[RESOLVED] Please Check - Page 2
Page 2 of 2 FirstFirst 12
Results 16 to 23 of 23

Thread: [RESOLVED] Please Check

  1. January 16th, 2010, 02:27 PM #16
    Chuckers
    Chuckers is offline Virtual Resident
    Join Date
    Apr 2000
    Location
    Harleysville, Pa. USA
    Posts
    605
    Quick scan log part 2:

    O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\MonacoGamma.lnk = C:\Program Files\Monaco Systems\MonacoOPTIX 2.0\MonacoGamma.exe (Monaco Systems)
    O4 - Startup: C:\Documents and Settings\HP_Owner\Start Menu\Programs\Startup\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O8 - Extra context menu item: Easy-WebPrint Add To Print List - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint High Speed Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Preview - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Easy-WebPrint Print - C:\Program Files\Canon\Easy-WebPrint\Resource.dll ()
    O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
    O9 - Extra Button: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePokerMaster\EmpirePoker\RunEPoker.exe File not found
    O9 - Extra 'Tools' menuitem : EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePokerMaster\EmpirePoker\RunEPoker.exe File not found
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
    O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
    O15 - HKCU\..Trusted Domains: aol.com ([*.www] * in Trusted sites)
    O15 - HKCU\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
    O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} http://www.musicnotes.com/download/mnviewer.cab (Musicnotes Viewer)
    O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.macromedia.com/pub...irector/sw.cab (Shockwave ActiveX Control)
    O16 - DPF: {200B3EE9-7242-4EFD-B1E4-D97EE825BA53} http://h20270.www2.hp.com/ediags/gmn...taller_gmn.cab (VerifyGMN Class)
    O16 - DPF: {26BFFB87-5B07-4611-82BB-AF3947013FDD} http://www.lexis.com/dl/IEDAP.cab (DAPCtl Class)
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsof...?1168376314671 (MUWebControl Class)
    O16 - DPF: {7584C670-2274-4EFB-B00B-D6AABA6D3850} https://216.64.66.138/Remote/msrdp.cab (Microsoft RDP Client Control (redist))
    O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} http://www.nick.com/common/groove/gx/GrooveAX27.cab (Groove Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_17)
    O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get.../ultrashim.cab (Reg Error: Value error.)
    O16 - DPF: {B160422D-0A48-11D4-BD9B-00A0C9B0AB7B} http://expressit.broderbund.com/plugin/Download.cab (Download Class)
    O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_17)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_17)
    O16 - DPF: {CE74A05D-ED12-473A-97F8-85FB0E2F479F} http://stash.nugs.net/dev/dlControl.CAB (dlControl.UserControl1)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub...sh/swflash.cab (Shockwave Flash Object)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logmein.com/activex/ractrl.cab?lmi=100 (Performance Viewer Activex Control)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
    O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
    O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
    O24 - Desktop WallPaper: C:\Documents and Settings\HP_Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: C:\Documents and Settings\HP_Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2002/01/01 06:33:57 | 00,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O32 - AutoRun File - [2001/07/27 14:07:38 | 00,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35 - comfile [open] -- "%1" %*
    O35 - exefile [open] -- "%1" %*

    ========== Files/Folders - Created Within 14 Days ==========

    [2010/01/16 13:07:40 | 00,000,000 | ---D | C] -- C:\_OTL
    [2010/01/16 13:05:27 | 00,547,328 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\HP_Owner\Desktop\OTL.exe
    [2010/01/15 21:11:56 | 00,439,808 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\HP_Owner\Desktop\TFC.exe
    [2010/01/15 20:49:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\espionServerData
    [2010/01/15 20:40:42 | 00,000,000 | -HSD | C] -- C:\RECYCLER
    [2010/01/15 13:21:05 | 00,000,000 | RHSD | C] -- C:\cmdcons
    [2010/01/15 13:20:06 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
    [2010/01/14 12:33:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\HP_Owner\My Documents\MMP Templets
    [2010/01/13 13:01:27 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
    [2010/01/13 12:51:39 | 00,000,000 | ---D | C] -- C:\NIK Plugins
    [2009/12/12 10:41:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Temp
    [2009/09/01 16:31:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
    [2009/09/01 16:23:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
    [2009/08/01 09:46:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
    [2008/06/22 12:49:19 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
    [2008/06/22 12:42:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
    [2008/06/12 16:51:56 | 00,049,152 | R--- | C] (Matsu****a Electric Industrial Co.,Ltd.) -- C:\Program Files\Common Files\HDvAvi.dll
    [2007/11/26 11:18:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
    [2002/01/01 05:42:31 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft

    ========== Files - Modified Within 14 Days ==========

    [2010/01/16 13:12:00 | 00,000,990 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2473755260-3095737839-3565755527-1009UA.job
    [2010/01/16 13:09:37 | 00,000,186 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.DAT
    [2010/01/16 13:09:29 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2010/01/16 13:09:19 | 00,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
    [2010/01/16 13:08:59 | 00,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2010/01/16 13:08:58 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
    [2010/01/16 13:08:55 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2010/01/16 13:08:10 | 06,553,600 | -H-- | M] () -- C:\Documents and Settings\HP_Owner\NTUSER.DAT
    [2010/01/16 13:08:08 | 00,000,278 | -HS- | M] () -- C:\Documents and Settings\HP_Owner\ntuser.ini
    [2010/01/16 13:07:51 | 00,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
    [2010/01/16 13:05:28 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HP_Owner\Desktop\OTL.exe
    [2010/01/16 12:36:00 | 00,000,890 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2010/01/16 07:39:34 | 00,000,274 | ---- | M] () -- C:\WINDOWS\system.ini
    [2010/01/16 07:16:31 | 03,740,614 | -H-- | M] () -- C:\Documents and Settings\HP_Owner\Local Settings\Application Data\IconCache.db
    [2010/01/16 01:12:00 | 00,000,938 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2473755260-3095737839-3565755527-1009Core.job
    [2010/01/15 21:11:58 | 00,439,808 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HP_Owner\Desktop\TFC.exe
    [2010/01/15 13:21:11 | 00,000,283 | RHS- | M] () -- C:\boot.ini
    [2010/01/15 08:28:01 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [2010/01/14 12:28:30 | 00,005,793 | ---- | M] () -- C:\Documents and Settings\HP_Owner\My Documents\My Favorite Theme.theme
    [2010/01/14 10:59:40 | 00,002,137 | ---- | M] () -- C:\Documents and Settings\HP_Owner\Desktop\iTunes.lnk
    [2010/01/14 10:58:41 | 00,347,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2010/01/13 15:29:42 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
    [2010/01/13 13:00:54 | 00,000,855 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Photoshop Elements 6.0.lnk
    [2010/01/13 12:56:34 | 00,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
    [2010/01/11 18:08:47 | 00,013,312 | ---- | M] () -- C:\Documents and Settings\HP_Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010/01/07 16:07:14 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
    [2010/01/07 16:07:04 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

    ========== Files Created - No Company Name ==========

    [2010/01/14 12:28:30 | 00,005,793 | ---- | C] () -- C:\Documents and Settings\HP_Owner\My Documents\My Favorite Theme.theme
    [2010/01/13 14:49:58 | 08,642,560 | ---- | C] () -- C:\Documents and Settings\HP_Owner\My Documents\dark ninja trailer part 2.AVI
    [2010/01/13 13:00:54 | 00,000,855 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Photoshop Elements 6.0.lnk
    [2008/06/29 16:21:10 | 00,002,516 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
    [2008/06/13 18:53:42 | 00,000,072 | ---- | C] () -- C:\WINDOWS\DVCapture.ini
    [2008/06/13 15:35:01 | 00,000,045 | ---- | C] () -- C:\WINDOWS\VideoGift2.INI
    [2008/02/28 14:30:08 | 00,008,784 | ---- | C] () -- C:\WINDOWS\System32\ractrlkeyhook.dll
    [2007/07/21 10:04:28 | 00,002,304 | ---- | C] () -- C:\WINDOWS\System32\Machnm32.sys
    [2007/03/31 16:13:08 | 00,000,214 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI
    [2006/11/26 11:38:50 | 00,008,704 | ---- | C] () -- C:\WINDOWS\System32\CNMVS7D.DLL
    [2006/08/19 13:19:35 | 00,000,596 | ---- | C] () -- C:\WINDOWS\WSST_Screen_Saver.ini
    [2006/05/28 00:27:39 | 00,001,359 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
    [2006/04/08 11:24:20 | 00,000,305 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\addr_file.html
    [2005/12/31 09:56:34 | 00,044,344 | ---- | C] () -- C:\WINDOWS\System32\drivers\SEQCAL.SYS
    [2005/12/31 09:56:32 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\Mplps.dll
    [2005/07/25 15:32:04 | 00,000,875 | ---- | C] () -- C:\Documents and Settings\HP_Owner\Application Data\AdobeDLM.log
    [2005/07/25 15:32:04 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Owner\Application Data\dm.ini
    [2005/05/24 20:25:16 | 00,000,102 | ---- | C] () -- C:\WINDOWS\VSWizard.ini
    [2005/05/22 19:31:07 | 00,013,312 | ---- | C] () -- C:\Documents and Settings\HP_Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2005/05/21 16:31:54 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
    [2005/05/21 16:30:10 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS61.DLL
    [2005/05/18 19:48:31 | 00,000,131 | ---- | C] () -- C:\Documents and Settings\HP_Owner\Local Settings\Application Data\fusioncache.dat
    [2005/02/04 12:56:42 | 00,323,584 | ---- | C] () -- C:\WINDOWS\System32\pythoncom22.dll
    [2005/02/04 12:56:42 | 00,094,208 | ---- | C] () -- C:\WINDOWS\System32\pywintypes22.dll
    [2005/02/04 12:56:20 | 00,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll
    [2004/09/13 18:35:56 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
    [2004/08/26 10:53:14 | 00,102,400 | ---- | C] () -- C:\WINDOWS\System32\MXONmSpace.dll
    [2004/08/26 10:49:52 | 00,024,576 | ---- | C] () -- C:\WINDOWS\System32\MXONmSpMFC.dll
    [2004/08/19 22:14:46 | 00,086,016 | ---- | C] () -- C:\WINDOWS\System32\PcdrKernelModeServices.dll
    [2004/08/19 22:14:46 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\ProgressTrace.dll
    [2004/06/15 23:38:02 | 00,000,549 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
    [2003/04/10 18:04:00 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\JAWTAccessBridge.dll
    [2002/04/11 13:47:52 | 00,049,152 | ---- | C] () -- C:\WINDOWS\System32\msmscoin.dll
    [2002/01/01 06:35:48 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
    [2002/01/01 06:31:54 | 00,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
    [2002/01/01 06:31:54 | 00,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
    [2002/01/01 06:31:54 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
    [2002/01/01 06:31:54 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
    [2002/01/01 06:31:54 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
    [2002/01/01 06:31:54 | 00,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
    [2002/01/01 06:01:49 | 00,014,552 | ---- | C] () -- C:\WINDOWS\System32\CHODDI.SYS
    [2002/01/01 06:01:42 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll
    [2002/01/01 06:01:20 | 00,002,154 | ---- | C] () -- C:\WINDOWS\System32\ssmute.ini
    [2002/01/01 05:58:12 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2002/01/01 05:39:59 | 00,002,273 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
    [2002/01/01 05:37:35 | 00,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
    [2002/01/01 05:35:16 | 00,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
    [2002/01/01 05:26:09 | 00,000,780 | ---- | C] () -- C:\WINDOWS\orun32.ini
    [1999/01/22 13:46:58 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
    [1998/01/12 03:00:00 | 00,040,448 | ---- | C] () -- C:\WINDOWS\System32\REGOBJ.DLL

