Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Help! I have a fake antivirus called Vista Antivirus 2010

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Help! I have a fake antivirus called Vista Antivirus 2010

Unread postby dcoinp » March 4th, 2010, 11:23 am

So I was running Malwarebyte, spyzooka, and OTL during the night on my Vista. Here are two log reports that came up. The first one is OTL, and the second was called Extras.txt

OTL logfile created on: 3/4/2010 2:20:19 AM - Run 1
OTL by OldTimer - Version 3.1.33.0 Folder = C:\Users\Daniel Petrow\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18882)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

5.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 52.00% Memory free
10.00 Gb Paging File | 8.00 Gb Available in Paging File | 77.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 687.57 Gb Total Space | 488.32 Gb Free Space | 71.02% Space Free | Partition Type: NTFS
Drive D: | 11.07 Gb Total Space | 1.46 Gb Free Space | 13.22% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 1.94 Gb Total Space | 1.94 Gb Free Space | 100.00% Space Free | Partition Type: FAT32
Drive K: | 465.65 Gb Total Space | 92.38 Gb Free Space | 19.84% Space Free | Partition Type: FAT32

Computer Name: DANIELPETROW-PC
Current User Name: Daniel Petrow
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/03/04 02:19:55 | 000,552,960 | ---- | M] (OldTimer Tools) -- C:\Users\Daniel Petrow\Desktop\OTL.exe
PRC - [2010/02/15 18:06:56 | 010,358,056 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\iTunes\iTunes.exe
PRC - [2010/01/26 18:58:38 | 000,256,280 | R--- | M] (Adobe Systems, Inc.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil10e.exe
PRC - [2010/01/07 16:07:10 | 001,394,000 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\mba\mbam.exe
PRC - [2009/10/29 11:28:16 | 000,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgcsrvx.exe
PRC - [2009/10/29 11:28:10 | 000,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgemc.exe
PRC - [2009/10/29 11:28:05 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
PRC - [2009/08/08 19:13:46 | 000,786,424 | ---- | M] (BluePenguin Software Inc.) -- C:\Program Files (x86)\SpyZooka\spyzooka.exe
PRC - [2009/04/11 00:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWOW64\conime.exe
PRC - [2009/04/07 15:34:40 | 000,642,856 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
PRC - [2009/03/06 12:59:12 | 000,020,376 | ---- | M] (WebEx Communications, Inc.) -- C:\WINDOWS\SysWOW64\atashost.exe
PRC - [2008/11/03 17:21:18 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/04/24 13:26:18 | 000,202,560 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Comcast\Desktop Doctor\bin\sprtsvc.exe
PRC - [2007/05/28 10:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
PRC - [2007/04/13 10:20:22 | 000,097,432 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe


========== Modules (SafeList) ==========

MOD - [2010/03/04 02:19:55 | 000,552,960 | ---- | M] (OldTimer Tools) -- C:\Users\Daniel Petrow\Desktop\OTL.exe
MOD - [2009/05/13 13:02:44 | 000,155,384 | ---- | M] () -- C:\WINDOWS\SysWOW64\guard32.dll
MOD - [2009/04/11 00:28:18 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWOW64\comdlg32.dll
MOD - [2006/11/02 03:46:04 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWOW64\fltLib.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2009/09/24 19:26:26 | 001,142,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FntCache.dll -- (FontCache)
SRV:64bit: - [2009/05/13 13:02:42 | 001,043,192 | ---- | M] () [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:64bit: - [2009/05/12 22:38:20 | 001,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2008/01/20 20:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2007/10/18 09:37:22 | 000,412,672 | ---- | M] (Conexant Systems, Inc.) [Auto | Running] -- C:\Windows\SysNative\DRIVERS\xaudio64.exe -- (XAudioService)
SRV - [2009/10/29 11:28:10 | 000,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2009/10/29 11:28:05 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2009/05/12 22:36:38 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/04/07 15:34:40 | 000,642,856 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe -- (nmservice)
SRV - [2009/03/29 22:39:54 | 000,089,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2009/03/06 12:59:12 | 000,020,376 | ---- | M] (WebEx Communications, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\atashost.exe -- (atashost)
SRV - [2008/11/03 17:21:18 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2008/04/24 13:26:18 | 000,202,560 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\Comcast\Desktop Doctor\bin\sprtsvc.exe -- (sprtsvc_ddoctorv2) SupportSoft Sprocket Service (ddoctorv2)
SRV - [2007/05/28 10:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2007/04/13 10:20:22 | 000,097,432 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2006/11/02 07:34:14 | 000,000,000 | ---D | M] [Unknown | Stopped] -- C:\WINDOWS\SysWOW64\Msdtc -- (MSDTC)
SRV - [2006/11/02 00:35:15 | 000,060,994 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2006/11/02 00:35:15 | 000,055,846 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\SysWOW64\wbem\vss.mof -- (VSS)
SRV - [2006/10/26 12:40:34 | 000,335,872 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe -- (MDM)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2009/11/10 09:23:34 | 000,470,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\avgtdia.sys -- (AvgTdiA)
DRV:64bit: - [2009/10/29 11:28:38 | 000,422,920 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\avgldx64.sys -- (AvgLdx64)
DRV:64bit: - [2009/10/29 11:28:38 | 000,034,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\Drivers\avgmfx64.sys -- (AvgMfx64)
DRV:64bit: - [2009/09/30 18:51:42 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb)
DRV:64bit: - [2009/08/28 19:42:52 | 000,049,152 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2009/05/13 12:48:01 | 000,871,408 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\sptd.sys -- (sptd)
DRV:64bit: - [2009/05/13 00:34:36 | 000,086,584 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs)
DRV:64bit: - [2009/04/10 23:39:34 | 000,098,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaudio.sys -- (usbaudio) USB Audio Driver (WDM)
DRV:64bit: - [2009/04/07 15:33:08 | 000,033,072 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\purendis.sys -- (purendis)
DRV:64bit: - [2009/04/07 15:33:06 | 000,031,536 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\pnarp.sys -- (pnarp)
DRV:64bit: - [2009/03/19 15:34:18 | 000,029,544 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2008/11/03 17:10:08 | 000,406,040 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iastor.sys -- (iaStor)
DRV:64bit: - [2008/05/08 04:27:00 | 000,411,136 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\CAXHWBS2.sys -- (CAXHWBS2)
DRV:64bit: - [2008/05/08 04:25:12 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\CAX_CNXT.sys -- (winachsf)
DRV:64bit: - [2008/05/08 04:24:08 | 001,487,872 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\CAX_DP.sys -- (HSF_DP)
DRV:64bit: - [2008/04/16 13:49:34 | 000,028,416 | ---- | M] (Research In Motion Limited) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\RimUsb_AMD64.sys -- (RimUsb)
DRV:64bit: - [2008/02/14 08:56:14 | 000,160,768 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys -- (RTL8169)
DRV:64bit: - [2008/02/06 02:00:00 | 000,054,480 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2007/10/18 09:37:10 | 000,010,240 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\xaudio64.sys -- (XAudio)
DRV:64bit: - [2007/05/09 20:50:48 | 000,050,208 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64)
DRV:64bit: - [2007/05/09 20:46:48 | 001,127,328 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\LV302V64.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)
DRV:64bit: - [2006/06/19 08:27:24 | 000,017,024 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\mdmxsdk.sys -- (mdmxsdk)
DRV - [2009/05/13 00:34:36 | 000,086,584 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\SysWOW64\drivers\adfs.sys -- (adfs)
DRV - [2006/09/18 15:36:40 | 000,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysWOW64\wbem\tcpip.mof -- (Tcpip)
DRV - [2006/09/18 15:35:23 | 000,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
DRV - [2006/06/19 08:26:50 | 000,094,208 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS\SysWOW64\mdmxsdk.dll -- (mdmxsdk)
DRV - [2003/07/30 01:02:00 | 000,047,872 | ---- | M] (Sonic Solutions) [Kernel | Boot | Stopped] -- C:\Windows\system32\DRIVERS\PxHelp64.sys -- (PxHelp64)
DRV - [2003/01/10 19:28:02 | 000,065,280 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS\SysWOW64\drivers\TPkd.sys -- (TPkd)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... on&pf=cndt
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... on&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... on&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... on&pf=cndt
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://login.yahoo.com/config/login_verify2?&.src=ym
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = :0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "yahoomail.com"
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.716
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:7

FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files (x86)\AVG\AVG9\Firefox [2009/12/12 09:33:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/02/23 08:54:07 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/02/23 08:54:07 | 000,000,000 | ---D | M]

[2009/05/16 11:57:30 | 000,000,000 | ---D | M] -- C:\Users\Daniel Petrow\AppData\Roaming\Mozilla\Extensions
[2009/05/16 11:43:50 | 000,000,000 | ---D | M] -- C:\Users\Daniel Petrow\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org
[2010/03/03 23:52:49 | 000,000,000 | ---D | M] -- C:\Users\Daniel Petrow\AppData\Roaming\Mozilla\Firefox\Profiles\fszfyipm.default\extensions
[2009/06/24 07:48:22 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Daniel Petrow\AppData\Roaming\Mozilla\Firefox\Profiles\fszfyipm.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/10/06 16:37:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions

O1 HOSTS File: ([2006/09/18 15:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG8\avgssie.dll File not found
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_01\bin\ssv.dll (Sun Microsystems, Inc.)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe ()
O4:64bit: - HKLM..\Run: [HP Health Check Scheduler] File not found
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [NvMediaCenter] C:\Windows\SysNative\NvMcTray.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Windows\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [WrtMon.exe] C:\Windows\SysNative\spool\drivers\x64\3\WrtMon.exe ()
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files (x86)\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [ddoctorv2] C:\Program Files (x86)\Comcast\Desktop Doctor\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard)
O4 - HKLM..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files (x86)\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [KBD] C:\hp\KBD\KbdStub.exe ()
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files (x86)\mba\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [nmapp] C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [nmctxth] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [OpwareSE4] C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files (x86)\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [UpdateManager] C:\Program Files (x86)\Common Files\Sonic\Update Manager\sgtray.exe (Sonic Solutions)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [Google Update] C:\Users\Daniel Petrow\AppData\Local\Google\Update\GoogleUpdate.exe File not found
O4 - HKCU..\Run: [Sonic RecordNow!] File not found
O4 - HKCU..\Run: [SpyZooka] C:\Program Files (x86)\SpyZooka\SpyZookaLdr.exe (BluePenguin Software Inc.)
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_01\bin\ssv.dll (Sun Microsystems, Inc.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (Reg Error: Value error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.87.72.134 68.87.77.134
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll (Cisco Systems, Inc.)
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG8\avgpp.dll File not found
O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - AppInit_DLLs: (avgrssta.dll) - C:\Windows\SysNative\avgrssta.dll (AVG Technologies CZ, s.r.o.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - File not found
O24 - Desktop WallPaper: K:\Daniel's Computer\My Pictures\Unsorted\Israel TBN\DSC05568.JPG
O24 - Desktop BackupWallPaper: K:\Daniel's Computer\My Pictures\Unsorted\Israel TBN\DSC05568.JPG
O28 - HKLM ShellExecuteHooks: {D468BCE5-D18E-49A4-8EA7-34BD583659D5} - C:\Program Files (x86)\SpyZooka\spyguard.dll (BluePenguin Software Inc.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/01/22 15:47:32 | 000,000,038 | RH-- | M] () - K:\AUTORUN.INF -- [ FAT32 ]
O32 - AutoRun File - [2007/06/06 23:14:28 | 000,000,000 | -H-D | M] - K:\AUTORUN -- [ FAT32 ]
O33 - MountPoints2\{3634122a-4943-11de-9498-00221519129c}\Shell - "" = AutoRun
O33 - MountPoints2\{3634122a-4943-11de-9498-00221519129c}\Shell\AutoRun\command - "" = L:\LaunchU3.exe -- File not found
O33 - MountPoints2\{b92cca44-3fee-11de-ac6c-00221519129c}\Shell - "" = AutoRun
O33 - MountPoints2\{b92cca44-3fee-11de-ac6c-00221519129c}\Shell\AutoRun\command - "" = J:\SETUP.EXE -- File not found
O33 - MountPoints2\{b92cca44-3fee-11de-ac6c-00221519129c}\Shell\configure\command - "" = J:\SETUP.EXE -- File not found
O33 - MountPoints2\{b92cca44-3fee-11de-ac6c-00221519129c}\Shell\install\command - "" = J:\SETUP.EXE -- File not found
O33 - MountPoints2\{edd97622-0736-11df-9d37-00221519129c}\Shell\AutoRun\command - "" = G:\SamsungSoftware\APPInst.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - comfile [open] -- "%1" %* File not found
64bit: O35 - exefile [open] -- "%1" %* File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 7 Days ==========

