AVG Install Error

T

thalictra

New member
Member
Local time
6:36 PM
Messages
19
Location
Smoky Mtns, NC
After Avast semi-failed me ( I happened to check the logs and saw I'd been infected for three weeks. I don't know how or why, but it didn't alert me.), I looked around and decided to go with AVG free. Got the download and have tried to install it, but it always pops up :

Error code: 0xEoo10015
Error message: Item of that name doesn't exist in actual section
The initialization of the online contact addresses failed.

I am at a loss. I have rebooted, re-downloaded, removed the UAC.... Nothing.
 

My Computer

Computer Manufacturer/Model Number
HP Pavilion p6380t series
OS
Windows 7 Home Premium 64-bit
CPU
AMD Phenom X4 820 quad-core[2.8GHz. 2MB L2 + 4MB L3shared,
Motherboard
Foxconn (Aloe) H-RS880-uATX
Memory
6GB DDR3-1066MHz SDRAM [3 DIMMs]
Graphics Card(s)
512MB NVIDIA GeForce G210
Sound Card
Integrated 7.1 channel
Monitor(s) Displays
21.5" Diagonal Full HD Widescreen LCD Monitor
Screen Resolution
1920X1080
Hard Drives
500GB 7200 rpm SATA 3Gb/s hard drive

LightScribe 16X max. DVD+/-R/RW SuperMulti drive
Internet Speed
DSL
Other Info
Seagate® Expansion™ USB 2.0 Portable 500GB Hard Drive
Spin Speed (RPM) 5400 RPM
Hello thalictra,

Did you successfully remove the infection from your system?
Did your computer come with an Anti Virus pre installed?

How did you remove Avast?
If you did NOT use the Avast Uninstall Tool I would suggest that you now do so.
avast! Uninstall Utility
Re AVG - It may NOT install correctly if any remnants of Avast exist. It may be an idea to also run the AVG Remover Tool as well.
AVG - Download tools

NOTE - As you are not protected by an Anti Virus I would suggest that you download both Uninstall Tools & safe them to your desktop. Go offline before actually using both.

Well done on filling in your System Specs. ;)
 

My Computer

Computer Manufacturer/Model Number
LAPTOP. HP Pavilion dv7-4010TX .
OS
Win 7 Ultimate 64-bit. SP1.
CPU
Intel i7 -720QM.[1.6GHz Turbo Boost 2.8GHz. 6MB Cache.]
Memory
8 DDR 3 RAM. 1066MHZ
Graphics Card(s)
ATI 1024 MB. DDR3. Radeon HD5650
Monitor(s) Displays
17.3" High Definition Brightview LCD. LED Backlit.
Screen Resolution
1600 x 900.
Hard Drives
640GB
Case
Laptop / notebook.
Mouse
Logitech Anywhere mouse. MX.
Internet Speed
ADSL [ but too slow ]
Now I can't even get Windows Defender going. I'll do as you say. Thanks for such a speedy reply, and for the compliment! :)
 

My Computer

Computer Manufacturer/Model Number
HP Pavilion p6380t series
OS
Windows 7 Home Premium 64-bit
CPU
AMD Phenom X4 820 quad-core[2.8GHz. 2MB L2 + 4MB L3shared,
Motherboard
Foxconn (Aloe) H-RS880-uATX
Memory
6GB DDR3-1066MHz SDRAM [3 DIMMs]
Graphics Card(s)
512MB NVIDIA GeForce G210
Sound Card
Integrated 7.1 channel
Monitor(s) Displays
21.5" Diagonal Full HD Widescreen LCD Monitor
Screen Resolution
1920X1080
Hard Drives
500GB 7200 rpm SATA 3Gb/s hard drive

LightScribe 16X max. DVD+/-R/RW SuperMulti drive
Internet Speed
DSL
Other Info
Seagate® Expansion™ USB 2.0 Portable 500GB Hard Drive
Spin Speed (RPM) 5400 RPM
After you follow JMH,s instructions download and run Malwarebytes to clean your system.
 

My Computer

Computer Manufacturer/Model Number
Dell Optiplex 980
OS
Win7 x64 Ultimate SP1
CPU
Intel i7-2600
Memory
8 Gig
Graphics Card(s)
Geforce gt 520
Monitor(s) Displays
LG & Acer
Screen Resolution
1920x1080
Internet Speed
Fios 45/35
Other Info
Windows Home Server
Thank you, JMH and ken9122! I'd be happy to Rep you both, if I knew what that was.

A little background on myself: My name is Marjorie. Until last March, I had a machine from '98, with WIN98 installed. I have just now learned how to use Task Manager for the old CTRL+ALT+DEL. On my PC, I created a 2nd (child's) User Account for a housemate addicted to Facebook.


So, I had been using Avast free and PC Tool's Firewall.

When I discovered the infection in Avast's log, I ran a thorough scan with Avast. Apparently it had mostly cleaned the infection because it only came up with some items it couldn't scan in Windows\temp. I ran CC Cleaner to get rid of those. I forgot to untick the Avast logs so I lost that info. Then I went to Housecall, which found 2 JAVA_LOADER.HLL, labelled them Trojans, and reported them fixed.


Yesterday, after I ran both the Avast and AVG uninstallers. I remembered I had considered the Comodo combination Firewall and Anti-Virus and downloaded the installer. Comodo gets high reviews and would do both tasks well, so I decided on it. I
uninstalled PC Tool's Firewall, found and used an uninstall tool for it, too.


I tried to install Comodo, and got "The network firewall is not functioning properly!" I got its uninstall tool (CIS Clean-up), ran it, rebooted, tried again. Same result. I ran diagnostics, it made a report. I didn't understand most of the report but could see that unknowingly, I had Microsoft Security Essentials running. I'm guessing that when I was trying to get Windows Defender and Firewall going, they didn't seem to do anything because they were already running. I finally got them turned off, uninstalled, rebooted, ran Comodo's uninstaller again. Install still failed. I went ahead and ran a thorough virus scan. It reported and cleaned:

"UnclassifiedMalware@131200967
C:\Users\Marjorie\AppData\LocalLow\Sun\Java\Deployment

\cache\6.0\16\329ed4d0-73cdac9b|g5z6.class
TrojWare.Win32.Banker.ati@121133791
C:\Program Files\PC-Doctor for Windows\TSDiag2.exe"

Meantime, I checked out Comodo's forum but those people play in the registry and I'm not allowed in there. ;)

I still had SuperAnti-Spyware 4.4 running. I have now uninstalled it


This morning, I ran Malwarebytes' full scan and it says I am clean! :D

Comodo's final report blames its failure on "Incompatible software":

C:\Windows\system32\Dwm.exe">. The report is very long and I

am just looking at what is listed below where it says "Failed". Now I have MbAM installed. I'll uninstall that as directed at: http://www.ehow.com/how_4926345_completely-remove-malwarebytes.html.

Then, I'll try installing Comodo again. If it doesn't work... ??.


One problem I had was booting into Safe Mode. It was my first try on this machine, and it was as if F8 wasn't functioning. I even tested it as volume control in WMP --it worked. But I never did get into Safe Mode.
 

My Computer

Computer Manufacturer/Model Number
HP Pavilion p6380t series
OS
Windows 7 Home Premium 64-bit
CPU
AMD Phenom X4 820 quad-core[2.8GHz. 2MB L2 + 4MB L3shared,
Motherboard
Foxconn (Aloe) H-RS880-uATX
Memory
6GB DDR3-1066MHz SDRAM [3 DIMMs]
Graphics Card(s)
512MB NVIDIA GeForce G210
Sound Card
Integrated 7.1 channel
Monitor(s) Displays
21.5" Diagonal Full HD Widescreen LCD Monitor
Screen Resolution
1920X1080
Hard Drives
500GB 7200 rpm SATA 3Gb/s hard drive

LightScribe 16X max. DVD+/-R/RW SuperMulti drive
Internet Speed
DSL
Other Info
Seagate® Expansion™ USB 2.0 Portable 500GB Hard Drive
Spin Speed (RPM) 5400 RPM
Failed again. Maybe I should go back and try AVG.
 