    ========== LOP Check ==========

    [2005/05/27 16:38:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Broderbund
    [2005/05/27 16:23:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Broderbund Software
    [2006/11/26 11:38:39 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
    [2010/01/15 20:49:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\espionServerData
    [2008/01/26 12:03:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Musicnotes
    [2009/10/11 13:09:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
    [2008/12/04 11:09:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RetroExp
    [2006/05/23 14:47:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sandlot Games
    [2005/05/20 19:42:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SBT
    [2008/06/27 17:25:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems

    ========== Purity Check ==========


    < End of report >
    Desktop: Dell I620. Win 7 Home Premium
    Laptop 1: Toshiba, Win7 home premium
    Laptop 2: Macbook Pro
    Reply With Quote Reply With Quote
  2. January 16th, 2010, 02:29 PM #17
    Chuckers
    Chuckers is offline Virtual Resident
    Join Date
    Apr 2000
    Location
    Harleysville, Pa. USA
    Posts
    605
    Extra log:

    OTL Extras logfile created on: 1/16/2010 1:11:13 PM - Run 1
    OTL by OldTimer - Version 3.1.25.2 Folder = C:\Documents and Settings\HP_Owner\Desktop
    Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 7.0.5730.13)
    Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

    1,015.00 Mb Total Physical Memory | 623.00 Mb Available Physical Memory | 61.00% Memory free
    2.00 Gb Paging File | 2.00 Gb Available in Paging File | 86.00% Paging File free
    Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 178.70 Gb Total Space | 115.10 Gb Free Space | 64.41% Space Free | Partition Type: NTFS
    Drive D: | 7.59 Gb Total Space | 2.17 Gb Free Space | 28.58% Space Free | Partition Type: FAT32
    E: Drive not present or media not loaded
    F: Drive not present or media not loaded
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    I: Drive not present or media not loaded

    Computer Name: MELANIE-MICHELE
    Current User Name: HP_Owner
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: Current user
    Company Name Whitelist: On
    Skip Microsoft Files: On
    File Age = 14 Days
    Output = Standard
    Quick Scan

    ========== Extra Registry (SafeList) ==========


    ========== File Associations ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

    [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
    .html [@ = SafariHTML] -- C:\Program Files\Safari\Safari.exe (Apple Inc.)

    ========== Shell Spawning ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    exefile [open] -- "%1" %*
    htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation)
    htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
    htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
    http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
    https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
    CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "%programfiles%\internet explorer\iexplore.exe" (Microsoft Corporation)

    ========== Security Center Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirstRunDisabled" = 1
    "AntiVirusDisableNotify" = 0
    "FirewallDisableNotify" = 0
    "UpdatesDisableNotify" = 0
    "AntiVirusOverride" = 0
    "FirewallOverride" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 1
    "DoNotAllowExceptions" = 0
    "DisableNotifications" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
    "1900:UDP" = 1900:UDP:LocalSubNetisabled:@xpsp2res.dll,-22007
    "2869:TCP" = 2869:TCP:LocalSubNetisabled:@xpsp2res.dll,-22008
    "56942:TCP" = 56942:TCP:*:Enabled:Pando Media Booster
    "56942:UDP" = 56942:UDP:*:Enabled:Pando Media Booster

    ========== Authorized Applications List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
    "%ProgramFiles%\iTunes\iTunes.exe" = %ProgramFiles%\iTunes\iTunes.exe:*:enabled:iTunes -- (Apple Inc.)

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Program Files\Updates from HP\309731\Program\Updates from HP.exe" = C:\Program Files\Updates from HP\309731\Program\Updates from HP.exe:*:Enabled:BackWeb for Pavilion -- (Hewlett-Packard)
    "C:\Program Files\HP\HP Software Update\HPWUCli.exe" = C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:HP Software Update Client -- (Hewlett-Packard)
    "C:\Program Files\Real\RealPlayer\realplay.exe" = C:\Program Files\Real\RealPlayer\realplay.exe:*isabled:RealPlayer -- (RealNetworks, Inc.)
    "C:\Program Files\QuickTime\QuickTimePlayer.exe" = C:\Program Files\QuickTime\QuickTimePlayer.exe:*:Enabled:QuickTime Player -- (Apple Inc.)
    "C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
    "C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
    "C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)


    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{00010409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Professional
    "{00040409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Disc 2
    "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    "{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}" = Pivot Software
    "{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
    "{0C66761E-497A-4BE3-AE0D-8EC30FC9A9AA}" = PC-Doctor for Windows
    "{0D2E80C8-0875-43EB-9623-47118E2DFBCA}" = Quicken 2007
    "{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}" = SDK
    "{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}" = Microsoft Plus! Photo Story 2 LE
    "{14589F05-C658-4594-9429-D437BA688686}" = IntelliMover Data Transfer Demo
    "{15733AD1-1CEF-459A-9245-0924FC63BDD5}" = HP My Display
    "{15EE79F4-4ED1-4267-9B0F-351009325D7D}" = HP Software Update
    "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
    "{1A103D70-5C9B-4E1A-B306-5106C68F9914}" = Microsoft Plus! Dancer LE
    "{1AD5F465-8282-4DAD-B957-E09C0B783D18}" = InstantShare
    "{1F63ED0B-EDD2-4037-B6AB-1358C624AF48}" = Scan
    "{1FD0C5C1-B01B-4B4C-9607-E5D3B3D1318F}" = Microsoft IntelliPoint 4.1
    "{20FBC0A0-3160-4F14-83ED-3A74BB6B8C31}" = TrayApp
    "{21E75254-410E-49C4-8981-2E1A2A2221F2}" = HP Diagnostic Assistant
    "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
    "{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
    "{267868CE-6DFF-40F7-9C58-C01119B7B117}" = Fax
    "{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 17
    "{272EC8BA-5A08-4ea1-A189-684466A06B02}" = cp_dwShrek2Albums1
    "{28CFF19D-B92C-4109-A427-F75505E81688}" = cp_dwSharkTaleAlbums1
    "{2E8428AD-6CD2-4031-916A-3CF9BBF2DEC9}" = Unload
    "{34A59AC3-6C5C-4A09-A7F5-369A37176C8A}" = AiOSoftware
    "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
    "{352F5013-07DC-446D-8DB6-38F339086C60}" = LightScribe 1.4.84.1
    "{36FCD82D-1CED-436d-B33C-874EEC666D68}" = cp_dwSharkTaleCards1
    "{3762DB2D-71BD-421F-9E55-C74DA7DF4D07}" = CueTour
    "{3AE681E0-4E8D-453F-950A-48534D3C0724}" = Copy
    "{3AEF2F6C-F1D3-47CD-BF3B-A327F1FABE58}" = PSPrinters06
    "{3D047C15-C859-45F7-81CE-F2681778069B}" = iPod for Windows 2006-01-10
    "{3EC91FDF-FE9A-43D5-96C4-8A9C24372500}" = Maxtor OneTouch
    "{3F695596-85E6-4224-BC70-538F9036797A}" = MovieShop
    "{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
    "{409D0D83-871F-11D8-B780-0060971E455C}" = Montage ProVision 2.0
    "{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}" = Microsoft Works
    "{4C04DF1B-6A39-4299-9DD1-1FA60000266E}" = HP Photosmart Cameras 4.0
    "{4F5CE18C-D97D-48FF-A510-A0D90C918294}" = iTunes
    "{55508A44-8225-47AB-9666-1F57A5B5CE2E}" = CP_PLSBusinessFlyers
    "{5A0C892E-FD1C-4203-941E-0956AED20A6A}" = APC PowerChute Personal Edition
    "{5E8D588F-307C-4250-B622-26969027319A}" = PanoStandAlone
    "{644D04A2-C682-4FD5-977D-03B804C4B9C5}" = CreativeProjects
    "{646A65DD-23FC-418E-B9F0-E0500FB42CB1}" = PhotoGallery
    "{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler
    "{68963635-14A4-48D9-B431-DF3A74D1AAE1}" = Destinations
    "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
    "{6B0A882B-3AB7-45FE-B1E1-9A832413D699}" = MonacoOPTIX 2.0
    "{6D299DC3-31E2-45C6-8E36-263A2AB1CE8C}" = InterVideo WinDVD SE
    "{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}" = Microsoft Plus! Digital Media Edition Installer
    "{724517BD-1DE1-4986-BFCA-C1DFD379E3BC}" = cp_dwShrek2Cards1
    "{725249C3-B94C-4141-8799-0D3BA43D0812}" = CameraDrivers
    "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    "{786C5747-1033-0000-B58E-000000000001}" = Adobe Stock Photos 1.0
    "{7B98685A-4E21-4A4F-A2D6-DC557042BADA}" = HPIZplus450
    "{83104339-BF03-4ECA-910F-7B5344717EB5}" = GuideMenu
    "{84CDF5A8-1D57-4B69-BAB6-1F11D8923375}" = SkinsHP1
    "{86BE1CDA-4F72-4C2F-9526-8E6A22DF46ED}" = LexisNexis Toolbar
    "{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8EDBA74D-0686-4C99-BFDD-F894678E5B39}" = Adobe Common File Installer
    "{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD Player
    "{9541FED0-327F-4DF0-8B96-EF57EF622F19}" = Sonic RecordNow!
    "{9763E36A-08E9-4228-BBCE-12989A4EB1A8}" = QuickTime
    "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{9CB2512B-3EC4-43DF-8002-46BDAB5EDD1B}" = QuickProjects
    "{9EEBF8D5-8712-4D1D-88F4-4CDC2D270BC3}" = PrintScreen
    "{A0EB195B-5876-48E6-879D-33D4B2102610}" = SonicStage 3.3
    "{A1062847-0846-427A-92A1-BB8251A91E91}" = HP PSC & OfficeJet 4.0
    "{A2500497-FD32-493e-B8E5-28D6728DBEF5}" = Readme
    "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
    "{A4EA3AB4-E78C-4286-96DF-26035507CE55}" = AiO_Scan
    "{A5B9D22C-755A-4AC6-9904-875E80838BB6}" = CP_AtenaShokunin1Config
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}" = Photosmart 320,370,7400,8100,8400 Series
    "{AC76BA86-7AD7-1033-7B44-A70000000000}" = Adobe Reader 7.0.8
    "{B103C8A7-D1CC-4B1A-BD41-883F652E097D}" = muvee autoProducer 3.5 magicMoments - HPD
    "{B32C75F2-7495-4D01-9431-C11E97D66F8C}" = DocProc
    "{B4FEA924-630D-11D4-B78E-005004566E4D}" = ViewSonic Monitor Drivers
    "{B56D5B09-C4FB-4EA0-8EAD-7BC3E2715A2D}" = DocumentViewer
    "{B5C209B1-8DDB-4642-A573-375B951514CB}" = Apple Mobile Device Support
    "{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
    "{B74D4E10-1033-0000-0000-000000000001}" = Adobe Bridge 1.0
    "{B911B811-BA3E-46D4-90F8-6F3338359651}" = Director
    "{BBD461BD-A1DD-11D5-B566-005004C105CF}" = PHOTOVU / MPEG4 Movie Messenger System 1.01
    "{C084BC61-E537-11DE-8616-005056806466}" = Google Earth
    "{C3F058C0-A21C-452D-8D99-95B1A45F417D}" = InterVideo DiscLabel
    "{C4A978A3-CAE4-4856-89D5-696498A7B8F7}" = HPODiscovery
    "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
    "{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition
    "{CDFCF124-115F-4976-8BF4-08C89187A146}" = WebReg
    "{D0122362-6333-4DE4-93F6-A5A2F3CC101A}" = HP Organize
    "{D0420D64-8D33-4374-A2B2-9225C7925CA6}" = HP Image Zone Plus 4.5.3
    "{D6E4E5D6-7693-4BB4-95BA-21F38FAFEE90}" = Safari
    "{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}" = Canon PhotoRecord
    "{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
    "{DFF56DFF-F703-467C-AF1D-B8FAA99C7416}" = Ulead DVD MovieFactory SE
    "{E2EFF20D-30BF-4907-B1FD-B7EBCED798D6}" = HPHDiscovery
    "{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0
    "{EC8673DA-F96B-497E-B2DB-BC7B029FD680}" = BufferChm
    "{F419D20A-7719-4639-8E30-C073A040D878}" = HP Deskjet Preloaded Printer Drivers
    "{F54AC413-D2C6-4A24-B324-370C223C6250}" = Adobe Photoshop Elements 6.0
    "{F5E4C38C-73BC-4D44-8BFC-969C2B4DABCA}" = OpenMG Secure Module 4.3.00
    "{F68794FD-9BBA-44FB-976C-4FCE2B447476}" = Palmcorder USB Device Driver 3.01
    "{FB26EA24-AE01-4C86-BEBC-424D5B81E66E}" = The Print Shop
    "{FC22D020-3005-4715-8DF9-F3EDE81DEB3D}" = CreativeProjectsTemplates
    "3DGroove" = 3D Groove Playback Engine
    "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
    "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
    "Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
    "Adobe Photoshop Elements 6" = Adobe Photoshop Elements 6.0
    "Adobe Shockwave Player" = Adobe Shockwave Player 11
    "AdobeESD" = Adobe Download Manager 2.0 (Remove Only)
    "Agere Systems Soft Modem" = Agere Systems PCI Soft Modem
    "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
    "BackWeb-309731 Uninstaller" = Updates from HP
    "CANONBJ_Deinstall_CNMCP61.DLL" = Canon PIXMA iP3000
    "CANONBJ_Deinstall_CNMCP7D.DLL" = Canon iP6600D
    "Cat Stevens Screen Saver" = Cat Stevens Screen Saver
    "CCleaner" = CCleaner (remove only)
    "Desperate Space_is1" = Desperate Space
    "DVD Decrypter" = DVD Decrypter (Remove Only)
    "DVD Shrink_is1" = DVD Shrink 3.2
    "Easy-PhotoPrint" = Canon Utilities Easy-PhotoPrint
    "Easy-WebPrint" = Easy-WebPrint
    "Google Updater" = Google Updater
    "Gutterball 2_is1" = Gutterball 2
    "Help and Support Additions" = Help and Support Additions
    "HijackThis" = HijackThis 2.0.2
    "HP Photo & Imaging" = HP Image Zone 4.5.3
    "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
    "ie7" = Windows Internet Explorer 7
    "InstallShield_{0C66761E-497A-4BE3-AE0D-8EC30FC9A9AA}" = PC-Doctor for Windows
    "InstallShield_{3D047C15-C859-45F7-81CE-F2681778069B}" = iPod for Windows 2006-01-10
    "InstallShield_{3EC91FDF-FE9A-43D5-96C4-8A9C24372500}" = Maxtor OneTouch
    "InstallShield_{6D299DC3-31E2-45C6-8E36-263A2AB1CE8C}" = InterVideo WinDVD SE
    "InstallShield_{83104339-BF03-4ECA-910F-7B5344717EB5}" = Corel GuideMenu
    "InstallShield_{F5E4C38C-73BC-4D44-8BFC-969C2B4DABCA}" = OpenMG Secure Module 4.3.00
    "LexisNexis Download and Print for Internet Explorer" = LexisNexis Download and Print for Internet Explorer
    "Macromedia Shockwave Player" = Macromedia Shockwave Player
    "Mad Cars_is1" = Mad Cars
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
    "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
    "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
    "MXOFX" = USB Storage Adapter FX (MXO)
    "Mystery Case Files: Huntsville" = Mystery Case Files: Huntsville
    "nik Color Efex Pro 2.0 Complete" = nik Color Efex Pro 2.0 Complete
    "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
    "OpenMG HotFix4.3-05-09-14-01" = OpenMG Limited Patch 4.3-05-10-05-01
    "PocketRAR" = Pocket RAR documentation
    "PS2" = PS2
    "pywin32-py2.2" = Python 2.2 pywin32 extensions (build 203)
    "RealPlayer 6.0" = RealPlayer
    "RegScrubXP_is1" = RegScrubXP 3.25
    "Ricochet Lost Worlds Recharged_is1" = Ricochet Lost Worlds Recharged
    "Shockwave" = Shockwave
    "Snap Art" = Alien Skin Snap Art
    "Spybot - Search & Destroy_is1" = Spybot - Search & Destroy 1.4
    "Super Spongebob Collapse_is1" = Super Spongebob Collapse
    "The Lost City of Gold_is1" = The Lost City of Gold
    "Tight Backgrounds" = Tight Backgrounds
    "Tradewinds Legends_is1" = Tradewinds Legends
    "WebPost" = Microsoft Web Publishing Wizard 1.52
    "Windows Media Format Runtime" = Windows Media Format 11 runtime
    "Windows Media Player" = Windows Media Player 11
    "Windows XP Service Pack" = Windows XP Service Pack 3
    "WMFDist11" = Windows Media Format 11 runtime
    "wmp11" = Windows Media Player 11
    "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
    "XBTB04967.XBTB04967Toolbar" = GameFiesta Games Toolbar
    "Yahoo! Companion" = Yahoo! Toolbar
    "Yahoo! Toolbar" = Yahoo! Toolbar
    "YRefresher_is1" = Yrefresher 1.00

    >
    Desktop: Dell I620. Win 7 Home Premium
    Laptop 1: Toshiba, Win7 home premium
    Laptop 2: Macbook Pro
    Reply With Quote Reply With Quote
  3. January 16th, 2010, 02:30 PM #18
    Chuckers
    Chuckers is offline Virtual Resident
    Join Date
    Apr 2000
    Location
    Harleysville, Pa. USA
    Posts
    605
    Extra part 2:

    ========== HKEY_CURRENT_USER Uninstall List ==========

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "Google Chrome" = Google Chrome
    "Miller's ROES" = Miller's ROES

    ========== Last 10 Event Log Errors ==========

    [ Application Events ]
    Error - 12/12/2009 9:27:21 PM | Computer Name = MELANIE-MICHELE | Source = Application Hang | ID = 1002
    Description = Hanging application iexplore.exe, version 7.0.6000.16915, hang module
    hungapp, version 0.0.0.0, hang address 0x00000000.

    Error - 12/26/2009 3:05:50 PM | Computer Name = MELANIE-MICHELE | Source = Application Hang | ID = 1002
    Description = Hanging application iexplore.exe, version 7.0.6000.16945, hang module
    hungapp, version 0.0.0.0, hang address 0x00000000.

    Error - 1/13/2010 4:26:07 PM | Computer Name = MELANIE-MICHELE | Source = Application Hang | ID = 1002
    Description = Hanging application iexplore.exe, version 7.0.6000.16945, hang module
    hungapp, version 0.0.0.0, hang address 0x00000000.

    Error - 1/14/2010 3:32:36 PM | Computer Name = MELANIE-MICHELE | Source = Application Hang | ID = 1002
    Description = Hanging application iexplore.exe, version 7.0.6000.16945, hang module
    hungapp, version 0.0.0.0, hang address 0x00000000.

    Error - 1/14/2010 3:45:12 PM | Computer Name = MELANIE-MICHELE | Source = Application Hang | ID = 1002
    Description = Hanging application iexplore.exe, version 7.0.6000.16945, hang module
    hungapp, version 0.0.0.0, hang address 0x00000000.

    Error - 1/14/2010 3:46:35 PM | Computer Name = MELANIE-MICHELE | Source = Application Hang | ID = 1002
    Description = Hanging application iexplore.exe, version 7.0.6000.16945, hang module
    hungapp, version 0.0.0.0, hang address 0x00000000.

    Error - 1/14/2010 3:48:29 PM | Computer Name = MELANIE-MICHELE | Source = Application Hang | ID = 1002
    Description = Hanging application iexplore.exe, version 7.0.6000.16945, hang module
    hungapp, version 0.0.0.0, hang address 0x00000000.

    Error - 1/14/2010 4:10:38 PM | Computer Name = MELANIE-MICHELE | Source = Application Hang | ID = 1002
    Description = Hanging application iexplore.exe, version 7.0.6000.16945, hang module
    hungapp, version 0.0.0.0, hang address 0x00000000.

    Error - 1/15/2010 2:30:57 PM | Computer Name = MELANIE-MICHELE | Source = Application Error | ID = 1000
    Description = Faulting application , version 0.0.0.0, faulting module unknown, version
    0.0.0.0, fault address 0x00000000.

    Error - 1/15/2010 9:25:03 PM | Computer Name = MELANIE-MICHELE | Source = Application Error | ID = 1000
    Description = Faulting application , version 0.0.0.0, faulting module unknown, version
    0.0.0.0, fault address 0x00000000.

    [ System Events ]
    Error - 1/16/2010 2:07:41 PM | Computer Name = MELANIE-MICHELE | Source = Service Control Manager | ID = 7031
    Description = The Apple Mobile Device service terminated unexpectedly. It has done
    this 1 time(s). The following corrective action will be taken in 60000 milliseconds:
    Restart the service.

    Error - 1/16/2010 2:07:41 PM | Computer Name = MELANIE-MICHELE | Source = Service Control Manager | ID = 7034
    Description = The Bonjour Service service terminated unexpectedly. It has done
    this 1 time(s).

    Error - 1/16/2010 2:07:41 PM | Computer Name = MELANIE-MICHELE | Source = Service Control Manager | ID = 7034
    Description = The Adobe Active File Monitor V6 service terminated unexpectedly.
    It has done this 1 time(s).

    Error - 1/16/2010 2:07:41 PM | Computer Name = MELANIE-MICHELE | Source = Service Control Manager | ID = 7034
    Description = The Portrait Displays Display Tune Service service terminated unexpectedly.
    It has done this 1 time(s).

    Error - 1/16/2010 2:07:41 PM | Computer Name = MELANIE-MICHELE | Source = Service Control Manager | ID = 7034
    Description = The IviRegMgr service terminated unexpectedly. It has done this 1
    time(s).

    Error - 1/16/2010 2:07:41 PM | Computer Name = MELANIE-MICHELE | Source = Service Control Manager | ID = 7034
    Description = The Java Quick Starter service terminated unexpectedly. It has done
    this 1 time(s).

    Error - 1/16/2010 2:07:41 PM | Computer Name = MELANIE-MICHELE | Source = Service Control Manager | ID = 7034
    Description = The LightScribeService Direct Disc Labeling Service service terminated
    unexpectedly. It has done this 1 time(s).

    Error - 1/16/2010 2:07:41 PM | Computer Name = MELANIE-MICHELE | Source = Service Control Manager | ID = 7034
    Description = The ProtexisLicensing service terminated unexpectedly. It has done
    this 1 time(s).

    Error - 1/16/2010 2:07:41 PM | Computer Name = MELANIE-MICHELE | Source = Service Control Manager | ID = 7034
    Description = The Ulead Burning Helper service terminated unexpectedly. It has
    done this 1 time(s).

    Error - 1/16/2010 2:09:13 PM | Computer Name = MELANIE-MICHELE | Source = Service Control Manager | ID = 7000
    Description = The Panasonic Digital Palmcorder service failed to start due to the
    following error: %%1058


    < End of report
    Desktop: Dell I620. Win 7 Home Premium
    Laptop 1: Toshiba, Win7 home premium
    Laptop 2: Macbook Pro
    Reply With Quote Reply With Quote
  4. January 16th, 2010, 08:27 PM #19
    Broni's Avatar
    Broni
    Broni is offline Friend of Site Staff
    Join Date
    Dec 2007
    Location
    Daly City, CA
    Posts
    22,550
    Verify your Java version here: http://www.java.com/en/download/installed.jsp
    Update, if necessary.
    Uninstall all previous Java versions, through Add\Remove (Programs & Features in Vista).

    ===============================================================

    Disable TeaTimer, as it'll interfere with the cleaning process:
    Right click Spybot's TeaTimer System Tray Icon.
    Click Exit Spybot-S&D Resident.
    TeaTimer closes.
    NOTE. If on re-boot, Spybot inquires about registry change(s), allow it.

    ==============================================================

    Print this post out, since you won't have an access to it, at some point.

    1. Open HijackThis.

    2. Close all windows, except for HijackThis.

    3. Put checkmarks next to the following HijackThis entries:

    - O9 - Extra button: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePokerMaster\EmpirePoker\RunEPoker.exe (file missing)
    - O9 - Extra 'Tools' menuitem: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePokerMaster\EmpirePoker\RunEPoker.exe (file missing)


    4. You should also checkmark following entries (these are unnecessary startups; no actual programs will be removed):

    - O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
    - O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
    - O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
    - O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    - O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    - O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    - O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\HP_Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
    - O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    - O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    - O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL

    5. Click on Fix checked button.

    6. Restart computer.

    7. Post new HijackThis log.
    My Home Page
    Reply With Quote Reply With Quote
  6. January 17th, 2010, 01:58 PM #20
    Chuckers
    Chuckers is offline Virtual Resident
    Join Date
    Apr 2000
    Location
    Harleysville, Pa. USA
    Posts
    605
    Java is current.
    If there is teatimer on this machine, I couldn't find it.

    HijackThis log:

    Thank you very much.

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 12:54:35 PM, on 1/17/2010
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16945)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\WINDOWS\Explorer.EXE
    C:\windows\system\hpsysdrv.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\AGRSMMSG.exe
    C:\HP\KBD\KBD.EXE
    C:\PROGRA~1\Maxtor\OneTouch\Utils\OneTouch.exe
    C:\WINDOWS\MXOALDR.EXE
    C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
    C:\Program Files\Portrait Displays\Pivot Software\wpctrl.exe
    C:\Program Files\Portrait Displays\HP My Display\DTHtml.exe
    C:\Documents and Settings\HP_Owner\Desktop\Corel GuideMenu\GuideMenu.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\Adobe\Photoshop Elements 6.0\apdproxy.exe
    C:\Program Files\Common Files\Portrait Displays\Shared\HookManager.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Pando Networks\Media Booster\PMB.exe
    C:\Program Files\Portrait Displays\Pivot Software\floater.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
    C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Common Files\Portrait Displays\Shared\dtsrvc.exe
    C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    c:\Program Files\Common Files\LightScribe\LSSrvc.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Common Files\Protexis\License Service\PSIService.exe
    C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Documents and Settings\HP_Owner\My Documents\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TY...ion&pf=desktop
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.godaddy.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TY...ion&pf=desktop
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    O1 - Hosts: ÿþ127.0.0.1 localhost
    O1 - Hosts: ::1 localhost
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: HP view - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
    O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
    O3 - Toolbar: RefresherBand Class - {B24BA06E-FB7B-4757-95C2-DC01125F750E} - C:\PROGRA~1\YREFRE~1\YREFRE~1.DLL
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
    O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
    O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
    O4 - HKLM\..\Run: [MaxtorOneTouch] C:\PROGRA~1\Maxtor\OneTouch\Utils\OneTouch.exe
    O4 - HKLM\..\Run: [MXOBG] C:\WINDOWS\MXOALDR.EXE
    O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
    O4 - HKLM\..\Run: [PivotSoftware] "C:\Program Files\Portrait Displays\Pivot Software\wpctrl.exe"
    O4 - HKLM\..\Run: [DT HPW] C:\Program Files\Portrait Displays\HP My Display\DTHtml.exe -startup_folder
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [GuideMenu] C:\Documents and Settings\HP_Owner\Desktop\Corel GuideMenu\GuideMenu.exe -hide
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 6.0\apdproxy.exe"
    O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: MonacoGamma.lnk = C:\Program Files\Monaco Systems\MonacoOPTIX 2.0\MonacoGamma.exe
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
    O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
    O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
    O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
    O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} (Musicnotes Viewer) - http://www.musicnotes.com/download/mnviewer.cab
    O16 - DPF: {200B3EE9-7242-4EFD-B1E4-D97EE825BA53} (VerifyGMN Class) - http://h20270.www2.hp.com/ediags/gmn...taller_gmn.cab
    O16 - DPF: {26BFFB87-5B07-4611-82BB-AF3947013FDD} (DAPCtl Class) - http://www.lexis.com/dl/IEDAP.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1168376314671
    O16 - DPF: {7584C670-2274-4EFB-B00B-D6AABA6D3850} (Microsoft RDP Client Control (redist)) - https://216.64.66.138/Remote/msrdp.cab
    O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://www.nick.com/common/groove/gx/GrooveAX27.cab
    O16 - DPF: {B160422D-0A48-11D4-BD9B-00A0C9B0AB7B} (Download Class) - http://expressit.broderbund.com/plugin/Download.cab
    O16 - DPF: {CE74A05D-ED12-473A-97F8-85FB0E2F479F} (dlControl.UserControl1) - http://stash.nugs.net/dev/dlControl.CAB
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
    O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:\Program Files\Common Files\Portrait Displays\Shared\dtsrvc.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Update Service (gupdate1ca2b4a6cbbf6f4) (gupdate1ca2b4a6cbbf6f4) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: ProtexisLicensing - Unknown owner - C:\Program Files\Common Files\Protexis\License Service\PSIService.exe
    O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
    O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
    O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

    --
    End of file - 11783 bytes
    Desktop: Dell I620. Win 7 Home Premium
    Laptop 1: Toshiba, Win7 home premium
    Laptop 2: Macbook Pro
    Reply With Quote Reply With Quote
  7. January 17th, 2010, 02:44 PM #21
    Broni's Avatar
    Broni
    Broni is offline Friend of Site Staff
    Join Date
    Dec 2007
    Location
    Daly City, CA
    Posts
    22,550
    Your computer is clean

    1. Turn off System Restore:

    - Windows XP:
    1. Click Start.
    2. Right-click the My Computer icon, and then click Properties.
    3. Click the System Restore tab.
    4. Check "Turn off System Restore".
    5. Click Apply.
    6. When turning off System Restore, the existing restore points will be deleted. Click Yes to do this.
    7. Click OK.
    - Windows Vista:
    1. Click Start.
    2. Right-click the Computer icon, and then click Properties.
    3. Click on System Protection under the Tasks column on the left side
    4. Click on Continue on the "User Account Control" window that pops up
    5. Under the System Protection tab, find Available Disks
    6. Uncheck the box for any drive you wish to disable system restore on (in most cases, drive "C:")
    7. When turning off System Restore, the existing restore points will be deleted. Click "Turn System Restore Off" on the popup window to do this.
    8. Click OK

    2. Restart computer.

    3. Turn System Restore on.

    4. Make sure, Windows Updates are current.

    5. If any Trojan was listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

    6. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.

    7. Run defrag at your convenience.

    8. Read How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html

    9. Please, let me know, how is your computer doing.
    My Home Page
    Reply With Quote Reply With Quote
  8. January 17th, 2010, 02:50 PM #22
    Chuckers
    Chuckers is offline Virtual Resident
    Join Date
    Apr 2000
    Location
    Harleysville, Pa. USA
    Posts
    605
    Thank you very much Broni. Now I have alot of programs to uninstall and Microsoft updates to do. Wanted to have a clean machine before I started that.

    Thank you.
    Desktop: Dell I620. Win 7 Home Premium
    Laptop 1: Toshiba, Win7 home premium
    Laptop 2: Macbook Pro
    Reply With Quote Reply With Quote
  9. January 17th, 2010, 02:52 PM #23
    Broni's Avatar
    Broni
    Broni is offline Friend of Site Staff
    Join Date
    Dec 2007
    Location
    Daly City, CA
    Posts
    22,550
    Very well
    Happy cleaning and updating
    My Home Page
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules