\PRUTHV~1\LOCALS~1\Temp\a.exe File not found
    
    :Files
    C:\Documents and Settings\Pruthvesh\My Documents\*.tmp
    C:\WINDOWS\*.tmp
    C:\WINDOWS\System32\*.tmp
    C:\WINDOWS\System32\CF6269.exe
    C:\WINDOWS\System32\CF19906.exe
    C:\WINDOWS\System32\CF26072.exe
    C:\WINDOWS\System32\CF22827.exe
    C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
    C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
    
    :Commands
    [purity]
    [emptytemp]
    [start explorer]
    [Reboot]


  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot when it is done
  • Then atach a new OTL log ( don't check the boxes beside LOP Check or Purity this time )

New OTL Log:

All processes killed
Error: Unable to interpret <:OTLI> in the current context!
Error: Unable to interpret <PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.> in the current context!
Error: Unable to interpret <O4 - HKCU..\Run: [PopRock] C:\DOCUME~1\PRUTHV~1\LOCALS~1\Temp\a.exe File not found> in the current context!
========== FILES ==========
C:\Documents and Settings\Pruthvesh\My Documents\~WRL1777.tmp moved successfully.
C:\Documents and Settings\Pruthvesh\My Documents\~WRL3899.tmp moved successfully.
C:\Documents and Settings\Pruthvesh\My Documents\~WRL4038.tmp moved successfully.
C:\WINDOWS\002994_.tmp moved successfully.
C:\WINDOWS\msdownld.tmp\msdownld.tmp moved successfully.
C:\WINDOWS\msdownld.tmp moved successfully.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET4.tmp moved successfully.
C:\WINDOWS\SET8.tmp moved successfully.
C:\WINDOWS\System32\CONFIG.TMP moved successfully.
C:\WINDOWS\System32\SET58.tmp moved successfully.
C:\WINDOWS\System32\SET64.tmp moved successfully.
C:\WINDOWS\System32\SET87.tmp moved successfully.
C:\WINDOWS\System32\SET93.tmp moved successfully.
C:\WINDOWS\System32\CF6269.exe moved successfully.
C:\WINDOWS\System32\CF19906.exe moved successfully.
C:\WINDOWS\System32\CF26072.exe moved successfully.
C:\WINDOWS\System32\CF22827.exe moved successfully.
C:\WINDOWS\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job moved successfully.
C:\WINDOWS\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 334857 bytes
->Temporary Internet Files folder emptied: 1384552 bytes

User: Administrator.ABC5C48A3F8841B
->Temp folder emptied: 1479062 bytes
->Temporary Internet Files folder emptied: 526683 bytes

User: All Users

User: All Users.WINDOWS

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes

User: Default User.WINDOWS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 10966848 bytes

User: LocalService.NT AUTHORITY
->Temp folder emptied: 66016 bytes
File delete failed. C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 62732 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: NetworkService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 12256791 bytes