My Computer

Computer Manufacturer/Model Number
HP Pavilion p6380t series
OS
Windows 7 Home Premium 64-bit
CPU
AMD Phenom X4 820 quad-core[2.8GHz. 2MB L2 + 4MB L3shared,
Motherboard
Foxconn (Aloe) H-RS880-uATX
Memory
6GB DDR3-1066MHz SDRAM [3 DIMMs]
Graphics Card(s)
512MB NVIDIA GeForce G210
Sound Card
Integrated 7.1 channel
Monitor(s) Displays
21.5" Diagonal Full HD Widescreen LCD Monitor
Screen Resolution
1920X1080
Hard Drives
500GB 7200 rpm SATA 3Gb/s hard drive

LightScribe 16X max. DVD+/-R/RW SuperMulti drive
Internet Speed
DSL
Other Info
Seagate® Expansion™ USB 2.0 Portable 500GB Hard Drive
Spin Speed (RPM) 5400 RPM
It sounds like you have a lot of problems from previous software you use to have on your PC... UNINSTALL ALL OF IT, and then start from scratch with a NEW anti-virus, and a NEW firewall of your choice, but as always, I recommend MSE and Comodo.

I think you may have downloaded some bad files, thinking it's something that you wanted...

Give MSE another try after you remove everything... If you need help, come back and give details on what is bothering you and I will help.

I also use to use AVG, till I noticed I ALWAYS had problems with it. Why not switch to Microsoft Security Essentials (MSE)? It's 100% free, and it's one of the best out there. Uses VERY little resources, and runs flawlessly.

3rd Place rank.

MSE Summary/Download site.
 

My Computer

Computer Manufacturer/Model Number
HP
OS
Windows 7 Home Premium 64 Bit
CPU
AMD
Memory
4 Gig
Graphics Card(s)
ATI
Sound Card
Beats Audio
Monitor(s) Displays
17 inch
Screen Resolution
1440 x 900
Cooling
Air
Uninstall all my software? I have uninstalled all protection software and am here naked now. I had also gone into C/: Program Data, and deleted an old AVG folder, the Mbam folder, and a Norton folder that came installed. Sure, I can do MSE. I would have preferred Comodo.
 

My Computer

Computer Manufacturer/Model Number
HP Pavilion p6380t series
OS
Windows 7 Home Premium 64-bit
CPU
AMD Phenom X4 820 quad-core[2.8GHz. 2MB L2 + 4MB L3shared,
Motherboard
Foxconn (Aloe) H-RS880-uATX
Memory
6GB DDR3-1066MHz SDRAM [3 DIMMs]
Graphics Card(s)
512MB NVIDIA GeForce G210
Sound Card
Integrated 7.1 channel
Monitor(s) Displays
21.5" Diagonal Full HD Widescreen LCD Monitor
Screen Resolution
1920X1080
Hard Drives
500GB 7200 rpm SATA 3Gb/s hard drive

LightScribe 16X max. DVD+/-R/RW SuperMulti drive
Internet Speed
DSL
Other Info
Seagate® Expansion™ USB 2.0 Portable 500GB Hard Drive
Spin Speed (RPM) 5400 RPM
It would appear that some of your current problems may be the result of having played around with too many Anti Virus programs that have not been completely uninstalled.
I see you now list Norton as having been on your OS as well. Did you use the appropriate uninstall tool to [hopefully] remove Norton from your system?
 

My Computer

Computer Manufacturer/Model Number
LAPTOP. HP Pavilion dv7-4010TX .
OS
Win 7 Ultimate 64-bit. SP1.
CPU
Intel i7 -720QM.[1.6GHz Turbo Boost 2.8GHz. 6MB Cache.]
Memory
8 DDR 3 RAM. 1066MHZ
Graphics Card(s)
ATI 1024 MB. DDR3. Radeon HD5650
Monitor(s) Displays
17.3" High Definition Brightview LCD. LED Backlit.
Screen Resolution
1600 x 900.
Hard Drives
640GB
Case
Laptop / notebook.
Mouse
Logitech Anywhere mouse. MX.
Internet Speed
ADSL [ but too slow ]
As JMH said above, you will need the Norton uninstall tool Download and run the Norton Removal Tool to uninstall your Norton product | Norton Support
You can't just delete a program folder, the program has to be uninstalled from "Programs and Features" found in the Control panel.

Malwarebyte's Anti-Malware is an application that you want to keep!!

You apparently have a backdoor Trojan.
Backdoor Trojans provide the author or ‘master’ of the Trojan with remote ‘administration’ of victim machines. Unlike legitimate remote administration utilities, they install, launch and run invisibly, without the consent or knowledge of the user. Once installed, backdoor Trojans can be instructed to send, receive, execute and delete files, harvest confidential data from the computer, log activity on the computer and more.
If your computer was used for online banking or has credit card information on it, all passwords should be changed immediately to include those used for email, eBay and forums.
You should consider them to be compromised.

They should be changed by using a different computer and not the infected one, if not an attacker may get the new passwords and transaction information.
Banking and credit card institutions should be notified of the possible security breech.

More info can be found below:
How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
How to report ID theft, fraud, drive-by installs, hijacking and malware? Security | DSLReports.com, ISP Information
When should I re-format? How should I reinstall?
When should I re-format? How should I reinstall? Security | DSLReports.com, ISP Information

Let's flush your DNS cache by doing this:
Open a command prompt, right click on it to run as Administrator. Type or Copy/paste ipconfig /flushdns press 'enter'
It will say 'successful DNS flush when finished.

Next, Repair MS's Hosts file.
Download the HostsXpert 4.3 - Hosts File Manager.
  • Unzip HostsXpert 4.3 - Hosts File Manager to a convenient folder such as C:\HostsXpert
  • Click HostsXpert.exe to Run HostsXpert 4.3 - Hosts File Manager from its new home
  • Click "Make Hosts Writable?" in the upper right corner (If available).
  • Click Restore Microsoft's Hosts file and then click OK.
  • Click the X to exit the program.
  • Note: If you were using a custom Hosts file you will need to replace any of those entries yourself.

After doing this ...
Download ATF Cleaner Welcome to the Frontpage - www.atribune.org Right click to run as Administrator.
Click "Main" > check 'select all' (except prefetch) this first time using it, then click "Empty Selected". Do the same for FireFox or Opera if you use either of those browsers.
Finally go to Control Panel > Internet Options.
On the General tab under "Temporary Internet Files" Click "Delete Files".
Put a check by "Delete Offline Content" and click OK.

Now try to download http://www.microsoft.com/security_essentials/
If you haven't activated your Windows 7 key yet, you'll need to do so first.
Run a full scan after updating virus definitions.

Reboot your computer and download all Windows critical updates.

Let me know how you're doing.
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Bruce ... somewhere in his 40's
OS
Windows 7 Ultimate 32bit SP1
CPU
Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz
Motherboard
INTEL/D975XBX2
Memory
4 GB
Graphics Card(s)
ATI Radeon HD 2600 Pro
Monitor(s) Displays
Samsung SyncMaster 914v
Screen Resolution
1280 x 1024
Hard Drives
2/500GB each ... ST3500630AS ATA Device.
One is not connected
PSU
Rocketfish 700 W
Case
G.Skill Gigabyte Chassis
Keyboard
Standard PS/2 Keyboard
Mouse
Microsoft PS/2 Mouse
Internet Speed
DSL
Antivirus
Avira Internet Security
Browser
IE 11
Other Info
ATI HDMI Audio
Thank you, DarkScorpion, JMH, and Jaycee,

OK, I'm not sure if the Norton folder was a back-up program or an anti-virus. Both were try/buy options from HP. I downloaded and used the Norton uninstall, but it just vanished.

It's too late today to call the bank, but thanks for that heads-up! For once, I'm glad I'm poor.

