Jump to content

XP, rundll, Malwarebyte Balloons too many to list.....


micdee

Recommended Posts

Good Afternoon Everyone. Trust you're all doing good. Need some help on this one. Here goes...Running xp with no Virus protection. Had 7.0 IE and upgraded to 8.0. Can't update Windows due to being blocked. Everytime I try it goes to can't display page. Now IE will not open. Using another puter to write this. Installed Malwarebytes using the firefox.com. Wouldn't let me at firefox.exe. Also installed Super Antispy. Ran both and found over 220 items. Yesterday I could open IE and browse some sites. Today IE errors. MWB's keeps popping up ballons that say blocking maliciuos website. ip 178.238.23.153 and ip 94.102.60.6 and ip 112.175.243.23 and 62.122.75.230 Also App errors for IE talking about memory not being read. When I boot up to splash screen for IE I get a Rundll error. c:\windows\Fxowkbls.dll. I tried to run the dds from both sites but after I ran it, it opens the black dos screen and laughs at me. Nothing happens. So looking at other sites I found one that works. Called OTL. I hope this will help. If not please let me know and I will try to run it in safe mode if I can. (the dds program that is)

No partion to speak of to repair XP or reinstall. No Recovery disks and just lost the DVD icon in My computer. Ugggg...Wondering if I want to spend all this time to repair. Thinking about just doing a clean install if I had the disks. Below is the info for the machine...

OTL logfile created on: 1/12/2012 10:20:11 AM - Run 2

OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\russell hoschar\Desktop

Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1014.37 Mb Total Physical Memory | 160.38 Mb Available Physical Memory | 15.81% Memory free

2.38 Gb Paging File | 1.00 Gb Available in Paging File | 41.95% Paging File free

Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 51.12 Gb Total Space | 28.24 Gb Free Space | 55.25% Space Free | Partition Type: NTFS

Computer Name: RUSS | User Name: russell hoschar | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user | Quick Scan

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/01/12 09:53:35 | 000,526,512 | ---- | M] (Google Inc.) -- C:\Documents and Settings\All Users\Application Data\Google\Google Toolbar\Update\GoogleToolbarInstaller_updater_signed.exe

PRC - [2012/01/10 19:57:13 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\russell hoschar\Desktop\OTL.exe

PRC - [2012/01/10 18:25:09 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE

PRC - [2011/12/24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

PRC - [2011/08/10 11:53:46 | 000,094,880 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe

PRC - [2011/03/13 11:45:14 | 000,148,520 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe

PRC - [2009/10/14 13:36:56 | 002,793,304 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe

PRC - [2009/10/14 13:34:18 | 000,560,472 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe

PRC - [2009/10/07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

PRC - [2009/05/21 10:55:32 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe

PRC - [2008/08/13 18:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe

PRC - [2008/04/13 17:12:08 | 001,058,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2008/03/03 18:06:00 | 001,848,648 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE

PRC - [2008/01/22 10:35:52 | 000,103,808 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe

PRC - [2007/03/15 11:09:36 | 000,460,784 | ---- | M] (Gteko Ltd.) -- C:\Program Files\DellSupport\DSAgnt.exe

PRC - [2006/09/18 13:46:30 | 000,481,792 | ---- | M] (Musicmatch, Inc.) -- C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

PRC - [2006/09/18 13:46:30 | 000,110,592 | ---- | M] (Musicmatch, Inc.) -- C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mm_tray.exe

PRC - [2006/09/18 13:46:30 | 000,102,400 | ---- | M] (Musicmatch, Inc.) -- C:\Program Files\MUSICMATCH\Musicmatch Jukebox\MMDiag.exe

PRC - [2006/02/19 02:41:10 | 000,049,152 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd2.exe

PRC - [2006/02/13 13:50:45 | 000,026,112 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\realplay.exe

PRC - [2005/11/16 20:35:16 | 000,397,312 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\stsystra.exe

PRC - [2005/01/27 00:02:00 | 000,086,016 | ---- | M] () -- C:\Program Files\Dell\Media Experience\DMXLauncher.exe

PRC - [2002/06/24 19:35:41 | 000,049,152 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark X74-X75\lxbbbmon.exe