User: Pruthvesh
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WXQRK5E7\adlink%7C559%7C1061414%7C0%7C225%7CAdId%3D1100164%3BBnId%3D1%3Bitime%3D941978293%3Blink%3Dhttp%3A%2F%2Fadopt%2Eeuroclick%2Ecom%2Flnk%2Eeu%3Faplcd%3D2339%3B156%3B202%3B56[1] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WXQRK5E7\makeplaylist.dll%3Fsid=6752202&pt=url&xdata=6D.xfE5hFQP5sy.qTP.dOw-17633104-1200276552&s=396500550&b=18fsofp1m07m2&wmp=10&ticket=a85d76b6ad882b0a24f538dbc48b15fe&zz=a[1].asx scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WLA3SHYZ\adlink%7C559%7C1061414%7C0%7C225%7CAdId%3D1100164%3BBnId%3D1%3Bitime%3D941978293%3Blink%3Dhttp%3A%2F%2Fadopt%2Eeuroclick%2Ecom%2Flnk%2Eeu%3Faplcd%3D2339%3B156%3B202%3B56[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\+lorries;cat=293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=160x600;tile=3;ord=1233777001524;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776590313;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ25QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=38032;sz=728x90;tile=1;ord=1233775775664;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776517947;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776291803;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\93;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=61239;items=1565;sz=160x600;tile=3;ord=1233776908249;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\9Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ100QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=146;sz=728x90;tile=1;ord=1233775935499;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\=scania+spares+and+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=160x600;tile=3;ord=1233777009639;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\IHMS0CAJT3BMXCAJFPXX0CA0O0M09CA9QUJZ1CAFBJMFICA0FGC5KCA8MX3J0CA1B616CCASKMZFICAGL1L1SCA1VAHKWCA73X2PICAIXWT5DCACNGGT9CA05LSYUCAWKRLJSCAFS24VBCA9TV5W8CAAFHY4TCAZO2LQ1CAOOD2GU scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\scania+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=9800;items=201;sz=160x600;tile=3;ord=1233777020305;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776517947;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776539805;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776291803;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=2423;sz=728x90;tile=1;ord=1233775792306;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=61239;items=1565;sz=728x90;tile=1;ord=1233776908249;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=38032;sz=160x600;tile=3;ord=1233775775664;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776268460;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\=scania+trucks;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=220;items=1596;sz=160x600;tile=3;ord=1233777049889;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\d+lorries;cat=293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=728x90;tile=1;ord=1233777001524;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\Q253A1686Q257C66Q253A2Q257C65Q253A12Q257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_sacatZ20481QQ_trksidZp3286Q2ec0Q2em14QQ_sopZ7QQ_scZ1[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\rucks;cat=9800;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=63732;items=325;sz=728x90;tile=1;ord=1233777083930;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\0QQQ5ftrkparmsZ66Q253A2Q257C65Q253A7Q257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=146;sz=160x600;tile=3;ord=1233775935499;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ25QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=16606;sz=728x90;tile=1;ord=1233775784370;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776539805;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776304465;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1137;sz=728x90;tile=1;ord=1233776061360;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\at=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=1;sz=728x90;tile=1;ord=1233775837531;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\iteWideConditionZNew13180QQBrand3d75b67ZSonyEricssoneb18661fQQ_catrefZ1QQ_dmptZUKQ5fMobilePhonesQ5fMobilePhonesQQ_flnZ1QQ_sacatZ3312QQ_ssovZ1QQ_trksidZp3286Q2ec0Q2em282[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\t=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=1;sz=160x600;tile=3;ord=1233775837531;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\ucks;cat=9800;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=63732;items=325;sz=160x600;tile=3;ord=1233777083930;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\w=scania+spares+and+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=728x90;tile=1;ord=1233777009639;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\w=scania+trucks;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=220;items=1596;sz=728x90;tile=1;ord=1233777049889;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\0LYJ8TAJ\makeplaylist.dll%3Fsid=6752202&pt=url&xdata=6D.xfE5hFQP5sy.qTP.dOw-17633104-1200276552&s=396500550&b=18fsofp1m07m2&wmp=10&ticket=a5bdd8d484f721fd7a3d9ea766aca7e5&zz=a[1].asx scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776268460;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776304465;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1137;sz=160x600;tile=3;ord=1233776061360;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=2423;sz=160x600;tile=3;ord=1233775792306;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=16606;sz=160x600;tile=3;ord=1233775784370;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776590313;[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\=scania+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=9800;items=201;sz=728x90;tile=1;ord=1233777020305;[1].htm scheduled to be deleted on reboot.
->Temp folder emptied: 88451591 bytes
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 46996066 bytes
->Java cache emptied: 26423555 bytes
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\XUL.mfl scheduled to be deleted on reboot.
->FireFox cache emptied: 101190970 bytes
->Google Chrome cache emptied: 0 bytes

User: Urvashi

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
File delete failed. C:\WINDOWS\temp\logishrd\LVPrcInj02.dll scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_438.dat scheduled to be deleted on reboot.
Windows Temp folder emptied: 300834 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 277.05 mb


OTL by OldTimer - Version 3.0.18.4 log created on 10062009_093920

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WXQRK5E7\adlink%7C559%7C1061414%7C0%7C225%7CAdId%3D1100164%3BBnId%3D1%3Bitime%3D941978293%3Blink%3Dhttp%3A%2F%2Fadopt%2Eeuroclick%2Ecom%2Flnk%2Eeu%3Faplcd%3D2339%3B156%3B202%3B56[1] not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WXQRK5E7\makeplaylist.dll%3Fsid=6752202&pt=url&xdata=6D.xfE5hFQP5sy.qTP.dOw-17633104-1200276552&s=396500550&b=18fsofp1m07m2&wmp=10&ticket=a85d76b6ad882b0a24f538dbc48b15fe&zz=a[1].asx not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WLA3SHYZ\adlink%7C559%7C1061414%7C0%7C225%7CAdId%3D1100164%3BBnId%3D1%3Bitime%3D941978293%3Blink%3Dhttp%3A%2F%2Fadopt%2Eeuroclick%2Ecom%2Flnk%2Eeu%3Faplcd%3D2339%3B156%3B202%3B56[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\+lorries;cat=293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=160x600;tile=3;ord=1233777001524;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776590313;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ25QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=38032;sz=728x90;tile=1;ord=1233775775664;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776517947;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776291803;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\93;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=61239;items=1565;sz=160x600;tile=3;ord=1233776908249;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\9Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ100QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=146;sz=728x90;tile=1;ord=1233775935499;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\=scania+spares+and+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=160x600;tile=3;ord=1233777009639;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\IHMS0CAJT3BMXCAJFPXX0CA0O0M09CA9QUJZ1CAFBJMFICA0FGC5KCA8MX3J0CA1B616CCASKMZFICAGL1L1SCA1VAHKWCA73X2PICAIXWT5DCACNGGT9CA05LSYUCAWKRLJSCAFS24VBCA9TV5W8CAAFHY4TCAZO2LQ1CAOOD2GU not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\WK81MM3Z\scania+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=9800;items=201;sz=160x600;tile=3;ord=1233777020305;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776517947;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=160x600;tile=3;ord=1233776539805;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776291803;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=2423;sz=728x90;tile=1;ord=1233775792306;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=61239;items=1565;sz=728x90;tile=1;ord=1233776908249;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=38032;sz=160x600;tile=3;ord=1233775775664;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776268460;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\=scania+trucks;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=220;items=1596;sz=160x600;tile=3;ord=1233777049889;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\d+lorries;cat=293;cat=32852;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=728x90;tile=1;ord=1233777001524;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\Q253A1686Q257C66Q253A2Q257C65Q253A12Q257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_sacatZ20481QQ_trksidZp3286Q2ec0Q2em14QQ_sopZ7QQ_scZ1[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\ID7YES29\rucks;cat=9800;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=63732;items=325;sz=728x90;tile=1;ord=1233777083930;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\0QQQ5ftrkparmsZ66Q253A2Q257C65Q253A7Q257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=146;sz=160x600;tile=3;ord=1233775935499;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\257C39Q253A1QQ_catrefZ1QQ_dmptZUKQ5fHomeQ5fGardenQ5fDiningRoomFurnitureQ5fSMQQ_fcidZ3QQ_fposZLE46RQ51QQ_ipgZ25QQ_sacatZ20481QQ_scZ1QQ_sopZ7QQ_trksidZp3286Q2ec0Q2em14QQgbrZ1[1] not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=16606;sz=728x90;tile=1;ord=1233775784370;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776539805;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=728x90;tile=1;ord=1233776304465;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1137;sz=728x90;tile=1;ord=1233776061360;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\at=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=1;sz=728x90;tile=1;ord=1233775837531;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\iteWideConditionZNew13180QQBrand3d75b67ZSonyEricssoneb18661fQQ_catrefZ1QQ_dmptZUKQ5fMobilePhonesQ5fMobilePhonesQQ_flnZ1QQ_sacatZ3312QQ_ssovZ1QQ_trksidZp3286Q2ec0Q2em282[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\t=14675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=1;sz=160x600;tile=3;ord=1233775837531;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\ucks;cat=9800;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=63732;items=325;sz=160x600;tile=3;ord=1233777083930;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\w=scania+spares+and+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;items=0;sz=728x90;tile=1;ord=1233777009639;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\5PAPU5LQ\w=scania+trucks;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=220;items=1596;sz=728x90;tile=1;ord=1233777049889;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\0LYJ8TAJ\makeplaylist.dll%3Fsid=6752202&pt=url&xdata=6D.xfE5hFQP5sy.qTP.dOw-17633104-1200276552&s=396500550&b=18fsofp1m07m2&wmp=10&ticket=a5bdd8d484f721fd7a3d9ea766aca7e5&zz=a[1].asx not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776268460;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1135;sz=160x600;tile=3;ord=1233776304465;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\00;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1137;sz=160x600;tile=3;ord=1233776061360;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\4675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=2423;sz=160x600;tile=3;ord=1233775792306;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\675;cat=3312;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=3312;items=16606;sz=160x600;tile=3;ord=1233775784370;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\700;cat=20481;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=38202;items=1134;sz=728x90;tile=1;ord=1233776590313;[1].htm not found!
File\Folder C:\Documents and Settings\Pruthvesh\Local Settings\Temp\Temporary Internet Files\Content.IE5\08EFQ9HJ\=scania+lorries;dcopt=ist;seg=GL_Unidentified_User;seg=GL_GenderUnknown_Mar06;seg=GL_Buyers_GMB_0to50_last90days;tcat=9800;items=201;sz=728x90;tile=1;ord=1233777020305;[1].htm not found!
C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\Pruthvesh\Local Settings\Application Data\Mozilla\Firefox\Profiles\49ux4nk6.default\XUL.mfl moved successfully.
File\Folder C:\WINDOWS\temp\logishrd\LVPrcInj02.dll not found!
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_438.dat not found!

Registry entries deleted on Reboot...

Share this post


Link to post
Share on other sites

Thread Closed

Reason: Lack of Response

PM either ShadowPuterDude or Lynx to have this thread reopened.

The procedures contained in this thread are for this user and this user only. Attempting to use the instructions in this thread on your system could result in damaging the Operating System beyond repair. Do Not use any of the tools mentioned in this thread without the supervision of a Malware Removal Specialist.

All posters requesting Malware Removal assistance are required to follow all procedures in the thread titled START HERE, if you don't we are just going to send you back to this thread

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.