I did the DNS flush and tried the HostsXpert, but got this message: ERROR

Update- when I closed Chrome, I found the Norton Uninstall tool behind it. I ran it. I'll do another DNS flush and try HostsXpert again. I downloaded Microsoft Security, installed it. It wouldn't update --error code: 0x800 7000d. Do I need to uninstall it?
 
Last edited:

My Computer

Computer Manufacturer/Model Number
HP Pavilion p6380t series
OS
Windows 7 Home Premium 64-bit
CPU
AMD Phenom X4 820 quad-core[2.8GHz. 2MB L2 + 4MB L3shared,
Motherboard
Foxconn (Aloe) H-RS880-uATX
Memory
6GB DDR3-1066MHz SDRAM [3 DIMMs]
Graphics Card(s)
512MB NVIDIA GeForce G210
Sound Card
Integrated 7.1 channel
Monitor(s) Displays
21.5" Diagonal Full HD Widescreen LCD Monitor
Screen Resolution
1920X1080
Hard Drives
500GB 7200 rpm SATA 3Gb/s hard drive

LightScribe 16X max. DVD+/-R/RW SuperMulti drive
Internet Speed
DSL
Other Info
Seagate® Expansion™ USB 2.0 Portable 500GB Hard Drive
Spin Speed (RPM) 5400 RPM
After you unzipped the HostsXpert 4.3, did you make a new folder called C:\HostsXpert?

Did you put HostsXpert.exe in it, then right click on it to run as Administrator?
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Bruce ... somewhere in his 40's
OS
Windows 7 Ultimate 32bit SP1
CPU
Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz
Motherboard
INTEL/D975XBX2
Memory
4 GB
Graphics Card(s)
ATI Radeon HD 2600 Pro
Monitor(s) Displays
Samsung SyncMaster 914v
Screen Resolution
1280 x 1024
Hard Drives
2/500GB each ... ST3500630AS ATA Device.
One is not connected
PSU
Rocketfish 700 W
Case
G.Skill Gigabyte Chassis
Keyboard
Standard PS/2 Keyboard
Mouse
Microsoft PS/2 Mouse
Internet Speed
DSL
Antivirus
Avira Internet Security
Browser
IE 11
Other Info
ATI HDMI Audio
Yes. And this time it went without a hitch. I also ran the ATF program.
 
Last edited:

My Computer

Computer Manufacturer/Model Number
HP Pavilion p6380t series
OS
Windows 7 Home Premium 64-bit
CPU
AMD Phenom X4 820 quad-core[2.8GHz. 2MB L2 + 4MB L3shared,
Motherboard
Foxconn (Aloe) H-RS880-uATX
Memory
6GB DDR3-1066MHz SDRAM [3 DIMMs]
Graphics Card(s)
512MB NVIDIA GeForce G210
Sound Card
Integrated 7.1 channel
Monitor(s) Displays
21.5" Diagonal Full HD Widescreen LCD Monitor
Screen Resolution
1920X1080
Hard Drives
500GB 7200 rpm SATA 3Gb/s hard drive

LightScribe 16X max. DVD+/-R/RW SuperMulti drive
Internet Speed
DSL
Other Info
Seagate® Expansion™ USB 2.0 Portable 500GB Hard Drive
Spin Speed (RPM) 5400 RPM
thalictra said:
Thank you, DarkScorpion, JMH, and Jaycee,
Click to expand...

You are welcome....

Confirming that you are now being looked after by experts in this area...

Jacee & Corrine, I'm sure, will get you cleaned up & running normally again soon.

Thanks to both for coming to the rescue.;)
 

My Computer

Computer Manufacturer/Model Number
LAPTOP. HP Pavilion dv7-4010TX .
OS
Win 7 Ultimate 64-bit. SP1.
CPU
Intel i7 -720QM.[1.6GHz Turbo Boost 2.8GHz. 6MB Cache.]
Memory
8 DDR 3 RAM. 1066MHZ
Graphics Card(s)
ATI 1024 MB. DDR3. Radeon HD5650
Monitor(s) Displays
17.3" High Definition Brightview LCD. LED Backlit.
Screen Resolution
1600 x 900.
Hard Drives
640GB
Case
Laptop / notebook.
Mouse
Logitech Anywhere mouse. MX.
Internet Speed
ADSL [ but too slow ]
thalictra, did MSE find any threats?


Please download OTL[/url] to your desktop.

Double click on the icon on your desktop.
Click the "Scan All Users" checkbox.
In the custom scan box paste the following:
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
/md5stop
%systemroot%\*. /mp /s
Push the Run Scan button.

Two reports will open, copy and paste them in your next reply.

OTL.txt <-- Will be opened
Extra.txt<--Will be minimized
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Bruce ... somewhere in his 40's
OS
Windows 7 Ultimate 32bit SP1
CPU
Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz
Motherboard
INTEL/D975XBX2
Memory
4 GB
Graphics Card(s)
ATI Radeon HD 2600 Pro
Monitor(s) Displays
Samsung SyncMaster 914v
Screen Resolution
1280 x 1024
Hard Drives
2/500GB each ... ST3500630AS ATA Device.
One is not connected
PSU
Rocketfish 700 W
Case
G.Skill Gigabyte Chassis
Keyboard
Standard PS/2 Keyboard
Mouse
Microsoft PS/2 Mouse
Internet Speed
DSL
Antivirus
Avira Internet Security
Browser
IE 11
Other Info
ATI HDMI Audio

My Computer

Computer Manufacturer/Model Number
HP Pavilion p6380t series
OS
Windows 7 Home Premium 64-bit
CPU
AMD Phenom X4 820 quad-core[2.8GHz. 2MB L2 + 4MB L3shared,
Motherboard
Foxconn (Aloe) H-RS880-uATX
Memory
6GB DDR3-1066MHz SDRAM [3 DIMMs]
Graphics Card(s)
512MB NVIDIA GeForce G210
Sound Card
Integrated 7.1 channel
Monitor(s) Displays
21.5" Diagonal Full HD Widescreen LCD Monitor
Screen Resolution
1920X1080
Hard Drives
500GB 7200 rpm SATA 3Gb/s hard drive

LightScribe 16X max. DVD+/-R/RW SuperMulti drive
Internet Speed
DSL
Other Info
Seagate® Expansion™ USB 2.0 Portable 500GB Hard Drive
Spin Speed (RPM) 5400 RPM
  • Like
Reactions: JMH
Unfortunately some formats don't work with all forums ... this is the URL http://oldtimer.geekstogo.com/OTL.exe
But, we won't need the log if everything is working correctly now and MSE didn't find any threats :)
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Bruce ... somewhere in his 40's
OS
Windows 7 Ultimate 32bit SP1
CPU
Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz
Motherboard
INTEL/D975XBX2
Memory
4 GB
Graphics Card(s)
ATI Radeon HD 2600 Pro
Monitor(s) Displays
Samsung SyncMaster 914v
Screen Resolution
1280 x 1024
Hard Drives
2/500GB each ... ST3500630AS ATA Device.
One is not connected
PSU
Rocketfish 700 W
Case
G.Skill Gigabyte Chassis
Keyboard
Standard PS/2 Keyboard
Mouse
Microsoft PS/2 Mouse
Internet Speed
DSL
Antivirus
Avira Internet Security
Browser
IE 11
Other Info
ATI HDMI Audio
Sadly, MSE still will not update.

thalictra, did MSE find any threats?

Please download OTL[/url] to your desktop.
Double click on the icon on your desktop.
Click the "Scan All Users" checkbox.
In the custom scan box paste the following:
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
/md5stop
%systemroot%\*. /mp /s
Push the Run Scan button.
Two reports will open, copy and paste them in your next reply.
OTL.txt <-- Will be opened
Extra.txt<--Will be minimized

OTL logfile created on: 10/29/2010 12:26:13 PM - Run 1
OTL by OldTimer - Version 3.2.17.1 Folder = C:\Users\Marjorie\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

6.00 Gb Total Physical Memory | 4.00 Gb Available Physical Memory | 70.00% Memory free
12.00 Gb Paging File | 10.00 Gb Available in Paging File | 84.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 454.16 Gb Total Space | 395.67 Gb Free Space | 87.12% Space Free | Partition Type: NTFS
Drive D: | 11.40 Gb Total Space | 1.63 Gb Free Space | 14.29% Space Free | Partition Type: NTFS
Drive J: | 465.76 Gb Total Space | 374.14 Gb Free Space | 80.33% Space Free | Partition Type: NTFS

Computer Name: COR | User Name: Marjorie | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010/10/28 21:36:34 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Marjorie\Desktop\OTL.exe
PRC - [2010/10/23 14:39:35 | 000,622,080 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Media Server\GoogleMediaServer.exe
PRC - [2010/10/23 14:39:35 | 000,319,488 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Media Server\GoogleMediaScanner.exe
PRC - [2010/10/14 20:42:21 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Users\Marjorie\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
PRC - [2010/10/10 17:54:16 | 000,202,256 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe
PRC - [2010/09/12 14:25:03 | 000,030,192 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
PRC - [2010/05/15 21:29:59 | 001,101,824 | ---- | M] (Zhorn Software) -- C:\Program Files (x86)\stickies\stickies.exe
PRC - [2010/02/21 13:08:48 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009/09/19 18:40:54 | 000,122,880 | ---- | M] () -- C:\Windows\SysWOW64\WinMsgBalloonServer.exe
PRC - [2009/09/19 18:40:48 | 000,139,264 | ---- | M] () -- C:\Windows\SysWOW64\WinMsgBalloonClient.exe
PRC - [2009/09/19 18:39:06 | 000,122,880 | ---- | M] (AMD) -- C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
PRC - [2009/09/19 18:38:48 | 000,065,536 | ---- | M] () -- C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
PRC - [2007/01/01 17:22:02 | 003,739,648 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Google Talk\googletalk.exe
PRC - [2002/11/20 00:07:31 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\Accessories\3D Clipboard\clip.exe


========== Modules (SafeList) ==========

MOD - [2010/10/28 21:36:34 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Marjorie\Desktop\OTL.exe
MOD - [2010/10/10 17:55:03 | 000,040,960 | ---- | M] () -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll
MOD - [2010/08/21 01:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
MOD - [2009/10/22 22:51:42 | 000,499,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcp71.dll
MOD - [2009/10/22 22:51:42 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcr71.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/03/25 23:48:42 | 000,017,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/10/23 14:39:35 | 000,622,080 | ---- | M] (Google Inc.) [Auto | Running] -- C:\Program Files (x86)\Google\Google Media Server\GoogleMediaServer.exe -- (Google MediaServer)
SRV - [2010/09/12 14:25:03 | 000,030,192 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager-051210-111108)
SRV - [2010/08/13 12:58:56 | 000,144,672 | ---- | M] (Apple Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/09/19 18:39:06 | 000,122,880 | ---- | M] (AMD) [Auto | Running] -- C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe -- (AMD_RAIDXpert)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/05 20:07:28 | 000,250,616 | ---- | M] (WildTangent, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2008/09/08 07:59:00 | 000,575,488 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VcommMgr.sys -- (VcommMgr)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\VComm.sys -- (VComm)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btcusb.sys -- (Btcsrusb)
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\btnetdrv.sys -- (BT)
DRV:64bit: - [2010/08/09 05:36:42 | 000,048,480 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010/04/19 20:47:42 | 000,050,688 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2009/12/30 12:21:24 | 000,031,800 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\revoflt.sys -- (Revoflt)
DRV:64bit: - [2009/10/06 09:49:14 | 000,230,456 | ---- | M] (Advanced Micro Devices, Inc) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ahcix64s.sys -- (ahcix64s)
DRV:64bit: - [2009/09/24 13:38:48 | 000,027,776 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btnetBus.sys -- (btnetBUs)
DRV:64bit: - [2009/09/24 05:40:14 | 000,023,304 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\BtHidBus.sys -- (BtHidBus)
DRV:64bit: - [2009/09/17 01:57:46 | 000,023,536 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- c:\Program Files\PC-Doctor for Windows\pcdsrvc_x64.pkms -- (PCDSRVC{F36B3A4C-F95654BD-06000000}_0)
DRV:64bit: - [2009/08/26 11:16:52 | 000,030,344 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV:64bit: - [2009/08/21 20:24:04 | 000,084,512 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2009/08/20 20:05:06 | 000,239,616 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/07/13 21:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/13 21:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 16:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/05/05 06:00:28 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie) AMD PCI Express (3GIO)
DRV:64bit: - [2009/04/03 10:39:58 | 000,034,872 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2008/08/28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK/1


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-308587777-71078739-3427918741-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-308587777-71078739-3427918741-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-308587777-71078739-3427918741-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-308587777-71078739-3427918741-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/06/07 21:35:02 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/10/10 17:55:03 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2010/10/28 19:35:17 | 000,000,698 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found.
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg64.dll (Google Inc.)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\hp\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found.
O2 - BHO: (no name) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - No CLSID value found.
O2 - BHO: (no name) - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - No CLSID value found.
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (Microsoft Live Search Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll (Microsoft Corp.)
O2 - BHO: (SimpleAdblock Class) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files (x86)\Common Files\Simple Adblock\SimpleAdblock.dll (Simple Adblock)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\hp\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Microsoft Live Search Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-308587777-71078739-3427918741-1001\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3:64bit: - HKU\S-1-5-21-308587777-71078739-3427918741-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKU\S-1-5-21-308587777-71078739-3427918741-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [MSSE] c:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe (Google)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-308587777-71078739-3427918741-1001..\Run: [3D Clipboard] C:\Program Files (x86)\Accessories\3D Clipboard\clip.exe ()
O4 - HKU\S-1-5-21-308587777-71078739-3427918741-1001..\Run: [Google Media Scanner] C:\Program Files (x86)\Google\Google Media Server\GoogleMediaScanner.exe (Google Inc.)
O4 - HKU\S-1-5-21-308587777-71078739-3427918741-1001..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - Startup: C:\Users\[email protected]\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O4 - Startup: C:\Users\[email protected]\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stickies.lnk = C:\Program Files (x86)\stickies\stickies.exe (Zhorn Software)
O4 - Startup: C:\Users\Marjorie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stickies.lnk = C:\Program Files (x86)\stickies\stickies.exe (Zhorn Software)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-308587777-71078739-3427918741-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-308587777-71078739-3427918741-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-308587777-71078739-3427918741-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O9 - Extra Button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files (x86)\Paltalk Messenger\paltalk.exe (AVM Software Inc.)
O9 - Extra Button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\hp\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-308587777-71078739-3427918741-1001\..Trusted Domains: localhost ([]http in Local intranet)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O20 - AppInit_DLLs: (C:\PROGRA~2\Google\GOBCA7~1\GO36F4~1.DLL) - C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/12/15 05:52:18 | 000,000,080 | ---- | M] () - J:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*


MsConfig:64bit - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe - (Hewlett-Packard Co.)
MsConfig:64bit - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^PictureMover.lnk - C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe - (Hewlett-Packard Company)
MsConfig:64bit - StartUpFolder: C:^Users^Marjorie^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe - ()
MsConfig:64bit - StartUpReg: Adobe ARM - hkey= - key= - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig:64bit - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
MsConfig:64bit - StartUpReg: HP Remote Solution - hkey= - key= - C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe (Hewlett-Packard)
MsConfig:64bit - StartUpReg: HP Software Update - hkey= - key= - c:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe (Hewlett-Packard)
MsConfig:64bit - StartUpReg: HPADVISOR - hkey= - key= - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe (Hewlett-Packard)
MsConfig:64bit - StartUpReg: hpsysdrv - hkey= - key= - c:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard)
MsConfig:64bit - StartUpReg: ISTray - hkey= - key= - C:\Program Files (x86)\Spyware Doctor\pctsTray.exe File not found
MsConfig:64bit - StartUpReg: ISW - hkey= - key= - C:\Program Files\CheckPoint\ZAForceField\ForceField.exe File not found
MsConfig:64bit - StartUpReg: iTunesHelper - hkey= - key= - C:\Program Files (x86)\iTunes\iTunesHelper.exe (Apple Inc.)
MsConfig:64bit - StartUpReg: LightScribe Control Panel - hkey= - key= - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
MsConfig:64bit - StartUpReg: QuickTime Task - hkey= - key= - C:\Program Files (x86)\QuickTime\QTTask.exe (Apple Inc.)
MsConfig:64bit - StartUpReg: SmartMenu - hkey= - key= - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ()
MsConfig:64bit - StartUpReg: SunJavaUpdateSched - hkey= - key= - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
MsConfig:64bit - StartUpReg: swg - hkey= - key= - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
MsConfig:64bit - StartUpReg: TkBellExe - hkey= - key= - C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
MsConfig:64bit - State: "startup" - Reg Error: Key error.
MsConfig:64bit - State: "services" - Reg Error: Key error.

SafeBootMin:64bit: AppMgmt - Service
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: MsMpSvc - c:\Program Files\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation)
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: vmms - Service
SafeBootMin:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:64bit: WudfRd - Driver
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: WudfRd - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet:64bit: AppMgmt - Service
SafeBootNet:64bit: Base - Driver Group
SafeBootNet:64bit: Boot Bus Extender - Driver Group
SafeBootNet:64bit: Boot file system - Driver Group
SafeBootNet:64bit: File system - Driver Group
SafeBootNet:64bit: Filter - Driver Group
SafeBootNet:64bit: HelpSvc - Service
SafeBootNet:64bit: MsMpSvc - c:\Program Files\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation)
SafeBootNet:64bit: NDIS Wrapper - Driver Group
SafeBootNet:64bit: NetBIOSGroup - Driver Group
SafeBootNet:64bit: NetDDEGroup - Driver Group
SafeBootNet:64bit: Network - Driver Group
SafeBootNet:64bit: NetworkProvider - Driver Group
SafeBootNet:64bit: PCI Configuration - Driver Group
SafeBootNet:64bit: PNP Filter - Driver Group
SafeBootNet:64bit: PNP_TDI - Driver Group
SafeBootNet:64bit: Primary disk - Driver Group
SafeBootNet:64bit: rdsessmgr - Service
SafeBootNet:64bit: sacsvr - Service
SafeBootNet:64bit: SCSI Class - Driver Group
SafeBootNet:64bit: Streams Drivers - Driver Group
SafeBootNet:64bit: System Bus Extender - Driver Group
SafeBootNet:64bit: TDI - Driver Group
SafeBootNet:64bit: vmms - Service
SafeBootNet:64bit: vsmon - Service
SafeBootNet:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet:64bit: WudfRd - Driver
SafeBootNet:64bit: WudfUsbccidDriver - Driver
SafeBootNet:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: vsmon - Service
SafeBootNet: WudfRd - Driver
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32:64bit: msacm.ac3filter - ac3filter.acm ()
Drivers32:64bit: msacm.ac3filter64 - ac3filter64.acm ()
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: vidc.ffds - ff_vfw.dll ()
Drivers32:64bit: vidc.XVID - xvidvfw.dll ()
Drivers32: msacm.ac3filter - C:\Windows\SysWow64\ac3filter.acm ()
Drivers32: msacm.avis - C:\Windows\SysWow64\ff_acm.acm ()
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: vidc.XVID - C:\Windows\SysWow64\xvidvfw.dll ()

========== Files/Folders - Created Within 30 Days ==========

[2010/10/29 11:36:42 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Documents\Frontier
[2010/10/29 09:55:45 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Documents\Chrome Data
[2010/10/28 21:40:48 | 000,000,000 | ---D | C] -- C:\Program Files\PC-Doctor for Windows
[2010/10/28 21:38:10 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Desktop\0x800 7000d
[2010/10/28 21:37:02 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Desktop\OTL tutorial
[2010/10/28 21:36:42 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Marjorie\Desktop\OTL.exe
[2010/10/28 21:00:37 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Desktop\MSE
[2010/10/28 20:48:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Antimalware
[2010/10/28 20:48:27 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2010/10/28 20:39:11 | 008,731,168 | ---- | C] (Microsoft Corporation) -- C:\Users\Marjorie\Desktop\mssefullinstall-amd64fre-en-us-vista-win7.exe
[2010/10/28 15:23:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo
[2010/10/28 14:46:19 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Documents\registry back-up
[2010/10/28 11:33:53 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Documents\1SecurityProblem
[2010/10/28 11:29:09 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\AppData\Roaming\Malwarebytes
[2010/10/28 11:29:00 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/10/27 15:48:56 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2010/10/27 11:23:46 | 000,000,000 | ---D | C] -- C:\Windows\en
[2010/10/27 11:19:41 | 003,860,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbon.dll
[2010/10/27 11:19:41 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbon.dll
[2010/10/27 11:19:41 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbonRes.dll
[2010/10/27 11:19:41 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbonRes.dll
[2010/10/26 16:38:14 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2010/10/26 16:38:14 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2010/10/26 16:38:13 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2010/10/26 16:38:13 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2010/10/26 16:38:13 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2010/10/26 16:38:13 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2010/10/26 16:38:13 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2010/10/26 16:38:06 | 000,027,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2010/10/25 14:33:43 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Documents\Seagate
[2010/10/25 13:47:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Seagate
[2010/10/24 17:06:32 | 000,000,000 | R--D | C] -- C:\Users\Marjorie\Desktop\To Read
[2010/10/22 16:03:46 | 000,124,909 | ---- | C] (Open Source Software community project) -- C:\Windows\SysNative\pthreadGC2.dll
[2010/10/22 16:03:46 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\AppData\Roaming\Shark007
[2010/10/22 16:03:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Shark007
[2010/10/22 16:03:45 | 001,510,912 | ---- | C] (Gabest) -- C:\Windows\SysNative\VSFilter.dll
[2010/10/22 16:03:43 | 000,000,000 | ---D | C] -- C:\Program Files\Shark007
[2010/10/22 15:37:32 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\AppData\Roaming\WeatherBug
[2010/10/22 15:36:45 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\AppData\Roaming\Win7codecs
[2010/10/22 15:36:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Win7codecs
[2010/10/22 14:12:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Win7codecs
[2010/10/21 22:48:43 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\AppData\Roaming\Mozilla
[2010/10/16 14:04:36 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2010/10/13 17:03:21 | 000,000,000 | R--D | C] -- C:\Users\Marjorie\Documents\Temp
[2010/10/13 14:41:08 | 000,000,000 | --SD | C] -- C:\Users\Public\Documents\Foldercons new
[2010/10/13 10:11:52 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\AppData\Roaming\Leadertech
[2010/10/13 01:09:59 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2010/10/13 01:09:59 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2010/10/13 01:09:58 | 002,085,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2010/10/13 01:09:56 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2010/10/13 01:09:55 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2010/10/13 01:09:55 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2010/10/13 01:09:54 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll
[2010/10/13 01:09:54 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll
[2010/10/13 01:09:54 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2010/10/13 01:09:50 | 000,702,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2010/10/13 01:09:49 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2010/10/13 01:09:49 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2010/10/13 01:09:49 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2010/10/13 01:09:48 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010/10/13 01:09:48 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2010/10/13 01:09:47 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010/10/13 01:09:47 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010/10/13 01:09:47 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010/10/13 01:09:47 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2010/10/13 01:09:46 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2010/10/13 01:09:46 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2010/10/13 01:09:46 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010/10/13 01:09:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010/10/13 01:09:45 | 014,627,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2010/10/13 01:09:44 | 011,406,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2010/10/13 01:09:42 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2010/10/13 01:09:42 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2010/10/13 01:09:41 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll
[2010/10/12 13:19:50 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Documents\stat
[2010/10/12 10:41:17 | 000,000,000 | R--D | C] -- C:\Users\Marjorie\Documents\Shopping
[2010/10/11 21:05:24 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Documents\My Weblog Posts
[2010/10/11 11:39:09 | 000,000,000 | ---D | C] -- C:\Program Files\Accessories 64
[2010/10/10 17:55:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\templates
[2010/10/10 17:55:09 | 002,041,072 | ---- | C] (Gracenote, Inc.) -- C:\Program Files (x86)\cddbcontrol.dll
[2010/10/10 17:55:04 | 000,043,056 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rpshellsearch.dll
[2010/10/10 17:54:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\library
[2010/10/10 17:54:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2010/10/10 17:54:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\converter
[2010/10/09 21:13:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TweetDeck
[2010/10/08 19:53:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010/10/08 14:24:12 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\Documents\Templates
[2010/10/08 13:06:52 | 000,026,096 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWow64\drivers\PcdrNdisuio.sys
[2010/10/08 13:06:52 | 000,026,096 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\drivers\PcdrNdisuio.sys
[2010/10/04 11:38:31 | 000,126,312 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\GEARAspi64.dll
[2010/10/04 11:38:31 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysWow64\GEARAspi.dll
[2010/10/04 11:38:31 | 000,034,152 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[2010/10/04 11:38:04 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2010/10/04 11:38:03 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2010/10/04 11:38:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2010/10/04 11:37:06 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010/10/03 21:05:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2010/10/03 21:05:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2010/10/03 20:33:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2010/10/03 20:32:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2010/10/03 15:03:52 | 000,000,000 | ---D | C] -- C:\Users\Marjorie\AppData\Local\VS Revo Group
[2010/10/03 15:03:50 | 000,031,800 | ---- | C] (VS Revo Group) -- C:\Windows\SysNative\drivers\revoflt.sys
[2010/10/03 15:03:49 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2010/03/19 20:51:38 | 000,712,704 | ---- | C] ( ) -- C:\Program Files (x86)\dtdr3260.dll
[2010/03/19 20:51:38 | 000,139,264 | ---- | C] (Inner Media, Inc.) -- C:\Program Files (x86)\dunzip32.dll
[2010/03/19 20:51:38 | 000,014,336 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\wmdmhelper.dll
[2010/03/19 20:51:37 | 000,651,264 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rjbres.dll
[2010/03/19 20:51:37 | 000,356,352 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rjdlg.dll
[2010/03/19 20:51:37 | 000,081,920 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\tsasdk.dll
[2010/03/19 20:51:37 | 000,057,344 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\tpasdk.dll
[2010/03/19 20:51:37 | 000,041,472 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\mmcdda32.dll
[2010/03/19 20:51:37 | 000,036,352 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\ierjplug.dll
[2010/03/19 20:51:37 | 000,019,456 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\tnetdtct.dll
[2010/03/19 20:51:37 | 000,019,456 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rjprog.dll
[2010/03/19 20:51:37 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\fixrjb.exe
[2010/03/19 20:51:35 | 000,032,768 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rpwa3260.dll
[2010/03/19 20:51:34 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Program Files (x86)\dbghelp.dll
[2010/03/19 20:51:34 | 000,065,536 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rjwmapln.dll
[2010/03/19 20:51:33 | 000,053,248 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rpau3260.dll
[2010/03/19 20:51:30 | 000,112,168 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rdsf3260.dll
[2010/03/19 20:51:30 | 000,086,016 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rpplugprot.dll
[2010/03/19 20:51:30 | 000,063,016 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rpshell.dll
[2010/03/19 20:51:29 | 000,014,888 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\rphelperapp.exe
[2010/03/19 20:51:29 | 000,007,168 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\realjbox.exe
[2010/03/19 20:51:16 | 000,488,968 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\realplay.exe
[2010/03/19 20:51:15 | 000,407,104 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files (x86)\recordingmanager.exe
[2010/02/04 00:00:00 | 000,139,264 | ---- | C] ( ) -- C:\Windows\sipr3260.dll
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/10/29 12:10:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/10/29 11:47:00 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-308587777-71078739-3427918741-1001UA.job
[2010/10/29 11:32:20 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2010/10/29 11:07:14 | 000,015,984 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/10/29 11:07:14 | 000,015,984 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/10/29 11:03:11 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/10/29 11:03:11 | 000,000,632 | RHS- | M] () -- C:\Users\Marjorie\ntuser.pol
[2010/10/29 10:59:45 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/10/29 10:59:40 | 530,493,439 | -HS- | M] () -- C:\hiberfil.sys
[2010/10/28 21:36:34 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Marjorie\Desktop\OTL.exe
[2010/10/28 20:48:27 | 000,001,033 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010/10/28 20:47:00 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-308587777-71078739-3427918741-1001Core.job
[2010/10/28 20:39:01 | 008,731,168 | ---- | M] (Microsoft Corporation) -- C:\Users\Marjorie\Desktop\mssefullinstall-amd64fre-en-us-vista-win7.exe
[2010/10/28 13:14:12 | 000,000,110 | ---- | M] () -- C:\Users\Marjorie\Desktop\AVG Install Error - Windows 7 Forums.url
[2010/10/27 19:27:31 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2010/10/26 11:12:57 | 000,000,036 | ---- | M] () -- C:\Users\Marjorie\AppData\Local\housecall.guid.cache
[2010/10/26 10:22:30 | 000,000,344 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForMarjorie.job
[2010/10/25 14:34:26 | 000,006,639 | ---- | M] () -- C:\Users\Marjorie\Documents\Update on Your Verizon High Speed Internet Order.eml
[2010/10/25 13:47:15 | 000,002,915 | ---- | M] () -- C:\Users\Marjorie\Desktop\SeaTools for Windows.lnk
[2010/10/23 09:38:10 | 000,000,116 | ---- | M] () -- C:\Users\Marjorie\Desktop\BarackObama.com - VOTE 2010 - Democrats.org.url
[2010/10/22 16:24:14 | 000,021,504 | ---- | M] () -- C:\Users\Marjorie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/16 17:34:23 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-308587777-71078739-3427918741-1006Core1cb6d79e63744a4.job
[2010/10/16 14:04:49 | 000,000,448 | ---- | M] () -- C:\Windows\tasks\PCDRScheduledMaintenance.job
[2010/10/14 18:00:51 | 000,000,048 | ---- | M] () -- C:\Windows\iltwain.ini
[2010/10/13 14:43:57 | 000,000,177 | ---- | M] () -- C:\Users\Marjorie\Desktop\Blinds Video.url
[2010/10/13 14:41:54 | 000,001,150 | ---- | M] () -- C:\Users\Marjorie\Desktop\Change Audio.lnk
[2010/10/13 12:05:13 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/10/13 12:05:13 | 000,624,254 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/10/13 12:05:13 | 000,106,816 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/10/13 03:23:12 | 000,358,792 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/10/11 10:24:43 | 000,848,850 | ---- | M] () -- C:\Users\Marjorie\My_Blue_Folders_vol_7_by_gandiusz.rar
[2010/10/11 10:23:15 | 000,547,562 | ---- | M] () -- C:\Users\Marjorie\Google_Chrome_icon_Z_Edition_by_F4B10.rar
[2010/10/11 10:14:26 | 000,387,585 | ---- | M] () -- C:\Users\Marjorie\windows_7_see_through_folder_by_elmer_befuddled-d2y0b6d.zip
[2010/10/10 17:55:14 | 000,014,336 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\wmdmhelper.dll
[2010/10/10 17:55:13 | 000,712,704 | ---- | M] ( ) -- C:\Program Files (x86)\dtdr3260.dll
[2010/10/10 17:55:12 | 000,651,264 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rjbres.dll
[2010/10/10 17:55:12 | 000,356,352 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rjdlg.dll
[2010/10/10 17:55:12 | 000,139,264 | ---- | M] (Inner Media, Inc.) -- C:\Program Files (x86)\dunzip32.dll
[2010/10/10 17:55:12 | 000,019,456 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rjprog.dll
[2010/10/10 17:55:11 | 000,036,352 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\ierjplug.dll
[2010/10/10 17:55:11 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\fixrjb.exe
[2010/10/10 17:55:11 | 000,002,851 | ---- | M] () -- C:\Program Files (x86)\cdroms.cfg
[2010/10/10 17:55:09 | 002,041,072 | ---- | M] (Gracenote, Inc.) -- C:\Program Files (x86)\cddbcontrol.dll
[2010/10/10 17:55:09 | 000,041,472 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\mmcdda32.dll
[2010/10/10 17:55:09 | 000,019,456 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\tnetdtct.dll
[2010/10/10 17:55:08 | 000,081,920 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\tsasdk.dll
[2010/10/10 17:55:08 | 000,057,344 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\tpasdk.dll
[2010/10/10 17:55:05 | 000,119,808 | ---- | M] () -- C:\Program Files (x86)\waiting.avi
[2010/10/10 17:55:05 | 000,057,762 | ---- | M] () -- C:\Program Files (x86)\howto.chm
[2010/10/10 17:55:05 | 000,040,154 | ---- | M] () -- C:\Program Files (x86)\realplay.chm
[2010/10/10 17:55:05 | 000,032,768 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rpwa3260.dll
[2010/10/10 17:55:05 | 000,027,278 | ---- | M] () -- C:\Program Files (x86)\frw.bmp
[2010/10/10 17:55:05 | 000,016,296 | ---- | M] () -- C:\Program Files (x86)\realtfon.fon
[2010/10/10 17:55:04 | 000,043,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rpshellsearch.dll
[2010/10/10 17:55:03 | 000,001,209 | ---- | M] () -- C:\Program Files (x86)\flvplay.swf
[2010/10/10 17:55:02 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\dbghelp.dll
[2010/10/10 17:55:02 | 000,065,536 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rjwmapln.dll
[2010/10/10 17:54:59 | 000,053,248 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rpau3260.dll
[2010/10/10 17:54:59 | 000,049,586 | ---- | M] () -- C:\Program Files (x86)\RealNetworks License.html
[2010/10/10 17:54:59 | 000,049,586 | ---- | M] () -- C:\Program Files (x86)\playrlic.html
[2010/10/10 17:54:58 | 000,053,098 | ---- | M] () -- C:\Program Files (x86)\presets.rnx
[2010/10/10 17:54:57 | 000,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2010/10/10 17:54:57 | 000,000,480 | ---- | M] () -- C:\Program Files (x86)\keys.dat
[2010/10/10 17:54:55 | 000,810,458 | ---- | M] () -- C:\Program Files (x86)\normal.vs
[2010/10/10 17:54:55 | 000,061,495 | ---- | M] () -- C:\Program Files (x86)\ssimages.vs
[2010/10/10 17:54:50 | 000,112,168 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rdsf3260.dll
[2010/10/10 17:54:50 | 000,102,400 | ---- | M] () -- C:\Program Files (x86)\hxaudiodevicehook.dll
[2010/10/10 17:54:50 | 000,086,016 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rpplugprot.dll
[2010/10/10 17:54:49 | 000,063,016 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rpshell.dll
[2010/10/10 17:54:49 | 000,001,030 | ---- | M] () -- C:\Program Files (x86)\autoplaylist.dat
[2010/10/10 17:54:49 | 000,000,050 | ---- | M] () -- C:\Program Files (x86)\strs23.dat
[2010/10/10 17:54:49 | 000,000,013 | ---- | M] () -- C:\Program Files (x86)\strs26.dat
[2010/10/10 17:54:48 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2010/10/10 17:54:48 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2010/10/10 17:54:47 | 000,014,888 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\rphelperapp.exe
[2010/10/10 17:54:47 | 000,007,168 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\realjbox.exe
[2010/10/10 17:54:24 | 000,488,968 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\realplay.exe
[2010/10/10 17:54:20 | 000,023,558 | ---- | M] () -- C:\Program Files (x86)\freeoffers.ico
[2010/10/10 17:54:20 | 000,017,846 | ---- | M] () -- C:\Program Files (x86)\videotest.rm
[2010/10/10 17:54:20 | 000,000,207 | ---- | M] () -- C:\Program Files (x86)\subscription.rnx
[2010/10/10 17:54:19 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\Windows\SysWow64\pncrt.dll
[2010/10/10 17:54:17 | 000,407,104 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\recordingmanager.exe
[2010/10/04 17:06:33 | 000,168,159 | ---- | M] () -- C:\Windows\hpoins37.dat
[2010/10/03 15:03:51 | 000,000,999 | ---- | M] () -- C:\Users\Marjorie\Application Data\Microsoft\Internet Explorer\Quick Launch\Revo Uninstaller Pro.lnk
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/10/29 11:36:14 | 000,006,639 | ---- | C] () -- C:\Users\Marjorie\Documents\Update on Your Verizon High Speed Internet Order.eml
[2010/10/28 20:48:27 | 000,001,033 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010/10/28 13:14:12 | 000,000,110 | ---- | C] () -- C:\Users\Marjorie\Desktop\AVG Install Error - Windows 7 Forums.url
[2010/10/26 11:12:57 | 000,000,036 | ---- | C] () -- C:\Users\Marjorie\AppData\Local\housecall.guid.cache
[2010/10/25 13:47:15 | 000,002,915 | ---- | C] () -- C:\Users\Marjorie\Desktop\SeaTools for Windows.lnk
[2010/10/23 09:38:10 | 000,000,116 | ---- | C] () -- C:\Users\Marjorie\Desktop\BarackObama.com - VOTE 2010 - Democrats.org.url
[2010/10/22 16:19:09 | 000,021,504 | ---- | C] () -- C:\Users\Marjorie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/22 16:03:46 | 001,098,240 | ---- | C] () -- C:\Windows\SysNative\xvidcore.dll
[2010/10/22 16:03:46 | 000,580,096 | ---- | C] () -- C:\Windows\SysNative\ac3filter64.acm
[2010/10/22 16:03:46 | 000,227,328 | ---- | C] () -- C:\Windows\SysNative\xvidvfw.dll
[2010/10/22 16:03:46 | 000,136,704 | ---- | C] () -- C:\Windows\SysNative\ff_vfw.dll
[2010/10/22 16:03:46 | 000,071,680 | ---- | C] () -- C:\Windows\SysNative\xvid.ax
[2010/10/22 16:03:45 | 000,580,096 | ---- | C] () -- C:\Windows\SysNative\ac3filter.acm
[2010/10/22 16:03:45 | 000,206,848 | ---- | C] () -- C:\Windows\SysNative\unrar.dll
[2010/10/16 17:34:23 | 000,000,912 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-308587777-71078739-3427918741-1006Core1cb6d79e63744a4.job
[2010/10/11 11:43:54 | 000,015,867 | ---- | C] () -- C:\Windows\Blank.ico
[2010/10/11 10:24:43 | 000,848,850 | ---- | C] () -- C:\Users\Marjorie\My_Blue_Folders_vol_7_by_gandiusz.rar
[2010/10/11 10:23:15 | 000,547,562 | ---- | C] () -- C:\Users\Marjorie\Google_Chrome_icon_Z_Edition_by_F4B10.rar
[2010/10/11 10:14:26 | 000,387,585 | ---- | C] () -- C:\Users\Marjorie\windows_7_see_through_folder_by_elmer_befuddled-d2y0b6d.zip
[2010/10/04 12:52:21 | 000,001,059 | ---- | C] () -- C:\Users\Marjorie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stickies.lnk
[2010/10/03 15:03:51 | 000,000,999 | ---- | C] () -- C:\Users\Marjorie\Application Data\Microsoft\Internet Explorer\Quick Launch\Revo Uninstaller Pro.lnk
[2010/09/02 00:53:48 | 000,108,032 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010/08/16 13:08:19 | 000,008,192 | ---- | C] () -- C:\Users\Marjorie\AppData\Local\{4D36E965-E325-11CE-BFC1-08002BE10318}.sav
[2010/06/23 12:35:52 | 000,790,528 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010/06/23 12:35:52 | 000,134,144 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010/06/12 01:01:02 | 000,076,407 | ---- | C] () -- C:\Users\Marjorie\AppData\Roaming\Smiley.ico
[2010/05/28 15:45:09 | 000,002,501 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2010/04/30 16:45:45 | 000,000,048 | ---- | C] () -- C:\Windows\iltwain.ini
[2010/04/14 15:45:20 | 000,000,104 | ---- | C] () -- C:\Windows\BsMobileModel.ini
[2010/03/20 11:51:33 | 000,025,631 | ---- | C] () -- C:\Users\Marjorie\AppData\Local\tmpGARDEN.JPG
[2010/03/20 11:51:33 | 000,023,871 | ---- | C] () -- C:\Users\Marjorie\AppData\Local\tmpGARDEN.0
[2010/03/19 20:51:37 | 000,002,851 | ---- | C] () -- C:\Program Files (x86)\cdroms.cfg
[2010/03/19 20:51:36 | 000,119,808 | ---- | C] () -- C:\Program Files (x86)\waiting.avi
[2010/03/19 20:51:36 | 000,027,278 | ---- | C] () -- C:\Program Files (x86)\frw.bmp
[2010/03/19 20:51:35 | 000,057,762 | ---- | C] () -- C:\Program Files (x86)\howto.chm
[2010/03/19 20:51:35 | 000,040,154 | ---- | C] () -- C:\Program Files (x86)\realplay.chm
[2010/03/19 20:51:35 | 000,016,296 | ---- | C] () -- C:\Program Files (x86)\realtfon.fon
[2010/03/19 20:51:34 | 000,001,209 | ---- | C] () -- C:\Program Files (x86)\flvplay.swf
[2010/03/19 20:51:33 | 000,053,098 | ---- | C] () -- C:\Program Files (x86)\presets.rnx
[2010/03/19 20:51:33 | 000,049,586 | ---- | C] () -- C:\Program Files (x86)\RealNetworks License.html
[2010/03/19 20:51:33 | 000,049,586 | ---- | C] () -- C:\Program Files (x86)\playrlic.html
[2010/03/19 20:51:33 | 000,047,117 | ---- | C] () -- C:\Program Files (x86)\RealNetworks License.txt
[2010/03/19 20:51:33 | 000,047,117 | ---- | C] () -- C:\Program Files (x86)\playrlic.txt
[2010/03/19 20:51:32 | 000,810,458 | ---- | C] () -- C:\Program Files (x86)\normal.vs
[2010/03/19 20:51:32 | 000,061,495 | ---- | C] () -- C:\Program Files (x86)\ssimages.vs
[2010/03/19 20:51:32 | 000,000,480 | ---- | C] () -- C:\Program Files (x86)\keys.dat
[2010/03/19 20:51:31 | 000,102,400 | ---- | C] () -- C:\Program Files (x86)\hxaudiodevicehook.dll
[2010/03/19 20:51:30 | 000,001,030 | ---- | C] () -- C:\Program Files (x86)\autoplaylist.dat
[2010/03/19 20:51:30 | 000,000,050 | ---- | C] () -- C:\Program Files (x86)\strs23.dat
[2010/03/19 20:51:30 | 000,000,013 | ---- | C] () -- C:\Program Files (x86)\strs26.dat
[2010/03/19 20:51:16 | 000,023,558 | ---- | C] () -- C:\Program Files (x86)\freeoffers.ico
[2010/03/19 20:51:16 | 000,017,846 | ---- | C] () -- C:\Program Files (x86)\videotest.rm
[2010/03/19 20:51:16 | 000,000,207 | ---- | C] () -- C:\Program Files (x86)\subscription.rnx
[2010/03/16 17:31:38 | 000,007,605 | ---- | C] () -- C:\Users\Marjorie\AppData\Local\Resmon.ResmonCfg
[2010/03/15 05:31:48 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010/03/02 12:49:00 | 000,047,104 | ---- | C] () -- C:\Windows\SysWow64\Wh2Robo.dll
[2010/03/01 21:29:40 | 000,003,076 | ---- | C] () -- C:\Users\Marjorie\AppData\Local\tmpPRIZES.JPG
[2010/02/23 19:14:31 | 000,767,952 | ---- | C] () -- C:\Windows\BDTSupport.dll.old
[2010/02/21 12:48:37 | 000,000,518 | ---- | C] () -- C:\Program Files (x86)\index.html
[2010/02/21 01:37:58 | 000,000,950 | ---- | C] () -- C:\Users\Marjorie\AppData\Roaming\wklnhst.dat
[2009/09/29 19:25:16 | 000,013,312 | ---- | C] () -- C:\Windows\LPRES.DLL
[2009/08/03 04:21:54 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2009/08/03 04:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2009/08/03 04:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2009/08/03 04:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2009/08/03 04:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2009/08/03 04:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2009/08/03 04:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2009/08/03 04:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2009/08/03 04:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2009/08/03 04:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2007/02/05 20:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI

========== Custom Scans ==========


< Double click on the icon on your desktop. >

< Click the "Scan All Users" checkbox. >

< In the custom scan box paste the following: >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >


< MD5 for: AGP440.SYS >
[2009/07/13 21:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/13 21:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 21:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/13 21:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: EVENTLOG.DLL >
[2007/05/18 01:34:04 | 000,007,216 | ---- | M] () MD5=C2A279A458A06DE2C83D842AA042B5A8 -- C:\Program Files (x86)\Cyberlink\PowerDirector\EventLog.dll

< MD5 for: IASTORV.SYS >
[2009/07/13 21:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/13 21:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: NETLOGON.DLL >
[2009/07/13 21:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 21:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVSTOR.SYS >
[2009/07/13 21:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 21:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 21:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/13 21:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< %systemroot%\*. /mp /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:A8ADE5D8
@Alternate Data Stream - 1053 bytes -> C:\Users\Marjorie\Documents\Update on Your Verizon High Speed Internet Order.eml:OECustomProperty
@Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:DFC5A2B2
@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:C31F31E6
< End of report >
 
Last edited:

My Computer

Computer Manufacturer/Model Number
HP Pavilion p6380t series
OS
Windows 7 Home Premium 64-bit
CPU
AMD Phenom X4 820 quad-core[2.8GHz. 2MB L2 + 4MB L3shared,
Motherboard
Foxconn (Aloe) H-RS880-uATX
Memory
6GB DDR3-1066MHz SDRAM [3 DIMMs]
Graphics Card(s)
512MB NVIDIA GeForce G210
Sound Card
Integrated 7.1 channel
Monitor(s) Displays
21.5" Diagonal Full HD Widescreen LCD Monitor
Screen Resolution
1920X1080
Hard Drives
500GB 7200 rpm SATA 3Gb/s hard drive

LightScribe 16X max. DVD+/-R/RW SuperMulti drive
Internet Speed
DSL
Other Info
Seagate® Expansion™ USB 2.0 Portable 500GB Hard Drive
Spin Speed (RPM) 5400 RPM
Hi Jacee,
I should also tell you I filled out a support case to Microsoft. They emailed me these instructions (attached), which I followed. It didn't help.
 

Attachments

My Computer

Computer Manufacturer/Model Number
HP Pavilion p6380t series
OS
Windows 7 Home Premium 64-bit
CPU
AMD Phenom X4 820 quad-core[2.8GHz. 2MB L2 + 4MB L3shared,
Motherboard
Foxconn (Aloe) H-RS880-uATX
Memory
6GB DDR3-1066MHz SDRAM [3 DIMMs]
Graphics Card(s)
512MB NVIDIA GeForce G210
Sound Card
Integrated 7.1 channel
Monitor(s) Displays
21.5" Diagonal Full HD Widescreen LCD Monitor
Screen Resolution
1920X1080
Hard Drives
500GB 7200 rpm SATA 3Gb/s hard drive

LightScribe 16X max. DVD+/-R/RW SuperMulti drive
Internet Speed
DSL
Other Info
Seagate® Expansion™ USB 2.0 Portable 500GB Hard Drive
Spin Speed (RPM) 5400 RPM
You must log in or register to reply here.
Back
Top