[2010/03/04 02:19:47 | 000,552,960 | ---- | C] (OldTimer Tools) -- C:\Users\Daniel Petrow\Desktop\OTL.exe
[2010/03/04 01:54:09 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2010/03/03 23:42:48 | 000,000,000 | ---D | C] -- C:\Users\Daniel Petrow\AppData\Local\Mozilla
[2010/03/01 16:11:45 | 000,000,000 | ---D | C] -- C:\Users\Daniel Petrow\AppData\Local\Apple Computer
[2010/03/01 10:38:08 | 000,000,000 | ---D | C] -- C:\Users\Daniel Petrow\AppData\Roaming\Malwarebytes
[2010/03/01 10:29:13 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/03/01 10:22:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/03/01 10:19:48 | 000,022,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/03/01 10:18:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\mba
[2010/03/01 10:17:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpyZooka
[2010/03/01 10:00:42 | 000,000,000 | ---D | C] -- C:\Users\Daniel Petrow\AppData\Local\Scansoft
[2010/03/01 10:00:17 | 000,000,000 | ---D | C] -- C:\Users\Daniel Petrow\AppData\Local\VirtualStore
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2010/03/04 02:20:08 | 003,670,016 | -HS- | M] () -- C:\Users\Daniel Petrow\ntuser.dat
[2010/03/04 02:19:55 | 000,552,960 | ---- | M] (OldTimer Tools) -- C:\Users\Daniel Petrow\Desktop\OTL.exe
[2010/03/04 02:12:58 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/03/04 02:12:58 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/03/04 01:52:00 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-667848208-1197086363-1777080607-1000UA.job
[2010/03/04 01:52:00 | 000,000,888 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-667848208-1197086363-1777080607-1000Core.job
[2010/03/04 00:19:03 | 000,690,960 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/03/04 00:19:03 | 000,594,698 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/03/04 00:19:03 | 000,100,766 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/03/04 00:13:00 | 000,000,732 | ---- | M] () -- C:\Users\Daniel Petrow\AppData\Local\d3d9caps64.dat
[2010/03/04 00:12:58 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/03/04 00:12:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/03/04 00:07:38 | 000,524,288 | -HS- | M] () -- C:\Users\Daniel Petrow\ntuser.dat{7b234b1b-158b-11df-b51c-00221519129c}.TMContainer00000000000000000001.regtrans-ms
[2010/03/04 00:07:38 | 000,065,536 | -HS- | M] () -- C:\Users\Daniel Petrow\ntuser.dat{7b234b1b-158b-11df-b51c-00221519129c}.TM.blf
[2010/03/04 00:07:35 | 003,447,650 | -H-- | M] () -- C:\Users\Daniel Petrow\AppData\Local\IconCache.db
[2010/03/04 00:07:13 | 004,118,225 | ---- | M] () -- C:\Users\Daniel Petrow\Desktop\ComboFix.exe
[2010/03/03 23:46:53 | 056,626,860 | ---- | M] () -- C:\Windows\SysNative\drivers\Avg\incavi.avm
[2010/03/03 23:36:41 | 000,009,832 | -HS- | M] () -- C:\Users\Daniel Petrow\AppData\Local\471Ki5XR
[2010/03/02 22:44:33 | 000,000,680 | ---- | M] () -- C:\Users\Daniel Petrow\AppData\Local\d3d9caps.dat
[2010/03/02 22:44:11 | 000,003,584 | ---- | M] () -- C:\Users\Daniel Petrow\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/03/01 10:36:48 | 000,000,729 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/03/01 10:17:19 | 000,000,865 | ---- | M] () -- C:\Users\Public\Desktop\SpyZooka 2.5.lnk
[2010/03/01 10:00:28 | 000,111,872 | ---- | M] () -- C:\Users\Daniel Petrow\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/02/28 12:55:11 | 000,184,832 | -HS- | M] () -- C:\Users\Daniel Petrow\AppData\Local\MSASCui.exe
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/03/04 00:06:50 | 004,118,225 | ---- | C] () -- C:\Users\Daniel Petrow\Desktop\ComboFix.exe
[2010/03/02 22:44:33 | 000,000,680 | ---- | C] () -- C:\Users\Daniel Petrow\AppData\Local\d3d9caps.dat
[2010/03/02 22:43:37 | 000,003,584 | ---- | C] () -- C:\Users\Daniel Petrow\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/03/01 10:36:48 | 000,000,729 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/03/01 10:17:19 | 000,000,865 | ---- | C] () -- C:\Users\Public\Desktop\SpyZooka 2.5.lnk
[2010/03/01 09:47:46 | 000,000,732 | ---- | C] () -- C:\Users\Daniel Petrow\AppData\Local\d3d9caps64.dat
[2010/02/28 12:55:11 | 000,184,832 | -HS- | C] () -- C:\Users\Daniel Petrow\AppData\Local\MSASCui.exe
[2010/02/28 12:55:11 | 000,009,832 | -HS- | C] () -- C:\Users\Daniel Petrow\AppData\Local\471Ki5XR
[2009/12/10 21:55:58 | 008,892,928 | ---- | C] () -- C:\ProgramData\atscie.msi
[2009/10/06 09:20:37 | 000,000,010 | ---- | C] () -- C:\Windows\winfile.ini
[2009/10/05 18:40:12 | 000,000,209 | ---- | C] () -- C:\Users\Daniel Petrow\AppData\Roaming\QV Prefs
[2009/08/31 22:41:51 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2009/08/31 18:49:22 | 000,172,032 | ---- | C] () -- C:\Windows\SysWow64\viscomgifenc.dll
[2009/08/31 18:49:22 | 000,159,744 | ---- | C] () -- C:\Windows\SysWow64\viscomtran.dll
[2009/08/31 18:49:21 | 006,963,712 | ---- | C] () -- C:\Windows\SysWow64\videotrans.dll
[2009/08/31 18:49:21 | 000,452,608 | ---- | C] () -- C:\Windows\SysWow64\videoformat.dll
[2009/08/31 18:49:21 | 000,323,584 | ---- | C] () -- C:\Windows\SysWow64\FoxImager.dll
[2009/08/31 18:49:21 | 000,262,144 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll
[2009/08/31 18:49:21 | 000,154,624 | ---- | C] () -- C:\Windows\SysWow64\imgscaler.dll
[2009/08/31 18:49:21 | 000,028,160 | ---- | C] () -- C:\Windows\SysWow64\img_utils.dll
[2009/08/31 18:49:21 | 000,019,456 | ---- | C] () -- C:\Windows\SysWow64\videocore.dll
[2009/08/18 13:24:27 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2009/08/18 13:23:37 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/07/14 15:56:33 | 000,011,776 | ---- | C] () -- C:\Windows\SysWow64\pmsbfn32.dll
[2009/07/14 15:54:49 | 000,000,424 | ---- | C] () -- C:\Windows\MAXLINK.INI
[2009/05/22 09:05:49 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/05/13 13:02:44 | 000,155,384 | ---- | C] () -- C:\Windows\SysWow64\guard32.dll
[2008/10/07 08:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll
[2008/10/07 08:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll
[2008/10/07 08:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll
[2008/05/16 06:32:44 | 000,327,680 | ---- | C] () -- C:\Windows\SysWow64\pythoncom25.dll
[2008/05/16 06:32:44 | 000,102,400 | ---- | C] () -- C:\Windows\SysWow64\pywintypes25.dll
[2008/01/20 20:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2003/09/11 20:11:22 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\px.ini

