Jump to content

maljava not found by malwarebytes


Recommended Posts

My computer had norton AV 2011 that expired last week. Had mbam already installed and scan periodically anyway as i have found it finds more than norton. was considering purchasing now that norton subscription ran out. However, tried to run mbam today and unable to open. uninstalled, opened in safe mode and reinstalled, still unable to open. from support, tried renaming .exe file, reinstalling several times in different folders/names. Finally removed HD and ran mbam on another machine as an external drive and came up clean. thought maybe had some other error. ran norton AV scan on save external drive (original machine boot drive) and it showed 6 instances of maljava. This has been my first instance in 2 years that had any problem i couldn't easily solve with mbam or to have a virus it didn't find better than other software. wanted to point it out. still waiting for norton scan to finish, seems to have locked up. Any ideas?

Also tried running DDS on original machine and it locked up with ##### symbols across one line and never posted a log. Is there any documentation i can add to help. Still kinda newbie about mbam, but love to help it get better.

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

  • Download the file TDSSKiller.zip and extract it into a folder on the infected PC.
  • Execute the file TDSSKiller.exe by double-clicking on it.
  • Wait for the scan and disinfection process to be over.
  • When its work is over, the utility prompts for a reboot to complete the disinfection.

By default, the utility outputs runtime log into the system disk root directory (the disk where the operating system is installed, C:\ as a rule).

The log is like UtilityName.Version_Date_Time_log.txt.

for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt.

Please post that log here.

Next, download DDS by sUBs and save it to your Desktop.

Double-click on the DDS icon and let the scan run. When it has run two logs will be produced, please post only DDS.txt directly into your reply.

-screen317

Link to post
Share on other sites

This is the TDSS info, I hope you meant to post the whole thing. I am still unable to get DDS to finish a scan, with Norton disabled. Saw someone suggest running in Safe mode. will try that next.

2011/09/02 18:46:32.0957 4928 TDSS rootkit removing tool 2.5.17.0 Aug 22 2011 15:46:57

2011/09/02 18:46:33.0363 4928 ================================================================================

2011/09/02 18:46:33.0363 4928 SystemInfo:

2011/09/02 18:46:33.0363 4928

2011/09/02 18:46:33.0363 4928 OS Version: 5.1.2600 ServicePack: 3.0

2011/09/02 18:46:33.0363 4928 Product type: Workstation

2011/09/02 18:46:33.0363 4928 ComputerName: MADELINE

2011/09/02 18:46:33.0363 4928 UserName: Nathan

2011/09/02 18:46:33.0363 4928 Windows directory: H:\WINDOWS

2011/09/02 18:46:33.0363 4928 System windows directory: H:\WINDOWS

2011/09/02 18:46:33.0363 4928 Processor architecture: Intel x86

2011/09/02 18:46:33.0363 4928 Number of processors: 3

2011/09/02 18:46:33.0363 4928 Page size: 0x1000

2011/09/02 18:46:33.0363 4928 Boot type: Normal boot

2011/09/02 18:46:33.0363 4928 ================================================================================

2011/09/02 18:46:34.0691 4928 Initialize success

2011/09/02 18:46:39.0754 5052 ================================================================================

2011/09/02 18:46:39.0754 5052 Scan started

2011/09/02 18:46:39.0754 5052 Mode: Manual;

2011/09/02 18:46:39.0754 5052 ================================================================================

2011/09/02 18:46:43.0207 5052 ACPI (8fd99680a539792a30e97944fdaecf17) H:\WINDOWS\system32\DRIVERS\ACPI.sys

2011/09/02 18:46:43.0238 5052 ACPIEC (9859c0f6936e723e4892d7141b1327d5) H:\WINDOWS\system32\drivers\ACPIEC.sys

2011/09/02 18:46:43.0285 5052 aec (8bed39e3c35d6a489438b8141717a557) H:\WINDOWS\system32\drivers\aec.sys

2011/09/02 18:46:43.0316 5052 afcdp (53696ad8ffc5fac51949a525ff65a689) H:\WINDOWS\system32\DRIVERS\afcdp.sys

2011/09/02 18:46:43.0363 5052 AFD (355556d9e580915118cd7ef736653a89) H:\WINDOWS\System32\drivers\afd.sys

2011/09/02 18:46:43.0457 5052 Ambfilt (267fc636801edc5ab28e14036349e3be) H:\WINDOWS\system32\drivers\Ambfilt.sys

2011/09/02 18:46:43.0520 5052 AmdPPM (033448d435e65c4bd72e70521fd05c76) H:\WINDOWS\system32\DRIVERS\AmdPPM.sys

2011/09/02 18:46:43.0582 5052 AnyDVD (7684252281cfb197ac4c38b33ac5b2a6) H:\WINDOWS\system32\Drivers\AnyDVD.sys

2011/09/02 18:46:43.0629 5052 AppleCharger (75a8b998eb259dd512f01ea25bec7f3b) H:\WINDOWS\system32\DRIVERS\AppleCharger.sys

2011/09/02 18:46:43.0738 5052 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) H:\WINDOWS\system32\DRIVERS\asyncmac.sys

2011/09/02 18:46:43.0785 5052 atapi (9f3a2f5aa6875c72bf062c712cfa2674) H:\WINDOWS\system32\DRIVERS\atapi.sys

2011/09/02 18:46:43.0816 5052 Atmarpc (9916c1225104ba14794209cfa8012159) H:\WINDOWS\system32\DRIVERS\atmarpc.sys

2011/09/02 18:46:43.0863 5052 audstub (d9f724aa26c010a217c97606b160ed68) H:\WINDOWS\system32\DRIVERS\audstub.sys

2011/09/02 18:46:43.0926 5052 Beep (da1f27d85e0d1525f6621372e7b685e9) H:\WINDOWS\system32\drivers\Beep.sys

2011/09/02 18:46:44.0129 5052 BHDrvx86 (f7ff24bb7714247f27b615b3a7d8b132) H:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20110812.001\BHDrvx86.sys

2011/09/02 18:46:44.0176 5052 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) H:\WINDOWS\system32\drivers\cbidf2k.sys

2011/09/02 18:46:44.0254 5052 Cdaudio (c1b486a7658353d33a10cc15211a873b) H:\WINDOWS\system32\drivers\Cdaudio.sys

2011/09/02 18:46:44.0316 5052 Cdfs (c885b02847f5d2fd45a24e219ed93b32) H:\WINDOWS\system32\drivers\Cdfs.sys

2011/09/02 18:46:44.0332 5052 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) H:\WINDOWS\system32\DRIVERS\cdrom.sys

2011/09/02 18:46:44.0457 5052 Disk (044452051f3e02e7963599fc8f4f3e25) H:\WINDOWS\system32\DRIVERS\disk.sys

2011/09/02 18:46:44.0520 5052 dmboot (d992fe1274bde0f84ad826acae022a41) H:\WINDOWS\system32\drivers\dmboot.sys

2011/09/02 18:46:44.0535 5052 dmio (7c824cf7bbde77d95c08005717a95f6f) H:\WINDOWS\system32\drivers\dmio.sys

2011/09/02 18:46:44.0551 5052 dmload (e9317282a63ca4d188c0df5e09c6ac5f) H:\WINDOWS\system32\drivers\dmload.sys

2011/09/02 18:46:44.0582 5052 DMusic (8a208dfcf89792a484e76c40e5f50b45) H:\WINDOWS\system32\drivers\DMusic.sys

2011/09/02 18:46:44.0613 5052 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) H:\WINDOWS\system32\drivers\drmkaud.sys

2011/09/02 18:46:44.0738 5052 eeCtrl (8f7dbc4be48f5388a6fe1f285e7948ef) H:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys

2011/09/02 18:46:44.0785 5052 ElbyCDIO (d71233d7ccc2e64f8715a20428d5a33b) H:\WINDOWS\system32\Drivers\ElbyCDIO.sys

2011/09/02 18:46:44.0816 5052 EraserUtilRebootDrv (3ee14d400e0fdd0d214275a4a20b7022) H:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

2011/09/02 18:46:44.0863 5052 Fastfat (38d332a6d56af32635675f132548343e) H:\WINDOWS\system32\drivers\Fastfat.sys

2011/09/02 18:46:44.0895 5052 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) H:\WINDOWS\system32\drivers\Fdc.sys

2011/09/02 18:46:44.0910 5052 Fips (d45926117eb9fa946a6af572fbe1caa3) H:\WINDOWS\system32\drivers\Fips.sys

2011/09/02 18:46:44.0926 5052 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) H:\WINDOWS\system32\drivers\Flpydisk.sys

2011/09/02 18:46:44.0973 5052 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) H:\WINDOWS\system32\drivers\fltmgr.sys

2011/09/02 18:46:45.0004 5052 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) H:\WINDOWS\system32\drivers\Fs_Rec.sys

2011/09/02 18:46:45.0020 5052 Ftdisk (6ac26732762483366c3969c9e4d2259d) H:\WINDOWS\system32\DRIVERS\ftdisk.sys

2011/09/02 18:46:45.0051 5052 gdrv (d556cb79967e92b5cc69686d16c1d846) H:\WINDOWS\gdrv.sys

2011/09/02 18:46:45.0129 5052 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) H:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys

2011/09/02 18:46:45.0145 5052 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) H:\WINDOWS\system32\DRIVERS\msgpc.sys

2011/09/02 18:46:45.0176 5052 GVTDrv (689a8eef2a2d62b28a0a578a6196531c) H:\WINDOWS\system32\Drivers\GVTDrv.sys

2011/09/02 18:46:45.0223 5052 HDAudBus (573c7d0a32852b48f3058cfd8026f511) H:\WINDOWS\system32\DRIVERS\HDAudBus.sys

2011/09/02 18:46:45.0270 5052 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) H:\WINDOWS\system32\DRIVERS\hidusb.sys

2011/09/02 18:46:45.0348 5052 HTTP (f80a415ef82cd06ffaf0d971528ead38) H:\WINDOWS\system32\Drivers\HTTP.sys

2011/09/02 18:46:45.0410 5052 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) H:\WINDOWS\system32\DRIVERS\i8042prt.sys

2011/09/02 18:46:45.0598 5052 IDSxpx86 (e72d3894d42355e9cd5fd77e1e4fea11) H:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20110902.030\IDSxpx86.sys

2011/09/02 18:46:45.0598 5052 Imapi (083a052659f5310dd8b6a6cb05edcf8e) H:\WINDOWS\system32\DRIVERS\imapi.sys

2011/09/02 18:46:45.0754 5052 IntcAzAudAddService (7a9299f48d6f2e802e5b0e0dc508842a) H:\WINDOWS\system32\drivers\RtkHDAud.sys

2011/09/02 18:46:45.0816 5052 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) H:\WINDOWS\system32\drivers\ip6fw.sys

2011/09/02 18:46:45.0848 5052 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) H:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

2011/09/02 18:46:45.0863 5052 IpInIp (b87ab476dcf76e72010632b5550955f5) H:\WINDOWS\system32\DRIVERS\ipinip.sys

2011/09/02 18:46:45.0895 5052 IpNat (cc748ea12c6effde940ee98098bf96bb) H:\WINDOWS\system32\DRIVERS\ipnat.sys

2011/09/02 18:46:45.0910 5052 IPSec (23c74d75e36e7158768dd63d92789a91) H:\WINDOWS\system32\DRIVERS\ipsec.sys

2011/09/02 18:46:45.0941 5052 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) H:\WINDOWS\system32\DRIVERS\irenum.sys

2011/09/02 18:46:45.0988 5052 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) H:\WINDOWS\system32\DRIVERS\isapnp.sys

2011/09/02 18:46:46.0004 5052 Kbdclass (463c1ec80cd17420a542b7f36a36f128) H:\WINDOWS\system32\DRIVERS\kbdclass.sys

2011/09/02 18:46:46.0066 5052 kbdhid (9ef487a186dea361aa06913a75b3fa99) H:\WINDOWS\system32\DRIVERS\kbdhid.sys

2011/09/02 18:46:46.0082 5052 kmixer (692bcf44383d056aed41b045a323d378) H:\WINDOWS\system32\drivers\kmixer.sys

2011/09/02 18:46:46.0113 5052 KSecDD (b467646c54cc746128904e1654c750c1) H:\WINDOWS\system32\drivers\KSecDD.sys

2011/09/02 18:46:46.0191 5052 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) H:\WINDOWS\system32\DRIVERS\mhndrv.sys

2011/09/02 18:46:46.0223 5052 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) H:\WINDOWS\system32\drivers\mnmdd.sys

2011/09/02 18:46:46.0238 5052 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) H:\WINDOWS\system32\drivers\Modem.sys

2011/09/02 18:46:46.0285 5052 Monfilt (c7d9f9717916b34c1b00dd4834af485c) H:\WINDOWS\system32\drivers\Monfilt.sys

2011/09/02 18:46:46.0363 5052 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) H:\WINDOWS\system32\DRIVERS\mouclass.sys

2011/09/02 18:46:46.0410 5052 mouhid (b1c303e17fb9d46e87a98e4ba6769685) H:\WINDOWS\system32\DRIVERS\mouhid.sys

2011/09/02 18:46:46.0426 5052 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) H:\WINDOWS\system32\drivers\MountMgr.sys

2011/09/02 18:46:46.0441 5052 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) H:\WINDOWS\system32\DRIVERS\mrxdav.sys

2011/09/02 18:46:46.0473 5052 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) H:\WINDOWS\system32\DRIVERS\mrxsmb.sys

2011/09/02 18:46:46.0488 5052 Msfs (c941ea2454ba8350021d774daf0f1027) H:\WINDOWS\system32\drivers\Msfs.sys

2011/09/02 18:46:46.0504 5052 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) H:\WINDOWS\system32\drivers\MSKSSRV.sys

2011/09/02 18:46:46.0535 5052 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) H:\WINDOWS\system32\drivers\MSPCLOCK.sys

2011/09/02 18:46:46.0535 5052 MSPQM (bad59648ba099da4a17680b39730cb3d) H:\WINDOWS\system32\drivers\MSPQM.sys

2011/09/02 18:46:46.0566 5052 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) H:\WINDOWS\system32\DRIVERS\mssmbios.sys

2011/09/02 18:46:46.0582 5052 Mup (de6a75f5c270e756c5508d94b6cf68f5) H:\WINDOWS\system32\drivers\Mup.sys

2011/09/02 18:46:46.0738 5052 NAVENG (862f55824ac81295837b0ab63f91071f) H:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20110902.016\NAVENG.SYS

2011/09/02 18:46:46.0785 5052 NAVEX15 (529d571b551cb9da44237389b936f1ae) H:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20110902.016\NAVEX15.SYS

2011/09/02 18:46:46.0801 5052 NDIS (1df7f42665c94b825322fae71721130d) H:\WINDOWS\system32\drivers\NDIS.sys

2011/09/02 18:46:46.0848 5052 NdisTapi (0109c4f3850dfbab279542515386ae22) H:\WINDOWS\system32\DRIVERS\ndistapi.sys

2011/09/02 18:46:46.0863 5052 Ndisuio (f927a4434c5028758a842943ef1a3849) H:\WINDOWS\system32\DRIVERS\ndisuio.sys

2011/09/02 18:46:46.0879 5052 NdisWan (edc1531a49c80614b2cfda43ca8659ab) H:\WINDOWS\system32\DRIVERS\ndiswan.sys

2011/09/02 18:46:46.0910 5052 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) H:\WINDOWS\system32\drivers\NDProxy.sys

2011/09/02 18:46:46.0910 5052 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) H:\WINDOWS\system32\DRIVERS\netbios.sys

2011/09/02 18:46:46.0941 5052 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) H:\WINDOWS\system32\DRIVERS\netbt.sys

2011/09/02 18:46:46.0973 5052 Npfs (3182d64ae053d6fb034f44b6def8034a) H:\WINDOWS\system32\drivers\Npfs.sys

2011/09/02 18:46:47.0004 5052 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) H:\WINDOWS\system32\drivers\Ntfs.sys

2011/09/02 18:46:47.0066 5052 Null (73c1e1f395918bc2c6dd67af7591a3ad) H:\WINDOWS\system32\drivers\Null.sys

2011/09/02 18:46:47.0254 5052 nv (5e640f37801f2d4152d11595218915cd) H:\WINDOWS\system32\DRIVERS\nv4_mini.sys

2011/09/02 18:46:47.0441 5052 NVENETFD (fb571595404ffdc5006540cffcfa88e4) H:\WINDOWS\system32\DRIVERS\NVENETFD.sys

2011/09/02 18:46:47.0488 5052 nvnetbus (c529b614ef88be0f62b886c67b516550) H:\WINDOWS\system32\DRIVERS\nvnetbus.sys

2011/09/02 18:46:47.0535 5052 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) H:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

2011/09/02 18:46:47.0551 5052 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) H:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

2011/09/02 18:46:47.0582 5052 Parport (5575faf8f97ce5e713d108c2a58d7c7c) H:\WINDOWS\system32\DRIVERS\parport.sys

2011/09/02 18:46:47.0598 5052 PartMgr (beb3ba25197665d82ec7065b724171c6) H:\WINDOWS\system32\drivers\PartMgr.sys

2011/09/02 18:46:47.0613 5052 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) H:\WINDOWS\system32\drivers\ParVdm.sys

2011/09/02 18:46:47.0629 5052 PCI (a219903ccf74233761d92bef471a07b1) H:\WINDOWS\system32\DRIVERS\pci.sys

2011/09/02 18:46:47.0660 5052 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) H:\WINDOWS\system32\DRIVERS\pciide.sys

2011/09/02 18:46:47.0691 5052 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) H:\WINDOWS\system32\drivers\Pcmcia.sys

2011/09/02 18:46:47.0801 5052 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) H:\WINDOWS\system32\DRIVERS\raspptp.sys

2011/09/02 18:46:47.0801 5052 Processor (a32bebaf723557681bfc6bd93e98bd26) H:\WINDOWS\system32\DRIVERS\processr.sys

2011/09/02 18:46:47.0816 5052 PSched (09298ec810b07e5d582cb3a3f9255424) H:\WINDOWS\system32\DRIVERS\psched.sys

2011/09/02 18:46:47.0848 5052 pssnap (52e5e76c927a44957de7e7671e1f7e35) H:\WINDOWS\system32\DRIVERS\pssnap.sys

2011/09/02 18:46:47.0863 5052 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) H:\WINDOWS\system32\DRIVERS\ptilink.sys

2011/09/02 18:46:47.0879 5052 PxHelp20 (617accada2e0a0f43ec6030bbac49513) H:\WINDOWS\system32\Drivers\PxHelp20.sys

2011/09/02 18:46:47.0957 5052 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) H:\WINDOWS\system32\DRIVERS\rasacd.sys

2011/09/02 18:46:47.0988 5052 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) H:\WINDOWS\system32\DRIVERS\rasl2tp.sys

2011/09/02 18:46:48.0004 5052 RasPppoe (5bc962f2654137c9909c3d4603587dee) H:\WINDOWS\system32\DRIVERS\raspppoe.sys

2011/09/02 18:46:48.0004 5052 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) H:\WINDOWS\system32\DRIVERS\raspti.sys

2011/09/02 18:46:48.0035 5052 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) H:\WINDOWS\system32\DRIVERS\rdbss.sys

2011/09/02 18:46:48.0051 5052 RDPCDD (4912d5b403614ce99c28420f75353332) H:\WINDOWS\system32\DRIVERS\RDPCDD.sys

2011/09/02 18:46:48.0066 5052 rdpdr (15cabd0f7c00c47c70124907916af3f1) H:\WINDOWS\system32\DRIVERS\rdpdr.sys

2011/09/02 18:46:48.0098 5052 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) H:\WINDOWS\system32\drivers\RDPWD.sys

2011/09/02 18:46:48.0129 5052 redbook (f828dd7e1419b6653894a8f97a0094c5) H:\WINDOWS\system32\DRIVERS\redbook.sys

2011/09/02 18:46:48.0238 5052 Secdrv (90a3935d05b494a5a39d37e71f09a677) H:\WINDOWS\system32\DRIVERS\secdrv.sys

2011/09/02 18:46:48.0363 5052 serenum (0f29512ccd6bead730039fb4bd2c85ce) H:\WINDOWS\system32\DRIVERS\serenum.sys

2011/09/02 18:46:48.0379 5052 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) H:\WINDOWS\system32\DRIVERS\serial.sys

2011/09/02 18:46:48.0395 5052 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) H:\WINDOWS\system32\drivers\Sfloppy.sys

2011/09/02 18:46:48.0442 5052 snapman (eb49860e776ce860dc3cfb9edb1ba517) H:\WINDOWS\system32\DRIVERS\snapman.sys

2011/09/02 18:46:48.0488 5052 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) H:\WINDOWS\system32\drivers\splitter.sys

2011/09/02 18:46:48.0504 5052 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) H:\WINDOWS\system32\DRIVERS\sr.sys

2011/09/02 18:46:48.0567 5052 SRTSP (83726cf02eced69138948083e06b6eac) H:\WINDOWS\system32\drivers\N360\0501000.01D\SRTSP.SYS

2011/09/02 18:46:48.0598 5052 SRTSPX (4e7eab2e5615d39cf1f1df9c71e5e225) H:\WINDOWS\system32\drivers\N360\0501000.01D\SRTSPX.SYS

2011/09/02 18:46:48.0629 5052 Srv (47ddfc2f003f7f9f0592c6874962a2e7) H:\WINDOWS\system32\DRIVERS\srv.sys

2011/09/02 18:46:48.0660 5052 swenum (3941d127aef12e93addf6fe6ee027e0f) H:\WINDOWS\system32\DRIVERS\swenum.sys

2011/09/02 18:46:48.0676 5052 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) H:\WINDOWS\system32\drivers\swmidi.sys

2011/09/02 18:46:48.0738 5052 SymDS (9bbeb8c6258e72d62e7560e6667aad39) H:\WINDOWS\system32\drivers\N360\0501000.01D\SYMDS.SYS

2011/09/02 18:46:48.0770 5052 SymEFA (d5c02629c02a820a7e71bca3d44294a3) H:\WINDOWS\system32\drivers\N360\0501000.01D\SYMEFA.SYS

2011/09/02 18:46:48.0817 5052 SymEvent (ab33c3b196197ca467cbdda717860dba) H:\WINDOWS\system32\Drivers\SYMEVENT.SYS

2011/09/02 18:46:48.0848 5052 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) H:\WINDOWS\system32\drivers\N360\0501000.01D\Ironx86.SYS

2011/09/02 18:46:48.0895 5052 SYMTDI (dec35ccaf7a222df918306cd2fdfbd39) H:\WINDOWS\system32\drivers\N360\0501000.01D\SYMTDI.SYS

2011/09/02 18:46:48.0926 5052 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) H:\WINDOWS\system32\drivers\sysaudio.sys

2011/09/02 18:46:48.0988 5052 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) H:\WINDOWS\system32\DRIVERS\tcpip.sys

2011/09/02 18:46:49.0020 5052 TDPIPE (6471a66807f5e104e4885f5b67349397) H:\WINDOWS\system32\drivers\TDPIPE.sys

2011/09/02 18:46:49.0067 5052 tdrpman273 (431801fcc97034e04a6eff81136578d7) H:\WINDOWS\system32\DRIVERS\tdrpm273.sys

2011/09/02 18:46:49.0098 5052 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) H:\WINDOWS\system32\drivers\TDTCP.sys

2011/09/02 18:46:49.0129 5052 TermDD (88155247177638048422893737429d9e) H:\WINDOWS\system32\DRIVERS\termdd.sys

2011/09/02 18:46:49.0160 5052 timounter (a34d7024bb7140ec785c86bc065d4f60) H:\WINDOWS\system32\DRIVERS\timntr.sys

2011/09/02 18:46:49.0207 5052 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) H:\WINDOWS\system32\drivers\Udfs.sys

2011/09/02 18:46:49.0254 5052 Update (402ddc88356b1bac0ee3dd1580c76a31) H:\WINDOWS\system32\DRIVERS\update.sys

2011/09/02 18:46:49.0285 5052 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) H:\WINDOWS\system32\Drivers\usbaapl.sys

2011/09/02 18:46:49.0317 5052 usbccgp (173f317ce0db8e21322e71b7e60a27e8) H:\WINDOWS\system32\DRIVERS\usbccgp.sys

2011/09/02 18:46:49.0332 5052 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) H:\WINDOWS\system32\DRIVERS\usbehci.sys

2011/09/02 18:46:49.0363 5052 usbhub (1ab3cdde553b6e064d2e754efe20285c) H:\WINDOWS\system32\DRIVERS\usbhub.sys

2011/09/02 18:46:49.0426 5052 usbohci (0daecce65366ea32b162f85f07c6753b) H:\WINDOWS\system32\DRIVERS\usbohci.sys

2011/09/02 18:46:49.0473 5052 usbprint (a717c8721046828520c9edf31288fc00) H:\WINDOWS\system32\DRIVERS\usbprint.sys

2011/09/02 18:46:49.0504 5052 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) H:\WINDOWS\system32\DRIVERS\usbscan.sys

2011/09/02 18:46:49.0535 5052 usbstor (a32426d9b14a089eaa1d922e0c5801a9) H:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

2011/09/02 18:46:49.0567 5052 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) H:\WINDOWS\System32\drivers\vga.sys

2011/09/02 18:46:49.0613 5052 VolSnap (4c8fcb5cc53aab716d810740fe59d025) H:\WINDOWS\system32\drivers\VolSnap.sys

2011/09/02 18:46:49.0629 5052 Wanarp (e20b95baedb550f32dd489265c1da1f6) H:\WINDOWS\system32\DRIVERS\wanarp.sys

2011/09/02 18:46:49.0676 5052 wdmaud (6768acf64b18196494413695f0c3a00f) H:\WINDOWS\system32\drivers\wdmaud.sys

2011/09/02 18:46:49.0754 5052 WudfPf (f15feafffbb3644ccc80c5da584e6311) H:\WINDOWS\system32\DRIVERS\WudfPf.sys

2011/09/02 18:46:49.0770 5052 WudfRd (28b524262bce6de1f7ef9f510ba3985b) H:\WINDOWS\system32\DRIVERS\wudfrd.sys

2011/09/02 18:46:49.0801 5052 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0

2011/09/02 18:46:49.0910 5052 Boot (0x1200) (da1f213960da92abf3a81753d28dccfc) \Device\Harddisk0\DR0\Partition0

2011/09/02 18:46:49.0926 5052 ================================================================================

2011/09/02 18:46:49.0926 5052 Scan finished

2011/09/02 18:46:49.0926 5052 ================================================================================

2011/09/02 18:46:49.0926 5044 Detected object count: 0

2011/09/02 18:46:49.0926 5044 Actual detected object count: 0

Link to post
Share on other sites

  • Staff

Try this instead:

Download OTL.exe by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe.
  • Click Run Scan and let the program run uninterrupted.
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.

Link to post
Share on other sites

OTL logfile created on: 9/11/2011 2:43:11 AM - Run 1

OTL by OldTimer - Version 3.2.27.0 Folder = H:\Documents and Settings\Nathan\My Documents\vrl

Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.31 Gb Available Physical Memory | 76.92% Memory free

4.84 Gb Paging File | 4.07 Gb Available in Paging File | 84.03% Paging File free

Paging file location(s): H:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = H: | %SystemRoot% = H:\WINDOWS | %ProgramFiles% = H:\Program Files

Drive G: | 4.37 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Drive H: | 465.75 Gb Total Space | 253.80 Gb Free Space | 54.49% Space Free | Partition Type: NTFS

Computer Name: MADELINE | User Name: Nathan | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Processes (SafeList) ==========

PRC - [2011/09/11 02:42:24 | 000,581,120 | ---- | M] (OldTimer Tools) -- H:\Documents and Settings\Nathan\My Documents\vrl\OTL.exe

PRC - [2011/07/28 03:33:09 | 005,242,488 | ---- | M] (SlySoft, Inc.) -- H:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe

PRC - [2011/05/21 23:27:11 | 003,246,040 | ---- | M] (Acronis) -- H:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe

PRC - [2011/04/16 17:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- H:\Program Files\Norton 360 Premier Edition\Engine\5.1.0.29\ccSvcHst.exe

PRC - [2011/02/01 19:53:32 | 000,390,720 | ---- | M] (Acronis) -- H:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe

PRC - [2011/02/01 19:53:26 | 000,804,528 | ---- | M] (Acronis) -- H:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe

PRC - [2011/02/01 19:52:40 | 005,546,376 | ---- | M] (Acronis) -- H:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

PRC - [2011/01/17 20:02:06 | 000,220,824 | ---- | M] () -- H:\Program Files\Macrium\Reflect\ReflectService.exe

PRC - [2010/11/16 03:52:28 | 002,536,448 | ---- | M] (Acronis) -- H:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe

PRC - [2010/06/07 03:57:23 | 000,618,496 | ---- | M] () -- H:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe

PRC - [2010/05/14 11:44:46 | 000,501,480 | ---- | M] (Sun Microsystems, Inc.) -- H:\Program Files\Common Files\Java\Java Update\jucheck.exe

PRC - [2009/10/15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) -- H:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe

PRC - [2009/10/15 14:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- H:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe

PRC - [2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- H:\WINDOWS\explorer.exe

========== Modules (No Company Name) ==========

MOD - [2011/02/06 11:32:14 | 000,067,872 | ---- | M] () -- H:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll

MOD - [2011/02/04 17:48:30 | 000,291,840 | ---- | M] () -- H:\WINDOWS\system32\sbe.dll

MOD - [2011/01/17 20:02:06 | 000,220,824 | ---- | M] () -- H:\Program Files\Macrium\Reflect\ReflectService.exe

MOD - [2010/06/07 03:57:23 | 000,618,496 | ---- | M] () -- H:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe

MOD - [2010/02/05 11:27:45 | 001,291,776 | ---- | M] () -- H:\WINDOWS\system32\quartz.dll

MOD - [2009/06/27 10:11:12 | 000,503,202 | ---- | M] () -- H:\Program Files\DeviceVM\Browser Configuration Utility\sqlite3.dll

MOD - [2009/03/02 04:02:52 | 000,026,624 | ---- | M] () -- H:\WINDOWS\system32\ssp4ml3.dll

MOD - [2008/04/13 17:11:59 | 000,014,336 | ---- | M] () -- H:\WINDOWS\system32\msdmo.dll

MOD - [2008/04/13 17:11:51 | 000,059,904 | ---- | M] () -- H:\WINDOWS\system32\devenum.dll

========== Win32 Services (SafeList) ==========

SRV - [2011/05/21 23:27:11 | 003,246,040 | ---- | M] (Acronis) [Auto | Running] -- H:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)

SRV - [2011/04/16 17:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [unknown | Running] -- H:\Program Files\Norton 360 Premier Edition\Engine\5.1.0.29\ccSvcHst.exe -- (N360)

SRV - [2011/02/01 19:53:26 | 000,804,528 | ---- | M] (Acronis) [Auto | Running] -- H:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)

SRV - [2011/01/17 20:02:06 | 000,220,824 | ---- | M] () [Auto | Running] -- H:\Program Files\Macrium\Reflect\ReflectService.exe -- (ReflectService)

SRV - [2010/04/06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- H:\WINDOWS\system32\AppleChargerSrv.exe -- (AppleChargerSrv)

SRV - [2009/10/15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- H:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)

========== Driver Services (SafeList) ==========

DRV - [2011/09/01 20:07:03 | 000,126,584 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)

DRV - [2011/09/01 17:04:13 | 000,815,736 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- H:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20110901.001\BHDrvx86.sys -- (BHDrvx86)

DRV - [2011/09/01 01:00:00 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- H:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20110910.002\NAVEX15.SYS -- (NAVEX15)

DRV - [2011/09/01 01:00:00 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- H:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)

DRV - [2011/09/01 01:00:00 | 000,105,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- H:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)

DRV - [2011/09/01 01:00:00 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- H:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20110910.002\NAVENG.SYS -- (NAVENG)

DRV - [2011/08/31 16:07:08 | 000,356,280 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- H:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20110909.030\IDSXpx86.sys -- (IDSxpx86)

DRV - [2011/08/27 17:36:51 | 000,017,488 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\gdrv.sys -- (gdrv)

DRV - [2011/07/28 03:27:08 | 000,121,464 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)

DRV - [2011/05/21 23:27:13 | 000,167,968 | ---- | M] (Acronis) [File_System | On_Demand | Running] -- H:\WINDOWS\system32\drivers\afcdp.sys -- (afcdp)

DRV - [2011/05/21 23:27:01 | 000,752,128 | ---- | M] (Acronis) [Kernel | Boot | Running] -- H:\WINDOWS\system32\DRIVERS\tdrpm273.sys -- (tdrpman273) Acronis Try&Decide and Restore Points filter (build 273)

DRV - [2011/05/21 23:26:59 | 000,600,928 | ---- | M] (Acronis) [Kernel | Boot | Running] -- H:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)

DRV - [2011/05/21 23:26:52 | 000,170,528 | ---- | M] (Acronis) [Kernel | Boot | Running] -- H:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman)

DRV - [2011/04/10 12:06:24 | 000,024,944 | ---- | M] () [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\GVTDrv.sys -- (GVTDrv)

DRV - [2011/03/30 20:00:09 | 000,516,216 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- H:\WINDOWS\system32\drivers\N360\0501000.01D\SRTSP.SYS -- (SRTSP)

DRV - [2011/03/30 20:00:09 | 000,050,168 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- H:\WINDOWS\system32\drivers\N360\0501000.01D\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)

DRV - [2011/03/21 17:39:49 | 000,369,784 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- H:\WINDOWS\system32\drivers\N360\0501000.01D\SYMTDI.SYS -- (SYMTDI)

DRV - [2011/03/14 19:31:23 | 000,744,568 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- H:\WINDOWS\system32\drivers\N360\0501000.01D\SYMEFA.SYS -- (SymEFA)

DRV - [2011/01/26 23:47:10 | 000,340,088 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- H:\WINDOWS\system32\drivers\N360\0501000.01D\SYMDS.SYS -- (SymDS)

DRV - [2011/01/26 22:07:05 | 000,136,312 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- H:\WINDOWS\system32\drivers\N360\0501000.01D\Ironx86.SYS -- (SymIRON)

DRV - [2011/01/17 20:02:36 | 000,016,024 | ---- | M] (Macrium Software) [Kernel | Boot | Running] -- H:\WINDOWS\system32\DRIVERS\pssnap.sys -- (pssnap)

DRV - [2010/08/12 11:44:06 | 000,071,936 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)

DRV - [2010/04/30 01:56:24 | 006,032,928 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)

DRV - [2010/04/27 11:56:44 | 000,019,496 | ---- | M] () [Kernel | System | Running] -- H:\WINDOWS\system32\drivers\AppleCharger.sys -- (AppleCharger)

DRV - [2010/03/04 03:02:10 | 000,013,824 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)

DRV - [2009/11/17 16:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)

DRV - [2009/11/17 16:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)

DRV - [2007/04/16 16:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- H:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKU\S-1-5-21-2000478354-1788223648-839522115-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp

IE - HKU\S-1-5-21-2000478354-1788223648-839522115-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us

IE - HKU\S-1-5-21-2000478354-1788223648-839522115-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 3E 0A DF F5 68 6F CC 01 [binary data]

IE - HKU\S-1-5-21-2000478354-1788223648-839522115-1006\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - H:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)

IE - HKU\S-1-5-21-2000478354-1788223648-839522115-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: H:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: H:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: h:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: h:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: H:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPlgn\ [2011/09/04 07:49:48 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: H:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\coFFPlgn_2011_7_1_3 [2011/09/11 00:49:29 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components: H:\Program Files\Mozilla Firefox\components [2011/09/11 00:52:03 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins: H:\Program Files\Mozilla Firefox\plugins

[2011/09/11 00:52:13 | 000,000,000 | ---D | M] (No name found) -- H:\Documents and Settings\Nathan\Application Data\Mozilla\Extensions

[2011/09/11 01:03:06 | 000,002,469 | ---- | M] () -- H:\Documents and Settings\Nathan\Application Data\Mozilla\Firefox\Profiles\vd71dkf8.default\searchplugins\safesearch.xml

[2011/09/11 00:52:03 | 000,000,000 | ---D | M] (No name found) -- H:\Program Files\Mozilla Firefox\extensions

[2011/09/11 00:49:29 | 000,000,000 | ---D | M] (Norton Toolbar) -- H:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\COFFPLGN_2011_7_1_3

[2011/09/04 07:49:48 | 000,000,000 | ---D | M] (Symantec IPS) -- H:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\IPSFFPLGN

[2011/04/11 11:18:34 | 000,000,000 | ---D | M] (Java Quick Starter) -- H:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF

[2011/04/10 09:19:50 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- H:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION

[2011/09/02 23:01:45 | 000,134,104 | ---- | M] (Mozilla Foundation) -- H:\Program Files\mozilla firefox\components\browsercomps.dll

[2011/09/02 16:25:59 | 000,002,252 | ---- | M] () -- H:\Program Files\mozilla firefox\searchplugins\bing.xml

O1 HOSTS File: ([2004/08/10 05:00:00 | 000,000,734 | ---- | M]) - H:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - H:\Program Files\Norton 360 Premier Edition\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)

O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - H:\Program Files\Norton 360 Premier Edition\Engine\5.1.0.29\IPS\IPSBHO.dll (Symantec Corporation)

O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - H:\Program Files\Norton 360 Premier Edition\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)

O3 - HKU\S-1-5-21-2000478354-1788223648-839522115-1006\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - H:\Program Files\Norton 360 Premier Edition\Engine\5.1.0.29\CoIEPlg.dll (Symantec Corporation)

O4 - HKLM..\Run: [Acronis Scheduler2 Service] H:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)

O4 - HKLM..\Run: [bCU] H:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)

O4 - HKLM..\Run: [samsung PanelMgr] H:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe ()

O4 - HKLM..\Run: [sAOB Monitor] H:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe (Acronis)

O4 - HKLM..\Run: [TrueImageMonitor.exe] H:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)

O4 - HKU\S-1-5-21-2000478354-1788223648-839522115-1006..\Run: [AnyDVD] H:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe (SlySoft, Inc.)

O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] H:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = H:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = H:\WINDOWS\Resources\Themes\Royale.theme ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-2000478354-1788223648-839522115-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - H:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1302451290973 (WUWebControl Class)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)

O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} http://images3.pnimedia.com/ProductAssets/costcous/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab (Photo Upload Plugin Class)

O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F400BF75-378D-4E03-B50D-A8A26F8FF7E4}: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11

O20 - HKLM Winlogon: Shell - (Explorer.exe) - H:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (H:\WINDOWS\system32\userinit.exe) - H:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O24 - Desktop WallPaper: H:\Documents and Settings\Nathan\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: H:\Documents and Settings\Nathan\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - H:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)

O32 - HKLM CDRom: AutoRun - 1

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 60 Days ==========

[2011/09/11 02:07:15 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Application Data\Sun

[2011/09/11 01:00:40 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\My Documents\Downloads

[2011/09/11 00:59:32 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- H:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2011/09/11 00:59:29 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- H:\WINDOWS\System32\drivers\mbam.sys

[2011/09/11 00:52:08 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Local Settings\Application Data\Mozilla

[2011/09/11 00:52:08 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Application Data\Mozilla

[2011/09/11 00:52:02 | 000,000,000 | ---D | C] -- H:\Program Files\Mozilla Firefox

[2011/09/03 03:17:37 | 000,599,040 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\crypt32.dll

[2011/09/02 19:05:59 | 000,000,000 | ---D | C] -- H:\WINDOWS\CSC

[2011/09/02 19:02:23 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Nathan\My Documents\My Videos

[2011/09/02 19:02:23 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Nathan\Start Menu\Programs\Administrative Tools

[2011/09/02 18:50:18 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Application Data\Macromedia

[2011/09/02 18:46:05 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\My Documents\vrl

[2011/09/02 18:43:26 | 000,000,000 | -HSD | C] -- H:\Documents and Settings\Nathan\IECompatCache

[2011/09/02 18:43:14 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Application Data\Adobe

[2011/09/02 18:43:13 | 000,000,000 | -HSD | C] -- H:\Documents and Settings\Nathan\PrivacIE

[2011/09/02 18:42:49 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Local Settings\Application Data\Identities

[2011/09/02 18:42:48 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Application Data\Apple Computer

[2011/09/02 18:42:47 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Application Data\Windows Desktop Search

[2011/09/02 18:42:45 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Local Settings\Application Data\Apple Computer

[2011/09/02 18:42:28 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Application Data\Identities

[2011/09/02 18:42:23 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Nathan\My Documents\My Pictures

[2011/09/02 18:42:23 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Nathan\My Documents\My Music

[2011/09/02 18:42:23 | 000,000,000 | -HSD | C] -- H:\Documents and Settings\Nathan\IETldCache

[2011/09/02 18:42:19 | 000,000,000 | --SD | C] -- H:\Documents and Settings\Nathan\Application Data\Microsoft

[2011/09/02 18:42:19 | 000,000,000 | RH-D | C] -- H:\Documents and Settings\Nathan\Application Data

[2011/09/02 18:42:19 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Nathan\Favorites

[2011/09/02 18:42:19 | 000,000,000 | -HSD | C] -- H:\Documents and Settings\Nathan\Cookies

[2011/09/02 18:42:19 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Desktop

[2011/09/02 18:42:18 | 000,000,000 | RH-D | C] -- H:\Documents and Settings\Nathan\SendTo

[2011/09/02 18:42:18 | 000,000,000 | RH-D | C] -- H:\Documents and Settings\Nathan\Recent

[2011/09/02 18:42:18 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Nathan\Start Menu\Programs\Startup

[2011/09/02 18:42:18 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Nathan\Start Menu

[2011/09/02 18:42:18 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Nathan\My Documents

[2011/09/02 18:42:18 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Nathan\Start Menu\Programs\Accessories

[2011/09/02 18:42:18 | 000,000,000 | -H-D | C] -- H:\Documents and Settings\Nathan\Templates

[2011/09/02 18:42:18 | 000,000,000 | -H-D | C] -- H:\Documents and Settings\Nathan\PrintHood

[2011/09/02 18:42:18 | 000,000,000 | -H-D | C] -- H:\Documents and Settings\Nathan\NetHood

[2011/09/02 18:42:18 | 000,000,000 | -H-D | C] -- H:\Documents and Settings\Nathan\Local Settings

[2011/09/02 18:42:18 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Local Settings\Application Data\Microsoft Help

[2011/09/02 18:42:18 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Nathan\Local Settings\Application Data\Microsoft

[2011/09/01 20:07:03 | 000,126,584 | ---- | C] (Symantec Corporation) -- H:\WINDOWS\System32\drivers\SYMEVENT.SYS

[2011/09/01 20:07:03 | 000,060,872 | ---- | C] (Symantec Corporation) -- H:\WINDOWS\System32\S32EVNT1.DLL

[2011/09/01 20:07:03 | 000,000,000 | ---D | C] -- H:\Program Files\Common Files\Symantec Shared

[2011/09/01 20:07:03 | 000,000,000 | ---D | C] -- H:\Program Files\Symantec

[2011/09/01 20:06:49 | 000,369,784 | R--- | C] (Symantec Corporation) -- H:\WINDOWS\System32\drivers\N360\0501000.01D\symtdi.sys

[2011/09/01 20:06:49 | 000,331,384 | R--- | C] (Symantec Corporation) -- H:\WINDOWS\System32\drivers\N360\0501000.01D\symtdiv.sys

[2011/09/01 20:06:49 | 000,296,568 | R--- | C] (Symantec Corporation) -- H:\WINDOWS\System32\drivers\N360\0501000.01D\symnets.sys

[2011/09/01 20:06:48 | 000,744,568 | R--- | C] (Symantec Corporation) -- H:\WINDOWS\System32\drivers\N360\0501000.01D\SymEFA.sys

[2011/09/01 20:06:48 | 000,516,216 | R--- | C] (Symantec Corporation) -- H:\WINDOWS\System32\drivers\N360\0501000.01D\srtsp.sys

[2011/09/01 20:06:48 | 000,340,088 | R--- | C] (Symantec Corporation) -- H:\WINDOWS\System32\drivers\N360\0501000.01D\SymDS.sys

[2011/09/01 20:06:48 | 000,136,312 | R--- | C] (Symantec Corporation) -- H:\WINDOWS\System32\drivers\N360\0501000.01D\Ironx86.sys

[2011/09/01 20:06:48 | 000,050,168 | R--- | C] (Symantec Corporation) -- H:\WINDOWS\System32\drivers\N360\0501000.01D\srtspx.sys

[2011/09/01 20:06:28 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\drivers\N360

[2011/09/01 20:06:28 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\drivers\N360\0501000.01D

[2011/09/01 20:06:26 | 000,000,000 | ---D | C] -- H:\Program Files\Norton 360 Premier Edition

[2011/09/01 20:06:25 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Start Menu\Programs\Norton 360 Premier Edition

[2011/09/01 20:00:37 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Application Data\PCSettings

[2011/09/01 19:53:50 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Documents\Norton

[2011/08/27 17:56:33 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Start Menu\Programs\byteme

[2011/08/27 17:54:03 | 000,000,000 | ---D | C] -- H:\Program Files\Trend Micro

[2011/08/27 17:54:03 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Start Menu\Programs\HijackThis

[2011/08/13 12:32:30 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Start Menu\Programs\SereneScreen

[2011/08/13 12:32:28 | 000,000,000 | ---D | C] -- H:\Program Files\SereneScreen

[2011/08/09 16:05:34 | 000,139,656 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\rdpwd.sys

[2011/08/09 16:05:16 | 000,010,496 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\ndistapi.sys

[2011/08/02 22:13:19 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Application Data\Elaborate Bytes

[2011/07/28 03:27:08 | 000,121,464 | ---- | C] (SlySoft, Inc.) -- H:\WINDOWS\System32\drivers\AnyDVD.sys

[7 H:\WINDOWS\*.tmp files -> H:\WINDOWS\*.tmp -> ]

[4 H:\WINDOWS\System32\*.tmp files -> H:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 60 Days ==========

[2011/09/11 00:59:33 | 000,000,784 | ---- | M] () -- H:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk

[2011/09/11 00:52:05 | 000,000,742 | ---- | M] () -- H:\Documents and Settings\Nathan\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk

[2011/09/11 00:52:05 | 000,000,724 | ---- | M] () -- H:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk

[2011/09/11 00:49:12 | 000,013,646 | ---- | M] () -- H:\WINDOWS\System32\wpa.dbl

[2011/09/11 00:49:09 | 000,002,048 | --S- | M] () -- H:\WINDOWS\bootstat.dat

[2011/09/10 20:47:00 | 000,000,284 | ---- | M] () -- H:\WINDOWS\tasks\AppleSoftwareUpdate.job

[2011/09/09 20:25:06 | 000,617,716 | ---- | M] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\Cat.DB

[2011/09/03 03:17:37 | 000,599,040 | ---- | M] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\crypt32.dll

[2011/09/02 18:45:32 | 000,000,754 | ---- | M] () -- H:\Documents and Settings\All Users\Desktop\AnyDVD.lnk

[2011/09/02 18:42:37 | 000,000,815 | ---- | M] () -- H:\Documents and Settings\Nathan\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

[2011/09/02 18:42:35 | 000,000,079 | ---- | M] () -- H:\Documents and Settings\Nathan\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf

[2011/09/02 18:42:28 | 000,001,478 | ---- | M] () -- H:\Documents and Settings\Nathan\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Center.lnk

[2011/09/02 12:25:12 | 000,000,173 | -HS- | M] () -- H:\Documents and Settings\All Users\Application Data\.zreglib

[2011/09/01 20:07:03 | 000,126,584 | ---- | M] (Symantec Corporation) -- H:\WINDOWS\System32\drivers\SYMEVENT.SYS

[2011/09/01 20:07:03 | 000,060,872 | ---- | M] (Symantec Corporation) -- H:\WINDOWS\System32\S32EVNT1.DLL

[2011/09/01 20:07:03 | 000,007,468 | ---- | M] () -- H:\WINDOWS\System32\drivers\SYMEVENT.CAT

[2011/09/01 20:07:03 | 000,000,806 | ---- | M] () -- H:\WINDOWS\System32\drivers\SYMEVENT.INF

[2011/09/01 20:06:56 | 000,002,076 | ---- | M] () -- H:\Documents and Settings\All Users\Desktop\Norton 360 Premier Edition.LNK

[2011/08/27 17:47:17 | 000,002,187 | ---- | M] () -- H:\Documents and Settings\All Users\Desktop\Safari.lnk

[2011/08/27 17:36:51 | 000,017,488 | ---- | M] (Windows ® 2000 DDK provider) -- H:\WINDOWS\gdrv.sys

[2011/08/24 03:00:20 | 000,001,374 | ---- | M] () -- H:\WINDOWS\imsins.BAK

[2011/08/13 12:32:34 | 000,000,638 | ---- | M] () -- H:\Documents and Settings\All Users\Desktop\Aquarium.lnk

[2011/08/10 03:04:39 | 000,462,920 | ---- | M] () -- H:\WINDOWS\System32\perfh009.dat

[2011/08/10 03:04:39 | 000,078,740 | ---- | M] () -- H:\WINDOWS\System32\perfc009.dat

[2011/07/28 03:27:08 | 000,121,464 | ---- | M] (SlySoft, Inc.) -- H:\WINDOWS\System32\drivers\AnyDVD.sys

[2011/07/25 08:17:44 | 005,969,920 | ---- | M] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\mshtml.dll

[2011/07/15 06:29:31 | 000,456,320 | ---- | M] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\mrxsmb.sys

[2011/07/13 03:18:23 | 001,453,976 | ---- | M] () -- H:\WINDOWS\System32\FNTCACHE.DAT

[7 H:\WINDOWS\*.tmp files -> H:\WINDOWS\*.tmp -> ]

[4 H:\WINDOWS\System32\*.tmp files -> H:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/09/11 00:59:32 | 000,000,784 | ---- | C] () -- H:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk

[2011/09/11 00:52:05 | 000,000,742 | ---- | C] () -- H:\Documents and Settings\Nathan\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk

[2011/09/11 00:52:04 | 000,000,730 | ---- | C] () -- H:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk

[2011/09/11 00:52:04 | 000,000,724 | ---- | C] () -- H:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk

[2011/09/02 18:42:43 | 000,001,164 | ---- | C] () -- H:\Documents and Settings\Nathan\Start Menu\Programs\Social Games.lnk

[2011/09/02 18:42:37 | 000,000,815 | ---- | C] () -- H:\Documents and Settings\Nathan\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

[2011/09/02 18:42:37 | 000,000,803 | ---- | C] () -- H:\Documents and Settings\Nathan\Start Menu\Programs\Internet Explorer.lnk

[2011/09/02 18:42:35 | 000,000,079 | ---- | C] () -- H:\Documents and Settings\Nathan\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf

[2011/09/02 18:42:28 | 000,001,478 | ---- | C] () -- H:\Documents and Settings\Nathan\Application Data\Microsoft\Internet Explorer\Quick Launch\Media Center.lnk

[2011/09/02 18:42:28 | 000,000,738 | ---- | C] () -- H:\Documents and Settings\Nathan\Start Menu\Programs\Outlook Express.lnk

[2011/09/02 18:42:19 | 000,001,599 | ---- | C] () -- H:\Documents and Settings\Nathan\Start Menu\Programs\Remote Assistance.lnk

[2011/09/02 18:42:19 | 000,000,788 | ---- | C] () -- H:\Documents and Settings\Nathan\Start Menu\Programs\Windows Media Player.lnk

[2011/09/01 20:07:29 | 000,617,716 | ---- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\Cat.DB

[2011/09/01 20:07:03 | 000,007,468 | ---- | C] () -- H:\WINDOWS\System32\drivers\SYMEVENT.CAT

[2011/09/01 20:07:03 | 000,000,806 | ---- | C] () -- H:\WINDOWS\System32\drivers\SYMEVENT.INF

[2011/09/01 20:06:56 | 000,002,076 | ---- | C] () -- H:\Documents and Settings\All Users\Desktop\Norton 360 Premier Edition.LNK

[2011/09/01 20:06:49 | 000,000,000 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\SymDS.cat

[2011/09/01 20:06:29 | 000,003,373 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\SymEFA.inf

[2011/09/01 20:06:29 | 000,002,792 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\SymDS.inf

[2011/09/01 20:06:29 | 000,001,474 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\SymNetV.inf

[2011/09/01 20:06:29 | 000,001,446 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\SymNet.inf

[2011/09/01 20:06:29 | 000,001,389 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\srtspx.inf

[2011/09/01 20:06:29 | 000,001,383 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\srtsp.inf

[2011/09/01 20:06:29 | 000,000,742 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\Iron.inf

[2011/09/01 20:06:28 | 000,007,877 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\symnetv.cat

[2011/09/01 20:06:28 | 000,007,528 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\iron.cat

[2011/09/01 20:06:28 | 000,007,458 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\SymNet.cat

[2011/09/01 20:06:28 | 000,007,456 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\SymEFA.cat

[2011/09/01 20:06:28 | 000,007,454 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\srtspx.cat

[2011/09/01 20:06:28 | 000,007,450 | R--- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\srtsp.cat

[2011/09/01 20:06:28 | 000,000,172 | ---- | C] () -- H:\WINDOWS\System32\drivers\N360\0501000.01D\isolate.ini

[2011/08/13 12:32:34 | 000,000,638 | ---- | C] () -- H:\Documents and Settings\All Users\Desktop\Aquarium.lnk

[2011/08/13 12:32:28 | 001,679,360 | ---- | C] () -- H:\WINDOWS\System32\Aquarium.scr

[2011/07/11 20:34:50 | 000,000,173 | -HS- | C] () -- H:\Documents and Settings\All Users\Application Data\.zreglib

[2011/04/20 12:39:51 | 000,029,040 | -H-- | C] () -- H:\WINDOWS\System32\mlfcache.dat

[2011/04/10 21:51:08 | 000,482,408 | ---- | C] () -- H:\WINDOWS\ssndii.exe

[2011/04/10 21:50:07 | 000,026,624 | ---- | C] () -- H:\WINDOWS\System32\ssp4ml3.dll

[2011/04/10 12:43:53 | 000,252,316 | ---- | C] () -- H:\WINDOWS\System32\nvdrsdb1.bin

[2011/04/10 12:43:53 | 000,000,001 | ---- | C] () -- H:\WINDOWS\System32\nvdrssel.bin

[2011/04/10 12:29:20 | 000,031,272 | ---- | C] () -- H:\WINDOWS\System32\AppleChargerSrv.exe

[2011/04/10 12:29:20 | 000,019,496 | ---- | C] () -- H:\WINDOWS\System32\drivers\AppleCharger.sys

[2011/04/10 11:59:49 | 000,207,400 | R--- | C] () -- H:\WINDOWS\GSetup.exe

[2011/04/10 11:59:49 | 000,000,010 | ---- | C] () -- H:\WINDOWS\GSetup.ini

[2011/04/10 11:24:13 | 000,024,944 | ---- | C] () -- H:\WINDOWS\System32\drivers\GVTDrv.sys

[2011/04/09 21:50:53 | 000,010,084 | R--- | C] () -- H:\WINDOWS\System32\drivers\nvphy.bin

[2011/04/09 10:51:02 | 000,002,048 | --S- | C] () -- H:\WINDOWS\bootstat.dat

[2011/04/09 10:45:55 | 000,021,640 | ---- | C] () -- H:\WINDOWS\System32\emptyregdb.dat

[2011/04/09 03:26:56 | 000,004,161 | ---- | C] () -- H:\WINDOWS\ODBCINST.INI

[2011/04/09 02:34:53 | 001,453,976 | ---- | C] () -- H:\WINDOWS\System32\FNTCACHE.DAT

[2010/03/15 08:52:00 | 002,292,678 | ---- | C] () -- H:\WINDOWS\System32\nvdata.bin

[2008/05/26 21:59:42 | 000,018,904 | ---- | C] () -- H:\WINDOWS\System32\structuredqueryschematrivial.bin

[2008/05/26 21:59:40 | 000,106,605 | ---- | C] () -- H:\WINDOWS\System32\structuredqueryschema.bin

[2007/09/27 10:51:02 | 000,020,698 | ---- | C] () -- H:\WINDOWS\System32\idxcntrs.ini

[2007/09/27 10:48:48 | 000,030,628 | ---- | C] () -- H:\WINDOWS\System32\gsrvctr.ini

[2007/09/27 10:48:28 | 000,031,698 | ---- | C] () -- H:\WINDOWS\System32\gthrctr.ini

[2005/08/05 14:01:54 | 000,235,008 | ---- | C] () -- H:\WINDOWS\System32\psisdecd.dll

[2004/08/10 05:00:00 | 013,107,200 | ---- | C] () -- H:\WINDOWS\System32\oembios.bin

[2004/08/10 05:00:00 | 000,755,200 | ---- | C] () -- H:\WINDOWS\System32\ir50_32.dll

[2004/08/10 05:00:00 | 000,673,088 | ---- | C] () -- H:\WINDOWS\System32\mlang.dat

[2004/08/10 05:00:00 | 000,462,920 | ---- | C] () -- H:\WINDOWS\System32\perfh009.dat

[2004/08/10 05:00:00 | 000,338,432 | ---- | C] () -- H:\WINDOWS\System32\ir41_qcx.dll

[2004/08/10 05:00:00 | 000,272,128 | ---- | C] () -- H:\WINDOWS\System32\perfi009.dat

[2004/08/10 05:00:00 | 000,218,003 | ---- | C] () -- H:\WINDOWS\System32\dssec.dat

[2004/08/10 05:00:00 | 000,200,192 | ---- | C] () -- H:\WINDOWS\System32\ir50_qc.dll

[2004/08/10 05:00:00 | 000,183,808 | ---- | C] () -- H:\WINDOWS\System32\ir50_qcx.dll

[2004/08/10 05:00:00 | 000,120,320 | ---- | C] () -- H:\WINDOWS\System32\ir41_qc.dll

[2004/08/10 05:00:00 | 000,078,740 | ---- | C] () -- H:\WINDOWS\System32\perfc009.dat

[2004/08/10 05:00:00 | 000,046,258 | ---- | C] () -- H:\WINDOWS\System32\mib.bin

[2004/08/10 05:00:00 | 000,028,626 | ---- | C] () -- H:\WINDOWS\System32\perfd009.dat

[2004/08/10 05:00:00 | 000,004,569 | ---- | C] () -- H:\WINDOWS\System32\secupd.dat

[2004/08/10 05:00:00 | 000,004,461 | ---- | C] () -- H:\WINDOWS\System32\oembios.dat

[2004/08/10 05:00:00 | 000,001,804 | ---- | C] () -- H:\WINDOWS\System32\dcache.bin

[2004/08/10 05:00:00 | 000,000,741 | ---- | C] () -- H:\WINDOWS\System32\noise.dat

< End of report >

OTL Extras logfile created on: 9/11/2011 2:43:11 AM - Run 1

OTL by OldTimer - Version 3.2.27.0 Folder = H:\Documents and Settings\Nathan\My Documents\vrl

Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.31 Gb Available Physical Memory | 76.92% Memory free

4.84 Gb Paging File | 4.07 Gb Available in Paging File | 84.03% Paging File free

Paging file location(s): H:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = H: | %SystemRoot% = H:\WINDOWS | %ProgramFiles% = H:\Program Files

Drive G: | 4.37 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Drive H: | 465.75 Gb Total Space | 253.80 Gb Free Space | 54.49% Space Free | Partition Type: NTFS

Computer Name: MADELINE | User Name: Nathan | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

exefile [open] -- "%1" %*

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusDisableNotify" = 0

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

"AntiVirusOverride" = 0

"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]

"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]

"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

"5985:TCP" = 5985:TCP:*:Disabled:Windows Remote Management

"80:TCP" = 80:TCP:*:Disabled:Windows Remote Management - Compatibility Mode (HTTP-In)

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{04A3A6B0-8E19-49BB-82FF-65C5A55F917D}" = Acronis True Image Home 2011

"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

"{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java 6 Update 23

"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{353FE16B-30FE-469A-BF55-B978F4218003}" = iTunes

"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0427.1

"{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.0528.1

"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater

"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime

"{6C1E7AA1-44E9-446D-AAB2-0DE6D9EFEAB1}" = Safari

"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable

"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

"{853A4763-6643-4604-8D64-28BDD8925F4C}" = Apple Application Support

"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight

"{8DB6BDDB-2416-4F39-BF40-2C004D2F68BB}" = Macrium Reflect - Free Edition

"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12

"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007

"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007

"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007

"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007

"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007

"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007

"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007

"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007

"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007

"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007

"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007

"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)

"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

"{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}" = Browser Configuration Utility

"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2

"{A71D5E81-B967-43DB-93D7-FD31BFB95748}" = MobileMe Control Panel

"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.4

"{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}" = @BIOS

"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2

"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver

"{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour

"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update

"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support

"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1

"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1

"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver

"{F7E1CA14-B39D-452A-960B-39423DDDD933}" = DriveImage XML (Private Edition)

"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX

"AnyDVD" = AnyDVD

"CloneDVD2" = CloneDVD2

"CloneDVDmobile" = CloneDVDmobile

"Coupon Printer for Windows5.0.0.1" = Coupon Printer for Windows

"Enable S3 for USB Device" = Enable S3 for USB Device

"HijackThis" = HijackThis 2.0.2

"HOMESTUDENTR" = Microsoft Office Home and Student 2007

"ie8" = Windows Internet Explorer 8

"InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.0528.1

"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.1.1800

"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1

"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1

"Mozilla Firefox 6.0.2 (x86 en-US)" = Mozilla Firefox 6.0.2 (x86 en-US)

"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP

"N360" = Norton 360 Premier Edition

"NVIDIA Display Control Panel" = NVIDIA Display Control Panel

"NVIDIA Drivers" = NVIDIA Drivers

"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager

"Samsung ML-191x 252x Series" = Maintenance Samsung ML-191x 252x Series

"SereneScreen Aquarium" = SereneScreen Aquarium

"WIC" = Windows Imaging Component

"Windows Media Format Runtime" = Windows Media Format 11 runtime

"Windows Media Player" = Windows Media Player 11

"Windows XP Service Pack" = Windows XP Service Pack 3

"WMFDist11" = Windows Media Format 11 runtime

"wmp11" = Windows Media Player 11

"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]

Error - 9/6/2011 7:32:20 PM | Computer Name = MADELINE | Source = Application Hang | ID = 1002

Description = Hanging application WINWORD.EXE, version 12.0.6545.5000, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 9/6/2011 7:32:26 PM | Computer Name = MADELINE | Source = Application Hang | ID = 1002

Description = Hanging application WINWORD.EXE, version 12.0.6545.5000, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 9/6/2011 7:32:30 PM | Computer Name = MADELINE | Source = Application Hang | ID = 1002

Description = Hanging application WINWORD.EXE, version 12.0.6545.5000, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 9/6/2011 7:32:36 PM | Computer Name = MADELINE | Source = Application Hang | ID = 1002

Description = Hanging application WINWORD.EXE, version 12.0.6545.5000, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 9/6/2011 7:32:44 PM | Computer Name = MADELINE | Source = Application Hang | ID = 1002

Description = Hanging application WINWORD.EXE, version 12.0.6545.5000, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 9/6/2011 7:32:47 PM | Computer Name = MADELINE | Source = Application Hang | ID = 1002

Description = Hanging application WINWORD.EXE, version 12.0.6545.5000, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 9/6/2011 11:25:54 PM | Computer Name = MADELINE | Source = Application Hang | ID = 1001

Description = Fault bucket 2027877755.

Error - 9/6/2011 11:26:05 PM | Computer Name = MADELINE | Source = Application Hang | ID = 1001

Description = Fault bucket 2027877755.

Error - 9/6/2011 11:26:24 PM | Computer Name = MADELINE | Source = Application Hang | ID = 1001

Description = Fault bucket 2027877755.

Error - 9/9/2011 11:22:34 PM | Computer Name = MADELINE | Source = Windows Search Service | ID = 3024

Description = The update cannot be started because the content sources cannot be

accessed. Fix the errors and try the update again. Context: Application, SystemIndex

Catalog

[ System Events ]

Error - 9/2/2011 10:06:33 PM | Computer Name = MADELINE | Source = DCOM | ID = 10005

Description = DCOM got error "%1084" attempting to start the service EventSystem

with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 9/2/2011 10:07:44 PM | Computer Name = MADELINE | Source = Service Control Manager | ID = 7026

Description = The following boot-start or system-start driver(s) failed to load:

AmdPPM AppleCharger BHDrvx86 eeCtrl ElbyCDIO Fips SRTSPX SymIRON SYMTDI

Error - 9/4/2011 10:49:41 AM | Computer Name = MADELINE | Source = Service Control Manager | ID = 7000

Description = The DgiVecp service failed to start due to the following error: %%2

Error - 9/4/2011 10:49:41 AM | Computer Name = MADELINE | Source = Service Control Manager | ID = 7000

Description = The SSPORT service failed to start due to the following error: %%2

Error - 9/5/2011 7:49:42 PM | Computer Name = MADELINE | Source = Service Control Manager | ID = 7000

Description = The DgiVecp service failed to start due to the following error: %%2

Error - 9/5/2011 7:49:42 PM | Computer Name = MADELINE | Source = Service Control Manager | ID = 7000

Description = The SSPORT service failed to start due to the following error: %%2

Error - 9/9/2011 11:21:54 PM | Computer Name = MADELINE | Source = Service Control Manager | ID = 7000

Description = The DgiVecp service failed to start due to the following error: %%2

Error - 9/9/2011 11:21:54 PM | Computer Name = MADELINE | Source = Service Control Manager | ID = 7000

Description = The SSPORT service failed to start due to the following error: %%2

Error - 9/11/2011 3:49:39 AM | Computer Name = MADELINE | Source = Service Control Manager | ID = 7000

Description = The DgiVecp service failed to start due to the following error: %%2

Error - 9/11/2011 3:49:39 AM | Computer Name = MADELINE | Source = Service Control Manager | ID = 7000

Description = The SSPORT service failed to start due to the following error: %%2

< End of report >

Link to post
Share on other sites

  • 4 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.