PRC - [2002/06/24 19:11:28 | 000,057,344 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark X74-X75\lxbbbmgr.exe

========== Modules (No Company Name) ==========

MOD - [2011/12/20 21:02:21 | 000,136,192 | ---- | M] () -- \\.\globalroot\device\harddiskvolume2\docume~1\russel~1\locals~1\temp\33.tmp

MOD - [2010/10/02 03:03:07 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_0cfbdfa5\mscorlib.dll

MOD - [2010/10/02 03:02:59 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_020c7254\system.xml.dll

MOD - [2010/10/02 03:02:41 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_f01d0841\system.dll

MOD - [2010/10/02 03:02:27 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll

MOD - [2009/10/14 13:36:56 | 002,793,304 | ---- | M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe

MOD - [2009/10/14 13:34:18 | 000,560,472 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe

MOD - [2009/09/05 01:54:38 | 000,180,224 | ---- | M] () -- C:\Program Files\QuickTime\QTSystem\QTCF.dll

MOD - [2009/09/04 23:15:06 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll

MOD - [2009/09/04 23:14:56 | 000,120,096 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll

MOD - [2009/09/04 23:14:44 | 000,039,712 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll

MOD - [2009/02/13 12:44:56 | 000,071,696 | ---- | M] () -- c:\Program Files\McAfee\SiteAdvisor\mcfrmwk.dll

MOD - [2009/02/13 12:44:52 | 000,207,376 | ---- | M] () -- c:\Program Files\McAfee\SiteAdvisor\cntscan.dll

MOD - [2009/02/13 12:44:52 | 000,117,264 | ---- | M] () -- c:\Program Files\McAfee\SiteAdvisor\apengine.dll

MOD - [2008/03/24 21:50:40 | 000,355,112 | ---- | M] () -- C:\WINDOWS\system32\msjetoledb40.dll

MOD - [2008/01/22 10:35:52 | 000,103,808 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe

MOD - [2006/09/18 13:46:28 | 000,081,920 | ---- | M] () -- C:\Program Files\MUSICMATCH\Musicmatch Jukebox\YDetectQFE.dll

MOD - [2006/06/30 11:09:10 | 000,126,976 | ---- | M] () -- C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mmgit.dll

MOD - [2006/03/07 15:20:56 | 000,065,536 | ---- | M] () -- C:\WINDOWS\system32\PhotoStamper.dll

MOD - [2005/11/12 01:41:46 | 000,757,760 | ---- | M] () -- C:\WINDOWS\system32\bcm1xsup.dll

MOD - [2005/01/27 00:02:00 | 000,086,016 | ---- | M] () -- C:\Program Files\Dell\Media Experience\DMXLauncher.exe

MOD - [2004/08/11 16:23:22 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll

MOD - [2003/09/23 00:00:00 | 000,106,496 | ---- | M] () -- C:\Program Files\Dell\ShareDLL\djbsdk.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)

SRV - [2012/01/10 18:25:09 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE -- (!SASCORE)

SRV - [2012/01/05 08:36:34 | 000,827,456 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\WINDOWS\Temp\0147341326386442mcinst.exe -- (0147341326386442mcinstcleanup) McAfee Application Installer Cleanup (0147341326386442)

SRV - [2011/12/24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)

SRV - [2011/12/20 21:02:21 | 000,136,192 | ---- | M] () [Auto | Stopped] -- \\.\globalroot\Device\HarddiskVolume2\DOCUME~1\RUSSEL~1\LOCALS~1\Temp\33.tmp -- (33)

SRV - [2011/08/10 11:53:46 | 000,094,880 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)

SRV - [2011/03/13 11:45:14 | 000,148,520 | ---- | M] (McAfee, Inc.) [unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe -- (mfevtp)

SRV - [2011/03/13 11:41:50 | 000,159,832 | ---- | M] () [unknown | Stopped] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)

SRV - [2009/10/07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)

SRV - [2008/08/13 18:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)

SRV - [2008/01/22 10:35:52 | 000,103,808 | ---- | M] () [Auto | Running] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)

SRV - [2007/03/07 15:47:46 | 000,076,848 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)

SRV - [2006/03/03 21:03:10 | 000,069,632 | ---- | M] (HP) [On_Demand | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)

========== Driver Services (SafeList) ==========

DRV - [2011/12/10 15:24:06 | 000,020,464 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)

DRV - [2011/07/22 09:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)

DRV - [2011/07/12 14:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)

DRV - [2011/03/13 11:20:10 | 000,459,728 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)

DRV - [2011/03/13 11:20:10 | 000,089,368 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\mfetdi2k.sys -- (mfetdi2k)

DRV - [2011/03/13 11:20:10 | 000,083,688 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendiskmp)

DRV - [2011/03/13 11:20:10 | 000,083,688 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendisk)

DRV - [2011/03/13 11:20:10 | 000,057,432 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Stopped] -- C:\WINDOWS\system32\drivers\cfwids.sys -- (cfwids)

DRV - [2010/02/11 05:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)

DRV - [2009/10/07 01:49:50 | 000,023,832 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService)

DRV - [2009/10/07 01:49:38 | 006,756,632 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) Logitech Webcam 120(UVC)

DRV - [2009/10/07 01:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)

DRV - [2008/04/13 11:56:06 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)

DRV - [2008/04/13 11:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)

DRV - [2007/08/17 18:56:46 | 000,059,520 | ---- | M] (DEVGURU Co,LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PTDMWWAN.sys -- (PTDMWWAN)

DRV - [2007/08/17 18:56:40 | 000,039,936 | ---- | M] (DEVGURU Co,LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PTDMVsp.sys -- (PTDMVsp)

DRV - [2007/08/17 18:56:38 | 000,041,856 | ---- | M] (DEVGURU Co,LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PTDMMdm.sys -- (PTDMMdm)

DRV - [2007/08/17 18:56:34 | 000,029,952 | ---- | M] (DEVGURU Co,LTD.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PTDMBus.sys -- (PTDMBus)

DRV - [2007/02/25 12:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\dsunidrv.sys -- (dsunidrv)

DRV - [2006/10/05 16:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Running] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)

DRV - [2006/02/13 13:50:48 | 000,008,552 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)

DRV - [2005/11/16 20:36:00 | 001,047,816 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)

DRV - [2005/11/02 18:24:34 | 000,424,320 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)

DRV - [2005/08/12 15:50:46 | 000,016,128 | ---- | M] (Dell Inc) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS -- (APPDRV)

DRV - [2005/08/05 15:32:16 | 000,045,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)

DRV - [2005/07/14 22:58:14 | 000,028,544 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)

DRV - [2005/07/14 21:28:38 | 000,307,968 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rixdptsk.sys -- (rismxdp)

DRV - [2005/07/12 23:00:30 | 000,051,328 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk)

DRV - [2004/10/07 18:16:04 | 000,035,840 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K)

DRV - [2004/08/04 04:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)

DRV - [2004/08/04 04:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)

DRV - [2004/02/13 15:46:00 | 000,017,153 | ---- | M] (Dell Inc) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\omci.sys -- (omci)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 70 48 68 1A F9 CF CC 01 [binary data]

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{582FB3C8-43F4-4786-B0CC-35ABFB430723}: C:\Documents and Settings\russell hoschar\Local Settings\Application Data\{582FB3C8-43F4-4786-B0CC-35ABFB430723} [2011/08/27 22:26:52 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor [2012/01/12 09:40:31 | 000,000,000 | ---D | M]

[2009/10/27 07:37:34 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\russell hoschar\Application Data\Mozilla\Extensions

[2009/10/27 07:37:34 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\russell hoschar\Application Data\Mozilla\Extensions\mozswing@mozswing.org

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)

CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}

CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}

CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer

CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\ppGoogleNaClPluginChrome.dll

CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\pdf.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\gcswf32.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Documents and Settings\russell hoschar\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.40.135.1_0\McChPlg.dll

CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll

CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll

CHR - plugin: Java Deployment Toolkit 6.0.160.1 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll

CHR - plugin: Java™ Platform SE 6 U16 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll

CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll

CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll

CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll

CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll

CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll

CHR - plugin: QuickTime Plug-in 7.6.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll

CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll

CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll

CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll

CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

CHR - plugin: Google Updater (Enabled) = C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll

CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll

CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

CHR - plugin: Default Plug-in (Enabled) = default_plugin

CHR - Extension: YouTube = C:\Documents and Settings\russell hoschar\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\

CHR - Extension: Google Search = C:\Documents and Settings\russell hoschar\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\

CHR - Extension: SiteAdvisor = C:\Documents and Settings\russell hoschar\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.40.135.1_0\

CHR - Extension: Gmail = C:\Documents and Settings\russell hoschar\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/01/10 06:41:58 | 000,000,884 | RH-- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 94.63.240.131 www.google.com

O1 - Hosts: 94.63.240.132 www.bing.com

O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (Mapit Toolbar) - {46a21652-3f93-437d-aac0-caa1f6713da0} - C:\Program Files\Mapit\prxtbMap2.dll (Conduit Ltd.)

O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)

O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

O3 - HKLM\..\Toolbar: (Mapit Toolbar) - {46a21652-3f93-437d-aac0-caa1f6713da0} - C:\Program Files\Mapit\prxtbMap2.dll (Conduit Ltd.)

O3 - HKLM\..\Toolbar: (no name) - {5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} - No CLSID value found.

O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.

O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.

O3 - HKCU\..\Toolbar\WebBrowser: (Mapit Toolbar) - {46A21652-3F93-437D-AAC0-CAA1F6713DA0} - C:\Program Files\Mapit\prxtbMap2.dll (Conduit Ltd.)

O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)

O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)

O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)

O4 - HKLM..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe ()

O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )

O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Development Company, L.P.)

O4 - HKLM..\Run: [Lexmark X74-X75] C:\Program Files\Lexmark X74-X75\lxbbbmgr.exe (Lexmark International, Inc.)

O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()

O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)

O4 - HKLM..\Run: [MimBoot] C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mimboot.exe (Musicmatch, Inc.)

O4 - HKLM..\Run: [MMTray] C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe (Musicmatch, Inc.)

O4 - HKLM..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe (RealNetworks, Inc.)

O4 - HKLM..\Run: [showLOMControl] Reg Error: Invalid data type. File not found

O4 - HKLM..\Run: [sigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)

O4 - HKCU..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)

O4 - HKCU..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)

O4 - HKCU..\Run: [Fjuwob] rundll32.exe "C:\WINDOWS\fxowkbls.dll",Startup File not found

O4 - HKCU..\Run: [hJHrNnBfdqRBx] C:\Documents and Settings\All Users\Application Data\hJHrNnBfdqRBx.exe ()

O4 - HKCU..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netwaiting.exe ()

O4 - HKCU..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)

O4 - Startup: C:\Documents and Settings\russell hoschar\Start Menu\Programs\Startup\LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe (Lime Wire, LLC)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0

O9 - Extra Button: Bodog Poker - {F47C1DB5-ED21-4dc1-853E-D1495792D4C5} - C:\Program Files\Bodog Poker\BPGame.exe File not found

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)

O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000031 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000032 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000033 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000034 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000035 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000036 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000037 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000038 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000039 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000040 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000041 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000042 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000043 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000044 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000045 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000046 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O10 - Protocol_Catalog9\Catalog_Entries\000000000047 - C:\Program Files\Bonjour\mdnsNSP.dll File not found

O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://www.support.d...iler/SysPro.CAB (SysProWmi Class)

O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.micr.../OGAControl.cab (Office Genuine Advantage Validation Tool)

O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://www2.snapfish...fishActivia.cab (Snapfish Activia)

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail....es/MSNPUpld.cab (MSN Photo Upload Tool)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)

O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.4.2_03)

O16 - DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_03)

O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_16)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.11.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3DE78D3D-2612-4D16-8608-C516F89061F4}: DhcpNameServer = 192.168.11.1

O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL File not found

O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) -C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)

O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)

O24 - Desktop WallPaper: C:\Documents and Settings\russell hoschar\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\russell hoschar\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)

O30 - LSA: Authentication Packages - (nwprovau) -C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation)

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2004/08/11 16:15:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O33 - MountPoints2\{d5dd59e3-00e0-11dc-b621-0014a47c958a}\Shell - "" = AutoRun

O33 - MountPoints2\{d5dd59e3-00e0-11dc-b621-0014a47c958a}\Shell\AutoRun - "" = Auto&Play

O33 - MountPoints2\{d5dd59e3-00e0-11dc-b621-0014a47c958a}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 30 Days ==========

[2012/01/12 10:12:37 | 000,607,260 | R--- | C] (Swearware) -- C:\Documents and Settings\russell hoschar\Desktop\dds.com

[2012/01/12 09:40:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood

[2012/01/10 19:57:08 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\russell hoschar\Desktop\OTL.exe

[2012/01/10 18:36:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Dell

[2012/01/10 18:12:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\SUPERAntiSpyware.com

[2012/01/10 18:11:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\!SASCORE

[2012/01/10 18:11:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware

[2012/01/10 18:11:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com

[2012/01/10 18:11:11 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware

[2012/01/10 17:36:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\russell hoschar\PrivacIE

[2012/01/10 17:31:31 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\russell hoschar\IETldCache

[2012/01/10 17:16:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\PCHealth

[2012/01/10 17:13:35 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8

[2012/01/10 15:33:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Start Menu\Programs\Dell Recommends

[2012/01/10 14:10:13 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF

[2012/01/10 13:11:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\Malwarebytes

[2012/01/10 13:06:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware

[2012/01/10 13:05:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes

[2012/01/10 13:05:57 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2012/01/10 13:05:57 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2012/01/06 15:54:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\russell hoschar\Recent

[2012/01/06 09:18:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\imH5sQJ7dLgZq

[2012/01/06 09:17:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\l5sQJ7dEKgZhXkV

[2012/01/05 17:01:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\R6dWK8fRZhXjVl

[2012/01/05 17:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\uP0ycS1iv3naHsK

[2011/12/23 20:51:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Adobe

[2011/12/20 22:41:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\tL9hTXqjUeIrPyA

[2011/12/20 22:41:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\pTXqjYCekBzNx1v

[2011/12/20 22:19:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\w44aamH5sWJ7E

[2011/12/20 22:19:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\pvvDD2onF

[2011/12/20 22:16:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\IPNNyycA1ivDon4

[2011/12/20 22:16:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\mCCellIBtz

[2011/12/20 22:16:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\oyyycSS1ibDon4a

[2011/12/20 22:16:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\russell hoschar\Application Data\oeeelIIBrzPyc1u

[2011/12/20 22:09:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Sun

[2011/12/19 22:07:04 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\BovadaPoker

[2011/12/19 22:07:04 | 000,000,000 | ---D | C] -- C:\Bovada

[6 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]

[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[11 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/01/12 10:26:00 | 000,000,410 | ---- | M] () -- C:\WINDOWS\tasks\VersionCheck.job

[2012/01/12 10:18:04 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

[2012/01/12 10:12:47 | 000,607,260 | R--- | M] (Swearware) -- C:\Documents and Settings\russell hoschar\Desktop\dds.com

[2012/01/12 09:34:55 | 000,000,820 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job

[2012/01/12 09:34:43 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2012/01/12 09:33:36 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

[2012/01/12 09:33:27 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2012/01/10 19:57:13 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\russell hoschar\Desktop\OTL.exe

[2012/01/10 19:33:59 | 000,001,886 | ---- | M] () -- C:\Documents and Settings\russell hoschar\Desktop\Hotmail.url

[2012/01/10 18:11:22 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk

[2012/01/10 17:31:30 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\russell hoschar\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

[2012/01/10 14:20:09 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\russell hoschar\Desktop\Malwarebytes.lnk

[2012/01/10 13:17:17 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat

[2012/01/10 11:45:43 | 000,000,058 | -HS- | M] () -- C:\WINDOWS\System32\User.ini

[2012/01/10 11:44:56 | 000,014,182 | ---- | M] () -- C:\Documents and Settings\russell hoschar\nah_log.dat

[2012/01/10 11:43:59 | 000,271,872 | ---- | M] () -- C:\Documents and Settings\All Users\Documents\19792079

[2012/01/10 11:30:07 | 000,015,278 | -HS- | M] () -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\365ca37cy33q13173681bwfcor3m531tll1kl15165h

[2012/01/10 11:30:07 | 000,015,278 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\365ca37cy33q13173681bwfcor3m531tll1kl15165h

[2012/01/10 06:41:58 | 000,000,884 | RH-- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts

[2012/01/04 22:42:00 | 000,000,354 | ---- | M] () -- C:\WINDOWS\tasks\WebReg Photosmart C4100 series.job

[2011/12/21 10:32:08 | 000,012,038 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\7on2n11ogr7n42xgcdo0677of141lpw05x6b

[2011/12/20 22:43:19 | 000,014,568 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\2119090715

[2011/12/20 22:43:18 | 000,014,568 | -HS- | M] () -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\2119090715

[2011/12/20 22:42:47 | 000,014,560 | -HS- | M] () -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\264080780

[2011/12/20 22:42:34 | 000,014,552 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\bjxjuq6w4mub6jrh1chn0q780c8t

[2011/12/20 22:42:33 | 000,014,552 | -HS- | M] () -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\bjxjuq6w4mub6jrh1chn0q780c8t

[2011/12/20 22:42:12 | 000,014,564 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\264080780

[2011/12/19 22:18:34 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

[6 C:\WINDOWS\System32\dllcache\*.tmp files -> C:\WINDOWS\System32\dllcache\*.tmp -> ]

[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[10 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/01/10 18:11:22 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk

[2012/01/10 14:20:09 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\russell hoschar\Desktop\Malwarebytes.lnk

[2012/01/10 13:17:17 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat

[2012/01/10 11:45:43 | 000,000,058 | -HS- | C] () -- C:\WINDOWS\System32\User.ini

[2012/01/10 11:44:20 | 000,014,182 | ---- | C] () -- C:\Documents and Settings\russell hoschar\nah_log.dat

[2012/01/04 15:01:48 | 000,015,278 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\365ca37cy33q13173681bwfcor3m531tll1kl15165h

[2012/01/04 15:01:47 | 000,015,278 | -HS- | C] () -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\365ca37cy33q13173681bwfcor3m531tll1kl15165h

[2011/12/20 22:39:21 | 000,014,564 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\264080780

[2011/12/20 22:39:21 | 000,014,560 | -HS- | C] () -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\264080780

[2011/12/20 22:39:20 | 000,014,568 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\2119090715

[2011/12/20 22:39:19 | 000,014,568 | -HS- | C] () -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\2119090715

[2011/12/20 22:11:46 | 000,012,038 | -HS- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\7on2n11ogr7n42xgcdo0677of141lpw05x6b

[2011/12/20 22:11:46 | 000,012,038 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\7on2n11ogr7n42xgcdo0677of141lpw05x6b

[2011/12/20 22:11:11 | 000,271,872 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\19792079

[2011/12/14 16:01:06 | 000,014,552 | -HS- | C] () -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\bjxjuq6w4mub6jrh1chn0q780c8t

[2011/12/14 16:01:06 | 000,014,552 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\bjxjuq6w4mub6jrh1chn0q780c8t

[2011/08/28 06:04:22 | 000,000,120 | ---- | C] () -- C:\WINDOWS\Jreyukakadikujik.dat

[2011/08/28 06:04:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Udobalep.bin

[2011/08/25 18:33:27 | 000,014,045 | ---- | C] () -- C:\Documents and Settings\russell hoschar\Application Data\4FBA.32D

[2011/08/21 19:16:54 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hJHrNnBfdqRBx.exe

[2010/11/23 19:12:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\PhotoStamper.dll

[2010/04/08 18:04:46 | 000,082,289 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini

[2010/04/08 17:48:16 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\ezsidmv.dat

[2009/10/27 08:27:12 | 000,027,280 | ---- | C] () -- C:\WINDOWS\System32\mlfcache.dat

[2009/10/07 01:46:36 | 000,025,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys

[2009/10/07 01:23:08 | 000,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLFT2.dll

[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll

[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe

[2007/10/08 20:48:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\UltimateBuddy.INI

[2007/05/12 16:11:47 | 000,117,146 | ---- | C] () -- C:\WINDOWS\hpoins11.dat

[2007/05/12 16:11:37 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\HPZIDS01.dll

[2006/10/07 12:06:57 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini

[2006/10/07 11:41:58 | 000,001,063 | ---- | C] () -- C:\WINDOWS\LEXSTAT.INI

[2006/06/09 20:32:58 | 000,027,648 | ---- | C] () -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2006/05/14 21:18:46 | 000,006,580 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys

[2006/05/14 21:18:46 | 000,000,056 | RHS- | C] () -- C:\WINDOWS\System32\EA475F2C55.sys

[2006/05/05 16:19:28 | 000,011,634 | ---- | C] () -- C:\WINDOWS\hpomdl11.dat

[2006/04/01 22:30:58 | 000,000,138 | ---- | C] () -- C:\Documents and Settings\russell hoschar\Local Settings\Application Data\fusioncache.dat

[2006/04/01 20:58:56 | 000,020,454 | ---- | C] () -- C:\WINDOWS\hpoins01.dat

[2006/04/01 20:58:56 | 000,016,618 | ---- | C] () -- C:\WINDOWS\hpomdl01.dat

[2006/03/27 19:05:14 | 000,001,405 | ---- | C] () -- C:\WINDOWS\checkip.dat

[2006/02/13 14:06:10 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini

[2006/02/13 13:55:44 | 000,149,504 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE

[2006/02/13 13:51:19 | 000,000,136 | ---- | C] () -- C:\WINDOWS\wininit.ini

[2006/02/13 13:49:49 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat

[2006/02/13 13:46:10 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI

[2006/02/13 13:43:27 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QSLLPSVCShare

[2006/02/13 13:19:16 | 000,049,152 | ---- | C] () -- C:\WINDOWS\setpwrcg.exe

[2006/02/13 13:19:10 | 000,016,480 | ---- | C] () -- C:\WINDOWS\System32\rixdicon.dll

[2006/02/13 13:18:56 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE

[2006/02/13 13:18:54 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll

[2006/02/13 13:18:50 | 000,757,760 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll

[2006/02/13 13:18:44 | 000,000,390 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI

[2005/01/28 07:08:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini

[2004/08/11 16:24:19 | 000,000,791 | ---- | C] () -- C:\WINDOWS\orun32.ini

[2004/08/11 16:19:30 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2004/08/11 16:12:14 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2004/08/11 16:11:31 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini

[2004/08/11 16:07:24 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2004/08/11 16:06:43 | 000,138,848 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2004/08/11 16:00:36 | 001,033,728 | ---- | C] () -- C:\WINDOWS\expl.dat

[2004/08/11 16:00:36 | 000,507,904 | ---- | C] () -- C:\WINDOWS\System32\winl.dat

[2004/08/11 16:00:36 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\svch.dat

[2004/08/11 16:00:36 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\dllc.dat

[2004/08/11 16:00:30 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat

[2004/08/11 16:00:28 | 000,385,164 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat

[2004/08/11 16:00:28 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat

[2004/08/11 16:00:28 | 000,054,682 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat

[2004/08/11 16:00:28 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat

[2004/08/11 16:00:27 | 000,004,627 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat

[2004/08/11 16:00:26 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin

[2004/08/11 16:00:24 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

[2004/08/11 16:00:19 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat

[2004/08/11 16:00:19 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin

[2004/08/11 16:00:12 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat

[2004/08/11 16:00:04 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin

[2003/03/09 13:31:04 | 000,561,152 | ---- | C] () -- C:\WINDOWS\System32\hpotscl.dll

[2003/01/07 14:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

[2002/06/24 19:59:00 | 000,000,184 | ---- | C] () -- C:\WINDOWS\System32\lxbbcoin.ini

[2001/07/07 03:00:00 | 000,003,399 | ---- | C] () -- C:\WINDOWS\System32\hptcpmon.ini

========== LOP Check ==========

[2012/01/10 18:11:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\!SASCORE

[2006/10/07 11:44:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software

[2010/11/18 22:14:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ

[2011/02/06 11:32:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJ

[2010/11/18 22:25:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJMyPrinter

[2012/01/10 15:47:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJPLM

[2010/11/23 19:33:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJScan

[2010/11/18 22:25:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJSolutionMenu

[2006/10/21 12:46:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MSScanAppDataDir

[2008/01/26 10:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft

[2006/02/13 13:51:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint

[2012/01/10 13:23:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WSTB

[2009/10/06 04:43:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}

[2009/07/12 17:57:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}

[2012/01/10 14:03:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\A4634

[2009/07/12 18:31:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\alot

[2010/11/23 19:33:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\Canon

[2012/01/10 13:24:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\E32D4

[2012/01/06 09:24:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\imH5sQJ7dLgZq

[2011/12/20 22:16:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\IPNNyycA1ivDon4

[2012/01/06 09:17:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\l5sQJ7dEKgZhXkV

[2006/05/16 12:34:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\Leadertech

[2012/01/12 09:34:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\LimeWire

[2011/12/20 22:16:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\mCCellIBtz

[2007/11/24 13:35:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\Microgaming

[2011/12/20 22:16:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\oeeelIIBrzPyc1u

[2011/12/20 22:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\oyyycSS1ibDon4a

[2012/01/12 09:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\PriceGong

[2011/12/20 22:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\pTXqjYCekBzNx1v

[2011/12/20 22:19:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\pvvDD2onF

[2012/01/05 17:01:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\R6dWK8fRZhXjVl

[2008/04/11 19:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\Smith Micro

[2009/07/12 11:18:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\Snapfish

[2011/12/20 22:41:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\tL9hTXqjUeIrPyA

[2010/10/01 22:41:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\UB

[2012/01/05 17:01:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\uP0ycS1iv3naHsK

[2007/01/26 20:03:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\Viewpoint

[2011/12/20 22:19:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\russell hoschar\Application Data\w44aamH5sWJ7E

[2011/12/12 14:39:00 | 000,000,276 | ---- | M] () -- C:\WINDOWS\Tasks\defrag.job

[2006/08/10 22:40:48 | 000,000,362 | ---- | M] () -- C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1146452872.job

[2012/01/12 10:26:00 | 000,000,410 | ---- | M] () -- C:\WINDOWS\Tasks\VersionCheck.job

========== Purity Check ==========

< End of report >

That's all I got to give. Do I have a chance? When someone get's time could you reply with a direction or route to take.

Thanks for your time.

Have a beautiful week!!

Micdee

Link to post
Share on other sites

Update,

Good Evening everyone. My success rate for getting an answer or response is 0%. I guess my Title's I write are not Eye catchy enough. Either that or I'm flagged or Black listed. Had some views but nothing else. I couldn't sit around and wait so I just formatted and installing new os. The machine in the infected state was getting more unstable as I was booting it up. Thanks for giving me the time to write about what was happening and hope others might be able to use this to help them. Consider this log closed or resolved. Have a great new year!!

Micdee

Link to post
Share on other sites

  • Staff

Thanks for letting us know.

I highly recommend the PRO version of MBAM; with it, it's likely that this issue would have been prevented in the first place.

Now that your computer seems to be in proper working order, please take the following steps to help prevent reinfection:

1) Download and install Javacool's SpywareBlaster, which will prevent malware from being installed on your computer. A tutorial on it can be found here.

2) Go to Windows Update frequently to get all of the latest updates (security or otherwise) for Windows.

3) Make sure your programs are up to date! Older versions may contain security risks. To find out what programs need to be updated, please run Secunia's Software Inspector.

4) WOT, Web of Trust, warns you about risky websites that try to scam visitors, deliver malware or send spam. Protect your computer against online threats by using WOT as your front-line layer of protection when browsing or searching in unfamiliar territory. WOT's color-coded icons show you ratings for 21 million websites, helping you avoid the dangerous sites:

  • Green to go
  • Yellow for caution
  • Red to stop

WOT has an addon available for both Firefox and IE.

5) Be sure to update your Antivirus and Antispyware programs often!

Finally, please also take the time to read Tony Klein's excellent article on: So How Did I Get Infected in the First Place?

Safe surfing,

-screen317

Link to post
Share on other sites

  • 1 month later...
  • Staff

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.