========== Files - Unicode (All) ==========
[2010/02/22 21:29:06 | 000,000,000 | ---D | M](C:\Users\Daniel Petrow\Desktop\????? ??????? ??????????) -- C:\Users\Daniel Petrow\Desktop\Школа Лидеров Лебенскеле
[2010/02/22 21:28:10 | 000,000,000 | ---D | C](C:\Users\Daniel Petrow\Desktop\????? ??????? ??????????) -- C:\Users\Daniel Petrow\Desktop\Школа Лидеров Лебенскеле
[2010/02/18 22:00:54 | 000,643,072 | ---- | M] ()(C:\Users\Daniel Petrow\Desktop\??? ??? ???????.doc) -- C:\Users\Daniel Petrow\Desktop\КТО МОЙ БЛИЖНИЙ.doc
[2010/02/18 22:00:54 | 000,643,072 | ---- | C] ()(C:\Users\Daniel Petrow\Desktop\??? ??? ???????.doc) -- C:\Users\Daniel Petrow\Desktop\КТО МОЙ БЛИЖНИЙ.doc
[2010/01/28 22:55:39 | 000,375,053 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\???? 2010.pdf) -- C:\Users\Daniel Petrow\Documents\март 2010.pdf
[2010/01/28 22:55:29 | 000,086,016 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\???? 2010.doc) -- C:\Users\Daniel Petrow\Documents\март 2010.doc
[2010/01/28 22:50:50 | 000,375,053 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\???? 2010.pdf) -- C:\Users\Daniel Petrow\Documents\март 2010.pdf
[2010/01/25 15:30:07 | 000,175,229 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\????? ot loru2010.docx) -- C:\Users\Daniel Petrow\Documents\КНИГА ot loru2010.docx
[2010/01/24 00:25:24 | 000,086,016 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\???? 2010.doc) -- C:\Users\Daniel Petrow\Documents\март 2010.doc
[2010/01/12 13:19:41 | 000,175,229 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\????? ot loru2010.docx) -- C:\Users\Daniel Petrow\Documents\КНИГА ot loru2010.docx
[2009/08/28 17:25:57 | 000,011,545 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\??????? ??????.docx) -- C:\Users\Daniel Petrow\Documents\Видение церкви.docx
[2009/08/28 17:25:56 | 000,011,545 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\??????? ??????.docx) -- C:\Users\Daniel Petrow\Documents\Видение церкви.docx
[2009/08/25 15:10:24 | 000,030,720 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\??????? ???????.doc) -- C:\Users\Daniel Petrow\Documents\Дорогие ходатаи.doc
[2009/08/25 15:10:23 | 000,030,720 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\??????? ???????.doc) -- C:\Users\Daniel Petrow\Documents\Дорогие ходатаи.doc
[2009/08/25 15:09:35 | 000,030,720 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\???????2.doc) -- C:\Users\Daniel Petrow\Documents\Вопросы2.doc
[2009/08/25 15:05:11 | 000,030,720 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\???????2.doc) -- C:\Users\Daniel Petrow\Documents\Вопросы2.doc
[2009/08/25 15:01:50 | 000,012,136 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\???????2.docx) -- C:\Users\Daniel Petrow\Documents\Вопросы2.docx
[2009/08/25 13:17:38 | 000,012,136 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\???????2.docx) -- C:\Users\Daniel Petrow\Documents\Вопросы2.docx
[2009/08/25 11:45:16 | 000,030,720 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\???????.dot) -- C:\Users\Daniel Petrow\Documents\Вопросы.dot
[2009/08/25 10:48:25 | 000,030,720 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\???????.dot) -- C:\Users\Daniel Petrow\Documents\Вопросы.dot
[2009/08/17 13:03:27 | 000,048,640 | ---- | M] ()(C:\Users\Daniel Petrow\Desktop\?? ?????? ???????? ?????-?????? 2009-2.doc) -- C:\Users\Daniel Petrow\Desktop\Об итогах служения Пермь-Ижевск 2009-2.doc
[2009/08/10 21:55:21 | 000,048,640 | ---- | C] ()(C:\Users\Daniel Petrow\Desktop\?? ?????? ???????? ?????-?????? 2009-2.doc) -- C:\Users\Daniel Petrow\Desktop\Об итогах служения Пермь-Ижевск 2009-2.doc
[2009/08/06 17:07:27 | 000,016,893 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\????????.docx) -- C:\Users\Daniel Petrow\Documents\Служение.docx
[2009/08/06 13:01:21 | 000,016,893 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\????????.docx) -- C:\Users\Daniel Petrow\Documents\Служение.docx
[2009/08/05 15:58:31 | 000,012,150 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\????????.docx) -- C:\Users\Daniel Petrow\Documents\Контракт.docx
[2009/08/05 15:58:30 | 000,012,150 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\????????.docx) -- C:\Users\Daniel Petrow\Documents\Контракт.docx
[2009/05/22 11:38:54 | 000,015,953 | ---- | M] ()(C:\Users\Daniel Petrow\Documents\???????? ? ???.docx) -- C:\Users\Daniel Petrow\Documents\МОЛИТЕСЬ О НАС.docx
[2009/05/21 17:27:29 | 000,015,953 | ---- | C] ()(C:\Users\Daniel Petrow\Documents\???????? ? ???.docx) -- C:\Users\Daniel Petrow\Documents\МОЛИТЕСЬ О НАС.docx
< End of report >


Here is the extras one too:




OTL Extras logfile created on: 3/4/2010 2:20:19 AM - Run 1
OTL by OldTimer - Version 3.1.33.0 Folder = C:\Users\Daniel Petrow\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18882)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

5.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 52.00% Memory free
10.00 Gb Paging File | 8.00 Gb Available in Paging File | 77.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 687.57 Gb Total Space | 488.32 Gb Free Space | 71.02% Space Free | Partition Type: NTFS
Drive D: | 11.07 Gb Total Space | 1.46 Gb Free Space | 13.22% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
Drive I: | 1.94 Gb Total Space | 1.94 Gb Free Space | 100.00% Space Free | Partition Type: FAT32
Drive K: | 465.65 Gb Total Space | 92.38 Gb Free Space | 19.84% Space Free | Partition Type: FAT32

Computer Name: DANIELPETROW-PC
Current User Name: Daniel Petrow
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 0
"InternetSettingsDisableNotify" = 0
"AutoUpdateDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]
"VistaSp2" = 29 DA 95 E5 B8 A9 CA 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-667848208-1197086363-1777080607-1000]
"EnableNotifications" = 0
"EnableNotificationsRef" = 2

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0C22D469-84A2-4DEC-84D9-76F6E7000781}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1078E7FD-569C-488A-9592-CCBF046313FC}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{13F3E20E-3900-44F2-AB37-80C403519D46}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{140A630D-6647-43F5-8D6E-3178F8CA4726}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{1553AF50-1C0E-46A2-B03E-E1F64AD4C0DD}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{23E378BD-1A2E-4D5E-ABF3-2CC2A192A856}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2525EEB1-E079-44B7-81EE-04F57128CF8C}" = lport=138 | protocol=17 | dir=in | app=system |
"{4BDA3C93-ABA3-4072-8D37-7B51AAFF25BC}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{63F3CE23-AE8E-40BD-9A65-E5BEEC63CD01}" = lport=445 | protocol=6 | dir=in | app=system |
"{6B1B3E20-9C55-429A-95B3-FD27EE8B5EF9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{75906D18-AA62-4F73-83FB-0C3A1C36505A}" = lport=2869 | protocol=6 | dir=in | app=system |
"{85DC55F5-7D58-4DB2-AF52-59EEA4BAB538}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{90BCED9A-8B66-4332-B1FB-084561EF8AEB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{98FE72D3-0494-43AC-AD76-8513EBB16967}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A7AAF673-F1A4-4A74-8985-4565F13EA9C9}" = lport=137 | protocol=17 | dir=in | app=system |
"{AD0B4E54-B3BF-4314-B040-399C5BCFDF6D}" = rport=139 | protocol=6 | dir=out | app=system |
"{BCC008F5-4FD8-4A67-BE53-4D26C1F008EA}" = lport=10243 | protocol=6 | dir=in | app=system |
"{C08F801A-C610-4A0A-9890-70FCCB0D09BA}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{C1DEE3E2-1325-47A5-9EA3-9E9882CE5916}" = rport=138 | protocol=17 | dir=out | app=system |
"{C756481B-6B2C-4954-A23A-9927290E08D7}" = lport=139 | protocol=6 | dir=in | app=system |
"{C8098986-2B54-4142-BCFE-8C5E46348311}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CD4764C0-E458-4917-9ED5-2704E6DD1F17}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{CE4A8C6F-3B13-4862-9745-91564C2571AE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{D1207716-348F-4BAA-88DD-D3AD88A27B58}" = rport=10243 | protocol=6 | dir=out | app=system |
"{E642BF79-7A02-4E51-9FB9-284998DA7108}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E6CDEF40-9EDF-4ABB-89EE-7FB35F410E3D}" = rport=445 | protocol=6 | dir=out | app=system |
"{E7A23BB5-1309-4093-AD00-9E791A16C8D5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{FE799BF9-FD43-4DE6-9854-60DFA8D02CDD}" = rport=137 | protocol=17 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{036FB345-EF97-4D86-828D-E7993C7610B5}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{0D72632A-412D-4473-9A20-42CFD2978795}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0EDABEE9-1CD0-4046-932E-AEB7EADC790E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{11DC9812-AF7D-4B71-860B-4E887625E39B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1AAE7490-69B4-40FA-8261-C27DB04B4EAD}" = protocol=17 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
"{1AAEC6A2-8B0C-40A4-9EFF-A423BF6FC73F}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{23D5A00A-BC10-4268-B1FB-70C1D4547632}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{29F488F9-91C6-403B-BD91-0BF992D24D11}" = dir=in | app=c:\program files (x86)\avg\avg8\avgnsa.exe |
"{356F73E0-EC26-4378-8182-3D86B5FA1023}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{3F2239E1-4D43-4F5A-ADFC-403ACF98B8CA}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{4053C08B-7B08-4651-866A-47DE7A63C048}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{43AE6206-C2CB-48E4-B3BA-EC9FD5EA45F8}" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{51DE5521-DE9A-416F-A407-01BDC510E8ED}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{575A4087-1884-4206-B0CE-DFF37150B3F2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{612DFA03-ED57-49BC-9065-68AB796EFA7B}" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{6C4752C2-49E8-4A76-853A-E0034B87E4A7}" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{7A05890C-F845-4D02-B70A-E57C7F953C6B}" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{83CA7666-AD25-46CB-A5F9-8187639E1855}" = protocol=6 | dir=out | app=system |
"{890FA328-31B5-4706-B43C-6B8D1A7B5E2B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{94A253C1-93DF-4E07-A31C-AD87F2331581}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{9D88F55A-2F43-48AB-90BD-6F5D11B07CCE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{9D8EC0E9-F390-49D2-A195-8E0669EFC731}" = dir=in | app=c:\program files (x86)\cyberlink\powerdirector\pdr.exe |
"{A19CF6E2-5849-4BAE-A944-3D978895425D}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A69A6F88-6590-4214-91D3-CCFE9C917B50}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AF3FD079-D3FD-4E73-9A4F-11D86D9479F1}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B89FAB1F-E3CB-4BD9-A2C2-D615B5CE0ECA}" = protocol=6 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
"{BEE36398-2BF1-4347-AB11-B8CE857B4272}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{BF1F5C41-6EEA-4F3F-A19C-09B2B4F1A71A}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C090E29C-4B63-4301-9523-3583B7821603}" = protocol=6 | dir=in | app=c:\program files (x86)\pplive\pplive.exe |
"{C5883C1F-50B5-4226-84C1-323F1A7C3712}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{C9CFDF7E-3671-4D4C-8939-8EB023B686F4}" = dir=in | app=c:\program files (x86)\avg\avg8\avgemc.exe |
"{CAF867A4-DA61-457E-9C8F-0E19EE5E0B81}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CE44757B-7EBE-4039-B015-BDD724BF3DD0}" = protocol=17 | dir=in | app=c:\program files (x86)\pplive\pplive.exe |
"{D2E2CC26-F185-4F6E-A130-09B771203E3B}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D4325507-AD74-4EF2-B00E-B7F0B3DADBD2}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D476056A-A558-49CD-ACB7-687290971193}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{E264CB96-1296-492F-AEB0-45764BE93981}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{E3585D97-91F7-4F0D-A85E-66FDF3AA89A4}" = dir=in | app=c:\program files (x86)\avg\avg8\avgupd.exe |
"{E5745562-7BC1-4067-AFF4-24579172FC4C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{F2C87AF1-3847-4FF5-B048-DA8DDDB49CEE}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{F3B5FABB-2B34-4DDB-92CB-7171CF80E16B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F8FD25C3-C4FA-400B-8879-E7BEAF3891FD}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"TCP Query User{19F9A52F-C0FD-4440-9D01-2E917472E5E5}C:\windows\syswow64\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"TCP Query User{3BCDDE55-C34A-492A-809B-938C53A15A5E}C:\program files (x86)\tvants\tvants.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tvants\tvants.exe |
"TCP Query User{ADB5C636-870F-4715-A067-6FBD6B2481A9}C:\program files (x86)\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
"TCP Query User{F85C3693-171D-4470-B875-70E9DCC3D0B7}C:\users\daniel petrow\desktop\[ pc games ] - age of empires ii 2(full)\empires2.exe" = protocol=6 | dir=in | app=c:\users\daniel petrow\desktop\[ pc games ] - age of empires ii 2(full)\empires2.exe |
"UDP Query User{03442D31-7F5F-4D09-A564-AC8BB38C4420}C:\program files (x86)\tvants\tvants.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tvants\tvants.exe |
"UDP Query User{23A5A35D-05BB-4F68-8E53-43B95F784452}C:\windows\syswow64\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"UDP Query User{4951EA82-C359-4CF6-9672-2477D9F0253C}C:\users\daniel petrow\desktop\[ pc games ] - age of empires ii 2(full)\empires2.exe" = protocol=17 | dir=in | app=c:\users\daniel petrow\desktop\[ pc games ] - age of empires ii 2(full)\empires2.exe |
"UDP Query User{533A2B61-5E3D-4F5A-9C16-A3492FAA57DB}C:\program files (x86)\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX310_series" = Canon MX310 series
"{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64
"{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64
"{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{84BC87D4-0480-4E10-B15D-1E7886D55180}" = iTunes
"{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64
"{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4
"{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4
"{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4
"{9EFC40E3-5F31-4F75-8445-286273F74D8E}" = Apple Mobile Device Support
"{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64
"{A7D48BF6-8ED8-4B91-8267-34CDE7807D05}_is1" = HP Demo
"{B37A99DD-88E2-4ED0-80B4-1E054AB354BF}" = Adobe InDesign CS4 Icon Handler x64
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit)
"{DAE239CE-EB9D-4EB3-B0D4-528D6BAA48FD}" = Bonjour
"{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4
"CanonMyPrinter" = Canon My Printer
"CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1" = Soft Data Fax Modem with SmartCP
"COMODO Internet Security" = COMODO Internet Security
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"NVIDIA Drivers" = NVIDIA Drivers

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{004C5DA2-2051-4D25-94BA-51CF810C91EB}" = LightScribe System Software 1.12.37.1
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{021C4C4F-C93C-4425-BFFD-C2D16776BFAE}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{09DA4F91-2A09-4232-AB8C-6BC740096DE3}" = Sonic Update Manager
"{0A2C5854-557E-48C8-835A-3B9F074BDCAA}" = Python 2.5
"{0B561CF4-0C7D-4745-AF53-161E24E44F87}" = Adobe CS4 Italian Speech Analysis Models
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{0FEB0424-2001-4735-8B56-67FA65955FAD}" = Adobe Setup
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
"{14F70205-1940-4000-88C7-BE799A6B2CAD}" = Adobe Soundbooth CS4
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{15BF7AAF-846C-4A6D-80E1-5D1FC7FB461B}" = Adobe SGM CS4
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1C4551A6-4743-4093-91E4-1477CD655043}" = NVIDIA PhysX
"{1CB58957-89F2-438D-AF0B-900FE5B6EB0E}" = QuickVoice
"{1DCA3EAA-6EB5-4563-A970-EA14D75037BA}" = Adobe InDesign CS4
"{1E04CB54-AF4E-4AC3-B4B7-C0A160BE57F1}" = Adobe InDesign CS4 Icon Handler
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite Deluxe
"{1FD653A8-9CFA-4392-B89C-CCDB114DE442}" = Adobe CS4 Spanish Speech Analysis Models
"{2168245A-B5AD-40D8-A641-48E3E070B5B6}" = Adobe Flash CS4 STI-en
"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check for Health Check
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}" = Adobe CS4 American English Speech Analysis Models
"{2ADE2157-7A5E-122C-B51D-EB8A01B15943}" = DeepBurner v1.9.0.228
"{2BAF2B96-7560-48B4-87D4-10178DDBE217}" = Adobe InDesign CS4 Application Feature Set Files (Roman)
"{2EB0A659-A9CD-4F35-910E-2F832A6812AE}" = Adobe Media Encoder CS4 Exporter
"{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{305D4B08-5807-4475-B1C8-D54685534864}" = LightScribeTemplateLabeler
"{30C8AA56-4088-426F-91D1-0EDFD3A25678}" = Adobe Dreamweaver CS4
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3C8E6416-90F8-445E-B2BF-8D4809F41C6E}" = Adobe Setup
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3F7E8BA9-58BE-4749-9EC1-540E2A3F11A8}" = Adobe Setup
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{428FDF9F-E010-4C4C-A8BB-156960AFCA1C}" = Adobe Fireworks CS4
"{43509E18-076E-40FE-AF38-CA5ED400A5A9}" = Pixel Bender Toolkit
"{44E240EC-2224-4078-A88B-2CEE0D3016EF}" = Adobe After Effects CS4 Presets
"{45EC816C-0771-4C14-AE6D-72D1B578F4C8}" = Adobe After Effects CS4
"{48E9A4FB-17C6-4B14-BC9D-D83AF2A4059A}" = Adobe CS4 Korean Speech Analysis Models
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A52555C-032A-4083-BDD9-6A85ABFB39A8}" = Adobe SING CS4
"{4A8EBA80-3AC4-48CB-8056-CCBE0999263F}" = Adobe Setup
"{4F213D2A-B942-4611-AEE5-49F9D42D0A2F}" = Adobe CS4 International English Speech Analysis Models
"{4F94119D-1B71-400e-9F04-B4E5CEAE71F8}_is1" = Sothink Movie DVD Maker
"{50457424-3627-4A74-896A-C4E66E8A5ED3}" = Adobe Soundbooth CS4 Codecs
"{517718B9-9B98-4F00-97DE-4ABC2D47866A}" = Adobe Premiere Pro CS4 Third Party Content
"{51A3A8D7-2B2E-4E46-8166-582DDA9F55F5}" = Adobe Media Encoder CS4 Importer
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{55979C41-7D6A-49CC-B591-64AC1BBE2C8B}" = HP Picasso Media Center Add-In
"{57B1BE07-844F-41a4-90CE-55CDCCE08D0D}_is1" = SureThing CD Labeler MicroBoards Edition 5
"{5BA1D11C-B981-4CAA-B2B5-B8ADF413EBA5}" = Pure Networks Platform
"{5D28F86A-FBC6-4D2A-A6F0-08E80002A52E}" = Adobe After Effects CS4 Third Party Content
"{5EAD5443-7194-46CC-A055-428E6ABB1BAF}" = Adobe Encore CS4
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6BBBF237-A114-48E6-BBD0-A52BEF9CCFB2}" = Cisco Network Magic
"{6FE4AA77-DF4C-48E9-A3E8-494926D163A4}" = SpyZooka
"{7406DF60-016D-476B-A2C7-55D997592047}" = Adobe OnLocation CS4
"{74525F13-B40E-40BA-B8BD-454B5AE9A866}" = Adobe Setup
"{793D1D88-6141-43DE-BE58-59BCE31B4090}" = Adobe Flash CS4 Extension - Flash Lite STI en
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7CC7BDD5-6F10-4724-96A1-EAC7D9F2831C}" = Adobe InDesign CS4 Common Base Files
"{7FCC4EDC-6EE2-4309-ABD7-85F2667A7B90}" = WebEx Support Manager for Internet Explorer
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{87532CAB-7932-4F84-8937-823337622807}" = Adobe Illustrator CS4
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00B2-0409-0000-0000000FF1CE}" = Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{9541FED0-327F-4DF0-8B96-EF57EF622F19}" = Sonic RecordNow!
"{9966A5DB-8BB0-4D89-A701-386ED84E79B8}" = Adobe Creative Suite 4 Master Collection
"{9A7C4EAC-6E38-42E3-85AA-408874A803DE}" = Adobe CS4 German Speech Analysis Models
"{9AACCD0F-2734-4E8C-8C24-2702D4506E93}" = Adobe CS4 French Speech Analysis Models
"{9DBA770F-BF73-4D39-B1DF-6035D95268FC}" = HP Customer Feedback
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1.1
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AC989DD9-AF71-4F93-B4E2-32246C4B8121}" = Adobe Setup
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
"{B095B0A4-50A5-46D7-9988-D038FEB040C0}" = Adobe Encore CS4 Library
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
"{B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7}" = Adobe Premiere Pro CS4 Functional Content
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B2F3DBD9-A9D2-4838-B45D-C917DAB32BC3}" = ScanSoft OmniPage SE 4
"{B35FDD04-48FD-4D3D-B0EB-088C5137CD42}" = Adobe CS4 Japanese Speech Analysis Models
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BCEEDC10-441F-4E4E-8590-0955C4C6B3F6}" = Adobe Setup
"{BD01E97F-2A6A-495E-BE38-22C7B80F3CD7}" = Cheetah DVD Burner
"{BD93253E-9CB3-425B-A13F-12D5DF0E8FDF}" = Adobe Encore CS4 Codecs
"{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}" = Adobe Media Encoder CS4 Additional Exporter
"{C27C82E4-9C53-4D76-9ED3-A01A3D5EE679}" = HP Customer Experience Enhancements
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D2D6B9EB-C6DC-4DAA-B4DE-BB7D9735E7DA}" = Presto! PageManager 7.15.16
"{D499F8DE-3F31-4900-9157-61061613704B}" = Adobe Premiere Pro CS4
"{D87149B3-7A1D-4548-9CBF-032B791E5908}" = Desktop Doctor
"{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}" = Adobe Media Encoder CS4
"{E0810CC2-4B5B-4439-B1D0-452306AF2D64}" = HP Active Support Library
"{EE353798-E875-42E0-B58D-7E6696182EA8}" = Adobe Media Encoder CS4 Dolby
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F600CCF3-9C88-4A22-B0B4-DDA82E997118}" = Adobe After Effects CS4 Template Projects & Footage
"{F6E99614-F042-4459-82B7-8B38B2601356}" = Adobe Flash CS4
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FA3B34BE-4246-4062-90A3-34CBBEA12B72}" = HPTCSSetup
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FDDB69BB-2F9A-4830-A579-ABBB7C5AF9A8}" = muvee autoProducer 6.1
"{FE57DE70-95DE-4B64-9266-84DA811053DB}" = HP Update
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_1d363508be8a56916b9e01248d4c7c2" = Adobe Media Encoder CS4 Exporter
"Adobe_558424828945c6369c94c9ccd896ffa" = Adobe After Effects CS4 Third Party Content
"Adobe_7e74552a59eaf9fafd13f90894ac9bd" = Adobe Creative Suite 4 Master Collection
"Adobe_83f9d559f7474b6cbaba03b0f4bde38" = Adobe Media Encoder CS4 Importer
"Adobe_a6ee7809a2267098a2ba2aebaa7d7d3" = Adobe Soundbooth CS4 Codecs
"Adobe_b3449bacc3f59b3b46b353ca9840034" = Adobe Encore CS4 Codecs
"Adobe_f20fae94900fbb74753f885c0e3a3f5" = Adobe Premiere Pro CS4 Third Party Content
"AVG9Uninstall" = AVG Free 9.0
"AviSynth" = AviSynth 2.5
"Canon MX310 series User Registration" = Canon MX310 series User Registration
"CANONIJPLM100" = PIXMA Extended Survey Program
"CanonSolutionMenu" = Canon Utilities Solution Menu
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"ComcastHSI" = Comcast High-Speed Internet Install Wizard
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ffdshow_is1" = ffdshow [rev 2583] [2009-01-05]
"HaaliMkx" = Haali Media Splitter
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"LimeWire" = LimeWire 5.1.2
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.5.8)" = Mozilla Firefox (3.5.8)
"MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
"Network MagicUninstall" = Network Magic
"PC-Doctor 5 for Windows" = Hardware Diagnostic Tools
"TVAnts 1.0" = TVAnts 1.0
"uTorrent" = µTorrent
"Video Card Stability Test" = Video Card Stability Test
"VLC media player" = VLC media player 1.0.0
"WildTangent hp Master Uninstall" = My HP Games

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Move Media Player" = Move Media Player

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2/19/2010 1:14:44 AM | Computer Name = DanielPetrow-PC | Source = Windows Search Service | ID = 3013
Description =

Error - 2/20/2010 2:40:25 AM | Computer Name = DanielPetrow-PC | Source = WinMgmt | ID = 10
Description =

Error - 2/20/2010 2:41:27 AM | Computer Name = DanielPetrow-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

Error - 2/20/2010 12:31:31 PM | Computer Name = DanielPetrow-PC | Source = WinMgmt | ID = 10
Description =

Error - 2/20/2010 5:35:01 PM | Computer Name = DanielPetrow-PC | Source = Windows Search Service | ID = 3013
Description =

Error - 2/20/2010 5:35:01 PM | Computer Name = DanielPetrow-PC | Source = Windows Search Service | ID = 3013
Description =

Error - 2/22/2010 9:14:00 AM | Computer Name = DanielPetrow-PC | Source = WinMgmt | ID = 10
Description =

Error - 2/24/2010 5:24:05 AM | Computer Name = DanielPetrow-PC | Source = WinMgmt | ID = 10
Description =

Error - 2/27/2010 3:14:20 PM | Computer Name = DanielPetrow-PC | Source = WinMgmt | ID = 10
Description =

Error - 2/27/2010 3:49:56 PM | Computer Name = DanielPetrow-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description =

[ Media Center Events ]
Error - 10/11/2009 11:27:15 PM | Computer Name = DanielPetrow-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 10/24/2009 11:56:41 PM | Computer Name = DanielPetrow-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

Error - 10/29/2009 4:01:08 AM | Computer Name = DanielPetrow-PC | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.

[ System Events ]
Error - 7/29/2009 4:08:56 AM | Computer Name = DanielPetrow-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 8/12/2009 4:03:26 AM | Computer Name = DanielPetrow-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =

Error - 8/12/2009 4:11:13 AM | Computer Name = DanielPetrow-PC | Source = HTTP | ID = 15016
Description =

Error - 8/12/2009 4:11:26 AM | Computer Name = DanielPetrow-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 8/12/2009 8:24:35 PM | Computer Name = DanielPetrow-PC | Source = Print | ID = 6161
Description = The document Microsoft Word - labels2, owned by Daniel Petrow, failed
to print on printer Canon MX310 series Printer. Try to print the document again,
or restart the print spooler. Data type: NT EMF 1.008. Size of the spool file in
bytes: 131072. Number of bytes printed: 57180. Total number of pages in the document:
1. Number of pages printed: 0. Client computer: \\DANIELPETROW-PC. Win32 error
code returned by the print processor: 1. Incorrect function.

Error - 8/14/2009 4:02:32 AM | Computer Name = DanielPetrow-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =

Error - 8/16/2009 4:02:40 AM | Computer Name = DanielPetrow-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =

Error - 8/18/2009 1:01:10 PM | Computer Name = DanielPetrow-PC | Source = HTTP | ID = 15016
Description =

Error - 8/18/2009 1:01:24 PM | Computer Name = DanielPetrow-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 8/19/2009 1:51:45 PM | Computer Name = DanielPetrow-PC | Source = Microsoft-Windows-Service Pack Installer | ID = 8
Description =


< End of report >
dcoinp
Active Member
 
Posts: 2
Joined: March 4th, 2010, 3:59 am
Advertisement
Register to Remove

Re: Help! I have a fake antivirus called Vista Antivirus 2010

Unread postby NonSuch » March 4th, 2010, 8:31 pm

Although you did not follow our guideline for posting a HijackThis log, and in fact did not even post a HijackThis log, I can see from what you have posted that you're using a 64 bit operating system.

Unfortunately, the tools we use to analyze and remove infections do not work properly on a 64 bit operating system, and their results cannot be relied upon. Because of this, it is almost impossible for us to correctly diagnose problems, and the fixes we might offer could potentially do as much damage to your computer as any infection you might have.

Due to the above stated reasons, we do not at this time offer support for 64 bit operating systems. We are sorry that we are currently unable to assist you.

This topic is now closed.
User avatar
NonSuch
Administrator
Administrator
 
Posts: 27300
Joined: February 23rd, 2005, 7:08 am
Location: California


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 49 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware